Overview

overview

10

Static

static

3

Archive/Installer.exe

windows7-x64

3

Archive/Installer.exe

windows10-2004-x64

10

Archive/pu...e.html

windows7-x64

3

Archive/pu...e.html

windows10-2004-x64

3

Archive/pu...e.html

windows7-x64

3

Archive/pu...e.html

windows10-2004-x64

3

Archive/pu...e.html

windows7-x64

3

Archive/pu...e.html

windows10-2004-x64

1

Archive/pu...e.html

windows7-x64

3

Archive/pu...e.html

windows10-2004-x64

3

Archive/pu...e.html

windows7-x64

3

Archive/pu...e.html

windows10-2004-x64

3

Archive/pu...e.html

windows7-x64

3

Archive/pu...e.html

windows10-2004-x64

3

Archive/pu...e.html

windows7-x64

3

Archive/pu...e.html

windows10-2004-x64

3

Archive/pu...e.html

windows7-x64

3

Archive/pu...e.html

windows10-2004-x64

1

Archive/pu...e.html

windows7-x64

3

Archive/pu...e.html

windows10-2004-x64

3

Archive/pu...e.html

windows7-x64

3

Archive/pu...e.html

windows10-2004-x64

3

Archive/pu...e.html

windows7-x64

3

Archive/pu...e.html

windows10-2004-x64

3

Archive/pu...e.html

windows7-x64

3

Archive/pu...e.html

windows10-2004-x64

3

Archive/pu...e.html

windows7-x64

3

Archive/pu...e.html

windows10-2004-x64

3

Archive/pu...e.html

windows7-x64

3

Archive/pu...e.html

windows10-2004-x64

3

Archive/pu...e.html

windows7-x64

3

Archive/pu...e.html

windows10-2004-x64

3

Analysis

  • max time kernel
    122s
  • max time network
    138s
  • platform
    windows7_x64
  • resource
    win7-20240903-en
  • resource tags

    arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
  • submitted
    06-09-2024 06:11

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    Archive/public/ssa/eula_french_bigpicture.html

  • Size

    12KB

  • MD5

    c8de2ec67d387682815b0fc3d8a15ca4

  • SHA1

    67da7e85738a304d7a6a862aa149233e36a484ec

  • SHA256

    616150f4aed8a39f818fe3bb19e76fb75af85f3bb304e2cc4a0a15c779795d2c

  • SHA512

    e797fdb7b73424ada7421ed7717d9d4f1be8f2069ebabd9d269ec4ae7a02685af6d6e8b3cda6c9e043fd04991de908dbb22ad258754db80689852cc657a17259

  • SSDEEP

    192:4HBduJI4gWP7SnCPZJUpv5Ql9UVDb7YEirK0zvos++p4/O1w6anhUKPsCw/:OBdutgQSn4ZWpRQlibsVzp++p4kgLsCu

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\Archive\public\ssa\eula_french_bigpicture.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2496
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2496 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2340

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    c55ab83c252372b22a9de2787f5c019e

    SHA1

    34f6cdfcacaa392c28aee9adbe5f9fcc22dbb115

    SHA256

    8d2968822f56c147e92cbfe7c8a2c7a656e13e634f9e72d8bea81f63e3eb7e56

    SHA512

    5859a5b41dadd8a86a38a1133eabcc336471cfaea06b2b89f26e4028f729f1eed17b75a024fea07fb7d8760530ee1aba01676640a24ab83b66de8fd96ad0bb66

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    ce40ac984d2a732ff92ac936e71ee47f

    SHA1

    07dbeb0478aa9e31498c0f8a1c74ac0d19b9a06b

    SHA256

    332f6713c0251e56c84a4ce42d802fd7fc2349f5615e33aa1507c328590c3c6f

    SHA512

    9427258073d8987f54ccaeca6ff1ee67244b92902b143b8aedfdb77121632edef369f4df4f815effd1af605ae83e1d54976f2c0141c15026ffc54c7b13fb75ac

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    07c36d01eb0c118f8786e4d59fe594bc

    SHA1

    06758e73ee42e36444ad1162fc9cd34d90dca81e

    SHA256

    1a29da7f85584bd13e91aa466c4409e5d15c4806c21d0950bf8168b7fabf0759

    SHA512

    d1addf2e2707d28f8112a0a50677f962a3d6f83044825e108f585319ab16426624c9ab2fff73d0a6e6973d8840d56bd967fb256b9d3704603034c4f06662e5c2

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    0739411bbfeb7115f74d098dd7f3aa6a

    SHA1

    df840f678a32cfa9131857bcfc620e67ef1bebca

    SHA256

    d4f5efeabad408f67f852d387afa593097981cbd90bf0197079ca626c462ec68

    SHA512

    a879c7447b0c2d95e3ceef2f4ec4504b2543a4d43497f0ddd7acb406a32299cd2ddacbe2fbab6364cac8d916764f57b5cf4f791f1742d6b148a3111304c4fb82

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    c94496cb1e8a781f4076fa2728896a4d

    SHA1

    abd1ae6a0e8be7a444c84db7acdb6d99c6eceb85

    SHA256

    79b0610a4418b3ae9be4368f0234e7a727fb0af86956517acdf7e4adcd23954b

    SHA512

    5ab6c7229fc0665c6f410fcd08cbe05417940ee7549a1f3f6288a349ebfe1f110d3bde0778549842df76c4b83a35c798b6d826c23623719e25e8197f8ecd4145

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    a8cf992cda4c435209daf7cabad3a58e

    SHA1

    b059b070a3e42c6ee24cb8c8eca77690658125fe

    SHA256

    93ab37f1515f88c7689e4791e31313fd1bfe0b648c649b1b7d43ba85d38b1ed7

    SHA512

    24f5ae70de72dcf1bf899222319537778f97f86c2515d4ff1436139f0bf1adc713a7bf7022329ab7d21337b8f67484a01ddf00e36cc583ca0e03b4a97cbe5345

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    3e714ebee6864b73b99385e4d2d6cfed

    SHA1

    a93ce95420c6163f69cd024c5d2a810eca31c22a

    SHA256

    fcffeb82cf456cb2f3e56446ddd6c26906925c825742b23076a25d74d502491e

    SHA512

    6f9ba0eb7938b2095d297d35b624623ac9fa62b65c2da1bf506d2d95787bb896cf68679a965a93438334dc8610b2095149ac6603e88380161016bcf29b5c9b94

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    7b85c4581a4b34be24ac45f780116d49

    SHA1

    53dc489afdeea4b2e88ddc6211aee7570837e089

    SHA256

    c86bdd3e3406704e776ca2f12a56313db751481c394def94dbcaf6b4f8ff9cd4

    SHA512

    ae2382e4d38745aba436d840562b83fa254edaf503b296d4d3935085c5dce38ac93c406674dbbe0bafb4db187051adc6bc4306c5c530ff60c20ebcc518af79cb

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    187c65f191791ec4714c25fed16a447a

    SHA1

    1b2c2fdc935897a2e60df8620c9d30c1e0d56dfd

    SHA256

    e4b24872ba06e5da660ca46548387daf235eb0a90fdede640a38df38278d1cce

    SHA512

    b6be3389e05e1b3043b9908528cfe7a47a09ba4857edb8ad189f7590ec727fdd2cec3977db36df616056d8a18ca14a808e60e97baa590cf49a5d6dd9dbbf7cd2

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    cfa3fbe0c7ef4b6fd1c0e9a54ee597b6

    SHA1

    dfb257959a6741f66af480bad3dedbabdfab1c3a

    SHA256

    9174004acda8c325ef3791dfb6a811f6072bea9f116bdf7e95bd7ed8901d5ce9

    SHA512

    48f6befd3afb5a7bf459aca2c3ae2c979c17fea153b6f3f0ea2d00de9490905dcf52bae5ea918929d783aee498809136a0dd334281706121f48b8e8ef6c0f33b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    09e3fd9e89da0800bc4bde21abdf1a89

    SHA1

    cd30dab61157e7b9805c830572003d823b4eaecb

    SHA256

    fc8ae22e649712eff2c9af30b9989953a5b8038ee85e1e28198c4045b006981b

    SHA512

    a9fb97afe31c9369077e77d0ebed4dd8beac32544244563b8ba416e27a7ac577d8ceb79f2cef09962361c6377627ed925b60361ea3e355aaa4124d5a71cf4a4a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    261ce55747bfb58aa1f93c2da2f269de

    SHA1

    26dea3d2a75291dea3195da27df09c805754d2d9

    SHA256

    affa2acf5d21daac336f60b0797d329afef9d6434b882f84412e4ce2e6c1c0ed

    SHA512

    3345ec87cab42492e1a436b218f5a5329d7701cb2e1d74743b888a443163316073d0abfab22dc1d00474bb8530a0ef30421afe301a9ac939c45edbfe429cdf1c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    3b31f4019fc989926b184d6556f05d5c

    SHA1

    4824ebede67687833d7894f116eb057ac8e1fb7c

    SHA256

    2fc6801a33e8843ff79afecfe9448dda60da61d6e7fcb3d15a181657e8272f32

    SHA512

    c6c3a3fd4da818f2fbc1133bc3c41df0c84de77c5419784897cecec34233bdc1bdddf490662896a5fe83382fe308faf4b4bf24a82768304e3cdc25ff8ba9635b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    9cec8cfbdeea99818d5de7ae56c52b90

    SHA1

    2c73882cd2ffa35f8082d06048ca61565422f344

    SHA256

    9365a4aca9f6cb68fa7fe42fb47b3522858fd6f6ef6b50616e4780ab88d9fdae

    SHA512

    5320561e1fb315e70445944bce7522f0bb98f4eb35c6ea955dc0327087ca1d47dd7b7077bb5a1618babd1b63512f0fe5eea7e793c6be23510ca9c0b00d3d7392

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    36bbd666880acf2978fe45dc9fe95cbc

    SHA1

    1bbecb4a42511dd0df45e68e8edcd881f185689d

    SHA256

    fb8130da2898ae0db3f96d4a241db654599926f3f460a356eca22efb54ac48cb

    SHA512

    8a4d0cb30c651de7b5ce561c24f964e535ebab58a2befdf375c34042769d3237660a077be5df956ddb4668b27bb6cddb3263d701dac9b12a525f2979908d4729

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    7504d3a6e9e73380ced1b125d8ab7cde

    SHA1

    2d71319596f9cd27e8dcf566e5e08f76e6a2c75b

    SHA256

    f69cc136da29571a50e9c698755b08ebcbf033cc1456213d1a7721ffda14250c

    SHA512

    f3097cb50fc823ec6c4197c40be3b3c55550e7c58ba4e1e6b2a3382cb6ac8f109bbc687bb366c7ac86ba7c5b04a03be507a56f238ca12d2e37e28b99f9078633

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    c4fdf699f6c9db8a83b8e707bbdce443

    SHA1

    aff75017b64989e5b7e80de1368abfceb2c578bb

    SHA256

    88c831b43d4839cbf013ae6d5141b1bc069aa4e28dacd2c348e5a68a2505495b

    SHA512

    265739accc4b751f2bedd94da5971d14bbe1e80aef6e291f0374744e43c4d5e35a51d32387ee6edcfbbdf46090a8d805b1e79a7b4e6190a21350a754f9acd9cc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    3f19ede90b35086a5f7e18e39adc3e21

    SHA1

    cbc99e2a1db121377ed5096bff0f02a0591188ff

    SHA256

    5b22b141618e60b7c0923c7c680a9665c12e5e9d8aff67ef4da22acddbefdd1e

    SHA512

    4fdd6fea04f96e6c5a396746899151f9b9bf00eb19f686b8fbdbeffa9e3273a1036258d1a5ce58add3cc7bfa20ef7b942a5d5327d489be75b5f214dde9623ea2

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    0385aa1340f1c311723a458f11322d87

    SHA1

    aca83a3ff1d0a88a96bd8bd974571cc29a00fe5c

    SHA256

    c4792d713624b9025271c175c7780e8c4eb36878f076577c39f8cb574ae12a55

    SHA512

    642d324b6486421498236d92c0bff439768c87a8438855d7a78fbc9440574cae3ecda4e1c52dae6d7d301c6e910c2374b2d7476412a5ea9567ba6bd8ff38b661

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabC05.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarCF2.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit