Overview

overview

3

Static

static

1

tinymce_3_...log.js

windows7-x64

3

tinymce_3_...log.js

windows10-2004-x64

3

tinymce_3_...l.html

windows7-x64

3

tinymce_3_...l.html

windows10-2004-x64

3

tinymce_3_...x.html

windows7-x64

3

tinymce_3_...x.html

windows10-2004-x64

3

tinymce_3_...ist.js

windows7-x64

3

tinymce_3_...ist.js

windows10-2004-x64

3

tinymce_3_...ist.js

windows7-x64

3

tinymce_3_...ist.js

windows10-2004-x64

3

tinymce_3_...ist.js

windows7-x64

3

tinymce_3_...ist.js

windows10-2004-x64

3

tinymce_3_...ist.js

windows7-x64

3

tinymce_3_...ist.js

windows10-2004-x64

3

tinymce_3_...u.html

windows7-x64

3

tinymce_3_...u.html

windows10-2004-x64

3

tinymce_3_...e.html

windows7-x64

3

tinymce_3_...e.html

windows10-2004-x64

3

tinymce_3_...s.html

windows7-x64

3

tinymce_3_...s.html

windows10-2004-x64

3

tinymce_3_...t1.htm

windows7-x64

3

tinymce_3_...t1.htm

windows10-2004-x64

3

tinymce_3_...t1.htm

windows7-x64

3

tinymce_3_...t1.htm

windows10-2004-x64

3

tinymce_3_...e.html

windows7-x64

3

tinymce_3_...e.html

windows10-2004-x64

3

tinymce_3_...d.html

windows7-x64

3

tinymce_3_...d.html

windows10-2004-x64

3

tinymce_3_.../en.js

windows7-x64

3

tinymce_3_.../en.js

windows10-2004-x64

3

tinymce_3_.../zh.js

windows7-x64

3

tinymce_3_.../zh.js

windows10-2004-x64

3

Analysis

  • max time kernel
    121s
  • max time network
    126s
  • platform
    windows7_x64
  • resource
    win7-20240903-en
  • resource tags

    arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
  • submitted
    07/09/2024, 07:52

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    tinymce_3_2_4_1_htmlbird/examples/word.html

  • Size

    2KB

  • MD5

    10f0df449d5489616ff3d9b1c7ef6ba9

  • SHA1

    e93999ea132a9a0854362141cb9b70f39bf4ca83

  • SHA256

    b9642915768368973103a1f0dc173a745aa311f7895ae1dbb0c7719d282a18f8

  • SHA512

    a7819109bba73bbd30c3439a6618eb7736f40580ebfbdb065f47a6ded1c4a4e60af7b2d005c5693139e62a57a6e36f24379b88353c52cac44f0efd5ea18ee16c

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 38 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\tinymce_3_2_4_1_htmlbird\examples\word.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2712
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2712 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2704

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          4a946f6cc72f525efe7fb60a6fa34787

          SHA1

          ea08863e9095a6733710d37e26da1ef690646f56

          SHA256

          106f167b626ef2616caa1b194f7e807fc3c3ca79a2dd728cf60303ce757635e6

          SHA512

          774df2e4bda97a1f574022d944fa07ebd38f3fd3d5bd4a5edb728e71c85763351b490bbd5f57cccc045f1f9a248508cd91124bbc9a64a4acd7a375562131e584

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          3d8a7adcc5439a95a192ec65bb5e5acf

          SHA1

          84411ecf4db4480c3b525f23787666d4285f6502

          SHA256

          13fc4e5c9127453589407d8e4d6aa9ab80ee68fe12b6b13a473893041a4f4e0f

          SHA512

          fd6dec52de44221e7f866a8965c3ab41a8730857a9cfa6430cb531afc44def13b5a48eda01c29a7d021f69a40eaf3bb2d4b71b29cba971fe2bc422d08c0dd97f

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          0f4d20cdc5259f5a251c6716627ed7d5

          SHA1

          b7971642d25f926293b8e07532fcda6e226155a7

          SHA256

          5819ca502670881788d86f6a96f5ca149c3a24dce554a22138d963be5dc24b9f

          SHA512

          cbd0dbe35a394e132381071745e136aa367d2b74f84817bbe7bf80ba37925afebff8f3edece51f8f21a2c4aa4cc6511b6941d2b3fa3a05ca8e49d26f3411dbf8

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          acae6a8d55406e1555c6c1bf53b041de

          SHA1

          9a5308fb2afd2e946fa88a336a977d6779c5c5e2

          SHA256

          661f81ee52d2ec63a766866c72974456fd7c4c79f2e506a4eb9a33592a353215

          SHA512

          668e1d8369f66b3904d2beebcce4737e3cd1051456b1c6f834205d37a77c00b2d5af586975e8320f23c97e951706c9f9c85b47ef7bbd1770d04529564eaec4b5

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          8ea98bdd2035e876af328c2fdfb75982

          SHA1

          5d8015d4a640a76848706e6d863a52ce427749e2

          SHA256

          aee0f14b63a3ed9c3ee98fbe8b6651148512ba9fd30a0ea558f08da7026a1f36

          SHA512

          3bc7311a7d4f21826a4fb1538fd73fbe85d4c6f5202e22ba0acc612136b443161ea8dfe49384ef891c45400630beed03de071054c169933a7cf727f577c283c0

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          e9ac8d309788e4892f2c5a50b90a234b

          SHA1

          488bd7f9abc967ad493832445e25f98c0b89db11

          SHA256

          2adf928fd6ddad6b46756bf002c5ea3e88b957f1a082d2f7a5cf572017a84d4b

          SHA512

          3c634897c62a672434c3916be5047c5c0271aaf60d09f04e722aab37e29275d2bd0b7cfaeeb056c2a35884538134d66387e31afdbf98dcf562051aaf91d50408

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          86e918c5f6e13b492a980dc16ad416d3

          SHA1

          1ff697f4a7207c1035014c79029cf7780faf58b6

          SHA256

          96ae6e386b01992b9119cc95de11c5460e887afe919107e1b5ec9c53c8eaae8a

          SHA512

          1824297bf387918b9121e772dde408271534984ebeae03b81ffe4cd101a0c059fe79e1d43b611fdce283cbafb92d18252a9566ddbc32c4a17dec0f8fadf75e2d

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          e3994f77a68446285470f6dc50c5cdc2

          SHA1

          f143d1b2a9a24d810c443ec9e628f7e132b0f876

          SHA256

          1c280967b311bb6ea20cbbfd3a0fa0f82bb50964edb9aa724f351596ca8e47c6

          SHA512

          882d872e5fea165e241d28c13a32ec35df576011d51a15ed861c509803b6f0c39c743c4401d7fbae4a17f3d5fa7d5ef9fa6d2b5498615ed741291c52db352a0a

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          a868d270e4d35ec5256e471c6deb4aee

          SHA1

          88eba011143aa50f7d414611e0f9cfa29576bb52

          SHA256

          1d9cf2a7654a33129aa03896dfdc5ead85e17e5bcecaed877f764a19b86f382d

          SHA512

          be3ee3bc1b71ae40f64143634a2d83671cedb1383a8ba093346f17d700720d58f1d7c83523f9e5b96fbbb21642f24cda02dbb598b96fbbe0ddcf1e5580cd5d69

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          c026dab1cd06679d1ee3168a46e2bf95

          SHA1

          a3a494133ba874e319a3738e815befd843fcb2a9

          SHA256

          b82f113e923cb4836d7e5ff18f38a7bc86695fd45cc08eab82290700fc78e97d

          SHA512

          bd5223f26ab170d75a7ff45c23c566888d11e48c0153753962fa30fe877bbf73a37b1a1bb560ee701602a9d0d272dd786817890f7c732606d81af69749b5bb76

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          5dbc7390e5656cf2e8431b0c5b42fde1

          SHA1

          0d50ef78cbcbbdd1c0ac31f97148ecc9f492c0d5

          SHA256

          097cc48aa8ca2f03e13b96d6840ac0f613095559592f1d8198157dc404bf8474

          SHA512

          7b57a35390dea8b6b7bd8df357c18e4ce8102175e5b2e3a839a42cedaf036093c704a1a0eb25f3193c20c1bcd0f3888bcab3fe1e5deb57ea90062b8c20aa810d

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          0c62ec230849212a595c3f1c5deca131

          SHA1

          6497d52eee2e62adadcee5d06ddd2d570750ac1f

          SHA256

          a3f28113b43733f90ba59ede870fb54d944cd3750e47b7bbf40125cc41b1251c

          SHA512

          fc35d3115544655cf36147cb2b6781d3ddb2e68ce265d9b77ab1bf63cce42cb9dc759cd6d2192abc6a4d0c9cb4ca6cb5e91fcc4c41cb3f8e33cc8ee3eecd687b

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          302bc45a8d723a036cde7764c5c63b0a

          SHA1

          b4464805dc81e411a9483d90404cce0a9864c6c9

          SHA256

          f76634878a706b1d76c769701386e69e20023c182b6dd0d0cbb624d44d0a1912

          SHA512

          6385ababeca8e6f0b6a8c8523e3c60c6a52211de3a80d09fb99acf86bbeded4b62da667e9ed78fb1468c2c2dbb8439d7ec12112b8e7f579514c4ff7ce5687202

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          e6f09f41ef310837d28543f3ad3f1faf

          SHA1

          a7d0abd98e6e3dc631317e8e05b888051b264670

          SHA256

          816a1aab7e3566af011a14dc0237aa8d8b5f2a2692b38bd94d99293088d41fc1

          SHA512

          735e97fbf51568e6b473389ad25193056a38b15f058537b4c8399709ceb022a7cd73b28d95d118adae9c9084799b996cd145244d25bfa5c4562ccc0f6c559fdf

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          ec4dfa92e2c1ea0f0ae4f2a6b98e8268

          SHA1

          d9efffa22d23632276cb627086f45a22bddc4bca

          SHA256

          e56a85b8ed672135c070265ab3e574a23e0e3c30eeb6f4d851a2fbe1a724dbb4

          SHA512

          a6f68f2f69fabbe6bef24fa1459cb5723786dcfb915028ff87d3349f84ca9dda893f2d35b57913eeb92bb61695566bfd1be5cca8e7d4f79c16d7f26cb7e1e331

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          a7994e966ca71588ed3b0af159d6598b

          SHA1

          963dfdd97dd13821485d9f2f604009b68ab5ac8c

          SHA256

          639351f37f3d1f3038f81b9bdf8f62682ddac98c8c6dc78b46a374b9061c80b3

          SHA512

          c8ead5c04ae93e4246c1ab8ebf51290c0427cb9d79af7759a78f23d901e8b481e31a04bc8f28d3db74297d275a9b459252ba1caedab7cb57eb485e7b4e5c7932

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          3fa3ffa01fb9218eefb0a1b9fa29b85e

          SHA1

          25b7eab7044dbc42c01f52900d1e0df4fd9750bd

          SHA256

          123d43efacf56abf205612dc5c8bc8b266be04a3e56c0945f3eaf38e4ee637d8

          SHA512

          365012bd2bed382545445e368adeecded0f7cd9c3e94f13d50053c7319c070cac4522ed0b8fc6d83488a1f1365c3708861348ef1adeb4fa33c3a1552886d4aa8

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          09a9093f2abee5464d655aac7fc44ed2

          SHA1

          b304fc9733b19c5d9c636a5d75aaf9d27cd5fe82

          SHA256

          6ad4cceef6ccbb20f214983eff1d6d5ea2a11eca2907aa5038e6e0137a11bc71

          SHA512

          4084ef66650cdccd85af1e4a239ee61b8e3900a8b46617fbd8085e22a046fe5c8e182af6331cfee434ce9293f108d5b4dd7360983a538da9023a19c2163a27b5

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          23befa3f7a34a6b2380bd50ca528f0e5

          SHA1

          6bd9c54756196e8e0db6975040c7a39abd242b56

          SHA256

          2f29040e95dc4850b129d023b1eef3cf6de8439d5aa51ea6b86a25da22fce85d

          SHA512

          cfa9f36e9873ae9a189dafe37d827572f3804cba099bd6cba719dac31fd00d0e145a84bce433aedb81d2765e94d8a346adb9728aa4c8a99c4b16dcc137ec9573

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          e9b0087fcf4be515a55dfef526a94b2d

          SHA1

          8e3b2297adde042bda52ca54d27cf20a965b8a29

          SHA256

          651cf635d3c97127784befb7200cfbb05bec5929847d164bcdb950656893c29f

          SHA512

          8aa33444fbfe6afee4b4f118fa625debe1da8ebb14c124fc0a9bdc34d01b82abfcfc447da35f4236f05568eb564ae2ff582b47ee06ea89d070489dd9355d7f63

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\Cab55AF.tmp
          Filesize

          70KB

          MD5

          49aebf8cbd62d92ac215b2923fb1b9f5

          SHA1

          1723be06719828dda65ad804298d0431f6aff976

          SHA256

          b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

          SHA512

          bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\Tar567F.tmp
          Filesize

          181KB

          MD5

          4ea6026cf93ec6338144661bf1202cd1

          SHA1

          a1dec9044f750ad887935a01430bf49322fbdcb7

          SHA256

          8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

          SHA512

          6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

          Download Submit