Overview

overview

3

Static

static

3

v4free/Ads/_2.html

windows7-x64

3

v4free/Ads/_2.html

windows10-2004-x64

3

v4free/Ads/a_1.html

windows7-x64

3

v4free/Ads/a_1.html

windows10-2004-x64

3

v4free/Ads/a_2.html

windows7-x64

3

v4free/Ads/a_2.html

windows10-2004-x64

1

v4free/Ads/a_3.html

windows7-x64

3

v4free/Ads/a_3.html

windows10-2004-x64

3

v4free/Ads/a_4.html

windows7-x64

3

v4free/Ads/a_4.html

windows10-2004-x64

3

v4free/Ads/b_1.html

windows7-x64

3

v4free/Ads/b_1.html

windows10-2004-x64

3

v4free/Ads/b_2.html

windows7-x64

3

v4free/Ads/b_2.html

windows10-2004-x64

3

v4free/Ads/c_1.html

windows7-x64

3

v4free/Ads/c_1.html

windows10-2004-x64

3

v4free/Ads/c_2.html

windows7-x64

3

v4free/Ads/c_2.html

windows10-2004-x64

3

v4free/Ads/c_3.html

windows7-x64

3

v4free/Ads/c_3.html

windows10-2004-x64

3

v4free/Ads/d_1.html

windows7-x64

3

v4free/Ads/d_1.html

windows10-2004-x64

3

v4free/Ads/d_2.html

windows7-x64

3

v4free/Ads/d_2.html

windows10-2004-x64

3

v4free/Ads/d_3.html

windows7-x64

3

v4free/Ads/d_3.html

windows10-2004-x64

3

v4free/Ads/ivr.asp

windows7-x64

3

v4free/Ads/ivr.asp

windows10-2004-x64

3

v4free/Ads/l_1.html

windows7-x64

3

v4free/Ads/l_1.html

windows10-2004-x64

3

v4free/Ads/p_1.html

windows7-x64

3

v4free/Ads/p_1.html

windows10-2004-x64

3

Analysis

  • max time kernel
    149s
  • max time network
    148s
  • platform
    windows7_x64
  • resource
    win7-20240704-en
  • resource tags

    arch:x64arch:x86image:win7-20240704-enlocale:en-usos:windows7-x64system
  • submitted
    13-08-2024 17:02

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    v4free/Ads/l_1.html

  • Size

    31B

  • MD5

    61d50d9ea3a9b0f697db0cca98674821

  • SHA1

    c0a0206447e88c3613afc70ecca60be1a9376d9c

  • SHA256

    a1e40f9df6732878d74fbe30b1fa1fade12b1b98dc81cd294b23e388079de639

  • SHA512

    c6940051b2595878006b39c4432862cd687423773e9d411945041c515518e9d8d7f1cf8f4f07e6540a6153d23b5e495801268958cbdfa85e14cee2f39c865c7d

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\v4free\Ads\l_1.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2824
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2824 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2704

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    8b56629393c8ea1e06a4314806e9be7b

    SHA1

    4c319729aa0f1118ff983ad1e813fe9b2ad8db1c

    SHA256

    9ee01b1405aeb0b7423114ef898d47b827a85e8c2e4025d30586626a262e1dd2

    SHA512

    cfe01148bc4d49eae49c6d0c9100d43695f0189783451dcab7afa0ecba6d6519f507e54872944cfeaf5dcd8c16f793e339cf56353d9b4138a952afb7daa96733

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    02042cc9fcabde9c4b0e1df45aca04b8

    SHA1

    bfc71effe7018f0060b1fa98619c34a280814af5

    SHA256

    29b71ae30ade63083129a852f6d53b99e68591fbc807bbae60e9c22cbaa9738f

    SHA512

    42dd5aa025e16a38ae5613e413583d49444f9bd063afeb97fea92f7091cce1370c3fdfbd0eb319ec63d7d3ad3d4d3c16337e053533d265ac814193fc97cdfecb

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    f8ffb7692c3d66e7300e5a6664c8e783

    SHA1

    23f70385444d1ceaf36f7df2bde237560401d770

    SHA256

    f37e46a861f89e7d4132337fe4c616eabec311c7525e9d8ebd2b544565f537eb

    SHA512

    2cb01681089773cdf544b8fde1773de4ee20933062f2fa21918fe21b6504c23c3239e9139d86f891b2e2259171378646074f1f9de275be97d9a963c486e00cb1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    ebe8c501c1abd2de124ba38fea2302a9

    SHA1

    6af46ecc6e005c56cec11c161c3012c9ce91a139

    SHA256

    f955f8968ecb0f7463371898b41fba3c2efec135e76a7378457228f46e8709de

    SHA512

    aba46af432fc44cc9f564f048e0c3d52e1c083dc9ee815527e2782819ea693d6085beaaef46e873102c55bc2c14afa21b8adfbbd83817c15e8bca70b89963e04

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    3c74c1169a14c079d6ffcdbd9314d4cf

    SHA1

    10dedf5d9e95af8f050765c7dec5eddd8d466bc6

    SHA256

    0cfcdb824316e1b95b1c683816af4ac635c054d0e51712f9de69ec0dfb45830a

    SHA512

    efbff161d15dd9adb634f7a455e98907ed6193d24dfc11a567af788d82760fe79525faec7bc5132dbd47c0c7fec488738a7531a648aa3d753c3dc46cfc17210f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    dc4d24b214d0ce9c252708fb5e74b050

    SHA1

    269177aa512b07323da798cf631ea76ee0e8a5ce

    SHA256

    390a677802e03a661cd3c283343f1a6b4138539bd4fc5ef810190a922f64a719

    SHA512

    327591300ae64a32a826af9a2c0825d915b68e187f4b236ad26dab46745c1ee8a4b96356cef1b1a0b89e67639404c0cbdb4ed3a64ee139fb66d0cb1212fdc12d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    0282811c3b555af94ec7bf4baf4ceb33

    SHA1

    a79f840fff413f70c91957259098f6741bb3ccec

    SHA256

    3cc132cdcedee407b671483a56dec9e0abbf17eb9a08f689749fca0c0d62e0c4

    SHA512

    0fe2377d468b63597aebe2aee7f20580a89b6f3b9164fd358d75bdc5a15960e95f7b471fccfcbb2025d43e2d21168c6d08148158c48429e20a466a9f1503118a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    660a72900253a3ebfe6685a7be862fa3

    SHA1

    edbea00535be996823cc073a3f53369831f2651a

    SHA256

    3e27c3895e900a17867adbb126e68775a9931d81f8918e45a092526cca505315

    SHA512

    0d4a8f796b109605fe31e77f4195f7d842bccb75d06977e36d42553aea6e07851d7300a4953ae1a17301d60c8f569eeb71cbd6bf0822b80dbc884e4c5ce48146

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    561b80de4235f7fa4a1a33b5f9b6de0e

    SHA1

    2722da4a345b107328dfdb3e45a36afeaf3f6eb2

    SHA256

    ea4595fa9413b1162f7c07608fdf771ee255eed2465a5195528dc9e3c18e8702

    SHA512

    f3d4d63a1e2b0cd2d79271395fa6925c80cb7b8b06afae02faaf5c7df028be725e0e987df9f1834977427b547cd2699546131462d92f7082aa84e4e1730c38c4

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    33a1c19010cc6308b3157e11bdf54320

    SHA1

    1e8157d02df4200101825734fe0227ee82681995

    SHA256

    6e03393bcb2163094d8aa5787944837818b335f0c03f8246f665fcee954b5059

    SHA512

    f84f7e90b9644b17e4de1fda001755831c7ea13d0e559bcd186e89b17d03959833fca919fa6e7e00bddcd14e33895c519320100b9d2c628645f85ccadc5c44b6

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    d1235d69c66603f7132f65050b3d389f

    SHA1

    549c347d0c5b1d0c1ed9f6c7285a1daf6c72cdb4

    SHA256

    b5b4fe806549abeb3fefc55db939ced3289650d1d999ba07538970de2a941c01

    SHA512

    2c57e2975599ab972f0037cca5029d01c2d83335ca004086ca6cdfb37befd0496a46d8c293c4dce91f6ae8b575545ba251cda93d2903c05ab8b82b8cafb79bcb

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab8884.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar8933.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit