Overview

overview

1

Static

static

1

f435aa5f70...3.html

windows7-x64

1

f435aa5f70...3.html

windows10-2004-x64

1

Analysis

  • max time kernel
    134s
  • max time network
    142s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    22-12-2023 16:36

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    f435aa5f7070de450a350527d5a143a3.html

  • Size

    44KB

  • MD5

    f435aa5f7070de450a350527d5a143a3

  • SHA1

    dcbeaac290a3050ef40b74474053ec57ea9d8d6a

  • SHA256

    f560ed0951e938ac844661ef344129a8909eb1c3eadb79858dc77545d42ef94c

  • SHA512

    0ac6a84a6522561bead1187801873153319e65129256661a397bbaa255ec28aae992281d2887cb16eb3c223ff982bad072414dba38889de541f6cd2d6709ec5f

  • SSDEEP

    768:Nf0IRIOITIwIgIiKZgNDfIwIGI5IVJ7SqIRIOITIwIgIiKZgNDfIwIGI5IVJ7S4G:NsIRIOITIwIgIiKZgNDfIwIGI5IVJ7Sr

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 53 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\f435aa5f7070de450a350527d5a143a3.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2300
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2300 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2720

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    269b11de4e4ce61fe2a11c04248a8f86

    SHA1

    54c5f679e213372bf8df01531ed96d4522bfb4c9

    SHA256

    fd2440a34adc4a39424ef7cfe69a14c67b6d8469814d5679a9bcd5dc881fff3a

    SHA512

    4e79c26318ab816313cc39f41d44fee40eebcd6923660f06e5a0ee1651a1000e08277cbfe69254cb728429c7e258e4b2fceba08f8ce98ade4c338d9898e3c98a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    884d500d891693ea3c154d72f4127751

    SHA1

    b5eac00789bc387ac1ed1900a08804e6ea421999

    SHA256

    90fa97f0b304b946d825f0dbe2b066e7b47d0bd6ba6c92658d5faaa56cd74362

    SHA512

    66838968c59ff010fcfd2d308787dfc975ddf5e2681233bbcd883d2fd68b40149a5880190db323e75ba98be0ab051d3b9feb9566fa01d4de397a1991a71bbf25

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    e6ec87e4310321cf7662a77a5f55b1d9

    SHA1

    eaefad3e9b065e28ae7e29e64989256f6cc7c34a

    SHA256

    d90aa1277a4372fbf1aea4fe5d8f1d6d786dca4bd56ab7754b76df116e0aa64a

    SHA512

    e2fbd30937d476cd1e632522c4bd468661fa6cd5eefcbbdb9b1d2be0caab6c0543974c4135c258c6eacf99ef54a33e745bd156ae97a99b8f34dcf4e656a657bf

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    e9ec9171649200f009321ae283eb55ea

    SHA1

    4a6c50ff0dbcac3422e291a8622f99fc35f5f3e8

    SHA256

    286a5ae2b16ab7fe9c1806a1bb31a0d8686bc7ae416924ecc7e9ffa50f621ce6

    SHA512

    6f86a64ad5a4351750cf3f21172df26d212d4c33bbf8eeab8f6c4c2e06893eb6f4b84ade2348dc767d32a3fe804c492f9f9ba14cfff72b6429db0c13b9f1ad1a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    0947c921b5229aa2cdafac889354d2ed

    SHA1

    06bd4e6d6da958734e5e855ec991019203328684

    SHA256

    6af15271b00aae33e82c27a2fbb988885ba776fece93ecbf1b0d2537d900c632

    SHA512

    4e48cf76767cb8a863aa7c921b1fb92fdea7a1d686062060bd63d29ce604f9a80cad72dc87992fb857eb1ef8066e42f323c52a9a489e8faf78e61347fe110844

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    3566fd62b62c85db6314de2b17241b98

    SHA1

    5ddcbc037b8ad477947c4fe6eb0b2a85ff68a42d

    SHA256

    6946593f04f2ca912f3359a1cdbfbb99c88a8d1348c925ac285f2345e176a9ad

    SHA512

    ed56b4943274c558fe5f50ba0f7687028c7728ade8144cc0c9b45c0eac8c8df79f0d9f75c013e2b0de3e843f5f66ebe743d276aad6be1402eae674d252921a53

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    0673e54a8083f92a241c864608d615f5

    SHA1

    e9d9521952b84996330efaadda6f674f2c7aa9cf

    SHA256

    36f64e78fc88ca3a4aefc87b795ec5d72f4595221d376843e002a22d8385f654

    SHA512

    55352b2ba924b52e1e348ec1f4d48c4b49e0c75da44f32d1e4b9352ffec6b125e351953947b3cb0958d5e1b56b97f8ea886c7645bea0612971e10b06b20ec52f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    f45121bf3cb4fc2c420e7961f1a9ef48

    SHA1

    d8d47a58de09b494425fec5fd394a11a69267e24

    SHA256

    642d43a7adf1ce564127cc9910c9607e6bebe8c87633aedae782280a01e04f91

    SHA512

    de1d311fe7fcfb5703babc64c1ad33ce8b0e0ce646b310adef73d2123e109dab03a0620a57da1ecee82063d9a6720e79da257444050c62ab56c89f476a187b60

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    f02dd2aa702e1f42260c9a348fa9f0e4

    SHA1

    95829e75c06e83178504f9cb50bbf2edc2164e9c

    SHA256

    ca18c5fed92c8dd23209d858388f427e65e8c4a6107f38b34b55ad0cd3c5af71

    SHA512

    1f706ddf1619dab7f84c496e1c4bbb58586efb3f44482f43d94a85ed06284d961fad5b83e9bacbe1d9d9dd3511d963e41afdf56c22e4f6d1a77aa22c94ead459

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    fba62a3618b41b75316982d8564c5b52

    SHA1

    e1331755c28984e5ca0865818ea2cf665f46412e

    SHA256

    b76284c2b8967fb9ea1ca92d606e7402edf03ec4ca8772e2b2c18d474b714aec

    SHA512

    70f549e5acef720b21e367640f9eff419f4a65da95a3a53e0000a5221c2d884155f1abb8d9f94343a1595f9fea6c1e1f662d95e68ff6ebc3de7110fe6359145e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    294263f7994d2ca97834cd0f3f6f6766

    SHA1

    565363683321fa0b23289d1854c231c17bd9a7c1

    SHA256

    742375c1cd2ea885b4779e9464e382b80f889ca7db297d568bf1737920f0e6fc

    SHA512

    b4f9ad8852a2acdfb6a56366c2ada044a8fb882924ad740e16e8284fd69600a0c6937f8dfbea4e9a5360e040aa84b94a347cf02bec7cd357dbcb55f477c00eed

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    4eb278ab68b3416485476b0827c9873b

    SHA1

    db2827eba11f1bf7b8496dc88b2a147b40d1436f

    SHA256

    f13854d42a0341e26f3823ac20b8c7a6d8f032ceea3fd5b08e788d8da5d1b03f

    SHA512

    8847fc89e9190ca601e003f368335913dc321e83c175497971bbb8787abf1c1cba652de22c650ecbd47520a48f409b5d3b136ec31da6be4c17ee274eff391b66

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    f9966f9cd6b0e5beeee1ce24c6aba937

    SHA1

    53b4402847958538833313aa8163401758ed5a8c

    SHA256

    46bfdfb6c31578c6af33152ab8ba46905ba612af842bfa0420fe782091811aa8

    SHA512

    f37b6dba225cc5c76a9884dfcc575610c2be51705bd60179e787845721463572a4e5b5271b3d1f600273c735ad1c013d812e61023f89b18d4f87260196887dd4

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    0955fbfc18a8f5d96ce7e79597174a9d

    SHA1

    173b7a0318ac8a67f8613bbb579df5506761342e

    SHA256

    f1a279e1d0201deed8c133c626b8d80f6afcfe5ade7b07e0f94d55a7a8c4937b

    SHA512

    3614ba4f38a22a2f0e70c6489dcc31b8b5d84b000b01a6551433c338913d9dd5287e31cbdc915f1c5211054cc720b31a290b5448f4e4caeaf73158a7e88058ec

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    6b5c63dc00cc7504a214b8b13a2dc382

    SHA1

    efbba535eba3e162b2d2a767a8bef68c94918c5e

    SHA256

    bede081714eb12203692d36cfeb8c278e48bc50d59ee411d9c9f9969c705d2da

    SHA512

    a2e1b0ebb2e02063f45ea3a0835bd228a708052e4035982c3896d4df0affff96511bb64767d0f4e8e22d1b090c0b28e593254d645f2433e8539963daf0e1573b

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\YG7MTJAD\www.youtube[1].xml
    Filesize

    13B

    MD5

    c1ddea3ef6bbef3e7060a1a9ad89e4c5

    SHA1

    35e3224fcbd3e1af306f2b6a2c6bbea9b0867966

    SHA256

    b71e4d17274636b97179ba2d97c742735b6510eb54f22893d3a2daff2ceb28db

    SHA512

    6be8cec7c862afae5b37aa32dc5bb45912881a3276606da41bf808a4ef92c318b355e616bf45a257b995520d72b7c08752c0be445dceade5cf79f73480910fed

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\YG7MTJAD\www.youtube[1].xml
    Filesize

    229B

    MD5

    65596f2d4201920ed941314f66092871

    SHA1

    6b71e3f47049a4b0479405d3c2a4d8123973f6ff

    SHA256

    8a80640f864420d1b5e0a06c6a35570e01cc9218cf2178317fb4969f3aa6efc0

    SHA512

    627924267a24d75194ed3137f59ec274b388c48691827b0f8feb7819311c7edc3535f6883d59a1a5b3fb7a3285e0620c8dc7dcf1890e2b6d058eba6fb187f396

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab6EAD.tmp
    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar7064.tmp
    Filesize

    171KB

    MD5

    9c0c641c06238516f27941aa1166d427

    SHA1

    64cd549fb8cf014fcd9312aa7a5b023847b6c977

    SHA256

    4276af3669a141a59388bc56a87f6614d9a9bdddf560636c264219a7eb11256f

    SHA512

    936ed0c0b0a7ff8e606b1cc4175a1f9b3699748ccbba1c3aff96203033d2e9edabf090e5148370df42fbfc4e31d7229493706ff24f19ff42ff7bef74a6baad06

    Download Submit