Overview

overview

7

Static

static

5

181eeeaa47...18.exe

windows7-x64

7

181eeeaa47...18.exe

windows10-2004-x64

7

$PLUGINSDI...nt.dll

windows7-x64

3

$PLUGINSDI...nt.dll

windows10-2004-x64

3

$PLUGINSDI...RL.dll

windows7-x64

3

$PLUGINSDI...RL.dll

windows10-2004-x64

3

$PLUGINSDI...dl.dll

windows7-x64

3

$PLUGINSDI...dl.dll

windows10-2004-x64

3

$PLUGINSDI...eb.dll

windows7-x64

3

$PLUGINSDI...eb.dll

windows10-2004-x64

3

$PLUGINSDI...ss.dll

windows7-x64

3

$PLUGINSDI...ss.dll

windows10-2004-x64

3

$PLUGINSDI...e.html

windows7-x64

3

$PLUGINSDI...e.html

windows10-2004-x64

3

$PLUGINSDI...ge.dll

windows7-x64

3

$PLUGINSDI...ge.dll

windows10-2004-x64

3

$PLUGINSDI...n12.js

windows7-x64

3

$PLUGINSDI...n12.js

windows10-2004-x64

3

$PLUGINSDI...ime.js

windows7-x64

3

$PLUGINSDI...ime.js

windows10-2004-x64

3

$PLUGINSDI...ket.js

windows7-x64

3

$PLUGINSDI...ket.js

windows10-2004-x64

3

$PLUGINSDI...ftp.js

windows7-x64

3

$PLUGINSDI...ftp.js

windows10-2004-x64

3

$PLUGINSDI...ttp.js

windows7-x64

3

$PLUGINSDI...ttp.js

windows10-2004-x64

3

$PLUGINSDI.../tp.js

windows7-x64

3

$PLUGINSDI.../tp.js

windows10-2004-x64

3

$PLUGINSDI...re.dll

windows7-x64

3

$PLUGINSDI...re.dll

windows10-2004-x64

3

$PLUGINSDI...re.dll

windows7-x64

3

$PLUGINSDI...re.dll

windows10-2004-x64

3

Analysis

  • max time kernel
    133s
  • max time network
    127s
  • platform
    windows7_x64
  • resource
    win7-20240903-en
  • resource tags

    arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
  • submitted
    06/10/2024, 12:40

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    $PLUGINSDIR/IntegratedOffer-Truste.html

  • Size

    9KB

  • MD5

    5951e0e6dce014feb870dbd45ffd301b

  • SHA1

    f34ef36abf7004a8646e5e7e468ff21cab5730bc

  • SHA256

    38cc5d151c99170fea208df9e9184c67e31486788e44194e01234f98948247e8

  • SHA512

    0a37624751e09cc25f924e622f53f1e32624669045ad20d43f592a660e878f5b8cf42c400371f99ef2dda069152873439db7dbf3ef20881afa08ec241b0a39fd

  • SSDEEP

    96:dsEkV5dynO/34r5kGk1wqJqQ149JOnQlVewEe399xkEEl93s5SzZCBskp:v65InW34kGka874OqnHrxbEl93fMBN

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\$PLUGINSDIR\IntegratedOffer-Truste.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2096
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2096 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:3028

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    f757ab711d746adccef546873240b529

    SHA1

    700819930502dd9f8490ab6391fbcb392fcdea8b

    SHA256

    35c8d121b1c848a5e7d78998fe1e7c5ebffeb1219a6dcda41027f5ed325822b1

    SHA512

    a15c24950b510ab80c6a9fd4d5104bb96e5d52e34431235862794aea45028d2974be5904af936a1880b161f886d750724e240eebf371458b08539caeb816769a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    b8f3c6b8d27175c8d6200b9aa2c48385

    SHA1

    326dfc9764b7c5fdeccbd0d93fe91483dce6bead

    SHA256

    7f64fd5ce7ab9318b6ffc7badb112fed2affb9c88428051be57055dbd507b829

    SHA512

    908cf80edd191eda46678463401338a8a020916c3184925a3f5d94f9f91aaf9b24de55852bd151cb1dce6d820b5ba7b992989d1bbcb261fbfc2ac22e8e54864d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    9b7efca71a174717e9f874ce28753ded

    SHA1

    dc139e65918daa763ad88f00d543cd7079d48346

    SHA256

    49c759009fad5b102cadf2706be7db1cba96f218a73073c976f5635d7c476782

    SHA512

    e99787a5b35eae1bf1a1524e22f6c2507bb2ed4cb4b903329c26e66f27e28b919906e307e144a6d9f45b74b610fd5ff1bd622e5878fe8084498fc684c06a5c9d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    04bb4bdc82b9dca1e017d62851a640aa

    SHA1

    6405aa974010428121ddc2fd0fdf87d094bfcf51

    SHA256

    af6a8b78552f1e5c96cfa4227060843d5dbf6d1e2715b15dd177c94b126f7867

    SHA512

    783d7c3a6ff045234b97fc72d802819cd94624f609d121899b4341d91d7229debb26567e2c203f3bff175f8672e65f61d62b30b7255ed07808003f24e63987dd

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    d6b0b1bae17bedc1242345691a2a71da

    SHA1

    9c0fdbbf8bdecc0c49511b82de02fbdf48b1c6e3

    SHA256

    5289bbfde804073e5fac28df44f66a1cce187244c08b5b7c8bd0646439384419

    SHA512

    761be45860fc767e0651155472e8477b40f28d77e55f1b8969b83bb7a37636eb2d886d51d711eb1d16b0cd4751b08459cd26c6307e6c7d1360271a6482b9f1e8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    7d5b42e800eb5c4da27f28c39955174f

    SHA1

    7b715e1630054d3a588136b8b1f5bcab0d6ab35e

    SHA256

    084a5a4490bfb238cc932127e0348ff642ea8d397b5def6a0567d6f9bcbc5924

    SHA512

    83faa0a52e50df28503f6c80fac0c25ab5fb1447bc39c67515f5aa58e47366c9f4b1d5e167679dc8a3653a51d92a28af5e397826db80598565027f4d12dddb4b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    f3d6300233915596eecd5dd3e3a80a3c

    SHA1

    a67c64e6ecf3f587d64640d1d69356a4be8ce9c1

    SHA256

    e2fe9b00129e56abd54e1f9faee4471b91e0bc60952ff242d97183ca94530e51

    SHA512

    9261adf3449907d6e05982965573ac38d3aa44396b117eef19855489e1e02ecf4b6b317c542d826679dcadd467aeab9910829635ca79f17f38eb16a69c66bded

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    b38d3944cf2ffa33ffa90b6d8997bb76

    SHA1

    f6ca7fd745732c13cbd97c0f787b3896032f4b3b

    SHA256

    083a4b5e2129a5bdaf9bf9e6eb29939df2c3a47c34d866713eaaceb88d324da2

    SHA512

    17dbd4891ae655b2f89d111bd6bdfad47298d8edee703611accc8c72cb028570c448a50b031c7774da2229c33afb879586718864cddf2785a98be8ad75dcfe9f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    e669508618d4b3785c11f9a7b8c7b7f3

    SHA1

    f6db299d8c28eee396b28bef9003dd037c6dbb97

    SHA256

    3d59cab9e6cb80d3401c8a64281a5d8fda99888d5348ff739f55de948b1d4403

    SHA512

    e129e12c8c52fd05cb3f29f096fa3b0517b01fa565a9bfcc93a52f98362c5ca0e7fa9dfd6d1f00454bc461ddc87c770bf20380cea86a3431a7f49b5bec64d5ee

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    3b9cc331262865c093c5f1f95ac4060d

    SHA1

    99b206f8e6cd2203b86fd0526155e286ad522be0

    SHA256

    db06cd273f26f4ca1eea8b865f3cb3ef2a7bba26f13a31babdc228965a2f2866

    SHA512

    a5889f3a6379440d0339b44dae8288b10c7bafe54197bbe292c7171389882de9d1742c90bf470207ab373d32cfe44a42a453f0ca13680657801fdb29d7df14c9

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    d73ddde40d286400a6d62457b44fa1c6

    SHA1

    6faf5a1bc2f283585fe62609bec8c961356c12cc

    SHA256

    5f487854c95b1e274b40d04ec7607178899f23200054241f1f9ba4d8c5f71d66

    SHA512

    36cd565b7a51539cf82c271aba5a8583bd5652614a0f1aabbf5e103414e2b27fb895682f3ec81dc2b95b4dfc1d4962b82a2ee72bef219fbdd1ffc1932d35edbc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    e2f526a624adb5c050c4a5160977d3ec

    SHA1

    5ff7c53fc9d81e1a5b2e9c31ff5806deb933e644

    SHA256

    c6acd93130bddf3560b5e1a2dff585804f7a30f5c6cc03da4a42a17867fc5be4

    SHA512

    c78623f2aacc1a836c93afc2b69678ef063278a5167fec68dda661046f3f87f2a43bbf4ac7acc838b20dcc1b8485fff63cf040901c01e510e874551d8a295bcd

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    995f233be4edf9454e67613c176615ea

    SHA1

    2bf773081e0d29b270a67a3af889b0f009cfbfa0

    SHA256

    aaab5a0c7e9142a965802bd994b2d123bb4b285d6c3186445dfb6d240b22ab7e

    SHA512

    28f43ee4171366545ab1716b9edbf9591eb07e6c697df5d96bde1c1869ad144ebedc3ce6e9d051e895b7f21bc1f4428f8ab3530179e68e527dc6e249b3c3a401

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    3d559d2b29f22ad446863352711d8c88

    SHA1

    c8a36087fa62a7761508e7d6f6da190516abf308

    SHA256

    84565321bef5b4b378bafce2587c317f13db1cab8ccbf0726decca6d8694cffe

    SHA512

    f241e2e8d42db8846b4daea1be5f1f28a75e54b9f05e83490dbd930c3bf1899757df67fd1df56014e041dcabf2591bffc288d66e1eb1572b549512adefe13cd2

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    2a234706a403479497c9f60c9aad7230

    SHA1

    586fe044122bbec6fe9f4eb97c4057753c610c08

    SHA256

    408479b7eee9c00278b95481a76876665c4758626b0d94e0f9f58f251cb9cf86

    SHA512

    9d148082c7172cd9ee381af61fc99dd1b398483c90760a8d92c82a1af7cc1533aa08497e49b584adf6eb78b00e85879de833083198ebbf33b8b92a2be1b362f4

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    627381f73eb907132f09c3f2cd8fdb64

    SHA1

    6be54a87e4fa831c42058606cfc8b1460ba75b4b

    SHA256

    d2bef7c2a40e771cfbff2975223839746464418ec11ef6149dde6d514c869958

    SHA512

    fbe7e6d50824e6a8bbb15285153533843c66d7be064f90ef7b43e8f4212aac179c7ce91fb49265eabc88c09381ff60fc69bf3bf6ed0631d5b5a6e92c3597af6e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    85c47072affc8c9b4adb501b03d3b547

    SHA1

    fcc4204b4f77d091d00d0b05471e9215dbfa1974

    SHA256

    b5428187ce9b03732f2b51a75cac14e8ffb3baff8e048d900bf456eb457b6f86

    SHA512

    457908255339495e03dfa7db039606c6ddbd554fe48f04c0f3571107203d1138ea50b9b17d8ea9ba5b466ff8a83100a7089f7ec16106d9451be04ff35bd8ddc9

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    5af1737d9a3babb92f7582a3e8aaa51f

    SHA1

    e1c969944e435e41a2fa6c319f37f270c3495cbb

    SHA256

    e89b14a7180a931e35825ac10f2b12e0cc1ec2ff0d9dfd4262a266a9cbaa3270

    SHA512

    90ab8860401c899cf858d4b4123ea59f1287cf4cc7d718b49c450b0147fab039a0512499cfa42b52f293756c90de6bff7456e38b129609923d56dd5c6b0e6c1b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    1958670ed96086de91d396443463293e

    SHA1

    05065b8f8ce1c1df24c8e902fd6bd7e127a71ff8

    SHA256

    c4cfecefc096793b138769b952a04920f411321da8e4504d8b0dab68614a2476

    SHA512

    251c4aa850df89d0521ac8e50918fdc268d83ab13fe356864c25c7b01b7531fa0ac013818cbe15bdc3c53b58e5a244075a9dfc93020d804ca841d13cfd96faab

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    8c6782b509d980c4224502ef81a38a8a

    SHA1

    6ebd81837500dbe1abed8c842667c76d3bf4a690

    SHA256

    43d1d243ddd9e7129b6027bdd33e0751268344056a61625e9ff5c1a436fe5b43

    SHA512

    e4266e5df29bcc17a4ba0d221ef8c452a441ffe7bd9a7ba413a2aaa243f26fbc53dac642f33eda03b9d3e1e30d2e44f61347b758bd920c32579ca5e2b13c0d8b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab8BCC.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar8C6D.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit