Overview

overview

10

Static

static

3

Archive/Installer.exe

windows7-x64

3

Archive/Installer.exe

windows10-2004-x64

10

Archive/pu...e.html

windows7-x64

3

Archive/pu...e.html

windows10-2004-x64

3

Archive/pu...e.html

windows7-x64

3

Archive/pu...e.html

windows10-2004-x64

3

Archive/pu...e.html

windows7-x64

3

Archive/pu...e.html

windows10-2004-x64

1

Archive/pu...e.html

windows7-x64

3

Archive/pu...e.html

windows10-2004-x64

3

Archive/pu...e.html

windows7-x64

3

Archive/pu...e.html

windows10-2004-x64

3

Archive/pu...e.html

windows7-x64

3

Archive/pu...e.html

windows10-2004-x64

3

Archive/pu...e.html

windows7-x64

3

Archive/pu...e.html

windows10-2004-x64

3

Archive/pu...e.html

windows7-x64

3

Archive/pu...e.html

windows10-2004-x64

1

Archive/pu...e.html

windows7-x64

3

Archive/pu...e.html

windows10-2004-x64

3

Archive/pu...e.html

windows7-x64

3

Archive/pu...e.html

windows10-2004-x64

3

Archive/pu...e.html

windows7-x64

3

Archive/pu...e.html

windows10-2004-x64

3

Archive/pu...e.html

windows7-x64

3

Archive/pu...e.html

windows10-2004-x64

3

Archive/pu...e.html

windows7-x64

3

Archive/pu...e.html

windows10-2004-x64

3

Archive/pu...e.html

windows7-x64

3

Archive/pu...e.html

windows10-2004-x64

3

Archive/pu...e.html

windows7-x64

3

Archive/pu...e.html

windows10-2004-x64

3

Analysis

  • max time kernel
    134s
  • max time network
    128s
  • platform
    windows7_x64
  • resource
    win7-20240708-en
  • resource tags

    arch:x64arch:x86image:win7-20240708-enlocale:en-usos:windows7-x64system
  • submitted
    06/09/2024, 06:11

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    Archive/public/ssa/eula_koreana_bigpicture.html

  • Size

    12KB

  • MD5

    2d88ba7823a5fbda197cfb069ddafa30

  • SHA1

    959ff6f89ef7e107135ddad328674cc4bebbd195

  • SHA256

    524e20ce6498ff22225fca221657ca7486c4af00dab5cef8e9314fc4bb4681e8

  • SHA512

    017e30d40bbaf9393f02ef4f07088bf9e485b6a5ac0621d232595fa56dc359a1cd1a17af3b3048584840470060c294d7638bff9cfeeec9b74af1bf04d5ce49b1

  • SSDEEP

    384:ax0Mox0Mfsqu8ZYovrlr+zElfsu8wVlb01:atotfsquCYovpr+mfGw4

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\Archive\public\ssa\eula_koreana_bigpicture.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1720
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1720 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2584

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          6ba4265450224557af3013ca129b1e8a

          SHA1

          4799f28433c71b1376f767e79a13f156c76147fc

          SHA256

          4fc0284ac690ddaff5fb38b3313feb9d47a40ab0d52b731aa1dda3fbc709bcf0

          SHA512

          11eef07dbaeedc94ae69987ffb9a633f9e075749c4802bf82eb4744eda3aaf9342935c27a3397735ab35574bd8ca363cf530d8e3e0121200c6149a7cb926868f

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          ccfcb290e69d73b4cccdce55678fdb58

          SHA1

          2d1dd14c42476043f055d9714e38ddc01a1b475a

          SHA256

          cdaa540fe05a475a341149793d1ddf880ea537659291975f911961362f1d0587

          SHA512

          3f101bdcb40d9e571f89a4713253f3959b53dd4fa8f1641d5b28dd1258ea67387ee08c660ee94373b2e0f8f59110989239a84313aa1bff15c67e3564b7cf39b9

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          88837a4b68fe6b17d8b7c996eb377dd9

          SHA1

          cbeb6e40c5061d5672323f8d00e42231b67061ab

          SHA256

          49894f3e6e00abd8241f996b2fa43506ac8d10cc882580fa8aa847aeae0bfa17

          SHA512

          37ff7528d4fc71cdf6e1162f76f9af2182627ff217ebff8f902c8473f0ae284ddd400c9f706129ea5044c85fbcde2cb8cd7e6f170d6bad6fc47b930a148f3c6c

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          77e2fb9117dacc0626329226bbc539e0

          SHA1

          09e2814166b14afe12d681071f90ea97bbdca023

          SHA256

          c5839aac70e721d04d53b8d1c1984a772601728e9c55998faa449be293540843

          SHA512

          d4f5d6775dfa1dc4fab551a367990d950536f3c1c0c80cd38fc4f9aaebddd1a447d055434212e1a252080039512e88ea85035e4882f69a5890c1df5e29b9f7b2

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          9cd43302e5c41f2b986989d5b4951950

          SHA1

          966a7eddce1977a938a71f91dd65ab33dcf01115

          SHA256

          27e4c5b608b445991afc4ddc0627bdfae550c731c5cd3f977da4a6ea1f2b66f0

          SHA512

          29dce9d7a460c340b682fcf9a7d68d7ce55a540cfda6e823e71f76e7f39376a9cbf7c7ba9f9a24797352bba3bebf4667e2c0fa3ec44858c127fbe73f46e3264e

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          c82658138c44aab0e3cb2816cb56c695

          SHA1

          7e9f11f4fe74bea542e13b188d09d95e66eeece5

          SHA256

          333c1bd15e95a01015c0b96660fce40c889a1660eb5f0ee5e445f0d8d925b595

          SHA512

          d68b1bfb575fac06b47853ee4208f9c30effb653777fae6715a905db30e5677192f5c83fbf69f543cb8597e95c1205fcd727252179c470d4645713d4d584af65

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          09cebee5f0cf7bf007b0efbfc8344d56

          SHA1

          8beb5d5429972c3c361fd8d09b92accafdad3090

          SHA256

          7acba877d5c5787c4de38ba78555eafe761a3487337d242a9455709a1f54149d

          SHA512

          e423e6f3ad570f17e39a3974d907a4a3e97209b5fee6e2b0d813f8f3080a56d2cf54d8886474a4942bf5d46d1a94161975f1e59780043ef8bf7ec89bdda6a3d0

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          ff8ae2c1c25d275610e43ecac2f5411e

          SHA1

          7af1d829cecf3a1c43a6d4a07590fa002495a7cb

          SHA256

          e9fcef30fe429863291c32b310e44cb79e39d0b8f5bc9977c24657b21df786c3

          SHA512

          311473a897983ea3cddf6317197456c52b833cf8b43388020368f7e7fd4e4558545f8df4b3c6d50c9356d1d4dfa1ba4344a02d830625917b8edb1c9d8269c776

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          02b03f57265ef3d544f6c871e9268de9

          SHA1

          7b11476d3d17b9cd6b0be9f38e7a674585e455a1

          SHA256

          f0aaa76db33e3552bb0875ecf6c12243492a15d74bbad9d751a738561a4fc7df

          SHA512

          15f1cd5d1be7f0334d596723c828a30ecad9b59aa69c72ce25af7ef555ed63ef706c5e8c4ac021acf337b956487e8cdc3ec3278e4f2830e82d3003f69001fbc3

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          4b290d81421103bb5ad6df8abb0aaa93

          SHA1

          37b3101e465a8f3f5f517c3be52da6899bd11007

          SHA256

          1f08e4d8b42c7bcaa57209f8dc4df4eb684ce5b66c234b46275ff1cccf00bacb

          SHA512

          7bfcef8db2700383ad31d2510d3756b8bac16861edd65792829eceec2f4c85819476dc276c8812d2121ad4ef56c764340a3ff65341a0939b53111ad67f91a3db

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          52aad7072080b66032b99cacb3cc0aee

          SHA1

          e9842a9ca398f2768b87645e58e8ad489bb4b81b

          SHA256

          ee76c3a85706ba9053f4257e281b0bf41e7a43f026264303b7e702a77cd5387f

          SHA512

          32de43be70ebcbe221d5948e6932cabaada6719042452decc4e41f47666805bdb3f79dc029aa55e5eac33d1f60d7d5b20ab3e8491f0d092cbae5e7b85dc7d3d1

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          faf077ff79a308cc7c015621e636ec46

          SHA1

          5802abef681b57aa5569a588bf75cabaed833db1

          SHA256

          04f58dc6087a91de7f0d610efd9a66b1f9738d179e2bb02198d34f7b0acc6a50

          SHA512

          db2bba3d6e8a1f0e90c2fcc300cc84bd50302ffef399628013dddd11078d7368d50cf72fe2cfa01b90ca1e99c7a734fc48a557902a3110171a7671253b689288

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          20dd23c01c74940ca6173e511787d420

          SHA1

          49f3511c1462829299b038a506f1e85214bda8ec

          SHA256

          808220d2aa92149c5bd68341fde7b20bc2b2ac19cddfd23c8c2a2e46066c7363

          SHA512

          eec150436ed75f83e19c762771e1645bc2547f305a81eb17b24cc152507ac38c546b8373a995e314e60a2d9c6c53a0e9ccb8938b50f1c371ff348e3617aadb39

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          532b8e0b6157adf9ef2ec7edfe81ad98

          SHA1

          f58e326f142cf146bbbc0b406562ac70fe450a4e

          SHA256

          3bdee4c2e68968685bb3677064239e1066cf8b7f55b3f99adf1c0a9f7ee7b1d9

          SHA512

          26273c714a9c3ade253eecff804683b4c357a51a2b4b11918b74eb45d18897180da72fdc715393b13aa6760d7f5298938f0e7f1985fda42cfa193c10ea05ab75

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          bec75a4bf8a4b0689b4b68b485cf212b

          SHA1

          adb318eb37320fa7bfbd4bdfc65d71750e90ea06

          SHA256

          629776e6594f8391b41495c6a09597421cd310534fc630355324f9372b557e29

          SHA512

          7c35ac9e095c67910dec5317f749e1367ae5ab5959c4c501e67c94b7e0602ffd1ed047e8f85c22446bdd5ce7601c69903d3ca59f1fc7480dac0607f57e185f94

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          6231b660dc9e0ae9e2cfab864ac84acd

          SHA1

          3004b95dc9a1735b409600d61d30774b59ae8698

          SHA256

          a24209ab0e92134404b5a9b26655ff032ed77e8ff1c8995436657e31b760265c

          SHA512

          aeef2efb4945b15e987dfa092267ad274e8ffd8fe64dbeb3f30a917eb2f37c7c006c9d89a2624f222a6b93c868c725b6419d1109d96a7fba857ed7d8f76117a9

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          d24d5ad80784ad121524f9109187510f

          SHA1

          511e84abbda4521387ff16054e23f2dfba507b39

          SHA256

          3d2943cbbe7d2e8f9a3a0067d637726b095c28ab8ac038c20651d8a6fa27989d

          SHA512

          e252cbb4695f25573eacae841701385400d29c7f7b856d5baa5cb461173ac3685acc6b086065886564f8a2cb3724fdca2a73d930759066769b4bdc5241f1eacc

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          ff4e2142d9f0ff78ddcf444b31d7f5f2

          SHA1

          e8ab49764da032d92b92ebac3678fd0d724c7e9f

          SHA256

          ef171bf9719d2e015de75b16701831826b3a34812110d471d572f13a83fcea7f

          SHA512

          6df6ade0522875b782c93c8d66da0aaaf297f6fca84512cce2a19d7335888cc145fd51957916110990de560d8e836526c04c0e729e4b9da1f7dc38b1b00a1026

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          bca2d03fb37011b86e5fed37c4178df9

          SHA1

          54aab043b4dc12a4888a98c20566502572f45f9e

          SHA256

          35aec7550da7586d8b9a7d608900086c7af7f278c983a4af0870f3a770ebf34d

          SHA512

          3c20ab1cea9d4a1ec39f6d8da52f1ce4bbf8103b1e52e6ee1a50f15b85ad34df6830897d36b12f3783951d415c60b57e6175c48f3e9b04f6055d646d1f33d081

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\CabE708.tmp
          Filesize

          70KB

          MD5

          49aebf8cbd62d92ac215b2923fb1b9f5

          SHA1

          1723be06719828dda65ad804298d0431f6aff976

          SHA256

          b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

          SHA512

          bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\TarE7A7.tmp
          Filesize

          181KB

          MD5

          4ea6026cf93ec6338144661bf1202cd1

          SHA1

          a1dec9044f750ad887935a01430bf49322fbdcb7

          SHA256

          8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

          SHA512

          6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

          Download Submit