Overview

overview

10

Static

static

10

liarsbar/l...dme.js

windows7-x64

3

liarsbar/l...eam.js

windows7-x64

3

liarsbar/l...DME.js

windows7-x64

3

liarsbar/l...ser.js

windows7-x64

3

liarsbar/l...dex.js

windows7-x64

3

liarsbar/l...til.js

windows7-x64

3

liarsbar/l...nts.js

windows7-x64

3

liarsbar/l...get.js

windows7-x64

3

liarsbar/l...ion.js

windows7-x64

3

liarsbar/l...ter.js

windows7-x64

3

liarsbar/l...ate.js

windows7-x64

3

liarsbar/l...ver.js

windows7-x64

3

liarsbar/l...der.js

windows7-x64

3

liarsbar/l...eam.js

windows7-x64

3

liarsbar/l...col.js

windows7-x64

3

liarsbar/l...ion.js

windows7-x64

3

liarsbar/l...ver.js

windows7-x64

3

liarsbar/l...ket.js

windows7-x64

3

liarsbar/l...ar.exe

windows7-x64

7

liarsbar/l...rst.py

windows7-x64

3

liarsbar/l...DME.js

windows7-x64

3

liarsbar/l...dex.js

windows7-x64

3

liarsbar/l...6.html

windows7-x64

3

liarsbar/l...es6.js

windows7-x64

3

liarsbar/l...es6.js

windows7-x64

3

liarsbar/l...b.html

windows7-x64

3

liarsbar/l...lib.js

windows7-x64

3

Analysis

  • max time kernel
    134s
  • max time network
    128s
  • platform
    windows7_x64
  • resource
    win7-20241010-en
  • resource tags

    arch:x64arch:x86image:win7-20241010-enlocale:en-usos:windows7-x64system
  • submitted
    16-12-2024 02:42

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    liarsbar/liarsbar/LBM menu/tslib/tslib.html

  • Size

    32B

  • MD5

    442aa09e10281318cdf6be9e026232b0

  • SHA1

    d1cfb0e2db3f8d42decab1311d104b923b4ad384

  • SHA256

    e14179f388a9690437165289d45ff7747f0f839538b5abec63d2dcfe21c2a5f4

  • SHA512

    e1d0af67959826971b20963844f5213816c5b9dd75e7a46bed1a61b91d76ffe997294788a42c68976fee58be160c534d9521fdd3d336018e1f88b589a3cf9f4f

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" "C:\Users\Admin\AppData\Local\Temp\liarsbar\liarsbar\LBM menu\tslib\tslib.html"
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2420
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2420 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2368

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    114b192f3e6e281bfd4293c44d230544

    SHA1

    10024750d13a1f9b8e31e6790a8b380a3988b55e

    SHA256

    89c7fc23cdc2a45e029b66e6204d3419cca6eeeb62a944cf84c725902090c1ea

    SHA512

    763d056c5a7f052714a788bd292ca76185796fcd7437adc936e2f3c3caa906c07f86cce4dc3a0fc909a4044cfc9cbf3a6c408fde836bb81484f5c4c77c919e1d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    dae45dd0e0378c2dec148d4438525378

    SHA1

    5934b2bcb6e398a408c38efe04acb45c7bef6537

    SHA256

    e0db05361d527bc245beb746a9b3c9587f1a1026a08f2c010614b3d59ff773a8

    SHA512

    4d8dfc7428718272327ed20e95b44daa6f33430c21139666cf179254abb5d141cde89f74d7e9884808c03bb789b11d8fc232ec62c26e95607178c0c862f6a8df

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    09b291763fb6b5b52269400d517bd8a0

    SHA1

    3ef01f8d852bc87862ef2dc653d44cfe44370b8d

    SHA256

    53fb5f6ed713391ef090a14dab9510c47e88571b326ac9e5160715967e565186

    SHA512

    40cca3fed21feee03caf7c8c5e1a263a74d6c34fca03ad2a5dc4c21ccda6906a898663d28879a93ee05a2c3ec78250ae4be6e91d4731c3be5560efa57723316a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    049a2349c70dd6e0f177140f13d8e8ba

    SHA1

    bfc35c7039eca999cc894f9bf43afba418551d2d

    SHA256

    4ea26e528eb4012292bdbd7ba9580dfcde421ae343b536e4c4d26515e930556c

    SHA512

    f537364ee30cd47730306df084893a765366ff63ce74c701166fa5031204fc848d075a8af177be4be4ddaa73e8976220a533be66dc1e4fa878ee7c39ec846d87

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    3c4ba095790d02d1e37b9ba6dfcf2599

    SHA1

    bdb5ad4d2f6c8bb00e93a07e60fffe8c4022274b

    SHA256

    c8e6bcdfabe83473e7c7e413125b41b7e7b31d1c8997c8293519764d9eac07d8

    SHA512

    87bda9806ef841db610c34ca1c467ba429198062ae017bb780e5d0823f80feb9169e02951100dbe1ee177e6a66e2d44285c04733a2516e8eb7f08f26874d4f3b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    de7c0f075f177770ec37171672373847

    SHA1

    6aefbfa565afdbc5504e44b004134ff0ab95aa55

    SHA256

    b3023224fa57cbb32079679091bac35c8b88f94a51af1c055d7198b791360bbf

    SHA512

    5d07fe2590190910061e6f8d353918356f07d23ef6fa0083c168b1eabde899afacc08a91cdc2bb5ce9958cb3c1b77f0a2223ff7916f401bb5ea243801ac92486

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    710f0f4163d73466cd2d576287f6914c

    SHA1

    9aaa057b3a15cb928d7ec1f5454fbc982eacb39f

    SHA256

    5afa3eefd4fa1967c262eee0f4e4c44c9a0ddc2c0726287f56a66e6faaa375a5

    SHA512

    ff5b897e11ed231bfc02d9ce726f8ae9248fdcc5353cc0b2428282c03aa4df6a438e6f94e81377edd6c5f8e2f3d6331826cf9a62aa958e0caca8b2ff76309864

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    22add2005d6ed3351bad838957f7a2b2

    SHA1

    3daecf91b3421b885acecc7350ac61bccf49a217

    SHA256

    ed33023e2a535c5ed1f5778a0dc81e66e08a62d3f3ee7f68e989c36e52adc7bf

    SHA512

    357816b7431b4a69f3398d33e9c0aeb5a75323a42cf4e8004e542378fe5641119fb1cee433825b8d0f93206e61b7bcfd3a2a61a7cf1698da93f27a7b33f88cc1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    f58e967295842b5cabe1ef00300ea868

    SHA1

    99bb01572e3b48d9705bcfcd3c0c1831bdd61f33

    SHA256

    d7b85e650d5fd31a646504f2710650f732121d52337d3762d8e9116051fa7b23

    SHA512

    40624496f098c62610a61a0bb3c4487a5def0b9332a37e7a8f77aca8c984387143ee07e4eaa9360335976fc40246e066842d8572fe2e0541ff144bf8a2843ffd

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    957cbb9600c83a3814076e2e79f2a90c

    SHA1

    5a5c80ac93c75da75652b285b4b5f72080e677c9

    SHA256

    16c61fc66f315242b6d61fdb9ae9cb34aa6f09b58b6f506761f46bdaca642318

    SHA512

    f476c4105f3f830b1653e6560753203ba0145d432bf24890567ead09b373d6c73e645fd7114e088c3587df3c932c6416a250505c6a6e52a7fa160d8897d94b65

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    25b2761875490ddd4b25ad4215c6abf3

    SHA1

    6c2854d656c166936f80d11647472853eaad807c

    SHA256

    0df09428d835ca011b679d187753618e49bfce95d8d29e0e4a0bb00434505776

    SHA512

    2f77a6c3bc0fa819375e5433d33abddce7f46b34b290969855e4d19f2fe716854daaedf8f7baaf3bfe736cf33fa21ca24add7cf815c1e2336bec47da143a61a9

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    b01e1715a80dc29ad561a0aa13816988

    SHA1

    411b87289c3dd61814be8a03a9b267b4a18516ad

    SHA256

    376ce5c257f75ab8cb693dba91081ba9b4836e952645fe0e2a65decd8879b677

    SHA512

    0514da1190bac307535a7c07d9ce03fb92ad5638d9ceefde9c9e871ba6d43648ee5b0602db4a86a573acda1067d8587ff416a1919304db5fdc3422d9bedbf5ba

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    54537b0fb309d85851d2c177fda93abf

    SHA1

    8fa376c4074ab1984e887227612766fc4f694339

    SHA256

    8477c5ba6815533f5e0c979832076cef70a3247692fb65077c3d586ae911e45b

    SHA512

    a41ea7b6a4cb0cce858eb30cb9dd06c1dfcaa3ca19a6e6988cc17dbbb8cd74924ff710d059e30888f2f30bc61f02d347cd13f12a1b0541aff26fe3c59b7fa123

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    7d7fc4bed1082085831811b5cf9ffa02

    SHA1

    bbe0250fb6d7f61b42685bb357c31b9c5ecca023

    SHA256

    c95f17d875af4546a2eb7188c40f37d1c132cc8a830b29ddb2bcb5e9cd6b6329

    SHA512

    fa2db7b74111549d006366d47c441d2a6133cba7fcd2bf2c254cecec42927ab89fb91cd55d362e52544be909d9ff1c717759c7358a2862dd4d49df1959e74add

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    a35005b3d7f7be7a7df90b336b3eb0fb

    SHA1

    f8d912d98bcce2f91831bb4e45769960d7e211a6

    SHA256

    a2855cc9f42c483854a8f41f9c7aaa5e82da54a3bc57ca109d344a4d20bcebc3

    SHA512

    a14d36358ef31659e36bde50c4e7239a634f86736b756f8de59464d1075a4c1eb57685d560363b4386bae56858a677b57775ce46a3726efebe3a37ddbfe6782b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    604c3f0061f2eb6b6973e9a23bb121e2

    SHA1

    d29a3268e85d103c9fce0077a16eea95517544dc

    SHA256

    32369838e3354f1f7e4a56b3890f119e51e2e304330209b85ebb1c66071759a2

    SHA512

    62b813cc6677232560db004456a042eab142f480a8cfecb61998d98b81737262698a23496a5705382faaf3f979dc2d1e2ef6f6985ae5eae5212104618cfb01ae

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    07d64a9e464cb0b408f4a74e0e5028f6

    SHA1

    42772e8e9e64e2ec616e2786c9dd0c5074fcdc4c

    SHA256

    ce17a483cf3ad6f8f611acd817aaaa4bbf4d2ab10037257711f285836ea0c89d

    SHA512

    160ce7456a4abbbc061f1cfeabc7e6183e88264b22d52692c326542d09ca2f5a3a44c14414b836f2be537391fc19f801bf50cda12e3dcbb8dc0e66bdbfbff2d7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    b31bf1c425d101dfdbfd1d2ff83763a3

    SHA1

    48fc0425e8971340e82ea77d4ba0e4dfd5efbdc0

    SHA256

    fc7c965b15918e30b28d9775e1550197ea99c3e98ec7a65f128dc26c09360a65

    SHA512

    3285c92e80ada9a5b08b0a15a6ff22741b7ec09a1e7757d7817ac9bb626a60ebb986610a45798f555e06441c3108bb929ea1f2b72fb6d3093d7703ea0e531581

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabB6B3.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarB773.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit