Overview

overview

3

Static

static

1

file.html

windows7-x64

1

file.html

windows10-2004-x64

3

Analysis

  • max time kernel
    66s
  • max time network
    143s
  • platform
    windows7_x64
  • resource
    win7-20230220-en
  • resource tags

    arch:x64arch:x86image:win7-20230220-enlocale:en-usos:windows7-x64system
  • submitted
    11-06-2023 19:42

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    file.html

  • Size

    319KB

  • MD5

    2b94cea59c44d04195169b3e2bdfd97b

  • SHA1

    aae38985347ca2e1244bbd79b38f9acb5b3a0288

  • SHA256

    ac389618d50d9453678ab3803d7e77a7f7c12e047624731bd1dec09137096ba9

  • SHA512

    e563bf4e71b9709fe5e14e9e9c8e9456f0cbef421389e446e2adda0a506a11f4f635bd4bb265fafb84b90c7ba50381c2b40e994c1b88f84ac529e9a08c7269e5

  • SSDEEP

    3072:giLgAkHnjPFQ6KSEq4oNF5MeCHF4aW+LN7DxRLlzglKhKw9i:bgAkHnjPFQBSEqv9Cl4CN7jBhKw9i

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 43 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\file.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1724
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1724 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:1108

Network

MITRE ATT&CK Enterprise v6

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\070E0202839D9D67350CD2613E78E416
    Filesize

    1KB

    MD5

    55540a230bdab55187a841cfe1aa1545

    SHA1

    363e4734f757bdeb89868efe94907774a327695e

    SHA256

    d73494e3446b02167573b3cde3ae1c8584ac26e15e45ac3ec0326708425d90fb

    SHA512

    c899cb1d31d3214fd9dc8626a55e40580d3b2224bf34310c2abd85d0f63e2dedaeae57832f048c2f500cb2cbf83683fcb14139af3f0b5251606076cdb4689c54

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015
    Filesize

    62KB

    MD5

    3ac860860707baaf32469fa7cc7c0192

    SHA1

    c33c2acdaba0e6fa41fd2f00f186804722477639

    SHA256

    d015145d551ecd14916270efad773bbc9fd57fad2228d2c24559f696c961d904

    SHA512

    d62ad2408c969a95550fb87efda50f988770ba5e39972041bf85924275baf156b8bec309ecc6409e5acdd37ec175dea40eff921ab58933b5b5b5d35a6147567c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015
    Filesize

    62KB

    MD5

    3ac860860707baaf32469fa7cc7c0192

    SHA1

    c33c2acdaba0e6fa41fd2f00f186804722477639

    SHA256

    d015145d551ecd14916270efad773bbc9fd57fad2228d2c24559f696c961d904

    SHA512

    d62ad2408c969a95550fb87efda50f988770ba5e39972041bf85924275baf156b8bec309ecc6409e5acdd37ec175dea40eff921ab58933b5b5b5d35a6147567c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    0abb9354546805257e3ae4aa99e51272

    SHA1

    ecec9569d51b94b55bbd883480a7902843b3f784

    SHA256

    5c1cdaf6be0b6da39cc5a6ce5adcb7fe8b7f145cbbac4ee704d01df5f607bb97

    SHA512

    caafbbfb24adabb7a0fa6a1559d360558b9b7a4028f75d021f37dcbeab98fbd1eed9b6613e4d047236461f7aa99e95a2883220be128b24eae64e8a0d7a9b20b7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    3cbcab532b09e0dad2c0b9e959af0d86

    SHA1

    3df10662fb40da5516fb6aba68b65b872502781a

    SHA256

    911ee6ac9fadb144d2837feb476510a83c7f5d40bb8cab07f90cde8bf7f82854

    SHA512

    417a0339bd60ea2a77dae2eb5cc0bbbd4e7c7d8c8dcf44dd2bc4bcf706622e51b2e51a2fe84fcd8b9335cadd8a9bbd25cfece7bde47585222ed6cffbd076bb6d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    380df5c11b863ef4d05e4c90e8e2a980

    SHA1

    3646fd1f1a3bb959687f50b2739dc18fe656cc39

    SHA256

    448dd00368d4b3db162c9c45fd5b2a16891c2439695a7c5463dc551397fc4e65

    SHA512

    a78a764f3ae46a135b8834bd3244794bc04a222e75b3fc2e62e9f7114e9665b6eca1be3cdfe5f2445ec24c6b7b7622fc126600d3c7f756d558c67cb64d5616ac

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    fe9c7b1b5a56b27dc62c9cd9e2a49305

    SHA1

    af806bccd346b3e80a6ffeb9be99ae91371fe50f

    SHA256

    4f4e8276b989397d89178726aa27edf5750b995de3a8710a1fecbae65a0021ac

    SHA512

    00758d3bf02a12b16cebd496e49f4eddde8901b76039d910715510c24bedaf1f641b356a58fead8dbdebe2b9cee98c032256aaf0bd859327001b78e861466b5c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    8f43f021ee4ce12b92890d5753fe9c46

    SHA1

    f2fed5ba14faab8881142cbcd8c1d4ec26be550e

    SHA256

    0348eae0e65f4cea8db8debe9dad1e01cfeac33ae91e4c419e78b5554648580e

    SHA512

    6e7f8beaded809f6287bf10b60beca3e7f3281bfad3d79023425c23967b5699a40c840242fc4c0fbb92799e7c8ecafa3ca7fce0089df457241bd136914dbad06

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    0c120818752b3819d23c8cdeb0c11f43

    SHA1

    4fe4493429addaab2c3d69e47774e0faf21589a9

    SHA256

    091d30ad910ffe14d839e6cae3c475ff136f873807e9c71abaa7a0ef806c44d7

    SHA512

    59c03bf8891c90c3787ff3bf4d72a6f6ade5cb57c5c6bdeb61a3789a8297d6d7fd8ed7d9003c96df892573a84187519b7a4fe8ad913c0839ddb5fe9373e725e6

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    c9feb9b058dc8c4b612baa63371c3456

    SHA1

    9cc9e20917350fb02a4e78309007dad6ae394a45

    SHA256

    302d68bd1ae35912a4298812d1ab29c21a6882f172a0f517fe504734b84803df

    SHA512

    095ce29f3e695248b3348e2c65d6bd2cac5a6191ac2f33e4c5b6c090cd1383c72a0bfc33a27d5538f7355e0bb92be2b2b13666a08dc877495437b5dc0b731e99

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    6fa7d6e5eff8cac84504b8140dfa462b

    SHA1

    bc1fc4f011d0fadef37ba5965fddcaa362021c4e

    SHA256

    6258ba72028a567960254aa1abfc810dada9c8b421e6dd1f566ed7103532b306

    SHA512

    316b783e8d79eca020a59833b04f00d9225585804696ced7344fe1a4e1c1372af85e41da0c2e8de3c846e372cf55a7173db6dea340e9a79601ad324be91a9de2

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    02f23b984573bb8c0ae55fa756d484c7

    SHA1

    513d96805dce64c71f99f6c591e2ae52f0b35abb

    SHA256

    bdda7d973349e970afd045ac9981124ac22cfdc32aab16adfc5fe6bb5e221edf

    SHA512

    50a111cbfb5e2bacfc28e6d37035ff914ace099208aa0c954df9dd20ba40b0f3dec4348cae7e6f36583d3c34dc045a1f340089669f817e6414c59c049c0c7252

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    8df74ce57320c277d13aefb107ae46f5

    SHA1

    248b21671260ef24c9c4fc9335ad95486a5c8ebc

    SHA256

    0e70d376f65dd1b9679201c606b15679abf5ed65ba58997cadd9cffc08a0bee9

    SHA512

    297c04f0f9dc80452eb1462e5baf4a1e560b573611431d43be0a41288c098c8caff701c429ecef7eaa0d4bff8b0f200c273499786db151f89d13db53a4461e9b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    2517722531805bf447ba0301084bc124

    SHA1

    ba730b3e54a99feb2efd79112a443825019e4d4f

    SHA256

    071d3bd4faf1d7d0e33aefd3627de3fec58f95df814ae9acf322113357e49657

    SHA512

    cabcf60a00a556de97293ebbfc3701240893572fb2d42a0a285939d7cd3abc1ac009e878dbaea1f81c18840172d06737c9fb46184592e4673389d1eff44d3630

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    40ee1f98f41f4301b0a171f3c4123c20

    SHA1

    d8b99fd8e34f8a7d4870fba0478a3b2b34043ce3

    SHA256

    65f047b6f6eda5bc7a3b5a1efda87bb3c2922f4f489a03941c89fba56e77b0ff

    SHA512

    f5c2817cfa3d8e408c7e384d0af6a82947f877f1c87f550c771f8773184b5dce95447010945104432ca44c7db7abd132fc7c57665f76d37a2c7ff7c18742a014

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    8f61fdc8ba96fdab0e3c359636144bd0

    SHA1

    c1f983ab26c77d86423196b05ebbb6c5e91e10be

    SHA256

    bfac2c6bb9a76f3c0055e41470e6d2056f19522cc7e7becad3afd8c386be87fe

    SHA512

    40d0f917c4915e8a606119f28e948c766aab473e0bc7874348744b4bab19b2e9f4d13e3c25210c460296927d3c05270053382dc7a55957ee8e688e4f9915e5fb

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    56a61d8112a9923584deeacc5c8675ef

    SHA1

    8f97e313afc86ef609785113d8e97523aafd2614

    SHA256

    50a4d8f41a868feb6dd7181a324017505b744c1282168f0e6c04682d9d3ed78b

    SHA512

    854100559c5bbb0d54f9ed91a4b709567c377a3ecd481f56c70a9c68a1ae2661c8d55e4bcac1036775da5e825685eafafee31d10689455c90b20bcdeefc477ad

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    573c9f363f3f9ba8cd9ddacab8285552

    SHA1

    a42d84204de07ba8bf1f1cc30c086485a6d82b0d

    SHA256

    16fdb3c43627725ee3077ad8084fdb4b6a1229b08f18649f618a6af2ba580263

    SHA512

    5d884ae47bcaf1cef9d73af520d2a8c9ac8e010dff5b1fd042dd88b5aa16d09b0ddcddfc72323df7a5cc23bd7e75602430a3bd6ad1a442ae15489d196dc66db9

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    faf9847b3c3ea62a1588a22a815e822a

    SHA1

    91d87c9b6bac6e5f1f459419b7d226512de7a973

    SHA256

    b8f6fcd5ded4560c9093dd9b0e116490ec7b8b20e9a243008205a048b90d9851

    SHA512

    ed4c64ae54bab7da93a6f6b055604366eeb312c3679d0afa1d389daf5313185b0f493a8e5c7e4defdfad325860e74f826012e40a3ba3d78a65c69b0ed77bd1f2

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    b7aeadd497df5259afddeecff51cf386

    SHA1

    e7c6959f37d82d7d0a59150cce0ed986c969e693

    SHA256

    32bc9aca78fb52ea86b180e4fa82a474fd0560177469fe191949b63401c9b137

    SHA512

    04830e60b62b2881eda66e3dddd34d2800498cbc613e6ba4462235d404fcf4fd2ca70b53c8c45aa8b6502eb953e4c42c46c7fd8dbc18c5abc3cc3e9c2dc2d3e3

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\DE9Y0H7M\suggestions[1].en-US
    Filesize

    17KB

    MD5

    5a34cb996293fde2cb7a4ac89587393a

    SHA1

    3c96c993500690d1a77873cd62bc639b3a10653f

    SHA256

    c6a5377cbc07eece33790cfc70572e12c7a48ad8296be25c0cc805a1f384dbad

    SHA512

    e1b7d0107733f81937415104e70f68b1be6fd0ca65dccf4ff72637943d44278d3a77f704aedff59d2dbc0d56a609b2590c8ec0dd6bc48ab30f1dad0c07a0a3ee

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab3305.tmp
    Filesize

    61KB

    MD5

    fc4666cbca561e864e7fdf883a9e6661

    SHA1

    2f8d6094c7a34bf12ea0bbf0d51ee9c5bb7939a5

    SHA256

    10f3deb6c452d749a7451b5d065f4c0449737e5ee8a44f4d15844b503141e65b

    SHA512

    c71f54b571e01f247f072be4bbebdf5d8410b67eb79a61e7e0d9853fe857ab9bd12f53e6af3394b935560178107291fc4be351b27deb388eba90ba949633d57d

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar355D.tmp
    Filesize

    164KB

    MD5

    4ff65ad929cd9a367680e0e5b1c08166

    SHA1

    c0af0d4396bd1f15c45f39d3b849ba444233b3a2

    SHA256

    c8733c93cc5aaf5ca206d06af22ee8dbdec764fb5085019a6a9181feb9dfdee6

    SHA512

    f530dc0d024a5a3b8903ffaaa41b608a5ccdd6da4ba1949f2c2e55a9fca475fec5c8d2119b5763cabe7ef1c3788fb9dcac621869db51d65b1d83cfe404fb4c27

    Download Submit

  • C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Cookies\JF82ISCK.txt
    Filesize

    599B

    MD5

    06ab1ba0bfbd65029665fb3e1d82b60b

    SHA1

    7c6c0c499e7cc14fcb1fbb34c5a134c14874274e

    SHA256

    c60de454f4a21686b55e73f69a2c2b5f9d686eb7f8c47af1b48c5bd5d1f45d78

    SHA512

    859a75950a27dfc7d237d3fc594e584f2d616660156647bf65bd246f3bd474fee824bbe82ad0a9578f23013ef2b8609afa6e69f81ec1082ebc5b9e82be8ff436

    Download Submit