Overview

overview

1

Static

static

1

91cb600fa1...d.html

windows7-x64

1

91cb600fa1...d.html

windows10-2004-x64

1

Analysis

  • max time kernel
    117s
  • max time network
    140s
  • platform
    windows7_x64
  • resource
    win7-20231129-en
  • resource tags

    arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
  • submitted
    22-12-2023 12:54

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    91cb600fa1412d90b73d0201c57eda5d.html

  • Size

    570B

  • MD5

    91cb600fa1412d90b73d0201c57eda5d

  • SHA1

    7f224e210346b7317921e2fa1e1d3d4c95231a59

  • SHA256

    3d6b4bb9f95f3e0e9b60d566729f6aa068da095dda2fe8d3752f98cf9a47a65e

  • SHA512

    b257b339a8c9afc35f8f67605a76ed5a61074b10989658fba1809b2316d4b3a0341a29447d5486db94b8229642fb257d72600d820b5fe956c31b86e7b9964898

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 38 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\91cb600fa1412d90b73d0201c57eda5d.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2352
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2352 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2916

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\3C428B1A3E5F57D887EC4B864FAC5DCC
    Filesize

    914B

    MD5

    e4a68ac854ac5242460afd72481b2a44

    SHA1

    df3c24f9bfd666761b268073fe06d1cc8d4f82a4

    SHA256

    cb3ccbb76031e5e0138f8dd39a23f9de47ffc35e43c1144cea27d46a5ab1cb5f

    SHA512

    5622207e1ba285f172756f6019af92ac808ed63286e24dfecc1e79873fb5d140f1ceb7133f2476e89a5f75f711f9813a9fbb8fd5287f64adfdcc53b864f9bdc5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015
    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\F0ACCF77CDCBFF39F6191887F6D2D357
    Filesize

    1KB

    MD5

    a266bb7dcc38a562631361bbf61dd11b

    SHA1

    3b1efd3a66ea28b16697394703a72ca340a05bd5

    SHA256

    df545bf919a2439c36983b54cdfc903dfa4f37d3996d8d84b4c31eec6f3c163e

    SHA512

    0da8ef4f8f6ed3d16d2bc8eb816b9e6e1345dfe2d91160196c47e6149a1d6aedaafadcefd66acdea7f72dcf0832770192ceac15b0c559c4ccc2c0e5581d5aefc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\3C428B1A3E5F57D887EC4B864FAC5DCC
    Filesize

    252B

    MD5

    97901b9b3e246bcf673af0ac3b821fda

    SHA1

    b0e5a7a0fe232eb5376375581869738bd2a6597e

    SHA256

    ab6b6b7101ee85def68e871340e21571f662ca10766ada1f9392a062601537d4

    SHA512

    4c10b0fbe965b6e040861ab6711de9e9341cafedddd7fbdc9662f2542b9af0a322da212854ecf569089750838520f3acb0a5c9336e11246dc97b451694e87e05

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    dc6ef0559e73d835dd0ca1c9ec1e81ee

    SHA1

    909957cc9ee0e2e2f816f3f722e34cc10a8cae00

    SHA256

    7b2120c04f659c2cc2bd8ec98d676c6fcb1b516516c5e5ac8d9e0b857d044f39

    SHA512

    c2df1da87c2830cee1d29c81311830a4ef6f78ad9c421b7d70d9113987604febed4fd428d6cdefb5d330a3b5bec53f2a25ed5d6e4e74d258938c067624127fd8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    b336d526cdef5c551459ddd52c5259ff

    SHA1

    54027ef22415e5e1ac97173dd83fd292eaff4fba

    SHA256

    7ddc4b7de80bd34e7ffaba92986b26df3e8b33b08a9a9c05aaea7deaa903f836

    SHA512

    1106345eff2d60532f181ba14777b9a23327570c54f2805ee95230af79a91a285d2d5be40fbe78597f14497995c2968b274cd4ffa4e88ae8f9d961c68ad32ca8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    a7010a1215d03521db3b6b589524b0c0

    SHA1

    66eb46e6ecb4e1e32de3fbb58af5343340611ab5

    SHA256

    83abebda449ef607896c8e2742e8effbe50f76fd88737a9b2e6e50ac56125fa4

    SHA512

    69b1d2a88ca0769a82fc7bc12fe75a2c28774ce651cd2e38930e5f2088f8c53bb98ef97364b8ea3658f155f77c70e4b64d478ab189a697ad087458fcbbe4e328

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    d5dde572b0892ddef339b8f4b05c4cd1

    SHA1

    c22a64e9da9e9257ce15dd173e95f0e76bb4a491

    SHA256

    e2408ee7604559449ab2126e365b459f75c67ac809962ba94d6b5ef4252af2d5

    SHA512

    29cfe2fe9e9f2f1e3345d6c6fd23f473ecdd5b3e8da7b7b8ab4b64a5a6f1fcebb02418046ef13d97191249dfaa9506b8561cf5b8bc0e64637576d2fa716b3832

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    17bc9969b15e605a0cc79bf2c3699280

    SHA1

    2572d73e3d844da80c6c1f4022dd755ea8c0e1ac

    SHA256

    058847594cd6d29b25bf1e6e1857a2c7421a4e5005b2f81157a0049efa3ed37f

    SHA512

    12db3d48052bb164f1cac1da666ffe9679db9100d728da21fa17226b08c3771527ec6039162124c215ad65262f97b9a7312f4e826505c8d9b09c3395f6871d99

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    7f68bdae1445680f91767d438831629d

    SHA1

    a84590aa47beb7c3f6dbf8b8d2df525f7ccb9d86

    SHA256

    8330027faed89de0d6d8157ee65df29d8d2818943ca20b4c68b99725f9beaa1d

    SHA512

    256aded95b6ce1b718187ff4b3218c6d85c29d36d76a8ef9a341d27e6508f8bb6f2da2056061e237cb3f29380f2284a0786f3018b7094fb722b5b6b12bafbd7f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    8adaab50c117b0b510720c7a4f167131

    SHA1

    69a8b55d15c090867a325b10f5b34292a5753360

    SHA256

    298b706a478836bfda277763c717ca8a302732b93f75abf24c3ca9a21c22ef1e

    SHA512

    99dabfdbb359c2165cd8f5a005ebb3c0acd34d4774b6c3b411aff128d43056294edef47caacdb8b3492cb1899f6af36c5ee04a24155a41fe985c211cfe842e59

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    9ff8ca8d550876466ceff089a3eb041a

    SHA1

    9ce4fa2870e55e34338dc6139deedc022b6f95cc

    SHA256

    28fe3d69777e3a7f02183b45b0af55fa4383745b66bb86b5a510794a04804a16

    SHA512

    a25c1fd2f6aa0a780c1b9ef8d8ab829b0c8dc105fc0c97c2362ab3f9dc51fa6b8080cd5d506d4f7d12c8b06e90b6ccc20351a29ba456cdf8d46821923224f35b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    d12843572b347469f26388ab66e5c550

    SHA1

    f2ba236add5dc392ed8fab447eefe498a2970ef5

    SHA256

    33a6d4db507eaa91c677e0577bd6d018a8a1c228a5f7af64e849346dbdef3da2

    SHA512

    7a1282adc34ff24deebe3988bc4952fd22f7b0478df748619596a7be29036c1ec030224779bad45a528503b7118ae7726e9c05b6bcfe52455035169f6142f885

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    8ef2720b8a97988142ecf1e92caa4de6

    SHA1

    51ef41bd75a2836404469fe01b592f8c15ede5cd

    SHA256

    d844eb36b3f9232e7e54016b24a84dde9b2f71b5a1b83e0828ec6274c4b5bb4a

    SHA512

    c92207e496f3c53951e11d6df740658b5a0d193dfe4e8b82dcf5707eb279d7f596f951c854ddf4bf11c17ba06237233e670724f21f527dd0c30d53c1377a2da0

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    9e3761575d98210ed1f949484ed3ad40

    SHA1

    50a647b719cf1c60154f8196a8f221b556465884

    SHA256

    5532e3a9a9baa56d5fecc9d7c9e6c1f0aa19d77b63d636455f34d0543e9f1dd2

    SHA512

    3c13362f96b14067c802e1302a0f6c646a7a526bedb3d1ee3c92a02a6094323449b6151f913eafecdfc496b635e43bd1ac047b08d6e7aaca39c3019320e67940

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    e6070fb522a8856c23964f059644996c

    SHA1

    d3b159110edbaa6e6d5de5622e3314e47fbf792d

    SHA256

    4e30d230679796e343df6e0a7d22596c2bc4eb4b74cee7ea7fb30c120250e464

    SHA512

    f43ad23d7528a4d324b9c52642e1cf097ef85497284ca3c5c28240f1c788ec57774d1ce531d62e6c377af294873f50c7b02ff9a19dfd8f2064cc58064135a872

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    77a4057832d5fe9da148e3d0d43b64ae

    SHA1

    9ef132e091ea957348b82f7d07dd8b63ef9a8bb0

    SHA256

    27da5b52ad53eebc027842ba19f8706b764b3f2ad3baf2266d9d2d28f1e77400

    SHA512

    467aca7f57082ea20c659262bdf839497daff85ba1fd6c859c80353d33bf2901ff7c151386c820e4a3ab3c44ae093932eba6870a94d5fe71521653479848d48a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    186401af574218f11018bca7beab15e9

    SHA1

    8a89d79f7a8bf8c92ea08580a4c96a173e6c3e36

    SHA256

    5ed67f84c376f719863e32f0e7d217f89e76607242b7be4aa2af788b9cb991da

    SHA512

    40fcaa8cc318e2722ff4373ca2704805b62c06b9792ecba9ff1b6e69d704f256f19c535ce59de146e7bb6ceee3e6504945dc136ac99a89301b02c6b4e0c3292b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    5b2035b4833746993f63ca6c80547920

    SHA1

    8d847d0c4a72e177a95fc3040cd757dee47bb81d

    SHA256

    28044e44111d9cf2434c8c120a49396b8efdc75a8fe2685ee95f5d26f63508e2

    SHA512

    5ad97bfeb74574c2d1848b5f7808a41c53c395484c30da98cf31ec84e75073049894f94fc6d47c04f866dc130ae7ce44762a69f06498ac7a60c9abb1132fcf7a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    9e3a1c5690ebefb2d23b2b2ddcf6811d

    SHA1

    a3e4c814a3458031d3c439987d61f27c581752cd

    SHA256

    61d307929245dff905160927cee6ac2235da37ce2c27bbf1d1fda2d1e95bd460

    SHA512

    a58b3a0268d00ecfd0c01868842f8a01b0d544bec90760963d7323d269501ec913d811a8c957f1dbd82330c4c836c4b125b103225da09b7e6631acdf5b0297da

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F0ACCF77CDCBFF39F6191887F6D2D357
    Filesize

    242B

    MD5

    c1839a3fa3207483e80c81ffa4d13f28

    SHA1

    e36d7109dbb5e376c6416497cbdfa368282ddc66

    SHA256

    4a992c03d8a22b3c3cd3596f0ab5894d7618ad5810c5ded0e9fee4ea164ee0b4

    SHA512

    7ce61222d69bbfeead111e111b3b0f22bbd363d858a61ad26d7f93977de360a0792e91436be512e588ceae4c098877e729bdfcc517c616c3494440f208b5e03d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\Internet Explorer\Services\search_{0633EE93-D776-472f-A0FF-E1416B8B2E3A}.ico
    Filesize

    4KB

    MD5

    da597791be3b6e732f0bc8b20e38ee62

    SHA1

    1125c45d285c360542027d7554a5c442288974de

    SHA256

    5b2c34b3c4e8dd898b664dba6c3786e2ff9869eff55d673aa48361f11325ed07

    SHA512

    d8dc8358727590a1ed74dc70356aedc0499552c2dc0cd4f7a01853dd85ceb3aead5fbdc7c75d7da36db6af2448ce5abdff64cebdca3533ecad953c061a9b338e

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarCB3.tmp
    Filesize

    171KB

    MD5

    9c0c641c06238516f27941aa1166d427

    SHA1

    64cd549fb8cf014fcd9312aa7a5b023847b6c977

    SHA256

    4276af3669a141a59388bc56a87f6614d9a9bdddf560636c264219a7eb11256f

    SHA512

    936ed0c0b0a7ff8e606b1cc4175a1f9b3699748ccbba1c3aff96203033d2e9edabf090e5148370df42fbfc4e31d7229493706ff24f19ff42ff7bef74a6baad06

    Download Submit