Overview

overview

1

Static

static

1

winprofile

windows7-x64

1

winprofile

windows10-1703-x64

1

Analysis

  • max time kernel
    299s
  • max time network
    289s
  • platform
    windows7_x64
  • resource
    win7-20231020-en
  • resource tags

    arch:x64arch:x86image:win7-20231020-enlocale:en-usos:windows7-x64system
  • submitted
    23/10/2023, 04:55

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    9e6bec0cde3f227735787fc9a2e9a8996b31f9649363261903b83b03c58cd0d8.html

  • Size

    405KB

  • MD5

    746c8a74a834307331d00b05f679d638

  • SHA1

    242d8f4573a1a50f22b46c19343f3756fa10564a

  • SHA256

    9e6bec0cde3f227735787fc9a2e9a8996b31f9649363261903b83b03c58cd0d8

  • SHA512

    4cb664b1b9ef8cac84ea0da27e4ae8b9cf794209df8ffe073f37a1481f9b11bb2de7c8cd8587a8136d80934f0fb2f06bb8b0a22c6a4de510fc0a84ce194d178e

  • SSDEEP

    6144:kWgcXSuXnkZi7Gyh+yr5hWxIOOQvxqd6ll:ngcXSuXnkZi7Gyh+yr5hWxIOOQkd8l

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 41 IoCs
    adwarespyware
  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\9e6bec0cde3f227735787fc9a2e9a8996b31f9649363261903b83b03c58cd0d8.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:372
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:372 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2312

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\ACF244F1A10D4DBED0D88EBA0C43A9B5_16756CC7371BB76A269719AA1471E96C
          Filesize

          1KB

          MD5

          2ab95fd13bc92d90201086b78527d178

          SHA1

          7dadd71d0147c32565318109b1bd16da843c1b23

          SHA256

          7990a8ae19ad98633f2dafabd74b4a39cb805a7fee6455e03ef6cfaee3650342

          SHA512

          dc8ed8645c1eda85297ea1422301f80ff3e0f03914aac84383cf3bbf520c80e0b2e107b388d8d3bf4766231ace4a7e72440fe9ef2a8c89a7b9132393d57ab614

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          ca00016873aeaa7ffdcfe21b8b8aa25d

          SHA1

          3d670ce64b4e12b5fd7c191e412f0aec0718ccd6

          SHA256

          01560efc7a9e0425c161d09695211757de87c14dbd11bc901ee5cec10bfdf8c0

          SHA512

          a9263dd8dae8050b99076aa22390e48d5f89ed2cfb87c4ed26d9f85f223f3a75042ff447fe4ec21252403ead7eee6360e5d54f88075b477771d3df135140c277

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          f192cd56c3dac61a8fbf0935638dfcd9

          SHA1

          5e8f5fb263a5c160f62f23e4897ac97009a2d837

          SHA256

          0adf834a0ee02d18825c2a824cd5cdf744ee58d7e9e70551939bbf0f1ce9e3e9

          SHA512

          4e1c0af37597ff599449edf83c6ff1ab32c0cf1f982fd413f96577edb175b07b7ffdf9330952f06bbf6580539bde0ca643c9bf1ccf4c15acf5711a1e5cd07f02

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          1bcf0a194423ff3df4b8e048062bf53f

          SHA1

          f8ba7da1fb2da65f81b21f4a816830c3d0c90f0f

          SHA256

          cf88c310c598de94b31b237429b19b2b3d63df4ef9637d72e4a4e451b31d047a

          SHA512

          4bc9849dcdc494b4498b3904b73128238db13bffe6a1f305b97bdc13fe254739e597535cedfcfa3a09176bc1ef5ec8f19c61e76df2ebd7e76d28d5ca27a6b67a

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          6bf46f6160988a437ae8be71af640a7e

          SHA1

          7156d5bacb5603dac4173f1c22a01f78e2ded3a2

          SHA256

          91ec1b345b67e33c94c5702e904c276d761419a4c45f87c2876061754d60894a

          SHA512

          3a103bfe8e1afa64490e8a72d8ec0a50fdd9ffb15b4e70778fab500c99f60299416665123bf7abdd420985c90205f5b7b35d123eee843fd992d280a796d7eab7

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          43381cc134a226fc77a2dcd41ecb008c

          SHA1

          bf04f18563e67c40bffc2f29bd693c94ed8f5c5e

          SHA256

          7b9d5a2f953a058cfb3a09f15b13a7897275a1e9f30dba162faf4e82e274f018

          SHA512

          72f2a4255648aad92648d9d503346d5182e2bbc42187d31640a7e3f083fd00a93b179b365779507a429df89faa3e0ebe9a33fc4a49e058d216182930c6d67a59

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          724d10587925e08476454e0efbf80938

          SHA1

          4de4be8b094cc69a87a39d6d64b2de53b0ffe64c

          SHA256

          38abb04daaa2f32f85d1b450a64af7baa53d009cb11729f9652c97dac3beee14

          SHA512

          15134c79e6580ac018759266d8dfda89f74abda419e7c3c1cb6208ad8b9a6ba042f027f0b7bff617b03f54aec7f8bc3a243dd6ff105bf304820ef402f2235f8e

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          d0a04256f0d4b7648e150e4e53a3e139

          SHA1

          7f9ab3d032f4cb437af10353f00cbccbcf82693c

          SHA256

          65545fe109e1f54c3b07203fc2792c1d4527005c0792063df7fbf26532c237b7

          SHA512

          f9ff9d4ef643d313c67decbfc68f600ebeabba3899cad9eea20c4112492fefc95874def64775b07dcbd85504a0cf6d74bedc51dd166ae63216db51be27e95a21

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          9df9afde7e6fee2612298223e92a0438

          SHA1

          2f77dbad8b236df035b6ee771778499a4f90c76d

          SHA256

          ec47123b7a427979b2cf47efc104caefcc1d878e71a1d1ad35bfd8f4812f93be

          SHA512

          777f14e1b02cb5ff0ce6e50b328dd4136db1f2e26c1cbdc49238b5243758ba475cad4480dd82ec6996873f0f09f00a4866cf400a7e69cfbe345d56af4cb1886c

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          a76375c6743b6c5f8014a3e476ae929f

          SHA1

          f6e9e5c0d5f787a79e35a9810332cb213c5cb238

          SHA256

          deb97e86e841112a76f0bd9c4c45cb6687a32adf8a4a76ad1f6a1e5fd374940f

          SHA512

          5be2c8eda9cada242ec1fea70b00fedd900bcacc73d69a434057f561b603596cbd2633962ebac33c557784201e73471faf73c69c89279970904380c6bae1343f

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          f41ab2f79e07ed588f91e9406aea200f

          SHA1

          1f637eab1eeab3874f3300e004c3f4f5fde83910

          SHA256

          9214c9bba0014a5ddf9516568405ce220ab5eb0d12168ab793e9b4534ef1da12

          SHA512

          1cfba526fba29333ac6fbffd953d0324928c3c16e6bb3cd7d2df63efc1416d2c8101487a43435e74d96c6de27c40134a2d417242cd60e43b447868a3aae6729b

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          072e13c3e1cf1b4de69c8d5f31196e36

          SHA1

          599ebacfb21783d2c1bb0f97f1f1221d1a3220f7

          SHA256

          ba73daaf9fb9384e80ea54ff77c25906fdce0b0beea00df92fa4eed43ed5d821

          SHA512

          867936ac1f3884108762a8708d0bbd078098202148002d62db3f312b38216ddbbb8be4563b55e5dfd3fcc77ac52c9bd9a9094eeb6b961373dfc615f7777c0599

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          82971a9a0c09a8f554654c6b5aba9070

          SHA1

          9f2fca5bf18b91d529cdddcc34924e2e711736c1

          SHA256

          faaee116fa86b4ba1765ed4714d59a5fa5767b963cc57e0a9e9e82c5c0052ac8

          SHA512

          18e2fd89b5d3ca1dc47870c7edf8a7bb5906079ecfd4ce396c74f97690f8d739e79aeee994e4d5fc86d996a30e35908666776c95de63fab691235502033e657a

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          660b2db65d6f244d62968fafe99af043

          SHA1

          379e5cef5a0c109dc000e159c395da651d7d933b

          SHA256

          2b736952d74658413ac1253c2d822f11630d73c3eb113101154833e01029726f

          SHA512

          52a1f3aa12abeeef22e3b9e3ba3f280a9a9e02219f9af815a48dab9ced57420138e1982a7090b8fcf3af0266b0e9986b0e9e1d999b4f64b1f283612e038a41af

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          6b49279fe6e22000977927bf5130eb5b

          SHA1

          ff3e0d6919b0dc02ed06a3dc261a657b13d994a1

          SHA256

          35ea825133d01fa5ac16fcd14cfa85704e16c5e4104927a56228f8ba6f0eadaa

          SHA512

          504eaf2ef8591e3b748b3733ac499a4ba01a39edc2663b301ef5a21ca87195ae178277327aa543041c26c41cf44ba7f6346d853947ff76c3ce36c76b30b5fd64

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          0454b4cae6ae3e5497b435133260ff4d

          SHA1

          4c3502614446816c240f4ef6516f0a4b38ce5bd8

          SHA256

          79f02c9076fbfeaa14c3bcfdc1cfdff9490bd75640c93db162e60dfde380c29a

          SHA512

          ebf2def1188d1035f373da8e7461cd03b8ef5fd9cb2cf4758f46aa166ecc0ba2001b28e1a7106c9e278d28a6f8d64b6ca4c176c4ef66bed523de706265e5c0b9

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          b4a37b316f2fd835fd513569f676ef69

          SHA1

          f032f40ff8b12e0f38832e98d6d3a3fa24ed9dd8

          SHA256

          6e3caac864ff2073270d83bc17f47780ae5072ca74e49f690d3993d17d409fc8

          SHA512

          f1a74cb5d9de423615ba4296c73a89efd7da1bcffc341c67d8ab644cc8bc14fbcb08c248a3fc078a0dbc8ee63d2a371627485d645e27201585bad9c23e34e81b

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          009f12d5ffd834c86e752dd51ccc5fc9

          SHA1

          a5a461a5a7eb302297eb01ba6226cca30d7e2e58

          SHA256

          6972e5109e79190973d2d81c9ecdcd0bf85125a046af48aa3b8ad6d7d67caae3

          SHA512

          9bf870a638f15329cf9a3a57d62bbe2bc76dbfe12b8cf062ab5dc1e3be0bdb65a376ed1e646548fa432884635fd0f6980284e7a297c2006936bd14eed5bd4551

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          8fdabbe228215b1ad9de1801b6ce0c8a

          SHA1

          f4f8bc02717cbbae4224ddd816f4e29c3649bc67

          SHA256

          25146b0d7de952e1e11aedb7e778a15102249c4bf150d1ad37c53d26e83b9e9e

          SHA512

          97977b5346e08b17f4a5977e8623001f85a99fa6ba95345e111fe2b9b7b4054c2828651da0e68c8dbd08884653beb469f1dd54de3e485f1e38e192e591c8d472

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          fb2d24e1ba956bccc8a0544938c2bbdf

          SHA1

          a2d911cf28c0a8482149ed3f13e45656a9a95e3a

          SHA256

          2c11a90cb5c25d0a11cf29e7b3d1300b31fc1a62c1eb8fd7de319e77001498bc

          SHA512

          f60f81171ff74350a186a4dd033ef957f33eaf0efe4d49833d0809a40fe0b85ed3602f250f95b1d49ca7a71f838bcfc10570c0f3f6f73525062230abe5b3e12c

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          c92092caf9bea12e86d26a7490956cb1

          SHA1

          a06560ad597d2c41d6d34689463e8a18f41a78ae

          SHA256

          16236d94f9f7e181c9939d7a659af7bfabdd920a06d39bb0cf74911951c99728

          SHA512

          70f81cc98a4b6d2fa5a3d70f9a2f9be96bda1d0ca84e1052ab916d642c45f5e89cf1a7a6c9f170355e2566e14678eb87a86c12607a7d1664d42efacdc60db6e3

          Download Submit

        • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\ZDJKTMWH\likes.7965f6735e8e39fbbe73[1].css
          Filesize

          554B

          MD5

          d11928ebd8a1101a2d6b4476ad292606

          SHA1

          e369a7d65299feb97d8c11525d8c831cc463c63f

          SHA256

          7bab9c45d7c84255c431ca155530532d5ea19f30bcb389db20f7edf26a5cd43b

          SHA512

          f3999089fdd2719f70bc2999b1b282452add77eae62c4c55777ccb376bd0d0a3a738e2492301a9816df4885f2693fe47a9539a31ff47a445b2c86a1b8a6cafa1

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\CabF337.tmp
          Filesize

          61KB

          MD5

          f3441b8572aae8801c04f3060b550443

          SHA1

          4ef0a35436125d6821831ef36c28ffaf196cda15

          SHA256

          6720349e7d82ee0a8e73920d3c2b7cb2912d9fcf2edb6fd98f2f12820158b0bf

          SHA512

          5ba01ba421b50030e380ae6bbcd2f681f2a91947fe7fedb3c8e6b5f24dce9517abf57b1cf26cc6078d4bb53bde6fcfb2561591337c841f8f2cb121a3d71661b9

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\TarF339.tmp
          Filesize

          163KB

          MD5

          9441737383d21192400eca82fda910ec

          SHA1

          725e0d606a4fc9ba44aa8ffde65bed15e65367e4

          SHA256

          bc3a6e84e41faeb57e7c21aa3b60c2a64777107009727c5b7c0ed8fe658909e5

          SHA512

          7608dd653a66cd364392a78d4711b48d1707768d36996e4d38871c6843b5714e1d7da4b4cc6db969e6000cfa182bcb74216ef6823d1063f036fc5c3413fb8dcf

          Download Submit