Overview

overview

3

Static

static

1

OEBPS/html...r.html

windows7-x64

3

OEBPS/html...r.html

windows10-2004-x64

3

OEBPS/html...r.html

windows7-x64

3

OEBPS/html...r.html

windows10-2004-x64

3

OEBPS/html...r.html

windows7-x64

3

OEBPS/html...r.html

windows10-2004-x64

3

OEBPS/html...r.html

windows7-x64

3

OEBPS/html...r.html

windows10-2004-x64

3

OEBPS/html...r.html

windows7-x64

3

OEBPS/html...r.html

windows10-2004-x64

3

OEBPS/html...r.html

windows7-x64

3

OEBPS/html...r.html

windows10-2004-x64

3

OEBPS/html...r.html

windows7-x64

3

OEBPS/html...r.html

windows10-2004-x64

1

OEBPS/html...r.html

windows7-x64

3

OEBPS/html...r.html

windows10-2004-x64

3

OEBPS/html...r.html

windows7-x64

3

OEBPS/html...r.html

windows10-2004-x64

3

OEBPS/html...r.html

windows7-x64

3

OEBPS/html...r.html

windows10-2004-x64

3

OEBPS/html...r.html

windows7-x64

3

OEBPS/html...r.html

windows10-2004-x64

3

OEBPS/html...r.html

windows7-x64

3

OEBPS/html...r.html

windows10-2004-x64

3

OEBPS/html...r.html

windows7-x64

3

OEBPS/html...r.html

windows10-2004-x64

3

OEBPS/html...r.html

windows7-x64

3

OEBPS/html...r.html

windows10-2004-x64

3

OEBPS/html...r.html

windows7-x64

3

OEBPS/html...r.html

windows10-2004-x64

3

OEBPS/html...r.html

windows7-x64

3

OEBPS/html...r.html

windows10-2004-x64

3

Analysis

  • max time kernel
    119s
  • max time network
    134s
  • platform
    windows7_x64
  • resource
    win7-20240903-en
  • resource tags

    arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
  • submitted
    25/09/2024, 08:46

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    OEBPS/html/437020_1_En_21_Chapter.html

  • Size

    105KB

  • MD5

    f678e799290b4bd37d494c89629063c5

  • SHA1

    a27f6a265e2bb0cff78cb17658b97df0431eebc0

  • SHA256

    a5f05874a24c0cb45fb4c806712842db564821f218913ff16c50c343084f2c61

  • SHA512

    e73928518a4ade0ee0e5e91503d0ef57f41a6ac4c721736b8a963567f6064056bbace2a0fd547e8205f58787bb962461f376ca6c483322cf08bbb627c33ad6a5

  • SSDEEP

    1536:d4FS2ohpBB1Q7JwEY8n6NhU+1h1dV5/HMmX1J2ebAgHsQSzC1m1AmzjljjjRjWjU:3jKNwyBsBHkekZNTr

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\OEBPS\html\437020_1_En_21_Chapter.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2264
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2264 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2772

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    85772d68594a0e0011a7a91bf63315af

    SHA1

    b78cde684f039ed81b909896d0e878b5e1a25987

    SHA256

    9a4a4952a28b7c72b08fcf18e4361d06d41485ae6c75298c1407f196e9cd6a57

    SHA512

    00a260de48fc08308301301fa07fbdc409e88588c00267d8f3f0b0d9db0d6ddca1b739b94877907e2a24f0122e6326b3a9cf96485ca9c93ddd1b2ad4d2195068

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    9eca8256a9150f01d90318e30974365c

    SHA1

    e7eea3f801f02b30a85267fe9a8c8b9e198c29e7

    SHA256

    ab5954b781081aef51529541c02273d7606eae7508795dc1621037007c6fd695

    SHA512

    2010452cf663e1184281082963afa5f3ab13b0edb2de6f6728157f369dda7fccf15b38dc9f615c4f36de8bf0f502d682d5e9e305cc4b3eb8c26768d375823e38

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    9ee8cda1cf317544a15c1ef144fb7937

    SHA1

    6f4cc94290cd34abdadd6decf07944dd94b006e2

    SHA256

    e65c86d27ca132aa5cb9a17d60b285834af7144f40e0b772dc30903d4c8b22b0

    SHA512

    83a7fc8f16dac004578596f84fe30cb60a195037197f0cc1d65a62a1024cea34724dd703f8e5678210818b90f7114cb416ee3a161db01088f4470b06b570a267

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    54b6f0afd22e3c5ba62c5d9bbb697204

    SHA1

    5410dc43f6c45e45e4868575fa3064051e7610eb

    SHA256

    ba3600a7cb176536c5dee08bb1854fe8d345a9e4c7c84d3d1f5ebd2d277738ba

    SHA512

    406e2b2c097ebc30acbdf59b4a272e42eab7046db88e6423e925c2642c491447782308ba72dd0c75208e5647b414426a7f44a22b54acbed6de9ea922b6e487ce

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    79a4b9dd0d3338c01b97e4899cb15eda

    SHA1

    f8b7999b412320600f0009dcd30921c1b2b7d0a2

    SHA256

    091b14a5a9ac256cd2573defa71b3dc195fd8d248f26beb009e0f72d2aebf093

    SHA512

    7868cc44b62a87b4acfdeae72b7977238517307b9a0f2c47d80e721650f835b0f145e4b7f8b8e3c27a82bb5815eedf975b189a9b4eff633060e4bcd9f3e27d50

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    6158bcf3ceea8ae6c3b2fc260c9b982b

    SHA1

    78bfa055b5b55a750ab2b64107b7b2170ffef076

    SHA256

    5ccb301eec0e3c28dce77ec89742cbe82de99e3dcd1286d82ede71dffa59b892

    SHA512

    1fd966f9f8d002cb45c5be5dcb47fef6bf3f3e687e124e208bdc4a318a70031c501cf0d7d9d2485eb73dedf5d4fdd84d69e96a28e099c9ae61d8aa4388bedd60

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    ab49963e729781a9f4a32b85dd455272

    SHA1

    32424b9f342128d22aad88c3d654f5bc3dfa359e

    SHA256

    949e04bfdad3054d473dbf092840f9cf527fa9ae4409fedd91d37367f0b69b5f

    SHA512

    28c41481acfb53bb9a737bc474cd4ff86aacb8f9c98f092a8490ef0571ccf479dcbdd8531687b63b74f6d6f704c7c0b64a64f48b545bd3ed4fe08b6a9f8c3a4d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    b9c377fcf6b61e6b7c5572ab7632b46a

    SHA1

    06cb042d4dc410c2b7fd55bc895c2f1bb57884fc

    SHA256

    37b0a97c2b019737c107536d3acc956eaf5abda7c6f42adaf6b0ab84bda5128f

    SHA512

    cb93d7735eca0e185dbfd91e5645d85abc547aeb85fd827e58392172b246ce3d04c9fdb44a5b6197ed42ab8e57170dcabc4b892ef173c5d1631ec8341442496f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    63c12554cf2c73a4c4db7a0c28821ac4

    SHA1

    d6dc0acf6aba2c891f5a1d3324f751fa99efb9a3

    SHA256

    92a7cbdfac546043052ef8b16eb37187c69940de32891a05607eb21823a0cf3f

    SHA512

    25eddf2deb76821bac8afd0b3bdf503f7faaff4c75d5bb633de5f658b05dcd56b6241e1e4023f8ef002509e2ad455d4767c43cc0c248b518a777224c1c4a1094

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    41056aa7897524b5e8b8eda01051a5d7

    SHA1

    7b4c8eee4dcf5ea3ba3557cb390892f3a0a78c99

    SHA256

    911045dd30a6a85b8effa8f1dffb59afe90ab181aa2f583a8aa16185354d7c9b

    SHA512

    183a2d4b714f409e2a4ea97ee91732914f0fb93dd41fdddec465e47cd641f108067c7defd077d78d0233ce3e662e8f2d6730a57993f93567ac6a2c62cb4291a7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    a00f527ed9b539c09fafe5723128fbb3

    SHA1

    3d1a76dfa6799878a87a23ebcb5bcaf093895bb8

    SHA256

    61da2de81fd9c83f05ef1acf723640ddf215b7b1b3679fec3b7de7a647ddd4b6

    SHA512

    9dd4c74007e568160c6fdfcd890e66cd7d2acfc22db27697d9fdef443110e9babe9ea7e2b4613ddedd98f2ffb000e65a122cb4d7f09a1325d0a395a19a55a506

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    0cb1718e7828c759d484727f0abb6e24

    SHA1

    56271ad277e6adae2a9b349ba1ec5455755065ac

    SHA256

    522ac9044e6f2ae0c76a26021f9fbb4a072d567bb527a2e3ff2a7af8295e237f

    SHA512

    701f4ee19701d8cbc4300ddb22b697fa01d7759a325dc4abb5cc1c5b7c4a39153ea58ad9743ecd582c2101fb9805e55df879b45e14598335df0091247e76d4a6

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    52e0aa65cbe5262fbf4c0c172f55e999

    SHA1

    6c1b409e3930fb24b657dd0e6b4e2e4258318cf4

    SHA256

    0895ebf4e5a31c620e0eb9c85d834e5d8487d1cd17f090eb8393b5a9420e6c4b

    SHA512

    6a8f20bdd3e1b21b506c17b3dd9e875f1587265ed8edac96f78f140be09341e85d47b11beab44641ccc7510eaa33a533f79f4d6d9f46167982ffeec85581cc59

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    f9da0ed1642a8984e248714cc03a3bd1

    SHA1

    c8983b484fb7c9745810764eb1845cd393a175d3

    SHA256

    3df7ed0494c447e38727bec7398081f41373d263ca5f9136d230ceb737018612

    SHA512

    ee110ce0cc3f76755f65926fd78d68cb9c51ba25a08839e2e754158dde9de3e20f9d33fe75d805750fec08e01b825916fcdfd1eb8a20656ff44ea1c29b001a97

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    acb7dd7528996e7ac27beeea71812432

    SHA1

    f7e0097b33ddf8e92acbc531830b6563decf15d3

    SHA256

    c1ac6e8ca4e6b2e31608a446ff74edaff0e3c434a13866e550d62166937e2261

    SHA512

    2bf4923e41ccbfbf7f058f66d395a8340344fffcd2a2f2e3ee3897226bccd94b2d00967ccfbeb8e5ed05d687d7a6a7de0f3004d6d2cb3956631e15d47c7ad202

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    39d1f1d37e9507056ee9a67609f06d1c

    SHA1

    5ec4b0060412c50c9d2432b55d2bd77471d5419a

    SHA256

    407f764a28d4b6e52508774fa99f1e08863c628ca3e73984302e02ee1989b4df

    SHA512

    dbff32280e5d4a67de69ddcb7b1e29cf44ab21f7aef84b017c3f2ffc91cc7b66a2a4010605ed1a4e71a46be6793eab50e1a12f53b9efcbc2df0545da09c9e001

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    19349452afefc6ad4c64744e3feb9908

    SHA1

    cc7f8954481c88955a6d2b195ea005de92000a15

    SHA256

    bcc773ce03918b4d95b88363d51f827ab200268283c26163efcf1ccdb1a812ca

    SHA512

    4c034e907592501fccfaff6fc263f7d6ea1df2015875348f952f6a48ccbf738a5c2a6b14ea653b5491bac71b8daa79764caf5b1b2b4fda3d104b48ce9179e0bb

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    d5034a38810e491f541444d77d68f0f8

    SHA1

    e5c8902c41002502ecf4144d05733f32ebb16dfc

    SHA256

    c0ba3abc7db68375fd0838fab81074204818b293774284bee08671ea99f0e32c

    SHA512

    d6b070968d9dfc0189574833de7ecca63317401b2f743b6a3fb8e4d79dcf84c3604af04a95350a9df77a3990f6fa49359c9a0690dcb787e44ec78fbadecd614a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    e0cae3ae481deb239f5dffc920b98d40

    SHA1

    d4881b426c81b5957762264a55355e1b967006fa

    SHA256

    4deee20314c18d225dd6ebef9598eae8a1acbc678b917b3ddb16742bdfb9a5b4

    SHA512

    e0cea68300b40c6d1a8a973405e1747e656c3bdbaa52292503c98e0a6fa9514c98c6f172286cd160d9b6e46d8f7ffc85db82338db4b28fa7faf31a70fb0b501f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    198951c5e759fe7ece781bed875383e5

    SHA1

    b9e99d29807b088e1ff5e6cb2b507682569016fe

    SHA256

    2a2bb76d2348a2ac16969cc8bbf2a16cef0c17e3301ed3557a454cf66e87e9f7

    SHA512

    4c30c55d8f57d529f5793faa894b756f060e7ae8fc7a698f3af93b54419840d187c48dd8d50d54457e1885d840bed1f73e8629564fc0a160fc4c2861fcaebf92

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab1566.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar15CA.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit