Overview

overview

1

Static

static

1

437da46a67...1.html

windows7-x64

1

437da46a67...1.html

windows10-2004-x64

1

Analysis

  • max time kernel
    92s
  • max time network
    144s
  • platform
    windows7_x64
  • resource
    win7-20230220-en
  • resource tags

    arch:x64arch:x86image:win7-20230220-enlocale:en-usos:windows7-x64system
  • submitted
    27-03-2023 12:44

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    437da46a67bb02d41.html

  • Size

    39KB

  • MD5

    8ad0b490d9916d2f117f66a5dd69a208

  • SHA1

    d013eafe9f6c0cbf7f2706e23cb79083cf2bdd12

  • SHA256

    896a174a3d1e91ab91897a39794b92bd0a8596ac5badf5e9f20da2afb5b1138c

  • SHA512

    c2f05c11cb3f7dff1d2c32377f0e35188e98bd526e9c4ba686ba05f44b77431b2ec1b1633187287ebb085f102a0189d84df2c196cf6a47db9a80cc4fa4b85f6b

  • SSDEEP

    384:UTlLNDLfL2cORc7fQV8C0NGoFQlC2MGAVsqlXaivSYBQY2YpuM5GpTju5PLfLNNp:CLdLfLFd9+BT2LfLnd2FCd

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 38 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\437da46a67bb02d41.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1556
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1556 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:1688

Network

MITRE ATT&CK Enterprise v6

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015
    Filesize

    61KB

    MD5

    e71c8443ae0bc2e282c73faead0a6dd3

    SHA1

    0c110c1b01e68edfacaeae64781a37b1995fa94b

    SHA256

    95b0a5acc5bf70d3abdfd091d0c9f9063aa4fde65bd34dbf16786082e1992e72

    SHA512

    b38458c7fa2825afb72794f374827403d5946b1132e136a0ce075dfd351277cf7d957c88dc8a1e4adc3bcae1fa8010dae3831e268e910d517691de24326391a6

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    27bb195fa9934da0aef1f2e723a11659

    SHA1

    53ce5b0fba473da40c3d413157c472eabf2c4c0e

    SHA256

    ed4e7774757ab674104f68da1eb3d48d1afcbc6b807d560bbdc59c47c20ff6db

    SHA512

    1e11797d54e2102312f8b109978e50e1f941894cb25122f66219a249372ae941f7ce06c62eb6d87917643a1b39de995dbe3b3bcef76596750cfe4ca0215e1eb1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    aedcae0f67df6c7459d9bce341260a6d

    SHA1

    f77281e98a5dff6c44489149dcbecdbbec16f40c

    SHA256

    ac0a6fa8ca8a2969fd888572b4429421e30a124f984ef0db9064f780a1788287

    SHA512

    eafcb546bb96cf238d7faaeb632ff3fb830aa65ea55ffff7eaf88d2478a25a85bb7381903b8a35b62bab6ff162584336eff58bc6de2887fccc6e976e1737e48f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    a29d21cf6878bab0ac33208135623fad

    SHA1

    b795cd22750ddd4679e458739f8a7935eb5690d1

    SHA256

    fb969af4fa44b0aae53089e20c6088b5c268e96fe7be6c2b638718b4471ad75c

    SHA512

    5825ed48f8cd341faef658305ad9a0dcf60f6d5092f50df96b90b20b40a15f5e5a810e0aa00fe8140baade9ba6df72b818d283437229101409ef011f46a46d42

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    f27dcc71961cef393db6081761583412

    SHA1

    acd62b59b7a1d9ef69479fe9baeb198e606f2620

    SHA256

    fc90f05c3119cf74ff80a522a70673eed1ac0b8b23dfb8e18631e98ab6b0795a

    SHA512

    13f0538779d3ed4cf56380490cf5f1f46e99d4fdca9951ff7834d3f188cfc177633208e025f9041ee31508acec5fa755d63dc12eac5c2ca2d4b5c04842948362

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    be8120fb104618c4b69bb7d4edd5ac29

    SHA1

    9e573f81c57b2e77fd4076d83d021608d9327811

    SHA256

    4f91e7523eb559a082a4a3adf6f846ba0105b838223a5e4fe943d8719baf0e2b

    SHA512

    72412dd0211059a06c897248dc4c375c252e0b6a915d50ac40255548b901b5d6d6bea212c52bb091e2e43c5deef0306ecde66de4002621dbc9f67a57b88652fd

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    4d7c8bc21ac313c7c73559796203e35e

    SHA1

    b6e6cf11f8cc982f51efd3a60bd08208590fd990

    SHA256

    86246827847fa2b511b653a80ad6554dbd65d54778a3223d353fdfa277a06d62

    SHA512

    006f6b59f67c054560d37dc9f704fe29ea445f130a371827ff13725ef2aafd469322b5a46bc5854acc6c4db8f2a60a89802b5b4dbd655915cd72d72571fd25b0

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    2df71106e321e2b69c1e609c651e6c4e

    SHA1

    d9ee703fe953c2131dfc2d2613973e80bc07bd7f

    SHA256

    7c41d853b52564879fbf50641dcd9bf93626c89e16eb60a6323c6062891a966e

    SHA512

    a3ca2aa558c050e855998d193947589f1e6d47fdacf3f95013d8dd78f4624aa2fa3f86d245f07a02d5ee3b9ebb94a142e4bb9d145805cb9dd297abd30d92d67b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    41b81a9b87e51234c861df46d6ae2298

    SHA1

    3f50979afe46e68f513419b9309fa38d1e68e1b5

    SHA256

    6e246c8167f76785529884782e8cf6b5aae8d1b19b51217ca3681bad3655e34a

    SHA512

    218969742907967ee9d5c552e26fb8841eccc1eea4fb4dca6e6d37df1d4108fe4c72c0a558d34ff65f1f065ca6d30440bf349b8b247d26aff53093e76d853c56

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    d11637c2efb3d45ac4696299320f2e7a

    SHA1

    7db63fea9f582b02faee48585860c9f0cd91e3de

    SHA256

    d05fd9c356370138fae58bfd905ff57c19cdfb7427ce128fe6957a212f5dd26f

    SHA512

    890040d502ab97d298a2de04932860240296abc63bb8c372e4cef4c15e892c92983139d0db15624d805efc418c973803b5a5ebd14898862bc54202790783076b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    78baf307d871335ba96c6c4f8d976e8c

    SHA1

    470725dbb0c26d6b4ff9655ab4fe64d0da2e36c3

    SHA256

    94e39e9cbf431dcf7bddf6227300bec1a28371032d0fe5859a23dcf1bec9aad7

    SHA512

    e89bbcb6c5ce2ddc9b31355e41024fe28a172b594e56947f89ddd49e6b56d61870adcf8d5ec588a4bb694801d453c79d69fc1ade6755df0c7c63063b37db063f

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\KTB503AZ\suggestions[1].en-US
    Filesize

    17KB

    MD5

    5a34cb996293fde2cb7a4ac89587393a

    SHA1

    3c96c993500690d1a77873cd62bc639b3a10653f

    SHA256

    c6a5377cbc07eece33790cfc70572e12c7a48ad8296be25c0cc805a1f384dbad

    SHA512

    e1b7d0107733f81937415104e70f68b1be6fd0ca65dccf4ff72637943d44278d3a77f704aedff59d2dbc0d56a609b2590c8ec0dd6bc48ab30f1dad0c07a0a3ee

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab64A0.tmp
    Filesize

    61KB

    MD5

    fc4666cbca561e864e7fdf883a9e6661

    SHA1

    2f8d6094c7a34bf12ea0bbf0d51ee9c5bb7939a5

    SHA256

    10f3deb6c452d749a7451b5d065f4c0449737e5ee8a44f4d15844b503141e65b

    SHA512

    c71f54b571e01f247f072be4bbebdf5d8410b67eb79a61e7e0d9853fe857ab9bd12f53e6af3394b935560178107291fc4be351b27deb388eba90ba949633d57d

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar64B1.tmp
    Filesize

    161KB

    MD5

    73b4b714b42fc9a6aaefd0ae59adb009

    SHA1

    efdaffd5b0ad21913d22001d91bf6c19ecb4ac41

    SHA256

    c0cf8cc04c34b5b80a2d86ad0eafb2dd71436f070c86b0321fba0201879625fd

    SHA512

    73af3c51b15f89237552b1718bef21fd80788fa416bab2cb2e7fb3a60d56249a716eda0d2dd68ab643752272640e7eaaaf57ce64bcb38373ddc3d035fb8d57cd

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar692A.tmp
    Filesize

    161KB

    MD5

    be2bec6e8c5653136d3e72fe53c98aa3

    SHA1

    a8182d6db17c14671c3d5766c72e58d87c0810de

    SHA256

    1919aab2a820642490169bdc4e88bd1189e22f83e7498bf8ebdfb62ec7d843fd

    SHA512

    0d1424ccdf0d53faf3f4e13d534e12f22388648aa4c23edbc503801e3c96b7f73c7999b760b5bef4b5e9dd923dffe21a21889b1ce836dd428420bf0f4f5327ff

    Download Submit

  • C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Cookies\51CGG1XL.txt
    Filesize

    602B

    MD5

    5ea70583b02fd87ed1c36048d74061ec

    SHA1

    ef187f9eadbaaaf951e687fced843e8203bc8f9a

    SHA256

    e7e7bc64e60335a8343b37542e30d2f0e0581bf28f68a1e7e6d3e8cfed5fb7ae

    SHA512

    704313bbb2532b2dd9fc41d2fd4f027a80cb9d8b3596154fc9f006db025e8a2e595d5ca2b2b3730ce538e8230ed26c81d3c1b52e5d0727bbe901d58704012ff3

    Download Submit