Overview

overview

1

Static

static

1

020766f9f1...e.html

windows7-x64

1

020766f9f1...e.html

windows10-2004-x64

1

Analysis

  • max time kernel
    120s
  • max time network
    131s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    24/12/2023, 14:45

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    020766f9f1c89d238fa29859d29c5bee.html

  • Size

    53KB

  • MD5

    020766f9f1c89d238fa29859d29c5bee

  • SHA1

    c8985a50d2f0e7653d61bc807ba9604535f4c9ff

  • SHA256

    e346a197674f774231bbb9a1c9eae6e1d56fc0b704a88472fe97244100581ea5

  • SHA512

    090e10c51b3c3de30940c10be87cb70246a056fd876de090ec2fa778610c6aa01a2e19a8a0052b2650b8aaf65a3cac9052433d6b95964156bdcf1ae97bf044a8

  • SSDEEP

    1536:CkgUiIakTqGivi+PyU+runlY963Nj+q5VyvR0w2AzTICbbeou/t9M/dNwIUEDmDR:CkgUiIakTqGivi+PyU+runlY963Nj+q7

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\020766f9f1c89d238fa29859d29c5bee.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:832
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:832 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:3020

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          8775709a1ec72789adf0041ff28598e4

          SHA1

          f873057bc3fb2935be2b7f1fdaa1bbcfd3a28a6f

          SHA256

          5ac2356684ecd3ecc7a77cfeaeb092b09b05d9426c63f11367f1af08d3cb78c4

          SHA512

          b9b8a53f8ce04d105a2009611164fc064f8eebbeb986941ed6d5d3d2ed4566f8d82672cfc931267fd3a0da44e8e7d56fe89faf0a164ab4304fa32a93d957bc3b

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          83e8c2d7317449dc65a6591bc6bfeac8

          SHA1

          e2c2835b264859dd2f2e15c3600a746cb10514dc

          SHA256

          33d5d6c354b42b90a5e7636031abe58896d167b9eee08b2aaa2935e6d2fc05cc

          SHA512

          1b40c9dfda847fe2727cabfaa3b57fabec57208fde7a70f394970c28858441b531703e35ffb62cf59e18255375fed12d9aeaa52c73ecbe6dc1a00660eb01511b

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          50146e5e77f4672e943749e726f82ead

          SHA1

          75c8fb3636918cf43b01685a96e1d2fb88088470

          SHA256

          7e58b19559edf0bedda08bd6ee95e91cc6ae002f7597aa04ae628044dcc96034

          SHA512

          38497f810aadf30ac8656ff90181d2347554cd4588244dad2694f26570e20b9264fd177a4002324179652f0f70b03c09bd308d90d03f2c8545cd21356194e521

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          9ce813de938b82cd6993beb1f17bb6ca

          SHA1

          714ae7531ae18fd9e73771135e264ade9757fd6d

          SHA256

          72162908e7e7a064d828bd6573adcfa4635bf0386850242523ef38110d734815

          SHA512

          262ba12dbb6c98ca29a61950008a96d7767654e4edae56c50cf3e667f0fbee25360663c9ba6c67eeca325f7dfe231f0f54c01bbe12061f764e94abd6cd20f716

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          df8144fb35001567d9699e2a57383169

          SHA1

          9290d18d07cc8770b4faf18eb069ba6b5fb37504

          SHA256

          88d56a13728d9d6c32eb5b4db5ff254ef3ddcaae5bec296d7231f427c0fab189

          SHA512

          7f91cf54533a999b93cc7b888ee8f33ab83eb0879dea390b7ec6e7c2165f423042e5ecb70ff3641d803dfef25ecedf96976dd18bce1deb40058fe1145c6ffce0

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          3b376f16763c165bb85155da5a33349e

          SHA1

          3988a842a6adbaa85f3031be85633e5497bb8ab4

          SHA256

          6bd88b42806282e993d108b1a4f83cfb171acafb5d0c4285185ea57525ef3ce2

          SHA512

          80ce9e15367f0ea1a8e80cac5fb6e120bdacf5ea432608db2514f30bcaba05d3c9ea86b413fd170f279f568d10b5b6af29368a0a754607967034feee634e8751

          Download Submit

        • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\4K0WM73A\script[1].htm
          Filesize

          706B

          MD5

          67f3a5933c17b3ab044826d3927d0ba9

          SHA1

          5957076d09bacaa6db8ddc832b4fd87ed8f05f8a

          SHA256

          97e800f4836b7030dd58fe6296294b7ff5ef1b5eb0e88353f230ea1608d2bb64

          SHA512

          03ba224055ffdbf32b7eea30c764dc18d66cc6d8707dc5fafab74e155b0bb3d4d691c5788b033a68f05299547297125122778fa7e3252f93e7343d918936643e

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\Cab5ACF.tmp
          Filesize

          65KB

          MD5

          ac05d27423a85adc1622c714f2cb6184

          SHA1

          b0fe2b1abddb97837ea0195be70ab2ff14d43198

          SHA256

          c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

          SHA512

          6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\Tar6389.tmp
          Filesize

          171KB

          MD5

          9c0c641c06238516f27941aa1166d427

          SHA1

          64cd549fb8cf014fcd9312aa7a5b023847b6c977

          SHA256

          4276af3669a141a59388bc56a87f6614d9a9bdddf560636c264219a7eb11256f

          SHA512

          936ed0c0b0a7ff8e606b1cc4175a1f9b3699748ccbba1c3aff96203033d2e9edabf090e5148370df42fbfc4e31d7229493706ff24f19ff42ff7bef74a6baad06

          Download Submit