Overview

overview

10

Static

static

3

DEMANDA LA...ZA.exe

windows7-x64

10

DEMANDA LA...ZA.exe

windows10-2004-x64

10

DEMANDA LA...CI.dll

windows7-x64

3

DEMANDA LA...CI.dll

windows10-2004-x64

3

DEMANDA LA...fo.htm

windows7-x64

3

DEMANDA LA...fo.htm

windows10-2004-x64

3

Analysis

  • max time kernel
    133s
  • max time network
    127s
  • platform
    windows7_x64
  • resource
    win7-20240903-en
  • resource tags

    arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
  • submitted
    22-11-2024 18:23

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    DEMANDA LABORAL POR ABUSO DE CONFIANZA 01/info.htm

  • Size

    949B

  • MD5

    6642ecfd9abc4c366908d1107ba2514f

  • SHA1

    3420d1750a40ecbc3764810fd9193e855f33078f

  • SHA256

    89a7d58c875458308f86299b03ac99b73cf4fb7a14dbc43c94b4295f12696a7a

  • SHA512

    d5f469b2313510bba79c840c3dec9dff160bf68f48b12f3aaf107472e0f03435bfb2eaa9962b536e27eb66647304d7760e11ef22868bf129f698edbb057c7dc5

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" "C:\Users\Admin\AppData\Local\Temp\DEMANDA LABORAL POR ABUSO DE CONFIANZA 01\info.htm"
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2644
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2644 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2816

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    c057c1cf45d8a317ce6098aba54b9035

    SHA1

    e088f6d23e02b00f4ee13098f619f491250f274e

    SHA256

    e590dab481f96a1f74f0bb37f3b68e35d3b95b958cc47eb00b53dc75e5243923

    SHA512

    0d3179c65f1075d1be9f67f6634ff7129b0e0bc8d43182d9d47f77458d8b089ce8b1a6b4b76f5ab989fdb9b4c8debce04e85a1e5ba3ebd95652e4e53fc9511d2

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    be661fe0ec7a23e64a9d58164faf1f10

    SHA1

    1c4116418a72f82932f81a967f21fb4953d6f7e2

    SHA256

    aa7f3ba487968c9d92218d3a329e315abb6740065d08c48ddc889a869f0eb698

    SHA512

    888e843fbd3273cf6ec09fb44de62a3579d189967ad66aaf2962bb65dbf104fb5e84dfea1144507a5b21f02367e272fdab06fea2ee8d0f25b727b27f0cd4bbbc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    8e0224eadc55d2f6cf4b092519f62ab7

    SHA1

    14340cca85398d61bb787aff5e13d5a1c7cda66d

    SHA256

    8973049ad02ec2c16ac1786b78fafb2c00862d9eb1676abf709e2f8472305a47

    SHA512

    c64df34d4176ac6c8cc4aad08844b87349572201752df838084eb0dc491119169ab2d205aa02e3a3ac915b954d97c183dc655dd5fcb11142ce62fab3afc0da34

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    be9c63b1de1859d1fee33d02a0f7ef38

    SHA1

    91c009d4bc26a0710061c48013ad8b05591fa86b

    SHA256

    713bc2809a393c2721e040a69785383607fad7f35a5b79129f2386b8489dd706

    SHA512

    a5c23e11d9ca9046bd8458b928f7b7e1ae23049cc3007c1d0c43ff58de6b383c96da22c2c25745e9ca2bf77ed3e12ecbadf3c064a6a300fb51c14b405d3b9a6b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    ee3165373fca443da208b3dc8f7f1411

    SHA1

    f3c0288cd0843676e3a30969c9b0012ffdbbf8b9

    SHA256

    537756023be691ba69e4dce324e396933ab508676868e280a4ee5030a6ea0840

    SHA512

    e7e1a72da76b7b7a23f8148ab3eb9c67410d13e29f6838406f44ddc1f1ca907488ca2902acef29255b80cb4b1cb796df62e8577e66920f8e6d5a9aef2d80b7b9

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    cf4d4e992b72c8bea891ce11b93c6248

    SHA1

    9b7edf1e869e51fdde477895cb63488fe7c021ee

    SHA256

    b308d07d27081c47747abffb06e6f4df239dfbb98b4eedfbddd4810a3079ba5d

    SHA512

    1564d5ceba3d8861e3c41cd1d0d31f97802591fc8b4a677ed3916d89982276cee6889f9a008405cb48ed379e13de42f0ce342b279781918e67c6fba4b151e439

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    05e28fe320831f94c2a5800790a1ce51

    SHA1

    a9aab4a100c6882644963f16ec8d620f1a541bfc

    SHA256

    3e7e9c8ec654f3e70883542e19530cfeaf0959db77e57b1de6574a14106e2fef

    SHA512

    c65675ce216fd3e5fb51bd4be203bbc11d6c2224ecbf7cf33ab2073cfb5246b9bb0e9dff371c8fcb1528f0b6385069ba69143af26db0ce619ec2fb845864e75b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    f3c1e6a2756354c90deaa661683c2896

    SHA1

    263b45de36c8e6b606b71bba7a4490b5d299b243

    SHA256

    f51822a79c608d39bb46d36d13c788a051f12430c3b4d1e1a1b17da149751ffa

    SHA512

    d118504ff16c9be005b0afd7e8f4d9bf88c72d9d3b3eb5e31e2ba973ee8337230ced7f2b17fb93acab267fca150f9da7b0b2e9f31fa4668a1f1ad7e2d3b4b655

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    b9814448312cd6c962f89d38ec774f12

    SHA1

    4cb0ad3e4b8c3c973907fb16e7e08f691a3bb607

    SHA256

    a04182240a16b4a1dd9c9063cccfa0479dd6e0d83c279c0bca79ffecb9ae2035

    SHA512

    918dabc05d03a2c234a1b5670353b31623c9d4fc9e247756b2b2f916f4d44ec8bed664747a61acf7bf443db191b39e825fc4b64a5d50523eb495996da6208715

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    628def1328b4d90605b04de62f98b53f

    SHA1

    24c4d403bf4b6101d8b92a030a4fc9b87e2277a6

    SHA256

    7fe8657e8596f2e36e4b0b07bc51d75dcd16236bf4566dfd1012f1373628d5dc

    SHA512

    b15c818f5480689b8d8d6006418ba9ba44f5eddbd481eeb504239df604e187d19e576fc8b9c123c65e5f526d6e6954aa77b3f512c68f4a623e93761f5e5de1a2

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    5e023aaf479bb87af12dbf521c041971

    SHA1

    0d87ac8a3acf7448bc50b33ddc84a2012d4a74d2

    SHA256

    a58d20f3a044ab5a1a003024af79fce43c08accb8fbd08aec2c80450cf6ed043

    SHA512

    ad37efc2728c767a160957d17579edf7e04f3628d3d8303f577c77b12ad5b059e88a68df2c60703b9e84f292af0d30248d0510c3a15229941bca4cfd86de6dc9

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    ec6566d3beea23979d4438ddcbb63f06

    SHA1

    e3804b2aff4d17ad62a5853905c4b7e8000e885c

    SHA256

    a020d68afb7b2afed0e6784c46f5e4dc14c179750fe2dc6766dd51ffdd93293a

    SHA512

    785481ebddd40921e71792f67d1df6661bda86f7cad3e3119e2e0ec3fff0df6306d3f8c0fcb555f3c5d0c030865a73730350082912b1bda7dce39ffcb014b94e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    2f55a328ce816189ca28811d3eb9ee4d

    SHA1

    d2f3b35ae80b205545e903dc743faf0f609bd6a0

    SHA256

    5e323625a1072a212e0e71e17b83d089c36d05641ff964c7f23781f55845bdd2

    SHA512

    21b85c5976c0415a7833f3265bff094c864609ab3efe503e83206c8eac15548d645acf238f1ffc9f0987338bc64d802626f1b79a61abe3d384dc3d4bea6515e6

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    c312448ca627a5b37a66a5a55d234c1d

    SHA1

    01d0c22b4a845fe5fcf5edc1b5682c4c443970b8

    SHA256

    e06d7202856896ce49ff227b9ab844cd22f5de7ce963a7119370b0034519fdb1

    SHA512

    dca3951c3de93ff6d94030658f140200a7ee97708393a7499d30030dea2e9acb75586aa4dfbc8fbc78e35f600d52fa8aec64fb11ce716b630e86585020b3e054

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    d632200a8f522c38422e4a9638450081

    SHA1

    b9c7050e650284a6b6027ab506cc400ad7fde98a

    SHA256

    b3501d2aa50fe1e9c8f5c49d837c8a5287d7bacdb35bd69ea1834f28ccaa879e

    SHA512

    53b00b5e9186ec9a045d70012d86985ac536609f1c939a248fd2cb1fe8de69972406d05509834563f235513a2142f8fb199687205c2ffb071087d6c5ab573a36

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    7608cd532099e36f845ca679d1ffad5b

    SHA1

    e7140b134c350a85696f0b3172d1c643d07eb762

    SHA256

    fbd48542b843698d397a7e8d06e33874a75a71098c711e9c8b7e24824db856cd

    SHA512

    d0d30f62d9f1012e2a994627670e9aef1088a562a7b02a86f61650a1b3f491f9b2e7f7cd9389e952284b37a23831dd9930d8766d2e2f85bfc1cec2e2ef3246f1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    f9a21cb852b597b271180f33ffa0b9ba

    SHA1

    ae199f145ccdb18b8912af28a51c72b8f18b68cd

    SHA256

    27a476e4695e70fad11ec7247aa614313a1876fc54e0acd50d33344d253fabc3

    SHA512

    daa4f84542d07bcbd0ec56ad10088eb82364014b0e317c73eb85dacbe0b3b32c19da258adf017563f451e881b4d134dbefc1d3ccc460f8342afdd9be776a2def

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    c5564974c4a8995a8f9381158d4f9b86

    SHA1

    e0630681de9c5c7ef2403a61d5eb353688de15fb

    SHA256

    3e36fcaa709f7d1fae59096a93453e6f103495a8867634a6c772254d51d2bef1

    SHA512

    590db2214536416001170a6d880aea54af0f37aa63dd3f16669c8e3e83f99c48b754b4269482748296e681bd96c0122907c22f78ed4670d45602d5b21ad8f81c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    c0d1c0b272f8510a029d5cb091a8c9cd

    SHA1

    fe5d1b1e41c49267ac6c5ff88bf50426763a3239

    SHA256

    0c4d1d2cb1c825408079738a34dbea5b46a431666c1ac089579b71573e687705

    SHA512

    b399efc42245da319ff110426ec796d137cf0d929fedaf3428c59b3011de48b0828093e5a40f44aaba699323a26db4e6770ed37e97e05edb1eff880faaacdb8c

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabFCB.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar104C.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit