Overview

overview

6

Static

static

1

view.html

windows7-x64

6

view.html

windows10-2004-x64

1

Analysis

  • max time kernel
    44s
  • max time network
    48s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20230220-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20230220-enlocale:en-usos:windows10-2004-x64system
  • submitted
    11/04/2023, 05:12

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    view.html

  • Size

    74KB

  • MD5

    4e85c6e878338f32dbcb14fad756ba51

  • SHA1

    2587762f77b0bc257e80d92aa57a6d80b7c4e64c

  • SHA256

    929b6ae8766f603a724bbdf25d8e2ee2f68068348236d7287d88a1d1759789a6

  • SHA512

    a3ca88d9d7559c6b082caf305e72d205ee05fd7d3ccbcdedaff476c64ced7bea31cc808477b6c9c62378888fcef6a431452e015f9c59d6f6c3e8a1f842e1360a

  • SSDEEP

    768:7/lZm8weQ7cp3f45kF4dnOwqPxoC5TCMaiFJtc4RXVK7DZeeVLXOsgQ8jgzQJKs1:yeZvVVJtBcDrVhiBc2HMdm6qz/1aQj

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 25 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 3 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\view.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1236
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1236 CREDAT:17410 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:3512

Network

MITRE ATT&CK Enterprise v6

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\7423F88C7F265F0DEFC08EA88C3BDE45_AA1E8580D4EBC816148CE81268683776
    Filesize

    471B

    MD5

    9d7d180f2de0b32edd9f9ba978b4eb0d

    SHA1

    9bf1008285df462813b1e16c7f8076cd51845ea9

    SHA256

    a15a3c7ba09d8274c9ac4af92269a12079065383d57b0db0fae614a2936ef64b

    SHA512

    77b7b8f810d51f1923a41838cfe1fde471b03bd65e571e422f9c8ed8eb00191e536a61d4f82f42c27c03df87d4e497abedef00156e24bedbc57f9f465e0bdf68

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\7423F88C7F265F0DEFC08EA88C3BDE45_AA1E8580D4EBC816148CE81268683776
    Filesize

    434B

    MD5

    16c5ba8138ea27f51778420f4fca4ac5

    SHA1

    7bbf6c898d784be4c04cd154307dd559d54ad567

    SHA256

    54d07949f2cd2b90ccb6bde06ee6a31394fb5d769d4d8dd03f5cd6dc37b7a8a7

    SHA512

    710ef61de39defe3070a92b87b68a3537e2c7bb6686e51b95fe76220b0e8beb282426595a9979d526214e2fbe3b7cfbe3075c1fde77a79d6a76b2df5e835d05e

    Download Submit