Overview

overview

1

Static

static

1

winprofile

windows7-x64

1

winprofile

windows10-1703-x64

1

Analysis

  • max time kernel
    103s
  • max time network
    273s
  • platform
    windows10-1703_x64
  • resource
    win10-20230703-en
  • resource tags

    arch:x64arch:x86image:win10-20230703-enlocale:en-usos:windows10-1703-x64system
  • submitted
    03/09/2023, 21:58

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    51963b450721e910602a94acefe695a034f316bc917a77e973731778d7145992.html

  • Size

    229KB

  • MD5

    cba5259e5909b6063bce37d771942424

  • SHA1

    4a5ffbda476dcaaa474fd7c04241e13406f7d413

  • SHA256

    51963b450721e910602a94acefe695a034f316bc917a77e973731778d7145992

  • SHA512

    debbb69b99453215a4ad50a1435b26d0f2cab7d7a5230931149fbc45412344dd6b7419a8490b70b8c571a64651c84fb4a996c2c5e4edbfed86ef7c74389646ef

  • SSDEEP

    3072:Me8T+SjaZbh+38dz2edsd1K/za2pIQj0dUN5tRF7bcF0bP5Fylw/FcYcPFko/Eb+:Mj+SOZXbdsd1Dlwv3Rq

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 54 IoCs
    adwarespyware
  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 3 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\51963b450721e910602a94acefe695a034f316bc917a77e973731778d7145992.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:4288
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:4288 CREDAT:82945 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:3216

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\57C8EDB95DF3F0AD4EE2DC2B8CFD4157
    Filesize

    4KB

    MD5

    24be8a92460b5b7a555b1da559296958

    SHA1

    94147054e8a04e82fea1c185af30c7c90b194064

    SHA256

    77a3cfe6b7eb676af438d5de88c7efcb6abcc494e0b65da90201969e6d79b2a3

    SHA512

    ed8ef0453e050392c430fdcf556249f679570c130decd18057e077471a45ab0bc0fba513cb2d4d1c61f3d1935318113b3733dec2bc7828a169b18a1081e609a0

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\7423F88C7F265F0DEFC08EA88C3BDE45_AA1E8580D4EBC816148CE81268683776
    Filesize

    471B

    MD5

    909170498de94d1434462bc4505cf33c

    SHA1

    37e0c6d9d8b1b35f51a322cd3b09a4161a4d8263

    SHA256

    ceb17588c04f4736353e9e8871fd29515ca7cfa51e998cb38de17594cc428c61

    SHA512

    9642d7eb335e2d3a5c62c618945629769f401f9d1fcbda7cb0fd2fad3cc1c94fc1f677cd8cc31cf1f91863c4651a78feba3346ec211f54ec6df7fe76473ff615

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\CAF4703619713E3F18D8A9D5D88D6288_F2DAF19C1F776537105D08FC8D978464
    Filesize

    724B

    MD5

    cfbc16e33dcbef6f773f0f79af528f45

    SHA1

    ecb8d5e8107bc671dd57fb2a137c00bffa419f1f

    SHA256

    f0937890fb1053069baac97b7992c6d22cb74cae20317fc05d51070d96950ffa

    SHA512

    59ac2ead1eb84edffb06867850beb1e63f72c5b5415abd2fd4e7c2a1922c368f612d2a0288c00e32d5da47c4a77968ffbe72660a8d1f577f44fb20df9c11a4af

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\57C8EDB95DF3F0AD4EE2DC2B8CFD4157
    Filesize

    342B

    MD5

    426f0806bd81188ddd210804469d3ec7

    SHA1

    ac2a081a0ab8283555787f831b06d10f3d62422b

    SHA256

    e12d7e5296badb143b89f1fff7731fac2d24991c28460308bee6acb187b50d6c

    SHA512

    ee1418b326c11d566915ce1813c1a2dcab7430f8bc5e2f43fd2fa1fcdbdb7dc889134a40e84f665fddc9273b40b3e35abb6d4b1ffc266749aa939ca6455c3511

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\7423F88C7F265F0DEFC08EA88C3BDE45_AA1E8580D4EBC816148CE81268683776
    Filesize

    404B

    MD5

    98c0404d2fd6f8b5a34baacc147f38d5

    SHA1

    72a43d8fa208c2bda4fe9ed72e592dff2dde0d57

    SHA256

    fe06eae24c6e910ddd6cc834c7ce2fbfee49437edc24eef4bb4de0510e9e382b

    SHA512

    8e3d3c45dd960e556d49651589f9736b8e6ecc0c2485e5cbe3478ac44947dfc9190531e4c1e0c3ab1f0d92c51c2c6a914868093734f3df207b3c4bcdcd141721

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\CAF4703619713E3F18D8A9D5D88D6288_F2DAF19C1F776537105D08FC8D978464
    Filesize

    392B

    MD5

    86ec29bffa33228e99047dd9050f06e9

    SHA1

    69d06157fb10bf58ada0db5dafdc03590baf7881

    SHA256

    635f573939ac80060efa97eaffefbdf136ad060c10a74e529886cd91650e8a34

    SHA512

    1f8f53764db1d9e7c9d60456e7d177342e476d64770cb530587ea94cb3080eac355580d77074679b506d14798eea00114bf75f935b2da2eb3976d20c7dedfd6b

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\VersionManager\versionlist.xml
    Filesize

    15KB

    MD5

    1a545d0052b581fbb2ab4c52133846bc

    SHA1

    62f3266a9b9925cd6d98658b92adec673cbe3dd3

    SHA256

    557472aeaebf4c1c800b9df14c190f66d62cbabb011300dbedde2dcddd27a6c1

    SHA512

    bd326d111589d87cd6d019378ec725ac9ac7ad4c36f22453941f7d52f90b747ede4783a83dfff6cae1b3bb46690ad49cffa77f2afda019b22863ac485b406e8d

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\INetCache\IE\X4IN7HYW\suggestions[1].en-US
    Filesize

    17KB

    MD5

    5a34cb996293fde2cb7a4ac89587393a

    SHA1

    3c96c993500690d1a77873cd62bc639b3a10653f

    SHA256

    c6a5377cbc07eece33790cfc70572e12c7a48ad8296be25c0cc805a1f384dbad

    SHA512

    e1b7d0107733f81937415104e70f68b1be6fd0ca65dccf4ff72637943d44278d3a77f704aedff59d2dbc0d56a609b2590c8ec0dd6bc48ab30f1dad0c07a0a3ee

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\INetCookies\OHUETUZ8.cookie
    Filesize

    650B

    MD5

    e90f29a5951e7b9ec0cdf20556d260e2

    SHA1

    fb2c4f39a2d4160a4fd001d4c37c88332492f16d

    SHA256

    0eb747254a43f5b074fd67be1761ad5b54e766790607fc1f4445f3a86ba679dc

    SHA512

    676a043da75623477443582f09123bf8b79d6018bf1230c1b3c0baf5bd9246147232fc0e2853adf52e3df5c78eb5ded753d7506d638e45a9d121e8630f68c3e0

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\INetCookies\PG7VNC8B.cookie
    Filesize

    615B

    MD5

    c0aa98d1e71b0d98b4a5fbeab515beaa

    SHA1

    ab6eebe5dae07f357ef8e34097c397b5d30e3762

    SHA256

    80e9ca1fe41532750b22b103681b2dcdc53ab3cd3dcc0caa952feb2b305a25ae

    SHA512

    3e5e7dff023171ffcb18e37458c16f7f89adf0d69a7ac5b551c797ff2dc3254aeb3ff1a1663d933ebdf81f0761c175287ab63e63b72ffdb75afddc1dc071d4b4

    Download Submit