Resubmissions

25-09-2023 22:51

230925-2ssm5adg99 10

25-09-2023 22:50

230925-2skyaacf3s 7

25-09-2023 22:49

230925-2rsxhacf2v 7

25-09-2023 19:47

230925-yhh46ace26 10

Analysis

  • max time kernel
    142s
  • max time network
    141s
  • platform
    windows7_x64
  • resource
    win7-20230831-en
  • submitted
    25-09-2023 19:47

General

  • Target

    dpr_report.html

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\dpr_report.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1820
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1820 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2600

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    f088ff7d2b987210ba9fb514ce956a8e

    SHA1

    b6c534f8637c1da69e9322686bf584fc08ae1d4e

    SHA256

    ad2488d89383b6402b7427ea4ab4570bd8b9e70f4d9c402a54814918ecf7b624

    SHA512

    0566ed841c815fc18e640253362cf28de01a40e9be1bda1c8d8f305a1b5c4d907989529418504c25a42626619cd8c6b8287bb2ed2b65c10945ac64a47bd83299

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    75bfae282a72488daf784b30734c8fce

    SHA1

    1feafdd20ba81a613a07e31ad10e67db8e57a52d

    SHA256

    55e3b3089277c3499a3df29dfc4167725693000f1e61770a9a453c6f39512d65

    SHA512

    50d12870e79fc425468c88ad85762ae4fc5767edc4e0e60ca2ad158f2cb1151572da026f9c5b1c1cd61ff2872ff415483ba4e17624f5a00d0f02285f6578100b

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    117e241a6562c5ac951cb602f03413be

    SHA1

    47612615590ac36fd8e273acde35bd30a2dcb971

    SHA256

    2fffa3e3274864bf4bdc687b7c11187c5d059cd6be373af8fbc965e4c01ef067

    SHA512

    5cb90eaa86c3897ef354cd71520491c9e6780ac65850ce261dc48b766280ede7dd6dc877533b0055830f28d1773b9e69c76c5bfafd94dee1c36b9b758cd4f83e

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    c890c442abacddb1e824a73967fd6100

    SHA1

    efe25fffedf4df17d4d8851ed65b8bf96d95a376

    SHA256

    b7baed8d85adf9a62b908f55a85222b6ad08d5e50f06f2102993e5bc7832f685

    SHA512

    af333fd1442b72d081d729faeef56813fc5aaa1cd04d720ef912072b2954f96ac88917fd4e34f2641fd73d21d229f43e60834f539b1476cf1fafc2aacf50a358

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    5e4ac8896abcee08b823da5edeea75e8

    SHA1

    06932458352ac3a3741575613635bc66ee305305

    SHA256

    a66bb99da067bab7a31d7489196248c72c67229dd68b573940f908e246708bb7

    SHA512

    ca0451d33d67d2a387f36539d797b0bff9279a4d0059c4a883551436fdf77d1a1d21ac1be64296ae36c72db7ad92e486c2d995f5f57fda0202402250259e5a89

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    31c4f10082f41ae1340531779e6c805f

    SHA1

    ef66cd2a82a6a42f8ce1829e137a174a565b1dba

    SHA256

    35c94cbf7db0c5b6d0a05186b6c98166708067de65a622a29c9b7fb8d8ba8756

    SHA512

    97486c4650d0ea45b46426fd389b4a30b554a9f65c0f56ec2d7c328406b41547b37484d20ba1edef08ad5fe4e12b218ae37e1f6b493b57adeced532d738e838a

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    2950b7932e5d080705e0bf8e6e692db1

    SHA1

    49767662e0f42c004005fe8b0b533b2f41e6bdae

    SHA256

    6febc4b4fba2a65b941354c9e34aeb08988ca79d37be3f6b15705b6636fab448

    SHA512

    8055d8a6c9e931a7c3ef623c604f89a8d30ff12742ae4cc65ec6b35bc09a957e5eae5d1100418f9feb4fa421d8f683811853d2120e03f78e85ca5448e93a72df

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    1ab73315e1b7fd14b1ced0c53bd97793

    SHA1

    966a52c0ef47515f5b14509fdef553f551288bd4

    SHA256

    43613456d893a63bbccce963bf3b59dc4a04b9083d9e922a99e7d20696be0805

    SHA512

    5c65787a4c2b645a98d013204f421e56aa8890ed263514669725a1d08542962e3cb16c73ba600897723bfcf386f4276a9b77689a2ba4ac3a76c140684769bc17

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    a10e52f160f09f51b08f1f330858b3f9

    SHA1

    3c97ce3882e7c418e6d0f96fcc7795f1158df0db

    SHA256

    1ccf46b8170ef2c3d3eeb4a9a97736e514255d69b8a3c22c50caaff5c3737e53

    SHA512

    391a63de7dff4c4f56ee0b2abb71b3d8e07bd79e151829207771abc921bb1d6ceb1f7e3ff98ed1e7fce5079a51a6b9171f6dfcd2bd5d3c86b3fc0347f50c2b56

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    dc9ebb7661e2520c4b6bea6128d9240e

    SHA1

    83cb77ae7a7e07dd8a77615cd0b28fbbb252ab90

    SHA256

    32596b24e2a87a73a96752f08b2832cd3b9e4af40cdb41ce1f869923d67a6d12

    SHA512

    4e6ce66b59d262314dc20d9bc18c1943777dffb26245ae143633fd9f5b0a234a6d56468a16c7d3c83f24be220e56dd1a091584c945fda66398f5fb4647cf5afa

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    c4979d133fcae35e5b02814534925f54

    SHA1

    bd282d50b4e85ce438198c5b31678864fb72663a

    SHA256

    d28c9b1920426524f84ad3899a53fa6b28e650897ca17f12f7910047f4df6301

    SHA512

    f1103f229a17510e9ef536f90ae30a00ca45521797d3c66a05d342b0b4743cedb7956dba705124d8be137e8fcf62690c4efc7b44d798f10d96f3191021aa58eb

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    1a9276d97cc936522b69d60278b243aa

    SHA1

    383778f0a697ae713a102ac4a5154945fb30b2b1

    SHA256

    a8d1dd159aee3ee3b80bc7ce9ccd86166afddc76850b7e8f342ef1854204bd88

    SHA512

    98960bf37af218b614b0f66ad2f6208467d78c15bee1d2fbe9f12ee6c82dc119866403ed2b77b97f2ad3462ac081dd5b2879d0360fafbf19fb326b5c4ab02cd0

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    987abe41d414c0a31695c36da839ab73

    SHA1

    716e7d68098cb36bd90ec7ca8a474bd9b8aff2de

    SHA256

    a2c1c06ed3fdf85f6844d4627a76756aa743ec94c3b05df144a0dfaeb7e71965

    SHA512

    0dfcae405322fdd22fc70f0e706c4ea9637282f43783d15202d29f15472ae8ee51b9c71866e6ad0fefbbe52fcb152abff041bb7fda68f065f15d483d5e7b2234

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    c4bb5b9942225345be528f3f09d3d60e

    SHA1

    24f863db2bc56d2f481fd5d0f3c55654031e3a4a

    SHA256

    71b199f14c3028e1eea06036ab045177866cb7c4522d5e6a4c85f06bada8778e

    SHA512

    2e04a4ca77c9fbaf7bf917f3f1ec762af562aef9f5886539e36de1f1167a043f77ed71a87167268251b1318e4c1b577bbf7295b077da91d801d3f6d95f8124b8

  • C:\Users\Admin\AppData\Local\Temp\Cab7C44.tmp

    Filesize

    61KB

    MD5

    f3441b8572aae8801c04f3060b550443

    SHA1

    4ef0a35436125d6821831ef36c28ffaf196cda15

    SHA256

    6720349e7d82ee0a8e73920d3c2b7cb2912d9fcf2edb6fd98f2f12820158b0bf

    SHA512

    5ba01ba421b50030e380ae6bbcd2f681f2a91947fe7fedb3c8e6b5f24dce9517abf57b1cf26cc6078d4bb53bde6fcfb2561591337c841f8f2cb121a3d71661b9

  • C:\Users\Admin\AppData\Local\Temp\Tar7CD4.tmp

    Filesize

    163KB

    MD5

    9441737383d21192400eca82fda910ec

    SHA1

    725e0d606a4fc9ba44aa8ffde65bed15e65367e4

    SHA256

    bc3a6e84e41faeb57e7c21aa3b60c2a64777107009727c5b7c0ed8fe658909e5

    SHA512

    7608dd653a66cd364392a78d4711b48d1707768d36996e4d38871c6843b5714e1d7da4b4cc6db969e6000cfa182bcb74216ef6823d1063f036fc5c3413fb8dcf