Overview

overview

1

Static

static

1

winprofile

windows7-x64

1

winprofile

windows10-1703-x64

1

Analysis

  • max time kernel
    134s
  • max time network
    160s
  • platform
    windows7_x64
  • resource
    win7-20231023-en
  • resource tags

    arch:x64arch:x86image:win7-20231023-enlocale:en-usos:windows7-x64system
  • submitted
    23/11/2023, 03:58

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    fe698e2d11aff258bb2ff4e777d102bd61dc0cc6e1a306d6f6d6dcad161bf69a.html

  • Size

    73KB

  • MD5

    2f22c68e1c0cd84c2220e29117f99c5c

  • SHA1

    e22547df2f1cc3883fc159f508f6f5a4cf9cd006

  • SHA256

    fe698e2d11aff258bb2ff4e777d102bd61dc0cc6e1a306d6f6d6dcad161bf69a

  • SHA512

    1c6bbcdc0291f1fc5d03550435db6ec75332c74157976e6c4a7d97b6d9c7fe45019b20f449ab3e08e6fd2f39a6fc2adb15829c28d1323a51e05c5120a24c1940

  • SSDEEP

    1536:hPvhj5dJtXy3sRjFdbQRGRpIt57lWZO8uSt9LGY9mI:SBaLGY9mI

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\fe698e2d11aff258bb2ff4e777d102bd61dc0cc6e1a306d6f6d6dcad161bf69a.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2000
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2000 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:1700

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\3C428B1A3E5F57D887EC4B864FAC5DCC
          Filesize

          914B

          MD5

          e4a68ac854ac5242460afd72481b2a44

          SHA1

          df3c24f9bfd666761b268073fe06d1cc8d4f82a4

          SHA256

          cb3ccbb76031e5e0138f8dd39a23f9de47ffc35e43c1144cea27d46a5ab1cb5f

          SHA512

          5622207e1ba285f172756f6019af92ac808ed63286e24dfecc1e79873fb5d140f1ceb7133f2476e89a5f75f711f9813a9fbb8fd5287f64adfdcc53b864f9bdc5

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\F0ACCF77CDCBFF39F6191887F6D2D357
          Filesize

          1KB

          MD5

          a266bb7dcc38a562631361bbf61dd11b

          SHA1

          3b1efd3a66ea28b16697394703a72ca340a05bd5

          SHA256

          df545bf919a2439c36983b54cdfc903dfa4f37d3996d8d84b4c31eec6f3c163e

          SHA512

          0da8ef4f8f6ed3d16d2bc8eb816b9e6e1345dfe2d91160196c47e6149a1d6aedaafadcefd66acdea7f72dcf0832770192ceac15b0c559c4ccc2c0e5581d5aefc

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\3C428B1A3E5F57D887EC4B864FAC5DCC
          Filesize

          252B

          MD5

          071c5727e213d8943ec160f010647f06

          SHA1

          b1222e990f4f4aaec8f4f63fea808bb903bb2a60

          SHA256

          88851ed388717f5458f0a76ceb6add3ae961444361388223ce093ca37e2e007f

          SHA512

          45b9c3148714520800432bf2d3e31d80406384234e9202efee0c2d5783c1352b3a1cf872d6f58738eb645b89d82d750a1fc9033243829c8c6652e526fe5c0e90

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          ef74e02fa6b8a17dc524ee06aed8fff2

          SHA1

          acace4786154d9c163e1b2b99fc00d5d51fb0cf2

          SHA256

          a65bb84d9743960f9a88de7c34c5a1eb9ce9fff18188f16dc7f2d8a18641efe8

          SHA512

          49b4f8fdcd5f2bef8951beafdec534e7895888fa4df3b05320394e74666ed7bf7562f2a509494a15a786c01e46363b5d663a1b0532c8203dd1ff02f1384c4f0b

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          e4e273d8ffc429ab627e4d232ac9cd0a

          SHA1

          8222c1ec86d2ac2d4c3fda57f8681907490e1d11

          SHA256

          1ebe41fc2583d0fe6a547be9da0e4c4614ff077e3f1f4624813f9ee3f1333ada

          SHA512

          18406b8c4456a903a52b053be35404ae9d2050b0c6683da6e0ad918b70c196f609d0fe4c2480c92e87ca12a63653ca2a800d88c9abf87f85ad333dcf9bc6b1f8

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          fde53d5eef44f563bbdd14c9ded2d05c

          SHA1

          23b4b6e02f711464c94fc67f3ae4c41cdd188dc6

          SHA256

          170022fd671d2433b53c40b5dd833acb280d82421fdc2615de21b011d57b8fce

          SHA512

          ca370d52b76631d87a3c243da7a5452f1a4992b0c52d479189156ee90c70f551f7b9986463f8f0763b4122f15e8007eb4b6280f1bb0428473589920d8b065340

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          55f9b33026a9a29a7ac7645cd9d257bb

          SHA1

          9d7880fc935b69e414eee860cf5d06f1f52a07ff

          SHA256

          e2f13cb8e0bc6a5c0edff6db11350b8dc373745f9fca2019ad64dbecff35b2b8

          SHA512

          1d5558388468f893d0884bd589bf97d93023238ca7472d1c1156f634a0939b0d5c72e5b1ee95e69804bd439aadbc3645fd8605fb6269f64b7bc8afa84b97345b

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          8d49038b1368b6e6eedc02d85161e78f

          SHA1

          b24157b8fe12ecf7e0c4c1cc7ccdf91d765077c3

          SHA256

          d9a4cb1b77cd29a54b77de416e78cad578b0d8c3dbbecfbe51b390e06f0767ed

          SHA512

          2ce1a5cb366adde794cdfaef6720af517f3629b35a6aeeda2c4f3b2126d914937c72d8ec6071bcf8376e3182023f175760f42897648cb5d32d7c8ac9e4dd05ee

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          3e5ce5f1c1b6f71bb856e0e56c03e896

          SHA1

          d4d6d7f74fd678ddb1c563d80740a38974f40f08

          SHA256

          8e5f1bb12c032b917634e942bdd558df96883e471252cd26a2602949f281ab82

          SHA512

          4d5f6f9f08e543cd15e6a1e3316c03540f944f866563341900808f092eca6ad4bae3f4029f343c911fa24a723aa706cdfa7175bdcb26a9003444a58b02863965

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          3aa9fa319b2e357b5182ba8099cd812a

          SHA1

          999e2358e662d7c0a2882c923885941a42aaee15

          SHA256

          0750d7a4d29ff6083437f032a03fb7f960a6fb628ac4afe8a87cd8067a0d193a

          SHA512

          15fbe147d6a7e161423871d2c5a881d4d24ea00543c4231131e3c394bc17086dd9f6a7f58a96cf42c651f833b012eba345aa966ba6579501d7473eeaeb788677

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          3d628715ba1c949b7f1374b0dc7a3427

          SHA1

          af16f5d2c636ee80b33350a96fbb7f63fe861231

          SHA256

          975cc5ef9cf8312d36974b658b18c98316c3c75e38d3072e98b4f6b64eeb95ed

          SHA512

          0b93c8123881e68ba0a882c834fc5ca4d957b05aff8ab4e3695b00ba2d8392b1904eb08a5c0d6c7f83891f66a595f217c91eb14f21438bfd920de860f34d4f40

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          37ce366f0f55ad2d0ca4d94fb33419aa

          SHA1

          fd092621485d871b83169e905065ebc6d3301e83

          SHA256

          a88f7ab25a3d9029da704eeaf9913eb0a0ae20506a0919f56f07d9db1f664802

          SHA512

          9b5e1fa544559506c82aa820a379bd5b6ff1fb552e07ece72a91e39354278d562a6235150f25796152e51b9c7ea1b6f6b14cb8f207b15670c3c65b8602e57dab

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          fb6a824f1373edc26f8668203b250cc8

          SHA1

          ba4a147363fc786a3ed08bbeb6aec5424296af27

          SHA256

          add236f7236091279eabbe87ea76c39d90092f60ddb60bc7a3e6e3ba4ba2a4dc

          SHA512

          5d9a3bbbe31e886f5bd012280ea982542b8efd5dfd344704a6f2ae78ee98b89e8be1ae83d74c67580d236d05b17b240d1f831b5098b7ff2600f9715c0d37ae88

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          da2f93518ae9398d5a40f62e99fcc606

          SHA1

          c8848e5c4163fe2d1623a08332e699c8935a8353

          SHA256

          605c9b68b849ef42940d82c1106e411ea76eef571de22b9008feeb3ef0723fc1

          SHA512

          42b4647ae763af4d82301ac58066e9ba4aca890bec4a0c532ba314f3319092ce55477840afbfb817433d084a71fc36db25e92447215c78b8a4dd2cea508ea05b

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          11da1d9a0af5a8b07503108ce2d124d8

          SHA1

          02df998a42e6f76a8eccd0d3b3f7253b93e3acf0

          SHA256

          4485f35943a3884e6c9a4f8a18b0c82aedbe2ddc51d76ee7f2feb40af7b03480

          SHA512

          bc83e06eb2c3c8457b7c8ba91950ec4d513d74c511211d01897999a7b7259e01c85ccbf4955d7a1586afec92c1caf9a8e2a84eb634a52c921ef548b7e7621ba3

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          49ab39bf6a2e8cf342cd2de8b336b8a0

          SHA1

          f4c81e864e86b1f094b187101441871d105a49ca

          SHA256

          341c0e2d6adde58e61eb4962bc5059c00b7e9d9f75cbe7e0bcf8b7d71b7b82db

          SHA512

          8407f0906d437c15ee1f7d7d147238050be60376343d2fef0d939285e4f1e7e2e6af6ff45b843f3cb0cdc861424bc93126dddeab4ce53f5d11e3261019cae014

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          49ab39bf6a2e8cf342cd2de8b336b8a0

          SHA1

          f4c81e864e86b1f094b187101441871d105a49ca

          SHA256

          341c0e2d6adde58e61eb4962bc5059c00b7e9d9f75cbe7e0bcf8b7d71b7b82db

          SHA512

          8407f0906d437c15ee1f7d7d147238050be60376343d2fef0d939285e4f1e7e2e6af6ff45b843f3cb0cdc861424bc93126dddeab4ce53f5d11e3261019cae014

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          e319693265ad994669003cd938c55fb0

          SHA1

          7e33d31cb8bf0263b3224779fc529f34ac26b325

          SHA256

          9ad03bb1f5347c1b7a6caadb718268b2c2848693031fe8212fe37a6f434fb1c0

          SHA512

          0535fe15093f92cd977139a30a8563cb8f18d4d8ce1e2695c25975b97946579cdf0abaab78178f25f0bfdb87c676f465fd27b838d319abefc7c8fc476a3604a7

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          7c35ab373080e111680afccd87dc54dd

          SHA1

          2d37a74152aef8a3881ee9b1a957d24e22041f84

          SHA256

          7104def233cdc58439e757809ad63bc886fdff395a2c23c6e9cc77d519032b8f

          SHA512

          0c2f7a325ad2fcb98d8eef5762758d0d60c7aadadafb7cdf068f9630c16f2b6ad407cfb4f22dfae8f8f6b73e1681b0aa94def8024be2ea0d7bb24f1864a936df

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          a1bff3c24aa8f613310bf705dc39bb89

          SHA1

          e9a8deeb753364f48828a5b2946544441f24a517

          SHA256

          6e019d85b41ae86f52823b6314c134e8a43c68a1a4fec0c8ebe496a59e4f1626

          SHA512

          f643b3c05419494a960e1de23c6c287134beab164773fd1fd8b87ab57fdd75d30f1fc1f2a82556b93a3f44a55e5113d020f630d2070674fc08b8654713ef751f

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          a30b37d713934913442bb7a64906a264

          SHA1

          935c4c2c586f6303dc0d322a3b518aecaf145d7a

          SHA256

          3df8679f7729f55fb48fec2a69e9a89a80202e0cbaa56cd06e9e9dad5dcb9f02

          SHA512

          f9186951fa98807a521fc835fd194a95552448e6dd9d73672d8c90edb4d76d11c278aeabe58106a2e3f210b58d043240272f195ac56076014b5abbf8580e8999

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          019d37e94091912fa739087e4f71cc9b

          SHA1

          6e6a4c17252d7d91a99f9095b115e2a284247d06

          SHA256

          7e6bf9c8040c4fa38a10cf5c3490241507564eeafff134fbc8e71bf9e55ef203

          SHA512

          5263513e104990c9096516dce444d463c47498d88255a59a5918f2768f30f5afd210ed31ef14b84ec92e24a07870b1526a4c7f122bca1aeff6da6e17882de481

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F0ACCF77CDCBFF39F6191887F6D2D357
          Filesize

          242B

          MD5

          98910a8a0133dc5a5355c704d9d3430a

          SHA1

          c09ec73e74a63d42aa71defe159a71fe9535810b

          SHA256

          8cf70375207dabd07f8ac261ad86cb0dd78a1f3bcf078b599c456e23b4fc18c1

          SHA512

          7a7381b3ea68105360d572b41b063aefe7d0352ca90ca6cd083bdfd1a619c941ac52caf73d4d569345c8d4b3193a295f4daefedaf4e48f52234e7023124110fa

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\CabCE0C.tmp
          Filesize

          61KB

          MD5

          f3441b8572aae8801c04f3060b550443

          SHA1

          4ef0a35436125d6821831ef36c28ffaf196cda15

          SHA256

          6720349e7d82ee0a8e73920d3c2b7cb2912d9fcf2edb6fd98f2f12820158b0bf

          SHA512

          5ba01ba421b50030e380ae6bbcd2f681f2a91947fe7fedb3c8e6b5f24dce9517abf57b1cf26cc6078d4bb53bde6fcfb2561591337c841f8f2cb121a3d71661b9

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\TarCE0D.tmp
          Filesize

          163KB

          MD5

          9441737383d21192400eca82fda910ec

          SHA1

          725e0d606a4fc9ba44aa8ffde65bed15e65367e4

          SHA256

          bc3a6e84e41faeb57e7c21aa3b60c2a64777107009727c5b7c0ed8fe658909e5

          SHA512

          7608dd653a66cd364392a78d4711b48d1707768d36996e4d38871c6843b5714e1d7da4b4cc6db969e6000cfa182bcb74216ef6823d1063f036fc5c3413fb8dcf

          Download Submit