Overview

overview

1

Static

static

1

OEBPS/Text/1.html

windows7-x64

1

OEBPS/Text/1.html

windows10-2004-x64

1

OEBPS/Text/2.html

windows7-x64

1

OEBPS/Text/2.html

windows10-2004-x64

1

OEBPS/Text/3.html

windows7-x64

1

OEBPS/Text/3.html

windows10-2004-x64

1

OEBPS/Text/4.html

windows7-x64

1

OEBPS/Text/4.html

windows10-2004-x64

1

OEBPS/Text/5.html

windows7-x64

1

OEBPS/Text/5.html

windows10-2004-x64

1

OEBPS/Text/6-1.html

windows7-x64

1

OEBPS/Text/6-1.html

windows10-2004-x64

1

OEBPS/Text/6-10.html

windows7-x64

1

OEBPS/Text/6-10.html

windows10-2004-x64

1

OEBPS/Text/6-11.html

windows7-x64

1

OEBPS/Text/6-11.html

windows10-2004-x64

1

OEBPS/Text/6-12.html

windows7-x64

1

OEBPS/Text/6-12.html

windows10-2004-x64

1

OEBPS/Text/6-13.html

windows7-x64

1

OEBPS/Text/6-13.html

windows10-2004-x64

1

OEBPS/Text/6-14.html

windows7-x64

1

OEBPS/Text/6-14.html

windows10-2004-x64

1

OEBPS/Text/6-15.html

windows7-x64

1

OEBPS/Text/6-15.html

windows10-2004-x64

1

OEBPS/Text/6-16.html

windows7-x64

1

OEBPS/Text/6-16.html

windows10-2004-x64

1

OEBPS/Text/6-17.html

windows7-x64

1

OEBPS/Text/6-17.html

windows10-2004-x64

1

OEBPS/Text/6-18.html

windows7-x64

1

OEBPS/Text/6-18.html

windows10-2004-x64

1

OEBPS/Text/6-19.html

windows7-x64

1

OEBPS/Text/6-19.html

windows10-2004-x64

1

Analysis

  • max time kernel
    134s
  • max time network
    152s
  • platform
    windows7_x64
  • resource
    win7-20231025-en
  • resource tags

    arch:x64arch:x86image:win7-20231025-enlocale:en-usos:windows7-x64system
  • submitted
    04/11/2023, 19:11

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    OEBPS/Text/6-14.html

  • Size

    8KB

  • MD5

    891d0467b142dd779ce6867a941fbe98

  • SHA1

    6e943aef7bd43a50c0a31a8117aa6edfe4e282e9

  • SHA256

    f021cabf83f6175d17b14ef917455f75eabc7825de9d8c809ddc2b27fb7c060a

  • SHA512

    1965cd708982801aea53d581ad249d91ac9ef41f13ec8ac424c9995f9318fbc1b9ac111fd6fbf229e998b434745606185f4959887f360b134e449f93969099f0

  • SSDEEP

    96:kfoUNl2dTQAs96NZuNVhjK5zDfOn1tL5ErjP8R8GsL5qHR4OTA+w0XX8AfiAffSS:1jpQlaYNVcHOP5ErbqsFsRCwcglDEHhK

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\OEBPS\Text\6-14.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2620
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2620 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2872

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    9a3ceba1614e6ba525d68fd8d501bb2c

    SHA1

    2c76a4c6c0c483b3d9aede99c65043a767b7cfff

    SHA256

    ab2f10cbb05418268166c5798ca4ab3b5246a3e8e9429dcbd4e67bb9c3e46db5

    SHA512

    08fc2c5c7f60d2edf4b6414df52d79f698e7b22a826b8b9a13e618754d76c1d9036ce0f50b9c31311a98c10d72bc3f167a58f87f622888d6fbcb07860d1a73d4

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    00a1f65286cd772770dad513b76a8492

    SHA1

    87815caef321a89dc4706f3c87a798ec8149f850

    SHA256

    6c680837cb96dd85e33c5a74f13172dc46f8b80f2eca1975b33d9d78807b562b

    SHA512

    9685677629c2f4d5e75d54300a15863ceb6de9730629e5fc663f4f0551ee9c5575d1e7d69538407e26a8c6b1571fe4351ae0b9d36758ce6e2864f96c00773594

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    bdf0486411bd4b1a3f53045ac994d413

    SHA1

    d17fdbe4062b2e7ea5f8a4e3efc69a8c2dafe2c1

    SHA256

    c28ccc42c65105896f6842ac0747f4dd73831157500a56743f28d9e85de36755

    SHA512

    5796d79c637ba65b69e4762b4b1feffa4c10c76a626e8248305e51f1c53c764a55e85af497120831138390666e015df99f718b3cd212982d4c8cc62d6cd4b681

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    50dd9ea01fdfbd576dbbeab20e4286af

    SHA1

    248538fddc6833d35b80b7510bdc59ac667a77d1

    SHA256

    0e9fd352eeee61ed24a82549e9defd09bda8c192e93a13c9b9d7bcac9cc62f04

    SHA512

    2cd3e3d5b002d9b13bcd4d02d9e54c444c3a0c7adbd621a6cd6d4fa0076dfe799a1a2aeb92de50aa083040083c778264c6722bfa15b93419a3195539c98578ab

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    6b1b7eeab86b4c1eb15c3a432fc67119

    SHA1

    696a6425b9feddfe5cfae482657934f70d749944

    SHA256

    6214c4ad5f108d9a798cfa21862b783ab4884eb73390d551c911b642ffe7947d

    SHA512

    3aacc3ab0ee7189b39a37d5a6baad8c7b7e0ef9e3c673b085524786dd990bfe62f855e5f320c731f785d79f19c9679597b54a65fe8f3f0b6e681738d649e497c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    4fc565395ead43ee2e70429feed8e94d

    SHA1

    f17e51c864402f0eb89b49a0768d9163fdd28930

    SHA256

    4b6baab94b2a270d225e443f28e196ead28e2cb53e49b1aae2b2d8833ec711ea

    SHA512

    786cc7bf93e0165822042f53c42e06b77400d73366e0bc4f99ec3149536cd891253897bbabdfc34721ad3b0b8eb9de6eec2d1de87b053cdaccba01ca75e6542e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    6445124e0202392d58a68c13b207a36f

    SHA1

    dbf691648b44c1ab9465d3ea85134705365b51ff

    SHA256

    5c1f9d7abe0d315fc7db5fe5a239369e2ee35a18f785ef7a8b2c74df0a958a26

    SHA512

    71d5749b924e6b2d9fcfc625e6c23863409bbc60521b6dfde409df00063618a6cbf78dab5942af62adeab42059b215648de744d11989b4b1c5c954d7842fc6c5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    bfba7da87b3785ea15af1e0f1b25a53c

    SHA1

    9088c0f7c63bcb9b0180f091990ae6e7f9b90ed5

    SHA256

    684e3b8fb0c8fb81dbc1feb602acc1606996d3850c2da7d08473b6406120f4f9

    SHA512

    2c1c8dac256506a8e41b3dd5a480a5c8823e30823b04785e9e6e1250dea3fa3e5716675b2202553efddf8be07a8d889cecfa5d100cf33174cceecc1efb7d3293

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    bdc5a3cdd0f424e1988556ceba996f1e

    SHA1

    adcdbc24dabdae7a1fcb2ee2ae8020151c578dfc

    SHA256

    268029c15d59ce87535093a2b2bf752b81ebcb244936ca1d34e280c6f5c93038

    SHA512

    07b26a2f8aa6bb543647ec2dcc0474a418585b24954b29d41de2b1a0ca02270fb76816b574613c5f98ad100994d237b3a6953a4b7850e51028dcf9e3160f5cb8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    7b26e624ab35ed64c506f922358befa4

    SHA1

    d4fdf164d0e477c7c4d7b29c6369595b196814cf

    SHA256

    470039474b05ba209bb44b6f1a528e14dd5cc9b258d3107baa4fbc6c7ca47a6c

    SHA512

    21ffe475f8f15f8db171be2d86d2d611b91c152789795878a0d4678d32a764b69da989ea0ec9a5b929b1f8e420c47a7b56d159cea7a4b7ac613a71e518787018

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab93E9.tmp
    Filesize

    61KB

    MD5

    f3441b8572aae8801c04f3060b550443

    SHA1

    4ef0a35436125d6821831ef36c28ffaf196cda15

    SHA256

    6720349e7d82ee0a8e73920d3c2b7cb2912d9fcf2edb6fd98f2f12820158b0bf

    SHA512

    5ba01ba421b50030e380ae6bbcd2f681f2a91947fe7fedb3c8e6b5f24dce9517abf57b1cf26cc6078d4bb53bde6fcfb2561591337c841f8f2cb121a3d71661b9

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar941B.tmp
    Filesize

    163KB

    MD5

    9441737383d21192400eca82fda910ec

    SHA1

    725e0d606a4fc9ba44aa8ffde65bed15e65367e4

    SHA256

    bc3a6e84e41faeb57e7c21aa3b60c2a64777107009727c5b7c0ed8fe658909e5

    SHA512

    7608dd653a66cd364392a78d4711b48d1707768d36996e4d38871c6843b5714e1d7da4b4cc6db969e6000cfa182bcb74216ef6823d1063f036fc5c3413fb8dcf

    Download Submit