Overview

overview

10

Static

static

3

Archive/Installer.exe

windows7-x64

3

Archive/Installer.exe

windows10-2004-x64

10

Archive/pu...e.html

windows7-x64

3

Archive/pu...e.html

windows10-2004-x64

3

Archive/pu...e.html

windows7-x64

3

Archive/pu...e.html

windows10-2004-x64

3

Archive/pu...e.html

windows7-x64

3

Archive/pu...e.html

windows10-2004-x64

1

Archive/pu...e.html

windows7-x64

3

Archive/pu...e.html

windows10-2004-x64

3

Archive/pu...e.html

windows7-x64

3

Archive/pu...e.html

windows10-2004-x64

3

Archive/pu...e.html

windows7-x64

3

Archive/pu...e.html

windows10-2004-x64

3

Archive/pu...e.html

windows7-x64

3

Archive/pu...e.html

windows10-2004-x64

3

Archive/pu...e.html

windows7-x64

3

Archive/pu...e.html

windows10-2004-x64

1

Archive/pu...e.html

windows7-x64

3

Archive/pu...e.html

windows10-2004-x64

3

Archive/pu...e.html

windows7-x64

3

Archive/pu...e.html

windows10-2004-x64

3

Archive/pu...e.html

windows7-x64

3

Archive/pu...e.html

windows10-2004-x64

3

Archive/pu...e.html

windows7-x64

3

Archive/pu...e.html

windows10-2004-x64

3

Archive/pu...e.html

windows7-x64

3

Archive/pu...e.html

windows10-2004-x64

3

Archive/pu...e.html

windows7-x64

3

Archive/pu...e.html

windows10-2004-x64

3

Archive/pu...e.html

windows7-x64

3

Archive/pu...e.html

windows10-2004-x64

3

Analysis

  • max time kernel
    118s
  • max time network
    137s
  • platform
    windows7_x64
  • resource
    win7-20240903-en
  • resource tags

    arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
  • submitted
    06/09/2024, 06:11

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    Archive/public/ssa/eula_russian_bigpicture.html

  • Size

    22KB

  • MD5

    7e8fa1f7b22605b1d211d123f0ef3305

  • SHA1

    f084341ff754dd85f7b2bdde06df8b234c87500e

  • SHA256

    860c23b4e700e0a7612c9b44bc7ee162597357ed561eec9d2e9254886cc6e916

  • SHA512

    e3e203888cfda7f33afdf29d6af04f9ac80fdeea2b40deeaff7564136cb53d2c2b178d2028538b5b311edc03a3c783b3d78c52d666870d8add05c5a785afc0e9

  • SSDEEP

    384:inEnDIEGzWEzEf7qSFPZGevvdmRqC+ODIbI1Ml/uIGfjvvtptjnmnCShl7SUTuZ0:tNeFSRZIL+CguIGfLFptjnmnnLTyQL

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\Archive\public\ssa\eula_russian_bigpicture.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2380
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2380 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2904

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    3876f0f64e7b969e650a4f7bf48628a4

    SHA1

    0cd883893e364849a79372a2d05107a22ad78013

    SHA256

    46ae07796791c3ee4c50bdd0220f4d8ba600737869da8291b04bc5d66e822d9c

    SHA512

    b5e30dd155563402eac37720a6572e6b34defe4a985c296789e19c16226180de4acfd4b1a54637e35131efc6249aefee6803039fa3d2d73f5ed448748e482b30

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    f0d6beab24960d08e12b2524bfbada69

    SHA1

    80b11e6e99f56e1a515daa0a39dbc8a2a61bd050

    SHA256

    5e7677c3a2bd65892f1936696926d1333dcef530426ac16877407fefc9c2d191

    SHA512

    6f8eeae54162cb9d25b1ae587f419de8bdc21fb18c93e8cd793d21150e649b28d67863acac7b8d54284bdb8b97d378b3297704beb2d975023bff5050e231f0f7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    b05242d98bb8b5039e90bcfcc0ae2373

    SHA1

    109d646f7b490baa0e99c1721cc64c3a77dc30c6

    SHA256

    d9c26393410a8063a3fcb4ae994071544f6414bcb607494bcc07d33545e00b24

    SHA512

    49b833f10a51f8949c402ed0b1c06dc77ba12cb1d82d48566ebe23232dbe69942d1101540f834474ac06c643a882a7722cd890b122266b7f29322e1730813362

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    1643e2c000d6ab81f315a0e738a3107b

    SHA1

    e538470cb7e1d7bc16871a10f38b6ffd8b5f2a84

    SHA256

    e48e8e957706ef623a4270724bf5560cd577b5adb268003db7b36ba32a6df1ce

    SHA512

    47799cb622aa69455b9eed265f400f4b18f807d4884c4223c5b0ba674f85768a935506648a9b941d6beee27ff15add3bc963a2e1ec00820583311940cdc14bd7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    1c9ea0e8f9513facaa9848db60cf7d07

    SHA1

    5ab577b978bbbfec1632d6a1630e8d65f7eafef7

    SHA256

    9bf007f6eee3e2c6e9655b6df8e2b418038edab46b66176ba8fade9c14f33dbb

    SHA512

    a1bc9918528e1920fc0d872ff64e072a5a43ae2eb6cf811dc6285dafd0600a86343570e569a70d315bb1520217daf65309b79492fec21d7ee7a9986d26a0779b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    c5b19a6ccf99c6cdd2403d2beae26410

    SHA1

    e7049a9e1d61cf7ebf9e471b89c853527cfed4cc

    SHA256

    4dc6afda825cb741460f01bc28dd03b4b5febfc4670a86b5c03c21c1b25d8111

    SHA512

    8234a17c49f4e4dd9a9e7d03479744e21f8a800b658b16e68ee529e58d35f366ea7b000487645f6defa94ca0ddb67e25a5d7b61e018810584b9fa08f48f7cb46

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    2f5bd1bf1319dbc6428b1c2338f0e665

    SHA1

    2ef1170b4d79f50f31e11002e05bc9573e215fad

    SHA256

    ca1fa5249a17a111898049f381046abf5935dbcbf4d7d097cd845fd70acb7214

    SHA512

    4860a6679e43c883a5f49b3af97b21af9a0fb58e20537345004d1121268fab320af145c985b3be20b78fea9baa85b7178cffc5586f34fb72f280bd9f5a14e47d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    62cb4cb2c2ec68108d67e7b7e78af206

    SHA1

    eed04a4764a2827c7b96dfedfe753a73c7dc576e

    SHA256

    54d9e2dbeac2e02b2236dc6708be54950b24e2dfefdad8aa31b03b8bdf95e485

    SHA512

    2ea15659901b96a8b81aaf160ef3c76cd43260e7b919b0e386d788f4f91f6d6ff3a69a3237e73bf2968f2513ccbb61e5ac3aa60e95423f1565e6c85a9c36a733

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    e49bbe0069f828f3719bf1a2ea37004a

    SHA1

    af2b3167cf3a3a3ed66602ec1999c01fcd45d594

    SHA256

    72dab80df8f379976a80af5704bc6110fe700604610e7da506d2ce0a3c3b45d5

    SHA512

    dabd4bb49293a9fb4b98a1e9173afba82384441c9ae0a1dd9eefcb1e7fd1b7ca61be0ac15015488a60991d4e7a06957fffcfc424ba91d6484e4c0f39a485b0a6

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    b0ab93bf1490f322858e28414ae61035

    SHA1

    30314a5d65a1ee35dac6e880a8982aea99221e93

    SHA256

    3753291d1f2aae212836de5dea43bcf3bbd9e2f795c00afa644c9d711da8489b

    SHA512

    03f6f98cd62002388a5c43f1b44378172f62e389c00c9c56226647973b737fac81e0e1b9318daef0689e01dd1b8b64a906c64ab48ab8eff3f4fa7ac5a6f4f30e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    a16ec33cb0b8736c0c67f7065f693f95

    SHA1

    ae4cd7e64acb1f8720ad970d52b98e48368bfb1e

    SHA256

    8ac05939da460411fecb29e1147af91173ab78fd11aee2bc51aea73b5c81425d

    SHA512

    9612add2b3addf16043a21e391638ef663851b4dd284b1484bf9b123e9c262b5602558fd9afa1ae470ca4c99b550664b3c9d0108a9981649a60e21e581152ef5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    1f79cc849d69d74496f2ccb280631dd9

    SHA1

    0abdf51063a715f9457936b0903021ff0fd67ad7

    SHA256

    0446ff2dd43d963d13bb20bb3cd9cbd8bc22d316312eac8efa4a14baa6fa799a

    SHA512

    a2ced761d74e292fb0aea0ec6e17bbd4237c438463e79ee58af8f8d51c97529baf99be9f3de7189744a6b6a56bab09a3da9655ef028a742c2dece6209a93f7ed

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    dda2ec637ed31fc4a83a1fd9bca19329

    SHA1

    67afc7b983127a9984058feb686b458af18c96a5

    SHA256

    f6c91a64f9aba4b8810432d26911e866686562921c444b4d62ce987f1fa37337

    SHA512

    4f74da642af15e24c0fb5a6ff76d407ece9e4e843998ccb9f73a2f97a74e0edf7d497ede59599c9581a531b43510585f10c59a04adce34af5df5ffaccc72e640

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    7d5cf7c8f6a357645409ef9b904d7127

    SHA1

    5bbc72fad2e0e4e0527f019bb1ae41da87885990

    SHA256

    ed1a3083c029d9fdeabb9464de01977fc20f0d4a5845c4c3d2a0044c826b1b83

    SHA512

    686e3cf761b0c2ca3e3b810d14612720b85b3a72639d99db21e79eee352a4cb045184f228e23486dbde1ab31dd7ecc2a2c16c137e097efbf26cf9f6a6fc17631

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    fe1f7ac2d9b8c71360876dfbf91cdf90

    SHA1

    cebf54575e0bb2e064987f7aec6936ff78baee03

    SHA256

    1592ea5f18b64ecfc9066ba97a2d8e5e507731e4ced1c0435493c4067bed4ed1

    SHA512

    0a9b690a690dd251cb513d5ec52d56995061bee9f7639c4a7f8d8bff10c1fd783f8371c99b52d2f27ff143abe0b1ecd4a819dc56dd416a8da3f7e29b78febcf1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    d5a4537f00da2c3ff06df80ab0eddbed

    SHA1

    47e7cafb65c109c71dd1302e9a0e5be2ea227ea9

    SHA256

    b950f499f8ba757bbd0af715358b94b2548e4c9fca213d10fe87f751c5c6cb3b

    SHA512

    4a078c8bd66ce3657cff00549f6255187777ba8fce560a46b585a0ff985af24ecac4d08dbabe45195e930002c3d84cf4222f550cd16d7d616f60e74e43d3197d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    e6b52d6c83ff3691968c675fed7aec76

    SHA1

    ec51214c51fd8151c8be63e69b012aa18cbd747d

    SHA256

    a2bc82dbcdc3d2aee4383db8856a3108e6500a34ff53a46c43b7e59e9e87afd3

    SHA512

    27741075b962064af228f058a52a48e625fcb8f0795885fe7dcb22d14b2597ae83ce5485a01c6dd8add9cfe434036fb815b0ffe8a0d997da97048c15daa3045d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    d43b34c5a3ad755526f6ca2c7826bae1

    SHA1

    5217119329e637606640475eb52bfbc8e4036637

    SHA256

    b73db066e48a16490fc51c91b705857990f9f5aa45a69076b7bae149492e54b5

    SHA512

    3ee570fd2ee3d0932b9f7467950110a9f3423e5bce3570a8bc87f9c2337a784ce04e568421cb08421582113cc919cfa5c72dbfae2e0411c082c5bbc0dd29bb04

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    d15d0831064eb794adb6acdee2a3bba8

    SHA1

    67c0f2c0667f8f585da9d74eef6d9a96b9d21126

    SHA256

    6a51835b967509f0058ac1fc2104e46a32789d28be09b59df046f6060f543765

    SHA512

    45b15b5a28084ff87ae7abff7edc0b5db614cf331812e4ad060f8225854fb5bafecb8ad025de6b4fa5069197e96d34b957d46dbec2e75055f94c17ad7f5178eb

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    ca905fe2b8ef669c38ece14f28121e1e

    SHA1

    e24158b78ae7c63b97f375e45d80431e1d775130

    SHA256

    021ffa106c635887828a742a40c4b44f516a07208d93ec68514c8cb037777907

    SHA512

    89e0f56ad194e55cde045c089d10627514509af4c6cf2751a6d036e08dd3549afcb6afa3eb7690fa5bf678ff36b64611378421ec3d402d883264566f68e76918

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabA279.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarA338.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit