Overview

overview

3

Static

static

3

超能仓�...ut.htm

windows7-x64

3

超能仓�...ut.htm

windows10-2004-x64

3

超能仓�...CK.vbs

windows7-x64

1

超能仓�...CK.vbs

windows10-2004-x64

1

超能仓�...R.html

windows7-x64

3

超能仓�...R.html

windows10-2004-x64

3

超能仓�...IT.vbs

windows7-x64

1

超能仓�...IT.vbs

windows10-2004-x64

超能仓�...DEX.js

windows7-x64

3

超能仓�...DEX.js

windows10-2004-x64

3

超能仓�...NE.vbs

windows7-x64

1

超能仓�...NE.vbs

windows10-2004-x64

1

超能仓�...ST.vbs

windows7-x64

1

超能仓�...ST.vbs

windows10-2004-x64

1

超能仓�...IN.asp

windows7-x64

3

超能仓�...IN.asp

windows10-2004-x64

3

超能仓�...NE.asp

windows7-x64

3

超能仓�...NE.asp

windows10-2004-x64

3

超能仓�...AY.asp

windows7-x64

3

超能仓�...AY.asp

windows10-2004-x64

3

超能仓�...YZ.asp

windows7-x64

3

超能仓�...YZ.asp

windows10-2004-x64

3

超能仓�...DY.vbs

windows7-x64

1

超能仓�...DY.vbs

windows10-2004-x64

1

超能仓�...Y2.vbs

windows7-x64

1

超能仓�...Y2.vbs

windows10-2004-x64

1

超能仓�...AR.asp

windows7-x64

3

超能仓�...AR.asp

windows10-2004-x64

3

超能仓�...NN.asp

windows7-x64

3

超能仓�...NN.asp

windows10-2004-x64

3

超能仓�...S.html

windows7-x64

3

超能仓�...S.html

windows10-2004-x64

3

Analysis

  • max time kernel
    118s
  • max time network
    128s
  • platform
    windows7_x64
  • resource
    win7-20240903-en
  • resource tags

    arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
  • submitted
    15-09-2024 04:03

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    超能仓库进销存系统正式商业版/About/about.htm

  • Size

    1KB

  • MD5

    121b746d762721a7c29e6aa6fda092f2

  • SHA1

    031f2e33cfc84911908e51ec928800f7343a96ff

  • SHA256

    d0598b056c321effb273a31b0b146fe83fecf708ccbfd1262858ad11eea542a4

  • SHA512

    730c90e75ae8e3b4336d64da817b350e0c972ad872ceaf09d9ef223468f0a2a4a30d1fad3bd780d7eb44d661d046bca1d6878b21cb471e18b85c8656b12223b4

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 41 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\超能仓库进销存系统正式商业版\About\about.htm
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2736
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2736 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2848

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    7ae6a18e7baa45a70072ea7113640280

    SHA1

    6b7eaf35dc0eb23f214b577e3c80f5c2428ac8a4

    SHA256

    2d40985eca36525a10d1b94bbeb950adddd6f9861d6487b8c41356758e16a5ff

    SHA512

    90c4c389d970b12e006f0ea46c1a1836ce2a5f2602084f7ef84db05a4cabac58775d79c83e6f360b6f638aea4bc3c1adb3f6aea137ae1f394bd15bfb8bcf67ad

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    75ea725b143afe69e68b85de42c67d4b

    SHA1

    dfd47cf410c157ee456349d86508d8c99b75bf6b

    SHA256

    29a15d458c360d5d98546259228dc8bc0d0a4a78913b10853ee6f3e465c82f32

    SHA512

    2f0259263a7b4aa85e2b0e5af7b6d9a7a86f46ec6683a9195cb1550ecec7f115c52a886a06510387bb9f9c45ad9d5891de4be4c5b3909ab33fa40180490f8856

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    5878152e0e4465aea9e4e99297db5142

    SHA1

    2a0b25bb17e75d61ed6ac67cb0dca8d54aab8b3f

    SHA256

    0e17be4c3c96abf68b34c7b7f473eb50304e8968a849e7a7ee7b9c3986c40e77

    SHA512

    90575c5a76d17a58820bccca963c6d02807e8e2606da143037ab74316251dd02499caa8bd3caa179b77366847d96f3b129dcd6cbd81fea3b4f2840787f484ec6

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    194a6bdf10b23293cd56cf7819c9c789

    SHA1

    fabd02f20288d31f246f52ce2eb2ed39a8a1693a

    SHA256

    58ad80b7b9e75d9d8e95c8b4a0c125b8b97f1143531a191cb51a62e74aecc084

    SHA512

    fc72f93104582c64584b365be4cfb0a5fad0f6eefa150b53ba56364c58a5193f5b7847c7a45177243da3f4a6f34b795e090487e77f1063636fa4816b033c39b9

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    e366dc770734a15a731ca17047943375

    SHA1

    81215efaa2cbe308f6aac0b224a2dc9f049c270e

    SHA256

    63606c60ec6c2aaf633ef575a09f6ce1b8304023c95a9e887a08527ee0e6ea69

    SHA512

    8437d4278ff8e0c68143ce94475e0f01b9d089570bf9601167d9269ae36c3a8c53caecc738c3c35d94b223271c6d3a99214e9459d66fe0bf632686be8b795422

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    6cb7a28f59c19c6e0ce215bbf7c83254

    SHA1

    5240430485825ea5678ce5092113324d10368746

    SHA256

    8af4c079fbb1551f7496a5898066d25ec1321f3c5ce20e14f13cee8bf078a851

    SHA512

    ea66b401094c8033895539251bc9995e49135158b978cfe1353cbbe047febcdbc19df1ac35b2b46c9afd952f6aba07d240c522704aaa513fa8418d46c93b32bb

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    94612525971041479e8d5b2320c005fc

    SHA1

    84914d4201790449eacd46d293079932517e3866

    SHA256

    8bcd82a02cb702e26a033be35d3420f78855c7464a7a5a8fd25920daababf9e5

    SHA512

    bfdb4f452930b6b2ecf1cb285d8dd8f16a4bec34dd74b3ebb092cf4f3ca7a590eed3493e7c560af300b37bd1495a3c845e8df6e6b718c34d32e00bade1f6ac1e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    31e2b2bdc73f9664847a58d80b5e87df

    SHA1

    e6447850d3500efef3a98fa4da74eec33e3aac95

    SHA256

    7b0d6d1cab39c301cb0334fef4d5c5bc97bd90693e78fc39f6e7743647cd0ef7

    SHA512

    c9f25b95dd18876af51f7be23cf0f21a5e7034b5ffe30f83457ff49f69c925aabf557a898d409eac5d309c088f8d285eb61aed36b893d4fa3d61d4fd8c67483d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    2da3cf680851d0f8c3aa99aed7b69606

    SHA1

    0e114439a5ed5827e8169a9e920f9185a2ccbfdd

    SHA256

    0fa6853dd37ee269d0c31207827896ae37af1a16fb18d3006743e34092de719d

    SHA512

    39be3583af5201451070adc7c34092ad030471144c6ebed166df31116fc9048151d7742a0d671ea1d6d73b24991d76a4c446fdfd7c057157b071f65c8d5aa0bd

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    745f40d437556e57d3e90cc661ce5cd7

    SHA1

    2882d2554c04657ab901848bcde140f4a973af80

    SHA256

    80b6594cb1c1ed7739b06426f8d893132cbf6298b1f653a9343b840fd0fa1f0d

    SHA512

    897115622f6c3b539efbfca4619c90e00a3e78b811f738536004fafe9ad666ff15b186e5f13b84af73b5a89cb8d5c30b080a0e8f6fb12a71907b035f17759f9f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    53b6e4b65c1d2a5571c94e18c6c0c2ff

    SHA1

    001cad95c91003e147fe93925b3b3654f1938a33

    SHA256

    66c8e451a49b0e8b2994fc5e03d8b757e567428460a11a2ae1bdbd376d077928

    SHA512

    61b64d4b56135222dcfcd42c85d104e1636105fad8563b86dad3d864b3af39427622edb5805e00e21376f46d5f87360fd83f2c0c50fc9a48cbad2c212df3f116

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    2811254f65fb9266e57cc9b2dc725bd0

    SHA1

    a16ecaafd2d041dcc039f703701bc600d0db8726

    SHA256

    7556dd89e8a4e0501c27a8fa3b6639a33db6e9a0ddbb04c6a5d6548741031789

    SHA512

    26f7d4fc00cdc72469cced58ffa56e70c6dc449f895fe008c7fd2b850f18b28b2161877a767fa32ef52bc240f907b191cfdfa82e1f4e2356434c42ae7e48ff31

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    a5a40a8442aaedaf8c14f307f7700651

    SHA1

    51e135e1c06a0c6a56123f9bfd54e13fc20060c1

    SHA256

    b81a0a1ed5783ffbdf51d7a6d2e451dab3f1338d56f947162efff8a01362d00c

    SHA512

    ce7d196ca48ae34019423db127be07d915abaaec30f68c921e51dfb8e920f37256e6619e262b1b1bbdeeb6a38ebdb961bc4fc3aad41b57ccb2bf6adbccb750e5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    37f7543510c71f0233a12ab444cde245

    SHA1

    02134902bb124be4c5de5d928ecbfaec15c6f6e7

    SHA256

    1945f9abf17289b9396c74a4ddffee8fa1b2daa8fbec47e8e0bef4a2c1a895ca

    SHA512

    9bdc6aacd94c2ea692870b1e8f38c158fca09f9b13addf18638f37b9e281e285e98263ef3aa1032fea2324464ffdac3c41251360873a3457ebb4b2caaa21b474

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    94285ea8f7194a585fdddb8778bf79c4

    SHA1

    8f3bb5e4e84ae66e2724f8bf624cb1ba54235e8d

    SHA256

    51b88a98e017304671697ed4d4f57289785332417dec2f8fba91d8b6d61bcef7

    SHA512

    adee25bd516c6490064972730aa31d6ac65e41b8aeb3091678eac6d3298ab517944e9e13919cecf5f8298de8c990b4ebedcba19715c283f350a025fd975643af

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    46f8de1ce88ddfb18efbeddb51778c1f

    SHA1

    c8286385a2f8790a2d64f6a5be593a5aaefe4286

    SHA256

    d096485005ad7c98922f2012d3c27cb8c3311807e3a259b384033e34d9238c2d

    SHA512

    bf92a355f17f4186f430956787973e3f90c6875b5db2c724100c23c84752f903685771a8e8929e1e24fe3f10221a0cdf238ff609bcdcf4d1fe39c40f080d3c95

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    53d5cf8eccf3c0765870c2ab15aaf647

    SHA1

    a0a2504b8725913d5dc7e4bbefb7f8edc714b6ff

    SHA256

    676fe4c655ae9cab8e3b3a6df849d90e0b85b6be475a9b9658725bb3d52d3ea0

    SHA512

    49d0c78ab9f7d93ce2086490f43136d7413b31134b328368a4bef8350e0489a5743e9dbb6d886cbb5bd65efa1fe7b22c1ad4c346b5e7039c1f6868493bf25c0f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    05985809877bd130f9ac8aa86a298f06

    SHA1

    3af0bc8c2314f0089b2082888c614ca4c899bb18

    SHA256

    a30206b7a83e5e26870a800650429fe355acb2c6caf3db005c81b81ef02e44f5

    SHA512

    85a4b5d40823ae236d2c89119e3bd27306d58678fdf29a8f7541399505cb6e0b1b266762431de6e0698b112925d9d206703e76d870a9fb5491878dc3bc71d551

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    e31551b1905a01e4f8eaf26b66f5f3ee

    SHA1

    d2419d928f672640277f384751bf0fce09161957

    SHA256

    297c6c4f8f263adaacbce55c2d4d4632f78ce6290a69ab0986f5c1d352a5ba90

    SHA512

    87cc511b2f888705dc114b95410757e697c596da2e89eb3cefdd11f604e70863188035a2a9ce8637ddd712854f4c761cce75d07362b87e7ed86f2fa9f931fe1f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    07fe307cee57eedcb0901f30c3f49abd

    SHA1

    a69d452d2aad33d64b544ffd2f17e3549bb3adfa

    SHA256

    4edd9f8f81bbcf9c745f82439607e9ddfa1bc3eecbde9d96a45c0aee260cd33d

    SHA512

    ef20b4d9aea66fde4f97b7a862dfe603ae2879fbd5cac04582836b93eb7810fbeca680b441afb3352da43aef3dbb602ab7de79a70a1d4073c070ba8fe4f1db25

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab769A.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar76FA.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit