Overview

overview

1

Static

static

1

open.gif

windows7-x64

1

open.gif

windows10-2004-x64

1

Analysis

  • max time kernel
    136s
  • max time network
    132s
  • platform
    windows7_x64
  • resource
    win7-20230831-en
  • resource tags

    arch:x64arch:x86image:win7-20230831-enlocale:en-usos:windows7-x64system
  • submitted
    21-09-2023 17:17

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    open.gif

  • Size

    43B

  • MD5

    325472601571f31e1bf00674c368d335

  • SHA1

    2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a

  • SHA256

    b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b

  • SHA512

    717ea0ff7f3f624c268eccb244e24ec1305ab21557abb3d6f1a7e183ff68a2d28f13d1d2af926c9ef6d1fb16dd8cbe34cd98cacf79091dddc7874dcee21ecfdc

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\open.gif
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:3032
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:3032 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2592

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    a620cd07bb2034d7ebdff6322154169e

    SHA1

    c2dc88de578a0d6a8b0a3fe5a6336944dfcae434

    SHA256

    6c829706dc8194d14f81ea3778d2ed86abbe91d3bebcca6196cf5fec31b447d2

    SHA512

    031183bf237def1888c8a4247a589507396dd06a8a7dbc027ebc2aa6978cfa6e66dc8ee2a8f425f2a25d320d987b1407ad6f774116629e17d556addb6f2dc766

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    18994f8235a4faeb12014a4560e62753

    SHA1

    23eafa8b02b222e4020b84212e5e11b33e73e2f0

    SHA256

    949655215a470ddd470d7e71f49331a6a0d34e24f832712ab08d98d8f88f6f36

    SHA512

    fcba0d4b73d3226cf329f6cd10abd8189cd9b500f88811d666274af83680db2f75b5033279b1ad697edbdcad52cda48b189c2e94a6298e8b00309bc737124d01

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    c190b7371679180b603a720780b8f870

    SHA1

    f5383c2e75c8de847c4e56fdee2a25bd62dc7e0d

    SHA256

    b78ef7d8c6a590f6377d790b7f2e36f0d04680adf7b29cb953e0b10380a8a847

    SHA512

    e2ad6e6f9a395e9b073c07847de5bf8a824794aca04d0b789b88694add1f3f5fa8a4c716c05d9eff44a81b57b1af74c7c42ebea16b3cbfd3cf1a5e9d0403bfb2

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    2da377a39d20ac5731ff6d7b19578506

    SHA1

    737be2df8569bec041c338e33850813deb290ce0

    SHA256

    61733491a53fe6d5ff6bddf1d8e00e0e42ab4be14c538ff7eaa3b2a64d27f056

    SHA512

    4322691b7f752e2e9b01fe50e83c0eb49663b294f97e6e4d9c4d6885e10796bc5c6ba88e842500b8333f9472c6440f186ca64416b81d45d9520d71424e0517de

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    4f5a1dcafce99fc38bb3f40a4dc0685f

    SHA1

    36f804340651125fa024fd1a5ea350420cf37015

    SHA256

    4c70714cd552ae5547c9e5827bb364becdf29853dcc932bfdb736c8545af5291

    SHA512

    66d021b2f843e3c81efca686324970b19ad590bd5d3b0074e2c431b2e0cb6945d91b4f0723ed0eefe8b6630fc0a41189de22f294ce9674addd417681e7f280eb

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    2c4c2b0c00502aa1b6e10aab7cf4548a

    SHA1

    3f45a5d5ca1e9b832952716845b5059c034eb3d8

    SHA256

    f9a845e467a65a9aa800529c760d8c44da853bdbaaf518b25f40a56741505f92

    SHA512

    8e91fb0bc30fa8d4316bf8b50ed05d06d9ab6a63ae3ea951e711dc132a1f3f086c8c11ad12d68ea272f8160f3a3e8af82daf5fea53ad8a3e3ad6f9c6a9178e83

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    5ac80450020a944f3a2db20a886c31ab

    SHA1

    be5fe2fe2b9b314c2945ff900dc98414501d2ef9

    SHA256

    5dd818e045b083938d57db7b2b151cd86d4755b65a1b70a0e2d07b8e4c1d7518

    SHA512

    0f40312583997d19d01e2beeb4981be95ef733d08f6f2637b645180a8a6ed4d18c9844e503bb7c1090032a7d9932c645ce1fdaf166eef0004006b886fccf7214

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    60ba30635324ab2448856fb8491b2c69

    SHA1

    f4d3a2a1aa90eb82584cb82a2a9be7bf748c7f79

    SHA256

    f1e86b94c96b0ba48d8be9695e1a4458ba525516445d10e66e281b2f18b3ee27

    SHA512

    a2f6295776a8c3c41e6fc8b3a6af677c4d28d95aca164df650fa0de2f15ec798adf079c2c9dac6915ecc8f3a17ec5884871f388fb1defa107349016843fb652b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    3c4bfe6843334816b44f616f206252db

    SHA1

    7c3485148fbdc05b4147aee63d951e0a017ebec4

    SHA256

    5a11267de638c57eba5ade8049a40a73a991b534d166bca3230d4355f1658a30

    SHA512

    0052f778fee0533c750d1a0203ed03a697401d9a80a786fed240c42615c616499b2a0eee7e7d98a5ef13a272d237fe255dbd5e7c9d5c0ff6ec0dc6aa08cb8327

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    7605e2987bbbb08e76dd08e9483d3a97

    SHA1

    7edaaa7528022c695b458bd774dcfcf83ffd1b87

    SHA256

    42d1fdbf40eba4fb9ce9aa91d91c84df410c4dad59f56f146336b7f59aed3a27

    SHA512

    60680572a7b8179b5169e1a7e2f378771d4c32d5993f53812a6ed87f5aceec71e16a4fec3f938a9ed684e058e1415bcb0a478ac5ea9711f1119f2781dd71ca57

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    c1e88016693a64e1ffcac831ffb4733c

    SHA1

    c9c41fbab246297930e1945ca23c921fab87021d

    SHA256

    7adaf9877bc23d5ce9c9fe4f7885f81c46a118aaffcbacf0005c617c9a4067f8

    SHA512

    fa6dcebf764ce4c7c297fe7525166ddaab2fa59f897d4afeda2396e86c679cd0bc67701fd646b1100f65640ddb95bb323314f009bf18185da31654fb87620f65

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    e8b616c714dd8d3ca1a99b199f4edeec

    SHA1

    0d90226681e20d73ac547e6ed323bf67376a964d

    SHA256

    e432a33992e3e67c5dda55ccbf38e8a525bd746ac5cf76f1ac6abc394a4be0bb

    SHA512

    4614c54a17b73f058b2dba8f0c0a71c33c880036c796a9c62e0197d1c0120d56176989a6d814322e5c149cf456708434c9069ee81c993c0838be9291768dd6f4

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    6955bed643b04594235216fe72430778

    SHA1

    76bfdfae423332377948affa039f5b65c2f493ce

    SHA256

    679c5e38fb449328598147af56351f0784aa7097f06837923cc58a6191d60594

    SHA512

    23ea04891552a5bc6a9ae5d3c6bc663e3c0127b4d39e7934ba9328d153babdfddc934e4fe1668cf637026e0f745634e02cfb9aae5b4499652cfe9f567d3f02e0

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    4d0f31ca7f7a35cdc74b5d7bc5a62bb8

    SHA1

    ce72508ad70dc0485b4801a9d91264ca574c7417

    SHA256

    9c5ae0f5365342acec109c3f337fe5983e426c8ef8a30f4ca4a4f5e454aea781

    SHA512

    201fa466bbb88a36240e78bf087f206e6b53912a2186a10a65eff381bfdfdb1e039de5d197bd8c386413b4a505971993fa46cfbd87582c60dd8c74488d69d390

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    c8717f88a04e0940a78bd8fc35b3ac2c

    SHA1

    36f6f3dd5234038fe28d128b523fe38ea5d040f8

    SHA256

    e62f462d73dc0364fcc022bdcd70609c4d2b75c5287be01b45f6bc12916f1935

    SHA512

    f686ded46c36f1321db77aae769b0db9f5f2f01e0804d51a7f841f978a1195834586a6817ccc912c58ca30a6bf7b0a037b04cef70218507b13f91678edbb4bea

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    c5d0eccab7739d01780710cbaef0e318

    SHA1

    4c3ea7bf01deeb8393f7a8621f7fe68eccc3058c

    SHA256

    dfc0b7f7fcc992300b6298c89932a4a7cbbcfe44b62278e5e381f046afb0b001

    SHA512

    b5a460123c51a7f48b65c2962c62bd31fed1ad5d8910a3cbdde4f2e94f3cac56720305db77fbd497c3fd5bc42f8802ee518b3a846bfb2af6ad6b0055f681fc7d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    15e73e1da65efa030a0ec6df5bd29004

    SHA1

    6ffe67f9d75273012fbde092673104d714b790ba

    SHA256

    83f1fe5bd7b176b5361c5503925b85a1124f210aafdf4eeeab0ab57b84181354

    SHA512

    5ef424c06fcfeb25bab766d74c277a1fc54224d581d93fd93ee834a3c161c4a8b4eb55c418a5ff8444bf0f7d20901fb62564555597a1bb7bc948a94c46dd62bd

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    150c1a62a07fc163afa2ea653ee4f397

    SHA1

    faa80cc1bf07082c953f88544263302a55a2ed2a

    SHA256

    093c09d36cead3ea6bb9a1ba9bda1147ba9c2bc1183684adea6e609fd1850a08

    SHA512

    20760ab42d3aaa43fe90a2815dc82b78d46e2a62ae8d1967018afe65c7f93a0c9923888556dc381107da0a0ead701ef6f34c196a7acd54ecd3511ff31139bbc7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    95b4b1ee18647f576039576f444f19ec

    SHA1

    a2997f22fb6ee29bc7964b20e5017299e8687370

    SHA256

    07365b3c494ef319b73a61bd5e58adb9be78677ed97575b2e889b31b01c11bc2

    SHA512

    2d0419b6e2270e0fa81b1db7e59971aa4d51cc08962c0e24540f159abb799a4163f7c71b01a290a2f90f015276f5067c4372a40522a11d9cc4b3f49c2c8d039f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    21df87c404a1ec747773c8bd19a9cae0

    SHA1

    a3d3e06afa0eb966d147b521234d44be8b901d77

    SHA256

    9954e8e9100d4c19b7057945b15af9c9f8e35a8abb239fa9735ed2ad952e9d94

    SHA512

    649f0f6784fdfa829c59c55e3562b8308496a16f5d4a36fa9ea5ad09f1bb081ea43f8ec4be9a9ddc407d590c10196fe4ab35ec522ca55845573918aa9d4c3c80

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    228585ba74b03660c43572aa69c366d7

    SHA1

    f4568b74c1473d0ee80d0f94a7e0eb0d56702c54

    SHA256

    23111c316c9b0a1b299a8d7a15d884d08058fc4ac8aad355afb83d0778530570

    SHA512

    991fdc74d6a9045c89b720e2da7345f6edf2f02efb0b101fab5e97c64a779fbe6c01f0d4ee118ac024c463dd8905c0f526d0e6b3d2a6110ef6a2e9d5b969c912

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    ceca087f93ae6dc48cd8a8266d002728

    SHA1

    52979add1759845220ab3045e708a9619b38f3fd

    SHA256

    d84f910cf5ac47c05dbde01af8ba57ac56c7b0f58f8eddc1d6ac1cb3fd713c46

    SHA512

    3f36a5659a4d44fc116e57234865d3de45e481fe645734df69a9d794a4dc8f99f2303527c4f27c94f0499c6580b45c88a63a9aa34a99d7be0631dd3031920f6e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    b76f9e29c95008f1b4d600e38bd2269b

    SHA1

    621e9bc96aa1613fc93b537ebf07e295c20e07c9

    SHA256

    a956a7a591df6a28ef20eb87e4c777cc828e8f47e915f0434d3305d22388a862

    SHA512

    8390072e9206d3c6ddf0c906a893bc507ce923f0598be0be1b7f476938674a4a170e4c77f20ee4d3275a80df9915ba4eaf96cd58644de123cbaee256c95a8ce4

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab4DA5.tmp
    Filesize

    61KB

    MD5

    f3441b8572aae8801c04f3060b550443

    SHA1

    4ef0a35436125d6821831ef36c28ffaf196cda15

    SHA256

    6720349e7d82ee0a8e73920d3c2b7cb2912d9fcf2edb6fd98f2f12820158b0bf

    SHA512

    5ba01ba421b50030e380ae6bbcd2f681f2a91947fe7fedb3c8e6b5f24dce9517abf57b1cf26cc6078d4bb53bde6fcfb2561591337c841f8f2cb121a3d71661b9

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar4E36.tmp
    Filesize

    163KB

    MD5

    9441737383d21192400eca82fda910ec

    SHA1

    725e0d606a4fc9ba44aa8ffde65bed15e65367e4

    SHA256

    bc3a6e84e41faeb57e7c21aa3b60c2a64777107009727c5b7c0ed8fe658909e5

    SHA512

    7608dd653a66cd364392a78d4711b48d1707768d36996e4d38871c6843b5714e1d7da4b4cc6db969e6000cfa182bcb74216ef6823d1063f036fc5c3413fb8dcf

    Download Submit