Overview

overview

4

Static

static

1

custom/about.html

windows7-x64

3

custom/about.html

windows10-2004-x64

3

custom/header.html

windows7-x64

3

custom/header.html

windows10-2004-x64

3

custom/help.html

windows7-x64

3

custom/help.html

windows10-2004-x64

3

dialog/dialog.html

windows7-x64

3

dialog/dialog.html

windows10-2004-x64

3

dialog/js/dialog.js

windows7-x64

3

dialog/js/dialog.js

windows10-2004-x64

3

node_modul...mkdirp

ubuntu-18.04-amd64

3

node_modul...mkdirp

debian-9-armhf

4

node_modul...mkdirp

debian-9-mips

3

node_modul...mkdirp

debian-9-mipsel

3

node_modul...rp.cmd

windows7-x64

1

node_modul...rp.cmd

windows10-2004-x64

1

node_modul...rp.ps1

ubuntu-18.04-amd64

1

node_modul...rp.ps1

debian-9-armhf

1

node_modul...rp.ps1

debian-9-mips

1

node_modul...rp.ps1

debian-9-mipsel

1

node_modul...rimraf

ubuntu-18.04-amd64

3

node_modul...rimraf

debian-9-armhf

4

node_modul...rimraf

debian-9-mips

3

node_modul...rimraf

debian-9-mipsel

3

node_modul...af.cmd

windows7-x64

1

node_modul...af.cmd

windows10-2004-x64

1

node_modul...af.ps1

ubuntu-18.04-amd64

1

node_modul...af.ps1

debian-9-armhf

1

node_modul...af.ps1

debian-9-mips

1

node_modul...af.ps1

debian-9-mipsel

1

node_modul...DME.js

windows7-x64

3

node_modul...DME.js

windows10-2004-x64

3

Analysis

  • max time kernel
    120s
  • max time network
    129s
  • platform
    windows7_x64
  • resource
    win7-20240903-en
  • resource tags

    arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
  • submitted
    21-11-2024 08:37

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    dialog/dialog.html

  • Size

    8KB

  • MD5

    5852b3a026b8f7448bbfe8ee2bec8932

  • SHA1

    308240a6726e6ec0422e160db815ea7740819b95

  • SHA256

    41427cf4f2f73e2b24ff66f8b3130a9bf360f6415a6319e182daf63b864d8314

  • SHA512

    bb49383a4b4503268072b0f371706a2fc8e5e4e0ad5999abb1fc7f352dce0d660e447fdc17d7c9d0ac307630442a31ce494fbc6d32a492c131ac22c2431bb59b

  • SSDEEP

    96:UUzWUtoFiuKFL5QEosFpwuZjp42o0VVagzWj9kAlY0c9pXZ0aQXrU12zuZnC80JA:f6UwEHXwuZjpNlf6j9V1apXyXiI4iw

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\dialog\dialog.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2348
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2348 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2088

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    a69c06c1781d38a9210eaf0b508d83c1

    SHA1

    7d35df7f49a65b58017be694bcd8af6dd98cfc06

    SHA256

    d6d784af4597d6229c33aa6f2cb5bfd69fadbdb1705216dfe5f46f0d969ed568

    SHA512

    61abded49432e24026affe3215e540af9fe5fd5dde815b6bec5989b99566068dc782cfee96e9ef5e93f7f665f1da076bd42e8a192284ecfa5566730f4dc036a6

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    0eccbbd6ffcf04c02e7af0d2958f2ba8

    SHA1

    2b6d94feaa107480ce30f5de1b62bd0e27d9415c

    SHA256

    d78758e26caf6ff7b42265cb4b6fefb2af69e210e442775689979a083df71535

    SHA512

    f397225c54d803905cb5f300fcf14998d79abb48e83b5aea5278cae74963f61f25fceac9099a95ccb0cac9a2766cc8cba0bb76f5ae344a113ad5aeca6986aa92

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    fca749100ddacb79f36890bb37d8f8e8

    SHA1

    9290e7ff69af2ddfbf0dfddfb64cf85b321491e4

    SHA256

    cfd29afe0a86be2974c27a27579e71d0bf03f09e5a1a073f1a6ca97c39f53b2d

    SHA512

    6d37780a9dc054a1e3b2c51debfd0f3266efc65c51774c510edde79120c9ea272aefedf5ce2970e20ce6cda9f815c5a5418e1354ba513d1b19f4f3215d0396fc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    12a02f332d50029697bfedf592c5c01d

    SHA1

    3174adb8c29064234bd914a7bcde3f4b28af682a

    SHA256

    c14574a064452983a6e8e6f8cb11ad56c25c33084a2e5cde94bbd0539d90bb1b

    SHA512

    74778485e3bf6c16ea15200d08a7cb7beec0653cf54d1f8d23c552fac638eb6d3c840ab84636cc34d49de6cfa2f515d73b028f44cae186da94acfb1c134734d4

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    4032bc66e530e3703691abbfa7accb78

    SHA1

    f1c528c277d7ec177209f4f8a25577cd09364fdc

    SHA256

    9077610f8f8bd8c861a3d348ebdde28c82bbcddf8c4d2afc7d460140f67fc243

    SHA512

    187681f5b420b893101f0d5fc4f6a7098d4be53ffd1370930fc0e1757aefb4bb54704c5926252f91379e37f0e3f54759f3b63f325f4f85e87186fc8ca5c14c1b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    58ceaee7e527b28e9dcde2eeb110d9b4

    SHA1

    f053219bc45eb18f5e9dddcc7f78ad59ccf1f133

    SHA256

    e81eab20f9d94b7e4ad09340460f1ea5eea9dbf4a88162bd2bff455f43892288

    SHA512

    14b3d0f75923f7069a2f596b77ade8abd24ab345e92b2dc43f94a904f9026134360dbeeda74aaf1aa8432ae726a6a227aa649e4d283db2ae63ffd8e13c89aa3d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    f1e345aae12d98274c7a27d311c903eb

    SHA1

    12e3aaa217216170d21de6740cd616f3b49b66f7

    SHA256

    b581bcc37520a73a8b41b1fa81fe4ec805fa2c41414474408705a611275e79d0

    SHA512

    4bf6d032ddd9e42740ef1549c74628f1a46822ffad0d809e9a7551608c6d9a26b1c0e0a8fd4b7421892d1e1eb4cc9c01d09485da634483faff6e8e83a71e2be3

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    19de02c9124f74b8b1622abf9af30124

    SHA1

    f32bc9055eaf1259c19f3ff19880c82e5d3a4fc6

    SHA256

    4ea574fb1ef25618cc8b26ae2939cc2ed3f9ac65aa568f37f2cdc59aface499d

    SHA512

    3b4a98d28fcd4269f1b7f0bf09f1b751f08eeaeeeb21e8619aac7bb2798abdf5f07ebd9509ac21cbd77c89e5b6d4cd427d597688ae6c19b2b76e4f31673e5b07

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    06a8e98c852599d94877b6c11f1960ac

    SHA1

    881699aec7ccee9ece068e75bf8430b50ed3bd90

    SHA256

    8292376a27320de177d0119b0fb8e562aeb7b8a53e0e45501ca4a6b6b6514bde

    SHA512

    4f365d47ee2503aacf20de1858f247fb5b09dd252d2fbe675c6bc0d511ddc300a99fb6e1e6c341a724fade604e0b97c58743d0ad2697347d96f9d43add53a583

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    c33e0cb7c343842eebbd60fed23b99ee

    SHA1

    7ec769651371588abfc47be85bebde0708e994db

    SHA256

    3d6abb4d4bc590cfc8f9599ba251a9498545c4233f88a473fe8e1c5c68609019

    SHA512

    58e97fb375a60751e6b0af52719b987af3ec77b0bb56f0a27317ff122665b1899afe142a86af020a379520bb939f1800d99ab0f2aeb74ca34902f0a3c4ff068c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    f06742582f8cd3fdb3d3620262fba02c

    SHA1

    95fd1098f2f701fba885f920a608055416c40789

    SHA256

    7260b96f61477ad6cab46e4f83a24179b61bd1637d6892aa56928da700e6acbb

    SHA512

    0a698b09a20ab9e5f19e5dfd0baf5eddb076b31bd8b674a593bf3b7d1a2e87f20b281f744e2769925b079475aa8ead8fbc33821a5c6df5345fe23e62714f6839

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    b43630f1979e353249e4ea013f7e5f7a

    SHA1

    c7f8d1da084e534d992cd4477b10527afeff9831

    SHA256

    b9385532173354939bd8814c74cf4767ed7a3b89740cdef236def8d5544a2c3d

    SHA512

    029d4f79bd425d1f17323279f24df588f8dfa0b54d855e92b6b826f96aa95aba51b292b4428ed95043b3746a7941fd20f6d88ca0ad8d4f01a07b48dcbcfa3aef

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    219c9f0b7f9f077d1fc2b8588f9ba0d7

    SHA1

    af8b87ca9bbf5d6790373d33a330eafa1ac72ccc

    SHA256

    153c86ce45684dff2f26fe69094f7de6b7d878cc8cebb59e44d85f45d47db7e5

    SHA512

    87a51995bd79e57ebb6e24f785e525f2a27fad960b3ba97781f77b5e60566673314a922df8b76083cf5cb1720980c80d4d67dca8702962c106a9690616cf1ce4

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    a6bfc5c5068db6918a92b2b5c835bbee

    SHA1

    f3def90bb7be17e91e69b4876d56b861e5ed0e55

    SHA256

    1bb3965c7f375f5b9dbbb28f661b19cc39403ff65f6999800487748fbd4518db

    SHA512

    7fa75ce225f23235afa32db116bae759c5eece21b2e05662997d98922e67c91cd0156508a5f2b77b244be02a766c74683f442b1f487db930ebedc317a0958472

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    8840673edcf0114b3776f12f00b61e57

    SHA1

    760e5a613ddad1ad3481dc5b0772edf2a3195142

    SHA256

    52d2562bb0c960db467f1a8bb8f96bcae80510a1cea35420d82acd2635577ee8

    SHA512

    d40928a649fa17848b0acfb6e07f1e16f693571e887b99e5d0bc9cedf43ede791301498ccac67558eae3dd12bdc1cf8c24c81ece7fb6922de97feb2ac2c22238

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    819edb3eea3841797e3ee21864965ed1

    SHA1

    252a47eedcfa64d95910b62ef0b4fbc99945d611

    SHA256

    2a489055c866deaa20198ef714c734b2e2b13995e4ab69f5f18834947ceefcc8

    SHA512

    296265cec3cd22852fa2ed910ee52cea067ef015a701a9e10220782eda3f0802b0c90b15154bde9fdd2bf9248722ed0fdb15b6782f7250fc0466efcbbbcd4ba1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    59c3cca5eaf573f4e32d8f5cc10336cb

    SHA1

    064cb836df8a8e2ea9650eae8598964ecfb7630c

    SHA256

    6a6beb6dfde1e39527e60aecda98d798dbf279a5c929eb9b2e716f06dad55c0e

    SHA512

    f4b24f401bdd9006c1f7d5594083ecedc3d0084bc5492b599a8b2a1589678e85ba5e747eb4091315497c9d954cfc90f2109eefd50b64ba0ba951047f75ab7971

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    ccd206f0f244c25a14738988cba5c127

    SHA1

    ca5c30893274aa25aec3621243f71d38b15eb8ba

    SHA256

    e3db61a73695145f42a28bdd166a8febc87255886908a8979382a2811e4a47de

    SHA512

    9666f4ccc8a6a508c50b2e6e17018c3e432bb25300f315684568a60c5a8bbc5c79b03f7e7bf05d22e579b082af3318b9e5c0004389d1d6fdebadbb59c9ae19d9

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    16c55a1e6e358a10595137a45bd6b0ee

    SHA1

    61b2cf959bcc3564abb7aaa62c6be6ea97783c18

    SHA256

    1429109f69e0f6d54972480eb7092d067b7489865c575b75f30df39c14e2699e

    SHA512

    70bf31b3ebdd67ff02f030f4cd69ea1e625249ef92713dfa92cafedaa505bf2e5649833851619529dcc431bf2850e8146f6c94967fda3a376e78a97d7515f716

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabE60D.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarE6EC.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit