Overview

overview

10

Static

static

3

b7938b29a7...18.exe

windows7-x64

10

b7938b29a7...18.exe

windows10-2004-x64

7

$PLUGINSDI...em.dll

windows7-x64

3

$PLUGINSDI...em.dll

windows10-2004-x64

3

152605369.html

windows7-x64

3

152605369.html

windows10-2004-x64

3

1916524053.html

windows7-x64

3

1916524053.html

windows10-2004-x64

3

3072838935.html

windows7-x64

3

3072838935.html

windows10-2004-x64

3

32093631739.html

windows7-x64

3

32093631739.html

windows10-2004-x64

3

910218026.html

windows7-x64

3

910218026.html

windows10-2004-x64

3

SuggestBox.js

windows7-x64

3

SuggestBox.js

windows10-2004-x64

3

Uninstaller.exe

windows7-x64

Uninstaller.exe

windows10-2004-x64

ads-the-in...d.html

windows7-x64

3

ads-the-in...d.html

windows10-2004-x64

3

locales308946821.html

windows7-x64

3

locales308946821.html

windows10-2004-x64

3

Analysis

  • max time kernel
    149s
  • max time network
    150s
  • platform
    windows7_x64
  • resource
    win7-20240903-en
  • resource tags

    arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
  • submitted
    02-12-2024 07:49

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    1916524053.html

  • Size

    14KB

  • MD5

    d0ee63c5f0cf81b2d20014ce7d646d71

  • SHA1

    511145ad1fe8d88f3c7331e1704c3373245e4913

  • SHA256

    53da10f8f1396b1a9ace12588fd0758e47bcacf6e09fac111759b76a519d7ac8

  • SHA512

    f246c48c084455e9da5773d3b0c5df145843dd6f1cea48ab56c42087565f6bf8418ec38b2710278a6ccee0691ca43a2456de7a3428512bdbfadbedefc76b1c58

  • SSDEEP

    384:3ZKgo27p97LLajFZTQJEqUc7GArYUNN6dGluGep1sUlJDwC:kp27DuX

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\1916524053.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2700
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2700 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2772

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    485547a53de37de0025b67c0d7070223

    SHA1

    5870ceef97d7967bb7eac8f645af19b7256c8029

    SHA256

    c002b770636a77946c2909e33662a6f0f31821a7776d739acf028dd991c70a4f

    SHA512

    14e8359c10200500d2c143d2ca528d9da0156533d6ca87d072e6f2a2c913c645ba78e823e490dfc8be715400105a1ea6fea99490a3fc677d5f9fe17cb6efc764

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    52459303c432d6ee204a60b50bd0673b

    SHA1

    8c3b5714cc28920defc560ec69c86589426bcb23

    SHA256

    67d216613e08a89e19a372d5a30d494186e210b878c32504d814e213ff7f150b

    SHA512

    7b8af42369371410e20e1743e5ee4627464a9319142ca82c4864499fbb42b5710485447c4fbec40ae2d121d474e0a5165883a30cc9bb37d7814061976dfcd9b1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    4e8b81d6a025b2547ee322172a63c210

    SHA1

    40e58d1511a45f95cbf6df94c7b9d6d3cb2a6e84

    SHA256

    bc688b134f264403ed9531659637ae12b817768ba1eb2184b04237423939e36e

    SHA512

    d28dd75f490a202248778b4f761a759dd876a2ffc329cbd683beea740c895fec2d574f1fe8f75618caebc522975519e5e58808f162894ad3a36fbd01a12c1adc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    e9820b9111fdeb907575a370f18f3ee5

    SHA1

    d324be8a3f34511f43c3fcd6da6214d2cdd26b94

    SHA256

    56f9da10be4698106cbc1728b7385f2609950b9f7627c826a480f2ee094d73b6

    SHA512

    aa39c48bd43cd17f2ef261f9e170c02226ac09095769fd2505bfae35cddcdba848ad3a84da50fcb85834360d71feb39fba580b15d8d3be6af07bfbecf74251f0

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    ddbe977183207184d701e92407d92a69

    SHA1

    7d203abd56cc52dd30fd58e989cc584025de7bf0

    SHA256

    c4f794b9f3055abe8b0af218c269ef884eb6223a5cdaed206fe9b8cdb5b728e6

    SHA512

    bf98ab92d2821d1bc5b205ed7615bb583312dad521d406f83c546ca4e4357fcac00bbc7ecb36914feef36f3995ccd29928441a528d04865c8e46b79d95f037fa

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    2891b8dcaca7c35f271b859622814084

    SHA1

    26f7b6bcf8db6522e903e10da8eb4872ae66540f

    SHA256

    3b388b9f711c965dbcad8afb5fd67360bfcc3e83181bc8a03779fad58d7957ab

    SHA512

    b358d740a45d9d32f2e9245347174ec1cca841a94aca2eab1c1ef4dd60c2396cb1f6b5da2072a08e74c081732a895efaa9398d8caefaeacd14f482b30799e59e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    c0dc80eec5560620787746f8f0bbe708

    SHA1

    f40e6de61bf4f6398cbcfc145ae70b3171c45ba6

    SHA256

    38b45dd2ba644c69f8b4b4f71be1defcd11dd9ed58fcd64bf86fd7ef573028d2

    SHA512

    9bbef1e6266b7a73c9de8b0b79d9189bd967710e28904b8d1fc3c3a2c458f9e7a571d8824293a68897c0d477f641e8edf3b062f0e1291b493b0dbf8cffa551b2

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    43189161c74f51b7afb55207f79fe360

    SHA1

    09b4842adfdc7734fd7793ad2af86ada90ded44b

    SHA256

    a6542401fce9e9142992e16805444b4a9bf3dd0d18d5e4009edf987f67c98a7a

    SHA512

    f32aecce5f2f67fe983d0a8abc7a2c9ef1dce5aaa1d3b4499123cba359e99d51f82f4d9a36140b1dba4bb2d629a4250c430c51c0129ab0f58e321142ddd883e2

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    24da35c667818f67873287a427dead24

    SHA1

    d9e63deef6b58362f46e07a6bd557d605e572ff4

    SHA256

    38f89d2fe15ab9faa357a3d84515a1b45fac17fb58876f00fdfe48ffaef8494b

    SHA512

    216c3080218478046767d523286175a2988d8ff9776c4c0c6bfe1684710bfb369b20bb3c433ccdff4bf9c48a49e60c02b2e8fbe249077b1c39720a3b628e294f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    6f0511f096368911ad5fd61fde222891

    SHA1

    fa75381f7163080865f6c2e72e26a15fe4c3ccf1

    SHA256

    1dcfe2bae65a0671ddb84b2c83c56d2ed5ae9972d2ff0573ded3ee7fbd8203d1

    SHA512

    3cf394e61a850c19ff7a67b6d989c94618916b8b506fa1417d5a7ebca0906e767d18282c1b79fd55bb83fffcb40bc94914224510aad392367f95d374c4640786

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    ba44b0c58f3b3839bea0fe9b93a36348

    SHA1

    154148f0098d00fa241ad7aafc5ca09a68203177

    SHA256

    401396bbd889dcc000869f60f54143c016e8729495e8f2f3862f7fe4c3363ee1

    SHA512

    6292be9c570834df1c8c271850bb67981277c8a79b9bd8d949d42f4f04d6c6da1a0d8725fdb16fc7670951d8aa2a4dea0b353fa953d86ed7847514e5114f77ba

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    0145bb76185bba0291e24e641e258798

    SHA1

    106c1273a20861c58d6ea649885c60a1c7f83767

    SHA256

    5a4b201cc47cc5f88af97dec855af95b3b6f3982e1fcfdf5fa35d6a60e0703b8

    SHA512

    7895eb1c6d568d175870bbd2cbb7c599aa6d03843fd4a3d3445607c473fdff682b0cbb81c12c130bf578864e33451663a60776cc0937507eeab14d10157f2cfb

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    a0adddc1ca7dab80b3fafa33cf0e00ae

    SHA1

    99697c811196e6dee1f03eeaac12c2e69f87adfc

    SHA256

    16b83c3ac2ab6a7bfd838ab82342030d6bd0adf53b092d96166fc4036aa482d3

    SHA512

    1dd8e8b192fe9e8673359ef23d059fe5692c4a375ff5a13ac95bfba35ca28c19571facbd30a366edca631acca752c558ba860782976d4e60f677dc5ef841dbd1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    6529850ddd21148fb08a530f63984e7e

    SHA1

    4de1dc4dbe0ad3fc84b6ac9a71e8549806efb40f

    SHA256

    7f416e4156459a0ba987426445085155485b268c9a5a277d0af6061f5802e0fb

    SHA512

    c757a4bf700312a2cc2a76029f366524009efc03163a26e5177dbbad13f82e2a4caab3887245f74479bb949af218d2c2dc0c9d1d74639a1c24090150590c3192

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    781876f232a30f7c3e371c4e3e7cefa4

    SHA1

    ea37a6b782dc62a6f96aef3c2bb5d7a564e5d1d4

    SHA256

    12ed0ec29226e09acc901cb2f2b1e6cf5e6b104440b8c0d566a479b1a125a7c4

    SHA512

    29ac528c79cd27c27fcd854b2dea7c51c625d1dc0e978e61218b8c347fb247d1cd9599a0771771b0a59ced946305e2bb7a805f09fd81c864580506ab4f9d55c9

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    529c8499c20feba48e0d317322af91b2

    SHA1

    a5dafa8fa87d49d07c5e945ac13654a72249c118

    SHA256

    2486829ad76267482f819eb036ef38a513c2a5ac21baa2c5e88aa5470d1a4609

    SHA512

    1c664c1a280229f0c3a3f23cae8f4e8f39e42d1bc1635dbc8f82e45d847e91c9497d782dccb14ae5d8b8f5788acc892e757404bebeb10236470d259bb8359674

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    94b9e55e5854ec08d197cf7bb5d2bbce

    SHA1

    e0f789a27a564611480742472426be6497d9af36

    SHA256

    45526dc6949353a60f9ff9d19f07dda2172be3b47f11e26e9297fe5220fe7b0b

    SHA512

    fa9b915c44d7e44989b921fdd99621d09ce9bbd0a2104e211331f99056f8dcf147eaff878261f746acda99b0032094c246b135494e39e94ccb7d2faf93a04a9c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    1b195d52a02ec597c1495667886c15d0

    SHA1

    c8c7c5dcf7f036a64bd4ec5d93c488ff041f8b7f

    SHA256

    4f809ec787f2b77e9aec9696a406093bbc876524cb8e578924b54eadd4e62331

    SHA512

    4a0cbcf6afca1576913402c9de916824cc739342595b3c26317fae59504f4a17a975bca77dc8f45cc8004ae2c631f32a89119c244ce72ac8ada31b01d85b759b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabC68B.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarC70D.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit