Overview

overview

1

Static

static

1

file.html

windows7-x64

1

file.html

windows10-2004-x64

1

Analysis

  • max time kernel
    100s
  • max time network
    132s
  • platform
    windows7_x64
  • resource
    win7-20230220-en
  • resource tags

    arch:x64arch:x86image:win7-20230220-enlocale:en-usos:windows7-x64system
  • submitted
    14/04/2023, 03:55

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    file.html

  • Size

    7KB

  • MD5

    0a5045e2ac37a9a19314449de8a9f008

  • SHA1

    2e2c5697bf1df291cfbe3a78afc304c78fa7403c

  • SHA256

    5cc674db07c1be79e8e6845511b4cb2ca228a307d7b62945abc44f8907fb4ff2

  • SHA512

    20a644c00a54d049f50f08d0bb22c70b8ff743584df50d939a455f6aafb241538c1f9e1e057a2f1bc53d306a4290f8048df838389dff24dc6dd0651f692906aa

  • SSDEEP

    192:/JYliuFsIS3HF1W/UxhSnGmLOL5cqe98a8bR/:hWAIS3H/PxqGJW96l/

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 38 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\file.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:336
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:336 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:992

Network

MITRE ATT&CK Enterprise v6

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015
    Filesize

    61KB

    MD5

    e71c8443ae0bc2e282c73faead0a6dd3

    SHA1

    0c110c1b01e68edfacaeae64781a37b1995fa94b

    SHA256

    95b0a5acc5bf70d3abdfd091d0c9f9063aa4fde65bd34dbf16786082e1992e72

    SHA512

    b38458c7fa2825afb72794f374827403d5946b1132e136a0ce075dfd351277cf7d957c88dc8a1e4adc3bcae1fa8010dae3831e268e910d517691de24326391a6

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    fc30804c4239c2f9534dbaa987d9b98b

    SHA1

    613f3f423aae4da60422048e74d94fd661e99b5c

    SHA256

    a199df6c59ddaf5838bfdd024e286d02a93513f0875a07b36a98787ad128af18

    SHA512

    77d6cf709e723128d97d39dbca4895bf386fa1d42f7a007fbedcb3b6348533bceae9f604ebbbad646fea46142ab315da87355486f8d3558f3f02dd855980ba3c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    efdf568c3071d425a241bb2880499d16

    SHA1

    9a323142039411bfeee00e58f07e82b8acff6de0

    SHA256

    3f7bc41098942eee44d267ade33bc8d893a91399726fb9438dbf043247b9b48e

    SHA512

    384e42900b9bd90930cee40c59fb0ce51a2b0834cb9ec79358dc65a73b0b2c804007f37b19565f3dd46c0d802f408607025d042b967391bc6808f4d2314fde57

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    1c9db3f9ed088ac5277cd2829278520d

    SHA1

    873b1eb19b389bc193f1a52aa46eca8dc89421bf

    SHA256

    d9230393785932ada89e02c3a1e1f6abf744c4393487a8dd629193b0486ec6d0

    SHA512

    c8cf2d9e12c3e448556ef8356509ff9a930978cf74f9867f8dd845c053645d669d6602d74673f04d343429e883b2e1a9a57031cf9acc2a9621e1051e4a445da1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    ddc3dda86735504eff4fe580e2370066

    SHA1

    962264ab86aa4e5feebbe4b3e70fcb5fad33ab2c

    SHA256

    593a6d3b9e5831221b795108c29c84e2305acc08ce1965d215ca9d6616b079cd

    SHA512

    4dca2a9a9e0af43876010aa7a49d5d88a4b27865d81093f65d42ee13ebee7c18f556b19fbb113d794644955570a3ed7ac89cfb6cca355127932e084ba4fb40f4

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    c397ebcc5dbf567be7ff9ed842db9614

    SHA1

    36a4b9b8e3f733bbb99115e4e36cac936fd2e8d6

    SHA256

    374de33e00b61aa502ef9defd1bfd5672db3131974a66e9ce83fd9ce211814a6

    SHA512

    337c59a9c987c19d8b61015b81ea5ed7a4e4749e2ba72eca5ac8bde7b285b2c823c4dd8371fed2b5ca065912dabf7501b890aee1f5af45b8481d290f49fdb81a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    61655cd64162222767eedbb72fd4bbb4

    SHA1

    0c5312c631c13559e2918c291c4847a5ead9a643

    SHA256

    8762f6a53835b48e41b510a335a0cb5bd836461bc9406d3df59588a19a81f8f1

    SHA512

    65df3c8fa440a7c6e7c81c8fa983774f617b27b61bc57151e0a80fb60d0cfc105f012454de5221a1d67dc869d1322d4397753e744c32cd7a35e82a5bb15fd5d1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    7289eca1198d72dc01f5e8f105ccb257

    SHA1

    6f52e713bfb57f07bcd44fa8f44e77f075439ae9

    SHA256

    6b2e4aac74d63407dd938bdc8b54fab1663d0960bedb34f15451eee459dd7984

    SHA512

    c36322635f74ef35541482de2dd64f74952fcf846c7ed1186531262e86c8ecd4595b8aeca72a818375c976750441b2c4d0d441f03afc02694ec20ecbc72856a0

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    31d78b1da5af0717194b446f19b14356

    SHA1

    fc08ad77878b32a3dd7d96a50478d92c86c5f49b

    SHA256

    d764af8310c1f9e53ca0759650f08ab354eb310233a6db9f92e7c85a2ce58065

    SHA512

    092dc3098752dd2a8615bd8f255a30f49fb09aae112754c06b91171d320fb0315e237b4006bcf275ad4bb5dd33c5eeff916e4812d30b4874c380d89a20049d87

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    2456e8fccd9bd52f3d87580c7c47caf6

    SHA1

    68df1c6921f0b9bc36c4678899d3ea801846adb0

    SHA256

    5e5864def89ce525636369a7c623f01a89903cdaa7133ba984dc9a8bb713f8d6

    SHA512

    5e53ea00ebd23ca430409d0264a144051624bffb07dff9c7bb4484ffb2343becafd24922c1c97ca36d0e228f75c0d71a12ba7c66c60a7a4501ed92dbcfcfa476

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\ACT9UUKV\suggestions[1].en-US
    Filesize

    17KB

    MD5

    5a34cb996293fde2cb7a4ac89587393a

    SHA1

    3c96c993500690d1a77873cd62bc639b3a10653f

    SHA256

    c6a5377cbc07eece33790cfc70572e12c7a48ad8296be25c0cc805a1f384dbad

    SHA512

    e1b7d0107733f81937415104e70f68b1be6fd0ca65dccf4ff72637943d44278d3a77f704aedff59d2dbc0d56a609b2590c8ec0dd6bc48ab30f1dad0c07a0a3ee

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab3749.tmp
    Filesize

    61KB

    MD5

    fc4666cbca561e864e7fdf883a9e6661

    SHA1

    2f8d6094c7a34bf12ea0bbf0d51ee9c5bb7939a5

    SHA256

    10f3deb6c452d749a7451b5d065f4c0449737e5ee8a44f4d15844b503141e65b

    SHA512

    c71f54b571e01f247f072be4bbebdf5d8410b67eb79a61e7e0d9853fe857ab9bd12f53e6af3394b935560178107291fc4be351b27deb388eba90ba949633d57d

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar386A.tmp
    Filesize

    161KB

    MD5

    be2bec6e8c5653136d3e72fe53c98aa3

    SHA1

    a8182d6db17c14671c3d5766c72e58d87c0810de

    SHA256

    1919aab2a820642490169bdc4e88bd1189e22f83e7498bf8ebdfb62ec7d843fd

    SHA512

    0d1424ccdf0d53faf3f4e13d534e12f22388648aa4c23edbc503801e3c96b7f73c7999b760b5bef4b5e9dd923dffe21a21889b1ce836dd428420bf0f4f5327ff

    Download Submit

  • C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Cookies\W0MBPBKQ.txt
    Filesize

    600B

    MD5

    db72b7613f43f85d965dac562b5f8a88

    SHA1

    9da3be47ea716a70b43f1ae46aed4e48bab4a5c6

    SHA256

    0abf1e1ab3e668bbd40668da25f3b722cc6ea17a8f0d76f8178f025e18952751

    SHA512

    15f40d6db35569a3caa54953771667a7e63b6a35beae6bb7eaeca8b5b08c9c194abaa2d601922174d947f4508492646b8ed8ab6f91aac40e41c0611a8126c984

    Download Submit