Overview

overview

3

Static

static

3

超能仓�...ut.htm

windows7-x64

3

超能仓�...ut.htm

windows10-2004-x64

3

超能仓�...CK.vbs

windows7-x64

1

超能仓�...CK.vbs

windows10-2004-x64

1

超能仓�...R.html

windows7-x64

3

超能仓�...R.html

windows10-2004-x64

3

超能仓�...IT.vbs

windows7-x64

1

超能仓�...IT.vbs

windows10-2004-x64

超能仓�...DEX.js

windows7-x64

3

超能仓�...DEX.js

windows10-2004-x64

3

超能仓�...NE.vbs

windows7-x64

1

超能仓�...NE.vbs

windows10-2004-x64

1

超能仓�...ST.vbs

windows7-x64

1

超能仓�...ST.vbs

windows10-2004-x64

1

超能仓�...IN.asp

windows7-x64

3

超能仓�...IN.asp

windows10-2004-x64

3

超能仓�...NE.asp

windows7-x64

3

超能仓�...NE.asp

windows10-2004-x64

3

超能仓�...AY.asp

windows7-x64

3

超能仓�...AY.asp

windows10-2004-x64

3

超能仓�...YZ.asp

windows7-x64

3

超能仓�...YZ.asp

windows10-2004-x64

3

超能仓�...DY.vbs

windows7-x64

1

超能仓�...DY.vbs

windows10-2004-x64

1

超能仓�...Y2.vbs

windows7-x64

1

超能仓�...Y2.vbs

windows10-2004-x64

1

超能仓�...AR.asp

windows7-x64

3

超能仓�...AR.asp

windows10-2004-x64

3

超能仓�...NN.asp

windows7-x64

3

超能仓�...NN.asp

windows10-2004-x64

3

超能仓�...S.html

windows7-x64

3

超能仓�...S.html

windows10-2004-x64

3

Analysis

  • max time kernel
    134s
  • max time network
    128s
  • platform
    windows7_x64
  • resource
    win7-20240708-en
  • resource tags

    arch:x64arch:x86image:win7-20240708-enlocale:en-usos:windows7-x64system
  • submitted
    15/09/2024, 04:03

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    超能仓库进销存系统正式商业版/CHAT/ERROR.html

  • Size

    439B

  • MD5

    03adc0f0aef376b3e12b3daf2137d85e

  • SHA1

    7bad971ea059b1df24664bf17c7ce2018f5958a7

  • SHA256

    49d32a43378a8d6df8a2719751e733fb13098dc4a6ac5f1afbc375ffe7aad6ca

  • SHA512

    37ea89bb34e69f7f4c37fc1f1679b5a2fdb52f52e1bd23b6550cfc4933612d97a1fd5f3f6e14368e72a0a1b0bccb125443b7a3426ba77832f045e233568a3a1e

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 41 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\超能仓库进销存系统正式商业版\CHAT\ERROR.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2244
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2244 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:3020

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    88485b5c0d2dda1310c4162206fda79b

    SHA1

    f086ce0b881202a5a7cbda3412784beee125deb6

    SHA256

    41496f9eb982b14b20635a6266f391a97993f0c60904f564869996da265b19e3

    SHA512

    cdf35f3b594055133b9048e713408d1a7b8ece18a6f99f006d99489815af187df98439fa47309997e11331314381f38758aa9dc556502f005ccf3a3313030378

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    6e86fb57b0ad7045ad0aa1b537e97755

    SHA1

    03c1644479ece965e5d3ce0f193c4d14c090db99

    SHA256

    3df48bfeb44954f3db1697b271ad67798b513d6a62a81dcb9130748104728cae

    SHA512

    037fdd89237af77abddc208aca79da0ca241ca628fa530dfeaaac7aaa20c316e2dca6d8b829d99832a206c0b304184310e145dfc9ac16fcb017569e33fde96f2

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    42ef0e56ae5816bb4cd08cd00c274b0a

    SHA1

    5aae45db81e21e5a0c8e9e10f507240dc7ceff54

    SHA256

    a35438989e635c17f92f82babb7b38f02e797dd5e7ebd8dee4005f0d6464f6b5

    SHA512

    0a471064ec904eb8f6a7220ce5d18d11e38dece3b299d5ed40db86819406cb538b96969c6741f21f2e70b8f18ef91a5fa48c43dfd483d43db5549a9962a183f4

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    fd356c0f59027c139d75a1db77b77eba

    SHA1

    cd3382fdf6a94d327d62a3506366d1054f607797

    SHA256

    e30272514273db7b66a84d662ed71b8e2549484499dff051c9a97a4403c1e3dc

    SHA512

    36bff4b77d8ea0ebb7c1ae281d22376b536d1f96093bdd1a1e1df2d061b5d8b25d13bfc43ba618155322cea354e72b80f374950134f93a1cf476d8415ec290e2

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    4f01d862e05b7abbe22ebfd5d34678d0

    SHA1

    6b63f1f7b65cac8f7bd3ea415f3b18b672297df0

    SHA256

    a30944ab2060338361d3f0fd65a4d9c362485684734beffac6bb375b5069e318

    SHA512

    7923eb3bfb4e4ccb820dbdddf39204f71a7e0a2412947c1757bd6ee096a7c1b1a7c2e764a6db145120e5c69a97eb4675f611fd98ac9143d260d02d007eea918a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    22661ecd83f34cdb5dbded381f88cdee

    SHA1

    f315e7a7e32d708ee479a7629e2a9db9ebfa5cf5

    SHA256

    b086a83d41dd4d27d820ab948f84b0d296ed992f76df6a98d2ef90b022238fe0

    SHA512

    12dd8d535aefeaaa32ddf3c5658783ef460fd361b6839f93995d7203b9f1352e0561ddc775d3f7a28a69cd10e5cf65f26828e8726c0750552d4551c76f2fb7e1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    a07c22efe575279e12d740707c6ba22d

    SHA1

    1869bb6862a611412e11cf8cfe04cd330181283f

    SHA256

    eb1f18c40162748c9ec499e0bf03bfb631daf790a362038abfaa141c0e0d3726

    SHA512

    f41a45886da87ef6e193086ab1b0dc8a2c7f93c0af3380addf26826e7b2a28c6372be07a2a209874bf36fccb197d3499d7de2fc3ad906aec962f5faf9425fee5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    aca93aa8a93f1a4f8734cc32dec539ed

    SHA1

    6b2051415847cf72e71972d84a703b7e424f721c

    SHA256

    61532fa47187c44f5433fed1bd74ff5d7c7a56c7066a35834264d591d6932300

    SHA512

    48ce6a603f51b2c1759c247f8c6e11651535bc8a529ba3868f9319299a84d18dd7a41fb83c932e414cf4eef5f7811fd9cc7dc40ac582878d0805bc8712e0a5e9

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    620a499b13e13ef396a8388f72a246e5

    SHA1

    0729de503168db50dc78486560da641e4c79ebec

    SHA256

    18f048a245e26d8204e74dc802248288a10cc2a7ad6706fe037a8d5f7047e20a

    SHA512

    eed103434aa9171df2c8c95cf507ca0ae4c440416165798751f7ae9aa5c0f3a0c3565f9894526a240a5f525270f70132939e5467784fb16a671b03183502506a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    ff02e89b971bb1b9d552c04a347ed007

    SHA1

    d0a320b6f65e680f87a1b51058b1d94240bb3179

    SHA256

    919ced7cb486bdc0ef6cacee72d358edaa7453de610d235ff9380b96642a1fff

    SHA512

    bbaf9ed7770a206ac923bf72a55db373c7f154481494d1fd83768ede5f5d6cbee0987677c3891fbf77512ed9a43e81887d28f6e27e1356942f6449a29c69311a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    bdd21703914790559498008f9fa95324

    SHA1

    486293dece2d0502294cacece565d923a1ac1975

    SHA256

    e2353ca044bbaf58bb061f1ac61def20968b894c924f1605a1bfb18852898698

    SHA512

    a9508d00e5a5f8309fbd5a841fbe9cb30201ead70dcf05b81fedab21b750ebe06ce8716586e44fdeef32ed69f22666449dbc2995e84abcece62db2c2369764e0

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    d6a6cbdcd048ef429c153e4eddd659c2

    SHA1

    f6159ad260e18bb6bf798eb65d1c90a25f89e947

    SHA256

    d7d8364d8ab74fd5e812f3226cf1097851f0216f69d8551978205f57fa33e83c

    SHA512

    db026a75f8b09b6d2bb32d53995ef3a0518ba9ec4635af1e249a804422c4369ec75315250e0f8664bb03d700b9b9016bbb789c2e57f9a64c51ed2929772911cc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    c718eb5357514ec2c1a98475d2826a4f

    SHA1

    42c866a0454bdd904db022b0a497e9a560377e71

    SHA256

    439008f7d3cebeea1b83b9beb577c47f634ae830affdde1496a414aa06c898ee

    SHA512

    54c1c1f3f5e6315b32b2d5772d32a390a2a2f29435778af1ea489b79107cdd4d9df5694beb8b152aef7db6c22ac83949b59d61453099675bbc2cfe6ded7bba1a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    13ebcf2a1a528ade00a3c0db0ead277d

    SHA1

    e337db308a20ac02522d97973843c02e283b3413

    SHA256

    65ee3f8f85655592c59511965f45a6011fe77188c52c60bb4840b0ac8fd1ef0b

    SHA512

    180d56f46cc9c2652e0c4f3e34f045b459b3ab17e4e3d6096b7e2732ab1318a2ae58d4822b746de29dd0dd5559418aab2159572794b7f842583b1c816d007594

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    1dcedf7f0998630dad187468f3d1ddba

    SHA1

    4231a119b5b27783eaffc17bd78b93937e3a3683

    SHA256

    065242dc3600be60c4790c368ac6ad9c0cf4a09396cdd87b0902c5c0bfa7ca24

    SHA512

    f62a6acf8af309587e962349136c28be562a7e7d4eb21b75b81f4e7274b06937156c5eb3869c60c7034e1c0f9360ec0fe7be40e46c152ddd9d3f5eade516ce14

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    c14a9a05d1f1f16489a712bdce6ecbc7

    SHA1

    1575d79c67cd003709b5ec811071767972e3a9e6

    SHA256

    8070fc522c73d6244944738ed905e6bdad1157e650f03fbaad0f52f7f0e01d5b

    SHA512

    d98331bd71f02ab638269815168dccbfa85c7fad9d40c0086a23b4fe84541d55af4d2b05eab6ba86c7a4d8dc8562b09d55653c3a805725c55526e407d0490560

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    3113ca2b4dc3460ac54e7fa3d470db54

    SHA1

    1ac72939aabeb7caad5ee181f565d6834936bda9

    SHA256

    fd14eb16989916e463f93bd82cc4eb32f52f596db7f11706eca444754030ccf4

    SHA512

    ede3c12f6530dc4b8bdbb0c3223afff3504a3f83aa74fa90fc8e26553cee6f775974b5e4e1602e11e101d6b295f5935db36791e648230757dc56dc3fb5b0a9a8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    bac16c34893e17b1768aeedc36a4ad73

    SHA1

    98b3af4d9cf5e5ddc650c0f76d8ecabc4a2ca713

    SHA256

    c5750f736cdc916f1cfc481f42fb64a141fd35d54f875703265292da6aff458a

    SHA512

    5e1802edb6d56ae79676eca1f42a6ef7dfaee76d4145434e1a44656457c30f21af43284476156361a61a7c15140fe96b9a217b9432d3ce0ee498fb6dfab146bb

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    5315a3610103fc9a1c9beb84585f37c1

    SHA1

    9d5c528f62da7d315c7a6f7d161bfe37357da514

    SHA256

    443b524e17aa65f0a8a1f32f90dfa31b06ede004e5a71aed721bdf991738552f

    SHA512

    5f09b5e621f7fd434a8afb1b791a696f7ae7f0c7d33de0d9c6dce8a8a677b2cd14dccc4560e54f036f1a21c0c14440fc597569b33425cc7caeba49b67c5db114

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    3a0672554ac74a41ab845ee6ee9508ba

    SHA1

    e712b61a5d9758e688b6c9fa5ee921bbcb275029

    SHA256

    1b48d44971bd5d0755d8fc52eb952b824de194acfab826d69930ce76e7efad56

    SHA512

    187230873146212ac1bf53328f08db2c0ff391163401bd05c6cb9d7821989a686641da8a7423ec2e4f8440c20684cc107f9b1cf13d55550750a3c01b82abd23f

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabFB13.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarFBC3.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit