Overview

overview

1

Static

static

1

winprofile

windows7-x64

1

winprofile

windows10-1703-x64

1

Analysis

  • max time kernel
    301s
  • max time network
    165s
  • platform
    windows7_x64
  • resource
    win7-20230831-en
  • resource tags

    arch:x64arch:x86image:win7-20230831-enlocale:en-usos:windows7-x64system
  • submitted
    15/10/2023, 22:17

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    021e9a53fcafd58350a09245751f1127940abbbb4a13717d21f9dde5ddaa7362.html

  • Size

    399KB

  • MD5

    1552a6fc2bc48e871d98f14246a7005c

  • SHA1

    b2b57fd7e855b47998c496cf00119d089721d864

  • SHA256

    021e9a53fcafd58350a09245751f1127940abbbb4a13717d21f9dde5ddaa7362

  • SHA512

    a1935698f08d17267360043685c55888851bd3ca9fb91f5c2a8bff737f816c0391733af197aab29f518c2991ad3f80d7bdc0cf18d3ad86825679a144d2eb0027

  • SSDEEP

    6144:MWgcXSuXnkZi7Gyh+yr5hWxIOOQXx7wcR+:PgcXSuXnkZi7Gyh+yr5hWxIOOQdwc+

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 41 IoCs
    adwarespyware
  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\021e9a53fcafd58350a09245751f1127940abbbb4a13717d21f9dde5ddaa7362.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1616
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1616 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2668

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\3C428B1A3E5F57D887EC4B864FAC5DCC
    Filesize

    914B

    MD5

    e4a68ac854ac5242460afd72481b2a44

    SHA1

    df3c24f9bfd666761b268073fe06d1cc8d4f82a4

    SHA256

    cb3ccbb76031e5e0138f8dd39a23f9de47ffc35e43c1144cea27d46a5ab1cb5f

    SHA512

    5622207e1ba285f172756f6019af92ac808ed63286e24dfecc1e79873fb5d140f1ceb7133f2476e89a5f75f711f9813a9fbb8fd5287f64adfdcc53b864f9bdc5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\7485144A5B4D372ADAA5516E91DBB900
    Filesize

    1KB

    MD5

    126818e8afe9ee24d1376a7fa3de5c85

    SHA1

    468f286222c40fa0867f6ab2cadb0f874a659d3e

    SHA256

    55e4de7fd0674d8480b6451c40bec1b17b4bae904e96c70922e08ffb433af0bd

    SHA512

    219b2fa5c0d4ef3988221f7262e4a0c49b6e86f0b222cce8da86ff8833bb4943efc6e96b84975f36b2f82326083215e5aac551af56384aa1f2a78ceff342ecbc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\F0ACCF77CDCBFF39F6191887F6D2D357
    Filesize

    1KB

    MD5

    a266bb7dcc38a562631361bbf61dd11b

    SHA1

    3b1efd3a66ea28b16697394703a72ca340a05bd5

    SHA256

    df545bf919a2439c36983b54cdfc903dfa4f37d3996d8d84b4c31eec6f3c163e

    SHA512

    0da8ef4f8f6ed3d16d2bc8eb816b9e6e1345dfe2d91160196c47e6149a1d6aedaafadcefd66acdea7f72dcf0832770192ceac15b0c559c4ccc2c0e5581d5aefc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\3C428B1A3E5F57D887EC4B864FAC5DCC
    Filesize

    252B

    MD5

    56b086da6146b9a7babe6798525027a9

    SHA1

    48ba815fbe2b34befb6d1f4945601c7149d1a4f8

    SHA256

    b0ec9a386a0bf13c58699ac8ee169a16304fae8d255cced22e5fe1e80e20a8fe

    SHA512

    9b78b793d4fa976eaebf21ad7bbfffe51dfefaef05dfea9b87290100e5d6ba0975b9a51c04e7e925e9fcbcbfcaebdd38a0a66049c1c70269bef4fddcbae833f4

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\7485144A5B4D372ADAA5516E91DBB900
    Filesize

    532B

    MD5

    5872f6792542ee6714bce8d70950fa0f

    SHA1

    e5c0ae2a76228015427dadfed6fc4874022ce5cd

    SHA256

    efecb7b83c413d16ef9947ef614d75651747c8e9dd1fe443537514667f0cbc8a

    SHA512

    ef510a4dcd904b2e4f8bd620f27dc55065665534ead10769ab267814126227e99a9f787f0311f1a0bc17df3105e6693e50aef35e5515e1622465e26f55f1219f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    55fba58e87c0a41fabab620b6b6bc2f9

    SHA1

    b2da88f0313841bb0387b28c50cd4ed6dec5b264

    SHA256

    19bad9e5e9347b3d2fec0ad8d1f8407017c0476fae3ca7663311f2365b36769f

    SHA512

    3c3c5af9d19ddf98e2a95be08c3229523797a2f8edb1a3d7b186c8181d6d34512b2ff88ebadd9e81f3b85642dc7b813469de64aaab970911521dec1a9ee223ae

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    fbecc7abb12e7add144b22fe25b96136

    SHA1

    04665d421f46d05a9ceb83a85908d12a5614c9cf

    SHA256

    e94c5a3d769a60dbcae30d391c93c058d02f7cedbbc298589cf216c80bee5398

    SHA512

    c97d2c6746525f01214570b632f02426ecb761048cc9feb4684e10145dc3cecc892f63155f503a4e0157673035879def0744d3131b3bfa838a94cce8f6f780c7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    5187f829f742def04d85e9d52a21b0e3

    SHA1

    164effe5577008e169f441e189ef0d969f560ea7

    SHA256

    461aeca880cf35d2c0033117f2f022df2efeb1eebfae29418cbbfa7a6ba52f8a

    SHA512

    4ef5ef5c5af231edb47a45fe658f6c8e206a2c49fdecae60d46556d032060e33dde068e490635ae51fd7dae48be0eaf25c936fe6c2f98136304c8d5e2f8c36fa

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    bb796aa1c1eab52e3987fe49ed30722d

    SHA1

    fe1a9bdfbeeb4ea004343ef61aafc88430009a33

    SHA256

    e2e49d09fcac23892766ed337ba63b57bcf34c4b7220decaa93225052ecc45dd

    SHA512

    9b114ec2f81e816999922d856ca73ac56ba1513e3581e27ffa12ba4e73a5f346017b7ad50a1aae9ea025920b05f339ac2bbd35b2270667689d2da9504ecdfa0a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    f79b7365ca5cb6e179f71f7280e2158d

    SHA1

    02ec3ad747e30253664b6329b97b67d988789594

    SHA256

    cb55ecb18b6b52ecc1e259128680f32f76bc861983b66103bde618d8aeb0c258

    SHA512

    c1aa7121638c67ceea40d689fa449c38866abe33d2f36a5a3df66977eee7c4df6e8bd3f37e9aea4095b833d06d49a4b65b27ec415d8773ae72331fadacb84151

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    5da97df39dd42510b6cc65831065f6fd

    SHA1

    56b5527c34122b529410774c91645a4872f0d0b6

    SHA256

    6c50d553ad39bf0db00916a17ca0ec7ed145b6e83af66f8ef9c5a647c5251fca

    SHA512

    f7ddd70dcfd982b1c3a36be3f0a0b09e18e068bf6bc92529c3d0dda04045db161cf9ea91c94124de056f08cf07d35c67bbf58a4f7998426a7ecdd7c6005993ac

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    897742d2c96fcf968f8fe2f294b81b3c

    SHA1

    881333cd39ae20e7051d19241bdbe0119713fcb8

    SHA256

    07dfc61affeb7f4d047194cf52529f3ffbc1cf8d0644dbd0c44e954448479015

    SHA512

    f30a8dad3ea4d0fbefa381b7900e88b76eee1ecabc39c1018a0bb65941841a99c4f70dedb25e7c93de6b912c348faf9ee2b37ed7caca44a310d2bd52a275d649

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    88733ad1cd6f1add7d3377d31314a438

    SHA1

    84e48cc77ca0bd24f786fa6ea4216d4b18b0fb4f

    SHA256

    e9128d12d9c72189e7ab5346293601237bb9338d77c85db3c23aa617a11aed76

    SHA512

    771e16fa3886ddc6ed999eec4cc6d4d99f598bb68dcaf83d98305797e798d85c27ee2c4d6a962cacfb460e7cdb9ed63832bd09079d2f403f86709a29c5da2c70

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    d7f1b43650085c471b172f79d9507c72

    SHA1

    335e915d4ad970d4b543177c2e58387986fcf82a

    SHA256

    8781370c28a3c4dee5c16d9199901be5dc481b524ba035f2f738e3d1ebe249aa

    SHA512

    f685af46c6d210839c1bbe9731673a527f0c86c556667241fb8515aee9eca554a54c0fc057c9a0ed1602fcda903a58a497c3852dd170ac83275c2ae908122044

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    f71a3ae4a5d305474e6989bba602bf61

    SHA1

    114a8b0938a5272cda5ee556b7505cf91cc9d7e1

    SHA256

    8ad29758c3817dedd97ecbffce118873c33a18f58f27bfafe6a1b53d0b5ad6dc

    SHA512

    6b4cea5c16535f052cf6b9ebf827e13eba3d5b57e904f9b1e4da31e26d178a82e111b36fbb3393ecf9d473a1082cf1196a43786b4147f3330bf5cd6b2612aa2f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    d5be8917845b56b602c9303e55f57752

    SHA1

    77e97338451363b1825bef2f5546816f94f3b412

    SHA256

    da7d7416cb628d72a050f680f04b95e280bfe180dc8db21217f01805ef380d67

    SHA512

    7e31de2bfad522a2a3088df046eb058b045ab8e85f9c8f89b86221e09e60a2d7ea336d45d4f36660f2a31a017f332b7d3b2dc69a910d007fefa1582831113555

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    0a64583aa6052b713a6f1db8e2370189

    SHA1

    3fbe09daf2a4cda4069252adc9e68eae20e85b15

    SHA256

    9d78793ccac2cbfe70f31564f45ba703599527d754df91233b5aaef6b260724a

    SHA512

    46c66f9f73d5d867f6f36c9b6cde600f283d63136b4ede7e5052e89a02508d912bac8c62f8fecfc761a52973359621cf9129e1b9b58c5452701f816fb128f01f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    c81000d09258eef68d0faf3d4e7d6301

    SHA1

    d4e988f494f16a4954a2a6f28d2b6f3da0f53802

    SHA256

    576984a5150290cfdcfb8c34d3b0018a8a830d233a88a43d27651c752d2eb660

    SHA512

    dc8ba73f455e95442911ce2205200faa60dc8c48f55cb4c1f93029c25e2ed02a669b364e40a49013d51aae48b7a65803de15f977b10e55b8c6ea7151ef5ca10e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    ceae951a4de04e0c27c1d1a84c38fb61

    SHA1

    902049f1e19d6b04ebc5012c36ab9fc304e60b60

    SHA256

    7994031b95e687942a3e31023aefcd5c9f74447c8307ba92f40afd2d0be8d7fe

    SHA512

    d381840534b4d03628dad2db6f5dcd45e1f489d256083b51b0dd9c5974c7343ce3813f7032f15c0d507287f03fa867e5df27c026b87770704dd0b8a524b76a48

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    957e4d3d71b9741816c27d554724504d

    SHA1

    ada6884054e5c688e8808c454ff29fe9b61cf3ce

    SHA256

    d9fd1dbec65fcf4fbddeaca91b686874e997fad207b526fc7cd04b2e95966767

    SHA512

    46ebc38bc061c2a84b062facde06e0870cecbe60a7df6d9f61a90eefdb35d07d34e131aa9fc68d0be8433ca40bd71fd4d8d82e1ebb5d0b11350709d4e3f28c70

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    31c8895f29058555545ee04fcf8043f7

    SHA1

    984723fca0764091c1e2f2935497f007bcc4b0f3

    SHA256

    cccae008c20a13219806ae48f70d2ab83119654ee97e818c28881cc9a6da0542

    SHA512

    87403eace3dfaad60a22dc245bd4a1c37e6baccf565b9468b9d25f6941b46c739c906dcb7705c982e7817647056d5bc44b1472ce35ae952c6a759a998ab41d4f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    da643aa6968c4e812425f116408a11c2

    SHA1

    8e18d8a07a88fc8d8c04c77ac53c7ee1297bc8dd

    SHA256

    d0d040b15f82464abab5ab056e8c5b23fa3ed4c33615e333cdd6b362b131f29d

    SHA512

    bc9c42b1fad8a79814ca6c4df4697fa6550d6e7fac45a5bf05ff04e7dc4f6810cc37873eae20c9d23c697e87b4de24d0fd459dfe3994b9b4664a6aafb6d8cca4

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    058cbe750c8809f1b8f73bce3efda06e

    SHA1

    a1f793b02ab150497f776e40fd2002b75c189806

    SHA256

    c14518c890126018d3f53aede37a2f53c64d0f4e9ffcbdf90a58b017d061e9d0

    SHA512

    1f97f78d95fb1161355002ce53f0c3bbd7dca6b66c5192f33cb2a16fb9ebe453b287da02e4ac6e40d5a16ca596e69fd9cb12647d84fbe9368565544648f26369

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    e66e386c8deb7fd38a5dad36142d9a01

    SHA1

    22fe75e95c651cc05f2d2678ce8c1e87ebe26e91

    SHA256

    914eb8fce0859011ae11ad0c3b12c9755941b44fa76a1f36c5c47844ca8b9e12

    SHA512

    1f6c1c2bd94036cea3464412160892614c1cc026ee52cfdbd2c1bb3fec677a6141b279f1caa33af5853989e226b3bb2030ac8257984ff30372d8655e832a6d1d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    08d5044125a79ebce5780d89a3afc124

    SHA1

    806a53e8b248e6ed61a297c62124e19163f0c888

    SHA256

    163ee25c2579e3af10458135bdc73f0054db2ed322d3595d3c3b26822681d5c0

    SHA512

    bf6bb94b4408cbb9322e9d67e22dd3deab7836d7f28e5a5eb696176b3a557799e41aa427661d177215f31a48fcbdb1c01b3f311d12660b69dde6c26aee43cf45

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\ACF244F1A10D4DBED0D88EBA0C43A9B5_16756CC7371BB76A269719AA1471E96C
    Filesize

    492B

    MD5

    af7e5c0cf069c05f3bcaad5604bf8e80

    SHA1

    b1f857746a40ebd890203725bbe3fb899b85d201

    SHA256

    e58c99e7a5fe29345fc3164a36eb4639c90a70163166356bd1bc08d17ec59ebb

    SHA512

    80d18a1823c440c8631a586a7831546204c3cf168610ae6d27c20b02225535945d6f4843da4be41fa46ca39d59d99dbd2ba1701603171c2b4505e0daf7393904

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F0ACCF77CDCBFF39F6191887F6D2D357
    Filesize

    242B

    MD5

    4527eaf92dc0974243359c0d8bd04df7

    SHA1

    c93eb9155334cb47b3434ef07d4168c371f1647b

    SHA256

    a64b38b39c4de4789946d95fa63da0eddcc22dcaef4919da6a069a3f378c8b12

    SHA512

    a61bbc73c00582d0b284b1fb2826b94e4f78a68f86a6d9e053a9de54e82b1ab1302c214638c39908d431ae427b5cbe92962c2cb333de8899e7ea81d8a5ae4eab

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\R1YQ38W2\likes.7965f6735e8e39fbbe73[1].css
    Filesize

    554B

    MD5

    d11928ebd8a1101a2d6b4476ad292606

    SHA1

    e369a7d65299feb97d8c11525d8c831cc463c63f

    SHA256

    7bab9c45d7c84255c431ca155530532d5ea19f30bcb389db20f7edf26a5cd43b

    SHA512

    f3999089fdd2719f70bc2999b1b282452add77eae62c4c55777ccb376bd0d0a3a738e2492301a9816df4885f2693fe47a9539a31ff47a445b2c86a1b8a6cafa1

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab7428.tmp
    Filesize

    61KB

    MD5

    f3441b8572aae8801c04f3060b550443

    SHA1

    4ef0a35436125d6821831ef36c28ffaf196cda15

    SHA256

    6720349e7d82ee0a8e73920d3c2b7cb2912d9fcf2edb6fd98f2f12820158b0bf

    SHA512

    5ba01ba421b50030e380ae6bbcd2f681f2a91947fe7fedb3c8e6b5f24dce9517abf57b1cf26cc6078d4bb53bde6fcfb2561591337c841f8f2cb121a3d71661b9

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar743A.tmp
    Filesize

    163KB

    MD5

    9441737383d21192400eca82fda910ec

    SHA1

    725e0d606a4fc9ba44aa8ffde65bed15e65367e4

    SHA256

    bc3a6e84e41faeb57e7c21aa3b60c2a64777107009727c5b7c0ed8fe658909e5

    SHA512

    7608dd653a66cd364392a78d4711b48d1707768d36996e4d38871c6843b5714e1d7da4b4cc6db969e6000cfa182bcb74216ef6823d1063f036fc5c3413fb8dcf

    Download Submit