Overview

overview

7

Static

static

3

alert.html

windows7-x64

3

alert.html

windows10-2004-x64

3

bidvertizer.html

windows7-x64

3

bidvertizer.html

windows10-2004-x64

3

code/advertising.js

windows7-x64

3

code/advertising.js

windows10-2004-x64

3

code/alert.js

windows7-x64

3

code/alert.js

windows10-2004-x64

3

code/animation.js

windows7-x64

3

code/animation.js

windows10-2004-x64

3

code/flyout.js

windows7-x64

3

code/flyout.js

windows10-2004-x64

3

code/gadget.js

windows7-x64

3

code/gadget.js

windows10-2004-x64

3

code/heart_menu.js

windows7-x64

3

code/heart_menu.js

windows10-2004-x64

3

code/settings.js

windows7-x64

3

code/settings.js

windows10-2004-x64

3

code/update.js

windows7-x64

3

code/update.js

windows10-2004-x64

3

code/utils.js

windows7-x64

3

code/utils.js

windows10-2004-x64

3

gadget.html

windows7-x64

3

gadget.html

windows10-2004-x64

3

gadget32.dll

windows7-x64

7

gadget32.dll

windows10-2004-x64

7

gadget64.dll

windows7-x64

7

gadget64.dll

windows10-2004-x64

7

index2.html

windows7-x64

3

index2.html

windows10-2004-x64

3

Analysis

  • max time kernel
    136s
  • max time network
    136s
  • platform
    windows7_x64
  • resource
    win7-20240903-en
  • resource tags

    arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
  • submitted
    14/09/2024, 14:34

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    index2.html

  • Size

    2KB

  • MD5

    b19540322c62ed22b8d6c957a676897a

  • SHA1

    9fde9cf8fb6acf503ecbfdc9458602ecb22f2da6

  • SHA256

    8a5c6459908e519c1aabeaa5d144c45fed01050a2c4bb1dc2b0993de1ab09e0e

  • SHA512

    47f5faa78c28409e6303ac3c92307eb06e312178b821afc83cd1240d59bd24d8d9c23456553130a023d6012724e43141d32eeb56de8305589b10ba6a16a3706c

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\index2.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2260
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2260 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:3064

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    dc3081bd5c3a342641a13948e404ae48

    SHA1

    fc797fe47d9bf292601b3ef8a33be1d1dad5d9f0

    SHA256

    2c0c511fbc231fffe2fc8f7bd65c13e76cb7859181753faf80a8512347f17ec4

    SHA512

    b30c51f069a417aa15abcca67410fbe6514b1a7991362123304b27a003dcaddedc5bc4e5627526fe5261ad0c851ce6e545dd580d55567110405f269b113fbe21

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    477df63c231e3dc8120e5d5bc077baec

    SHA1

    d358a7f8578a991429d537e306e1071c5eecc135

    SHA256

    5b3321a9031a0e30323088fd009e72d9d2e5e7b7f6d5a3730a31d0501d18a720

    SHA512

    7d392b8644a5b90b73cf7c3a869217d310cad628fb74b425d13da72d7fc9572672fff65396aacbee441e16cf7ac39f6938a2c42ef67ce400cd54404c00f6d8f7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    468b416f41b777e45c7ab7747b860850

    SHA1

    84403823c34329b4d8d209931397e578586d1bf8

    SHA256

    a31ad923b16ebe2c6e9d453f5fca888324edb3e4394a7017d4ae733ec76283f3

    SHA512

    f366f2eb3df6d408706cb60b3e65745186da4b57bdeb4e58ae9c846e09a87992615353edc654d3c27ad988547ce7e6844e9b6cab93cab0243151a86221ca1039

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    989d84068acaa00d3c1b5559c95d724a

    SHA1

    3ad9038ae79faf36c3fe6ffa4cba540fd7dc206b

    SHA256

    7ea5f34575522b8afadc4c4b5f619deec9742f6c0aac366bfdcbfb056373340b

    SHA512

    8a8672a5abfedb6a6e89d1a76e9bdb7058855a9453017d35d33a36e292b7de5d64a15f671492aaf864f7e0d380f7a15e68d0caaf2455991f865ee49592a0bbfa

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    220c7264edde587ee56caf7fb0fd5eb7

    SHA1

    12336451fb629fe12039438c069a12d6532bfd3d

    SHA256

    35805c066d6ad293b89fc6adb996d9a9acf9c3fac2982df1e0f7bb7838e909e1

    SHA512

    6e9dd9bdbec8ffd8ddc21d7a5792b96e94994481883419eeb782abee7a6b5c0512ecbe3f8fd3836313fc8ac7b7937363830f6918900b90e450e134ff995f45a3

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    a8d1cbf1156debde67b76770666b57c8

    SHA1

    9aef9e8aaf3e2b4d8e459e7013905b83269e6b62

    SHA256

    8e707c02c97c64d11ceef14eec40ce106d5ed90bff20c9fb875b5f46c68b612a

    SHA512

    8c8a2d32ccafea5ed2875a1e5dbc61dd196e3c1717ae5ddbd821a3c14e1a89ec0e824bd75b50f5513f131ff0462b76a4cb2b94f8b7914220f1c36a232d86e27f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    953b903401de7a5286848daca15b11e6

    SHA1

    ee64ae4803c47b42888bed326502be3946f95f33

    SHA256

    cc193545c92ad7604f477cca3931e6a1ea46cfd66859bef704c07f75dafd6715

    SHA512

    8f388f16a983d61f9c2fdd83133bbc5a1cb624fd04c53ea0753ac8c9124e185344bddb409f44e3359f44ec3f38acf3fe80cd94cdebeda538199fd00a4d37ad7b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    0093a75c1044643c5b6b9f4055faffb5

    SHA1

    ff63893feae4ee8aeb7decef78851587c655ff0b

    SHA256

    118ca9d5cbdb73a8402807ec3691c802b3573c0c99f90fc7aa4cc15b96890193

    SHA512

    5b8a2820a9c93093468de02f54a39d4a8d2258236bd19d76bde34c484e8db871f36aa60a5efdcb60e6e3dbe6dbb2696ff9efbfd3e74bf3d3bed1bfc9d3edd443

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    a9853c7deb1c1b3ffaa712ebb34d2663

    SHA1

    5d7009f3f66b22905aa3fdfeb4c8ae205f3fb5ad

    SHA256

    6be5f66e9aa1a006e235b4efaa2ce9959726e8edc6e4c8644a4b77fcc103c48a

    SHA512

    121b3aae4fc5694e9f24b0d4c5ac4fa9d5e9f24cd48c25fc1737c4e33a3380e98a56453d7f9763264a2a385f13f0427070eb68761f5f83ecbbc313da64cb610a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    4adca62a8b39882220cb967f6c30e26c

    SHA1

    7c756f61a81cef53af4e66325f0009b0b3af0b99

    SHA256

    c5f1ccad55bf96380390fba4928b2a06e0abdf0b4658ac9a895a8b35541ae2c8

    SHA512

    81252d223bc356175f69e7f773d78a8d5fad4b55431cb81275be5f394514cf9f8d91ab5588433a3b6075e2ba93fc37b3be9aa01456693fc706c6595d157470c3

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    da908c976dfbf0bebd4639664d438e55

    SHA1

    90f1dc3b88eeaef0f8585f44d8f0a317acc27473

    SHA256

    6dc053b7b3303ed282db9adab3fe03b70272e49ff000bae1bddbc8fc3f6afd2d

    SHA512

    db29414440be25b526df694bcbd8c4d80cf07fc6882360b334680ada2ecf24c34506ceb64af18a13ab94eb186d12f22ffac8328193837eb05fb3a4ba464901dc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    7bae4784ccfa1baf9df82f641f00b55a

    SHA1

    3c9453e411be0ad5d00233a9c2d9c1c95ab84f69

    SHA256

    6be856f007a703aa413e3302cbdc302334d06558317f76465d5ae4d5fa3ff8b9

    SHA512

    61dd7a78cbfa59822fe1712f76c6d72b597793be12df709058e2145f9d30e27a238a1df6905332934fa24ddaf67ab3f43cafc475cdac521b23df20a3e9e95f23

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    84dc106cb05786f9f1a56e197ceffbdf

    SHA1

    51a795fa3af38b06b49def2f5520f715f5df62d8

    SHA256

    dd17ccbb1d8214c5368967973d7471e6cf982f79de3d3ed0e5d8e822ff3d6a7b

    SHA512

    b3308d525d68c41211eb81af2c92ee1895c301b5de0f4983a6fcb99f43a43b2e59faa81eb79cd7e5fb659afc0505cca9bfcf3ce6903face5cf4c69f6329d1565

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    c26413ae6356975449098637ea641488

    SHA1

    8ba8b04d579f38ce02dbf2d677bf4254f27c631b

    SHA256

    9aa8eb8f95adcad8a12b91269b396c4419b9f259ab4bda9c1eb0342daf31a79e

    SHA512

    ce1eccc41748c958a831596f2a0db7b0916c3ff7943aaffc276a7315c007fc890fb08683ee2d1ffad704d983181c9f2ba805dcdd5c397410cb8473b0daae2345

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    68ec17fb7529c7c00393503556c5cd57

    SHA1

    e1b97e01ebdd0a091030a5a99b1699e71a073c41

    SHA256

    d84cf05b39cc6c258b4debb93e56b23e3103033e25d100b99eee224428e7bc14

    SHA512

    8f3e6a3fba7eaa6912a82fa2a7abf6ca70c78fa08c3e9596ac7b7b2dd0d3a74e0a4dfc5c4f9e8c6e90e4e6b9a2e7170ae02473dfc068dfe3a90c7d892f296787

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    90d1f0adc8268b42fa78447bacc1ec6b

    SHA1

    e8a81fb210820ccbcea47ff3af0e3abcaab62e76

    SHA256

    d4b629b86dadadbb32ac086e98fc147d670bd2414fbada628e99bc1b30845208

    SHA512

    5a2662aecf1cc768deaf4fbfeb74927cff68199a078e1c9c0bcb1e219ca4506020a400d19dc1366f2b9b2f4a142d96c82aa0f48f34bf62aca425e84df9c22a30

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    1df179ed92bbe4dfbd7ab708fc77b7d5

    SHA1

    3ab3874b80ffe94ff3723f532d991d85f6a915a9

    SHA256

    50669c0a24460df054427ff2a2e342dab2c719ac5fc2bbb25e87eb8185e64ecb

    SHA512

    0962d968cbfa16c299ad6bb7bd7065bbc9f255c0020c7f7f0af913ba8ade755533c84fe1ae98e85396c654b05d5fdd82a0f4797e6d4d30287d9546b526ea13f3

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    5f01b88ed5ce7b2d275257815f975019

    SHA1

    d50295f3204eadd32997ae83f2c8f2dcce0987bb

    SHA256

    0f1deecde95e8ae4d5a395cc26e1c9cb2a759819b42afa992c2c1dd880db93b8

    SHA512

    048296362ea3709c5542bdeba7733185960f4c04765fdc4462dba26f2fd71fe3e6a7bb704eafc7b09871380f86d9e7833114264a408d3b89dae9372d52083774

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabB0D9.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarB1B9.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit