Overview

overview

6

Static

static

1

14599ff829...b.html

windows7-x64

6

14599ff829...b.html

windows10-2004-x64

6

Analysis

  • max time kernel
    0s
  • max time network
    49s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20231215-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20231215-enlocale:en-usos:windows10-2004-x64system
  • submitted
    24/12/2023, 22:02

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    14599ff8290f8c9234cd7ceb2da15dfb.html

  • Size

    43KB

  • MD5

    14599ff8290f8c9234cd7ceb2da15dfb

  • SHA1

    82151c8155836be1558df9819c780d2a7e269a0f

  • SHA256

    c8c41c542f08deed585bf13968991aae77f05519bf8954eef6aa604ce708e15d

  • SHA512

    dabdb5482a6523d10e9e7a19e44aa2df49c56d1ebc89f0cc95e8e6cd897fc63066ee7212c761c78ca71743e2d6b0751c57a1b98d9c0d742fd94b480cafa684df

  • SSDEEP

    768:zCJCCPMWd2qveoETd69gxUqEyDDdHLot5+GVYp3YpKfvhHxHZgmp92SUdd/:zCMnWd2qveoE4OeqEyDhHL8gGeapwFx2

Score
6/10

Malware Config

Signatures

  • Legitimate hosting services abused for malware hosting/C2 1 TTPs
  • Modifies Internet Explorer settings 1 TTPs 6 IoCs
    adwarespyware
  • Suspicious use of SetWindowsHookEx 2 IoCs
  • Suspicious use of WriteProcessMemory 3 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\14599ff8290f8c9234cd7ceb2da15dfb.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:3744
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:3744 CREDAT:17410 /prefetch:2
      2⤵
        PID:3764

    Network

    MITRE ATT&CK Enterprise v15

    Replay Monitor

    Loading Replay Monitor...

    Downloads

    • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\57C8EDB95DF3F0AD4EE2DC2B8CFD4157
      Filesize

      4KB

      MD5

      1bfe591a4fe3d91b03cdf26eaacd8f89

      SHA1

      719c37c320f518ac168c86723724891950911cea

      SHA256

      9cf94355051bf0f4a45724ca20d1cc02f76371b963ab7d1e38bd8997737b13d8

      SHA512

      02f88da4b610678c31664609bcfa9d61db8d0b0617649981af948f670f41a6207b4ec19fecce7385a24e0c609cbbf3f2b79a8acaf09a03c2c432cc4dce75e9db

      Download Submit

    • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\57C8EDB95DF3F0AD4EE2DC2B8CFD4157
      Filesize

      338B

      MD5

      09720b0e6b7f16e43f23721a858d442f

      SHA1

      c9eb5cfd2b113c90b11c0d64083c985eb6b13e46

      SHA256

      bbd21328679e0a646c521ba7deaedd9c6a3745d257dded287f874f7715692d5a

      SHA512

      210a060d1e937502f5a687ff8122b8901cfeba7f5ba41f1988b7b6e7ae70813e2d4933a218b85b7434c3123485712704b0c2f9932c4f3b8a987130e74ada1195

      Download Submit

    • C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\VersionManager\verBCF7.tmp
      Filesize

      15KB

      MD5

      1a545d0052b581fbb2ab4c52133846bc

      SHA1

      62f3266a9b9925cd6d98658b92adec673cbe3dd3

      SHA256

      557472aeaebf4c1c800b9df14c190f66d62cbabb011300dbedde2dcddd27a6c1

      SHA512

      bd326d111589d87cd6d019378ec725ac9ac7ad4c36f22453941f7d52f90b747ede4783a83dfff6cae1b3bb46690ad49cffa77f2afda019b22863ac485b406e8d

      Download Submit

    • C:\Users\Admin\AppData\Local\Microsoft\Windows\INetCache\IE\9ALL181V\cb=gapi[1].js
      Filesize

      1KB

      MD5

      1d6bf099cb12b2b515aa72ceb4949593

      SHA1

      7c725c2e548358c6223983d29ca387e745d9b6be

      SHA256

      9a01de2bf177d052042535c757fada2a49da971a2f3e0e3dc0102be9a82d4fb5

      SHA512

      fe1c56bf06d726a2f197e517603c6ae2a8f022c6efec56d67ef7a6182e7e4c4a9bd27f1443f18e5f01f615f9c7d892262aaf708dabb928ef2d1c27b155b327fa

      Download Submit

    • C:\Users\Admin\AppData\Local\Microsoft\Windows\INetCache\IE\Q15AV1NQ\platform_gapi.iframes.style.common[1].js
      Filesize

      37KB

      MD5

      9f104d70d035b3f6bd9c57ce9c00d8d8

      SHA1

      715feef0f58e73f78dd109946681c987ab57a71d

      SHA256

      678b64a5e74980d49ed147d819ed86c3f741737a811b511c18459e6010d22227

      SHA512

      ea2e3ada751648d8e283ded7cdb122546774d8b12f8096ea8ba74e6be7f2f9f9ec8378e8985bff314c59772a16838d953300f246159d5476a8c9b35630ce80c1

      Download Submit

    • C:\Users\Admin\AppData\Local\Microsoft\Windows\INetCache\IE\Q15AV1NQ\suggestions[1].en-US
      Filesize

      17KB

      MD5

      5a34cb996293fde2cb7a4ac89587393a

      SHA1

      3c96c993500690d1a77873cd62bc639b3a10653f

      SHA256

      c6a5377cbc07eece33790cfc70572e12c7a48ad8296be25c0cc805a1f384dbad

      SHA512

      e1b7d0107733f81937415104e70f68b1be6fd0ca65dccf4ff72637943d44278d3a77f704aedff59d2dbc0d56a609b2590c8ec0dd6bc48ab30f1dad0c07a0a3ee

      Download Submit