Overview

overview

1

Static

static

1

Untitled a...19.htm

windows7-x64

1

Untitled a...19.htm

windows10-2004-x64

1

Analysis

  • max time kernel
    134s
  • max time network
    135s
  • platform
    windows7_x64
  • resource
    win7-20230831-en
  • resource tags

    arch:x64arch:x86image:win7-20230831-enlocale:en-usos:windows7-x64system
  • submitted
    11-10-2023 11:08

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    Untitled attachment 00019.htm

  • Size

    5KB

  • MD5

    ad9c8a3c5e6e76918d76219cfed04183

  • SHA1

    96e790d2574bd3a62d2770ad686126a46fbc1479

  • SHA256

    5a345d86f904e4453b2bcac02369c654fc6f89564711e3ea8f73cf102ac76110

  • SHA512

    c99e9e75835735aeb566d9545186187825a54b6237ea2eb8918f5f0f7f058f99e9628d23b9d39e36b1df27a969e23e238a0f6673666e640beaf7c8940f3f09f0

  • SSDEEP

    96:Y/MTrYF+xPTq+rIvIMyKDfTJrc2UJW/PBXbsmYZRQDydyqEc4N6Vtw95PtadytZG:YY8FuPPrIvIePJrDAmCQiuJ5FGytZXg9

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" "C:\Users\Admin\AppData\Local\Temp\Untitled attachment 00019.htm"
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1900
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1900 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2548

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    6d467503ed337c2744fa73e6ca43d171

    SHA1

    f4188caba187fad2e521eb162bb8216f16319f48

    SHA256

    3c84884dae71889db3b5f70ddfa124f0ec14835de5cd02820de256d9cbe054e4

    SHA512

    f9186595353cfc22dc211dbd5033bd913ab4c7d96b334a9f6c203799cbc796f9fa8c12700ae4d27aa2a6902427f623acda531092e70cc624a9ae63d32d3586f6

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    823b5e7f0b7edadc576ddab984f104ef

    SHA1

    b958ad93e43e7999a222e999a0bd32329a628127

    SHA256

    c64c74e4bbe73a642e435ab22a0a1d40eee567a03fbc2a6683cdbaf4f5f303c7

    SHA512

    7cd16ac3846c4dce7dddc4ae3fb2bdb9c421fd6838167edd26390b0be6ff11033c9418bf255718408a4d3cc9acf5c2c31fcb0954290e86ff328b405ecd2cc8ff

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    1524526092bbc6957ca4fcb7d4de2671

    SHA1

    35a4911a32b2da9ef78dcb58fd3fa8ba17e66739

    SHA256

    84fbbbbc23740c70831a861a084ceb4a916f891ecc665c46ce710629d3a01c7c

    SHA512

    984246e8b0088cd3a4719469de47c24f9e4daa35b5cce7e8520ec5ae74337a4f9e252a1ae63a49533a8882bfddd00da03683c13d18bc630a021140adffb77db5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    aaa4a1979f39d6abd347d3947e02fb64

    SHA1

    2369973317b4999f1d63ae422081ce8fec147318

    SHA256

    05948743dc0bed8ca5f72a265cc60d4052d1530b3b6270e02245ff51b52baef2

    SHA512

    730e62876ca3600ddf1b8c7a558b839f2dcf531ec4056dc3732b5c3cbd055131b1de488575bafe0a46923baa138329e176f3b6e82c2cd0b78ba0a0d4c0408f9e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    7b23b04734e6295c09f54623cdb5cab5

    SHA1

    da292e38b33ce10ca0b93fdb27cf61aac0c7d695

    SHA256

    d24aa0364e11a8d5540755082fc0fe2bc1a58bfd03ed414ea0099e1bbf33d058

    SHA512

    ab353c604df1318463d6e65f874e15861a6b21f6d6ae424177fe73a12c4db35e42364f33409a45a4cf8f67d1630cd78bf5c7e0aa8b8ffaf8b914efc530032950

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    44ed7509efc1e70dc0088ef4b17b4346

    SHA1

    92a26c7b0292760c0ff680660d99e1d4fccd5157

    SHA256

    0012c1d0ecdf6f84a5748b6ba8afb545b9cd7b7ec5007317f30ccf6110eb7222

    SHA512

    7fdd7086069b5daa2e242b4f1c29c30ffc754b0b6e92f0123a1dbdaf46b9baa8f0770fea4e9948b0ee5337b07d5a233f7828f518dc5fc68b77168ea986aed1d0

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    4b804efa3248ac22f055964d7951ad14

    SHA1

    f901bd17489ebd95838f50574678314ac492830b

    SHA256

    56dd4183c5ed5a53e1ef0a0c757b8f3190261b5a7e1211f30eeefec93956b0ea

    SHA512

    395b1f0c7bc45914e9427d5ac89bf032ff5aa75ab84956b9f3548aa0d0bc072f9c25e886f5a1d23b5059367473ba6303530d088edfa95d60c6a8c954dd62a6a2

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    b5b4e4d361bc458e5e1e58680d49e382

    SHA1

    042f9a4ad6120602954ada19084838efbaecb621

    SHA256

    8f783ca793047e0ca50f86a1587863774100be478c9e49f08cbb8aa02a2080cc

    SHA512

    94f8118e2bd7a8dc6122fa86f51bd32646507ae461e9f2f641ba03352d6b13308b70c7f7ba9e7af99ea4b5b00e002b10601717be0faa530be287c0ba4ff20ea1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    c4002e0f380f349402e0495635eda8ce

    SHA1

    99e4aa58167e36df83e3a5f7d1bda5561562df02

    SHA256

    211895d72fdbf81545d992d33d001856684afa315d862a400fe871385d4ffe02

    SHA512

    fdcc55acb43f1e6b1aa6cf26b4d255c88a3b5fb9b9cb44e841ed5eafadc68a7f5d65973563e11e993572bbbebf362d03db60160519f3dd8fbdd09cb7fa9c59bb

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    2e895bec1d3fa01bb8e4c663a9a618cf

    SHA1

    5f6ed2dd629f9a4df9ca1448783638e31b5829b5

    SHA256

    2c2f38aef7cf1229e9d22a3667483120e59b8c59cf5432bc8f4ef219ac2fc330

    SHA512

    f617d09df1c48a86981a1954c569493d349c637f265c62b17e15729f9c0e6c745275bf24ce329db19b01314bdc5eaac073df3b94894eee3841e00c313ec13e56

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    3ed2f42c6623c41f58bc18a319d09546

    SHA1

    531e1a40d82082a58d9e0ac825f681f22dbb7894

    SHA256

    8487e3090d6be14cb120aa14dec48db86c5d0a766434f8cdc8272a96d949bce8

    SHA512

    0410ec8875c49d7fc21842dcf8672029ff32c67ffb31b843ab3b70eedb9aec8ad68334ed725783a5119dafb477d14ed94530da41c953c85a8cef7e483c6a6bd9

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    bfbf192ae3f80c48f2450c448eb3b75a

    SHA1

    e6c4d3e65b30d9fedccf6efafa211f46129f0105

    SHA256

    8955c6d4a744b6b736b7f13463d5abc44f313ea06f2bc57563e1513caf76ffa6

    SHA512

    76a91fd3ac977eb26f22f3f0be0fc663012ffe95149e09a45b0593cef46befff423818d94bab6e8a82755859129e8d2fbcd15c89d7f606a6adc78c76d7589313

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    492a71a8b1bed0638b4c4dacc3de57e8

    SHA1

    d9a6f138999a106b58e766b5336b935132007978

    SHA256

    9a1acff23d03b3c863cc8c8aa78fcd85cf851766282a590233483ae7b8c3c3f7

    SHA512

    52a26c2f47bd3a48bf5a305a7299d9c70fae7b906f37272bbeebe3c925012c7c8c391a731504ec9eab91a5298117cc5ceb0af07dcf61a3b4ba8a91de7abd4d16

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    3b2549b46b0f6a0fcd9a4df267dc7cba

    SHA1

    48ca0f9069e0197d767bf4efc6fda3daa54535db

    SHA256

    44017ea2bf17c16c22109b89956a49869635c534a5509532f04c83a048513796

    SHA512

    11dcbf751ad8ba16c744c2a7520433708891a420646b06f75ab4e2faa7aa896cda001d96843f247624ef9090713fa3e887e689f9cee318236f08cba7e05080c2

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    b74a2bc71d4ef24b1745025dd0b3b7a4

    SHA1

    f4864dc7481958f9afa452d0296d3fbd0e70f3e7

    SHA256

    bd57cf5a869ab7640e31f445ec3eb8dd0b2e0f65199bb98a30e29830ff020171

    SHA512

    7a7f30987b9a4a439a32a903a4ce7f83989d1fe6fc936d872f113586a29fcc40a88be33762e6663e587700b0c0d92a29ff24ed70f4d532706b3955e1f01e567d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    b9a104d6ab2df47b707d97e55bb05863

    SHA1

    9f5ebd24df61ea38e2bcfb332dfc31a1a0f8c51e

    SHA256

    236d465dc6e8fd94099d0d54603ed99a4a863a496607aa1f5414c72af80194d2

    SHA512

    b7543d5ec55c0a1644eeda6d321ea7883434e6e2ca59f76a9a5fb02e141c2e17530d0b2580d21c4729bf87e46eed59f869d03bcfdf91f65be155c9c39ed0b0db

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    58049a43845d35e3be746094201189e6

    SHA1

    59483d264adb5ddb94786cd095236bde179c9883

    SHA256

    578321b5c2596345b92ff00ab47517e6f0a4d6472b0f55c0d5decb5b857a77f9

    SHA512

    2b3069082ea568de40074d617820521660e1fe78764ca4c0e366212b450009c4dba3f890da984997b2a285d0ed38a9c7a96c4332e7609089bef44c7915cdaa52

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    e1b7e48eb54e6a11c5b6ae5c87c3507f

    SHA1

    d02de5729d53c0c3d9af86f58982b67537f06114

    SHA256

    a2c1123733341386f3bb928f46586df2048a126bb0906826ba2e9baddd5436bb

    SHA512

    4372bf3e6edb2c8cd32de5e2f1f760810f0f4229f3210b140351140d7b9c99289cf8433ec2559a94a0f9697eee6f733adce6f45177bb107a748128fdd5379fb9

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab9FE9.tmp
    Filesize

    61KB

    MD5

    f3441b8572aae8801c04f3060b550443

    SHA1

    4ef0a35436125d6821831ef36c28ffaf196cda15

    SHA256

    6720349e7d82ee0a8e73920d3c2b7cb2912d9fcf2edb6fd98f2f12820158b0bf

    SHA512

    5ba01ba421b50030e380ae6bbcd2f681f2a91947fe7fedb3c8e6b5f24dce9517abf57b1cf26cc6078d4bb53bde6fcfb2561591337c841f8f2cb121a3d71661b9

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarA05B.tmp
    Filesize

    163KB

    MD5

    9441737383d21192400eca82fda910ec

    SHA1

    725e0d606a4fc9ba44aa8ffde65bed15e65367e4

    SHA256

    bc3a6e84e41faeb57e7c21aa3b60c2a64777107009727c5b7c0ed8fe658909e5

    SHA512

    7608dd653a66cd364392a78d4711b48d1707768d36996e4d38871c6843b5714e1d7da4b4cc6db969e6000cfa182bcb74216ef6823d1063f036fc5c3413fb8dcf

    Download Submit