Overview

overview

10

Static

static

10

The-MALWAR...ot.exe

windows7-x64

10

The-MALWAR...ll.exe

windows7-x64

10

The-MALWAR...BS.exe

windows7-x64

10

The-MALWAR...in.exe

windows7-x64

7

The-MALWAR....A.exe

windows7-x64

7

The-MALWAR....A.exe

windows7-x64

10

The-MALWAR....A.dll

windows7-x64

7

The-MALWAR...r.xlsm

windows7-x64

10

The-MALWAR...36c859

windows7-x64

1

The-MALWAR...caa742

windows7-x64

1

The-MALWAR...c1a732

windows7-x64

1

The-MALWAR...57c046

windows7-x64

1

The-MALWAR...4cde86

windows7-x64

1

The-MALWAR...460a01

windows7-x64

1

The-MALWAR...ece0c5

windows7-x64

1

The-MALWAR...257619

windows7-x64

1

The-MALWAR...fbcc59

windows7-x64

1

The-MALWAR...54f69c

windows7-x64

1

The-MALWAR...d539a6

windows7-x64

1

The-MALWAR...4996dd

windows7-x64

1

The-MALWAR...8232d5

windows7-x64

1

The-MALWAR...66b948

windows7-x64

1

The-MALWAR...f9db86

windows7-x64

1

The-MALWAR...ea2485

windows7-x64

1

The-MALWAR...us.exe

windows7-x64

6

The-MALWAR....a.exe

windows7-x64

3

The-MALWAR....a.exe

windows7-x64

7

The-MALWAR...ok.exe

windows7-x64

10

The-MALWAR...y.html

windows7-x64

3

The-MALWAR...ft.exe

windows7-x64

4

The-MALWAR...en.exe

windows7-x64

6

The-MALWAR...min.js

windows7-x64

3

Analysis

  • max time kernel
    134s
  • max time network
    135s
  • platform
    windows7_x64
  • resource
    win7-20240903-en
  • resource tags

    arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
  • submitted
    25/02/2025, 14:32

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    The-MALWARE-Repo-master/Email-Worm/BubbleBoy.html

  • Size

    12KB

  • MD5

    bb7b91d1685db89b58ac01a72921e632

  • SHA1

    4a1dd457983a7f1bbc7943eb5fca3da6d93d4176

  • SHA256

    940a563df059604ac0dc6a92a845da2f04236b86887208b89969b70c6781c3f8

  • SHA512

    09e26d197b22a4553e2e87a9ee0957700766c2dcd11157b5b71744d67abfa30d71d45c7bf1081bf9337527e3b8aabde99b09bd2bd30aa302329ebf480078307e

  • SSDEEP

    192:W1VoVk8X2TrWAXaR06qVoVk8X2TrWAXaR06LV:Giui2TSw6qiui2TSw6LV

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\The-MALWARE-Repo-master\Email-Worm\BubbleBoy.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2872
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2872 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2712

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    c9f303b3ac2604918deef108f92edbd3

    SHA1

    24d4396d1b93a8f1a1c7fac17852e4c81679573c

    SHA256

    efb81f235b91bac81c7a571cc58af2c30ad7ae884780f5225c23b44fdd1891bc

    SHA512

    2b18ee3844e823ae09c80302547b426aa35097368b57e472def7b7b057bc70bd0d81d8d84bc5fa0b71d9730bc418a1ee55f0a1236b40bcf935918422cb326115

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    72ea29341975eb6d7abdad25662dd4bf

    SHA1

    9f88129dde2f4897a681329c3a6b8f2f37989332

    SHA256

    00b89149496604992430c9db9b893854471c6047b25fca62b04f515985b09cec

    SHA512

    05979c26f5c333d954881a41d54e5c26ffe7be02cee2025ac7a9628544e25c5c462d02bfbad54f4e58d84382bcb4349bf617171b5910f07a25a4d423ce80ad29

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    85cc6014bfb343b7d16938edcb9b8d33

    SHA1

    67e4935afe4a61feba30ac4b598dcfffefb9c6df

    SHA256

    223f01ef51ffdabb09f7dd01522dc0adec8f74045b1b6ca9e2ac9603344535b8

    SHA512

    043c0ec091e16d2b4d8bff5a3f9013b834a0594bed8330fbd99ace988d58dd6038fa05c76c2e0dedea815967528a21e20c9b06e7e55fd72557f364ac44f2ce41

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    908ecd7bc022ecff92c151167514af6f

    SHA1

    08c48270842dd1dc0d41fa5cdeb40c6fd8a70f47

    SHA256

    c8592efc70373d2910cd491ea592ef15f2b34f84763ccd9ba2c964b81f7dabd1

    SHA512

    f3fca9392e8792fadf82c5088ea2fa18380cb08bc15e62201bfaab8142dd7bee95205d9de5fa39c7bb0952ed30b1fda6cd2ebd3b6954e313d75b0e8ec8023d4d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    ad260fa1cd4be32ff88ad29be50c6926

    SHA1

    bffbf2cf3ee86cf045c6d06ceb81676aaa00e78d

    SHA256

    0bcb7595f86b898b9e33757b09d98d367882028181eed39d8ad8f801b3e057f4

    SHA512

    b363a400e079498690baec8650316a2f61e6853cdc3c334321a7294a65e4c562eb682b345b699ebfb184b13220677447ac74293936f7b7e964b0e3ff3fb9d3dd

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    04e0265b652495ed94e1c56bbc3a9d93

    SHA1

    fa0467f251aba657b47753249e62c0c0c4f6c4fb

    SHA256

    d2bcb4bb6b8f95bc4959c65ba2150acb6b2693609967caca506008937dc086eb

    SHA512

    083df0a336ab7dc62c22a1e96890001697b096419661e9aa96487bdfcf5851f870ad2af0517994b2ebe33623ca7246edd05f6f5e5779ca80f8cfbe543ea39468

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    d379552c10bce224e8928f63298efb8b

    SHA1

    81921e02d2c50ca0deaa244e99cb4b65fb4a10f3

    SHA256

    698e6d107328e9647932a933a5b9e1eff3fd5e6230eab41e6285058a234f6496

    SHA512

    829abbf63317a5eb0cd7a9733214d0fc844cc3687dc58ffa726c3da8e1e7ed92501d750db619bb94a2dad29a9c6e4923d43c6885ef9e8727638b18f3d7b7aa69

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    9ffab3877cd8d1e998dbd7492e4e5bb6

    SHA1

    168377d7d8ec85ec864c05ebd02eae3f974ba95a

    SHA256

    6fc432e609693d649c89291bf05e2096747474680a51e515d65c7853fe67d465

    SHA512

    e7180466bd3cd07723fdd0bba1cd0f1f3ca45fcfa15c514c5df8a4c8822e9ca61f17f86b27582076ef456d8d21c397ac7a971f8f7f4848e7ff2e4b696fe70ddb

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    f6fa6f2b89449a64183b7307b349ceb0

    SHA1

    62524ab55f6e5c866e5f9d0e673c02edec6627fd

    SHA256

    68c31e6617311c51f0790ebdb9c32cafa9f2db20448e9501350312f3ece2a735

    SHA512

    e00ff279a7b5edeb14e253fde13b0eaa26042cc9c67332f0b1ed49c9c80ffd6174eb15f97781b22e3e62b02effd59af7c58b0e6607fab864fe26d32cbbabe72a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    656e340f791a5d966d72129ac5d76536

    SHA1

    bfe14e7f99914698fe5dc79b1b99affbba7befcd

    SHA256

    e067d47cc892a6f07c259d5c477dfa948c5b751f2d8b17325ac11c6c2a3f304d

    SHA512

    0db1a761598bd3d690ef4412096df9ac9db3982f14ee1e435b2c256b16435b23c9d5362c0a078e418a163257b562e8687bf409f70d91751dfa8a7d4c891eae40

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    449068e5c4ac6152fe4e72c03fc5192f

    SHA1

    4b4b84a33df028b285d916a0232c1c9c49845b03

    SHA256

    1fef8d21b717707d6c1c35a24bc8206a250929ffc6435e376fcb65548f6cf543

    SHA512

    c1433edb581746f5be37b54510d6dc8d6ec54c533d5513a586f97f00310e5e803bb2de6ab69cc39079f9514df135a828962e14f3fc99bacb4294dc4aca6fc496

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    154e5125265a2242be36f5f6fe037382

    SHA1

    65a970ac00c9d102b9355b1bc72303e6b572f69b

    SHA256

    d8e2d3ccae3e7cc5c8a1dd05c702bb189cd96b1c788d400559fac47c31a09d7a

    SHA512

    426695966838d01c4cf6a9bed978d58a544986898de1baaafca3c5b66ef29e3e775fe677889312b6dc179d352fc17de5ff104d3ba05403e97423522b46d5d85a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    f62a0276eb9a38ac92a00de2b323d3b4

    SHA1

    4f3d83faaedef235b36ed46cb4cea0dc3ca45c62

    SHA256

    3b883b9d26856369f2f863934a7e268e0ee93d1f1a9e24e74e9de9b0ec67e068

    SHA512

    14453795c835bd5d44c4c9eaeaed0b7cdc1b2915cdd9501cdb131d5f30092c6633480f1c36c9614e8ec4bc96096f01eef79946ac2a5fb958a1c771b6ecb18f01

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    c3ac6542e593e5685cc8ff6dd2348545

    SHA1

    41287587b33b382e117bc5886038ad9983878bcf

    SHA256

    d12d72e6965c6051da03c3d38a5c48e80b4bca81d92ff0e4e11db8990a87ff94

    SHA512

    1f82ea4a9618bd47aa014007eb4c9d901151031968e3761b1337d54ce3846237108b1b66f4c5d269a43aa033334254e473be43e5e4f26d7fa951ca05c42cde38

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    de806a746a30388ec6d8b6160b8c630d

    SHA1

    c1509a6553df306744680643b027f992ab04452b

    SHA256

    4918fdb5d16782cb2e45f31651a44c9dcc55602c683332c51d369a9e3b0bb15c

    SHA512

    60ee190da775df610d2e20e406a31f3d476234a19216261ef8e404a58cf850778c6845731e26f2d38a48ed072c2b5b25247eab6e5652ddef826e07b213e4bae4

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    fa140e29d443f1199f0ce72ca6815563

    SHA1

    79421ca13e31a8c4ed05d818816fb12f320da548

    SHA256

    f2d70dfedc064930e335912d7329e52cb86bf707af8a831578a232204a57257e

    SHA512

    60c5cbfafb1f351a597f00d6714a99f27a3d518db52073eb24ca91488be503ff38e59cab37961439083dec3c859c998870c53a5ce1bc3c93a0a78af8e9ac598e

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab2A00.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar2A61.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit