Overview

overview

1

Static

static

1

44920c59f3...e.html

windows7-x64

1

44920c59f3...e.html

windows10-2004-x64

1

Analysis

  • max time kernel
    118s
  • max time network
    139s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    25-12-2023 23:54

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    44920c59f39080b1a0ee4b378f6a436e.html

  • Size

    53KB

  • MD5

    44920c59f39080b1a0ee4b378f6a436e

  • SHA1

    7399fd27f58b8a5aa23d2f472d6c690b978d3fa2

  • SHA256

    e0f6cfc8d004b2da5b7df3a336a187780e05965bb1a8edbe68cebaf3f760d566

  • SHA512

    10407f7517eb5b57110513039eaca970bbd69598b67299aa5c33e0f609f9f6471644914e661a968f1a9d741fb257ff8b81fbddaf0be78f6797283d90076b2fc6

  • SSDEEP

    1536:CkgUiIakTqGivi+PyU4runlYV63Nj+q5VyvR0w2AzTICbbpoe/t9M/dNwIUTDmDd:CkgUiIakTqGivi+PyU4runlYV63Nj+q7

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\44920c59f39080b1a0ee4b378f6a436e.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2180
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2180 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2992

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    24e4e4ef1d59faa661d57b8ed7a1d11a

    SHA1

    64e7854f3cb83a6abfdb92f6c4229bd523d866e0

    SHA256

    8ffdeed39df44f7f3ced28bf7001d6488ab95ecdeca8abd1d98f2fe1eb1ecf1b

    SHA512

    2c434e9ddb387d88c5baf512f81a0b34f9085ae5b579998d404d652ac07bba8c0673ce8f94a34322df651710cec6f99b18a2994eba11362752e18b54bfee946e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    ea8d8be1b6dd7a7183a45a54d29ace8e

    SHA1

    485f1d4285d246cd466fddecf025b38d914f1105

    SHA256

    94c5537764925ec0f3b0c409f163eb7b8f9e24a869582cba8f393463d01a23b5

    SHA512

    f857377940ccd2e442f30c0589cecc7fb01845c341ae4077479759dea3fa088df651eaebce0b1f1343f5636b01c82d3b677a33f1b0f7e568c53ab2489fc7abcd

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    198b2c7c7b2b2b3bf7f8c0ac2da6024d

    SHA1

    1c9b8ea7d25909340def7b47770965d1e122b211

    SHA256

    65d1b4a53d83097086e71e768a370b649285f56b5b5eae5f34b92f04dccb95be

    SHA512

    6eae0652d1e829806bb950285e8bbb21ad015c772fe6f146124fa67e102af2200ba14eb44ede5194e19b1c44d41a87d7b048955959b35730460f7c5b16d407ed

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    ea42dc2263ba8eab8ab6ee530dc9bc66

    SHA1

    7b771e358104541a6bb5eeec2f5a7ba8a361b622

    SHA256

    f421a064f6fa98240265ae3c91fc1d434949314ea03a2cae36f61a48f496034b

    SHA512

    700cee0656ab00062ae4447c7a1fa5cbe80cf55d13436c76f4050e7a8f4edc508c3d5a2c330190d9eab98144965f696658b1e0bdf76e896f4c10f9c99102d71b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    21c2c7d65b80c00ca7e1c4b0faf3457d

    SHA1

    8331c23d18700522fca428aaf9e8e914364ad5e4

    SHA256

    889eb2f9a88a8ee9ef206f292272abd0fecd7d503b99bdf54bd64a2fe2dfa595

    SHA512

    20194f5245c4289435630c81f1cc6c89ccfec50442e634d37d1a8dd9c21c36836438d6467c76b8f8061ef007437a7a157fd991d4aa885cf400faaf1d4ecaf5ce

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    2a0e4d0c222420259f7553bbb563f11a

    SHA1

    164c4f9d5728964fccd88629e7b301709c606ed1

    SHA256

    8b631a9ad94a9d97b69bfe9925ce5d42cdfbdb7af8c34b5e22af808e078ae4c0

    SHA512

    5da5f899fef90762aba5d03a3a783480b1e4ad53a7b616116464547983aadbba91f6c1aa0934159fb1a53720cbbb5bfa9d9a05fefab2c7a70264f38db3387767

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    7139028b94f1d05c7706d6c68e019027

    SHA1

    920839b3994228f57a8494d22d712843fb3fe5df

    SHA256

    4370296b5e0d103909c91145a9600c66609a2c4568a288d1062329860730494b

    SHA512

    ab7756ba5bd1d40767764e17121fac1c5ce0d7766d5a65aee6b7507635276893775ee596f163179154da27e1f3cbd00742c9b7cae60152dfa39b0d2803420942

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\YT4IJQ91\normal_post[1].htm
    Filesize

    706B

    MD5

    67f3a5933c17b3ab044826d3927d0ba9

    SHA1

    5957076d09bacaa6db8ddc832b4fd87ed8f05f8a

    SHA256

    97e800f4836b7030dd58fe6296294b7ff5ef1b5eb0e88353f230ea1608d2bb64

    SHA512

    03ba224055ffdbf32b7eea30c764dc18d66cc6d8707dc5fafab74e155b0bb3d4d691c5788b033a68f05299547297125122778fa7e3252f93e7343d918936643e

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab8E6D.tmp
    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar939E.tmp
    Filesize

    171KB

    MD5

    9c0c641c06238516f27941aa1166d427

    SHA1

    64cd549fb8cf014fcd9312aa7a5b023847b6c977

    SHA256

    4276af3669a141a59388bc56a87f6614d9a9bdddf560636c264219a7eb11256f

    SHA512

    936ed0c0b0a7ff8e606b1cc4175a1f9b3699748ccbba1c3aff96203033d2e9edabf090e5148370df42fbfc4e31d7229493706ff24f19ff42ff7bef74a6baad06

    Download Submit