Overview

overview

1

Static

static

1

0b815dd639...e.html

windows7-x64

1

0b815dd639...e.html

windows10-2004-x64

1

Analysis

  • max time kernel
    118s
  • max time network
    150s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    25/12/2023, 06:26

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    0b815dd63903739de3de9aa3883bdeee.html

  • Size

    3.5MB

  • MD5

    0b815dd63903739de3de9aa3883bdeee

  • SHA1

    4b988c8a51b57f1e35c2428d0cbc8c2b142e5891

  • SHA256

    efbb444730de464541d39830675dbfcf3ccbd7c6ce7b1e1f4d78820c784a9eea

  • SHA512

    67c1058af282fded922a21199d48ac8a7010d3a9be502c4c7d6ac9c17f990b8d76604d0798197784a2c59121059b17291b7d85f380728874dcb2752ad307ba4f

  • SSDEEP

    12288:oLZhBVKHfVfitmg11tmg1P16bf7axluxOT6Nf5:ovpjte4tT6N5

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\0b815dd63903739de3de9aa3883bdeee.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:3020
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:3020 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:1688

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    96ba4f17c43b4c8021a96eeaa9e34fc1

    SHA1

    faa7df2ba745092d9f66c7f5492553ff986bb6b3

    SHA256

    22afbd65da2acfa5f0180921f056f5a75978cd2d1577772ff9455abd2ad2208b

    SHA512

    ae916e37d00524cf2a5b315e9194a22e07df50a2ae31e2b062d2e4c56f8cfae657eeb03cfa41fbd24b4aab2b485eb76c85898f26b7084cdc490659e47fb795fc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    59ed4704ee10be10eaf2d54ec9024da7

    SHA1

    1cd8a323ca438e6a700a08eb80632ca4c525e9b1

    SHA256

    3de36afd232d4c97b6a83d853001636a9dec1bb02e50343670bb4145ca8da3a8

    SHA512

    13a930c45e5319ca3bb82e1bf851e5bd9d8b48744538e037d0b05f588a9bac7e544078c8ba35b17bf30bb3f45f33bb902028b4cca0cd5af858de15c992d4951a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    2b5265bf1bf7a1447ee52ef47531586e

    SHA1

    ec12a26f1ac55b4f727cbde9101905f6733f2d3f

    SHA256

    61a0640fc2def2a352ac7fedc6502428816ddbcd3a5d3f7920f24d2ed7ff7fc0

    SHA512

    3450ac57ed29eac646c59f589ac60fb622d55e7fdf4fdefa29706684c2c1572424fd2b66bdeb69c1704fb655eb1373f59812375407d9522ae9cdaf95d089e044

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    d11a21aace33f7c12997bb0c3a7eadfa

    SHA1

    8f14ea7d2acee2c7602d53d16698e34800beb1ad

    SHA256

    3ddfa1b82198e35e0ede9e7c87c79fec5126d0f773b8e5177ad603e57a4c9b67

    SHA512

    53a72312eb43fdcd456ba21b3f317df92d0296c2bb80e06c7c206a85d15336f6a44744b19ab651d163aa465dc95638a1c08c7cb3514f10b7f9f3a636ed5193a3

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    7a608ae45363b21173893ecfc2c793c7

    SHA1

    a39cfd98bf6e757541d5f1c528048a41d1053a8a

    SHA256

    6f6ce6c46db497811cba34f931afc88a826c17495bc5ae09f327921eb26ee6bb

    SHA512

    98cedc6f2656a38d25c3b2b67fcbf999ffd157f5ec047b9b6d9ed42858473b239e712c2825b2013c817059b5ef8c08238b9c6c60df268bca059e7cd6685c4af8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    9d2b869731e8f8a44c2d4125748f5416

    SHA1

    3132431a6882f6c4843f1e96c550fbd63168e9c6

    SHA256

    82bb84e06a8e1d9747bcd2e122c2b8ae4ed0a0ac2e283b69da891b0b9c7f7a21

    SHA512

    7af30d86b95a04831a9e7026da29a3419c29f3cf1b7ee1b49084ac163150379ca3f34cacd6e1f3a453531b5a07cd679bbc42a11eb28ad25208cf5b2989316b0d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    77e41abff3835cd5261ecccfb3728780

    SHA1

    7c4337aa9eaa3361f9239f16927ed61a1f5f88e2

    SHA256

    cd0558cab75d6a3a98512f60073ebd07d5138b7aff083df79b77447c8c8c8ce8

    SHA512

    13f5d9ca5cfc3c4bad34756cda9d80b27732ed1e941125c1e84c21db20a264019a83b2d2117d652bbbd1e1c98dde635b4151ccbc73215e6635c2e671119f0d91

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    e1349b1d5a5875dfd0bc6817bdb5bf54

    SHA1

    79b93e056afd7a33d744612cbd5711e5ee44b944

    SHA256

    9a4a91a40a509180841bd671ffd8b0197aa6b251ccca439028ed119f994746f8

    SHA512

    298419bb1547f2e3d9d68e1ec21357231110981ff61e9737c53f720c48dd97f83bb541023fd5ceb8caa85445870be51c361bc2416683c940bb318a8be6620ee4

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    ebfeaface33e21a30748c6adb4fc31b0

    SHA1

    b2f06a58e665ee512edb9d4e906fb10dce65f73f

    SHA256

    2e29d1f2f98901659ca3ff48a1cfb4a62d533257920d64bfeae75c1afe546166

    SHA512

    eee5385eb6db290a1e10d23eee4901a9dc5aa1591e89f9404ce73b7bcfd1c0e16f8511d8102c6e9bd600892713935d020f464af2bce733aac8ebdb4285854a9b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    cd4aed57bf047a7164689a6adda1e540

    SHA1

    6d5e9272398a36f37360f90661c6114fa0d5e893

    SHA256

    a69ec90363b7e2bbbcc862430fb02e46b119707da2d9e5bf5266f2aa42cdc9ce

    SHA512

    4a5c99364e1e2535e731677a7d6b50c18f34264787e22793c0f93fc5f11198a213b87b8074980d37b85eb2659d7997ef0db9c3b00152b9ff01af08bda5cbf015

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    14466dd2a7225d244b493cd497c19323

    SHA1

    f142975889ae0640685e10eb03b60809e58dfb8f

    SHA256

    2d22fb9998527210362c6bf3cb07d3a88c1686b16daa4699fec6af8683af6b08

    SHA512

    2fc0d25402f1583142230e73df9669373e184087b73ed48a84ecf82ce518476a14f3616b8494a77a27ccff7269c78e426948c82d12cef231862aa0c373929bf6

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    b264d236f81dcbf1b03ca68d15e9b596

    SHA1

    847bebbd750b93df48806bae0a920e3c6547c235

    SHA256

    a8687e02f95a4bb22a5ff6ff560326f4c261592eb0835be24a90a9e829a75634

    SHA512

    e88d1765b10c807dd45177e87bbd3f3a662e246fc3f2a6315a930f268d009de4f94783bcd44c34fe3d074477f01f27c9c5eb4be22978aafd2d87d90c8d5ad0d6

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    368ade111a0a5005cd528b5052aaada7

    SHA1

    f54c109b56a9412c720619e0a562cab9182fa54a

    SHA256

    84d3b7c4c1768290f22fe80a63144bdd6c4cab28b5fe575dbf77e981fb8e4566

    SHA512

    7c0bb3b981617ed618246f9a684052d65254f6a28b726b8a1c64fe5264e10bc27f73671affa679a8e2c917d8e32f4753ae49789f2d6f15c03c92326ed61678c7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    5fec93b0bcda1840249330da0aca1f98

    SHA1

    be6df71e80fdb9c658fd1da424d05dce8832084a

    SHA256

    f8e1648466728ed61b2ab6024d689a00d755bba0804239c08cde31a26e2f8478

    SHA512

    278e5ca8811879fc6068ebd31b721b8117be5d2f859d88c3d8eda629305e65dd332bc79812b31a4104ab5e86668c77e96a29f8889ddce121be88b1b7711abae3

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    2c0ca864eb5b599cf66a2a0530587517

    SHA1

    6ada7b6b8f8426c53e024aaa2052f21a70514882

    SHA256

    1a921e43585cda95f1cf0c83ba62d7f593684a075a328c6b70b35a08356c0058

    SHA512

    f4ea6ba8a86abc41648ea8e699df665654362ac76d9bb5d9cdf52a8f34e4a48ae990df8e0894f8d664bf172ae157022b60972ebd3d7e4cddcffdef27d980cb5a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    91693abc73a8b818ab6fdce9f46a44f6

    SHA1

    de384e541c30653ce6216668829713b55f046575

    SHA256

    2e9b5e45674cc928565bc8c1e99b323392f7e6930c2e932dfeec503a643cf138

    SHA512

    8f7f8e828dbc631ae19347fa7d42b324396f3ffca7c1269ffd4a4f6faea2bee072a5d8b5e0075b04af096c9df0dcd58b74aea9aef6d8e11fac2df38b52a720fa

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    d49c366315733fd72b3f037315c1755c

    SHA1

    227980e3635b00730da6e9cd7e8809d893523bb7

    SHA256

    7b15f61c67c6eb9106071b51151962670a134d4be784d552a1fb52ec03bdddb9

    SHA512

    09860b3b4c647c72b7588b1cbd7b2af1753a00a24c2405a538c60cd1b1da3449627db71575524c3ba4c594da3d40c6fcd0265450b9b02fcb8b844fbbef411b5f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    44f515a72d5ec978f625d96b0b499e5e

    SHA1

    2568308c5d1ea15bb45e29e269565f8a1c4ec0d4

    SHA256

    3fb91855522fc27346df27d701c94e442c2fff503a5e0f7f367c0a8febb2d6fa

    SHA512

    92ecf75781b384704c5388513ce0b4ff9966ef5d2792131c6f6758ac98a896fd0d06e524c198a8a43923657e9bd19a2e8ee605d4f94df1f786e6685a2541dfc6

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    aa61c707037648456904fc7ae4a2af39

    SHA1

    17fef163f38361febc413a6c97f6be7b5fb618c8

    SHA256

    12412e6640d693f46b8dc465463f5a6359f63674a84a829412ff167f5740a38c

    SHA512

    e48639b51111448bc51ae9737f826a8b68db19f5bef0653803762ce2dd6b6da9901f93e8e0c413863d933267431dfffab4797fa1b3153d044ecbbf8da7e134b5

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\4R90HQQX\jquery.min[1].js
    Filesize

    83KB

    MD5

    2f6b11a7e914718e0290410e85366fe9

    SHA1

    69bb69e25ca7d5ef0935317584e6153f3fd9a88c

    SHA256

    05b85d96f41fff14d8f608dad03ab71e2c1017c2da0914d7c59291bad7a54f8e

    SHA512

    0d40bccaa59fedecf7243d63b33c42592541d0330fefc78ec81a4c6b9689922d5b211011ca4be23ae22621cce4c658f52a1552c92d7ac3615241eb640f8514db

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\E25VF8N4\jquery-3.1.1.min[1].js
    Filesize

    84KB

    MD5

    e071abda8fe61194711cfc2ab99fe104

    SHA1

    f647a6d37dc4ca055ced3cf64bbc1f490070acba

    SHA256

    85556761a8800d14ced8fcd41a6b8b26bf012d44a318866c0d81a62092efd9bf

    SHA512

    53a2b560b20551672fbb0e6e72632d4fd1c7e2dd2ecf7337ebaaab179cb8be7c87e9d803ce7765706bc7fcbcf993c34587cd1237de5a279aea19911d69067b65

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab66EF.tmp
    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar6750.tmp
    Filesize

    171KB

    MD5

    9c0c641c06238516f27941aa1166d427

    SHA1

    64cd549fb8cf014fcd9312aa7a5b023847b6c977

    SHA256

    4276af3669a141a59388bc56a87f6614d9a9bdddf560636c264219a7eb11256f

    SHA512

    936ed0c0b0a7ff8e606b1cc4175a1f9b3699748ccbba1c3aff96203033d2e9edabf090e5148370df42fbfc4e31d7229493706ff24f19ff42ff7bef74a6baad06

    Download Submit