Overview

overview

10

Static

static

3

CrystalDec...ed.dll

windows7-x64

1

CrystalDec...ed.dll

windows10-2004-x64

1

Templates/...10.xml

windows7-x64

1

Templates/...10.xml

windows10-2004-x64

1

Templates/...ML.xml

windows7-x64

1

Templates/...ML.xml

windows10-2004-x64

1

Templates/...10.xml

windows7-x64

1

Templates/...10.xml

windows10-2004-x64

1

Templates/...10.xml

windows7-x64

1

Templates/...10.xml

windows10-2004-x64

1

Templates/...te.htm

windows7-x64

1

Templates/...te.htm

windows10-2004-x64

1

TradingVie...15.exe

windows7-x64

10

TradingVie...15.exe

windows10-2004-x64

10

Analysis

  • max time kernel
    135s
  • max time network
    143s
  • platform
    windows7_x64
  • resource
    win7-20230831-en
  • resource tags

    arch:x64arch:x86image:win7-20230831-enlocale:en-usos:windows7-x64system
  • submitted
    19-09-2023 16:01

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    Templates/TemplateCorreoCliente.htm

  • Size

    2KB

  • MD5

    ce4c1f3ba9e690c4119e8ed39aa8eb78

  • SHA1

    dc2da00c92b51431c01c5e598de4665c9989e856

  • SHA256

    e17621dc67919e53a0d1be6a03fa0d97f01c8932f8d8912d556327e620310432

  • SHA512

    daf95e6329b060fe230096fc7a594cf0a13801e2dcf9869affa5530a2d03bf6c0dd2d9340be5c312b82d41dad48057f86811a23b23fba93b0dc9a478986ac4ef

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\Templates\TemplateCorreoCliente.htm
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2392
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2392 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2232

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    46252e63aef2a24d0fc5b9c760f8d492

    SHA1

    ddf4e16a75f405df35632a516872db08620cb369

    SHA256

    c7c6c454833fefd85b079495781627f62163d555d0d3d458a0bfce45da038c93

    SHA512

    cb1566559c96cccead9fa2a42f4085c5ea89e1d69a6e8d44fb66ab61eececd6c2287e4f39090f42167af522c3e95026bb5f4004a29a740ad7a01ea0e35d5e859

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    bc5db9d37aa35ac4601d9fa5d9e42063

    SHA1

    aa2b539f1a607ef9d808eaf7b28b0f36ca76db45

    SHA256

    538320355ba6421ff5e5ff56dcd552fa1a7e5167d6cd729cfb8d4b4f27cf4514

    SHA512

    38342358c3e8e8331bf54b2b8115ad551b4c2ff451d913a134ad4422a177ed23bbd5210c3403ae1b75d51d65867d75334672d14c1f3b6f851c5ca11083695f5a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    d243066db19a4e2704303904a3c80968

    SHA1

    c6fc5ac449a5ebbef2465315647b43d77b80cbce

    SHA256

    ca2ae8836a6dde524d9aeedb3dbc3a3db16d0e1da078cdbe51bf9073fe64b178

    SHA512

    96b56351a12489472d8ff49b077314442525172fff104cba657e01ca3613c16f3e3edd5a13898d2dfce5fbef01acfa1ea2a4bfae3816a6c01e870e4826268df8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    91b4fb888244a34921589e9e0931e9a6

    SHA1

    dd82a7343bbc95c7f08f3f97bb53cb17db34baec

    SHA256

    a28050a19c8920ec7d95e5c8d300d69989d34546f1523565bb1f875a89c013a9

    SHA512

    4fa9587267d0384bf401236c19235d6197faf80d66f4c05f10f2373dc9262495e7077d564ef5e31cbce8e16b13654202b9414b6df97abfc3daab76a6fa16c60b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    bbaee6f6bc7200f3e343aa05096da4c8

    SHA1

    8f06eb850922c499bd23e71c47986392460ba9b7

    SHA256

    4bc6b86de563709598a4829dce25a6a4def299662cd5021fc263f3905f7789d5

    SHA512

    a6af6511fc4abf319d59585c2e013814e4eb6a037f5d801a4053e0612523158933404fc39eaf041f4bfad4ce809bb48febaae8399834c1a6d215f55df38b47e7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    72f7b6f7de78c195d885770759a37098

    SHA1

    f120b51bf0d136fc467ac71d5fbf597ec997bec5

    SHA256

    751b8b32fd433b57714e4d75190a76f4535499aa250924b136deee935a247346

    SHA512

    91e98e1db5efe14a9dc30e34a7e46138da921d0f053aec167348a75384ae774361299df62df3c2078c2c18373b858f52eb0efefef7d35669e9a7f00d2e1fb837

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    2e60799eb619f85d0bbe011f811bb73b

    SHA1

    99a53f82781a9919a864515a7cfdce6d92568441

    SHA256

    9a05595ab8d68b6381725740ed1f7fd6a64810032a4a686ea54289e4203f68fe

    SHA512

    a8b368cdc2fefc1e7ad8e44ecb3c8ebe9bec6a384af278f862ae95390c2c2da2b88ecac814287cd1748b9488a7db0f059140a79b63da0d57f5c7e07771c0915b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    a01d35b4f6316b31d27d28d9e760355f

    SHA1

    da5445a1e70dffe16f4e0f12a5d056c38dfa2bab

    SHA256

    11faae96d24d08d070b352434873fdd0a3e954694cf7ced5abd8ab2581e5216d

    SHA512

    1cf9ca0efc0101aa2270faa35b44167bf8f42dfd2753abc388fd5e13ce600744e69a4503fb3eaeb0f909b70566cf3f270023e0f214ad57703970ef79f2d9589a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    4ce99ce410b77e1cb4010853cf764432

    SHA1

    83854b0c32b464bb0e561f24408b88b4de0c4070

    SHA256

    fd8b82b108abead496afc72e7840966d995f7947c31d18ff3b90fae1c4551329

    SHA512

    44da31f640a6db6c1841b686ac4c3aadc6cf4e9ce742023c23f40388d795fb63622247ab1329474c6b2b52743b59de26c8b723dcf781432378bf8612a8a232fc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    06642fcf122d15239292c45adb1b9227

    SHA1

    e54254a9b5190ba0ddc3b29ba3e836584383c69c

    SHA256

    8f43e56b22410833f00fe552f7cf5d676df3965ea43b65042457261deda4ebe1

    SHA512

    45cd37a7c6d2e130872b9f255429517f5b8c66044b4c9f6ad3161f22f6e7dd954407e19a49226067dcda61655b38ec3b8d380c386862080f4d668c5b511558c6

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    5237214ee17e78163abed890a3156786

    SHA1

    6c1ed4e46a099135630798f57443770eb4114970

    SHA256

    5ba074d56b61e64a315611f383b6e4d431d816837f81eec937eba404b98c0b8f

    SHA512

    4fc718ab0958993ce8b75bef3a02f9ccdab5e0081bebd951ddc543c00887d35a7d08b9c6a5be97810b5fa6484a0a0ca6a8213bb543454807ddc4392110615f6c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    59f85488207d1be795e8c53be066f74d

    SHA1

    150f60260ae633d677a29160796d684605299209

    SHA256

    5504d996e50d98ccedcb035ee949e77929402e52560b0abe6976602fa46d8abd

    SHA512

    21a7576dc4cefedac57b98c6da602d795a164fd90a5c0e9af226bc2ba710b29a277a5c0f3bba5ec8e2b14727d471241a7213af8e6297f583dca389f06ac7c879

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    930a7e33d842da22954ec56c59ba4fa7

    SHA1

    673f8c561f8ca98e37206548264dd41dd49150b8

    SHA256

    ea35ceb86ad64dfeaedd73154d0b903357edb369f753b30611782e84c2f8f97c

    SHA512

    e48582a30dfb38487ec9d08c1516dfb7e3209451ba6a521608a3df4e9551667a25e0db47c4960ebe162431991018e072c72373594211ee81ce3667af559da38b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    8ef8f669b95f3b4d2d90b419b4e73956

    SHA1

    1d4836fb9d4bc4b37b0e5b159e2646bb6df54645

    SHA256

    519664557b28972c01c741a0f11ace149ff52cab325be008aa9dc12dc375d3c5

    SHA512

    25a6f268cc2a971db598c33b8c77b1e7138cf136cecc9937ba5bca30d7ba026fb2139cf2c038cfe496cd158fbaf14f6ae7f70e424622fa2f4b805b122885df65

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    b39939e149af234c55dc2f4167bea512

    SHA1

    81a181748c5732dfd089f64e4ae9608dab0171f8

    SHA256

    c5cab628b009e99f17193f5539f073efa26413ec0977b9db7a78612030ce6f84

    SHA512

    9a87222b080dfdea1ba8b4ff44c4ea371119d0d43aca1060ff0a71e9339bef0d3f473df331ae2f2e7689891a549f5a7fcdfc53e0dec37aa09d32a39d60f83632

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    4d22301adc357b260b10c76e95b530bb

    SHA1

    b963e721cc2d09e1b1ac20c2e2609953265d6c0a

    SHA256

    dc945b25fe51cb4f48569a78dc9493c1e84970f8b27580f9fbc34db1b6017564

    SHA512

    a299be75bfe9897970a0cd98d4d2b2b55d1bbda329847cc80170b15675c165b229dc86987932a30d45eeeebb4398ba9be73ef3e0429d12dc9636eab8d8fa86d7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    e87e525b9609471a4a6942b83080b71e

    SHA1

    caa9ccc4515fa29e3b1a78d17160affc24c71aa2

    SHA256

    f70a2b3682cc33afd439bca3d801f3a8b2ba9f46d80fae1189a38a9968c4bfc1

    SHA512

    6d5a70fae7c05dc7ce8f31af36304a9e01a4196bb7d5742eb4b0d6356b103000d8bd3c911e1b16e80e4664307f777f7c0d2eba10ffb9ce82a3809500d385a6b9

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    eb2fc0808419a18930cc385a038cf101

    SHA1

    7c2f6217f8191a389eca968dd7f2c7efdd484db5

    SHA256

    5ba02a4d5e742a4d6238d381fdb180857189fd8e31f2266c776e488a9b69430f

    SHA512

    09d5e3ff014ef6145538928d818cd9d16ec03c04b0d1e8395efd60d998edf02088d57e3224e4008392a355fcac64ca072adc86c40f072ad0ad485811073a72bf

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    3a3db19440f7c9fba5b3eb27c3c254fd

    SHA1

    3dedf700c82d91d6f60bb632964eb3c938af4853

    SHA256

    afb88db0c33c953e276f7e954d13dda45a1c527a093c20fa75fe8774e1a1b841

    SHA512

    51a2e3b0c5336cec41006751c4de7ee5d6cd905bc24f58ffb522ffc84edb5b9f48b1679600f1ff7f8d7e6c05a3d59e3080084b34601f9d7224ab630b704432ad

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab80D5.tmp
    Filesize

    61KB

    MD5

    f3441b8572aae8801c04f3060b550443

    SHA1

    4ef0a35436125d6821831ef36c28ffaf196cda15

    SHA256

    6720349e7d82ee0a8e73920d3c2b7cb2912d9fcf2edb6fd98f2f12820158b0bf

    SHA512

    5ba01ba421b50030e380ae6bbcd2f681f2a91947fe7fedb3c8e6b5f24dce9517abf57b1cf26cc6078d4bb53bde6fcfb2561591337c841f8f2cb121a3d71661b9

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar81B6.tmp
    Filesize

    163KB

    MD5

    9441737383d21192400eca82fda910ec

    SHA1

    725e0d606a4fc9ba44aa8ffde65bed15e65367e4

    SHA256

    bc3a6e84e41faeb57e7c21aa3b60c2a64777107009727c5b7c0ed8fe658909e5

    SHA512

    7608dd653a66cd364392a78d4711b48d1707768d36996e4d38871c6843b5714e1d7da4b4cc6db969e6000cfa182bcb74216ef6823d1063f036fc5c3413fb8dcf

    Download Submit