Overview

overview

10

Static

static

3

AudioCapture.dll

windows7-x64

3

AudioCapture.dll

windows10-2004-x64

3

HTCTL32.dll

windows7-x64

3

HTCTL32.dll

windows10-2004-x64

3

KBDTAM99.dll

windows10-2004-x64

1

PCICHEK.dll

windows7-x64

3

PCICHEK.dll

windows10-2004-x64

3

PCICL32.dll

windows7-x64

3

PCICL32.dll

windows10-2004-x64

3

TsUsbRedir...on.dll

windows10-2004-x64

6

WiaExtensi...64.dll

windows10-2004-x64

1

client32.exe

windows7-x64

10

client32.exe

windows10-2004-x64

10

comcat.dll

windows10-2004-x64

1

getuname.dll

windows10-2004-x64

1

ifsutilx.dll

windows10-2004-x64

1

f_000001.js

windows7-x64

3

f_000001.js

windows10-2004-x64

3

manual/avf...53.dll

windows7-x64

3

manual/avf...53.dll

windows10-2004-x64

3

manual/avutil-51.dll

windows7-x64

3

manual/avutil-51.dll

windows10-2004-x64

3

manual/binkawin.dll

windows7-x64

3

manual/binkawin.dll

windows10-2004-x64

3

manual/manual.htm

windows7-x64

3

manual/manual.htm

windows10-2004-x64

3

mprext.dll

windows10-2004-x64

1

msidle.dll

windows10-2004-x64

1

msidntld.dll

windows10-2004-x64

1

msvcr100.dll

windows7-x64

3

msvcr100.dll

windows10-2004-x64

3

neth.dll

windows10-2004-x64

1

Analysis

  • max time kernel
    90s
  • max time network
    155s
  • platform
    windows7_x64
  • resource
    win7-20241010-en
  • resource tags

    arch:x64arch:x86image:win7-20241010-enlocale:en-usos:windows7-x64system
  • submitted
    18-02-2025 15:03

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    manual/manual.htm

  • Size

    80KB

  • MD5

    15036497c764bb502abd48efbb1fac46

  • SHA1

    8b2bfb63b247078767b101581e4c63a8ab8792da

  • SHA256

    0b72ba493a432e307df3a21d59ac255d301f56cc602cbc19b8e05885339bdd77

  • SHA512

    3a5ed6e54384e7cea58bfceff7f47a6eaaacab6f95130b96865de2003882a13d33b76923a5eec41a33575814489e0f598683ef8a62dafad305b51f7caa953a05

  • SSDEEP

    1536:vIyp2DSWFvOo7txeogjFSlPYJ4nA2RnZavtUcmTUna:oEFSZc4A2RnZavecmT7

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\manual\manual.htm
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2172
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2172 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2988

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    37eec249b84ae79c42c6ff5d40cd1b37

    SHA1

    ac16e2a11e9032f36219579fe664cd09b6196ec8

    SHA256

    3f3b668cfe82ee55467bcf83404e579eaf8b57598aa855dd649b7576a719f445

    SHA512

    b1a5c68f51a1d79c6184167d098e14676aeb5b977a639445538d2e8d9fbc4b70708940c30033b4c9b8a4941a4e3c3d634747df0d530541a15c39d1523560775d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    916ea25b9529a135a71496380d2da718

    SHA1

    f8012d200b3cd2d242fd37c9c0d214615e0d09e2

    SHA256

    4c46021b22800b8becf402f88f18f1c40dabe3e0b220228375ce442ae71437e9

    SHA512

    7417d997a754144ef356efe3008012b5e5fbbf75acae431cff394eade3bbfc82976b41ea3190ca97c642ddb2ed3938b010f7f38169df08beb6a36a1212c5405b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    04b758cd7c0ccf62a723b6f99f6586d7

    SHA1

    4d312cdcef3298f6c4ee403192121d669c3c76b6

    SHA256

    ca6478341fbb21fbc746fd0d07612e3f4f3d632ee0cbd674f4a1cf0db778188e

    SHA512

    a7bda54d894935661fb7f0773befac2f4ac522d7950f6d9ae3138f8fb5ceea82673c0dbc7a89eb1da83262c2b9ba69176e206717fde778080cf3370ee4e116cd

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    eec9263933ad81036625ab9e8a9ca38d

    SHA1

    d511d69750cb0e1864ee0a6650d71055a39b6bbb

    SHA256

    2210da39981a85058205bba0c0056cfd3969255563fbe7e23ce298596abc638f

    SHA512

    446027389d82f25e9f343474f038f237eb953e1b8ffadf0ea52a7d83d2eee8532ec84045780ec7bbb2bc9fb5f1c33498a019c465bf7192bca27f00ff10d4ad91

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    fa6bbbbfc4803121fae3fd69d1c1346a

    SHA1

    c0d23b8f435ccbe51a26a6ebcdb8e13d6de68473

    SHA256

    6214db14cb6c48a9eeec5500423ef39cf0171402645a6a45deef8f7212b3d71d

    SHA512

    700114d7684cb33617f009ec44b92d800463a764ab038b0f0ccfbef12d8090408391b50ecd0b64cea0a8af094b90001d88a2942f11f73e2fd56a103a9a526e2d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    503abb289030de96a2274f86639854ef

    SHA1

    34938f183596f933bb53526ffdd19d1be636fc69

    SHA256

    6b331faec914235255741d9b58e72c0be675ccfff115eb57729f4a775aa134ec

    SHA512

    5f68dfd021e68bfc09ba5d9a81d0e97fc7fa3078e2888c89fd36691d2ed35ca93aac1c8439126d44068fcaeca456dda74eb8743772f66c41b4061368d2c547c9

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    c9418596b17fb0c9ca1800e00e3a89e5

    SHA1

    1b7a9f77fb715072a0eeda5b028e230b37db0426

    SHA256

    609358716fecee739a598319bc7a67c3d2698a3314d588f3406b4173a0b016a9

    SHA512

    32766e1963686ffef31feff993ef862c765eb6d79718464b31ee7bbf259c3299a1e8bdb10e89701e4dda131c8b076a77674706c048619a5a0d2a6b6df79276ec

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    dae486f7e00d2a4cc46733c627fd8c69

    SHA1

    955bae94833f415db7ecf7aa1270da89c5cf2b52

    SHA256

    471647965298df2153e91acabf8dbc7abc09ca501f24bb0f3db6b0e9f95b777c

    SHA512

    0e11cc62ea3183149521aee62a53c059fad7c405024d30ed7fff1eea5ab478fa79fe04e66ddccaa7cee95d954f60621f9e4f804f1d7d00f1753c3d721ef1e827

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    88ace6ce7b893a8112a4a1c32776d017

    SHA1

    4f17dfa8391b5b64c464fde7a1127b555a4bb810

    SHA256

    b619a13d73b06c1f6fe7e20a42e6891c9ed2e621b0b08d6ffba615cf88132a9a

    SHA512

    8a276ca0696f11d496c7b52cb0a1819b1208eb1fdd39133e21d455ccc196b930f87834aa788c1231aaaf8cf2d55f1b427d7ca7f0435255c1762b0cbb01b0a464

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    c098414ab233778daeb32db34181602c

    SHA1

    689eb15527d906cc65380d4ce7dd87d00615999d

    SHA256

    f751b2b5d99086c24a0225a651db9825e20537fcaf744456d262ac76a2b0cdf6

    SHA512

    c4a187ae14953a916fcd4ad719d7857d5782d4c415ab86e74b94ec92f9da4258d383435bb99167bb2c07b914ba5100cf92e94486b819aa03e9a04abace9c597d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    0d5ff33beb145040aa10edbd7d54fc32

    SHA1

    af1f65edb0464e4a701dbd1ffba8dc58cfb3f6c4

    SHA256

    64d3c0f9d6f090a89088b83b6ea71a0f0fb2228e25d05cf126e94c6abfd140d7

    SHA512

    a0b3431d48b56a5add7d5135ad1737dd6a9367ac0e88fbe5265c3aa3f6812cdef36f59a35dca29652080daa7a198d01eea80120095ad097c0f08e1aa2c304033

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    0a0330c728fd848c3e0867a0fec0ad31

    SHA1

    b47d4f38628e7fbc9a1114eaf7d1768dae4ccc22

    SHA256

    cd1a4104e1e26aefd62c9094a6524d787dce6c2672ea1f2aa6daaadc4c83409b

    SHA512

    6d88f189fbe6ce50c161d6703749f8b24345d2940d47250157462ffa6c476b5b4d0da8484f21339245481d0d39cdf1de3b8a2409400b35e81b050043a732cef8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    6d0ed9479fefe59b0a836177cae9aad8

    SHA1

    f6bd10bd525143bffbb7502fcdc26e914dfc9ecc

    SHA256

    79a44a48d0a0bc362bfa637d092c22393573051193f65099341809895e04805d

    SHA512

    e92c5e921f325fae55b9820eac56c6f0d07eb3d0b0d153285c8a6bca0e27bb2df459f36ad9c6724a9610cf56a3e10fed8a54368c2040d44f3499e3c2119a0945

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab13C0.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar14DE.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit