Overview

overview

10

Static

static

5

quarantine...Ab.exe

windows7-x64

1

quarantine...Ab.exe

windows10-2004-x64

10

quarantine...Jz.exe

windows7-x64

7

quarantine...Jz.exe

windows10-2004-x64

7

quarantine...8M.exe

windows7-x64

3

quarantine...8M.exe

windows10-2004-x64

3

quarantine...0.html

windows7-x64

3

quarantine...0.html

windows10-2004-x64

3

quarantine...n.html

windows7-x64

3

quarantine...n.html

windows10-2004-x64

3

quarantine...y.html

windows7-x64

3

quarantine...y.html

windows10-2004-x64

3

quarantine/am_no.bat

windows7-x64

10

quarantine/am_no.bat

windows10-2004-x64

10

quarantine...ad.exe

windows10-2004-x64

10

quarantine...Y.html

windows7-x64

3

quarantine...Y.html

windows10-2004-x64

3

quarantine...t.html

windows7-x64

3

quarantine...t.html

windows10-2004-x64

3

quarantine...2.html

windows7-x64

3

quarantine...2.html

windows10-2004-x64

3

quarantine/pic2.exe

windows7-x64

7

quarantine/pic2.exe

windows10-2004-x64

7

quarantine/pic3.exe

windows10-2004-x64

8

quarantine/random.exe

windows7-x64

10

quarantine/random.exe

windows10-2004-x64

10

quarantine...s.html

windows7-x64

3

quarantine...s.html

windows10-2004-x64

3

quarantine...mz.exe

windows7-x64

1

quarantine...mz.exe

windows10-2004-x64

10

Analysis

  • max time kernel
    119s
  • max time network
    127s
  • platform
    windows7_x64
  • resource
    win7-20240903-en
  • resource tags

    arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
  • submitted
    26/02/2025, 23:45

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    quarantine/I8L5Xon.html

  • Size

    162B

  • MD5

    1b7c22a214949975556626d7217e9a39

  • SHA1

    d01c97e2944166ed23e47e4a62ff471ab8fa031f

  • SHA256

    340c8464c2007ce3f80682e15dfafa4180b641d53c14201b929906b7b0284d87

  • SHA512

    ba64847cf1d4157d50abe4f4a1e5c1996fe387c5808e2f758c7fb3213bfefe1f3712d343f0c30a16819749840954654a70611d2250fd0f7b032429db7afd2cc5

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\quarantine\I8L5Xon.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2340
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2340 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2520

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015
    Filesize

    71KB

    MD5

    83142242e97b8953c386f988aa694e4a

    SHA1

    833ed12fc15b356136dcdd27c61a50f59c5c7d50

    SHA256

    d72761e1a334a754ce8250e3af7ea4bf25301040929fd88cf9e50b4a9197d755

    SHA512

    bb6da177bd16d163f377d9b4c63f6d535804137887684c113cc2f643ceab4f34338c06b5a29213c23d375e95d22ef417eac928822dfb3688ce9e2de9d5242d10

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    e6d148f9d5a2a51fc85023a18e37246c

    SHA1

    da88f11df55992e0542751b2607d62f8fea9ff0a

    SHA256

    1529361ccb3f8caedc16e51acf2dd671c5caa4a510ee2795442f2aac0e748f76

    SHA512

    7a112373a5852a50c6ce803f2655d00b031fc5d0e04bbdaa25da3c6fc63a1b8000be033032102e209c6a8d5e064e3c9627b9ce3bc78202ba3205d6c1f9f0e46d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    156e49e1c8fb9e19a9a6e58bbbd1d82b

    SHA1

    b9cf573da4db5f03d94e28a1f9978a125c63017b

    SHA256

    936b669b37ba2f4263c4c8892ae69fcdedeebe91d06dce5050c952d781ddbff4

    SHA512

    8aa7d01f4c8929b261e9812f8e6b23a4326fc65678cdbd147192a3236c97348164fd647636ea84d09e9cde02aff4ddeda0043b4e6b88fc5aa5986e7ea7e02204

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    b706eee24b5067bef5b42b71214ac1ae

    SHA1

    434dcc56f3288222e0c93c0893070f708a4b243e

    SHA256

    c0d671f4e63a2bf6938160787ee8716c355bf07c755e67e1c029a2e880c4d502

    SHA512

    0cdaffc83a716222488c9aea511a38c696f4b342ac528bf43c145ee84a2d9c6bf4df9b9c5ffed2d57596857646d6deacfa3870f2763fe7cc42188e154b236f8e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    633efef27c2ac53e79db05e28854fdff

    SHA1

    b03ff144bf617c5de2737e215bf08281f4beb6d1

    SHA256

    8035b4f3f452458451e4720eed0df7d870c5b8c51613b732605e14b21a97393f

    SHA512

    45764648e10613c05b8278f349c38d41763c6573ad5dbce7ab246743d46e527caffa953dd0985ee066ecf66ab320f557f9946dc60520a50ce0f24b9dcbbec79f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    a9e310905ee57057115145889cbb2259

    SHA1

    4bc946eedf984544c44e5413de7fd70a2d5b0a72

    SHA256

    a22f8f4b367101c9c64f7c66c1c9e3922269258d284b72d8113f140c0ece22b9

    SHA512

    5b26baa801436501578bbce9f65b05bf164df4620e7a296406f5716d1268ab5262e4dbf641d24f936310ae74d58657188c6bf571eb515a5a568ab72467946292

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    b3cf987dc2bfb5e9226dd9b9304d1650

    SHA1

    ef95371e5708ed247734f9ad5ffe4bab85a16a92

    SHA256

    1334db1f2492ccd1fa225be7fdf8e57e91af3d36af683cea60caa323f1f1cd13

    SHA512

    6d9fa29ad7032b390a50d0c33340aa4d13ef0b541c75a9d8862a728ee732c84f96bffe2717b2e03f2c35440dcb245509cca35d0a732dc4f60635d6cd2ce45a76

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    ddf798bf184236a7dd6dac9d98020117

    SHA1

    d5f74ac86b6db1880c6389c8d6eb44cff65b2466

    SHA256

    84e08b0dd321937bd5d2ca3ad29acb8d62b0fa35cf54226792198569f9571dac

    SHA512

    bf2df486c94c76a7e01b2871fcf7d4beee75ae9f7787df1751efc5da0527372a86e29c0a84a5f2f4c694ca807a0a2bb97511476e332c8d6c8a90aa580e0b3c28

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    644e9196b52ed56028e5866a6e655103

    SHA1

    41cd787db6a109e06bbb8d387cd0b4ab6e0d20b2

    SHA256

    fb778708d6202cd025f4570c334ec73c35f4bf0a82393f415361831443b57298

    SHA512

    a7ea63aa0e7e603be5039fb42737608f48cf3206699dd6535267f36fe8afcba543a802f18126d389d0412775fce3bbcd78368480193c6aede1fd3e3046a65229

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    1db7307612f6dda7eb55221087b2ab0f

    SHA1

    cec07a73741484edd1a0a52805ff84c74ff11ba3

    SHA256

    4519218bb968c0966fefe45f73ad95ae701703311397583bf2bc2ebe32c378c8

    SHA512

    5f1e8e9c3bc133e6c72aa3f19a547eb2c97efdf87822c968f2d09752ad36f47eca9610bf388734fb9fc411606d199ae0fcbb21878dd10afa6bd0409fcd2f4c39

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    b135fa4a1836a32940cb1d4a023e2607

    SHA1

    9953e585906018970fd2cd71d6d9ea785384ab01

    SHA256

    11d45d90251b6662db885e66134dc13b919742a2af60a2c7f0dc1380b427e87e

    SHA512

    820aaa47682dfc76646a05fa08cfce020cc3ff9275d53286d8e8d67a6301819928b6260a5be48c68cd315da646ac9854a9d57083d0a0dbc13c953fedfd9b55ae

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    6622230916d4c139b103ae68dbc584d9

    SHA1

    7dead63d70c530138b4cd4f3a828e6edceebbedc

    SHA256

    9c76ea7e96f7ef6eb815ef8fae1bd8be5acdbf2abea2c34770b0b201c588dc5f

    SHA512

    f68d0efc33fef9a1165c1b4161a08ada0d54a89fc3584743a6bfcd9cb132ac1b359c1b97e45fce2b2abf8d688639f8ec309d06517dc81fc6582903b1ffb114ab

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    97ff4a78099bf01e804e5b516d7d1bdb

    SHA1

    279cc32d4ec2558eb02796c5580b4cf738431864

    SHA256

    f2d2bc398ddc95b9263bd598cb6ab1a5c3d605594d29b2f204848a705a0ca45a

    SHA512

    f3478c310c7e129d9449e4852e56336a133d4afaf9b4ed4593e3bca67bbf1994f875b5a6293eb6ebf044c79e414a3dc94654a72aa43b88b77920deaf97ccd8be

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    3c1e2d3f1331da59db0101deb5346948

    SHA1

    9826f2dbfd68e4ee3b7ffa161cc6ad692275413d

    SHA256

    624092b8c15a61de33eedd43b4141dc5da1d578be9e8d4912ccc8cf46eb1260d

    SHA512

    64921557082685f60fecc49d961715fc330d27c4f2977006c536885b84a5c72bfb263f19e808398206c49f3fe85b6674eaf979e7b093dfc8cd667d33a93dca2e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    c34f96ca529c95b7a6350a76ed2ccccc

    SHA1

    6a45e8d7ce306d2d3b94a71a2af0fdc508955a77

    SHA256

    164571947374b550d9b8e25e7ab49c4f1343e676a4052f039c6e5890314c0ae8

    SHA512

    c9991a3208a108e5dac82bdcc7495a6816de44baaee8cad0d89eb239cb0ed220a874e458d629b68e1a7273f53114061189e4bc46228237c6e01112fcab881904

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    edb4c274d14bb01f25c9bd696c187932

    SHA1

    6d09eb23afae8379ca23e1c5b2d5533a71f846c4

    SHA256

    6d9eef54016ab86f31cacb69dea4eac986befb92849ccb4c79182bb83a7a3f92

    SHA512

    e32a006e78399d5cd2220fb665774aca3145c8c481ac161d53535819cb3db6084782ccc547d67e1de27b954c1d4c10d326e475b20abe1682bb209cb177511395

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    9afc8e37a2c774b4553d0f02bd319728

    SHA1

    39d918b2457213c7cfa35a4980b030358093b0ad

    SHA256

    db56820d424a8504754e0ce6643ba196ca35594d67f08c2ac48bda8b1b23ea02

    SHA512

    f0d7a612df10cd91873022f3210dc5256decbe521d317731a3110b3107c8417f95bfb6189afe40549120effd539ed79ce66b9a1cad6d268383d6b79aff8d6650

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    91eab65a420a43b3bf3d2dd6889c1605

    SHA1

    f3ebb0d16fcd1f622902980cf48c1aeaf59c1c77

    SHA256

    8dc6e8b136831be6d5821a28ecabe53352458764ed465177dea6678e0c85a450

    SHA512

    bbc0eab4997579452b9f66d1c2f5d7c7230fbb554a096404468e5fac1913dfc86b124f9a96b618fdaae9103d6646303d72810d0bfc390473199808cffba231cd

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    bfe462ee453a1eec1d166815c18c4e79

    SHA1

    0e8394b16e0e1b2c23ac5fc3e968bc50ddbc26f3

    SHA256

    d946f24fe9855dcc9769f85788958d687278a82813e1288a3a32bd0410709c1c

    SHA512

    2c69a158cc08a913b66bc15461fb3ba2b98dfc73f80cdff431d5e167623501057817400a699646f1dde96bf17f03a6a526d64170d2dab2294897583d1ec525ce

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    15d5c83058285ad9e8e1881d8a77c25f

    SHA1

    78fffd02e1f8b40c10420f774f058ea7607be4de

    SHA256

    e8b4a1037a75850bb1d038288eb2422eacccd1ae15e9008cdfb2bde2499bea6d

    SHA512

    353c51e5f140af992403aa64394ab32f791d9ef013956bb71cf6146695aa957aaecac21b60239a3680931c8572e681276039a40d3aa8db934b20a2b6a056c5d9

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    3c9c6234d873fa09aa8d32f2606e6018

    SHA1

    eb2204e055fe9670c0d1d8bf70aa84204d220a8d

    SHA256

    e21396aca0e81c766cecd35acb1f9a7d151cb487ffd4bd72004ffced23aed93c

    SHA512

    c1971276eeccc1eb772b8758ff693aaa989900850fbeb5b512f69ac4f4aa1cb7287fc268a935ccc1011bd27fdca54931bf0ad5ecaf7b54a4629cc9e910358adc

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabD1E0.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarD2D3.tmp
    Filesize

    183KB

    MD5

    109cab5505f5e065b63d01361467a83b

    SHA1

    4ed78955b9272a9ed689b51bf2bf4a86a25e53fc

    SHA256

    ea6b7f51e85835c09259d9475a7d246c3e764ad67c449673f9dc97172c351673

    SHA512

    753a6da5d6889dd52f40208e37f2b8c185805ef81148682b269fff5aa84a46d710fe0ebfe05bce625da2e801e1c26745998a41266fa36bf47bc088a224d730cc

    Download Submit