Overview

overview

3

Static

static

3

渣渣房�...x.html

windows7-x64

3

渣渣房�...x.html

windows10-2004-x64

3

渣渣房�...enu.js

windows7-x64

3

渣渣房�...enu.js

windows10-2004-x64

3

渣渣房�...dar.js

windows7-x64

3

渣渣房�...dar.js

windows10-2004-x64

3

渣渣房�...x.html

windows7-x64

3

渣渣房�...x.html

windows10-2004-x64

3

渣渣房�...-en.js

windows7-x64

3

渣渣房�...-en.js

windows10-2004-x64

3

渣渣房�...eme.js

windows7-x64

3

渣渣房�...eme.js

windows10-2004-x64

3

渣渣房�...bar.js

windows7-x64

3

渣渣房�...bar.js

windows10-2004-x64

3

渣渣房�...n.html

windows7-x64

3

渣渣房�...n.html

windows10-2004-x64

3

渣渣房�...x.html

windows7-x64

3

渣渣房�...x.html

windows10-2004-x64

3

渣渣房�...p.html

windows7-x64

3

渣渣房�...p.html

windows10-2004-x64

3

渣渣房�...y.html

windows7-x64

3

渣渣房�...y.html

windows10-2004-x64

3

渣渣房�...l.html

windows7-x64

3

渣渣房�...l.html

windows10-2004-x64

3

渣渣房�...p.html

windows7-x64

3

渣渣房�...p.html

windows10-2004-x64

3

渣渣房�...l.html

windows7-x64

3

渣渣房�...l.html

windows10-2004-x64

3

渣渣房�...ite.js

windows7-x64

3

渣渣房�...ite.js

windows10-2004-x64

3

渣渣房�...e.html

windows7-x64

3

渣渣房�...e.html

windows10-2004-x64

1

Analysis

  • max time kernel
    121s
  • max time network
    141s
  • platform
    windows7_x64
  • resource
    win7-20240704-en
  • resource tags

    arch:x64arch:x86image:win7-20240704-enlocale:en-usos:windows7-x64system
  • submitted
    12/08/2024, 13:30

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    渣渣房产程序/admins/templates/list_newstype.html

  • Size

    2KB

  • MD5

    af31fed49b211bd4da6a450e65dc9938

  • SHA1

    6ba6da89b7b1133ad1530647342ef58042922c6f

  • SHA256

    d2da4b7415277558f6cc378ba351b8ad557e89d424b97048a3001b3de4e4e5cb

  • SHA512

    71c4103937db7d17fab8684e77411f1ddf5fe11c3e72864de360b88c67ef1238764c2755d67d7160803002b62fb23b9f4f865e3ec9fe54dc83abe72eabd1b95e

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\渣渣房产程序\admins\templates\list_newstype.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2320
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2320 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2816

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    d2ca2b12099bbb9ab169e986e7be4c10

    SHA1

    8631ebebf4b7bffe6493dc0c05d74da59324de29

    SHA256

    ec656102a57960eb2d90ce45e75dfc66dd48c66bdd3267fa1e0370ed56ad2742

    SHA512

    e0f63d2b715fd3ebf008800a75527cfa8fd1aa247287f0a21b5f878a24f7e1b69a2c9685d31044dab930185b19d5350b16efc204898046aac62c20bf4a483fbe

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    26c8c0b43736b3b0bef4036d45b11bee

    SHA1

    208a7ada87a1bed70f8a1d3d5a203f51995e136a

    SHA256

    2db15ecb6c314dd592e4c73294fe132911eb6b6b2f9490edb34d6322109a7ee6

    SHA512

    2ece3adcb6babb23a87f06258149ea83a838402d69ec47a7faa78fc2c8cfb25a700959075875d3d7edc117185e19f0e3b3479e9927f1e46ccb3ee2ef5fe44eb9

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    db023880a3464b5eabe70be70c467fd1

    SHA1

    4ab5f9d98a41cc80b2769bd40274d336d21e87be

    SHA256

    dbd02d07de9e47d22421610b8e47f9aa9285e33acf5a13c6ab542efd46068026

    SHA512

    8cdbe8cdf5f141b33684ce365a39b3de4f7af413a898324729b6fc19bf0ac389e357b15211baf11f984063b23c16a33c8462497104004322bdc602a524b6f1ca

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    42d1e31064bbfabb3a9dabb5f35877be

    SHA1

    1f1738335d666201bf25573dc9a53d1971176e73

    SHA256

    cc9686b73099f7a56183832d6423fa5bc263bddd3c828e2b8c40399796552047

    SHA512

    43475c69f7696430cf6a336cdcdf6f28d77a795e8ba65b25735f378e9f9331f5b4957b8e5c5d93572024c0e48da7b5164072214830c26d9b72ff4a5db9fdf6a6

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    1d868b1f83105f42d100ac9ce6f7d3d5

    SHA1

    886140449428fffda8f9204611fe8c986de8f121

    SHA256

    c3438b9f5ec50bb7f7511fb320ab7bde74ad38384f756626098db86c69b8d655

    SHA512

    c2407436a882c3f7d6e196ffdc02cf232275a21c945069e50398c140565baabcb4537933c5d8ba25aa8e52e6ba486655738fc04dd7513c98296dfa3a150b6296

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    4bacf1337f8a4a70d4ff8c80161915e4

    SHA1

    02a256ec30b11f644ad52c7de6d3a17bb44f13eb

    SHA256

    a0199462fcc2e4ec80b8d99d50e0121d6471b0e992d0920365d6e913e4115f35

    SHA512

    ad55120822d3b916989ab5adde5477d0dbd1ea282a44526665e3176b773826f2b57aad27c8fb9bba4151609f98c1feaa5e8d836ec618523eb468126d5fb1af72

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    4cc90eeaf1627d3fb91fded558508907

    SHA1

    82318d0971a0ede2514a2e1ee57568d3f6cf0ce7

    SHA256

    191844045db3a1fb168588f1977538552173e444bf7bc258f9762a577ad9d9fe

    SHA512

    dda64c800b1232379161b9bf7bf9b76499325308e88da7bf4cf33898e2fe79ec8ae89b9208c2b52e2b1150d21cda9d16b4feda0bd9b4a1e7f60b5e49548e3a77

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    52bf497b4d0c276cbc87ec07b2beefe8

    SHA1

    43a15b06efa969400f9c1594def787fb88565a1f

    SHA256

    0c68fc681aae6a8ec3603ed7a72a4e4cc3e89139c28f48f7e995d2909caa506c

    SHA512

    15494311e0165b550d27db097571181c088c180703ee915dc249b35e985a35353842d049210f446d52428c42ea779f6984fa97d50ca2fefa6776db824093945b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    113a526bb2a0db9c8a925b566a3bd23b

    SHA1

    4c2584c2f5669671811d9f79b6b73a1b27aba0c1

    SHA256

    26ed241b527660f12bae890003a4fbd798eb84af2bea61a42dea3da16697cbee

    SHA512

    18048f744dc7d6c3fa6d5f8ecca270dc155cda8348b27ca4306e395496327254b3792f0ee1635cfaf1212674f5034d613bbecb3bf2d576ed337807abb4e1bc77

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    c799760c7696fb0b77c85bb5434b5798

    SHA1

    9338f942c25a1bc6b75d913fe96f3f5756ba9c2d

    SHA256

    07774158e54b13420e052c253a2b4b719047ad3400b3b4bfa2d4ec7f018e2fd4

    SHA512

    a3087c9afe439e4a9050759cce8a195260f228248357394f7dadd8589b15362c70ff65d8729e043a3a64e810221a98e82a970b75c00e18d795548ffd0506e23a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    0266509df9a1a62d4079ed4725084a0c

    SHA1

    4e5fea762f3378bd23dc46d7f6cd4eea15a886da

    SHA256

    f5b36ea90fd36c242b130971753e90db1ad0e9684ece953260999a10ee6c9a19

    SHA512

    18b34bcb753a0f4230883cf013e9e79c6fed9e991393dfcbd29076cd19d28f5ac04ad5ac9b6f749b95f04195aa9bc1b0234c4776fdb98be8b4ff563f86f299c8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    17a3d5171b934ac8f79757264ff5fdb9

    SHA1

    60aaaa178d29296ea11da416481e844255f572d6

    SHA256

    54b8e137c2b46e8aa544872d453fb8c8cf36e3be796cf597f6b3b26815eb25fd

    SHA512

    b2bb2ad26e8fc80659ee908ba4991460ed9a9cf83da4f498d9b7e3f4cdbb7a0319e1410c693285b7cf7615c1f80b7fcf6a6eb2138e5605262a24988d43d38e62

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    a02d7b985503575c4320a8b4783a7f2a

    SHA1

    ad7c5fa3d21a70e4c8694ba9d672efb33d789108

    SHA256

    7d89f2a22f7c118730ca17f41441cc1667de4b2e53524f4541542115fd5e69aa

    SHA512

    339bf858c1b4874550b19b49881e096812b9cbfb93a98ee696bf0baa977501a88496d54572215056d647e7153607522c9c688b93ff6ae4ea2b870caa2be61c89

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    245f85567b18e506286744d9fbbb4a46

    SHA1

    de0430ed9df3c6f3829e51bb674076cefbaff5e6

    SHA256

    9f2fadd14c413c655476dd210f76b4174811f9d7e30b89a557fce588400bc4a5

    SHA512

    b7c0ddb698e844f7117632769fa1c44c43ec2fa0b000ca1436d5192299d9e82a82aa721109d241190231e4de4595c993e6a8ceee031674ebc51945e000029e58

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    bcae1072721dd2b2bea196c41e40c6f3

    SHA1

    cac1463659afff026f72993c522af5cbe7c82554

    SHA256

    bdd2e2da5ea46867804010a4623b6d863ef04b400a7d35998a8c3f6213608a98

    SHA512

    82572a45b69be566b3b572e5b2ab6ba97911bb3f706d3364441dd0aa9b04ed868223355b3847d06ee30bcdec10a7424b07a0d31321ee6d446e46eaf0f6a78699

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    ae53c4446e4261809ff73f3ac65fd6ea

    SHA1

    c1ff54b296e26afd3f93e7595f4f9aae9e393ddf

    SHA256

    0892621e41e0721390964bd6b47f99faf899d40b446f132d55abdfaf5edbcd92

    SHA512

    98390a8a28e470240136b54342357f261ab9babc36e9663a620abfcf024f0ad89de104ea694e178c55e89d0fe5aaf6dae5716dcfb6e1c7359166aced297cbf5f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    90cfd539e821bc7f52d5b593ca3880f5

    SHA1

    5b46588b281e943e0b343089e29e2fe91f54a493

    SHA256

    aafa2e02fd263846b9c1e0d21852b1b5b05b96b14f205b1c41bba21c028aa066

    SHA512

    a66ebf32ffaf005263dc838b0432ec13dde4dae4fba76e58807ffe9b9889bbfe0516446dcb37c200565ffb057ced9d32500ff4881a5e95bb768bcd73bfc48cc8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    f8f71e2ab05f0ccf21651ffbf2ac22af

    SHA1

    b2965ce9e228b3114e0162b832661a998ff1a4fe

    SHA256

    77846db414fc2ac769aefb11e3edfece4530eed4cd69eb28a677df28b94e18ce

    SHA512

    01b8e227734b4f511349509f2c54001ad38f02c5d5f701f397293e2439e2de822fd19e74b55499c7b83ba880fa5e0066e63fa29c4354cd0ae88d1ea2878a0e50

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab69CE.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar6AAD.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit