Analysis

  • max time kernel
    118s
  • max time network
    171s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    22-12-2023 04:07

General

  • Target

    607b6ce94cff4d2a2e177c60af2f0ffc.html

  • Size

    1KB

  • MD5

    607b6ce94cff4d2a2e177c60af2f0ffc

  • SHA1

    502933b28b8528a60cf303d63dc4c45caf89e379

  • SHA256

    c1eb5d63b92ed7c4b0b5b231aa44b51e9a5e430f4a26de9259850fa5e2501066

  • SHA512

    9da46f0a9b8b63df2af83041cf3f561b8ae5a3db07ff54819d246fc4c08db482cb45eb21a3a3433b8b39ab4b236eb39e3eb80581dd23d0ac464fdc6ac8ff2cb2

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\607b6ce94cff4d2a2e177c60af2f0ffc.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2844
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2844 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2640

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    80d52958e0b483c38a966626a16167ac

    SHA1

    a5f2d3e13e4a05fea04dcc920d89bbcca5cd6a62

    SHA256

    c3b43c915294e753c15c0e1d4149ff3d319e0b84a0660e2d9b289a3626383a2d

    SHA512

    df81712e5b1b800ec913d23c14101b732376fb2c1de747dc4fd1153e98ee12c0ab8292136bf1da678205b06287615ad1ef6619d2ea13b541df4beeec594afe9b

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    e912c68dc2a360f35da5995c5b367976

    SHA1

    479fbf592c13549f0469e5021a3d957f60f1c15f

    SHA256

    92cc5c56a12a019e96c97e58bf45cd524ad12cc3d7faeb8409423a2b65bd56e9

    SHA512

    15d75da0ec7c4fe886dca4a5ec06bd4b0ecf011affec121a47c5bedbc83828244ef4cceb58e6dd569beb94d3c75c7c69595a9c1eb33b694b9df1d2f1cace389b

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    eaf588886112e0a3016310412f4997eb

    SHA1

    a849de155d9b0094be275df796b0597062f7cdcb

    SHA256

    1619c853af32eabb9511e7c7faa5dbea352524f7e8ddb3ed8d83294d28d3f533

    SHA512

    b572e016118c8c20f09fa38d05dfbaae8d8112127f601a87d9ab8b93c64d02021ee18363be277f08419f4b0dd0453297e4582afe8e0c0a638558ac9be728932e

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    aeb56c966b07334d0ea9e318e00f255a

    SHA1

    5d95cee0c96a13cbb24b7b492c22ab8fbbd343a9

    SHA256

    96f0cfcd3dd1083943a03e11fead8987bb44d79dc32efbfbd8b6d980d8e50eff

    SHA512

    a7560cfc4472f8a6ba16154ae2464dcf70cceb2968a91f83260f692f20969f57e65da710d45feb1a6813247bd1f0020b987c3fe301ba4fe16f4690905c5bb93e

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    d57cdfe293ba691c4e231882798c9e1e

    SHA1

    a743ce47e91a022c88e8ca082776326eb693a1ec

    SHA256

    a7aab222077f60abb9b775c5f4fe9c46b630e15514e131ba9262630a94df2e1b

    SHA512

    193fbfb1f4f651c3b29bf4e80bce2e7f8696c160deb99c1272e892b03fda4c64e571e4b00d749bdf5de6c55e89e296b58bcbb05d30f18b93a0e52efb4ad8e7d3

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    f4f26ea90bcc8df1caf2bd7e93354d17

    SHA1

    d06d3cd931d40350b9802ab461c1fa9be366adba

    SHA256

    b446d6041e63e9f0a8f411bff5f1355162aa44a076cba4e854567858d6522082

    SHA512

    1d9880250da2ab0e515115ba106dd6b945c5c4b8eb6ed706ae55d14398fefa5206dd9bd46460d89acadf04ec73a3898f2188ddd3cc708d05052b1bf24840ed70

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    1653cf24f0861b27f34a35765e2ba58c

    SHA1

    b736e4ac5f6395b6658d2fdfbc0ccf8ac6149308

    SHA256

    c3531783130b53231bd77e62348ca10001e259ee15f0a8c4f70934bd41e9b9af

    SHA512

    71040718f71737b984cca9025beb1dbd5c836fc6e77059abd97dec2670f51b40623332fe52cf8a8dee6250e8b1a7be8d029b85dd5c9ca7354aa8c0e6072b6c19

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    86d821de496e562696e9f9c9ea5d86f7

    SHA1

    eee56a4972d649df2ea548931bfe712ccf15e310

    SHA256

    e657d3d35c2bd613c54eb8640f2e266feacfb83de7911f9523c167551e7440b6

    SHA512

    47755431752988f5987d19b7aeb0a280a1936b6d93d6e69b8ad3af29be83df96c3648ddfc5fc1694137669e6788d133ff864f653b2f6996bc0050819d0fb9c91

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    303c81c1cf4ad4f57fe04680f391258d

    SHA1

    88330d60622295dca7773e4778bcba49f94c4683

    SHA256

    894c6e62a97506f1698d3f56c2d87f9ad3a68faf0148956bddb9a2a4a6a524a9

    SHA512

    f0e2e3df6712be47fff2c9900e7cd640faa6370dcbdf54c00cb3ce7d59e3753c432ee0e1f7e5e7d92e91582b4d85a7b43b133c2f4252549f97c0a4a73edcb81b

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    2ccb2b98072e036e0c569943835a755c

    SHA1

    d0c1c5ff3a66fb20d3c2de5444bfa8186eb28542

    SHA256

    4ce86568c449067f6e8f9cf4aed8880881fb2c13f7343a2ead46b1607830e864

    SHA512

    da2850ca7e90a59170155e2f0515cdf1289f31725a132d3791ee9af6223b3796a3a6b851963d00ab3d75e2ced155083b0530bbf8b51d1e7fc6f09bad1ab094c7

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    e0f3fd3c0e2c0b4e0c6beada63c449d4

    SHA1

    37946635b06ea0ca5eb4a1301b358fa233f25f33

    SHA256

    fd1f54e1ca81c631a8a64352222ca61d7bff806fad4efe3eb78e012777c55b98

    SHA512

    58195e5da166df7ccbc82224afbe50f6506a869800d429ef8bb990055f69bd445708903f7bd96c1f5b0e901230ed3261b8b59a5f086117c9429dcc4429c6c635

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    c282d363bb39fa123e1f9a67af372b33

    SHA1

    791980e4c6d36fbca362065ff5f72478e658a1d6

    SHA256

    f666d22db438ad945ce2bcab339c5aa400fe9dde651a28d7c277752b8944c0a6

    SHA512

    0336fe543dcd90719fed71d17fcecb2bc8475a5a30978157d9d28dd14eb21a2b106d4a10b3e3e7dc1ccc4e476f19e9c57aa8bc1c29a6b374480d11f1a632014c

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    ea4b7321f3cbbd71898764aabb36ead4

    SHA1

    7ba8291695647267c83e04d5090c6f78b9cf6dbb

    SHA256

    bae8c54e511ee458392a583c93b81b19a82c380b5b052453afa3888f814219b1

    SHA512

    4db5e1149f059df8e9dfbfd10c455afa4f37365edf821422a0d5389c5de23dc10f57ce9984b9a2e9331a83cb64834576c34613a5dca5ff134d633645174fad82

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    e05634c3af100cacd7739d66d1170070

    SHA1

    bb2948af5324c14751409993120731e80eec3ad8

    SHA256

    92c11895750eb6c490c20d3fbe0ac38ef44f5cf907f662a4265b4565a815488f

    SHA512

    beff19851024026daf8023276b634056335b4383fdd2c3b1c7ba9766fac63ce62681cbb6c63bb79f1c36e0cf04360a9ecd25ab3821d524f85b5eae5a33456b28

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    ff82b25e1eed2e1d0cbdac1b428b0b2d

    SHA1

    ade0ed86280be5c0db7111577408223d6b86bcff

    SHA256

    04cb628620c26870367bd2c958ca89498154e017ba65d3f5cad6a0a36db01e25

    SHA512

    752b5d3276f4919284b3bdf284476778c901f6dfe88bd0e8f781c0852de3efae2de6d6860f36898edee6cd671691c89e53be21fcfac402ee0bd9aa97737ca421

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    613b1a4ecd5fc4f822f357f757ea42c4

    SHA1

    86b04091476e18a50ac2519610bc43c64e9fcffb

    SHA256

    48175d9e827dc4a2c7f6f4e0fb40a2458d1e0f489eda17c756b6d72306619c8f

    SHA512

    d1b35753ed06c8f1936d9ec71ab77d263ab056667a2fbd0c95d6550aa3956639524da479ced21d96842c891ec93257518e01e926f92f13fe29d9650e89d0d0bd

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    84b0ac5768a18203845a4ef0188cff8b

    SHA1

    1d6cbbe569e4bbdfeb27d322360d855b7b2bbf79

    SHA256

    c4b8f2462bf9ed5ecb12e03b8d5f18d99a3461604e5c65100899519bab799a23

    SHA512

    fc3e3ea28967b068b57e41f420a493c529c4a71eebbd41ab112ff74c505ef93b3b190a6b8823cef5f6f7475bddb0d6ffb1cf6129117f1c8efd18eade123b6ddc

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    49309300f968cb96ee05f31d3890db6c

    SHA1

    fb79d2b8574b165f61173f04133ccdc41095d04e

    SHA256

    af3e365b336916dd41a2b3a03ad9be42703b84531567cb34c28638f630f0bce6

    SHA512

    f7175d4796ee6b1dbf4f5cdc7432fe09cfb2ad9943fcde63a0829231d592d23176cff3f92272f445186fe7366cedd8d052dff60712c6f95b5f6e1d09558abc3b

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    da60358763e8ffe558010d55a02fcebf

    SHA1

    d54a97b359131784686bb6789467d30fd86a2197

    SHA256

    753fbb54243d7ec3a7c71721d2ba50789244ccbb8d440ab8de64e1af5c24859e

    SHA512

    504054a45965f303d43d8d5656138f1c77896de0081f3c00232be50c68b1827d7590be15408374f35748d68b85bbc1c3c930f61a7cdddfb3a0ae9b49f4828c6a

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    61d2649d202d5c56eb96f42d22b89a7e

    SHA1

    081c9bbe852590d052410051a462e02c8afa09b6

    SHA256

    090d472124f85a5fab062b308031a058333d9f42266f67419f090b5753caec87

    SHA512

    403216e42deec58e719a48570bcdda27444ac781c4b430ea6e71de061e226da4a86e45fbfe223a2b0b799048e16c769adee26f5fd9b2ec00254252ec9eb9709d

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    51370b7d634122c98c1823c7176e0656

    SHA1

    6501af4ccc9fe1f0cac4b912215f4e9045b55d0a

    SHA256

    697c6e3924324a70b989a0a1cad2e883419cfe0ecd91b6f273ec0cbb61822a24

    SHA512

    721c2b7ae3360ea45bf9ff0a88b146b2a937fa447d762b7d4c3ba48ee93079d7da5512d7a2fa08c45a04a46ea5d9292c67da50843b0c71277e420f8420f1b476

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    6ad3e38a2a9927b3a4530bb037827a4f

    SHA1

    99d36e6a0386d755b450e9d4f8b6b1529607bfd6

    SHA256

    d6a90da7787d24666626cd92fe75fff522125173d191cbc8f004ed2c63b55ca3

    SHA512

    ad59081edb0ad3761e260da7f4fe2409bd38851fe67cd4a688c905afd1d3d576a145fce5aa7a02322d180169aef1c9dc931507b3ab2ddb01de5ae835a4bf5db6

  • C:\Users\Admin\AppData\Local\Temp\CabDF3A.tmp

    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

  • C:\Users\Admin\AppData\Local\Temp\TarDFAA.tmp

    Filesize

    171KB

    MD5

    9c0c641c06238516f27941aa1166d427

    SHA1

    64cd549fb8cf014fcd9312aa7a5b023847b6c977

    SHA256

    4276af3669a141a59388bc56a87f6614d9a9bdddf560636c264219a7eb11256f

    SHA512

    936ed0c0b0a7ff8e606b1cc4175a1f9b3699748ccbba1c3aff96203033d2e9edabf090e5148370df42fbfc4e31d7229493706ff24f19ff42ff7bef74a6baad06