Overview

overview

3

Static

static

1

ad.asp

windows7-x64

3

ad.asp

windows10-2004-x64

3

add.vbs

windows7-x64

1

add.vbs

windows10-2004-x64

1

add_bclass.asp

windows7-x64

3

add_bclass.asp

windows10-2004-x64

3

add_bclass_save.asp

windows7-x64

3

add_bclass_save.asp

windows10-2004-x64

3

add_sclass.asp

windows7-x64

3

add_sclass.asp

windows10-2004-x64

3

add_sclass_save.asp

windows7-x64

3

add_sclass_save.asp

windows10-2004-x64

3

admin.vbs

windows7-x64

1

admin.vbs

windows10-2004-x64

1

ajax_select.vbs

windows7-x64

1

ajax_select.vbs

windows10-2004-x64

1

axingweb_z....0.asp

windows7-x64

3

axingweb_z....0.asp

windows10-2004-x64

3

by.asp

windows7-x64

3

by.asp

windows10-2004-x64

3

class.asp

windows7-x64

3

class.asp

windows10-2004-x64

3

class_co.vbs

windows7-x64

1

class_co.vbs

windows10-2004-x64

1

class_more.vbs

windows7-x64

1

class_more.vbs

windows10-2004-x64

1

class_url.vbs

windows7-x64

1

class_url.vbs

windows10-2004-x64

1

class_url.htm

windows7-x64

3

class_url.htm

windows10-2004-x64

3

dig.vbs

windows7-x64

1

dig.vbs

windows10-2004-x64

1

Analysis

  • max time kernel
    120s
  • max time network
    134s
  • platform
    windows7_x64
  • resource
    win7-20240903-en
  • resource tags

    arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
  • submitted
    13-09-2024 18:09

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    class_url.htm

  • Size

    2B

  • MD5

    81051bcc2cf1bedf378224b0a93e2877

  • SHA1

    ba8ab5a0280b953aa97435ff8946cbcbb2755a27

  • SHA256

    7eb70257593da06f682a3ddda54a9d260d4fc514f645237f5ca74b08f8da61a6

  • SHA512

    1b302a2f1e624a5fb5ad94ddc4e5f8bfd74d26fa37512d0e5face303d8c40eee0d0ffa3649f5da43f439914d128166cb6c4774a7caa3b174d7535451eb697b5d

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\class_url.htm
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2112
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2112 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2832

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    4d186bb8048ed8a8bfa0cee51fc825a7

    SHA1

    e7de3b8c60268b7b397a6ecec3f99bc2325d2ba6

    SHA256

    ae333d5820c3e2e6d04c6175b790becef5633ce713712b45a5d8665277f8a7a2

    SHA512

    bf475befe43c95fb822db0d05599f5a05320aa038533f177ab81b3394e432311ced4a2a4f3472a5e080f2901ea883d38f5401c09a49142d1564d3f3fca47d365

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    e760b32ba13a0ccc77b48ab13606e39d

    SHA1

    fb83ea1d044f3c555fa2d8fa345622d98493f1df

    SHA256

    59d64048d15106b822a072894a96be96bfcbe51d58356505df619ce67392e4e8

    SHA512

    7f955ea5e06da3611816d99f48f285956cca0e849e78edea050b2742cd63aecb870f241ebd51a1ee15999f77ac94e9fe38e1405d13ad6168a555a191d7e9d9bd

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    7a34af699644cf807c6aa554d0473a90

    SHA1

    d99e819797454d669ab362e840a1c5746ca2bf48

    SHA256

    9679df5856ac8d712e0a08bdbf7b7bafd7a9b800553044da4b28b7a523619ab0

    SHA512

    881f70ed080582e7d2d1372f23b0bfc72bb27a9043e98e2c0c7f0a187e06ade07253d1806eda8acdd8f2d934081dee03d0d2f3b1799892a2c04a113a80c18806

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    1fcec046100eba23c56ea2e2f0dee097

    SHA1

    b5ff2b041c4e97c0dae47b2d13be811b71bac6c1

    SHA256

    3479fb08456f916f564fc879ad7791aafe7a74eba3dea5bc4e87794f43a41a74

    SHA512

    c3194b950381f6fddf5041f888ac0d794ed3b3acd639f7136ef4dc39971ec8160877648d991754ea28f2e0e542e924eb8442f1684d98e919486ca81121525ea0

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    db680f4704878a42d1665268843e31e5

    SHA1

    e1e040f5a7903c7eaf5bdb5a5236686bb9971d92

    SHA256

    c0f79567b7190cb338d8c2f9f6e11dfd277661a38a7acda14d9565e7ca160c89

    SHA512

    58feb2183c38386d4a948b91f579cdae68c7295ee180014cadfdffed6280f97e52c83525f8d1929efc82ec0a903df2af0f926c11a1a02edb433267708bb3c9b1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    dbb07fc4eeda005d13191c8c5760513c

    SHA1

    8f80f13a3ca49000d1724e3e09759f017c22815f

    SHA256

    b43bff7bda0d9246f1f3d765f7d6aeeec34b4d12f1fd1437c5eb634e1052aa17

    SHA512

    89d09ab5b5ce7c83b456c025b18151af120b2dadcbbbb5e7d44f36315890a34f5160795f0e0376408cc0d58716290c788e8793b6a1a0baf99b931e54ae5ff5d3

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    2073a226bc0c4fba6c4f40b2d9347093

    SHA1

    064838806cec4210f32d58ba59712b37ca6c01eb

    SHA256

    201d844f2a9e9162996796ea1195f12814453513d7210f1f49bda0d3fb29d998

    SHA512

    c53b9d99b8d700c3f5c067874258e96f98fdca54a785bf7ede090cab918feae71843a060ed26a0db77de665ab39e80f3c8f283fb6e19dac5286a945740e52b6a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    8fa99b8218671abfc0d71018e73a9b0d

    SHA1

    3958cb7cfbcf411d1ddff7864e577d7176d04f76

    SHA256

    4c971e0ac292127de4d812c74521946a9e1d08fb36eeaa80589961ef91c8649b

    SHA512

    ba7a3c345ca038ab30d9677c35c08961eff6558cc4cc651053f6e559bb067f85320fcc5b7978b9ae980f0112c1b3e52b7b2521a1a23cf9b091ed6cb2f93c0ae2

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    3de79761b6f2a93aee7e06b3865c3d42

    SHA1

    e2465cc19689690cf04db498d0379be76bf5ab64

    SHA256

    261d0215e7ff9836ae43a30e59cc046ca3ce0c1e1970ac4fb713ecc83b602d8d

    SHA512

    e005ebbee2dbf0533f56a581a858233d84dabc7cb2f61bccc55ae4adb6ccdbe97947f8303976f79c98ab218ec8cb9f50e5b03a9260f60e65895dc7048aacaee6

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    c092fb46f836287d859dc41e70d3fa5c

    SHA1

    eee00e36f34bee10ba1d0f7944c7b90895f7b441

    SHA256

    cd022eaf4bff06e42f10eadc0b7d0707ec9cd7f36a2ff4754757d28a4ded8468

    SHA512

    1f5b9809e056ab37dfb449fc4dfd9f2ad8da09d142db1781523ea826bbc3c9ff936ec77d79177dcd7f1f2f72ec71329860fbb088758e8421c56c2ed7fb6c00da

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    91e3ac1cc3f9f98116ba2b1e031ddfc1

    SHA1

    fcf779d55eb05e841883fbcfbca47d203d84a21b

    SHA256

    470194433c3ab7e6a6cd34024e23898fbd5543d8bc938f3c70b0c246b9518d8b

    SHA512

    c7e19cc85a2a86c03dac44ed34adeb46d81f9118803411335831bf9528c5b9590419740ca795972750754538a59a02d03029cc95a3cd362f03af6cc7d2e7fb1f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    23a181c2ed23be99f4cea6cbe1859979

    SHA1

    906d0c91c097846e67f1501d2aa092848d8bd5cb

    SHA256

    f353ae37914409061bacd1f747da3ea79e600abf43f775268ae7199432d6d617

    SHA512

    87d39f395d116da920ccc4eba72fa3351ad6c51a04655eba3aabbdb5dee79d58749ef3f2ae150595c5968460330bdae7190d848ca853adb9f990d5f993bc2f22

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    d9497871f9b33a800bfe88bfe4b7fab7

    SHA1

    56ef4d0f4463ebfcbcb2a402f66c5b5592438b6c

    SHA256

    e81151d8b9e00686788ff1204874015ac1fd5e72161c8c69018594c7ad9db45d

    SHA512

    492ecc416f5085202885111722cbd2fa037d28cdb21f6f2b9f0da239054a3e235ae9800e4e64e8e3a12a82fb60d3e93740bbbc38e4ab6184c8e6bd3c46e41720

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    a4486f340ae598b2c323f9b79b0a25b3

    SHA1

    a7b09b49bf0a01fcd757ffb6d9993b73464471ad

    SHA256

    dc171fe303b6021c352bda67035f908fd74bebfcff2723ee33e7a344c41bb083

    SHA512

    de2a018ee70041d4b5a42f130d72b88a3c430d1a6b045bd71e57c51b3d729aa337245b90b784d415ba8fb6896765c810b51c2b4f7a7440e2abcfed6983072744

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    23e77a58420bad8b34c87b96a8b15a9d

    SHA1

    db90cd4c07d4790db37a8c23c5b08f900acc051f

    SHA256

    f1b2284c2224d61a8240f5f5bd8cabee44eff40f0a7acc48cc7b5981636ddbc0

    SHA512

    3d08c9dbbfc7d1783c415313a54b65c8d164ac01d2b88ba15974d381e6c2dd9f16fb4537e563d3598fdd7358b6216423d861ddb9fad791afc76a8ded24fcae52

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    3953654ea82a793fd0ecb1cb15573b30

    SHA1

    72ca410018fa27daea8298e35fad0a472c599344

    SHA256

    de8e94ecc54ac38f99bba338e83edd3d8809523e83715e3bbe44bc13311b2442

    SHA512

    a4b10737de54aac6fee7024c2532ee30a53341868a052c5051fe3fbf849cf8b3ca1600a12eeb687178e8134bc3ddf3045270bb2e6aca5ca5db107f2a4b87efda

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    2963483f079591da12faba7f9db2c54a

    SHA1

    42d0ed88c69f4fe94dc0c17f3857b092507723bc

    SHA256

    967552fc61453218eb47655ba6b50db866a5e8638742bca0711b03507118828f

    SHA512

    dabc69c0180c3d7c5bd667afe12be7b7bf79f6328db053090d9a960d23baaa73a8b6cd00e8a0ef2e7240aa6c5cd5c1f8098550d860337435b33b3f02c32fa0d3

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    0c5b9e003e595574869dfb8b9aebcb2c

    SHA1

    16142fe5bd11e5537042bfd49e918a7ceddded6b

    SHA256

    6a667d2531e94ecc22639b43eb301b817c9561db2fbce5147b41f7e5a4b746a5

    SHA512

    42ef2ac122d32416acc9e165ab8fb19ea4f0b06b506bc2a247ff8bbdc61c8ff100aa2434d11f29aab256d1184f48221b31e18af44cd5aaa4d25abd2b3cf5fd7c

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabA6DD.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarA7AB.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit