Overview

overview

1

Static

static

1

Justice_EF...Q4.htm

windows7-x64

1

Justice_EF...Q4.htm

windows10-2004-x64

1

Analysis

  • max time kernel
    135s
  • max time network
    132s
  • platform
    windows7_x64
  • resource
    win7-20230831-en
  • resource tags

    arch:x64arch:x86image:win7-20230831-enlocale:en-usos:windows7-x64system
  • submitted
    11-10-2023 20:43

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    Justice_EFT_Statement_Q4.htm

  • Size

    371B

  • MD5

    b6f9218569afd910b0ebf32db37bfc7c

  • SHA1

    9948de36e57cd38f5c32a38643a811ed0af64ddf

  • SHA256

    cceaea4326a0f28aadec8619f2abb97c47663ef0df94c4632be0b200749b1541

  • SHA512

    4ca22b5e171f2584b80bf814b8934d81cafbe13a3817e7403b7232388804a3247068a4afc7be82db63b55825fe978035e6d1c695d61dc5d6067635acdc87723d

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\Justice_EFT_Statement_Q4.htm
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2380
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2380 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2264

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    086a36d5ed0149a1b2f3de9cd67340a5

    SHA1

    16db07e4977d71c7d18c38621858ebbcfdc215ee

    SHA256

    350c001503fb65d6758f0c913b6648e94eb0f4c964be3d3ba6faf44475cd9dfe

    SHA512

    709c783a7d8ae397ff9291248be9326f1c3406393bac54a537449330bc5f81a5fece614c96e750903ab004b5a94abf1da18bb97b2f602e571f023c5d07b94b78

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    fcb7f57109702b962c7c27bf311cef80

    SHA1

    b911cf1c653b0d5b2ad071d67868d13b9d3b1f65

    SHA256

    b11de35adbcc0ede33363439b1d1251307b32e60e06c5156774912b180c385d7

    SHA512

    c469942c0b8bb4f4e23c4cd54db1d4d6e9e25d3e0f0399e8aeb5a15707cf022e5bda241d14281fff56adc5d761f3ae735adc8f908663500435defac5ff921655

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    3da48ebdb6a65f3d9d79ef22e6b564a7

    SHA1

    e5dca2a84ed6b0172b421bf47f555b6b4e7d2faa

    SHA256

    26d8954f1896f4600570d181335d7ad19bb3cb6b6dad78ab67e13f9c7c245209

    SHA512

    5e1bae758ee8a169d8b82d859e7352e4759408f32d746613ea128afeccc227e7ff798b478c491ab8058a017e0cc1b70f05324121e030c86f03efbfdc6fa96aa1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    3763aabc45441ad91d68c359ebd950a6

    SHA1

    1ec9a26b5a833bb4e02ca7c7b098c6c1c0ceb2fc

    SHA256

    6cbbb83c759303b79728391e15e2a7ff5876cce255d4791aef644fc988425971

    SHA512

    ccd65a3f3c958426976e3f103c23e14a5203c8d22aeadd2ee78dab6ebfba5901f5d8d13e1dd1e848806df2c6963b3fb96071b78241e161e397bf6cda333d1e5e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    e2873125ac94d25846caf0f9d52c1e5d

    SHA1

    eacd98f53a330a1f0a084f0a49e69b9ab7aaeca2

    SHA256

    6dc755d071a3b58e1c44e09204a507ccfb64ee8568dfa8b9d9cf7315db60e963

    SHA512

    d986c0c6ce8da3d3ff6a10407c2b3de2b39b9d06b9e86425f48bc35bcd30bf806b522bf11850c905c5aec0d98ff56dcbea188bc569d602119ca4851a45cf6629

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    d240aad143281a2e6c0af9cedb36f1bd

    SHA1

    6f79a6e0b27f4237ca6ff62db87166d6bd1334a3

    SHA256

    ed37dc9b0cebec4eaa3d573fffac947d47030909b7b83c064e97151bb9514d3d

    SHA512

    f9fc6ba14a2797eecc39b266d20c89fd134b050b8bc8f20dcf65f9635b08c6b41938ca61525b29c5dbf6fb417125c995f97fad161e951777648c8ce741b01faa

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    ee856d086e3ceeee4c6c6cdcee77c63d

    SHA1

    a4894851b4b566ad9455de6d6aed6d5046ce1e39

    SHA256

    bf9345abf34894b7fa5988fe3644a87e53c9d4e4820ba69a8bc07633997a9598

    SHA512

    5f5886ab81b36914dc0309a1d307e7826b9869612a48f87c5cd9715178e7223eb25cc4d5108351b881cb7c4c99e858c6a423b10fadc9cbfa82f8262cc9f8512d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    b49c44e98ab9a5c14fd14020e5c3ab2c

    SHA1

    fc13f9457406cb3334fba692335e37f655aa4a8f

    SHA256

    71da75083198afff0b914057a6491a8861ada3b678c3652d6336edc8227a9c91

    SHA512

    0155e42e05f1b24b71d60e0ded907dd88674b36a559a57d0d68c63622b967e10f1f886dca071c4d6cc5d04c4718c439294101c7be90667f946bc45bdc7b58826

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    e7853bd5d4d22a7ebd54367e3f4cff67

    SHA1

    560fe491347ff5f2cc9f135d5d73b0626c104948

    SHA256

    c2e3f952a7c0dccd842ee7addbc1c92e6a42d4beecc7c1da1141026d3f76e178

    SHA512

    70ef8a9a39f6bf6075cf686ab61566dfe23decf84f7bc2210b9b6636d8ac3ff2b2de657cd0d78dc86ce6181ea4811a92cedad7996d01526fa0b87087cd64f584

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    b87b3df84908e74dfffb755d1711c7ac

    SHA1

    e408eb7ddae4c1676bebc2a2b363c9043883c130

    SHA256

    db9a7d1d410172cb24a3002bafaddb5ac6da16d843e6e875d27f4924c9d7495b

    SHA512

    2ace7815bfe2ad61e8398849369e1b1708be66f0b3fcd2a0de30fc8c6cc56aace58b0c7b12dd6f889c3af878443c4622046e108a9de83dc6ae03eed3f59b37a0

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    eada9c427b3bf46d1bb8332d594551a5

    SHA1

    f44bc1e13dd9ec69f02828a90b8e0b4c00fbcfef

    SHA256

    18978e06f6ced6977e8617a64fa7824019946a6a7579229b3d4e7bbcbb924f22

    SHA512

    5e474797e6cb46c3edc9c9aabbe0b8d5b68e14f4fae06b2464e5444fc19b90f42b3f596d1088ece9657045065fcbc0ffc1480301ef30ee2a9209273fe7802b14

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    beb0337df19f0670810244c7172064eb

    SHA1

    4477c7621b211ea570896cb3429c8bf44b6d718b

    SHA256

    37dc53b5ca75252d4f31be93b8cef7d26362aa859cffbb317673184e877b929c

    SHA512

    96e57b37098693e9de0a83b1039134636b55167a8f58022b2214170ca37725aa2c8e7df90519c372f0fd73801c328aca8423fddf425dc4f30783eeffb5db9399

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    c8ea22c4a933f5912f452da64a1212d4

    SHA1

    94f53e0b8c2d443086f8de65a118e61073e8b032

    SHA256

    13c8133b5849639a478f541b300c2baf81838bec969201f10fcf8b22bae1a877

    SHA512

    3e2427cc0c2486f80b95d3c96c552ed64c9b4b37f2886e721c28dd597bbddfedfa26b786f486fb42761ac2a29a449f1e201a006c6168f2a22109b50f2a0466a7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    70a69067a8dde7109a05a3dc041e818c

    SHA1

    e5a608839e6f2fb17a6b0053842319438c5ae360

    SHA256

    52534623e7c254ddacb98fe583b8ef648d1ef6539dba03a24c0fa2c09300588a

    SHA512

    f3db5b17efa7bf240855c13317d56b47180a921c262a2cb57b0883628689514ac8609430c92b7e4ca325064ca8e4f86e55de99f9ed470cd22d4a7a17504823bb

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    8a0404ef8d86beb6b6bcd02603ffda25

    SHA1

    a5f9e6d0134ede2d4222a27c67805563a12d663d

    SHA256

    649ec5b5dcac4cd404ee021ff6aca3c8d21275e8f62836dc025d2d402cb1c03b

    SHA512

    12476f5aabc0af0df2dab827564c9bba205f95db7341068eb07a5d4b1d7c0512cbfde440aa40b5b4a3a0e8adee755b7110ac82ee0a22afcd32c03363902cd83e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    4059ddd0d240122f70fbe5832ef347f5

    SHA1

    1f01cff96150d40a5d80812e2a573fd9d03e8d3a

    SHA256

    e20e4cf3d6282276a4947891873e1c7bc591341f65999770ab32c6a5aa371c09

    SHA512

    0c971a39194b5636061dc5a87ea92422e26df8b0895301fd702189e3793d9c60890b536ef4c5dc6117955461d2a3568c3c2a32c9a723d618765088f023828391

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    85a895a0dd66fd2b79d7b636a4055bb2

    SHA1

    34e6ef7344102d50dc54faa78c22082dfb6e646a

    SHA256

    e1140171114185ff3811793bdf4767d58162eca185edf0d402053002ac2024bc

    SHA512

    e5cf8d74cc0208f39a263d2a169bec5a592a4a7c7e182179481c024691d300ffa8cd6715c1415e82ccd2e4c1f26e799df42490418b6f666aa2101e1a6dd2d573

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    bcce9fece871cebb9218c92f6dc65dbb

    SHA1

    a46d56428fc7ae3d70d4c8ce038b8a3c1f4c5012

    SHA256

    3df27b2f9a2af4dd93afa5310199e8b374e98af69a42c8265fef2294d87fcfc0

    SHA512

    b8df95120f30d9eab422235402ec2d3867489fe7b93dde35e1e4a4004982a58e6b2bc1820fb65e348db1acf9eeebe021fd207067f4fdb4e70b6c7ca6734366e4

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab23B9.tmp
    Filesize

    61KB

    MD5

    f3441b8572aae8801c04f3060b550443

    SHA1

    4ef0a35436125d6821831ef36c28ffaf196cda15

    SHA256

    6720349e7d82ee0a8e73920d3c2b7cb2912d9fcf2edb6fd98f2f12820158b0bf

    SHA512

    5ba01ba421b50030e380ae6bbcd2f681f2a91947fe7fedb3c8e6b5f24dce9517abf57b1cf26cc6078d4bb53bde6fcfb2561591337c841f8f2cb121a3d71661b9

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar2CF2.tmp
    Filesize

    163KB

    MD5

    9441737383d21192400eca82fda910ec

    SHA1

    725e0d606a4fc9ba44aa8ffde65bed15e65367e4

    SHA256

    bc3a6e84e41faeb57e7c21aa3b60c2a64777107009727c5b7c0ed8fe658909e5

    SHA512

    7608dd653a66cd364392a78d4711b48d1707768d36996e4d38871c6843b5714e1d7da4b4cc6db969e6000cfa182bcb74216ef6823d1063f036fc5c3413fb8dcf

    Download Submit