Overview

overview

7

Static

static

3

f6668db0b6...18.exe

windows7-x64

7

f6668db0b6...18.exe

windows10-2004-x64

7

content/br...oad.js

windows7-x64

3

content/br...oad.js

windows10-2004-x64

3

content/priam.js

windows7-x64

3

content/priam.js

windows10-2004-x64

3

content/pr...und.js

windows7-x64

3

content/pr...und.js

windows10-2004-x64

3

content/pr...fox.js

windows7-x64

3

content/pr...fox.js

windows10-2004-x64

3

content/pr...fox.js

windows7-x64

3

content/pr...fox.js

windows10-2004-x64

3

defaults/p...efs.js

windows7-x64

3

defaults/p...efs.js

windows10-2004-x64

3

html/background.html

windows7-x64

3

html/background.html

windows10-2004-x64

3

js/background.js

windows7-x64

3

js/background.js

windows10-2004-x64

3

js/priam.js

windows7-x64

3

js/priam.js

windows10-2004-x64

3

js/priam_b...und.js

windows7-x64

3

js/priam_b...und.js

windows10-2004-x64

3

js/priam_chrome.js

windows7-x64

3

js/priam_chrome.js

windows10-2004-x64

3

plugins/Pr...PI.dll

windows7-x64

3

plugins/Pr...PI.dll

windows10-2004-x64

3

$PLUGINSDI...ll.dll

windows7-x64

3

$PLUGINSDI...ll.dll

windows10-2004-x64

3

$PLUGINSDI...ig.dll

windows7-x64

3

$PLUGINSDI...ig.dll

windows10-2004-x64

3

$PLUGINSDI...fo.dll

windows7-x64

3

$PLUGINSDI...fo.dll

windows10-2004-x64

3

Analysis

  • max time kernel
    121s
  • max time network
    128s
  • platform
    windows7_x64
  • resource
    win7-20240903-en
  • resource tags

    arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
  • submitted
    25/09/2024, 16:24

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    html/background.html

  • Size

    480B

  • MD5

    72606a5a09d6a744c892ee6a29af7f26

  • SHA1

    1b949d61859ec4e6edfbc86f0ca62b5699a66110

  • SHA256

    837f591bcd4e0ab2cf0d38027eea57805ac0961435084c36f242ff8e3aecedba

  • SHA512

    778fd756da6c5864416c8ebb7ae15110fd4614ab6202814d6bc27d8cc0294308bf2785dd9f525e775aa9d41b8f9f065de8a402006f0659331107934e2ea3c463

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\html\background.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1984
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1984 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2316

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          74b72bc73a1e48d85a49b04b55253460

          SHA1

          a6554e7dc6c8bc89ea71a0f5a67660c06005b039

          SHA256

          6bbad7414ebddddabf8322c029dd063a3a987b5e4b6984c67cdd1c086dbd971b

          SHA512

          7952d129764dfeaa74cb87d873cb1c323a3908d60062a557eb36f669381bea1ba905eef4a7c6a91bdb8bb796f694988c1e54d3eb210be2a4227f8de58e14fe4f

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          de25a94b79fad549ffd2eed821f00b28

          SHA1

          caec3c36138840f92849dcd01a10f3bf8330ee96

          SHA256

          808c88fcace7a17c11f41c3332d612c8bd4322e76035831311351f7984b3839b

          SHA512

          e279b59b776087289605986da7fcef329e760d77691062f832cc8c15fe97a97e7ecf34cf6338f11d2499236e7c64564b2b3489fbe9e91a3b4768c7e4227ea611

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          a3d0ea48121f566a2e204d23c1db370a

          SHA1

          7c47930c8561b41c9f3fffcbcf4198b67b2e2236

          SHA256

          17981630d52ed6f886c443e9bdc579acc64b6f120aee919dbaa1b9e61c373b39

          SHA512

          571a317803058fa67e656084101aad4c2c745898a9834fb453159083e1401f6d89837178850668f574496036531d379aae2aed277108bd0131219ec79d7e33ef

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          ddeffd52dbf65c50eee65e3415341fa0

          SHA1

          cb671811b0c6ca8bf79d0270684a91171578b306

          SHA256

          7cfdc748223766dc032ab7df7e8eb80ff5dc16082c119033bfe1379991fb29fc

          SHA512

          dd39fa87b2bbe3360d73616903d54f283a3538d35d55ee4b2613eeb4f550f7f98e71ea4f026035589bdac8845a00206390fb0269f856b2bd8bb95f10fdd77e5c

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          57d66e5621874d5cf3e2262f401e03ed

          SHA1

          6977685aced3c328b00c6281e114c4e39cd9a087

          SHA256

          4c63ced9456c0c7c76328a5a22ac3a910d9ea29ef5941aa91193449fba7a0872

          SHA512

          54395c82075b0cd1cd0d141a113d55dcf6ba77a1a83663afa69e9e435689ca2b33bb9b62720a07b36f43dcc1dbe7ae9c80325c1b625c82ed0fce9f03ba0b2e5a

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          aa315780b2e64a48d9ba58972f6394e4

          SHA1

          299cba61dc379cf8624a2dc3f4ca5608f8332c03

          SHA256

          e85540afc0b0221299c96e567d9a910c2f56b97f8cf6afea6c1cb8e6c112f3e8

          SHA512

          5ca7931db7e994699408cfcf49ac9d594004bcd9f99546bec7905de66cef31991cb58deb2201f571a3f9da82e8ec3a509932c4ca437ff76e4cb80fd9a9992830

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          f293a1c87d5914e956d6be300629e7b0

          SHA1

          2f0b8163bda58d011c68fe66d4c8190eda10a93f

          SHA256

          a6d5806a954e61f1b4c137bf5c8dd9bf04d54c3d891591ea1c1582d7d74a7e92

          SHA512

          d0baae3b50883aa88cd42f78e58c29af903c9ed49842cf1a33783fb89fc5129b3768de4101314ab91296d10b24357315aa2a8644dcbd82a558597a5190a5d7f9

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          425faf07e4f8b515f0791ab0b3226d17

          SHA1

          7d2d033d92c87301594b81fc6628908648202e80

          SHA256

          8fb129621e1ba72b73c003c79ead1dc1921d6c4a9777e39bc105ea2f60274305

          SHA512

          0e32e3b46dcc50106c6252034d588364e1e4b53c22548a708fbd257ba8f689d441a16ef3ccdd9e3922553e7c01b37f1a1f360d32d81a17afb07184ca9f9abf23

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          37607aea064f1b22f802adfb5301c126

          SHA1

          0ac946ec6276181ea201f9a51dd20ccb710512a2

          SHA256

          693b02d4d36e57e66bc6c1b06d79af5e0d1016ebf487f03475c53971e18b2b21

          SHA512

          e6b423ae21b17a955d017e550e3a93646e33d92fd34c77cc08caa9caf59e78ae11fe3e1e2c7dc0e69f7d8ef82977685925740baa3adda53d3ce61c2dbb423753

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          38e44e5b809a1ff9d7de03a4d4dd8ca2

          SHA1

          7b19e27c2d78346e1357c45c52b11d657c44bfc9

          SHA256

          85ef4d529044cff8973670a269f1fc71a8d4504a1a5e31e9c4b277a15a8d3188

          SHA512

          89233dcf3585ef9959dd1a00b9750e38b363016992157bf0becc9f693788f0500a2d4c4ae2b6fdeb377859b916c6b17e29433fb8fd5238f90b50bda355c1ce86

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          0ba255bc744cf2a93635ac1e62265ca4

          SHA1

          72771f7346086a614a3a5514272db74f00bce2a7

          SHA256

          6b093f33c8879597654bd504b69d7e094ecbafdb42a169eef20710615afa073b

          SHA512

          888e34b9c13efacaeea3514f602c6e1dcaaf60b4cc103f418f2bfb40a234e43a3f8144f7b508150ef82cb2ffca519f0b2d34fde2312a9c6c8037b4f57885c708

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          2f512a665374f16c086ca86f5eb3793c

          SHA1

          cc03b6f7763e9afbd12c69f62939f062e7326b09

          SHA256

          196d8b9afe54f3e18822ecd0e482c53bb9f1f884af5ac15222a7af7915476a40

          SHA512

          abe6a64d35f7cccf2048421c8053987035853725d089f65ce1e1d366f12dbf37633323114e5835dffe48aecbee83a630075e033c07af2934d1ccaf8d87287b75

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          0b401d6a73e316a81a881341812d7d8e

          SHA1

          4ad94224c4d5eb778c3ee470a9595bf0b0a90220

          SHA256

          3d5ea2c15571d7c234f2961a7e18c90ed0547480c93515eb36a000f7ecab0150

          SHA512

          0ec5048af0473714690df416072134458d23f17c69f7080551fe8733fe3d5a14f5debac17e01f724a7a245aaff2d2d8e12541bdfe57d26437b8452a82e1f01a0

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          56fe0d9580303f337b7eb7958f496d5b

          SHA1

          4ecd695f6456b7954e77371f76562a2c08093d4b

          SHA256

          b57b320195a93289846cea5a880eaf10ff3ab85caeec19cf597b10f83e48cb49

          SHA512

          88b26c2f2117365b99f8a18b2beb8275ebd486c45d57a65614af03cbfcababde31f189bf8001d0ab1fe386758c6c8d4668f01c5ae82588dc61056d01e5f5aa6d

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          65248f526a63d34c7b82b178b2932d2b

          SHA1

          eba8e4bcf39a8efc307bb416ffddd4c0fc36202d

          SHA256

          4820be2b94ddcce603108714cd412f7f59c1ce0ab5d5840a53dcdfde4c1f9236

          SHA512

          59d5967a71150df8db9efe8aa970ebf5f5b694ce67712e9d84ca9403e1fc4ec942cda342fe80e89a130ddfc0364447576e95ac54365e27c9eb0aec40423ac784

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          2289b76f8b18eb4f744c61bb9c3147bc

          SHA1

          ff0c4938ac7ba7c5e2fddbb1cc9efbeccfc3dc47

          SHA256

          ccc42848d39cefd37c6a74258e3440d7de728a6ff2c0aef8e22052cd5fd80991

          SHA512

          432354560fcf199e159ccab7a08e05167ff22314d528b86fe05362d54dce75813908ac3595a4d95dded3669785d11a672f0285193a5fc5490c97116c0ade65a2

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          aa84228f4ecf072e064a160bc788183b

          SHA1

          3334b2f1c840cc0116bbb9adf802f7d9055a7830

          SHA256

          19f58da77563ff0519deb60754b7416d8f48be902fd7c1d3b844d7e89bda7fe5

          SHA512

          9b7d591984e0629951a8b19af5767f9809521658b65f9c6feab19006c1c679aab661b34b246e715f4418f70b1db777a947f76daf858535b63e2cea38cb33ee6f

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          ceaa5309bb761e7cbdc54a889b1231c1

          SHA1

          7de14a1cb76f40c098b208752a032ae0fba7a4a1

          SHA256

          f54de6907b4b7b639a1f63cc5be0bfb11e338f7de028531f01a701417ffe2e2e

          SHA512

          6ac4e537e97f11499e260f3721f4b85765a2a986b552f72222e8000cac4668db5eda6d71f9a00da4f6fd6325052dc659b0ca6ed8a608a0294a6b9ba3ebdc51fe

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          bb6b0f903798fe24d7b89517408c6c00

          SHA1

          c0b3f93269ef3cc0bdf8fab2c71155d7b2006ba6

          SHA256

          cf389f4d9f9c165edcf770abd92a515434fc6d8cd1740a6f072ac33babb87374

          SHA512

          f3b6f191141286d15e09c8a3dcf1eea3e74e6a88947d85ead26c4d99b77f155c0f2249d22551c6ff43d77b7947bbf49117368ad0ca26f7ef7caad3dae7043af3

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\CabBBC3.tmp
          Filesize

          70KB

          MD5

          49aebf8cbd62d92ac215b2923fb1b9f5

          SHA1

          1723be06719828dda65ad804298d0431f6aff976

          SHA256

          b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

          SHA512

          bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\TarBC63.tmp
          Filesize

          181KB

          MD5

          4ea6026cf93ec6338144661bf1202cd1

          SHA1

          a1dec9044f750ad887935a01430bf49322fbdcb7

          SHA256

          8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

          SHA512

          6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

          Download Submit