Overview

overview

1

Static

static

1

phishingor...e.html

windows7-x64

1

Resubmissions

17/07/2023, 17:34

230717-v5kdysdh57 1

17/07/2023, 17:33

230717-v5ajraef61 1

17/07/2023, 17:33

230717-v4x9esef6z 1

17/07/2023, 17:20

230717-vwk9wsee8y 1

17/07/2023, 17:13

230717-vrkgssee3z 1

Analysis

  • max time kernel
    145s
  • max time network
    137s
  • platform
    windows7_x64
  • resource
    win7-20230712-en
  • resource tags

    arch:x64arch:x86image:win7-20230712-enlocale:en-usos:windows7-x64system
  • submitted
    17/07/2023, 17:34

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    phishingormalware.html

  • Size

    7KB

  • MD5

    604f9d9d6f739ba8e86799419bcd6b7c

  • SHA1

    4fc5f2e2448c3d8cadf716a24d3d943a09cb3ec5

  • SHA256

    1d0fd3e4ed24bb808dad25b52766bb7f44c3f7fb64649fb1d6cdba67a4f8a069

  • SHA512

    b4cf03ff2cb45f0d368a4c14f211ab5864d67146bc14be3713cc87ea5d77cd7bf6b9d2d6454731bd5c471924773dbf18a1af1210c53dcd44a26a20555bdc1e3e

  • SSDEEP

    192:aVHtFvakJ1VxxaD9TiS0We1SyDDtAMiuKdO/nIYpqm:aBtVakJ1VxxaJTiS0We1yMiuKkgYp5

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 55 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 2 IoCs
  • Suspicious use of SetWindowsHookEx 15 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\phishingormalware.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:688
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:688 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of FindShellTrayWindow
      • Suspicious use of SetWindowsHookEx
      PID:2200

Network

MITRE ATT&CK Enterprise v6

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    f779e2633dc2971b44404893776e6ed4

    SHA1

    9f999937286f3b20cbadf531f13d6229d30506e0

    SHA256

    d0893710f146b7f85e6d7b590651072551ee4392400ee829a10433831e11d303

    SHA512

    a506524ae8f8df5ea674369e9cd07ad3aab7f9ffba8725b233fb873a502c17524e9fafe24f816dce997cee33e2700a58ec70bc1c688eafe987a3cc3aff6a78ad

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    1ac8d4fdafe1a500d9f5a80fdc8a9ae3

    SHA1

    916275107e31791d5cb9da32f364224ef55c85a9

    SHA256

    f0b3bbcc66508697a3f0db9bbd493526545e30a9c6f6609e3fa57cc8c657ad77

    SHA512

    85a48cd47a43b8389b25b4669ffa6765c7cd162e4d93ed3eaa6e79906e18424fccc87083e94a21f99f3fe6b425750dcbb459dd60b0736843ef7d54531123b76d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    624f053ce4cfe30eb7f84dba74c91be8

    SHA1

    7366197ae6d61f4f1e70cf651e80e9067343f1ee

    SHA256

    7047e83b1d20d3814e3561f7957bb611d76efd741fa9694b19f5a559c541d8ae

    SHA512

    e8e2c7018e2419c6c8094a2f1fac04c9b426efb50c394360014c62d0a923321c992f8179be89330a589917d659eb4a2554f625260d5478786e5d6ce1f4709fa4

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    9828453bf81ac17b908971dabdc9c988

    SHA1

    0893f51360d22c3f971668ac8a77bfaf558c15fc

    SHA256

    0808a73652feab5d7226589f2605dc4213272c3a4a2440ed1f0f6382143455d1

    SHA512

    3a85c7a03aff22a1755874ec8f473d060839e9f0a2cc4cad93f5409705370a854418c13a432bfe800cf66bcc00c8cbd80e76a0a18a42e017afffae83d5e50b36

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    645575f92fa85cc64bb6ec318f2ef77c

    SHA1

    7bc67a797564654f642ff4f3801ff0171f8ead7d

    SHA256

    3e4fbfc5748013931d661e7729b2465fd1e610a9527c6bb49443d431266892a9

    SHA512

    174b4a1754ac84da6dfef462c880ac870171b570a9defb740808853f17a1bce72b9f536f14b30c33849ea242a51cf36e53d6555d4be6584ec25f94128b895172

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    645575f92fa85cc64bb6ec318f2ef77c

    SHA1

    7bc67a797564654f642ff4f3801ff0171f8ead7d

    SHA256

    3e4fbfc5748013931d661e7729b2465fd1e610a9527c6bb49443d431266892a9

    SHA512

    174b4a1754ac84da6dfef462c880ac870171b570a9defb740808853f17a1bce72b9f536f14b30c33849ea242a51cf36e53d6555d4be6584ec25f94128b895172

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    fdd484e4dfa77c71149a5d7d7d36b22a

    SHA1

    73d4769423f61b50e4e3820ae6cd898be816396c

    SHA256

    a2ea11cce78d66f13c9888e941896e4424bb8c097353b664d476efb0568ef859

    SHA512

    8ad31f2f6a705118ed16795d7fdfbdf1b942877f16cc2b989940b33db9a7cdee93d2780eea9584918cafc2e014d20dda15c8af69e1cd2179e582aa84bd7edb01

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    d2dd232de5f6a69ecc4b6d18eeb1d977

    SHA1

    6999c0e036ad9d19c5875c4fbc701c72af46d598

    SHA256

    4fd658ea69fa280ae753ce3b9e2341d7c7adc3cf936cae46256028feb23d528a

    SHA512

    b79da4cb82a8cade482b0dba251dbd4df87ed9af2f9b7385986d69b8627b6541537fbc12c41c033b9ae1b4127d96b781c85e069b6bb55a092dcbc3f73dce44af

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    fde380b72b6452fea0f82464b920ca09

    SHA1

    c5796c80a88900dd95d10465f0d396eab28ae53b

    SHA256

    aa77b8db4c7275abf049d6590fbb2c1e2a8fd32b4256456df35c4b3f5c8718c2

    SHA512

    e30fb3931b6c0ad46c7a05a5a425198afb4e17c44c81d9339a1d6a6e4383fec9ef40f3ce19cc5336fcab017ab86b70270f3035e0f76272aeec93667d3836da16

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    7a3b059c1ad876e2362101b21429e18d

    SHA1

    292bd42ff744dc70de055e9613d21a9c27a8c2eb

    SHA256

    c817cb3bd03920c319669af36c84988a78f7dcb6c38e6373e1da7254f76306ff

    SHA512

    61de32b148bbd5ddefe0b64d9f0bf99402bca48453f7d0d4b93a6271949ba98c187ad25702d78c2e5982a743957afc9fbe7478d7cafdfc2a23da721cb5a0a093

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    17ac9250c4834a985edb88306dd94591

    SHA1

    9db6ad9065c6ebc877f825d4691c4df3bf5d77f8

    SHA256

    45458983ccf7a3870f0fa694884bbdb2e3ac7ebba7392cd488113d2c8f922b59

    SHA512

    63b29cba0b5ea11b4f2bad796746aafb7a5d66856583c1814538f02a49bec5e43fc7973926e543e7921bbae3e25ed7a2053ba06ebbcecc5f3d81907829e8bd43

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    27d9ab24b6abeb06c1a538fed494e0ab

    SHA1

    aacf0e8f38dce35477b82ff323b9a496cb73bd58

    SHA256

    f63056e4446eca3a0f305d2f61c52be658610c6b10193402ff4a348a6286e50a

    SHA512

    d7ac7c1b01ef8c9003d9453ed1c716b48f8525142640738c1da5a33000e9b54ca523c73c0695b26e63b09e74c93c4abb926a4b0660d410276748540e63505a10

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    b839ac75af98ec7947cd04352a5f8840

    SHA1

    24d79a348385005a7aeeb327c0727990df4d6a3a

    SHA256

    0627ef75b86badca9bec263a4772102004524442476e955e54f7f70677b4abce

    SHA512

    2d9fe7782ff573447fd3c96225abe28c668575a805975ce11dc1a0cef2ad116f5900ef82809d78d49a0505e6785a610125f12a3f0955f36e126c27decdea11ce

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\12APMO2Y\jquery.min[1].js
    Filesize

    87KB

    MD5

    8fb8fee4fcc3cc86ff6c724154c49c42

    SHA1

    b82d238d4e31fdf618bae8ac11a6c812c03dd0d4

    SHA256

    ff1523fb7389539c84c65aba19260648793bb4f5e29329d2ee8804bc37a3fe6e

    SHA512

    f3de1813a4160f9239f4781938645e1589b876759cd50b7936dbd849a35c38ffaed53f6a61dbdd8a1cf43cf4a28aa9fffbfddeec9a3811a1bb4ee6df58652b31

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\7NQTBXEJ\css2[1].css
    Filesize

    1KB

    MD5

    2d3237555f741afdd91b9f7fa31e4347

    SHA1

    dafa00405afc3cb550d84c426f96e1673f1f16fc

    SHA256

    59c4deb93486127054d6cb65205183174ac841cbc2e2fbf94b456f85eaf087f7

    SHA512

    31a57323369beb11077e60ed582f623c877620d7063657e15a77660b1695fe7128169432ad9f1e6da5ec3b35146e460a3d10b7a9f5916c4b8d07089be2a12d7f

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\TGCFYHZ3\cloudflare[1].js
    Filesize

    121KB

    MD5

    41450a8efcfe4e797ad14f4b10fafb37

    SHA1

    203763fb2f81645fd5c6fb2bd2195ef02bc0c0b7

    SHA256

    13f381eb6cb931fc09b95cbb5d0203673e0ad63ef68b765f9d36811e2d81f9a9

    SHA512

    e19168f2e13cc9775695082fe2152ff8e1b9c3c45132657633c4494243d89b461a4482ee8e3cd8c63c369e7ee20ec892b0646c04dd52a90b40f7bb61355a26b5

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\TGCFYHZ3\suggestions[1].en-US
    Filesize

    17KB

    MD5

    5a34cb996293fde2cb7a4ac89587393a

    SHA1

    3c96c993500690d1a77873cd62bc639b3a10653f

    SHA256

    c6a5377cbc07eece33790cfc70572e12c7a48ad8296be25c0cc805a1f384dbad

    SHA512

    e1b7d0107733f81937415104e70f68b1be6fd0ca65dccf4ff72637943d44278d3a77f704aedff59d2dbc0d56a609b2590c8ec0dd6bc48ab30f1dad0c07a0a3ee

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabD02B.tmp
    Filesize

    62KB

    MD5

    3ac860860707baaf32469fa7cc7c0192

    SHA1

    c33c2acdaba0e6fa41fd2f00f186804722477639

    SHA256

    d015145d551ecd14916270efad773bbc9fd57fad2228d2c24559f696c961d904

    SHA512

    d62ad2408c969a95550fb87efda50f988770ba5e39972041bf85924275baf156b8bec309ecc6409e5acdd37ec175dea40eff921ab58933b5b5b5d35a6147567c

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarD11C.tmp
    Filesize

    164KB

    MD5

    4ff65ad929cd9a367680e0e5b1c08166

    SHA1

    c0af0d4396bd1f15c45f39d3b849ba444233b3a2

    SHA256

    c8733c93cc5aaf5ca206d06af22ee8dbdec764fb5085019a6a9181feb9dfdee6

    SHA512

    f530dc0d024a5a3b8903ffaaa41b608a5ccdd6da4ba1949f2c2e55a9fca475fec5c8d2119b5763cabe7ef1c3788fb9dcac621869db51d65b1d83cfe404fb4c27

    Download Submit

  • C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Cookies\C2Z46Y2G.txt
    Filesize

    601B

    MD5

    dc7cdf48d64c69a55cfb247a0c4427a3

    SHA1

    45299ca9e3bf91e785ce21e89809be35df2ab978

    SHA256

    e8a1f27bf952f1dde8032b337077a698df817eeb2608e8f3fb3089244e50b0ed

    SHA512

    11036423fd5bbf9f38af61da5bac0840fe2fca6a44941abbc80c94bfd15e087a401031d07869799d49bc7898329b90475b02f49a5ee33bc4425ff86ea4e740b6

    Download Submit