Overview

overview

1

Static

static

1

fca6a81c6f...b.html

windows7-x64

1

fca6a81c6f...b.html

windows10-2004-x64

1

Analysis

  • max time kernel
    117s
  • max time network
    130s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    22/12/2023, 17:15

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    fca6a81c6fc930020f2bf107071303eb.html

  • Size

    14KB

  • MD5

    fca6a81c6fc930020f2bf107071303eb

  • SHA1

    0b936d4809ce66e92f5a4504eb67402c965795ee

  • SHA256

    bb672ea812ad13e7273e77d1ac4f138adcf558b5e36cd438b43d4f0f1e5e4d10

  • SHA512

    031335713d9102e8bcffa68b1ce1c782f379fe43297068166f2f432d421e2fa63501a29d9e5ccf8cce17c0c3b3f42f558d43c397214fcf2d4cf7cb629463da34

  • SSDEEP

    192:+yEioELD/ZmXg8oWllefMJkZQ3wf1vPmlKt6DvE:aioWD/ZmXg8SZQOmlXrE

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\fca6a81c6fc930020f2bf107071303eb.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2104
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2104 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2532

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    8321b3bd8da4b42809a2089e3bd44d5e

    SHA1

    88dfd2043593242082384bdaf60b9324c94f5d55

    SHA256

    2a846c70df3f8f99f7268a83b293915e08784a4a52652b7c60113a2479d6bf18

    SHA512

    ff1438f8617647729ace79cad4c51f6ba34b7399fbd29a19cc766085ecbdaa94363fc3f93ce46768969055dda0ff542ab9ebd450cc56390973c38ec861c67cf4

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    f64a3062a7d1714cbd10cde9f592189d

    SHA1

    fd48dda2ce65a9325184c9e289175c2b424e9d07

    SHA256

    f11d5618d29282e644fdffb6a2637a55c0bf07ee491e08e71850d379cc8866c4

    SHA512

    549df58c61fb61c7b5afc0c4e8c613705bede55217146423a6c6107c7bef719dd2b42583eaa1b3ddae309145e2f91fc2746d1a5b96b1601e73358c3c6b4565cd

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    bd4128a5e8b289784a3dba3a05bde9c5

    SHA1

    f54230264955d3c8a482a9d449a93c3b61a94b65

    SHA256

    f1b6b4c0af38e6afef5f8c3ec9e4fa756113a255e4e444d87b47a8d16e23003f

    SHA512

    8ebeb0c5155bfb3417439594b0685a3911c80009dfa40e1725944c0309b12eb1fb5dee868eb7dd42bd56f293b86d5ec6c7b80fc6a3edd9fa8802230f8b2e465b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    f6c3c09857d5fb166bd857ecabb9315c

    SHA1

    8d6b84408623ee303ca0f74ed3e0d448537bdc33

    SHA256

    0c868a1bce18d0f097718646b3c5d8b426ca031fc006329b874b08401d3968dc

    SHA512

    28f3162a4f8aee76b387d1d798750b16ad815d005eeaf288a6cf2d45eb50ec23166ac33f5e7d870b3f69c50cacdef17c9c95f32ccac315baebd1f8d7a041726d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    95d92acfb32ece1487c21e148722dcce

    SHA1

    1bbb08d197019f6e3f1e0fcc05dbb6e7d09236fe

    SHA256

    98882e84bdbe0aa0810ea32723b65dfc4cbd767ea06e8b0b9a5e115160186e0f

    SHA512

    b871b82620c2bca29f86621709a75697d81c3a5c63365760049e12716dea5d06f1cad5b1e1b25476584cd24fb6aecb563ddaba93252cdefd0e818764a308280e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    18a836d1ca63fab6b6d4fbd33e0360de

    SHA1

    d9a084390c90be6627ba8e1c5daf5784e13ffae1

    SHA256

    d1b90402b5949bbbb8bfd9b4e7de7904953159025ecfa2ab2b0a70a70e0e1b94

    SHA512

    d1e35aa36acca70f783ed0d3d003fde2b183c630c4308421f722ebb2fceac177e8ceefc420cf42a495616ceb2176d95c91d7615f1188e655d5531697af9ccf6d

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab23AA.tmp
    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar2590.tmp
    Filesize

    171KB

    MD5

    9c0c641c06238516f27941aa1166d427

    SHA1

    64cd549fb8cf014fcd9312aa7a5b023847b6c977

    SHA256

    4276af3669a141a59388bc56a87f6614d9a9bdddf560636c264219a7eb11256f

    SHA512

    936ed0c0b0a7ff8e606b1cc4175a1f9b3699748ccbba1c3aff96203033d2e9edabf090e5148370df42fbfc4e31d7229493706ff24f19ff42ff7bef74a6baad06

    Download Submit