Overview

overview

1

Static

static

1

documentx.html

windows7-x64

1

documentx.html

windows10-2004-x64

1

Analysis

  • max time kernel
    100s
  • max time network
    165s
  • platform
    windows7_x64
  • resource
    win7-20230621-en
  • resource tags

    arch:x64arch:x86image:win7-20230621-enlocale:en-usos:windows7-x64system
  • submitted
    29/06/2023, 08:22

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    documentx.html

  • Size

    208B

  • MD5

    3e98d1939034e795cc39025ada6437a2

  • SHA1

    e375f6a939f30ec6b3f4d4e8ee9d53d2b3de2f66

  • SHA256

    45a1f40dee2ed6782de2bb8fa42826d2246530b3c2b37f0dcded9795c55c30d6

  • SHA512

    d6f6a3e0cddea548a73717e666bc40c54b10e1095851f8293761cb412d789be842e6e487c8bb260ae2ead6cef7fba7ba19ffdcb2758092a74f4acfbcfeb6dba2

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 38 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\documentx.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1304
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1304 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:1876

Network

        MITRE ATT&CK Enterprise v6

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\070E0202839D9D67350CD2613E78E416
          Filesize

          1KB

          MD5

          55540a230bdab55187a841cfe1aa1545

          SHA1

          363e4734f757bdeb89868efe94907774a327695e

          SHA256

          d73494e3446b02167573b3cde3ae1c8584ac26e15e45ac3ec0326708425d90fb

          SHA512

          c899cb1d31d3214fd9dc8626a55e40580d3b2224bf34310c2abd85d0f63e2dedaeae57832f048c2f500cb2cbf83683fcb14139af3f0b5251606076cdb4689c54

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          64998dd645bb9a86c7984e61ff9a8018

          SHA1

          7511406a8b9d82e0309ebc3cced212483e23312a

          SHA256

          17613462b8cbb4cfd50bb6d1e5c278973f3921b35356da0eebebd0ba1332e0a5

          SHA512

          634d398f85fd26af672bcfb03f226ddfbe6af085a00a2cf7812336b46075a7dc659e2d737b8545a708753f3b7ef842dc3448c1159be78c8235e3ad2c9f7d7aec

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          c5cbf63523c98643291edcee4942d79d

          SHA1

          c8de686e46cfd53eed8cf72bf0910cd5eab17de2

          SHA256

          9b3b90b8224e159326b0e08936f4c3739f393188286898fb3c16bf58d644a095

          SHA512

          e87b29d364fd670b140b3baae98003a387fe3dd3e0679c7dcecec3ad18845f489d4a79c73963712c657f7c1e7c9d102965cccff558d023803636f9718c49be7c

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          7f59061d317ae6fc3aa3e707610438e2

          SHA1

          5b2d9ee8d21d633320c46d6c7de5f617515415cc

          SHA256

          5b07e2e54c4e78d13befaa34a55995c579335ae015949d9a534e31a9ec5439c1

          SHA512

          bafa0133d8508479283d1cadc301595f322079bf7033f71df159a0b0b93b44e9852e2539ff1e24fc98016f8da7f46b21d1c07bc575b1e3ac3b1ea6b21e66e3ff

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          0b7b78abf46d045582ad967d138b052f

          SHA1

          c10303483989022f69c412293179e9d46034d600

          SHA256

          ac40c8f9e8c87702ec5b0eab60c529bafa8a67228306fefa217817b2cfb63f90

          SHA512

          6b7ecefd90b6c7465cc5c5e9a7bd2964e1cbba4120d63c9db2813ba80f8a5bfc9b29b5b09ccefa6e5c158dc572ea636aff37851afa1bb0c87bd489b9c74096c0

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          4bdf59476910ae3e6fac663d61cdc477

          SHA1

          8852f956529bec5885493e5dc7bffb518b9167e9

          SHA256

          155ae7a78ca144c7e122662e4aa27111b0d48ee982b76baaf9ff07d88ccbc50e

          SHA512

          cd05dd2b903e057241a217e2b5fc2eaa2a1c22100d2e7737c15141fb688ec7c5d568b90818b05bf0721854acf3303ad3ecd3e821703e86d5fb3834dbec4fb95b

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          7c1ac79e9d08c6d51626aeb91977eb88

          SHA1

          47900d32dd53e86bcbc568925123f13403b0fcd4

          SHA256

          4b92fd30d8c805e1e005ff145174402b4558de4b5e694e91e41c28cfc9b0d171

          SHA512

          1e9cf03a245dd199eadd4bbc6960e090d273b711d7cdd6e2faf7806162e9138c0020826e09d75566f59e999d8885bc3806261e50693cd670c0f520a7f8c4eb47

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          8d448644b712040b704774968cd65c62

          SHA1

          165f6347d80cca20ba9bfbc18bc688d9e07bb06d

          SHA256

          9f13cd42f25cead031a5491be91ee4ed06ae720b7233785942926162cd2ae681

          SHA512

          873bfca259064b65f8f645ecddd5043ef408f52f0448f2808485523e9e3100d280295df0aafa0d9d3243d11d07f34864b21dc89aff3af3b52c230b7bdea3bc4c

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          2b5172a36584f18b8a2646ff15ae0a4d

          SHA1

          46cc3981cae973fe5227221bbe4a28c82a9b82f6

          SHA256

          2a471b6cb042edf92595294ac7b6395732e9ece8f7c8bb005ced921dfd8d8268

          SHA512

          0f230d6b62348f98b4997269f65135668e611c6a09070caf898edec26177ce7e354f2adb34771ab24d7eb0dc6d3b9aba4be5858a315112c067918d2cb088f60c

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          ccd2fb3a31a0cc75a9a9e620f809258e

          SHA1

          594a842bd1a23bcdb998487178b3d4a72041bf12

          SHA256

          b3d604866973a74a23d6902cb1a9ad235db77cb937664f7df05aa58d21f3be34

          SHA512

          c353da31da5c329bdb0293591d6c3dfdb4860c34b0cf43e352e593c5ba95a5679ed7da5c18bf09ddadd5e18bc07a72845e3c46d28669f0588fecf64868184ab4

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          56452605d2d29dca62f21983ddc8c654

          SHA1

          6d2223f946d4338b949d9b62271a5d0b6bcfb482

          SHA256

          c1d0e6e92dc2d22775e3b0c708a79048e89ea5f60e57c3543c5cc7769f197e59

          SHA512

          36a548e00e525dba16989461969b9d3fac43bbc97db52e145f65c314ce63290f68e492ce717eded4d5835d6b48a326dd81162520725734558c4fb99dded061b8

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          cd05ad065b7d91b2f0cffc56625b623f

          SHA1

          245d957b74ae69c398ac9a954f2ea0f407ea0cf2

          SHA256

          2eb1a83c9ce3bda6d31f188533d207fd6aa31046aab952b07acda3a17367da84

          SHA512

          d080261b26c0c4a336247962d3a7089a7ed0373ce1cefa4ef16eb879065916570b0e4620c629d9edf27b8a569b6aa9d6a5c8448d838cb6ee4ea67358e7381590

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          9d447d4869ec3f3604a94f46ed21e05f

          SHA1

          0e906cac58f905e51a9a55a6cbcd1754f072123c

          SHA256

          b1f4564e640a563aae13efae2bafad79257df7070b77cc503078f6a35ffdf36a

          SHA512

          6c37abaea381a6be69a646bfea6e5ea28fca4caae753e43a8bfdb699c979655872616d34f397183fe857efea9e835454486128a355a031560eede5e7329ddda1

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          d6b0899c7244729b5bcbb276d8aa0535

          SHA1

          9f6c8180a3f2c83dbee035dd4daeb35da4cce122

          SHA256

          51a9f9a563500da29ca2a816e7676e19d354e2a1dd84551ca715578ca30481b3

          SHA512

          bc4fd8cbbeb3b19dd834525d0d8fec6ccb22c43dbcbede53bcf3dee8d47cd161d1f7e4cecfdcbe217f6fba9495b0742a2db948233940ea6f492e0d51d66d4ba0

          Download Submit

        • C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\imagestore\8mmh3ym\imagestore.dat
          Filesize

          8KB

          MD5

          9aadddd0d46f366a917febb5b5f92288

          SHA1

          a05a703a53202895cce0250dfa90fe2ac89fedd3

          SHA256

          5bf2c16c7f9d69aac3bdf6211319f5e054b7a5740cad4feda1c0cf814a7bfe87

          SHA512

          6d03d5d84a1ecb917f26ac1baf843a529b6b4e36d859fb652545207eaa67261d3408e45fe2d3899e902ec5b0317e3b24e3edbabe6c0af34072b2f466b56dbc2a

          Download Submit

        • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\1WCPJCZQ\favicon[1].ico
          Filesize

          4KB

          MD5

          2b413167bd7d3b56a33e6bd8770365e1

          SHA1

          0d3bea0f9e554039d8284740b9e920dd654677cb

          SHA256

          c3ef54036fd57890e988883b3182052f0a0faac01b63ad935719deb812116182

          SHA512

          d9117b87b68e3246d7a6b2ff9f3430f521bd5002a8b5f9ab32b39fe151aa6f92cd33f9c40edbabc50683262c85b6b74ead86e4d325dbb4d2d2f2c7542584c8a8

          Download Submit

        • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\OWZ9V5NI\suggestions[1].en-US
          Filesize

          17KB

          MD5

          5a34cb996293fde2cb7a4ac89587393a

          SHA1

          3c96c993500690d1a77873cd62bc639b3a10653f

          SHA256

          c6a5377cbc07eece33790cfc70572e12c7a48ad8296be25c0cc805a1f384dbad

          SHA512

          e1b7d0107733f81937415104e70f68b1be6fd0ca65dccf4ff72637943d44278d3a77f704aedff59d2dbc0d56a609b2590c8ec0dd6bc48ab30f1dad0c07a0a3ee

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\Cab4FA9.tmp
          Filesize

          62KB

          MD5

          3ac860860707baaf32469fa7cc7c0192

          SHA1

          c33c2acdaba0e6fa41fd2f00f186804722477639

          SHA256

          d015145d551ecd14916270efad773bbc9fd57fad2228d2c24559f696c961d904

          SHA512

          d62ad2408c969a95550fb87efda50f988770ba5e39972041bf85924275baf156b8bec309ecc6409e5acdd37ec175dea40eff921ab58933b5b5b5d35a6147567c

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\Tar5058.tmp
          Filesize

          164KB

          MD5

          4ff65ad929cd9a367680e0e5b1c08166

          SHA1

          c0af0d4396bd1f15c45f39d3b849ba444233b3a2

          SHA256

          c8733c93cc5aaf5ca206d06af22ee8dbdec764fb5085019a6a9181feb9dfdee6

          SHA512

          f530dc0d024a5a3b8903ffaaa41b608a5ccdd6da4ba1949f2c2e55a9fca475fec5c8d2119b5763cabe7ef1c3788fb9dcac621869db51d65b1d83cfe404fb4c27

          Download Submit

        • C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Cookies\LKY2QTDZ.txt
          Filesize

          606B

          MD5

          b8b335c8d857db483f403d7960cea693

          SHA1

          e840ff3e00ae1c83f4cc79dacecffc5129f6fdfe

          SHA256

          ce96c184b0d56e279288ad6bf008000115dda6b16ebf8fcabdc3da446da144bb

          SHA512

          68c5780a04029923a67238bd38af27ad2b468692217364a51bd2f0d9fe397d0e29e11f88dfcf61029e1e936a7e772ab88c570d1b1d040426eec73c4068f6d445

          Download Submit