Overview

overview

1

Static

static

1

Transcript...ls.htm

windows7-x64

1

Transcript...ls.htm

windows10-2004-x64

1

Analysis

  • max time kernel
    117s
  • max time network
    135s
  • platform
    windows7_x64
  • resource
    win7-20230712-en
  • resource tags

    arch:x64arch:x86image:win7-20230712-enlocale:en-usos:windows7-x64system
  • submitted
    01-08-2023 21:29

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    Transcription_Unanswered_Calls.htm

  • Size

    6KB

  • MD5

    642c97465d0c06ad75106f0969ddd676

  • SHA1

    0a3ace6e54b2a5d00c0e0cb4b9df965ce04a9f0b

  • SHA256

    d449c6abca945c7a0c42f89646c9927e01ccf0da370fffc31daf89174123685b

  • SHA512

    f8dbfbb47a5d69cfac549a7368dfadbdec69ec8d8a447e63d180e14b8070fd28a66758eb68ac382b1f0e0cb042717dfa4df5d52ff728fc02ad064108a535efd3

  • SSDEEP

    96:vJ8gDbjEjkRDF7fvfcRvga22g8HEPvsL1B1wczTKOdx/KI+bGqH7BR:vJ5D7D7fvfc2YgWEO1HFTNdsIe3H7BR

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\Transcription_Unanswered_Calls.htm
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2556
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2556 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2836

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    f3f27b4d8b02e11762dc34d1a6750783

    SHA1

    c0b845739cb6001e053616a782ffd4961d354b38

    SHA256

    609ea6c77d6d6663a1d8de60a92a1cd5d3d23e1edf19f501d0896cb1087d1019

    SHA512

    033ae85b9127c8b8a2e51e892e210f0e5126849f63cf4cd2a6ecdd2e620e09743fa7ad71a9bf4d4299c4081f53d649ad266fe0e60182b6094e6078ae9d7606a4

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    e5afb1e330293e736a16ebc2c2026603

    SHA1

    0e71cb365845c988cbc48e2bf67d5a555c41be74

    SHA256

    82e2da700c39823e829c1b95d78d6788b4cbb771d78296ea400e66741d39ac32

    SHA512

    a8e7fdce17144c25c7f2dac86b01278e07f39796f050fab5b7ab3f3171b9212c2b6c03c931df523a2376a7647fb55ee5074b5caa9e45cff3ee87df5dc8790ac8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    6801baeb955eaf72659cd87f4af2807b

    SHA1

    675db045e23afec20d7e0b7495542ecd5ade0933

    SHA256

    3b6055eeeb625a30d2cba7cad10f9806e66d8293df21b452397f7b8997f7624d

    SHA512

    3fcdf3bf81c62fc7913f04e293c9142986e2b76fb72a33b7606c53b9a9d477b00d4309ca245dc72af7ba5d264b956b369efc6e7dbb7f7f24abcdc2f2a072070a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    65557d71d53020c65e5b638eb2d230c3

    SHA1

    37d310ee2f9865c96a7a492f818a48f5058735e9

    SHA256

    399e08350dc741d1278379b016727b1acdb6ed67931a23135e3014a9c9f66853

    SHA512

    00743cb81625cf397164cc774668632004d8450a613cc8966bbf34e9c9328c8868dfd8e6ba474f3424c262a5b8c6287b98fdd4be0a3cc7ab647ae8db450273da

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    9a52409817502a7fb3f2aacd4cbe3927

    SHA1

    dd8606290eb0406ba452bd7d0eb8989021f8521f

    SHA256

    6fd8db5de5606c546d2933324c8a513961f4f6fb44408372576594e907a6a6d1

    SHA512

    e56c2c980e59e7e665133ebbf5f51aae59382553dd97163422ad992682155fba605d0ba7c99fb5f993e775025a0d829c9a0e9f4ea2ac26f844135f0dfabb21e5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    955873254cf6cea33a1f83bcccee7b8b

    SHA1

    d5e82626eef374cf5b4ba7565414fecc3ffa1088

    SHA256

    9f8dc3755a10131c0bdfdc3f2576d800ef121e9fb5751ca38544467ae7cd07a4

    SHA512

    8dbc6d04950dc292cc83d141a6058a78d514e4b39e5782a9064c7f691b74d4966981d8c5ff11236a5f5bbd484785c379073d4a0d284c3b43bc171318a116de30

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    30eb628d0cf80aa31f3f5a9e3e94a0c4

    SHA1

    763de23cd0cc0d14b342ffb01fc70bae2a4946b9

    SHA256

    9bf9bfde44a430be82c3f75b41eb7ee037211088b5083a10ba84e714832a65cd

    SHA512

    bf7e5486a330e1dcd14bd9201108875d83e53ef93fe39cf7168a229f6b3242c86e2c3ecf7c83845c60b85d71e87a489f64a94b84b74c4033be1e08283723327c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    cf2b041b9ba9ba98b5575315cfa652d0

    SHA1

    70e238d2bf22169d1284524b6c07d56632f48f9e

    SHA256

    a77caf852ab9ccf5dff4f45ac90727a43d488faed016339a64f3b102c377d958

    SHA512

    d431eaf1680995994143dc0d16db3fdaad72af7730231b18a1b8227a14a2fdd1517a67d463e59a75342843dda2e23ceee040e8c2aee56588f0a46bfe000e729d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    d3a7acce4c5d67acd337eacbaac9533a

    SHA1

    0121d346b2c4e66c95009e860d4c546e315ccb34

    SHA256

    583799a8e8f08101f8ba114c3490037eccd43df5612343b67f38e7898e019ef3

    SHA512

    9a48879cf0d3df5eead22c5d38605d713a99c938f5ea95093f472ffdfe4071497c223c60d2d7c45af00eb6a8fe74f7ecd3bcabf05e625ea8820acb0584bc6aaa

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    d04a6ae40a83ee6273ec18fdcb4be23f

    SHA1

    acf6744c710a2fc377c4996e9ac333c0f1f35f29

    SHA256

    868f628b93697d8accc36f53b8d65c918cc3e53f003f586e2bf0a0284d5b6da0

    SHA512

    d53df4784b5c9b89a42f8c7bd0cbd85ae5e87b06c1dd43c13c06cc8d4b94f3c25f86e79bbd5f242cdb48358aacd09a4aee892896414169322792b47b0b8cb0a7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    58b9e5a0c1348bd31b15e52e1b5cf1ed

    SHA1

    c99d3d2678772975920e9ba3bb86439399a3d73d

    SHA256

    c1dba3f5549e2693d9439225e767d3a4af691cf3fa48f2de43d3abf23588cb94

    SHA512

    4497c558410c58b215ab09104b91d191860ac22b1129eb3cd452ac2a5ea8c987d1f016272d92a9b398887b615047dd8376d493d6d9076039c4858516d4b54646

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    bfb62f5718893fc7ebae6271ea414a2c

    SHA1

    ce6f12328ed3bb430c5362531ce35bd900e5545f

    SHA256

    3be6bd59f532bd2e3a9e871d26cc318a5e81659d94a6a78a2fdd45e0503ac278

    SHA512

    c4e56d9f5b46169760c66fa9858b075a2507f7222ec141d672afbc0ed1037257e38226751711a66d2220fe60189ae32890fdc6f5414ddb7c4ec4f13be08e32e6

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    4f705306183347902040a94699044a1f

    SHA1

    5f427074efbdec14b45879750c34b663306ee7e6

    SHA256

    e5cb107cfec55bec667740e92dfa23feadf1cadd8d736c62ef3cb6949c965b8d

    SHA512

    71a3b466a43e0498ceb3b304e86aca7741dc036906860c575810a9797a1099014ce9a310a537720895e6d20d5a90e47e9cc102a8c37163a81175b39b5285cda6

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    08e8404c22b1d784f54428548c75acfe

    SHA1

    0efb013c8a448b5794dddb4b5b9b3ea983db02a1

    SHA256

    8333ed39d916a8c12c2cc675fbfcf2ef7359829c771d71e49384d473798c36f3

    SHA512

    7d4544a36918d997e3f56fa11804cab0911ceff451901b0f253b7c5268342ade5632c37ef98458fe59bdd0de2e818f3e69764994c85633601862d12959056f3c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    a1ad1b0d0d6c0fbbead4b92a2750fbca

    SHA1

    2137220edeef1965a7cb5a609880a155c89af352

    SHA256

    4f461a69dba57e409ee1e669faa5ce0f25c7f78b105a44ce95fbe6b306ec86be

    SHA512

    8c5b37fce564fef78e1bfe3aa5ca7f538a5e515586fb5392e630b8e16535263b90f477bd06012415ffc0a4a68808abe47a4f18aab0fa60b21da668dfa74c401f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    7a9fe7deb89f30bd00cdac4e3a976440

    SHA1

    3755d0cdab8670e62ea994bc787a89404b84dbbc

    SHA256

    f299b3b6a6ec1ad5d03ff96c21a64f9777b63171eb07521196ec61cd3f08ee89

    SHA512

    2d57839882373ea2d5ea7a749afe2c291b0583a469f88480248fdfaa80f2d437ac6d9ce59c9c5f381d2eb9980aab3c4403aabbbd94f8f1b9edd4c0924217d275

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    b6f46c040ce68b3f3e988dfe41e773fb

    SHA1

    00cd7acbbf897b3a99f0fcc37ad2ee3ef0a2925b

    SHA256

    d86c6112b080715a250f462d3955a9dfe9405fcf938b3148645d4f6570745f28

    SHA512

    a27dd1604ee4ff0acd6022a6ddaaac4ee2f3bf10bdff21701de847c2ea1fb059610088e1ab34e5cb4444dce65a0705dc2e732cea56e62d33ece2bc923068954d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    f72bf4e2859cb3d2c5d84b7b5800fc35

    SHA1

    376e941eaea1f51ce45c01ea1f9a9bf5c6d2d811

    SHA256

    4d964d5b3de8a47c7a04ac56851bed3daa8a4cf7d00129f2312bfc13e3d0fb68

    SHA512

    96aae4cf793da3cc3dc6f2e9d847ce77d549c072d3b8ac3fc9573bc6d5c70bb30a67725a6db5259adbe2a8ad88db4a93a4b1b67c62de5e3e240e3b3ca61bae18

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    d80a13ef323570a19e7e3c8d559769da

    SHA1

    24615d5def8b7369d84f9ba5713429fb8d6e9dc8

    SHA256

    056111bacd5b49deee9e1f39a364b1707f3f76985f5e04efa3da23fde8acf8a4

    SHA512

    5530b661c518405f60d2917b477a56fcc103449a2da13116bb31dfaa94c78fe18664d4cd990a3f3bd36ab8c822fcadbf47daee693f42fa6b7b81151f54ac84e5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    b19b40e8ec5ff960eb20258daabd94ff

    SHA1

    56a3bbf74c48fe1d6c08fb9cfbed6e306267885c

    SHA256

    4d5f68a9e670697c923e5e3143606b7c16999585cd0eb3ca39f25b6b3d74ec51

    SHA512

    205152d053409fee25288de957d60e5ae8a3a6170b82f2a404b5aac09288d8bdbb0c7e83822fe8a9c5e79d3aeff99807d012550b73fe139822bb8ebdd92aac67

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    c94b7b737893875fcaf3e28c2b29096d

    SHA1

    0ecd865a7575f755fd6a9bb8c0682fe208883ef3

    SHA256

    bb5522c6bbf37f896212eedb087f9fc27a33c759ad11b3a833684de3858ccc1f

    SHA512

    0423b479af413c6fd461d7fd50b10b6c426676907a3c9115174dd9445d0fad0d542ca5bf96c26164b46397d0474d7cc5f53b56b2820e983bd1c5dd853779fdf7

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab8548.tmp
    Filesize

    62KB

    MD5

    3ac860860707baaf32469fa7cc7c0192

    SHA1

    c33c2acdaba0e6fa41fd2f00f186804722477639

    SHA256

    d015145d551ecd14916270efad773bbc9fd57fad2228d2c24559f696c961d904

    SHA512

    d62ad2408c969a95550fb87efda50f988770ba5e39972041bf85924275baf156b8bec309ecc6409e5acdd37ec175dea40eff921ab58933b5b5b5d35a6147567c

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar856A.tmp
    Filesize

    164KB

    MD5

    4ff65ad929cd9a367680e0e5b1c08166

    SHA1

    c0af0d4396bd1f15c45f39d3b849ba444233b3a2

    SHA256

    c8733c93cc5aaf5ca206d06af22ee8dbdec764fb5085019a6a9181feb9dfdee6

    SHA512

    f530dc0d024a5a3b8903ffaaa41b608a5ccdd6da4ba1949f2c2e55a9fca475fec5c8d2119b5763cabe7ef1c3788fb9dcac621869db51d65b1d83cfe404fb4c27

    Download Submit