Overview

overview

10

Static

static

10

Vvv/betaa/...DME.js

windows7-x64

3

Vvv/betaa/...DME.js

windows10-2004-x64

3

Vvv/betaa/...lit.py

ubuntu-18.04-amd64

3

Vvv/betaa/...lit.py

debian-9-armhf

3

Vvv/betaa/...lit.py

debian-9-mips

3

Vvv/betaa/...lit.py

debian-9-mipsel

3

Vvv/betaa/...est.js

windows7-x64

3

Vvv/betaa/...est.js

windows10-2004-x64

3

Vvv/betaa/...x.html

windows7-x64

3

Vvv/betaa/...x.html

windows10-2004-x64

3

Vvv/betaa/...t.html

windows7-x64

3

Vvv/betaa/...t.html

windows10-2004-x64

3

Vvv/betaa/...x.html

windows7-x64

3

Vvv/betaa/...x.html

windows10-2004-x64

3

Vvv/betaa/...t.html

windows7-x64

3

Vvv/betaa/...t.html

windows10-2004-x64

3

Vvv/betaa/...x.html

windows7-x64

3

Vvv/betaa/...x.html

windows10-2004-x64

3

Vvv/betaa/...t.html

windows7-x64

3

Vvv/betaa/...t.html

windows10-2004-x64

3

Vvv/betaa/...64.dll

windows7-x64

1

Vvv/betaa/...64.dll

windows10-2004-x64

1

Vvv/betaa/...ses.js

windows7-x64

3

Vvv/betaa/...ses.js

windows10-2004-x64

3

Vvv/betaa/...er.exe

windows7-x64

7

Vvv/betaa/...er.exe

windows10-2004-x64

8

Analysis

  • max time kernel
    119s
  • max time network
    137s
  • platform
    windows7_x64
  • resource
    win7-20240903-en
  • resource tags

    arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
  • submitted
    02-11-2024 14:36

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    Vvv/betaa/betaa/backends/include/httplib/test/www/dir/index.html

  • Size

    104B

  • MD5

    aef30cf746db10a8fd09ab6bf6b701ce

  • SHA1

    208361e1686e97df83bd2a47eddb6339e6c2d0f2

  • SHA256

    c1744dc371ffe1aa631aa917e0e43a7ec53fb6097975778b43dabfe0f2d05bde

  • SHA512

    6dd3469e78d6000e20fc21c158984770fcb134ecb4c47bf0c24b5a54dda138bc8fb54ccec01d16f8eab7d653ab8bc45b7919c8258058e26948c96c2c28712f23

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\Vvv\betaa\betaa\backends\include\httplib\test\www\dir\index.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2376
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2376 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2328

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    c81b30ea89d942dd9c93c69277a9ff41

    SHA1

    6d41c752c04c51508d0b522f0c5b72aebf448d46

    SHA256

    fdb82fb856b57544913e45c8cbbb21c4c7ce753b53fc11bce559d7ed9cb6b9ea

    SHA512

    652206cbb9eac6a85cf5bff07371b5a250745b91ff5a741a46fb52fb1e27d73b202bb8b9957a17503bf47a8b8ca6e341cb5d15e61630b5ad3854a29a6e0a7ac2

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    7a5fd7d6161e5bc861d84f6d944dea77

    SHA1

    0357003811f02f4ebf1f3acb27bf984ae15eaa5d

    SHA256

    4896db3b931eac1473e712c0740e6837f352896596380cc7952edaf35a843478

    SHA512

    33753eddc2b585f99115f92cb9bd33528beded5e713886f65b3924719d43b5de1366203423edda96ff7114436bdfd867be081018053fb5242102549f8a6314a2

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    ab82ea6808c684692968e2f822ec3fb3

    SHA1

    55d6719b3afdda537608183976bbe04f0658265c

    SHA256

    e18ae74f45a7bf8220007d09e9b000aa5b7ca90900bd506caaf548d83a877e29

    SHA512

    af9f044f35d64c73180d80da969976cffb70818cd1e2e977a87286838f50427e415a99694ffd97476b9c1595f6cdf3db36be39da06952d93db726bb095799f6e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    5af2b10fb9ed02261c424cd6286dbd91

    SHA1

    b713b228febe18d9ca5ca10c2117e0faaf4f70ae

    SHA256

    063568c5f440ddd889dc1aa26def06c1cfdc6bc237dd09be2eaf693dec626dbd

    SHA512

    d8a59dc019f5cfa31867e37b34b0921b15adcb01991057e2fdae9fcd892afd6790a4c8f803788636e73397f297f3d26a0460ea3ebfcf69133b6e628a82f30e5b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    4309af34757eaf3bd0914ca95e11345f

    SHA1

    8bc95f02d4b25bcad3c2283e0b27be217c670390

    SHA256

    4ebe8334083067400c0ea483e8b730d3993b8fb4c6e32781f9bf899eef60ccb0

    SHA512

    30e8281b8a186c9526fca1f48e594bea0b7319a14a24731943b92a327159bfbbe6aa3fbf76e24e8a70565adfdc11f49ccd965201b04ac613f94e9dc730bb88ff

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    576b30eb7136338cce830c9bcf84d71d

    SHA1

    f5d7f80f688a64302b714fb603f51e104fe43eca

    SHA256

    289773e0e53c93b2e53da83d784200580d3dfcea0bfa81ada9a2d452d2573c40

    SHA512

    6821e5ec8765fb271cf6b76cdf7da1c89fbb39dda14f45905b9d72c8bdd95ea7cd90de753f51080a0e953f511dbab07d32b294be7f7eb5beda04f3e07a66809b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    6c812f6699e780a5f6c701896a00efa1

    SHA1

    eaed6f837ffb33ff0eb697b2530b3d645ec69f58

    SHA256

    cf77695d1901313a992cc83cef67227dca539e0b2ece38058d4b6783b1d7a2b4

    SHA512

    79b4a08fdc6ef4a28f427c084f4c0bdcc48255cb6b61d63c37729b42b01c63100e9d22d16c3c355bcdd5ed15e6046feeb14ae769a8912fde03a4c7291d212a48

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    c61a22aa1b4d76af0e9772d2083d8147

    SHA1

    d0306666633f46c43a13e144c5c4421a06254ac8

    SHA256

    dc5041b26628c5b3f54fe85c104957e595415249a404ea9d10e1ceef59ce3135

    SHA512

    2dc7de8a620ebabf1ace302fb32c3cb4ff3ac91fa8baa2f2015a6ed192d0ec74f23698b40ca533303648c6828bc94a93f5cc6e4a8bc840cbdf2c9565258596b5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    a701146ca47e798472d23641186a39d6

    SHA1

    e8cc0bc59e6fa3bd76ed404f1db19f39aaac0958

    SHA256

    68c80fc0e5abeef65ea587765dbc2bc68bb12339f395f778e1261a9f8d246246

    SHA512

    b486579586ea9a0e6d225e70c54cff501c89b7c7037cabeefba0b8cb929db3549be29b23634261254667fda49735c979eff70def50fab643a277bd6541ea4c82

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    d1e74df576f745630832bde45b1069da

    SHA1

    ebfdbc2864214b6e5ed5ea38abbfbd60b76fd9cc

    SHA256

    75735128724adf6ebafa18854f7fcae92dffeb42b3b6fcd3a3971824ca5421b6

    SHA512

    eaee1c68200d22d6c7fb8d6221293dcb5e18f377e8886a9e6665e5fc69fa36d99f48dcc30b815a65d4deb8b3f731e09ac3d676675e3519826be7aac19af1e228

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    9cc27bf1513871cd7174d1a41c90bb98

    SHA1

    56ed728030ef147d9c642252774fcf775329a39d

    SHA256

    4dec90db02219779b5ca39808c064c9991660066bdc605ead57ed44c691a2884

    SHA512

    56adf60aaf745777630e10be50d4849272619ed77683dd385e008f41e89574b7118489ba144eb7976c51d7abcf73cdf06cbee02dfe3d619b8b7ddda930c0fda0

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    83b201215db56480898f579ecfdec297

    SHA1

    0efeb0f951220c254a104b337e6c7c7a6e3200e7

    SHA256

    226b3b72bc5c9d6e913603310850077eb51e838aeefd093f04c37ba98ea5d33e

    SHA512

    4f3248c664265aac096fabccf4682c172e1c4784913d5791bc1d97798ed1a19ff4d2758a9bd44afd9d22d9a9e95c613baeb92a9acc7840adf5aa543dbc215ad1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    bf8b5d227dd822027c473a5373430775

    SHA1

    92ab2ec1d7edf3ccc62a1e652bd2d737fba86e9e

    SHA256

    25edc4b9b6ad7b98b1432b99ffb042aa75679f7e65d3e4e8bfe7b0f90a6ed257

    SHA512

    f08bad579812099803b07848de6ab00a7baf149e3875e8b02e518f382aecdab9f0b0292c0d23df31c29486f303a1390e4709b539154a6398969be5e1b8a0856b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    6fb1c1ab926d4fa1dd3fa7a7ecaa2983

    SHA1

    40942b082974476804489b9871951174f052cbbf

    SHA256

    841d091e5b802959e0d8621a19db4a2c8de5e7697809ffe63c613a0dfab219b7

    SHA512

    626ec5167e27ad43735b33f62f771343b427c66bfa5b5c711e83c8b6663bc45d129a33aefd28075d449efa9f2134eaf6e48d98102d322df139fc18e64fb44373

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    c67af5ba3ec47283ad97dab9ea751e86

    SHA1

    0a90f610904383a5a693dcc176443c51a8b9efd9

    SHA256

    4ce4c6c4590b0fd7005ec4f619555e13ad00f81b129533e84e6ae3ac8058aa36

    SHA512

    aa15c385e7a94d3d9441e0912ff7b1774c90c1f1a819f2c063b8af2c8fe5e06bc99f88d60b04fbd9d7c51f5860ec12c033f95a7d5f6e303298ef6297837354c3

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    96fbc32a875e63bf74bcfd7f18128d99

    SHA1

    acbe728bda7163a28be169dcec8777121b9dad0a

    SHA256

    ea8163abbd36f061069d397b08938b742dc361ef08e2abd8202bf125fbc8a300

    SHA512

    cae4c647e80bf837388d3290fff4c84e2bd8df971db15a536f1e574d9b16ef5aa7e6624bf56d66779f4f76b5456ad7b65e10792d0847d178d43e2c815dab68b1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    521bb4b8c48f8ff7252782809e5957ba

    SHA1

    1d3ebcd106f6b927422a33f5ed617ca9c0399b8f

    SHA256

    27e1c85357dd8b7c56f6f33579f63840424e10b448ca766e1f7a823c476ab246

    SHA512

    9ab3a408b3761742c565ac8908411e109555e2b5da1fe131bf8cf56f9c897651149f77ff599f0a96ab7f23a75b41daf934839b0d5b86b3389c3fc46e02ca8245

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    bedeec8388f6009650399e72b145633f

    SHA1

    3cc11229cbb156b4b66ce4ef3a89026304e847d9

    SHA256

    e70c08defea1156a6efdf0d131e8dc3c78a303bb9220124bed4e9ae9cdff685b

    SHA512

    5e8249e65443703bfe41bc6a62336810b3881d68361a88aca5f861a05d9fe979ec8d52f146e0757bf0be3d3b0b46c48aaba97c5bb802f64ce61e2162127310ec

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    d077f853365285ba8bcc42c26aeb7048

    SHA1

    73c44c4fa7f023478add648dd0c548154a9aedf9

    SHA256

    1ba61784ba7ef5a83059a93d93be0f45da70cd31b99368ff40547a339840e95e

    SHA512

    417ce4d7c9310d2cca467c53cf407aed6a9c4a4b86b1e4885d10694d75e20be809405dcf2b21972f927799a0e60c355cd501647dacdb2c8d11f4f2f4c9abcf0e

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabDF1C.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarDF9C.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit