Overview

overview

10

Static

static

5

quarantine...Ab.exe

windows7-x64

1

quarantine...Ab.exe

windows10-2004-x64

10

quarantine...Jz.exe

windows7-x64

7

quarantine...Jz.exe

windows10-2004-x64

7

quarantine...8M.exe

windows7-x64

3

quarantine...8M.exe

windows10-2004-x64

3

quarantine...0.html

windows7-x64

3

quarantine...0.html

windows10-2004-x64

3

quarantine...n.html

windows7-x64

3

quarantine...n.html

windows10-2004-x64

3

quarantine...y.html

windows7-x64

3

quarantine...y.html

windows10-2004-x64

3

quarantine/am_no.bat

windows7-x64

10

quarantine/am_no.bat

windows10-2004-x64

10

quarantine...ad.exe

windows10-2004-x64

10

quarantine...Y.html

windows7-x64

3

quarantine...Y.html

windows10-2004-x64

3

quarantine...t.html

windows7-x64

3

quarantine...t.html

windows10-2004-x64

3

quarantine...2.html

windows7-x64

3

quarantine...2.html

windows10-2004-x64

3

quarantine/pic2.exe

windows7-x64

7

quarantine/pic2.exe

windows10-2004-x64

7

quarantine/pic3.exe

windows10-2004-x64

8

quarantine/random.exe

windows7-x64

10

quarantine/random.exe

windows10-2004-x64

10

quarantine...s.html

windows7-x64

3

quarantine...s.html

windows10-2004-x64

3

quarantine...mz.exe

windows7-x64

1

quarantine...mz.exe

windows10-2004-x64

10

Analysis

  • max time kernel
    132s
  • max time network
    128s
  • platform
    windows7_x64
  • resource
    win7-20240903-en
  • resource tags

    arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
  • submitted
    26/02/2025, 23:45

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    quarantine/IxZcQMy.html

  • Size

    162B

  • MD5

    1b7c22a214949975556626d7217e9a39

  • SHA1

    d01c97e2944166ed23e47e4a62ff471ab8fa031f

  • SHA256

    340c8464c2007ce3f80682e15dfafa4180b641d53c14201b929906b7b0284d87

  • SHA512

    ba64847cf1d4157d50abe4f4a1e5c1996fe387c5808e2f758c7fb3213bfefe1f3712d343f0c30a16819749840954654a70611d2250fd0f7b032429db7afd2cc5

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\quarantine\IxZcQMy.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2600
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2600 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2732

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015
    Filesize

    71KB

    MD5

    83142242e97b8953c386f988aa694e4a

    SHA1

    833ed12fc15b356136dcdd27c61a50f59c5c7d50

    SHA256

    d72761e1a334a754ce8250e3af7ea4bf25301040929fd88cf9e50b4a9197d755

    SHA512

    bb6da177bd16d163f377d9b4c63f6d535804137887684c113cc2f643ceab4f34338c06b5a29213c23d375e95d22ef417eac928822dfb3688ce9e2de9d5242d10

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    fa07feff9b21af201c6c6d788777b1a5

    SHA1

    6062142c3aeeb02e9349e0b8135a46c409896865

    SHA256

    d29d47e7acb5dc97e315c0c457fff6afb9133c1f82ef39ebfdc98ba34167be54

    SHA512

    034723fe6bd479b4a16f8fc496f6d277a4af536cf8fcfd0c5d088c3d0b2b96f677ef65255447ac8b8bd7a5eaa52df8c1154909e8809febe1e78469e278f172e6

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    1aaf1cf7285149275cc98f9d5130e0e5

    SHA1

    3873c4deae6b3f862c01ddd289b6bbe899ff5a8a

    SHA256

    97047a4c9d2a19ba86240f8a629963d71b237e255fd85b17729de27c19df9a50

    SHA512

    54d5072a1759ff3ca06fca8a9728f3963c767ef2ac26708c6bf484bdfcffa4fd88d3f4576d2113a0c890a3b846c2ac387d683e8c244447425569bbaa68d1cd0d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    65fadbabba9619586741dad9a6d076ef

    SHA1

    99e1beb93c748200d6e3df10b0a4a9d22b4e75ab

    SHA256

    038a909b2aaef85e88514029eb14af012801f0595b2fb5e95b1e0aca7376c8b3

    SHA512

    aee1c83ac7b49f174d280013cc841bcc911f877e211db0fcb8f864ffc1d9124ffb0ba98f4ed83e6763f777b43ce5540b190eaf3bceedb93962bdde427b9efd47

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    d040a546d52d3c824921771cad99b3f7

    SHA1

    f5c8225fdf89a41d02a2459cdd4bd4cb8984e6f1

    SHA256

    6d64ee0d16da5f1013ec244a51afcaec1ff02db9b2a67540fa22b60d5b46d1d7

    SHA512

    5708800b8786aece8a33baa4ef73543d773e762a2159aa679af9c6bdc80483b1e4abdecc227eda7964c6218c733a4b3769a93b11b3e3b5799f117e68f48dda5a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    b66bd8e5494be975f7dd85ed9102820b

    SHA1

    6d756f2184b8cb2e6329927faf780c7697f14b73

    SHA256

    47bed921c3d3fb27a3bacc43c54a5c1957cc7d49433b90a522b378bac9beaf80

    SHA512

    8ea1a8390b3ba96ce0f8450d963ec97ca38f3c3be0bbf12a22a89e4d9b6326df74f423acde00fe4514f03e4a7458e1c8694790bf2168ae3b88a8c5cd5ff2081c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    fb7e80bd8b9982bb1b8c702ba9bdf5a5

    SHA1

    cda0e409bfee0fc3d3491b258da4e1fe7f7b1052

    SHA256

    af91619f553bc6a41419fc1d013aa16c63ead3535c0b950e91fb6bc6af6e99e1

    SHA512

    495f587a1bd252cbcfddfc7b0693629d55161cc5168ebef48d680c657e0248f6ec39bde7e4cc643907bfa210071748e019c5b587c3fd0a60a0824e206e76a9ec

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    675583affb5fcb4f9fc69dca00614c02

    SHA1

    de2931ec2ce3ab4126b2e8cc938d8a36da54035d

    SHA256

    23d3ef9d0529029b276106e90d95f33ffadecc2164944fb434f798ac438087b0

    SHA512

    6434fc1cb37c82da22e41094b31d6a355a5dfe26bb081f6b5fe209accaa2212f38ae8c9b182928d26770e9ef5082972c04fdb4b989be07570c33fa0f71801abd

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    495270d9e72245bbfa3d1a94dbf29679

    SHA1

    996e033bc4e14fef649af6e37b13a39ab4d8db3d

    SHA256

    0c014d3fb24c0617b4e86f0148940107ce826bb370e67ac813901d57a63ba87b

    SHA512

    44e08151995ddefe8275d097ec4032f9fed8e6ae0f5bfb5b680c2832d86b81c074ed2df2f147f72e291ba4685791ce2f523e543d56e95caabc0e50cdded40346

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    9155844e9e4862c181537f5187671c23

    SHA1

    a725975d9c2c255417ffbaee8a84802afc5b882a

    SHA256

    9f68cfaf26e2e40f8f759c4c03a3701de2b0f344025bc6c10fb847026292fb82

    SHA512

    bb252d08cd36270172cc61ff30ed8d833acf58114283a500932a984b09fc702f7307a2478d91dc7fca9a54a0afe406b749359e3f84c60e8afdc0c6dde6ecb277

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    006032553d16c7f3d1dde4912243e282

    SHA1

    6e85013d6cd34ea6b5c22766beb947d63462309e

    SHA256

    66b5b5d3c6704f9c51295799dd3d602aecef8c29d14384184e63674723706e3c

    SHA512

    fe7914a94553c4e43b82ad4673d6c67f83a4df3f1c8884f77c1b4c5bda56ea2f9b86f0281b33cb66d215dc70c087c66088e91651197394fee760f4e3e5ee3332

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    76dce8d4306f31dbe6df3dd63edee996

    SHA1

    3463ab36abe3c7e82ef55b9c871ac64c83686be7

    SHA256

    b5cb404119cb0bcc67f21aefcc25b3dff5ef9861fc140ca71c3c1fff8420146e

    SHA512

    f46056b8c2604d26678e7bd4e90767e0ea5493c245d30129ecf7027fcb2f67a08dfc3e7d1cbadaac4ab652536cb3ba192b6ea2d1f207bebf0d51c45a7c93f551

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    734c70c8d39f9a7133be897edbe1ebe1

    SHA1

    0926f55e11029babe1afab48c6e9d549f805bb52

    SHA256

    f287a014dbb68f8e5bec993e4138149bbb47e95558eb9bf50257aca2408a9d3c

    SHA512

    30e5d72f606b52422355607e530687c912c4337c260ef74de6a6f4fb7c0908f5f3b40d658f36e280c4b84d4b4eb8698ae43b0fd9f37050dfb168243c98d0ee41

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    c5da793e013328a9629253309e7c10e7

    SHA1

    14cfac7283a48b3efe5fcc5afb4e8b5a6b799439

    SHA256

    39642798f44ee0f64e1dd5b167b57b4b884c89189e8fe7c19252db87b4819249

    SHA512

    98c0d7140657a5e258d826f7b906dc0520a6564f59ad85829b628759e099d1fd277ac2e1a96c0f90c0201f3cbbd12f8b437aaf5400c5ee63cb723757c7f31be6

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    5979e2a5fee3cd9fce87fdf34bfd4931

    SHA1

    dbb96228d2f0663027e15499c2e9c16107fe5cc8

    SHA256

    8a59eda3b5a6122cd7ec8e56254fe1f57436ee08b83543c74959417cba37485d

    SHA512

    63d82c3b315948e40dc4763bce53b07141903b8e9ce131e58ac3508b4e8bfab289ac026d62840e4a7f6ac82d699e2550d863440ee46cc85860c06cc5a5d1a252

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    0a73e365efe65df08438b1d983ff2bfb

    SHA1

    6c7b0d680e958c6fb30c5d432a543ed78c1b54ce

    SHA256

    bc39a89f5ce219b464fc0d43f3c0ef03e54ab6b46882e590c613ccde828992ca

    SHA512

    28f1b26d8324713123477b0850e7920e2350f3cf8c474a3ad2ed24f8038389b36b3ea87ca59b4a796e6ce36976605a59949e6cd83c9f179a2c5f044055ef8930

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    71133a6a938f6b952822e4e958aec0a9

    SHA1

    c70d0a8d3c8d2fff4ec2b4bb90225b4b095c122b

    SHA256

    270ddf0b70158afe1eb8e21976aeeb894e39f9835cf51a7d0c6f1042969f008b

    SHA512

    73c80ab670a768cda6ac10306bce58ea67863d908945d1831919cc863cc91adeb35506675801e19916481b04de7fc0bff75e4cf4bbb9508bc9d7a6807c9f2c11

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    13da8a75d470e27887a23b909156b6d8

    SHA1

    a0ee0ecb43f7855a6acea30baa5c95c8ba4d051e

    SHA256

    0d5f7cf09d43befb672ac50c615c7bae11612a4c71c51b700595875aaee7e44b

    SHA512

    ac024fb711e1ff31e8090ab36d13227252d5eda4e49866374336f384e22f884ab023e0b25df5bae7ab44eeff963afa8ef725b249f6f0c1935da879963a11683a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    7090503afb5e2d15b2f6be2e24e42af0

    SHA1

    028fa92fa3e9848745479f06ea2f7cf8a4a61edd

    SHA256

    0b64d9056fad493fc079563552490f84c55650e58e138a5a0b0af835bbd33f31

    SHA512

    103e0d6e69554b3582ed5b7ba014aba64da970e9da60386424e3e90de205c5a2bd5052ed7a72ea897c97256078acb611432991ccd8789a6e245ace3cc114c6df

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    86e42ace8a8c689dbcd8c949438e403a

    SHA1

    0da7bbad1b00a98788a801f2540992c5357061d1

    SHA256

    c1ebbcb6656406081047c6a40ebac12991faf3a90104a38e69362d7beb5b4f8a

    SHA512

    1b0f1613f06300b9a52b314a96bb2bf984e9735bf8aee19f105c8d078773295f49e70bc6b24e64996b6cd8f2addafd1e7f42a2260c393ef9e58a463b3afe9bd1

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabDC9.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarE6C.tmp
    Filesize

    183KB

    MD5

    109cab5505f5e065b63d01361467a83b

    SHA1

    4ed78955b9272a9ed689b51bf2bf4a86a25e53fc

    SHA256

    ea6b7f51e85835c09259d9475a7d246c3e764ad67c449673f9dc97172c351673

    SHA512

    753a6da5d6889dd52f40208e37f2b8c185805ef81148682b269fff5aa84a46d710fe0ebfe05bce625da2e801e1c26745998a41266fa36bf47bc088a224d730cc

    Download Submit