Overview

overview

3

Static

static

3

v4free/Ads/_2.html

windows7-x64

3

v4free/Ads/_2.html

windows10-2004-x64

3

v4free/Ads/a_1.html

windows7-x64

3

v4free/Ads/a_1.html

windows10-2004-x64

3

v4free/Ads/a_2.html

windows7-x64

3

v4free/Ads/a_2.html

windows10-2004-x64

1

v4free/Ads/a_3.html

windows7-x64

3

v4free/Ads/a_3.html

windows10-2004-x64

3

v4free/Ads/a_4.html

windows7-x64

3

v4free/Ads/a_4.html

windows10-2004-x64

3

v4free/Ads/b_1.html

windows7-x64

3

v4free/Ads/b_1.html

windows10-2004-x64

3

v4free/Ads/b_2.html

windows7-x64

3

v4free/Ads/b_2.html

windows10-2004-x64

3

v4free/Ads/c_1.html

windows7-x64

3

v4free/Ads/c_1.html

windows10-2004-x64

3

v4free/Ads/c_2.html

windows7-x64

3

v4free/Ads/c_2.html

windows10-2004-x64

3

v4free/Ads/c_3.html

windows7-x64

3

v4free/Ads/c_3.html

windows10-2004-x64

3

v4free/Ads/d_1.html

windows7-x64

3

v4free/Ads/d_1.html

windows10-2004-x64

3

v4free/Ads/d_2.html

windows7-x64

3

v4free/Ads/d_2.html

windows10-2004-x64

3

v4free/Ads/d_3.html

windows7-x64

3

v4free/Ads/d_3.html

windows10-2004-x64

3

v4free/Ads/ivr.asp

windows7-x64

3

v4free/Ads/ivr.asp

windows10-2004-x64

3

v4free/Ads/l_1.html

windows7-x64

3

v4free/Ads/l_1.html

windows10-2004-x64

3

v4free/Ads/p_1.html

windows7-x64

3

v4free/Ads/p_1.html

windows10-2004-x64

3

Analysis

  • max time kernel
    136s
  • max time network
    136s
  • platform
    windows7_x64
  • resource
    win7-20240729-en
  • resource tags

    arch:x64arch:x86image:win7-20240729-enlocale:en-usos:windows7-x64system
  • submitted
    13-08-2024 17:02

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    v4free/Ads/d_1.html

  • Size

    31B

  • MD5

    5d991dbcafb4d28df23618226773a621

  • SHA1

    6c7b133f6366773bc186dd8cccd9a0b9015dafd4

  • SHA256

    e44bac318141f253fd1e79ce6def99385affd95b141e487c6bd7bd91dc998f06

  • SHA512

    35e352264288955328d1741889eaad621d17f5b9cb1e1d0bb2bdca8e10562bfac27151769cb8c6d79c822ac969aac55dbf3c24cd2fa7434be0dc3519a4bc3803

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\v4free\Ads\d_1.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:708
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:708 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2940

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    5ff11006e726288069f2628a16e7dc05

    SHA1

    e53703cfb162385b2fdf10b8e70ed4b81254d12a

    SHA256

    c3897505021c8dcb6a7747afae1266319cbe838f15ccd878e9b53f709ede9252

    SHA512

    585e3ad3aa3c8e218347727ac03c44312ed68cb75ee3176d21dcf9a95d4e0d8059ab6b6c877c1a3fe8a06193b4a427aaa59a8c0747dfe9990e1af0501fb644c6

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    8ed7e777bb7aba7df5a4e66a91ff7900

    SHA1

    c2da500db4645793c0515b9e53eebfe7c92dab48

    SHA256

    366d357db42093cf8158cad4302181a71f56a1da580370c026e56cac48d56cf0

    SHA512

    80cbb7641935dca36c128b88545a7b260ec5acba345519c973ee6183d49836f6534dbd5bb4cc296fec56aaf6580292ea590171855d89c231beb2c932d21175bd

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    3b737d659127a85406f2e4eca7ddd681

    SHA1

    6a0d47bc90682ce5df32a2ea8e0d7a6c0bb74d3c

    SHA256

    ab5b0367b44781a616f57c51de51cc0345c942ab73733063245ca2b8a8cd4fb8

    SHA512

    b5ec6d57d4be51a4fd19f56e3fac8ea33da2b873245b471d54f752aa8ad0f2f71a222dae8d8f29a072a9317aa8eaa486c2f4d216cf5420b67c948d08a99af231

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    f8fcfa20ef458e2d2e2fbe5ebf30a6b0

    SHA1

    7e8e545b60dbeb6c89f000eea8025f00b31fd656

    SHA256

    49441557ce3809ead82cf9cbb7dff62ad28f88c8404e7e5e4adbfee9741a72dd

    SHA512

    82e49de075df191d7da94ce7095e8a2fc8c580746f1dae5d6a01f8a5136921e1abd529900f2c08a0c6bf0761f25374c1e7bb883568018d3dbd210fb669bfbd9b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    2f43b7ddbd8a60f2a42d5b94b098164e

    SHA1

    1969fb9bbbde6d3c68cddc07c4dd6e52c2c7b9b7

    SHA256

    9bc35bdb6c3400fc38b78254c007927ebdcd69c2cfac267734bf0c634a308c6a

    SHA512

    a48efcdbe10c11e05b135823d75a062e8d72f42850baa38a0266d67bde9e98a2085a6ddcab5b39d30e07c0cd3d568bd17a9c67c3db518274c5142c0605a46b72

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    c79ed10e9a24415782ffc048d04f9253

    SHA1

    f9094695705237866b9a9e5fbd6dfc614054e018

    SHA256

    f72ae46b15f1847c51ac82a42be39930c8c55855cd90da0b736b10ef4d9719b1

    SHA512

    a7c6aacf4bfda9ebcf9ac1c0f2ae120d86aff513d43ed191e93fd13759426cf5f4616bcbadc3ce12b033d48c4c9878d2337f78d49297f723880297c0dd601e8a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    57d38344539ed29236cd88306c9bc350

    SHA1

    a9c3238c17129bcf2a62c25bd63205112f6017e3

    SHA256

    63e312851ede03c68c47304fce3912e4cbdc7eed8787d274808599097bef92a4

    SHA512

    b08339bdd7b77291dea3c2c62a67aff81bb5149ebfb7edf78c6360a4bad13f5d8ce43c20f19e99dca0c1bc5fecb7b873df684e1cb724790a897af5f222979981

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    fa45bfa7b347d78c74733a902d831305

    SHA1

    68ebece2aa2c5a32002e50e9f4fe942951c46dc9

    SHA256

    b66ad6dec7f4301ff4f91d5458f884ca551c79ceb8dec0629298169470ea1496

    SHA512

    b0851a3d3e6a01a568b28cc027ec4eab1e814ff25fa9d4485dc615a241838bf42fbd6f71ae202d9a69996e4124f498d88c82484770607de5292e835c3975a435

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    fa7704248ad09d1f241473de8570e2ab

    SHA1

    defa1794409fed2e72c4ebdda6bfd280d07e8110

    SHA256

    a54d4fe109108b3afc3b968909200afc8824473b4846d19efdb9926ff0512cfd

    SHA512

    c26731bb07086d742214756bac03f55073952e15dd238c4da5239fd37f850de2ed70fa7914f9e698db657413c41bbf468d9465f26d44fc58fefa9fa0e24a08bf

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    4e5721de7be98d2066a7df72a4bf1e68

    SHA1

    9faadefb5ee5503794def4f3a797967b2d775a8c

    SHA256

    0a9f9a9045b62f2d9f48c8616a4a9136d76b0a84898d47108131872ac04dbdb2

    SHA512

    25615dd389de9ea7cd2c12f28adcf0f90bd8f4e342f757dd180ce6458d34dbacee6230eb352aeace63c40c0c106affe459dded24e9dd01bd2612a977f81c75da

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    2a13e50e3476c1aecd0456f81aa200ee

    SHA1

    129f7cb93fe348a2651bb0c79153ff31c39cdabd

    SHA256

    4876fc76eb751da5dfe05b971524784f6ff5020241d5f863e194b5fa51fa5b6b

    SHA512

    d8f61ea10090283ef097108cd68979771f39a5b7df4b2acdb1db3bab34e2130144b2b9dada035c79bc09f1592f21d87bb160b356f9dbc2320a64b7690ac8a782

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    7576284b8dd3809be56a80bf66e1cabd

    SHA1

    481d2e291772dbfbbdbd7fdb8330d3d938b7c257

    SHA256

    e801fccb06a47b39203ae0509a52b895eb7f228c87258642cb89da1135e0e884

    SHA512

    9fa6da2955dc2cc4d36115117d69dc9e7c340708ae5da65ebb551b0f4900b674515e76240ecc22d0a835a64193fb81a1328bfcfbe9c462ace56c2c9311fe21a7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    5679e30c9b6a29fc93e77172db0f214e

    SHA1

    143eca64d89ad3f2bcd551f611ff17d7d8319b45

    SHA256

    33a3f9ae403c460f29f661445b37abf0526ef01dda30e02af3498562bd6d2933

    SHA512

    14e793db52aa532b1212873896af8e3b3345d39983aa292cc7a943004666559cd9125e1aad91c04c7f6b7361a0c0dfd4aca03ae3c5222c07aaaccfa2eee720da

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    13348aac5c2bb54bd412056686ba7c19

    SHA1

    0593ec087b526fef739f9d7a56b579ec23818cc1

    SHA256

    2158970be8ea878d8effa875fb679803e0b1c9a5b521da35a581fed81e8f9709

    SHA512

    a0c24beeacbc1920c219c0e2b65e64a61bde868ed3f11278cd5e84d4b32fed40bdb0ea73ed9827850b1f0f5c57791047ff066f39f25a926a25b8829392e4d282

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    78c27281678389ad849ccd0f4e589545

    SHA1

    760f70481812bb24e651789a16730cf9b38ac7c1

    SHA256

    4b4f5a01b68a5c358ef1c85df296a18043ad0bb144aff89eb17a22cb8051064a

    SHA512

    da238d1b2101d5f7418fad5371e7e423da12cf50e4be9a3db72bd6b7d88986cc407118f0df799c86908c1d3a6754780eee5340e8b40445dafaf75492022f4ae5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    23b635b7a513b202f4e5981f317d6589

    SHA1

    8a4e348c9be65836e38afb2235b59ff07255ed1c

    SHA256

    ab9e251158031d2999f210a84bc72dc78e93d2ff6920788aa9436d6a1663b4b2

    SHA512

    01381d52b7003441afc688ed301b689a29b80773e854d1928362f7275585963f5b5180db1d6f57d0e089a98402989acca4e1faa45bd1254c4211850bd60430f4

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    8718aad71ab9e66b27f7aa82d4d3528f

    SHA1

    7e3e7d7d00dbb11563e96f35eed5d6580bbfc800

    SHA256

    424fafd6d11f7a81d9ceb7d6397241b419064ccba0cc70dcb142f4629ace5ac8

    SHA512

    8e0a5772b518eff85a6dcf926e474d0d8107d1eb46fa16fc1903871a6905d8962ec4f532fabf192b635d695b92caf4a3ddbe1c1a714f26ba1bcdf3130e4fcf3b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    39694989a96d70de238f04014197cbaf

    SHA1

    ef77ec87be5c5ef56e3c0af698621c8e693093e7

    SHA256

    b719aa5fff91ebdc366a7c074fac4f01ba69c5f4dc68a5da4f5b379f40aa62af

    SHA512

    efb831f9401f18cf98067d0de9583006fd0e3180ac78bb36ec1e7a11603dad1fa340b810f16b22c56ee33bfbec137c4197d4201d7f5610d143f3436632529f88

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    cd125096d2f661295a598a1fa25e56b6

    SHA1

    f8bed4f16f215256a787d42b9ded26bc03c7bcd4

    SHA256

    68fdd601b4bb9e4bfa52d2b492c56faf1ba8edfb35b38c77ae34086d9ade981a

    SHA512

    bf3cefec9bd9c15d1cb1641836c9d20c5b72ecf670d8a0966684e53d052627384f886597968c7e8351b3f6ccdce0195a7f5568a763b0f49448400f9974862f41

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab11BE.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar1230.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit