Overview

overview

1

Static

static

1

38ffd4972a...1.html

windows7-x64

1

38ffd4972a...1.html

windows10-2004-x64

1

39534116e0...71b.js

windows7-x64

1

39534116e0...71b.js

windows10-2004-x64

1

3c8cc37a98...f.html

windows7-x64

1

3c8cc37a98...f.html

windows10-2004-x64

1

5d55412155...cb5.js

windows7-x64

1

5d55412155...cb5.js

windows10-2004-x64

1

8293f6115a...555.js

windows7-x64

1

8293f6115a...555.js

windows10-2004-x64

1

8548215da9...6.html

windows7-x64

1

8548215da9...6.html

windows10-2004-x64

1

8c38ee7f83...1.html

windows7-x64

1

8c38ee7f83...1.html

windows10-2004-x64

1

a236aed508...fd1.js

windows7-x64

1

a236aed508...fd1.js

windows10-2004-x64

1

de36e50194...afd.js

windows7-x64

1

de36e50194...afd.js

windows10-2004-x64

1

f9220be9cf...7.html

windows7-x64

1

f9220be9cf...7.html

windows10-2004-x64

1

Analysis

  • max time kernel
    192s
  • max time network
    233s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20230915-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20230915-enlocale:en-usos:windows10-2004-x64system
  • submitted
    11-10-2023 05:06

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    8c38ee7f836425242eaf549038c589824ecbf7e59cd8a504abf1332163e48c11.html

  • Size

    43KB

  • MD5

    29dab52fde03a69a1401360ed48dfe6f

  • SHA1

    ed7e973011b7b343c62f4e2cec3d1013c4aa6af4

  • SHA256

    8c38ee7f836425242eaf549038c589824ecbf7e59cd8a504abf1332163e48c11

  • SHA512

    201ad55e7664d4c4f539300ad8f3a6c16440e711eb4a8434ef305981bf05cb974adc981600555613f84ebf83c550bf98bea6a408e421a01b453a21a3f416b326

  • SSDEEP

    768:lj8rBDjCSxbHgfniQy4QuH0MI//znabzXe8Y:lwrBDjCS+M4QuUWzXe8Y

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 49 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 3 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\8c38ee7f836425242eaf549038c589824ecbf7e59cd8a504abf1332163e48c11.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:3104
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:3104 CREDAT:17410 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:1228

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\Internet Explorer\Services\search_{0633EE93-D776-472f-A0FF-E1416B8B2E3A}.ico
    Filesize

    4KB

    MD5

    da597791be3b6e732f0bc8b20e38ee62

    SHA1

    1125c45d285c360542027d7554a5c442288974de

    SHA256

    5b2c34b3c4e8dd898b664dba6c3786e2ff9869eff55d673aa48361f11325ed07

    SHA512

    d8dc8358727590a1ed74dc70356aedc0499552c2dc0cd4f7a01853dd85ceb3aead5fbdc7c75d7da36db6af2448ce5abdff64cebdca3533ecad953c061a9b338e

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\INetCache\IE\7H3JZN74\suggestions[1].en-US
    Filesize

    17KB

    MD5

    5a34cb996293fde2cb7a4ac89587393a

    SHA1

    3c96c993500690d1a77873cd62bc639b3a10653f

    SHA256

    c6a5377cbc07eece33790cfc70572e12c7a48ad8296be25c0cc805a1f384dbad

    SHA512

    e1b7d0107733f81937415104e70f68b1be6fd0ca65dccf4ff72637943d44278d3a77f704aedff59d2dbc0d56a609b2590c8ec0dd6bc48ab30f1dad0c07a0a3ee

    Download Submit