Overview

overview

1

Static

static

e63786c87c...c.html

windows7-x64

1

e63786c87c...c.html

windows10-2004-x64

1

Analysis

  • max time kernel
    145s
  • max time network
    166s
  • platform
    windows7_x64
  • resource
    win7-20221111-en
  • resource tags

    arch:x64arch:x86image:win7-20221111-enlocale:en-usos:windows7-x64system
  • submitted
    25-11-2022 11:02

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    e63786c87ca35552ebb1c451885a50a8ecb0771fdc1f28846da9e4d74f6ae0ec.html

  • Size

    70KB

  • MD5

    62380ceb766f943e6cdaa365414ffbf9

  • SHA1

    7ddd8f53171eba84a7669d2f9ed0d5e839a134be

  • SHA256

    e63786c87ca35552ebb1c451885a50a8ecb0771fdc1f28846da9e4d74f6ae0ec

  • SHA512

    73510d892b3e1d0fb97a7463ea32480f6fdab4eca7efd80de7c16caac2214ec77125a373718f593ec0a988ed5fc1af223190dc1f0108631001cb5ca09b8ad452

  • SSDEEP

    1536:O38v2CJ+LeAhUZ61lSrWuGdpRo4cDhTU1pQ6o4KB2WxygM/sTJRTW9GdpR3v8v8n:DUlS88EEEEv1

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 38 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\e63786c87ca35552ebb1c451885a50a8ecb0771fdc1f28846da9e4d74f6ae0ec.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1060
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1060 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:1712

Network

MITRE ATT&CK Enterprise v6

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    1567fc4c74dd8a4a7e747cd26817b98d

    SHA1

    d3f2ee9b43a49e80aadb88501a6de3c44ac05b5f

    SHA256

    aabf6d9d5be7108b4a5d996ebb8e776731954df36ee48331fe7d59052d9e3971

    SHA512

    7549d1160fbbb12bdfe515d8a5e0d6c344833eaa69522fdf6dbee9601ede8a1fded479cd5e4c03a84dab0bf09ebc01d5489a333058962dcc44418e8b264ca889

    Download Submit

  • C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Cookies\S41Q0FCN.txt
    Filesize

    608B

    MD5

    a5095c1bcc510496ab06ee92b6cb2dbb

    SHA1

    d7b96d143d507c124e5da7c07330e1d76fd270a5

    SHA256

    ee5e3a6affb65166cf27d8711ed7ef3542314cc6f7a418ed56bb14103d5d947c

    SHA512

    9cce8dfe4d882a22943ab14a55fe1197d30becc19d535335cafcdfa975877b0e907ad8fc8683dde871be5dc832ea3062dddc6b60daf5c08e8d9cc53793d1f598

    Download Submit