Overview

overview

3

Static

static

1

OEBPS/html...r.html

windows7-x64

3

OEBPS/html...r.html

windows10-2004-x64

3

OEBPS/html...r.html

windows7-x64

3

OEBPS/html...r.html

windows10-2004-x64

3

OEBPS/html...r.html

windows7-x64

3

OEBPS/html...r.html

windows10-2004-x64

3

OEBPS/html...r.html

windows7-x64

3

OEBPS/html...r.html

windows10-2004-x64

3

OEBPS/html...r.html

windows7-x64

3

OEBPS/html...r.html

windows10-2004-x64

3

OEBPS/html...r.html

windows7-x64

3

OEBPS/html...r.html

windows10-2004-x64

3

OEBPS/html...r.html

windows7-x64

3

OEBPS/html...r.html

windows10-2004-x64

1

OEBPS/html...r.html

windows7-x64

3

OEBPS/html...r.html

windows10-2004-x64

3

OEBPS/html...r.html

windows7-x64

3

OEBPS/html...r.html

windows10-2004-x64

3

OEBPS/html...r.html

windows7-x64

3

OEBPS/html...r.html

windows10-2004-x64

3

OEBPS/html...r.html

windows7-x64

3

OEBPS/html...r.html

windows10-2004-x64

3

OEBPS/html...r.html

windows7-x64

3

OEBPS/html...r.html

windows10-2004-x64

3

OEBPS/html...r.html

windows7-x64

3

OEBPS/html...r.html

windows10-2004-x64

3

OEBPS/html...r.html

windows7-x64

3

OEBPS/html...r.html

windows10-2004-x64

3

OEBPS/html...r.html

windows7-x64

3

OEBPS/html...r.html

windows10-2004-x64

3

OEBPS/html...r.html

windows7-x64

3

OEBPS/html...r.html

windows10-2004-x64

3

Analysis

  • max time kernel
    119s
  • max time network
    135s
  • platform
    windows7_x64
  • resource
    win7-20240704-en
  • resource tags

    arch:x64arch:x86image:win7-20240704-enlocale:en-usos:windows7-x64system
  • submitted
    25/09/2024, 08:46

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    OEBPS/html/437020_1_En_11_Chapter.html

  • Size

    44KB

  • MD5

    55f2ed23e529a21ee0d5ed3863301f66

  • SHA1

    5489b62ec034bdedbbcbf67978471961acd75bfc

  • SHA256

    39ff594f81f4c69bb75373a99dbf2c382588df9e09e56c08aa347d21a912f0da

  • SHA512

    c13e08a16f761af4f0dbe84a31da2b6e40bab5bc0556d36df74eca3cd6cf29a195c296900cde2ccf0f8b8b84a227b9b2a7093bc32f6b225a7e68211488c5095f

  • SSDEEP

    768:84FQimsSgtwMZf/pQi7LamiETiCJwtLTid606zwtwQo+SAfNinY3MiXjYjmPjGlU:84FQJ+62am521TC606xX0FCVUjYj+j4U

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\OEBPS\html\437020_1_En_11_Chapter.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2276
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2276 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2816

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    cf410b4607dc597c9a28380817d3de8b

    SHA1

    191eaaf089f439c8cf854580a05b47c8c2d79d59

    SHA256

    5f3ead4ebb1c2f7c80cf95208adfa5490fac9d42c97484601dca2b91d810eb61

    SHA512

    62cd05710e482fe9febfda6fbf79dc9e04fabd5821bbb82a4eb482037e3b825020d533bb77f69d8200bd09ada9674d750417c944365a5ffe1c4c223097b7c5e7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    706f979fd1c3dda5cc2d26036e82fe5b

    SHA1

    8c69d7c5694a3216d3d6d7b029887597c8a1cc6b

    SHA256

    319b5921a57468da227b6f9c4b5965dd2cab526c77ba7119a0262aa37f973953

    SHA512

    8a18be5bccd074440f4201099efbf56c19d2f972df8cbce40c31e49eabf9cc17a78d6b9456ce17d026c3ae77535aa864fe9c50d558a19c2ee8653ee982cbe330

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    fe62d861d6bde3d2c2df8e7cfc8491d8

    SHA1

    7462a7a6c916f5c8b2599837129289bb3f98f042

    SHA256

    b87c13c5bd8671f36dc9de286270d9d62ef2e99d1f72e457ee0c4449c66df426

    SHA512

    bc386060b4d096e376b1c8a4f04afe23f6fa306b96f41bcadb406c088d0a4713dedecadeeadadac5f82083d66d80d7786f440613219ad65972b9c27a71e5320e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    376b5310e4cf4d98ae4ee07a514f89e7

    SHA1

    d43c17400b47e6a2ff98e284238c2ccf02ba0aed

    SHA256

    e51aa9ceae00ba82b4eae9a9fd9fef99e2ff26c75e9c465fc3387f74c89df05a

    SHA512

    6697885b358a5881df65645fb555bbffc656d8ee90330655c5392527764eb58adaf3d39dcd0701c69ff380140e55c162ff4617df17f4065fa49fd6bcf0646284

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    702d1ed968316183c5f60deb398037a1

    SHA1

    0cd850ed896970ecbfb2ca903330268fc569f7e6

    SHA256

    3e440b0c7a5793e5998f125924f78bb8f1e35e1659bcb1105bd726676a724257

    SHA512

    d97a9b5b13f83e23333d7b956aefb5aa1512a82b2ddffd6a870fb3b7eac4d9fd56ef0926fce9becde1a7f76157514bb95d8a94c375cfe358688900beb5980509

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    10b85aae0ce459559787579b3f9564dc

    SHA1

    ac507c93be5ba8c393d1fa716bed879ba582995f

    SHA256

    876d7c43d1f5947b895c01779ba005ee3b8472091d173e673a4855f95ca0c37c

    SHA512

    4dad5fee192101297005dfc999cf1ec7c3145b47f4bcff167001253c67f83ba324de3a57d9ffbab3f88c23a08e048e44d1577db2c094f70f759ac76b9807d9fb

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    2699b36c00970869bbc51f7a88b2c749

    SHA1

    70c8a06eb557070e0fbba26b281bbe2b622a12dd

    SHA256

    72b592e2eef1025ec26dde4b7c76a9bc6956944cb6319a7d81f65994149f1a41

    SHA512

    1413aab8588026553843f1eb292c66e628efb079caac9c5d1e65294eca75453cd40106f1ceb4b5b888936f5736beba944fd12601cc18cf5c3eb605eeda8621dd

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    9c08b9810c6d4be480e16f2076d1593a

    SHA1

    ac8567f8a9f62d2da8b8f8dd19d7cd59a708c5df

    SHA256

    e307916a86b5bf6dd35a07666af614071ca24bfa31ca46c6a8dbc397d3e5dda9

    SHA512

    b770921f89192a43bd79f35b83530820f2bff34ce8727b0ef5f01cdbf94c7697c1fe1d70c9670265e2fdb0bdc986fa91205e916a97c615c53f0fb3b244cea13d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    b241dbe6c6596a139e7fe5eb003df98e

    SHA1

    8ed1963e91a312e307cbdcc44ddf4bdc507a782b

    SHA256

    a15954d8e135713b64fff7ed5f1975fc0ff1aa0d417c31413c2039b05d9dbbd7

    SHA512

    6e329d8f5b3a723b9ae1d2e2b0ef5133cce0b47da3cdbe843255d54a1fdb55da01f40546b2848fc180150c80617eaaeb17f222144ffc9f700c37bac1ab050966

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    870f1f3c3b2f3bc1dad1f7a6c97e387e

    SHA1

    27bba1822974199cc2205d7cf6f9e43d42e3c86f

    SHA256

    97ee88e6f1b8db2b28bddd7cfbe3820716c59896fb9b7c5cfd5867e20fdeee27

    SHA512

    e06fc29315a06f19410384f2f539ca8574adfa779d17c540f3a8bee03a489d8c9200dc92386945c7006138cdb017698a8d07140c1ace38ba12149777cf674b74

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    157e60a215e6af5ef3771eaf7df71bb9

    SHA1

    6cc4aaf3a216c0b516d646208bbf29760c78ee18

    SHA256

    4b7c9f33e938c341875453dd8b705eabd5a142b511a910a2d3f6382c54023706

    SHA512

    d2cfe80f32909136003755eaf3a89260af0754e409b1fbc671135c989ab791063af0e31a5dc400f7953935a1831f62d4f8527cb31615b8a1bd1ef90c36c82e0b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    9586e8c2e84420380fc35aceafc523e2

    SHA1

    a8cbf033f6daed988de96dbe7ce8befbc50254ba

    SHA256

    ed5a0068c6592e8bd6df0c8e148aaf7d0c0c4ee9b1d7c36d4c65b57ae3df94ed

    SHA512

    b21d07fa2170be789d86caefc996c5d74a791f8aa7dd8a8c6624182c36c1c62cd1f340b484cb139b45f3110875e9a004d7810076ade9375fccf58374166e90ea

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    dd79633e170b2d2b25e1b60033052c5a

    SHA1

    2e08707bdda24be4b38cc724f1ac16a1c2770254

    SHA256

    8a208e3db8052644c98a8b7f45499fe075aa08fc79f9b1b9678597f2e904b845

    SHA512

    2f1eb08b9f9f4e2bb9b076675319081750aa93a190a715cc4c469f9631d59affdb4520fdb55902fb17453f3c84948ac1a29d552fbe9641e51a85c78c487039f9

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    b6f0ba424dcf3f38da45f338fed27cbd

    SHA1

    7b085f213a5fb2520ea4a267a061a14068f173bf

    SHA256

    de0f2f926d21dea0489fcf54066c689d6e94a633daddfa36f0544aba29edfcb0

    SHA512

    38714a2cd1679d8d5bb1a2f4dbe5a6b7c647fecd2a5f90a11d9120b6418c340ed3ab988a5e0d99d5707b84a5d6c8a40a4259bf7cdf614995b8c219ed842432ce

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    979f22fa16db680b7fffed4755a8f17b

    SHA1

    bc8439c5c1149aa533367a0a4983faafa5edac26

    SHA256

    d4bb625efee0989438451cb5d298d6e8438c3666c892a6d86b08d220f2bf67ee

    SHA512

    fcf68478fb7b98aa54d010f75ddb6089558fa62f6e79b6d635286396b520e59ef23d22585e025d9a22eeecbcb0accf4f3acb05baed67dc2a279917ca3fa79dc6

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    a1afefa3618f0549a4b8e1c751df6039

    SHA1

    3237a2b814f941458f7035622eaf41c44f8ba13f

    SHA256

    ab91f5fbab26a348ab57e70e0c207a029e31dfb2ceef52ae8b7f9ade71b8c22d

    SHA512

    cd5b606044ed7dc73183f83f8a3c296bb37764a7d8e087d36ffa3b5e645b114adc843ee4ffc7ae69b15dc1ae2bdd22e910ccf3d8be3a3b5575120557850560ca

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    3d7873fd0d0dcb2a4de452f8ec31fb8d

    SHA1

    9380acb120405f817baf13987ad760de5af496fc

    SHA256

    03ccbd15199254da0d85872cf0c0b143df41dbcf909210361bb6be872bc8cfc8

    SHA512

    d50965f4d4d73bd0825f13f08e1a7543e9145be1e8e2b532fcaab6df631d09d97716d49b8eaa6ab949f1ec13550aa6485e1b2fd1d7aeafd9f31ff248d86d50d6

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    17f59f4e8430865b25afa985ec9d48ac

    SHA1

    6fee7489d1a56c29dada2beb0190ecf3b3bd5f0b

    SHA256

    0c59b0053e932b70715c62cce3b8038acd96c4830722cc555aadd34ce0ffc8d3

    SHA512

    3b5bf8bd5da6f1fa171dac84134cdc4cd62fc8bd4cb28ccce0a8c3d4f3d7cf171d29baeba1dfbc96b9b36ca45dd232dbc1fffe9efd23fd0fbb93d0c1e9aebbda

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    af390fcf9190753f351c1df2e59a22c6

    SHA1

    1062eed980b164325f07b4a4c693447e95280d3c

    SHA256

    77de326488fffbf058afb7778e67502f344db6a78a1c05e72ec86d67dbe74861

    SHA512

    1fcdf665eebbc18de3144492cb31cc69f648ffd1f399d816c94afb64e56294c225fa1ff15d4ab07346c951c851507281fb981b30ba47d2c6e0f0c5a088fa714c

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabA40F.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarA4BE.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit