Overview

overview

10

Static

static

10

LiQQ...��.htm

windows7-x64

3

LiQQ...��.htm

windows10-2004-x64

3

LiQQ...��.exe

windows7-x64

10

LiQQ...��.exe

windows10-2004-x64

10

LiQQ...qq.vbs

windows7-x64

1

LiQQ...qq.vbs

windows10-2004-x64

1

LiQQ...��.url

windows7-x64

1

LiQQ...��.url

windows10-2004-x64

1

Analysis

  • max time kernel
    122s
  • max time network
    128s
  • platform
    windows7_x64
  • resource
    win7-20240708-en
  • resource tags

    arch:x64arch:x86image:win7-20240708-enlocale:en-usos:windows7-x64system
  • submitted
    13/12/2024, 00:22

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    LiQQ/77169.org˵.htm

  • Size

    5KB

  • MD5

    d122408c88ea147d35137fa775d78d32

  • SHA1

    818dfc81160c9e783e195d914d4b2ad81417a2d2

  • SHA256

    1a246e720e02d8b2f9c59eebb673e48885d6d7a8fb194b5f4f0de57df28c4812

  • SHA512

    4c1963e822bd52ced208c5906de4901349717b5fed2367b028a4dc8923d8c04f0fa25b8b9c5cf32391acc750a594de4107af71118416cfbe04a53b326634b917

  • SSDEEP

    96:m1OQF/fRA2RWhwM6w6mheySgh/SnqjQhhwQ0660X8bJhnYOPMj1zNMXlGvak:mXF/JA0VdIYehN2hwQpZ+JhnYOPMjxNJ

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 41 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\LiQQ\77169.org˵.htm
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2644
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2644 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2176

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          26587d861815c748bb164da502bbc5ef

          SHA1

          4f5cc56e6515275b0ff6d93f58f5cbe82e99c8df

          SHA256

          47c182a29e2c21fa025034fa557290c03f2cbc6e8ca524d02531cf0f40aeb09d

          SHA512

          bab1574732bdb241c2c7f1e33009d0ca9be8eb52cb39d4ce9434effe2718e30e5937f1d1cfe3d66a54933117b2da04603ec1006bb8ec6e021b35474ed5f39e4f

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          afb3d48d24dd307d43854ee35216ade6

          SHA1

          65b19825134cc0b1c4044d1ece490a593179c5a2

          SHA256

          7a2ac863d7f1ffc79aad0ad846c9f4dc3a5af9ad4a4209d8dd7be1b0052aa167

          SHA512

          1c716e8381c816d365948eceeb84dd330e3f3d18012622ab16523d2ac4e3bd4e88914121b10b3db588864ba85c5fab2b46cba9e97596ab2794bc762d848bfe75

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          c642374f68c3413eb65e0499c5c08fba

          SHA1

          80d8602e486d208001ff5098a9e0bed4e274daa1

          SHA256

          33562e6161fe08c652c00659bacf28f11b0539aa6a2e7dab6b06559a177cad06

          SHA512

          4d319d6efb906b84b5718892fcb40d0c04885834877f4ed0f4563325e1137db345600d07a335bab6ca348e59ba6573fcd4befc92febeabce9b259c6396f81eb3

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          5fca4450337362abc6aa1e7d3a64da3e

          SHA1

          2080b101440e48cb51f921633032ff597e22f3ce

          SHA256

          511f177834c8faa91d642865312467d3f0fa15cdb98f2f5c29cc5babced87e94

          SHA512

          6a16dff7aa9aa58301b9698083731b9b372c900009ad5f0bb68959a3fd9348972ee3139034d67ce46a7fcffb00f576be3f7fef9288010b7c05ac99f4debe1b74

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          603ff54f271df42f6662ada5f5ad9537

          SHA1

          987044439898c951afd6481ff151bf6f282ef04c

          SHA256

          bbf384f6762361cc92e96d4a0c30f637b172090fd916a8def3eeb5c434b09b8f

          SHA512

          7524a7ba1b55111ad230ccb943cf5aab14f3f51a27eb76c26cb48d135482aa1696f3db3258a7af694c1ebe7a58d2ed3b362e4cd08b2be9bcf42f0d3b431d72fc

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          fb2fd0e919fb9effd84e0702ecfc89e9

          SHA1

          1325864744ccd16c282e253e2ae4f2363d745164

          SHA256

          00b76e84e43c71d6aefc54d054e828c0bee17e946bd87be55d3fed3835900470

          SHA512

          5f3ecb041503295879b561ef3f2a561b4c712e0f3ee3a632a97e41126b5d1c4fb815c92ce6f1dcf233f134d130cf9c1f2e4240ed35b1bdf20cfd263a3f408471

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          4ae159a0f04e5ddb28c98d85ee8c83c1

          SHA1

          a61791c9890316f75451dfa88ed575a8b473bd3d

          SHA256

          e23000f53bf7f46476203fd8a78016e4d09603c6238725e3328d5ef0e97777f1

          SHA512

          fcea2f8c737e1cad09d54ffff4ac6d5d37f520f650cb0917db43444a0200d491f5b5dd41de0e30a298e26682467fc309e811f04699acef27a8e2086316965eb7

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          50934af83c7520d2911546d3005b4198

          SHA1

          3adfa4c16a3240760dbbfb300ea89551c1b0c84b

          SHA256

          2e4b404293e34d577e5de787b129c19933dbf48babb7edd2806fdfdb06211387

          SHA512

          98d7c548b864d2860e79503e6a2d363f0211ef72c367ec2ac6c79ec0de249e6d052fc9f2c56e05e28f7625e8a453428316d53bb4f565fed881c9ad6068b7a89d

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          ab23075948dbe4e29a476d8c558d4443

          SHA1

          479f82bca49c266913133b93193407df5ca717b4

          SHA256

          66f5f95ac6af651719457f8c357ecda80146a827e73217da59bb9e5841ec057b

          SHA512

          28a013329857266b1651659d4c1d3d925430cc432638856faeca3660978a03988b1e898d962e47d16d2a006821195f559c5083200613b71bce7565ac205d56ae

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          8c31bfba69b6bf21137efe9d9dd7345f

          SHA1

          788a1b59e284d01daefee2e30e55ea6a535d1566

          SHA256

          22560fc2ca00d6a1e79612da2635f4fad17ca6968f5137ddfc05a2e3994be36d

          SHA512

          5a2122276c0c289294cd1e13193d65baca98fccd1a7cb1d09222db57e216de8b42bd705d19e1350546c95c91fb1d0e55f47fc19589cfe2e87d4071c4dcac4a1d

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          2f9103879c1eb38fcb3348cdb20abf81

          SHA1

          1186d58a71a174c12447a98ef4e6d83523852eea

          SHA256

          ceef7c4a5bf2f5a502312ec59e9ae6e88d79586def36bf8f1c340cd1dfe988cb

          SHA512

          c6398e41c2bd7cf4f7adb56393dfb1f02003ad802dad6601f179d4d167415dfb35c3faf83b67c25a6fd86b67d630086c258d124edfd6ac21ff7abef350c729ab

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          256b592bc7444cb2e2f495407e855e33

          SHA1

          2f8ebc38c3c3b2bb67747818feec9bca59052259

          SHA256

          4788f3b626509ebaac3817af877c1340c70e9fc4b4588573ef09f5782e7ed2ae

          SHA512

          e560a5a6d7e25d2515e6d83804623bff5ee4965abcf31cf7a86fcd6d4fa24b313e3cd38cdd722bae305c36731af601566f06d284e8d6b60b4113c5ba5a6d6d9c

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          ef2088c1adfb4a1dba4d6e9de019fb9f

          SHA1

          4219b0acd0f18d65a8e49fd1b084deee53ffb9af

          SHA256

          9fccc9f54bbe90f503e2336c320b9b73aa32f7b55aab680ca7884694a60a5d58

          SHA512

          0ad0149c29b739119171c77193be46c0753aed03a7b83e5278598f82480023a836f8da4b5b378666588a9cb4f1c6e5ec450d37dc2469ddd23b42ae867f1adb13

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          704b85c2053e1cdb37e7dea1dfecdc61

          SHA1

          a7d46649982f12c52104f48dc31ad3246d40268a

          SHA256

          6f3686621127e3a88373d2d6ecf540f3eaaf3df9695d6939804b92c41c836180

          SHA512

          1f003e205392cadb394e9e39317e3b971305affb0c009a680c64a9d69c6ebb3c4561f10a7812c22ab7428dd0f665d42634d81684c81462b01e7254dda9e28b4e

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          2509f1bf361b97334924ffb9e57aafbc

          SHA1

          a196d61cd7be7e725695cffb5550be00f41d8956

          SHA256

          6ffc38364213e671a4f17fd22f969ccde0322dd50fc83b8a3094828f43691e11

          SHA512

          20d50f12367aec4328a1e6ad2e67df00ef1a2b290fffb05409747ea8e3a3d08f2b1e27749fa5c7fdfcdd67eef6bd26af5f42ad16ab60bd6c99bf3d057b09092e

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          a1b915d9e49cabde3f30e7594649b3e9

          SHA1

          6856e4a108fab5c36f580f03bcae703d38cbfd5f

          SHA256

          b87a72b19568bb81f4d14adfc8fba3555755f58c4fa484686230b1d99cbdaf15

          SHA512

          9c4aa4df91f27397f5620db152410a35e2a1a121ca6f9974bc6501d6005d466b9fa792460de527fac5ac431a4ed12a0851c3eec9a309e599d3695fe4224afb3f

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          869fb500a0f5dc1438818afcaf198186

          SHA1

          1900c2292a0458c481b7167c6aa0835d50ca2b03

          SHA256

          32993ec38ca29682feed8625e81bb4b1c49d3930aa533760209c329f4348e045

          SHA512

          946a0e0c6e081f7d0227a1fe1700b5717ce6573b8b4443ecd0af6529a7bd80b7cae3c9819c703bcf4cab52c939f4b7ef1aa06f9a3e1e48dd235307a95a1ebc7c

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          9414e77b768bcacf3cc794b36efb9b1b

          SHA1

          602b4803bce57d7ff7071344bc400e970970db4e

          SHA256

          6e78bda1b74a3965a0d63c1aa4664f5785d47446ad99d58d1ab1c60ccf5766e7

          SHA512

          9c9960c24ee688ec364ee9a1cbd727840b81d053989a990c5f0b8e509e5d1438b0df06d280e8f6caf848758b1033e5928caa13d2a4ba1a2467d1e34f7714d674

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          7eb048dadff38a0f06dd72af06c17fd7

          SHA1

          7a0a70e5d234d383c4b3456a1ecfecda4ef86b03

          SHA256

          d0f458d93228e2bf188a839e1c492a9970087f4fe1484c979891ff7f89d76db4

          SHA512

          85ffc71aeb81f81cbdb3ac399a7e7d9fbb7f6348bed68cde894f1d0f108f2a7230389fdc664916bbf655fbb6392f6e6e79ebd38227e5dd0c36a029107c46ccee

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          f05cffa85c9fb191763408de5578575e

          SHA1

          703e2a772a4cdfbc60b8cef69bda9058bfa37522

          SHA256

          6028e19ae8d95c260a393a12ef981e640ece12e6d6c28054e4f2204cde1651f8

          SHA512

          4a0c90a2aa5add91a6f98a1378c523fc416ea906705a0f017830baa3458a45cec2c7ae2f1d57b09ab2c726e8af3bd328418c69e9c2e2400a67804d2851c61376

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\Cab191F.tmp
          Filesize

          70KB

          MD5

          49aebf8cbd62d92ac215b2923fb1b9f5

          SHA1

          1723be06719828dda65ad804298d0431f6aff976

          SHA256

          b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

          SHA512

          bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\Tar19DD.tmp
          Filesize

          181KB

          MD5

          4ea6026cf93ec6338144661bf1202cd1

          SHA1

          a1dec9044f750ad887935a01430bf49322fbdcb7

          SHA256

          8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

          SHA512

          6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

          Download Submit