Overview

overview

10

Static

static

3

Archive/Installer.exe

windows7-x64

3

Archive/Installer.exe

windows10-2004-x64

10

Archive/pu...e.html

windows7-x64

3

Archive/pu...e.html

windows10-2004-x64

3

Archive/pu...e.html

windows7-x64

3

Archive/pu...e.html

windows10-2004-x64

3

Archive/pu...e.html

windows7-x64

3

Archive/pu...e.html

windows10-2004-x64

1

Archive/pu...e.html

windows7-x64

3

Archive/pu...e.html

windows10-2004-x64

3

Archive/pu...e.html

windows7-x64

3

Archive/pu...e.html

windows10-2004-x64

3

Archive/pu...e.html

windows7-x64

3

Archive/pu...e.html

windows10-2004-x64

3

Archive/pu...e.html

windows7-x64

3

Archive/pu...e.html

windows10-2004-x64

3

Archive/pu...e.html

windows7-x64

3

Archive/pu...e.html

windows10-2004-x64

1

Archive/pu...e.html

windows7-x64

3

Archive/pu...e.html

windows10-2004-x64

3

Archive/pu...e.html

windows7-x64

3

Archive/pu...e.html

windows10-2004-x64

3

Archive/pu...e.html

windows7-x64

3

Archive/pu...e.html

windows10-2004-x64

3

Archive/pu...e.html

windows7-x64

3

Archive/pu...e.html

windows10-2004-x64

3

Archive/pu...e.html

windows7-x64

3

Archive/pu...e.html

windows10-2004-x64

3

Archive/pu...e.html

windows7-x64

3

Archive/pu...e.html

windows10-2004-x64

3

Archive/pu...e.html

windows7-x64

3

Archive/pu...e.html

windows10-2004-x64

3

Analysis

  • max time kernel
    134s
  • max time network
    128s
  • platform
    windows7_x64
  • resource
    win7-20240708-en
  • resource tags

    arch:x64arch:x86image:win7-20240708-enlocale:en-usos:windows7-x64system
  • submitted
    06/09/2024, 06:11

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    Archive/public/ssa/eula_koreana_bigpicture.html

  • Size

    12KB

  • MD5

    2d88ba7823a5fbda197cfb069ddafa30

  • SHA1

    959ff6f89ef7e107135ddad328674cc4bebbd195

  • SHA256

    524e20ce6498ff22225fca221657ca7486c4af00dab5cef8e9314fc4bb4681e8

  • SHA512

    017e30d40bbaf9393f02ef4f07088bf9e485b6a5ac0621d232595fa56dc359a1cd1a17af3b3048584840470060c294d7638bff9cfeeec9b74af1bf04d5ce49b1

  • SSDEEP

    384:ax0Mox0Mfsqu8ZYovrlr+zElfsu8wVlb01:atotfsquCYovpr+mfGw4

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\Archive\public\ssa\eula_koreana_bigpicture.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1720
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1720 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2584

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    6ba4265450224557af3013ca129b1e8a

    SHA1

    4799f28433c71b1376f767e79a13f156c76147fc

    SHA256

    4fc0284ac690ddaff5fb38b3313feb9d47a40ab0d52b731aa1dda3fbc709bcf0

    SHA512

    11eef07dbaeedc94ae69987ffb9a633f9e075749c4802bf82eb4744eda3aaf9342935c27a3397735ab35574bd8ca363cf530d8e3e0121200c6149a7cb926868f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    ccfcb290e69d73b4cccdce55678fdb58

    SHA1

    2d1dd14c42476043f055d9714e38ddc01a1b475a

    SHA256

    cdaa540fe05a475a341149793d1ddf880ea537659291975f911961362f1d0587

    SHA512

    3f101bdcb40d9e571f89a4713253f3959b53dd4fa8f1641d5b28dd1258ea67387ee08c660ee94373b2e0f8f59110989239a84313aa1bff15c67e3564b7cf39b9

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    88837a4b68fe6b17d8b7c996eb377dd9

    SHA1

    cbeb6e40c5061d5672323f8d00e42231b67061ab

    SHA256

    49894f3e6e00abd8241f996b2fa43506ac8d10cc882580fa8aa847aeae0bfa17

    SHA512

    37ff7528d4fc71cdf6e1162f76f9af2182627ff217ebff8f902c8473f0ae284ddd400c9f706129ea5044c85fbcde2cb8cd7e6f170d6bad6fc47b930a148f3c6c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    77e2fb9117dacc0626329226bbc539e0

    SHA1

    09e2814166b14afe12d681071f90ea97bbdca023

    SHA256

    c5839aac70e721d04d53b8d1c1984a772601728e9c55998faa449be293540843

    SHA512

    d4f5d6775dfa1dc4fab551a367990d950536f3c1c0c80cd38fc4f9aaebddd1a447d055434212e1a252080039512e88ea85035e4882f69a5890c1df5e29b9f7b2

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    9cd43302e5c41f2b986989d5b4951950

    SHA1

    966a7eddce1977a938a71f91dd65ab33dcf01115

    SHA256

    27e4c5b608b445991afc4ddc0627bdfae550c731c5cd3f977da4a6ea1f2b66f0

    SHA512

    29dce9d7a460c340b682fcf9a7d68d7ce55a540cfda6e823e71f76e7f39376a9cbf7c7ba9f9a24797352bba3bebf4667e2c0fa3ec44858c127fbe73f46e3264e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    c82658138c44aab0e3cb2816cb56c695

    SHA1

    7e9f11f4fe74bea542e13b188d09d95e66eeece5

    SHA256

    333c1bd15e95a01015c0b96660fce40c889a1660eb5f0ee5e445f0d8d925b595

    SHA512

    d68b1bfb575fac06b47853ee4208f9c30effb653777fae6715a905db30e5677192f5c83fbf69f543cb8597e95c1205fcd727252179c470d4645713d4d584af65

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    09cebee5f0cf7bf007b0efbfc8344d56

    SHA1

    8beb5d5429972c3c361fd8d09b92accafdad3090

    SHA256

    7acba877d5c5787c4de38ba78555eafe761a3487337d242a9455709a1f54149d

    SHA512

    e423e6f3ad570f17e39a3974d907a4a3e97209b5fee6e2b0d813f8f3080a56d2cf54d8886474a4942bf5d46d1a94161975f1e59780043ef8bf7ec89bdda6a3d0

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    ff8ae2c1c25d275610e43ecac2f5411e

    SHA1

    7af1d829cecf3a1c43a6d4a07590fa002495a7cb

    SHA256

    e9fcef30fe429863291c32b310e44cb79e39d0b8f5bc9977c24657b21df786c3

    SHA512

    311473a897983ea3cddf6317197456c52b833cf8b43388020368f7e7fd4e4558545f8df4b3c6d50c9356d1d4dfa1ba4344a02d830625917b8edb1c9d8269c776

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    02b03f57265ef3d544f6c871e9268de9

    SHA1

    7b11476d3d17b9cd6b0be9f38e7a674585e455a1

    SHA256

    f0aaa76db33e3552bb0875ecf6c12243492a15d74bbad9d751a738561a4fc7df

    SHA512

    15f1cd5d1be7f0334d596723c828a30ecad9b59aa69c72ce25af7ef555ed63ef706c5e8c4ac021acf337b956487e8cdc3ec3278e4f2830e82d3003f69001fbc3

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    4b290d81421103bb5ad6df8abb0aaa93

    SHA1

    37b3101e465a8f3f5f517c3be52da6899bd11007

    SHA256

    1f08e4d8b42c7bcaa57209f8dc4df4eb684ce5b66c234b46275ff1cccf00bacb

    SHA512

    7bfcef8db2700383ad31d2510d3756b8bac16861edd65792829eceec2f4c85819476dc276c8812d2121ad4ef56c764340a3ff65341a0939b53111ad67f91a3db

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    52aad7072080b66032b99cacb3cc0aee

    SHA1

    e9842a9ca398f2768b87645e58e8ad489bb4b81b

    SHA256

    ee76c3a85706ba9053f4257e281b0bf41e7a43f026264303b7e702a77cd5387f

    SHA512

    32de43be70ebcbe221d5948e6932cabaada6719042452decc4e41f47666805bdb3f79dc029aa55e5eac33d1f60d7d5b20ab3e8491f0d092cbae5e7b85dc7d3d1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    faf077ff79a308cc7c015621e636ec46

    SHA1

    5802abef681b57aa5569a588bf75cabaed833db1

    SHA256

    04f58dc6087a91de7f0d610efd9a66b1f9738d179e2bb02198d34f7b0acc6a50

    SHA512

    db2bba3d6e8a1f0e90c2fcc300cc84bd50302ffef399628013dddd11078d7368d50cf72fe2cfa01b90ca1e99c7a734fc48a557902a3110171a7671253b689288

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    20dd23c01c74940ca6173e511787d420

    SHA1

    49f3511c1462829299b038a506f1e85214bda8ec

    SHA256

    808220d2aa92149c5bd68341fde7b20bc2b2ac19cddfd23c8c2a2e46066c7363

    SHA512

    eec150436ed75f83e19c762771e1645bc2547f305a81eb17b24cc152507ac38c546b8373a995e314e60a2d9c6c53a0e9ccb8938b50f1c371ff348e3617aadb39

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    532b8e0b6157adf9ef2ec7edfe81ad98

    SHA1

    f58e326f142cf146bbbc0b406562ac70fe450a4e

    SHA256

    3bdee4c2e68968685bb3677064239e1066cf8b7f55b3f99adf1c0a9f7ee7b1d9

    SHA512

    26273c714a9c3ade253eecff804683b4c357a51a2b4b11918b74eb45d18897180da72fdc715393b13aa6760d7f5298938f0e7f1985fda42cfa193c10ea05ab75

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    bec75a4bf8a4b0689b4b68b485cf212b

    SHA1

    adb318eb37320fa7bfbd4bdfc65d71750e90ea06

    SHA256

    629776e6594f8391b41495c6a09597421cd310534fc630355324f9372b557e29

    SHA512

    7c35ac9e095c67910dec5317f749e1367ae5ab5959c4c501e67c94b7e0602ffd1ed047e8f85c22446bdd5ce7601c69903d3ca59f1fc7480dac0607f57e185f94

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    6231b660dc9e0ae9e2cfab864ac84acd

    SHA1

    3004b95dc9a1735b409600d61d30774b59ae8698

    SHA256

    a24209ab0e92134404b5a9b26655ff032ed77e8ff1c8995436657e31b760265c

    SHA512

    aeef2efb4945b15e987dfa092267ad274e8ffd8fe64dbeb3f30a917eb2f37c7c006c9d89a2624f222a6b93c868c725b6419d1109d96a7fba857ed7d8f76117a9

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    d24d5ad80784ad121524f9109187510f

    SHA1

    511e84abbda4521387ff16054e23f2dfba507b39

    SHA256

    3d2943cbbe7d2e8f9a3a0067d637726b095c28ab8ac038c20651d8a6fa27989d

    SHA512

    e252cbb4695f25573eacae841701385400d29c7f7b856d5baa5cb461173ac3685acc6b086065886564f8a2cb3724fdca2a73d930759066769b4bdc5241f1eacc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    ff4e2142d9f0ff78ddcf444b31d7f5f2

    SHA1

    e8ab49764da032d92b92ebac3678fd0d724c7e9f

    SHA256

    ef171bf9719d2e015de75b16701831826b3a34812110d471d572f13a83fcea7f

    SHA512

    6df6ade0522875b782c93c8d66da0aaaf297f6fca84512cce2a19d7335888cc145fd51957916110990de560d8e836526c04c0e729e4b9da1f7dc38b1b00a1026

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    bca2d03fb37011b86e5fed37c4178df9

    SHA1

    54aab043b4dc12a4888a98c20566502572f45f9e

    SHA256

    35aec7550da7586d8b9a7d608900086c7af7f278c983a4af0870f3a770ebf34d

    SHA512

    3c20ab1cea9d4a1ec39f6d8da52f1ce4bbf8103b1e52e6ee1a50f15b85ad34df6830897d36b12f3783951d415c60b57e6175c48f3e9b04f6055d646d1f33d081

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabE708.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarE7A7.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit