Overview

overview

3

Static

static

1

org/sponge...e.html

windows7-x64

3

org/sponge...e.html

windows10-2004-x64

3

org/sponge...e.html

windows7-x64

3

org/sponge...e.html

windows10-2004-x64

3

org/sponge...e.html

windows7-x64

3

org/sponge...e.html

windows10-2004-x64

3

org/sponge...e.html

windows7-x64

3

org/sponge...e.html

windows10-2004-x64

3

org/sponge...e.html

windows7-x64

3

org/sponge...e.html

windows10-2004-x64

1

Analysis

  • max time kernel
    117s
  • max time network
    128s
  • platform
    windows7_x64
  • resource
    win7-20240729-en
  • resource tags

    arch:x64arch:x86image:win7-20240729-enlocale:en-usos:windows7-x64system
  • submitted
    13/09/2024, 19:37

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    org/spongepowered/asm/lib/signature/package.html

  • Size

    1KB

  • MD5

    ecc33c4615e5c5a4d40dcec634e95027

  • SHA1

    caa887bcfa578951a5bc8952b4d06854e8f595ce

  • SHA256

    c0325f05576f05084882f81782e088ca3c42c56cb1f67677ad81b4f757796c0d

  • SHA512

    d3d92a09066d07df81f361825aac23bb8f7fc0cbb8bc0208aa997b77f2a28fe119c4c86c6f48b11ad5aee22ff2aa96ec9360007db487b1fefb8c790ebb718c61

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\org\spongepowered\asm\lib\signature\package.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2404
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2404 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2052

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    b2f18f580cf57ee00037931b62eda006

    SHA1

    c26c27097e3dc4d741f82e354300a77a0afa90f4

    SHA256

    43d8e763693255c84db534c45489babde37324305d56b4012d9785c8013ba782

    SHA512

    937d39f3518bfb9508fa0dd273e563932736e1f1b8979f6a8dc3ef8c37defe05b0a808b47e3e888082ef97744976a7e2c8807423d75042edf44d0e295a0d2bcc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    4c40b647807fb7aba275651f8559e3eb

    SHA1

    f8e3ddb1b7a37cd8d1ddc534ee633ec2c9ca79ea

    SHA256

    58f93bf02b19e490a540ffa6bbaa8f4cf6b90eba55aedc24f441c818290fe1b3

    SHA512

    c267186a0e6effca4922cf9633bc2a21abff4e8fef4492605f97449e97a294945692235dc6531c1873a3c56b1fb215b36b4149f3921b68400ec3d48b65fba43d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    6c8c90849257c214afe34dcd2e13a7ab

    SHA1

    778c03792e9301fa5f593c8633f685bb8b1288fa

    SHA256

    d13451f12d881275f141dc90a28ad1141d5e86a543fb3a58ae5215bcabf72d3b

    SHA512

    55b22c5fec94f2799e6d4225920fe244c89720b436463047c067cb889dc1bd12526005c42ccee2b686b7827359c494b3055209c6aaab76a54910004b71ee4d33

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    f76b31059fa40fa6703a787ec56aa7b0

    SHA1

    132e99a1df540b30a33029d684d95391213c308f

    SHA256

    9accd8b36da05c040c2173d5cc98fea4cf1b98246221f91ff2a2aa5216a29f86

    SHA512

    32e112b72fc7a49a189da453ceb4f7e10887b97e0c9df2f4fbaae33a582f8d044d6abb924a492ee1de407997bf30df17fd9c723d5fe2512dc159375d83d1cc55

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    fdc00204db8f3b3f9e9b3b802e898ba6

    SHA1

    6a87435ef54b7bd6e572d846634c45f5b48b57b3

    SHA256

    a0d70be296b26afdb11079d377af8427e868650f47257d5d80d52b8a60f42259

    SHA512

    827919c2a89d1884263c8b70d6814d1f0ff073f8ecdb6f79d1a5ccd48a887c04b0c461d4a5863c49e07c6c2379f8a1e93c225cab4bb74eaacd0c226e59ebe72b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    fb44f026c9634ba35aaea6b3fce5a991

    SHA1

    f777acc3c51f119f131e31ffbc8e68cc037795db

    SHA256

    18170306bb382f6c199968cae8359912501c6286af1497a14ddcc5719ebb1e18

    SHA512

    d2c81d64b15e3a76aa8da15c7a48d6f2b855d532ac5a59774f13263ed7085a83602074cbc2bc6c7e781faa0b99aa73734eadb9933512a7070a4bdba32321f64b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    72a43712c89cb8ac3281ead206903fd9

    SHA1

    365fde3c814269e3dc51f60721bc8c6cfe8774b4

    SHA256

    937de6ef8f4191203b62a33203109d143b7011888201c929877c32e011f39115

    SHA512

    829f250d3622006943695440f9aab375f153da0f354f5b26288e164669c5395f5763e6d29e1ededc8e8e6d2ff8df95bc955907f51895aa2432db2a5bbb5e6d53

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    9078a0058a4f99223f65cd6aaf787b35

    SHA1

    e65eb8fc7bfee3c2dd1f1b12a71a47755c8df7e6

    SHA256

    359c55ebc67b1e76f769300df8e755cf7fe691308e5380479062243a8547205f

    SHA512

    c64c808284d80a05ac850b7cfe81203a2183f52599014e1108b0a3b31f40da8b035194b9bbc0d3bc9e69a2c7175a58af7a686f191b878a5269ef2bfbe76a0355

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    90e2d06d20a596a8b35bb8c159df68aa

    SHA1

    ad1e88459e343671851f6a3407a99ef598545b45

    SHA256

    dde6fccd519bf54651a4c8b8d1bc7ed4d800dd69ff0f01179c41c8167a3bd1d0

    SHA512

    1a8682cbb754cb2ecda426bb06e5156afd1c6b2e3f60c75bc439c645df264d860411a0c7f562598512c0c83e7b2166e3adb1a22c2997cd8113f813a48e318e69

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    261c1579b14e8ce56972f1189117eb8a

    SHA1

    48c6bfc6478857543f36c93417e3c83e20c8a99b

    SHA256

    7eb451bf6a5a6c4fb6c6046d1ee90ad4ab7a9f83e9f84d6e1549f49215b9d3c0

    SHA512

    9cc86080a4a9ede7faf7535c5723a0ee45e4118b7bb5056e5b23c12c616015fcc93a9b1f56092205b949883b2b57cf046e568f1da2d9d8b2215b2ba22a7fa3b9

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    0e8d935ad111d4a74f6e44fd9d635006

    SHA1

    68ed93d3fe3a559310c814676717235a9bd9df98

    SHA256

    9c2520d7123b0d597a5aadf5a1bb8e316ee00f0724ec18f89ca66a7a6188f8ec

    SHA512

    56464b27ad1c547f9a6864f99028cf0fe5161babaceb96372d42a769a5b9a961468c9bb8d5f8b5f372f0f5d684bfd58f23fb3f32e46a86c7cc3dd841d02fcdaf

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    f63b104faf60d0a7b4419993c03ac341

    SHA1

    9fd2a40cefe0b51073312f959e14690b38e517f6

    SHA256

    af6977963636d6770032f56fdc82a6bf154ce33ebbbf3e21a04d7cc55ea35a6d

    SHA512

    db284d9719ee45f87560711014b0eb9a9f815b55d75a461756c20208019d8c43909eb4d3a1399a348deefe1ed0f0c3ce909ba469aed4256734ac8b3294a76dda

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    3401332243d20ac65ccbcef3f6035eca

    SHA1

    61eda246072ff286669a99650e23017c901485fa

    SHA256

    0ef17124f8904ff1a92d02ea370c80c034ce04b519db83e23d0a6baf1811b796

    SHA512

    8791cc6081976c590da288274c9a791fc7589fef373786cc5aeb0938b491a6e31200221ac4ef318e9dda44311bc989eae9f8cee8776fdc19d4bf37fd48d49b97

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    e6d282c4122cc245736b2fb085248bb3

    SHA1

    000d9cd6cee6079a2e8dfa3beb2b6ecb110e0505

    SHA256

    bd9b1e624f63817160481d3eb85144c5b5c86b79e75417d396f7c40c550a4519

    SHA512

    c292c4f99f8530f948730fe22d9cd237a46c6cb1171be6246e8a8c97a79ba06fbfcbdaafce79ac504be62d2abe9e03b775edfc05e24f03ebeb2f9bfd952ad633

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    45849096650247cf251a22b7505fe444

    SHA1

    4f04e9a735b6d9260e1a0a8505bbe597a46d310d

    SHA256

    38d3c4a90922a48e5466470bc374e8f3c23992b748fea9e379517e3a8e7615e3

    SHA512

    4bd4ae466e10ab1eb5dccc155823c95f69e0a64c8f01e6a39392e1675cb871ff77533e5f777da657bef4a222173cdfbfd597c760861f55f3303d6ee928ec6a41

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    cea6559f081b46b4939ea16e3659caf2

    SHA1

    361cfdbb9ba884f484fc8eac363b46739458ce19

    SHA256

    acb7039c4ddbe5e8e18bb0d8b0370da5ed65c3f047d8e2621ab3351dcf0a960c

    SHA512

    f001bc8f076f96f7618376138a946c5c8aa3bdba671aa8b531b50ff7590e6af323ccc910ac6116cdd4b494fd6264f498c47f53861392e3a41c1ec397721f0a4b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    0fea3cb0d198ecf26a175f56704cbc93

    SHA1

    9cf7fbe751a5d9bc5b5bf78c30e373ca45dba21c

    SHA256

    b99bf42b8d3fd9da7b395a06419513975ec58505881b16cd3cab5c61ab51b382

    SHA512

    1b6bb26373ee217ef1d6e729b1945df6d0f87dacd6ed87edc850e6e46c121430da013c4b836a4530bb9f750172ee466aad888096d0ae7a1f0fa7bf005201ec23

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    b707146422a8456fbc55dee8d1554116

    SHA1

    c6b919103034dd573b09f3576d4dbbfb76df5476

    SHA256

    16bef56614259550a3a9eadb048e1dca36fdc66e5e39b963a2f5858aa3d4e81f

    SHA512

    277e924ecc04580a91b8c269c9edf15f636b5f1dbe919a36e6ff5943098480625c97230300100ab3f8f0e891fa4d452de10356f02094afbb237e62a9ec2521eb

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    16237548ad9beb0511466705a995d0a7

    SHA1

    a8615031dbad8ce62a00c355d9e0dbad0f1ccf8f

    SHA256

    95374d8a11e43c7f20d1c54e29e928279d89e56c0d19ea4ffff2a4e0b8a8e0f9

    SHA512

    855dacd087079d815011c5a7da504f3b1dc396efe6a26341bb7ca9ac692cea63c346960001e0537ca89b74ff14ce5a1de5b7662c764bfff7b08a98e215e9296a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    e55d8b99427de47d77db904cd8f8f834

    SHA1

    03af8ed36bc9e453a18a8f3858e0d5edec7784ff

    SHA256

    0d81cb1ff61de20523dbec5ceb64a0af5c76e5a681f57bc4ef3eec2cf14c9bdd

    SHA512

    00ac4e474e376209e69386c8306d042ac24f5a614f3db5cb5f834633ca13ac6a2aa7931c7be6d9034789c1e0be93dd4d01732702c5419bbe5ad6d1ce1e6722f1

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabF089.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarF109.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit