Overview

overview

10

Static

static

10

Vvv/betaa/...DME.js

windows7-x64

3

Vvv/betaa/...DME.js

windows10-2004-x64

3

Vvv/betaa/...lit.py

ubuntu-18.04-amd64

3

Vvv/betaa/...lit.py

debian-9-armhf

3

Vvv/betaa/...lit.py

debian-9-mips

3

Vvv/betaa/...lit.py

debian-9-mipsel

3

Vvv/betaa/...est.js

windows7-x64

3

Vvv/betaa/...est.js

windows10-2004-x64

3

Vvv/betaa/...x.html

windows7-x64

3

Vvv/betaa/...x.html

windows10-2004-x64

3

Vvv/betaa/...t.html

windows7-x64

3

Vvv/betaa/...t.html

windows10-2004-x64

3

Vvv/betaa/...x.html

windows7-x64

3

Vvv/betaa/...x.html

windows10-2004-x64

3

Vvv/betaa/...t.html

windows7-x64

3

Vvv/betaa/...t.html

windows10-2004-x64

3

Vvv/betaa/...x.html

windows7-x64

3

Vvv/betaa/...x.html

windows10-2004-x64

3

Vvv/betaa/...t.html

windows7-x64

3

Vvv/betaa/...t.html

windows10-2004-x64

3

Vvv/betaa/...64.dll

windows7-x64

1

Vvv/betaa/...64.dll

windows10-2004-x64

1

Vvv/betaa/...ses.js

windows7-x64

3

Vvv/betaa/...ses.js

windows10-2004-x64

3

Vvv/betaa/...er.exe

windows7-x64

7

Vvv/betaa/...er.exe

windows10-2004-x64

8

Analysis

  • max time kernel
    134s
  • max time network
    134s
  • platform
    windows7_x64
  • resource
    win7-20240903-en
  • resource tags

    arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
  • submitted
    02-11-2024 14:36

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    Vvv/betaa/betaa/backends/include/httplib/test/www/dir/test.html

  • Size

    9B

  • MD5

    eac0a7ec83537763d3ba7671828d0989

  • SHA1

    5017803b9ee9b00cc52db4a18a64b71cfc076fd7

  • SHA256

    f34a7fb61a9cc01eb48c32a902d2ef73398b12d8baccaa64ae41317c1d2304cb

  • SHA512

    e6aada78bbad1b708aaa109e3d40a9ef8e2f23d27fe6c1ae371067d6792eeefb4a456d8002001eab540b86b103d73ce679a7f622aa90b44058f928a551cc5229

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\Vvv\betaa\betaa\backends\include\httplib\test\www\dir\test.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2996
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2996 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2316

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    bdc04bee1fe1b48d2a66d4206c47bf5a

    SHA1

    ed779e021ad89ed9da79a522b45299e1dc90cacf

    SHA256

    dbb49cf06f3f52d8f54244760c7d1fdbdd831734c4669c673919f4d1b49bf245

    SHA512

    18c635861e55f53d4f1c93b2ed5824625670924ce5b480807df5cfbb29609066ff58b04225115686bbbbf38863f1bc851a12c7571e8fee192322c1faaf93df68

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    f79f4f7e1e275d4d8d53aff2ae77e1f3

    SHA1

    4cfdd36866356f8949a30cc9030be97177fc7212

    SHA256

    0c3f36634067a8b59525f8f36f909b5839f2d51a8034204ca32dac3f00b5a6c1

    SHA512

    730f2a79cf2da49fbc0c5ff1ce9a36c4ab5d99e7e360147445dff7a7688aa15bde27cabd4ff312436dd11b6a84cbbb4e2ad66d3de5126462deb17128a760c334

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    61dbda61c9896b7f04a4b155569179b2

    SHA1

    59cc3af95163a253b7d4ea17e86787c1289bfeb2

    SHA256

    93a216e13eb054503693bff6985c5d4e58e334b93a80ff3f91abd8878d501780

    SHA512

    4a6e4d3460b5cdee24387863a9aa02f81ab827e3f4ab0b2336b3a8a67bea819a817199aa2ca85ca5ce2c9ed7bb803e7ccee5de525c83fb2634c5a7f7aa2337ca

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    d6fd6521538b3d3ea7a438caef1bca4a

    SHA1

    b20ec0a1a6f8f6f4d0a8ece5e0d0b5fccb2fb547

    SHA256

    96f99e0763314b589830b573fcdd60eaecdca0295c8607ab0795b559b8e0c23b

    SHA512

    66425ebfc3b19473845073da1a5f1c0705bf71a59721ae2ff1ec35728a344bf624f940c8e26aa22fc05123982046eecc7a60be9054f3d06ee55a1842b6c54a7c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    35ada1c7b6921ac9c70c30176490830b

    SHA1

    2153a6fcf827c9cc4e917f0b204bc5a3bb0acd89

    SHA256

    fae6ea79ff35425dee613b30329b85313b350350e9c1365039f452c7497c0477

    SHA512

    edd34cf106fd809f523d0d1849fadf23a0f6213b06007b5f64fe17d67a2237751bcdd71642a44de3ee0f9f353225a52269bec28cce49df9c9675f03a80a19add

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    42f8e6ad16589d82061804fc25ff80bd

    SHA1

    bd71be384d5b0ef1f977371fdf27ec85b6bfa335

    SHA256

    cb8aa12595e2b75bf0fe299f40ab73149bc8ee2bbfe851df56c38642f88c9f1e

    SHA512

    2c864a645c5cf17b366311671ca5f738ffc4326cfc8cfdbb4f6a4505134b0b46ac9096ad6d913a8260fde14ad60ee343b65b6cfca1e5afeabe0e5509600ebdd5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    ee6744644f0529e9909218b92527a1d9

    SHA1

    dd62b1ab2963f68105d04532c9bcc59f01666a3e

    SHA256

    671e753b0eb6372b96c6ee3cdcc3524dbe702afb4e0543d6d7c235eb4bfdbdc0

    SHA512

    fcc09bec79bcbd54a8d1b4c347915771947d50a00c5d6d07fd72532c7ddc8d8a05dde407dfafe58897f13b8e09df04ae53eca2e5db6afdfba32da1a1dce0c279

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    84aa187fdb1220b55678e2eb209677c9

    SHA1

    4cc3dfa1f56b7241e3b557af844cdafd2a5e5912

    SHA256

    e48459f4f7a423905a9a831ae6d41236c2b524abee3b5dfff0d58d704dc3dcc1

    SHA512

    89a45722bdd8c68c5c958d5180ece3ce5cbd06c589204365c244219c6d7998de8fe5543bf1edee61570bdf7a79dea3b8635106b6ad3b9207ce1a7b6461e2fdf4

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    3b735f3941ea9f43796267bb32a5bd5e

    SHA1

    a68db1a6d810a4b758af24ee3f967d65adcfe097

    SHA256

    8e0b1a91026c3f7e8a2392854d1c9ac3faecc0c02df4a5c76902bd2e2fda17eb

    SHA512

    7d6e901912a2a347861e9b15322373def76814224002c1b27117ca3b3f1fc199634c81d42cc7b06047477b26aaa4be3f4123bc5a1a3802770af010e51983b978

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    2fb4bc6b975ca300841502df3652a25d

    SHA1

    9d7b1687ba4efd1bddc1c8937818bdf2ec34dd6a

    SHA256

    310bda451146b6c377cc33d551deb9a9aaa64f812e5062549de887b1a1a88ffb

    SHA512

    958e17b43768a328a20ed9122d604b8c8416470413077dd03c14ab38f308fa0a55b29eb0f0c02d3f7623a7cda44cbba50d11104d717908f168724b46dde22ccc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    13075056f2af000eb447c1ec3db8ff24

    SHA1

    0f68bea6239c18165c8345af5756fd9e9608f950

    SHA256

    edc0ea8d2b09823a2ff6fc65bc978dfb27a3572738c24cfee52cb1b4caf1ed90

    SHA512

    c7c46dbfa62935f2fd44515163bd17443380713ff1eb98e059828ccac32b0847a8d955cd6321ea8d73e6eae85e64ec41ee25ce0ce96ffca22dac6cfa5d273078

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    653216846fea47a79559a513783ea3c0

    SHA1

    0237037e8833c598aa6bb9f14609ff530c5dadd8

    SHA256

    a55ca30725aac53591ca190165d4bc97731d32aacb9598023b0f79c7ee33bfb2

    SHA512

    faa465b14eb701e0f7559f6ce3fee39cc4f10bf9478a3512cf266d27fcf6f2e478455e7430cc3d868d1ffabdbda62312d21dd224e777cf20c83591d8d55faca6

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    19aac991e185830c6d38b45ab2644aff

    SHA1

    e5d6bb18eafbc1a52e7216fd1ac4a6321af7dd77

    SHA256

    677087c8302da9b852954e1562e1bfa2f0a8fbe6641e6313ca91a5608cb18de5

    SHA512

    cf74e808bdccda2ecb0c20a8eb7c89789e3b1f10ebcba17fce1b9cf2b452e8e68822f1e203d00caf8abace40db6aa1447fc278d383aa6d3b19d5d807f8807746

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    b5f2f93a5ce1dc4c9df214efb162a439

    SHA1

    c7e48b5e5ba5023629a0eaeef5d3cb5bc6f690fe

    SHA256

    ac1e9cf2e2b1d7f867b93d975c0eae8e525fa25eec988659e1020f2219a8246c

    SHA512

    780bc5247c6ed16a08c658b3ece37bca84f48aa6f71ffc47f74c04c78b90437fd69bed8d184e3bc06a8c0920f0ea0bc2f81cb2e3a3a51b87a9c49d0447778634

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    8589fd88bb78f436fcd1b196cfc4c093

    SHA1

    7189084c0387cb6715ad5f8d844a71732a2fd115

    SHA256

    78a72b4353b128f2bf191edb5b82ece24b0e6a595a0de02890158a38ed053b67

    SHA512

    bb55d84eacac2b864e051605635135c17ac967fb9a00573b8741437dfa2ad252fb84636b3f4d2a77777bff1b8d5ed6c4559e122d6105d6d3d0cbdd0792258f18

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    458b4578a9c07cc9ff1b31d8b06b083b

    SHA1

    10bf41d68212cc4ef7189cfefdfc7f2fc0804957

    SHA256

    a4b5ea91cf137f7e2a9b72a5fe56d565163bd001e29f14f476ce936c56bcedb6

    SHA512

    5428cce5b67eb63508d26cc83c4cdb59d60d3dbbadbb503d5af40ca55c408746bcf51af90cf5e4fe24623383bd7f38e1ff431ae64fa6a6377724180b6ab6cd88

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    14eb0e83dfcd49626c31591bd9c711ae

    SHA1

    e80d0845b89862ef9b72eeae495df9af855baf4c

    SHA256

    97445463c77dd5472504090441623eba50e9c31afc505997ecca0f458f00e4b8

    SHA512

    5d11c49b7d5a6d8eb76fb79ee20ddb109bb95a8f3dc54aa2e5aa91494fb38790c926dbf95546613c62d1cec860cb2549d333078792a7d9d32f78b786b41c0024

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    0180948af5edfc3460dde7c149c8b690

    SHA1

    350064365e995b67538dca4547798ebe838453fa

    SHA256

    95ecec85bda237bfed75ab7f40d9069cfae96fd710eda16748423225787b6f0b

    SHA512

    33f9235275b7da0bd6f0117d210e489bf5bdaf6506e05d57ad9efa739b82a7f50331d1eb7a7c0f401f7f32a98bff5baf673ca1f404ae9f85b19b2f52a41a2ea5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    4780f7897dd01243f87cb1eca9dace87

    SHA1

    1c05762faee55e5378907f15e73d2e747e746d4d

    SHA256

    7b170d515e2eb7d1acf1071030121f8b1da7fe1c2709da01c8413a953b72216b

    SHA512

    879a8fb1881e67e9d38bd2b7badcd561c8283d878d76c61c8cb695f39c0306fac244f6ea1ee2e97a8f0e9bce1b91e7dd19aa2928294f909319861461bcf70e6f

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabFD75.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarFDE5.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit