Overview

overview

5

Static

static

1

original.eml

windows7-x64

5

original.eml

windows10-2004-x64

3

ATT00001.htm

windows7-x64

1

ATT00001.htm

windows10-2004-x64

1

email-html-1.html

windows7-x64

1

email-html-1.html

windows10-2004-x64

1

Analysis

  • max time kernel
    135s
  • max time network
    132s
  • platform
    windows7_x64
  • resource
    win7-20230824-en
  • resource tags

    arch:x64arch:x86image:win7-20230824-enlocale:en-usos:windows7-x64system
  • submitted
    29/08/2023, 15:07

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    ATT00001.htm

  • Size

    468B

  • MD5

    fac2a724d851220cf0d6be9efb4f1793

  • SHA1

    1f5fdcebfad91235fd1a325d8211810f75db281a

  • SHA256

    708c473e0541c7304ac2836f02d42432e041b4ecb211b4f5a669ac81f80b18d2

  • SHA512

    fb7cc6c9371ca7e04a494def16924889b94c9a5e3aef5e7d15ece32dc1d77186e89cab6a1c96c174885f43e75b6db01fe4841ee1fad5c7074ee23897afa6005a

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\ATT00001.htm
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2208
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2208 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:1952

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015
          Filesize

          61KB

          MD5

          f3441b8572aae8801c04f3060b550443

          SHA1

          4ef0a35436125d6821831ef36c28ffaf196cda15

          SHA256

          6720349e7d82ee0a8e73920d3c2b7cb2912d9fcf2edb6fd98f2f12820158b0bf

          SHA512

          5ba01ba421b50030e380ae6bbcd2f681f2a91947fe7fedb3c8e6b5f24dce9517abf57b1cf26cc6078d4bb53bde6fcfb2561591337c841f8f2cb121a3d71661b9

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          79f4236926bfa2b218e82f108d97ea9a

          SHA1

          7af6288c698a592e15d5366564197ba6983d00ff

          SHA256

          11bc3730a26224148b52dbc89ff04a5a429010166daa14785e83f66fa5fc6b1f

          SHA512

          2a37e419db17ad5447ead8dd462c41d2f934dfc96689166d823669668453ad1b05218af357e8d021d6fc10581b9d90757987a6cebc230804da0ca7059d5a70bc

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          0dee89706198be5417e7d5a69e6926f8

          SHA1

          3d7943a97ebb83aa038148e3df35f2bd08643c6b

          SHA256

          ca7fe37efcc62ba3e6ea2880ab64c9a526d3f79072f69125dabc2082c9ab5919

          SHA512

          7721b56982929fb2660363477aa542cbb900b007e11af1326484869f0900bd8b8783ee4f586291da63b0ed86fbfdaecbad26811598bd71abd8d931646c1f5a40

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          6c3231ffbe384fbbcd2cd7f80fb4402a

          SHA1

          6da576909c3bb969947bbb4ff9a31071f2ec2667

          SHA256

          94a7e829b708506fde5a220584171f613c19c6ee26597bbb39bbe85dd4769816

          SHA512

          f042002a8662af4da9eebfc4f03d16af2ff919ea71593fbbc824c4cf4c0d487637dc2befd8ec68f42095e0bf1ac281fc71d28c1e56af7cc5973c38661d2108c0

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          e85b56ffa50b7f13d40cfa95910e7b72

          SHA1

          59de9825e4480a2809e92ccb014ef4e513a0399d

          SHA256

          2a725878127d79545b5323679acc733c374ae9e60e333405e9ae7468895cd1f5

          SHA512

          8ac4376e1d1e72867656872b6abe12689866ef6a122c3eb96fc5a0e227a30aa452116a5c72d6bcc3cd1a43b2e6cc886558b3cd969c6bb47c2f83ff222bf9008b

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          90f05c59c87024d5ddd9e26b6c899f7b

          SHA1

          6f9c7afe320414aeda5462cff9b8f82be3b88ef2

          SHA256

          ced46bc490436681b3da9f59a042a41df35c88e09503cf585471b7e2a7f38549

          SHA512

          9298c0bb0e422b406b7812654b48d55a73e5a317ea5095beea683fe38266828cfa1b5539d12ada630102c8ec08f08ea9b22c72fed92f9dfdcd0eacd2fd94dee8

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          26f580bd3224815c46aaead516ca1de2

          SHA1

          68cc0e0cc3ea9281e5f0df8fd2874a444882e8f1

          SHA256

          d10f81ac4ed3b4e6348a00a9568395b06bd54430407ca4e628494af317e41760

          SHA512

          7606b2abdba0a9b7f34241d482c24d53418a5047d8827eaccc684de634a43b8ad5aaef95391bfe0ed15b44beb4bbdde4df66971e032c26a306b3f910e4a4b528

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          1cd9ad0a1317c013fc1bc0a3d4863638

          SHA1

          f66c89dbab9758b6134f7c22f598cea0153e7768

          SHA256

          5d75a884176083c8b152e92436e713e528d60a4afddb652e61a43f87a6c95bbb

          SHA512

          3339aa0df6ed0047144331e82a1d523a57c6f7bf4b99cb1dfa17f70110012c6c46fa549f3a5e6b4300673201327aa1ab7a232573a9e6df42038686fb55166928

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          06336fdf7647b21581c5897cccf4663b

          SHA1

          0ca738c3dad6fa404269443dfdc31145a6e7a2de

          SHA256

          ace013dfb48a7aae4eec99f387d98934ae674fbf519a91aecf91d953d2f23a16

          SHA512

          4d4da0966ad258894e007287c027230798c4cef536e61d46e547c2dc8166fe476995ffaeb919d1665510c08e85e50d184808d709587f3e533a439b9a69d33d76

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          23d549e9a3107bff2e520388f11bd4df

          SHA1

          1cea0c176ca306345642f6b364b4d5ae0e303f93

          SHA256

          31d932a54a9f93027e9492a8b464e3edd0b215ce1a0254efb8905c53f248f64e

          SHA512

          052b32056bb871ac1da316fccc271ef65a33c7ff326e1c6a54b32542da4c804b71df9a2a4cc23560be2b2b0dd960c2e7851c7c58348452cb8d23d361ceaf53d3

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          4f0b9273e7461954a5c6a8e68cb3c28f

          SHA1

          a3f0b94184843569473be612f554a88a2b2478a9

          SHA256

          17e57daa2a5948dc5941e740fc9e8ff9c9459a7d3042bdc40cc7218f5ee31e3a

          SHA512

          a4e9a3be3cf9c90cdaebd87bea8b1a0f63e577d77ffdc5636578df1a7ceeefd5fb112dbbe712dfce1dd553a22289558b628aa5435ff123296003160d0e9e4400

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          dcf666c5e6b40e981439058677bc6b1f

          SHA1

          307b497a78fe0ce24e7c81294d76c4c4ac14e1b5

          SHA256

          7787e9aaf23c766b8c0dd5e0c4aee5e55481b74f6692830fd4ad00ca7bc287f2

          SHA512

          1d72dd92f84505f028865f1852fd4ada5c48448964dbb15d1a3419487777f02d6d54d1f521790672f70f14c114e989e9651f686f1bff18775286e27f404fabe0

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          e9b6d1ae239c462660d9687a6cabfef2

          SHA1

          87189da00eb9ab0036a20d37a20cb7d55fd74f3a

          SHA256

          b7c7e1fed7e35687d56799ccacb0d57e03e793e8f51abf942aa158ea86ed331c

          SHA512

          6dfdb2279ecd71469546ef9f5356fd3f105259d22633db4e06aeb8d5a6d0ff19f2cba7769d4f0870c35d182a8930ffb1f815b23981b05bacb5a8ffbd2a3270e7

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          74cf7354fe10913a6e791c5ab678160c

          SHA1

          aa6ebb633db5baa9232b7ca62f27729a60d8744f

          SHA256

          51ba5abfe0ca39f7836b5dea200bf5ea2733f482900e2e8f0133889b92414434

          SHA512

          4bb65ab2a80748e7d74427d0d9200c823b8e2be44b7cb62113ce3fcc298cf4c8215f3b7eab9e71910f90c68cbb627a1610bebeebc7f8062215ece863a8a8d71d

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          74cf7354fe10913a6e791c5ab678160c

          SHA1

          aa6ebb633db5baa9232b7ca62f27729a60d8744f

          SHA256

          51ba5abfe0ca39f7836b5dea200bf5ea2733f482900e2e8f0133889b92414434

          SHA512

          4bb65ab2a80748e7d74427d0d9200c823b8e2be44b7cb62113ce3fcc298cf4c8215f3b7eab9e71910f90c68cbb627a1610bebeebc7f8062215ece863a8a8d71d

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          63611edf6d223a4437d1941e87dea0e4

          SHA1

          3026e7a7bb6c11071db03830067110ae42c1cf35

          SHA256

          b6feae156b3003dee8f03eb3a12ef7079f432f4c181ef43e649969aeee76343c

          SHA512

          901d1aaec17ea463227e8b2cdb466e17e947d68869ed4b797a97a8614f950b004ae1c426202fb440edda257dad2c59d7eb73e59281a6d5d22b4502717cbc65ec

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          291a4e37b7eb38b16462e6d0ba5abdaf

          SHA1

          8e6941dc0776ff47261a3296daf7b08402058738

          SHA256

          4614cd31016630dff380e7ff74628529c518ba0ede4369401c5089f7365859c3

          SHA512

          d2d2bc9f928887f16221da6da4284194aeb02b0965acefad911d4c730617b661fd25813b4465a7e30e4511f32d9253e0ce12c7d02659be480217714c841bfd13

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          02385a6f4c333adb01dce00a5f7a8643

          SHA1

          2d738ac338a78c8d04e29428ed04e02acd91b5fb

          SHA256

          621ae08c87e8b20d0da2599fd6c4d70045a6c78f69a7da6783b60bafd80e8055

          SHA512

          6fb8f89dbe48428822e584db8f532a7d96b28285c18dc53b43b7675b07020172c6c996dfc4c897bb19a07405c7ded359eeb655031db1c64d53d828e0d69f83cb

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          23acc28da3f6768e619821a121052e4d

          SHA1

          396c8a3bf9ef14d4503b03a9f21ba44d6f7dbd9b

          SHA256

          528f13ec9c2671a7a3659bebc78f998732c45b42cb172a506c0d1aee35f66043

          SHA512

          eb960ad755f45cc61d75be7e22e65a295c830fd5150e03d967ae10adfbd603119ec85328cfb1527ff91c821070d4e727231cf6d94a2aea2902caed5a4a5c1d34

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          5daaefe76360b0afc4adb96e5755caee

          SHA1

          68dfb4d539f0a70663a59a03f2846a15b7f5f18c

          SHA256

          2a9958259aa0bd9f1bb50771a73bddc04a7be4091d43bb168d89a76d85a7442a

          SHA512

          318711b754f853c0d20835a517f52ab08a36a863183519e93a7fad232b441d817fd8f3cc72cd59566cd04ae3b616ca72f26ea7c427202497ce8cc175fe870439

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\Cab2F2D.tmp
          Filesize

          61KB

          MD5

          e56ec378251cd65923ad88c1e14d0b6e

          SHA1

          7f5d986e0a34dd81487f6439fb0446ffa52a712e

          SHA256

          32ccf567c07b62b6078cf03d097e21cbf7ef67a4ce312c9c34a47f865b3ad0a0

          SHA512

          2737a622ca45b532aebc202184b3e35cde8684e5296cb1f008e7831921be2895a43f952c1df88d33011a7b9586aafbd88483f6c134cb5e8e98c236f5abb5f3aa

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\Tar308C.tmp
          Filesize

          163KB

          MD5

          9441737383d21192400eca82fda910ec

          SHA1

          725e0d606a4fc9ba44aa8ffde65bed15e65367e4

          SHA256

          bc3a6e84e41faeb57e7c21aa3b60c2a64777107009727c5b7c0ed8fe658909e5

          SHA512

          7608dd653a66cd364392a78d4711b48d1707768d36996e4d38871c6843b5714e1d7da4b4cc6db969e6000cfa182bcb74216ef6823d1063f036fc5c3413fb8dcf

          Download Submit