Overview

overview

7

Static

static

7

d988149f1c...18.exe

windows7-x64

3

d988149f1c...18.exe

windows10-2004-x64

3

$PLUGINSDI...nt.dll

windows7-x64

3

$PLUGINSDI...nt.dll

windows10-2004-x64

3

$PLUGINSDI...RL.dll

windows7-x64

3

$PLUGINSDI...RL.dll

windows10-2004-x64

3

$PLUGINSDI...dl.dll

windows7-x64

3

$PLUGINSDI...dl.dll

windows10-2004-x64

3

$PLUGINSDI...eb.dll

windows7-x64

3

$PLUGINSDI...eb.dll

windows10-2004-x64

3

$PLUGINSDI...ss.dll

windows7-x64

3

$PLUGINSDI...ss.dll

windows10-2004-x64

3

$PLUGINSDI...nit.js

windows7-x64

3

$PLUGINSDI...nit.js

windows10-2004-x64

3

$PLUGINSDI...e.html

windows7-x64

3

$PLUGINSDI...e.html

windows10-2004-x64

3

$PLUGINSDI...ge.dll

windows7-x64

3

$PLUGINSDI...ge.dll

windows10-2004-x64

3

$PLUGINSDI...n12.js

windows7-x64

3

$PLUGINSDI...n12.js

windows10-2004-x64

3

$PLUGINSDI...ime.js

windows7-x64

3

$PLUGINSDI...ime.js

windows10-2004-x64

3

$PLUGINSDI...ket.js

windows7-x64

3

$PLUGINSDI...ket.js

windows10-2004-x64

3

$PLUGINSDI...ftp.js

windows7-x64

3

$PLUGINSDI...ftp.js

windows10-2004-x64

3

$PLUGINSDI...ttp.js

windows7-x64

3

$PLUGINSDI...ttp.js

windows10-2004-x64

3

$PLUGINSDI.../tp.js

windows7-x64

3

$PLUGINSDI.../tp.js

windows10-2004-x64

3

$PLUGINSDI...re.dll

windows7-x64

3

$PLUGINSDI...re.dll

windows10-2004-x64

3

Analysis

  • max time kernel
    119s
  • max time network
    128s
  • platform
    windows7_x64
  • resource
    win7-20240903-en
  • resource tags

    arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
  • submitted
    11/09/2024, 03:27

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    $PLUGINSDIR/IntegratedOffer-Truste.html

  • Size

    9KB

  • MD5

    5951e0e6dce014feb870dbd45ffd301b

  • SHA1

    f34ef36abf7004a8646e5e7e468ff21cab5730bc

  • SHA256

    38cc5d151c99170fea208df9e9184c67e31486788e44194e01234f98948247e8

  • SHA512

    0a37624751e09cc25f924e622f53f1e32624669045ad20d43f592a660e878f5b8cf42c400371f99ef2dda069152873439db7dbf3ef20881afa08ec241b0a39fd

  • SSDEEP

    96:dsEkV5dynO/34r5kGk1wqJqQ149JOnQlVewEe399xkEEl93s5SzZCBskp:v65InW34kGka874OqnHrxbEl93fMBN

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\$PLUGINSDIR\IntegratedOffer-Truste.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2104
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2104 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2980

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          55f240b765f79151adfa2ab56bd1d9f8

          SHA1

          de220545332da9614d1b860ac3283e1955b98baf

          SHA256

          b8268a853c38e08f6200884f357c165021f147bcf0cf373f0da57249e2e1fa98

          SHA512

          097d1ce63f60bb4a01cebf83dae9dd186ddd2ce355c43e70df2178094ab6318a94ea38ce1891e458326fd296bb9d1f07dcfc4944c1d15f4719f130372976fe55

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          0ea5d15f92d13fb90d4d9079e89c5364

          SHA1

          bbfb7efe854803e01e0e787183f38efa5b9038f0

          SHA256

          8d3a8df713160e1427640c47df561647be03bec2bb04d8130a950e93afb549ec

          SHA512

          5934fa9266f00ba8cd2be3d92d1d24b3683d7c7b472ecf6e3bd4bc211d63d192151fad91fd5aba35768a5e251c14944054e8c88d816a47f1b3019cfafab0c08f

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          489a190cff8d72d965c9171741f05ac7

          SHA1

          5ddbf28fba1e8fa935b107fbf6327f1260ac0c85

          SHA256

          7e04a652d28c6865cbedf251f4d6aa6c7c81c5713a6dc2ded73e4e1120b0b276

          SHA512

          a9c7f7b825d094d721d6c7e350ad792625872d897060130fcc8800cb6dcf3988815b30113cb742a0cebffeed2dd0fdf053c754346cdd1257751372f9de0a9e3a

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          885ac8825b1ef66d20fb3ce681977154

          SHA1

          57f10ceb4294c055700b53c66a805f39effa7372

          SHA256

          0636dc8d997661c242fb1861c256dcab537c260c10f7e05e8a9084661cfb27bc

          SHA512

          4c8596bb2a1506f3e3974fc69454cb48409cd921d62c92464fbc1d77b0cca192e169e5de86333ca60683cd34d72279063bca06e93db30a7d620de72ed1939bd5

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          829dbe5a7ef9a058ae3fbaa44af58f97

          SHA1

          a46039d4df0f7c0102e21dc17557a39b33ad8408

          SHA256

          f36ca6f2545f6151b63e78de47fdad6faeb3b72f58e22ba0c71d16c3c3b43829

          SHA512

          55f222c19118398f13c8bd3b1a1f7a3c2e25aa2730207ee93751f3e598d09e2619688831207d55e47aa5918618704d3bdc38ff064d806862fd57b6bf92437029

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          0ca89311f5a08872b982d3052e1fc8e7

          SHA1

          d0c4b7ccaf986cba8b23d9fbd2fc61dce18291cc

          SHA256

          ef731fb9cd2aa93dc0e484cb04370bad569dbd45f8bee737e12771022e26b046

          SHA512

          1a650750f77034be91a581ca6b1132dae52f219091df5688b917e187022740bf820bdb7cccc19a028c94cffb6a77949410b916e20b890d3ca9de0fcbccf926f2

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          873eeafe19184fc88fee51cba621b09f

          SHA1

          9c48d02f7cb6bd3d1decd7fdfc78a62ca5b845a5

          SHA256

          b14f4bf936cc26252a7d61e687295c6931a2cea7c4428a2fdf97f45adf82398e

          SHA512

          9386d90b7b5130023a72cde5a87b0674dbb24a48a269ff92a44a1b2821a0e3128d2c68ca11c53406394c4051ee3f7d0f913ce44629258c33be8f9d1fa411daec

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          7624be4044793ed24c1c20208e51ebb1

          SHA1

          cd1cab381a412adada849fe969c3789eaed69a29

          SHA256

          62789cdccfdd358a1b4d0f14dca3fa61d847cb62960ad79175299edafbbc8816

          SHA512

          17afb260f6f73c9f9ea5e04f23f62829a5664b0a2d3d703de6afa2c886ed93a3b9f1e157c6d59d3eb52b7be369cce3e756baae7c5e522109c1be563547f77b13

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          2568c341ea57698427af0c31b14cce30

          SHA1

          c319df0a0762db3d511dafc81545fc99c42f8d42

          SHA256

          306a12f8370e74c0b7e904c5d904be7ed7f0eac5e9e8a940379659d9f57fc203

          SHA512

          fc72135f9630ec42a505c3a96b689b579921406bdd3eb8dfb062d47228a12f27940969a087984cbe5cc5efd890359f9c491996cda1f4b846107d2c118e56eddc

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          bce6584dc270fc5853712b765e09b41b

          SHA1

          2766704781478aed4cc11fe0d57dbf5d38dc997b

          SHA256

          a4070699c88d8358d322ec0ae7134b544862ae896acd71a38571778237946486

          SHA512

          8114707e38917bc3ef25911f059faf6d1144bebbffc2b5802ad98b934a22fa613bf9d6e6692abad06352aadbaf8310d1f9d1133089380d35bed2b65d63318334

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          a4f0cf4cba3e44c594a70782cf037c63

          SHA1

          cabfa07658dc8bb37be2df1e69c2187ccb29ec9f

          SHA256

          623fae4b2605a64ee822487ef7d76df0ad2a0f860ff997c6e8a61f112ad7e0bc

          SHA512

          676a3d5aec75d52b3c545042c3e29d6655ed7e99b679b6ad29c7605b0da5832c164e280e0b9b5348f263132e343b0ad8c9a8be2085c9c7aa239797070f232726

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          61bd744ae715b562d912333ec4b5a450

          SHA1

          924f5cccba7c106fefb6bb2f806051a19e90d574

          SHA256

          aecdf54566b3d57ebf3f35951b5782726a9d8e6ec1d15de3db68fe784650f565

          SHA512

          1d450caeee5006955badf74508e0fc70cd11809813fb4e5389499f1ba382c84d7e0d70bce4e889c2822f2e1952dbe82638981ace290020ce92e9abfc2cc135fe

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          e5099edabf3ec883756813be455cde8f

          SHA1

          f6fd6d30c2174588abdcdc3f224ca84d3ec370d6

          SHA256

          3dd0be893334d9cadaeb0b0bc5da58824d2d48da0c355d62d6fb4b610a0b9924

          SHA512

          fcd5f2dca915153a359e10f16054ae7dfb37f819e602467b02617165626bc4501073e352591d5995602b462e1a7faff241c6186f558fe4026aa5acd80821a35d

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          fe377a040ee73ba88abe0c7a602bca8d

          SHA1

          5abe9901a480749a81470ba32b0f2ada16b0ed28

          SHA256

          f1fdd16b59122508f561cca049756b57634c8164fe63546d040861c276b7ac2e

          SHA512

          ac51828eebbe30c2236c6fe9a1a3674c13da9cbff5d6b73f0cb103389200d97169de9209a7bf42481a1ab2e3491b0947af639c588ac2643fe1f8e1a4f77acf4b

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          f3f65e17befd5f4c4de59869e2339014

          SHA1

          a61ef989191cb2b5e911a4f5578f80ea6e472cb2

          SHA256

          3231b2686ae680470a03893de08af9c276277cfaa8a64d8daf5176a9103f694a

          SHA512

          93548f9d878c978ca8581cb8cc3f6de36b94ab7c5cff6059a3f5e60f40ad93853ffa62fb672be0a1eb12b59309a0322a4961ce289b58352b94cb082c6bbc7983

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          880f83bcd2a6f568ab61407dd57d8c9e

          SHA1

          a083f1480dde7069ff180098faa9075b5b99e8c5

          SHA256

          a47c7d90828e53fba2ac99296d2587b8fa4338929d84117cfae06d6e7910e907

          SHA512

          751e45db14b585c246488d8b9b6465553ec337f2b6c39c118f1ead4045faab4d97bf98ce2957ea78e7311084b06af2fa30f28f41e59130266dd8d1012e4cc25b

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          1db0bab31bd5cd92da2dfb610cb2596d

          SHA1

          7fd80602c67c8c29211337a70ce5e41a0023dcf5

          SHA256

          3cf1a065d9f80f27c6be38bff76ed909f401651795776fb8f80d3e25d47fcb81

          SHA512

          9fa5e900d532e2bc7f9f5702acb32392456a6d5d48b6a7c5123c08204536731736bfe574faaf369072c27ea67aa28aa8646356ae2d0266291b002a1e8a58b9ac

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          d38fb82d9d5845f3a63ca1a95f939276

          SHA1

          8052f8d327eb5a70fb859ddcc344c426c083f08d

          SHA256

          22d4f10bfcf51faba2bcda9da4d220e91755b97ac77dab70bff4d11cc5e128de

          SHA512

          40b63f0019bfed3c3bebc5455ab121d11b201653202c3611cd48b6c4e41b5621b347fb5342d122af507ee34c5911179f73a0a7f552723e2ede452ef8a40821b2

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          7170704ed583fd5831142cd4fb5871d5

          SHA1

          71dd94ed7cc1604fdd3f35a29b8165321adf4f79

          SHA256

          34f9c58124d620a0fe8532827990a8a094e64df800f3f096814cac91128101f4

          SHA512

          5e9e07cd90844cd881f4e2b8042fafffcb43713589f779b8aed65d2da89d1eb613e4efb78dbc5e6cf3f6dfdef2cbf8ddaf31eeae0545cd1c317c3f7113d9d2ad

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\CabE40B.tmp
          Filesize

          70KB

          MD5

          49aebf8cbd62d92ac215b2923fb1b9f5

          SHA1

          1723be06719828dda65ad804298d0431f6aff976

          SHA256

          b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

          SHA512

          bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\TarE4BA.tmp
          Filesize

          181KB

          MD5

          4ea6026cf93ec6338144661bf1202cd1

          SHA1

          a1dec9044f750ad887935a01430bf49322fbdcb7

          SHA256

          8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

          SHA512

          6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

          Download Submit