Overview

overview

1

Static

static

1

asc0ZnSw8AoUd2.html

windows7-x64

1

asc0ZnSw8AoUd2.html

windows10-2004-x64

1

Analysis

  • max time kernel
    100s
  • max time network
    135s
  • platform
    windows7_x64
  • resource
    win7-20230220-en
  • resource tags

    arch:x64arch:x86image:win7-20230220-enlocale:en-usos:windows7-x64system
  • submitted
    03/05/2023, 23:46

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    asc0ZnSw8AoUd2.html

  • Size

    162B

  • MD5

    bc56979a0b381a791dd59713198a87fb

  • SHA1

    6c665dcfb0303a67024de3d694f810669ae188e2

  • SHA256

    1d08335e65da7cf40d1c4a7ba0088e0f39b9c5a4b2e42de95fc9ffa69fb96c7a

  • SHA512

    f0ce614d94601746ac209abceba7cca6ddb1fd5d29f5e2d731510163e9e1a64891bddfe4ca12c16e7ed99d697c7b0634603d43dc28d8a90e84c3b3e825550934

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 38 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\asc0ZnSw8AoUd2.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1604
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1604 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:1168

Network

        MITRE ATT&CK Enterprise v6

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015
          Filesize

          62KB

          MD5

          3ac860860707baaf32469fa7cc7c0192

          SHA1

          c33c2acdaba0e6fa41fd2f00f186804722477639

          SHA256

          d015145d551ecd14916270efad773bbc9fd57fad2228d2c24559f696c961d904

          SHA512

          d62ad2408c969a95550fb87efda50f988770ba5e39972041bf85924275baf156b8bec309ecc6409e5acdd37ec175dea40eff921ab58933b5b5b5d35a6147567c

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          be93f5e48542c993b9cba05b5cd60ef0

          SHA1

          9a9828b94e4fdf1301b08f426c9d1f159fa9a903

          SHA256

          f7b4a2a2436f913ce4ecc4a0ce439bd5337f972e04eadacf119cb8fb56b9b739

          SHA512

          268093a4cd525ad486753ea888dd12d54daa9945032d77c131a1b15fa91629e0a7035e38cae2655f6f12c0d316f0e98613926b03e46965a8800ed5049a7ce0dc

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          942d39321e932200b1362ed8e7902506

          SHA1

          a2cf0aad2fe5c97840dd2e59021a169194c2a3ba

          SHA256

          c18ae8db518ccae3903bc53c169a1b6f4fe623068f52ec42cb838bf05f236b6d

          SHA512

          4c54c0adebc59836c8f9719c24b0db6dc1a3169f4127f6a912595d52de725950c5a0adb527fae0d77978ceb194b442d1f7ba99180c44b6d11a449b23cef71749

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          f9569ac43a3d240a7d3ffa5ead1950b1

          SHA1

          6d3637d0c4fb47d28b308d2a33a182cbdbf2ecae

          SHA256

          1a57d1a216d4b878774a10bcd1a7e1a304ad0eefb5ffbca6c0d3649d3f3e1211

          SHA512

          b5d7a67c44a8d7bba8fcd0f05d37d2941330d554edeb2729e6fd45782909ebd6b6f245b6d61be6f424f9f75423fb5f5fb165db4d75a1aa5780c76f2a09c8fbdf

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          3349df29213262372a57b244b93c6ffe

          SHA1

          d6405ac09ec468d834ac33e5076a6d108b9cc739

          SHA256

          258ecf5290bc8f744ad91118a8a61cc2b0765b9902752c4c0f5e98354a4abea2

          SHA512

          426a1b7cb11f97cfa5abe94856fac031d64420440adcd1190cec28188792c2d954367b2973cfe4bb00738523ebef3405fd374f79abcde9b9cbf649b66e94ec87

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          5863229117c72603f04765642b9045fc

          SHA1

          5052ba2a9b7490f6b93437ad8a7f0b315f19835f

          SHA256

          2cc0ff26da5be1adffd4582f90da2006e39c985d6acfddb9eae9891fe8746c66

          SHA512

          816920d69de893fc7b45718638bf8e0297cac9cc88d895510d6e8a519ee79ba166c27a5bcd3a609ca855693bc2f786fc0be73d000d8d05dd5631b7fdd6576002

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          3bd41b2947a9d44520066166b3c27f5a

          SHA1

          ab1542947ff0c7629ae1cbfaaf829712d5d8a281

          SHA256

          28c634272fcd3cb599f6c1669b27e8fef9a93792b6f63a773bc3a1624b729d98

          SHA512

          35bfcf9a5a550b6fc652f1f74eab9f6f1d24f695c18a6e3aa3e858bf87fccd4bd9a1a199b4ea59b1a9ddf92301bcfef4454da0a29c2d21abdc7014fe14f50f03

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          e0dc714cf4e53bcc072e53ba9e361f8b

          SHA1

          71f6c2865d418cff0c9962e39177ffa88537b192

          SHA256

          9c65a80a0c7df80e2c5df1fca04816a7437d1451a227ea3c31ef0fafd886fdc5

          SHA512

          739b6126a677af52ad526e22a548e8fa92297bbda35ef6584c2bbcd5de8a995471bf18902986a761ed5b6bca573066da31c4f16c558c68224c2aa2b1ccac07d8

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          460dacbcca134e72ef8199160a02b0c8

          SHA1

          6dda1da85973e923c8a728cfa47318cf2402fd87

          SHA256

          b9a7850562fdf6f4c9341d470afce7e8e704da89f5b40021b2e0520453465b09

          SHA512

          eaf12e939876d7573239312d6f7b7e5d04a69f4357627a22a50eb981fecfc06febd24a0e5e89bbfc4549156bdbf4f41b393810c50924cf55ad7f7474f05fd349

          Download Submit

        • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\QCNSQOTT\suggestions[1].en-US
          Filesize

          17KB

          MD5

          5a34cb996293fde2cb7a4ac89587393a

          SHA1

          3c96c993500690d1a77873cd62bc639b3a10653f

          SHA256

          c6a5377cbc07eece33790cfc70572e12c7a48ad8296be25c0cc805a1f384dbad

          SHA512

          e1b7d0107733f81937415104e70f68b1be6fd0ca65dccf4ff72637943d44278d3a77f704aedff59d2dbc0d56a609b2590c8ec0dd6bc48ab30f1dad0c07a0a3ee

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\Cab3824.tmp
          Filesize

          61KB

          MD5

          fc4666cbca561e864e7fdf883a9e6661

          SHA1

          2f8d6094c7a34bf12ea0bbf0d51ee9c5bb7939a5

          SHA256

          10f3deb6c452d749a7451b5d065f4c0449737e5ee8a44f4d15844b503141e65b

          SHA512

          c71f54b571e01f247f072be4bbebdf5d8410b67eb79a61e7e0d9853fe857ab9bd12f53e6af3394b935560178107291fc4be351b27deb388eba90ba949633d57d

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\Tar3ABB.tmp
          Filesize

          164KB

          MD5

          4ff65ad929cd9a367680e0e5b1c08166

          SHA1

          c0af0d4396bd1f15c45f39d3b849ba444233b3a2

          SHA256

          c8733c93cc5aaf5ca206d06af22ee8dbdec764fb5085019a6a9181feb9dfdee6

          SHA512

          f530dc0d024a5a3b8903ffaaa41b608a5ccdd6da4ba1949f2c2e55a9fca475fec5c8d2119b5763cabe7ef1c3788fb9dcac621869db51d65b1d83cfe404fb4c27

          Download Submit

        • C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Cookies\5UOOWNQ0.txt
          Filesize

          608B

          MD5

          eaa95de9f323c5f3ec57eb6e292884bc

          SHA1

          61d197a6d3238702198904da52ca700ef0261bef

          SHA256

          9914a86969dd1895c52a0ea1b22bb577a3c7f7752551df720f900677df00e84e

          SHA512

          5b098fcb2c0f36eb4ea889f720b5712a95985962af3bbdc5b780d77de828fa04fe09f53efc7b71e808b7579fa443afb37b8c108f9d6b64371ac5c16894837b2a

          Download Submit