Overview

overview

10

Static

static

10

quarantine...K.html

windows7-x64

3

quarantine...K.html

windows10-2004-x64

3

quarantine...C.html

windows7-x64

3

quarantine...C.html

windows10-2004-x64

3

quarantine...24.exe

windows7-x64

4

quarantine...24.exe

windows10-2004-x64

5

Click To Run.bat

windows7-x64

1

Click To Run.bat

windows10-2004-x64

3

setup.exe

windows7-x64

1

setup.exe

windows10-2004-x64

7

quarantine/ht.exe

windows7-x64

10

quarantine/ht.exe

windows10-2004-x64

10

quarantine...Yj.exe

windows7-x64

10

quarantine...Yj.exe

windows10-2004-x64

10

quarantine/pic5.exe

windows7-x64

6

quarantine/pic5.exe

windows10-2004-x64

6

quarantine/random.exe

windows7-x64

quarantine/random.exe

windows10-2004-x64

quarantine..._2.exe

windows7-x64

3

quarantine..._2.exe

windows10-2004-x64

3

quarantine..._3.exe

windows7-x64

10

quarantine..._3.exe

windows10-2004-x64

10

quarantine....0.exe

windows7-x64

10

quarantine....0.exe

windows10-2004-x64

10

quarantine...r.html

windows7-x64

3

quarantine...r.html

windows10-2004-x64

3

quarantine...g.html

windows7-x64

3

quarantine...g.html

windows10-2004-x64

3

quarantine...t.html

windows7-x64

3

quarantine...t.html

windows10-2004-x64

3

Analysis

  • max time kernel
    136s
  • max time network
    137s
  • platform
    windows7_x64
  • resource
    win7-20241010-en
  • resource tags

    arch:x64arch:x86image:win7-20241010-enlocale:en-usos:windows7-x64system
  • submitted
    18-02-2025 19:45

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    quarantine/xB2HL9g.html

  • Size

    162B

  • MD5

    1b7c22a214949975556626d7217e9a39

  • SHA1

    d01c97e2944166ed23e47e4a62ff471ab8fa031f

  • SHA256

    340c8464c2007ce3f80682e15dfafa4180b641d53c14201b929906b7b0284d87

  • SHA512

    ba64847cf1d4157d50abe4f4a1e5c1996fe387c5808e2f758c7fb3213bfefe1f3712d343f0c30a16819749840954654a70611d2250fd0f7b032429db7afd2cc5

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\quarantine\xB2HL9g.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2892
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2892 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2900

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    a0f1b422efd92301d59793bf19f0cae3

    SHA1

    706439955c9e06f69f9205ae670d98643a35f53b

    SHA256

    58832b4f211863fc79907b3aab983d2f13d3477df590f806875c332d02896e72

    SHA512

    6ff58da2a406c499d3b0c1d322c5ccd9aa3b6769270cad5b70d5b8914c1511a90ba4532d81e178610b85898b7aa2d129c59c3c0adfe6ac64a2446204e59e5b9b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    9074be7bd2fd4d8c499a136299265479

    SHA1

    6d3deddda5537016944342f7e0b007c880f07e62

    SHA256

    53df253af18e9d455cc1ad87bd8c94f232839c9b571b957315802a39f5deedfe

    SHA512

    029101d5c4dbf22d4f2998aed2b4f1afcfdef5edd884ff3cd94ce8771a06582c32dd010ca43a1bebd71cb129ff4806fc64cb0cc14d81981fc4012cbc31cf6762

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    6a9fe9d3f258a572cca03b9b027b92bb

    SHA1

    247695b2c3c74db3947dbc45238458f4ed542867

    SHA256

    c95716778784554054229c4bc3d85cb7a62b74883420a6595e7e2b618ab53354

    SHA512

    ba4309be8d27dee404c3b1e26ccabe384e4c02a1a1072ce4a93b69c5e98d1e32ef309c4bf03bc2fda4c74631639f3162f3b276493cf1d7b8e190ee50b7d54161

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    12ad82e9fa7f6efed066141a84462988

    SHA1

    90813e32a26f054807e4639c3a7eabfec28e3189

    SHA256

    3a9f913dd8805d03827bbcc8d712828e4cf003c75376ba507b6d51684b5b0744

    SHA512

    60b42d7791893cc134d5c8f19c1ea668c712df50935bfc9ba744978ad8af2fcd8605d401d5e91d71192b8302bca3ac97cde2f663a9f734fc7ffecda86960f607

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    abb835bab2bdb815e1675cf8f50d4e34

    SHA1

    0608d3c33df90cc842ed6d2798b371163cf15a73

    SHA256

    45f2c3e791d1db53ef1119bd93f6447eaa45fef3ec1eaa0f1b8b99653ac7b5c8

    SHA512

    63b0abc2604fb7e75d6de9af66021286b38b94aada8f65095e1e34cfc52f04fe9537559254965ab7b895e55d73058955652bbc8fa900310536af5660703e35c1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    fc3dbd14419635429173ee7ec18504fb

    SHA1

    59a0e034b9455de19c9151fa2d79b7d77d213f27

    SHA256

    351a66681f02e923b67877571e6d7da6e37a790a1a4b235d2f34eb80a1e7111f

    SHA512

    22f28bf9fb09e032c26a747f9ea04f6624a576f99e1debf584220ce644592c04cf6c220579f7ca51eaa9c705e3ec562a15e1d79bb88740ebc4df57dc82f9181b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    52ca529962a2ce3025b08268b6646dc0

    SHA1

    681c5a03d55de4560d0abd0cafcdcbe30bb9df69

    SHA256

    112b6f5e3d3738f84cdb98e40b706fd36ea78880c6ad26344436f768b19fdf7a

    SHA512

    fbb4a23f0644c49086b258af94dc961e939f4289ef0a6599070c9b6e7add0c66b219e08d604543ffd2e24f7c39f22e9e8ba2ebf55027817c59e226060a3d402e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    baccc7c3060a3f595022756fa52a52e9

    SHA1

    8f7ffb2fd945ffc8a77159e353a61fedf3b70449

    SHA256

    4280539bab69a0ec7a7510e68f2209a7b2fb0f77206923fc7b9071f96f0a8415

    SHA512

    111f4ea21a07bf9d7377d77b918e5d8c0786a7682c5887a5ca1d33d5be804007a0b557c9bfc5f568d545ad96d192d87edbe314e39d13c53cc5e6a95be119061f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    6bcaaccea426e2a0f7b86b8f7184cc11

    SHA1

    4dcd0220a251fc5d1f45d86599a12368fb2194b2

    SHA256

    3f50880825d5159c935c26fe767660d57cb4c7b737a83186a31b124034a82211

    SHA512

    e9e6ef32ab53c0fc5e96bad4953c02c4f06e5f26d38bf6a41ae1bfe1fd8f4253ef2861c200cc098060c0600f47b212f77fe9f22b7ee8ac409f2bfcf56529fe6b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    f870af2622755f0a675afe1483c2a133

    SHA1

    26a94fd0a655d5af16bbd53011774ca9f88ddc0d

    SHA256

    4471ee434b397e815bd58784da9fa8df8040b0e028185abe76e335b7f33594c2

    SHA512

    ae29df6a9585a2d6e6b66d4115017834f03fbdf34f53fcaa839ffc850c18fe72da4923aa24e0b22e0e75849ebf6837852b7596ab4508d8cc2c705adb7060d13f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    bf32b69312e4af5dcb018cf4261f9d9b

    SHA1

    41a88652fa953c95e4882e366069ddab4c6dc31f

    SHA256

    69d3fc4b03a9849431fe9bcf0774dce3b0fc711a05561e1e44a5152a2167fde0

    SHA512

    396ce73eae0ce520d2bf761df725e54b5f3a0d3da38deaa06b119c0da75e853fef7bee3ffd415dace9bf7ae7b50dd1459c31732b3137d92ff63340f0c01d9bd3

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    8b61fa8ce7d7208761731007524b8730

    SHA1

    534b1d5d6a39f3c6b80f4154639665048d6b578e

    SHA256

    032aa37bb2f1ad8bca4bb8f4f5b1582de7238fd544958878d0ee6d07b8b4e3bd

    SHA512

    028f81768efb2ee42feced480a36378108357c9ba727f490a99bcd4568bdb74045dcaafd80bbda9714fe24f89cf4f9939e245b3a3b436db7ac3631d5eef21253

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    53609ff40ad1eb92a7b480ee7e7c9074

    SHA1

    86967f7b2ab3343cf621da0faaa17431665830e6

    SHA256

    703ba20d4ebc62684ebdef94ed2803696e44b6e604fe8056059eb98465e98465

    SHA512

    4294c39e0bea51e92ddb085bf36da96eb0f6ae8f2f59b9c2acf8d30c081780ab77da12e98ffcf5d6f4a3307985cd05a83d892665867b28b5bb188ccf1090f1d2

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    72acbb2aca1f2b8bb7c0b6d50884a7cf

    SHA1

    f42c8b4341112b3e3d798f31a49e0d5034ef6b75

    SHA256

    e1712b0338e45955c2dff5e71a00778bada7f4bd35638a5a8fb0464b63dc5eb0

    SHA512

    69fc366f437ffd761dd86536294278c16372c42d656d9630ec44e0eb896c02ae729e70a3ec2b366c81dd7f8c5e690f033dfa956a89bb003c44a6bcb9cbb8b5e2

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    2a06206f3bb3ecc96ca7398fde5140f5

    SHA1

    14c1d19a3f42faa7a4bdb4da8b2753298d7e7736

    SHA256

    20a628ebb94b1880e43fb7c8bc30a06ff358522b0540735eb224bc389ab6a23c

    SHA512

    536af186705ce1783bce6e6aed4e30de8712b42f80f642d652a8dbdc437115c0a45d4b02117ec80d59e306dbfe63c1655b63c9b554b85871831f4cbb802bbc75

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    5c0eb648c3be6935efdd081880cedca6

    SHA1

    c8644e923e7bc3d630704ed172722656b8160382

    SHA256

    22e13321c30e2af562067d74691cb6243f1dd04466bb943392f781fc5be85976

    SHA512

    6c449ef6d589e69f9392bf80e608df0a892b882f953a21e4f13ab76c5099aba3149142be5b9767e01e135142383f06e2dbfc45cef0af70bbe9a0541dcda8b2ac

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    8108a17d3d853e790f21854fbb044def

    SHA1

    48312efa273d404ca253ff811357d566418a2d59

    SHA256

    0eeb44e8b8b0537c47a5d322b4d6f7851dc606daa386224751e128afeb13f198

    SHA512

    ce43c21d452895918470e5e1d5530a0d7f888459b8e9c59abeef1bcee72651b3ab82dc890c4812a4277073ff80f6cc436b2132271d480f2c5bc2c170f49f805a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    343319a7445c4f3be0f7d60d1ce526df

    SHA1

    02f000e0711cbafba3bfb237397a0f46b23339a1

    SHA256

    8f3d232083fd253d3a2e058c676bb1da038c17c1b7323fdff085efa6a2b7a26b

    SHA512

    37a1abba364843c632d5dae25277fae2532ffd2fa7ff33deadd8497f130ab3985427fe8bc7374615f16cd879cfe03b8418cd44fed887a6fa23228210e17a5b4d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    ac30f2fd2f622ec917a56d0a5909a2d5

    SHA1

    93efe263b35eef7448d9ce8b4440efa19ea16e06

    SHA256

    723be766beb53d7cef33b6aaa89bad05d8b56742dba876180711bb148a50d402

    SHA512

    bf631dece409e1df9bb22ae00459b7573465fafd447eaa9d925947e745df424d6443087dbda8e082959a745c5636b2c8b65f6584815335933acfaae4f108f40f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    af19da678d147110a1264cb1bdddf138

    SHA1

    7913cd932bf00ebb4fa2517748161f65d73e5a3d

    SHA256

    9425ffded0503774be483e021a538a75b6c6d9a0efd1b99889acc0573ee7d74d

    SHA512

    986e590dc55b3fdc668acd90b110d753e12df95597ea477331684c85a8c4cefea6860c4f4f67edd5e682c6f47efa68fb7f7039d249c58cea75a1e5538bafa6ee

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab80A8.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar81A4.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit