Overview

overview

1

Static

static

1

OEBPS/Text/1.html

windows7-x64

1

OEBPS/Text/1.html

windows10-2004-x64

1

OEBPS/Text/2.html

windows7-x64

1

OEBPS/Text/2.html

windows10-2004-x64

1

OEBPS/Text/3.html

windows7-x64

1

OEBPS/Text/3.html

windows10-2004-x64

1

OEBPS/Text/4.html

windows7-x64

1

OEBPS/Text/4.html

windows10-2004-x64

1

OEBPS/Text/5.html

windows7-x64

1

OEBPS/Text/5.html

windows10-2004-x64

1

OEBPS/Text/6-1.html

windows7-x64

1

OEBPS/Text/6-1.html

windows10-2004-x64

1

OEBPS/Text/6-10.html

windows7-x64

1

OEBPS/Text/6-10.html

windows10-2004-x64

1

OEBPS/Text/6-11.html

windows7-x64

1

OEBPS/Text/6-11.html

windows10-2004-x64

1

OEBPS/Text/6-12.html

windows7-x64

1

OEBPS/Text/6-12.html

windows10-2004-x64

1

OEBPS/Text/6-13.html

windows7-x64

1

OEBPS/Text/6-13.html

windows10-2004-x64

1

OEBPS/Text/6-14.html

windows7-x64

1

OEBPS/Text/6-14.html

windows10-2004-x64

1

OEBPS/Text/6-15.html

windows7-x64

1

OEBPS/Text/6-15.html

windows10-2004-x64

1

OEBPS/Text/6-16.html

windows7-x64

1

OEBPS/Text/6-16.html

windows10-2004-x64

1

OEBPS/Text/6-17.html

windows7-x64

1

OEBPS/Text/6-17.html

windows10-2004-x64

1

OEBPS/Text/6-18.html

windows7-x64

1

OEBPS/Text/6-18.html

windows10-2004-x64

1

OEBPS/Text/6-19.html

windows7-x64

1

OEBPS/Text/6-19.html

windows10-2004-x64

1

Analysis

  • max time kernel
    134s
  • max time network
    151s
  • platform
    windows7_x64
  • resource
    win7-20231023-en
  • resource tags

    arch:x64arch:x86image:win7-20231023-enlocale:en-usos:windows7-x64system
  • submitted
    04/11/2023, 19:11

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    OEBPS/Text/2.html

  • Size

    2KB

  • MD5

    8396eb3608b0203fe6146c6bc4bbc6f2

  • SHA1

    a1864c1cdf5b3ce42f6a4d69390d33746b47bab0

  • SHA256

    c82c57117b93ea85b61f51ded776beb44ef1705a7249165945f345ff3fcb0ed9

  • SHA512

    bd4046aff03198602d5c270011cf2534063fd4fadc5609945c087fd2a56ffe255b257092e612b7cc0c9b3358bb5dd6a221755a5c734816b54e50c1ff145c3be5

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\OEBPS\Text\2.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2220
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2220 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:1776

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          65bb30a96377eb6a0e567a400234755d

          SHA1

          fd73953c817681f183db91a6e07355fa730ccb6d

          SHA256

          61fd48b70436ceef9759ed1efef5dfdf06b18293331b44f30b693be2ae784fd4

          SHA512

          b09b006a81d50a034e85f87ef74b5ba663eb125d05df83488324a38a469a9adb299cff9bb90be1332fabba291b565d6a1fdc3443be7488d8ed6bc64c6a4586f3

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          49b80bf14dd8ca5bc79425aa2ab9e091

          SHA1

          0210890dbd358e0a78fd84a9562df5beef0cd97c

          SHA256

          d810133042a2931d7b543943400077d13e3caf858db2218b113153c3427ba228

          SHA512

          ab668711f4ee05d8e1d4b5171486b4a53dd1b6581bf42d43a499a4c61fb0db3373ad1f33fe1b9f6985517b8c6e0deb69123541dd2f49952ab6ed6a0f75a43baf

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          624af0b339c7389269804da45de1eeb6

          SHA1

          2c50233785ded6d121807e4040ebece228d33f32

          SHA256

          e752c455376ea576c70af77ccccf36152622b9d9cd01639050f6df3736fdbd16

          SHA512

          8f386e16c60b1d64167be20e782585ee04c5543ad8a328a30d6aaff28badf1e25308cb9e9973b0956faa4915b1240b4a7cb3b1928dbbe88a1fd98ba486857eb9

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          186fead91e67347a25f64d989c717105

          SHA1

          4e6ed40ff807b186b22f3c11c107722503e081ae

          SHA256

          8133f041f6e7863e68020ad44c2ceb7dc649a4288b90c6c32e0fe9964775c7c6

          SHA512

          4254b486e39026c2d3a06950349523dc8a2afc7baf6c760fe05f09dce46040fa69223d7aff540e6449c1aa934a4220c09c21d69a38de2c5eb46204fcc75093d9

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          68f9a0886526dc52780c6cc7bb31907d

          SHA1

          a5cd6f49f9592a0f99a53828b0105b6e7eff9cfd

          SHA256

          bc051cf877c9fd8253fc16c90075672a0b69720fca1cf3f273c85b903fcaa07b

          SHA512

          1a24cd208f6a06f1de6964f263ec57762971769eeb8dadebb2d963a171a5ae887d7307e77682e15ccb29f56a698bee080dddfc042ec235eba0c18c42ec3e82bc

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          b75da963e7bcbf672ab6295f84023f1a

          SHA1

          35b566ce761ff646ca8770866c1c53e3598807f6

          SHA256

          8acad5fda419485fa860d927deadc986b49a294f481f3b71950f0ba263828264

          SHA512

          4db8f6867aec39a86985934799dd39cd205fa74dea5b27644ff563717dfe5f402fc9ed65bb37c604304b73b6791293cd7ffc5d28eb67ca17b797adb30027cbf6

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          219e2f2bdac35ac3a17932897ca1fc99

          SHA1

          bf4aebbe0778cdab7c86a79023ffc452c67d0724

          SHA256

          f52eceefa1742bd388ade462e4797e6597e3252cd67d08d7ce91c26568ef3671

          SHA512

          8f1a94ea46c3c30ef80afc983d2e4b344f17e3c2f1d3e72ae33438132f1b3345303db3192712b99b6cd061270c7e15cc9232acbffbd50da2e7817cbdf48b0c7d

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          4bae0efae9b3c05bf8575028de872072

          SHA1

          5615c259b03a867f1448399e9d5a4ca12baad1ca

          SHA256

          64f54996719d244afb9d6ea3f5bee77f340ca22002271dc4e76f9b3d7723e57e

          SHA512

          61b78dd7e3052676bc0b137fdee8aae4425a245321acb5d9ce82c3c140b191e3c79ac9745b87953046ef4f3e3ed3c702438895400c5de859809a8514a8c47855

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          0d94449add483864deac2b31dfc206a6

          SHA1

          4500b243c1ec7bef64999961cfe7264a5586f995

          SHA256

          d5964de0d6e46da2a5cdec2b117558f2711882a58b5782f73c9681dbb52e57dc

          SHA512

          0fca7dc88a45e749318f887e67297cc368855b936bb61199ffd6c163d625417d716906e37a0a4cacd6aab4ff9962c0b1fd03995858cfec8364300b7ed274038d

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\CabA621.tmp
          Filesize

          61KB

          MD5

          f3441b8572aae8801c04f3060b550443

          SHA1

          4ef0a35436125d6821831ef36c28ffaf196cda15

          SHA256

          6720349e7d82ee0a8e73920d3c2b7cb2912d9fcf2edb6fd98f2f12820158b0bf

          SHA512

          5ba01ba421b50030e380ae6bbcd2f681f2a91947fe7fedb3c8e6b5f24dce9517abf57b1cf26cc6078d4bb53bde6fcfb2561591337c841f8f2cb121a3d71661b9

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\TarA692.tmp
          Filesize

          163KB

          MD5

          9441737383d21192400eca82fda910ec

          SHA1

          725e0d606a4fc9ba44aa8ffde65bed15e65367e4

          SHA256

          bc3a6e84e41faeb57e7c21aa3b60c2a64777107009727c5b7c0ed8fe658909e5

          SHA512

          7608dd653a66cd364392a78d4711b48d1707768d36996e4d38871c6843b5714e1d7da4b4cc6db969e6000cfa182bcb74216ef6823d1063f036fc5c3413fb8dcf

          Download Submit