Overview

overview

1

Static

static

1

15021cd4b2...0.html

windows7-x64

1

15021cd4b2...0.html

windows10-2004-x64

1

Analysis

  • max time kernel
    179s
  • max time network
    191s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    25-12-2023 09:44

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    15021cd4b2d996db84973f2c2620d310.html

  • Size

    187KB

  • MD5

    15021cd4b2d996db84973f2c2620d310

  • SHA1

    3bfccf3d91924e2c902a4eb2de81a3a2b98211c2

  • SHA256

    1761ca1f8e45331bcaabad7e3af4a6f5d2abed6964865024dc7b438f6f51e53b

  • SHA512

    b6555520a70ee30133793ebbd84fd4db2798740466cc3e3b7552ade1418fc20612b62e92f00c4f9826b32a973f9b32bf05b46821ef29a2455df3be94bd3f0f57

  • SSDEEP

    3072:PFNUiqbIrqbIwTta5krCO0/V/8rnOL55ShutTbntOik2Q5MIsuQyf5bTM+MdBXpr:NNUXIIIJ5krCO0/V/8rnOL55ShutThOU

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\15021cd4b2d996db84973f2c2620d310.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2520
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2520 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2572

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\24BD96D5497F70B3F510A6B53CD43F3E_3A89246FB90C5EE6620004F1AE0EB0EA
    Filesize

    1KB

    MD5

    63b05c18af9bac40973ec9debb8b71eb

    SHA1

    08edb57360ec2c8fc18d1eb438dc77248f60a48a

    SHA256

    7284ac498f158f73d12ce5f2ff67e2599cf01f09d588a29e1d69eaf14ed6c6fa

    SHA512

    111e36f4abed040c503a2b1bb3b537b49ab1e7d95451ecccbd2674c10eb698e660d0e49842c3db7fc1b362389b74629d4ab6473c7e5de57ba8280eeb5a8bd9aa

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\CAF4703619713E3F18D8A9D5D88D6288_A7725538C46DE2D0088EE44974E2CEBA
    Filesize

    724B

    MD5

    ac89a852c2aaa3d389b2d2dd312ad367

    SHA1

    8f421dd6493c61dbda6b839e2debb7b50a20c930

    SHA256

    0b720e19270c672f9b6e0ec40b468ac49376807de08a814573fe038779534f45

    SHA512

    c6a88f33688cc0c287f04005e07d5b5e4a8721d204aa429f93ade2a56aeb86e05d89a8f7a44c1e93359a185a4c5f418240c6cdbc5a21314226681c744cf37f36

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\24BD96D5497F70B3F510A6B53CD43F3E_3A89246FB90C5EE6620004F1AE0EB0EA
    Filesize

    410B

    MD5

    6a7830703fde24b279c47a41c5a86b4a

    SHA1

    f1b99b3a631c1d566b3b1537528e8e442b5b2aa1

    SHA256

    320f50a13df9454c570c53c4162c0e18867173c7b2b15ca5f01a24db20c77afc

    SHA512

    2c0b691b207d63c54c3b798e58c0c4e0900ec24e5a14010787565fc7a57b884b0b38952e43eed35be540830da02ed95fb78bae776cdac5cfe73b72ec91a1dacc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    5679f41a8a977fbdb4986ee77e4b91fe

    SHA1

    6aab4f7fc362e674f47aa78a27e2bfa745c87f52

    SHA256

    8fc3614a3c6d253ad488f17755ffc7292467c12dc9cfe8c29793a7276cbfaa60

    SHA512

    3ecddb098937c735c25da2e7fae4392e5524882cb73eac32eb3d9b69b47cd66b8aa172026f62503f7d6cafb2f40be0887a663fdab0924ea0855ece61963a45f2

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    d82a7e2eb8e28644beb2f4fc56050dcf

    SHA1

    37146b3743bef1516bb79ae9f60a362c2fe5cbe3

    SHA256

    e82a84e5208b6ec3f8148154de6168f08d728e5cffe288d9060d6e5dc3b0d911

    SHA512

    d399120b82da3bef90a25b923eb19b50034d2381faa5d99ea1c18882b0cd5862f4a552be6e6c4f2c40766ad5fa2bc53c4af8071cedf6fdf98025e302869a32cd

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    4ae9a0817121db7d5590d0bad156830a

    SHA1

    ea0ccdbc7297e11346bcea6290ab5418e1a7c00e

    SHA256

    cb6a8193557d2aa13d92f75ae70938c986d6cc5c01184ab97ff49b9c138e2ef2

    SHA512

    16d1128b5812314bb38629ad155a3b0d2f1681ce584f351c395ef4a0c880d3a18c7934a6dba7cf108a250aff0f4ccbe4a05d195fedc986373ad87ae4ebdb41bb

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    ee9c14296077854284d1c940c2c6e870

    SHA1

    449da5db9e9e5f396b66e6aebc6e2060ff0aa6cf

    SHA256

    87131ef72ee5d12e109bd5600409ce434cde863b70141323668655a709f0170c

    SHA512

    86b8154189967aad09f068ad7fd95e52e69c3d9c896e8761e743985b433c470915a43385f8f1fe55c58b7508fdfb63511b5dc4dab4c461bfae5bdfdfa6245c65

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    b82e08d4f8653571a32a80f5371b8164

    SHA1

    ffd47a6ca38ce148bc17bbea9c6303c0c137004d

    SHA256

    ea2716630a658160ca1f0bffc5c2e060348e43758d76ef4ab20aac624f732a51

    SHA512

    859fc91c0e99dd883a68eda7f436f814e63236d85b3c495702eefc67dafc5455db8559bf2d243b29f450a1f8fd06ed639d159d158bb6b045b7c174f30ca8c247

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    e6b3ee2647edf3f68ae4e9360ce481a2

    SHA1

    3ef626096e1ff69a4a7b23319d1fb97b3f543421

    SHA256

    87f6822fff90798f5d25a1816cd16db86310d86865cc2d028987100e1514ac26

    SHA512

    1e51befe725158e75f67a96800530bce53b88db4ad4e7de1d0d2291d5a0004d6fd170f25b5eb544e4ff04ba9f3b4f5726ce735e7a790c5f42970e7104192db81

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    d4716035a8082ce473d4495ce08b605c

    SHA1

    8ff27eccd3e9d8e48fdfea7f095944de8ac7fb58

    SHA256

    0368b29c322c58e0a5c8cbaa95ee7e0183e0c11ca258860d1b831a139defead8

    SHA512

    9b4962e1324c6db66086c21c66cd3e1d0858ba64e4cd27540a80342aabf207b93da36a662dac257d0768031b5dae53c26df5a7a68cfd5d0028fb0eec44779d35

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    13a9b0921dc9897dee84d44502fff422

    SHA1

    bb7dbc895007991823df5953f2846266a5537583

    SHA256

    5ebd048ac7ca1bfe7b50f51e1bcf58d9fd90a10b5c1f9ff7a5450bd6edd70587

    SHA512

    962f4c0a291b6fb0b6efddf651bcb3d7995253c479d00feed8773c1fbd6ada3430c0f3d4656455ea72786123d7aede4e8a85d0fd549b39ea7201b0d4b48c0621

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    27f3d32db68491ed44a67eeab962c617

    SHA1

    e12b3a2815c9cd8337e86c2faa9aa6ea3762f530

    SHA256

    93353e6f1c95c952e51ab3f97c454d11c744f73ce79f02c2b8026348a16bdcba

    SHA512

    7ccc4cc305650e4fa75ea2f20280fedd8594aa6b006c0f6e4a1f84622c490922f2d2b7928de91d8065abd1a2099ce702566cd5712d98de80f4c28cf698d67b37

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    4f2dee82f2de90c81ffc776338633291

    SHA1

    8e5f93f89b988bd02df2e0c8a60e93ab6df86f3e

    SHA256

    7c53c95084356a352f602939f0bb7534eee901e451558f4ec81133697d626a45

    SHA512

    aaf96e664b64f00e0562f4486cda0f78cf17b0515b60860b2628d38e7c58a8f71c3896b05a53bb1c4358f482362d59866550332bf66b166296c6782f075b24c1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    455a9ccd9aa1999006cf63126dc4fa27

    SHA1

    84a8b69f81a642a9aa57df66406a89378f69bef0

    SHA256

    72d5a4a92e4ba44816f2deb9ee3ced5565a80e0c79ad14cc03a489d412afae36

    SHA512

    3006197ab278fffaf44cf4ed0105b19d5f056c72bbefebdb95939f2bb34906d16814b384e061b10da553a68eccffb7558a8dc5aeead1e493d44bf2e06fb67109

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\CAF4703619713E3F18D8A9D5D88D6288_A7725538C46DE2D0088EE44974E2CEBA
    Filesize

    392B

    MD5

    6c26731069f6205707d8c4b7273ac8a1

    SHA1

    e1eddf6155825d01eed18d36689ad988c3071dfd

    SHA256

    a3d53829390257d7ae8c69e608dec7242d0960cac749aea099462ee057c6f390

    SHA512

    7b3149c7d56e9ecd75c95730006b825fb0381e1b4e7afed1d51f80f6e30a3d2f37fc44ec70e3d41c8d3d5a49c723668a8a5121f8db978b145e3b346b1464d8cb

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\D0I6KXNQ\cb=gapi[3].js
    Filesize

    64KB

    MD5

    ee01651d160cfc55249d6011a3c45916

    SHA1

    79d6121df6575974ad21dafce33ec98e3f2f0a7f

    SHA256

    639d75299973c7d3794eb7eb129e3b5a6139f9f521e1f14383abd0fd501219c9

    SHA512

    8a39dfc1ff2c58ac106225976aafdaf7befc0a28903a0c65e2c272e1967c3336af2b477ec12604400bb8e16aecee6567c9cb9d157e3d54649e28b9b2f920432f

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\LAJVCBJI\478691279-postmessagerelay[1].js
    Filesize

    12KB

    MD5

    92169c8a0fbf6e404267d0705cdbdf42

    SHA1

    a5cd88b74ca5ced239cdbfb458fe25540d671f46

    SHA256

    dba668b49a111527aac8f616b9053ea57c944e01a84ebdcd02a13da921223384

    SHA512

    8c5d35ea512fa7be367cd9a9ded2f23822dcce730e5502a355ed0d48949ef763eab13be0d50a66de6b0f8419d6a002c12c4ddbf20d97f5393ba922e48a4f02e2

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\LAJVCBJI\rpc_shindig_random[1].js
    Filesize

    17KB

    MD5

    f019fdda31635d2a31b151ad8ad56c7a

    SHA1

    6adcbec55f66ffaef83d9a134423aa98eb2a2189

    SHA256

    c7fc0b1526533002c956ebf8e8c42c3ad3f96c41ace73fb4063cc89051944831

    SHA512

    fc278c12316e098976833882a38c788d812f9d36bd1b9b2b8c87dab4dc906af26a860df95436ea1b7d509236d44d0533d475a153437f8f5d42653fc28a77ad64

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\RU3RPYUN\IAVR29UQ.js
    Filesize

    157B

    MD5

    67e216a27dda24bdcb086c2385b0cb99

    SHA1

    17141c80f5d32bec3691c5ab24741d8b7dd5f0c6

    SHA256

    9dc433b2142d3ba0803fcffa53f19d34da26996d20c829df6d694bc887325dd7

    SHA512

    802319543dc64cb011bc2684004e878a842b73aa55e4da1141ccb8650cbf42fabbf2b46c730760bbfcc7a140e11700244b9f5da78bafe9fca7ec7825c12b4255

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\U9VC31Q9\plusone[1].js
    Filesize

    56KB

    MD5

    4e4b8f0dca4194cfa73837fa19118e13

    SHA1

    6e0779ee24d5f5bf2eadf5242225e816e0322859

    SHA256

    8687c0345a3514593f96c7765b3a1ba23a941be6b31d98538288731ea5169102

    SHA512

    98568d5982cd1ee5399cadf759ce4bee49f954305132f286c03201b901c64d96a648c0e7d7f87d5b30b6a3553be6931bcd71a1e0f8181d3a076d2135b0b3f748

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab204F.tmp
    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar212C.tmp
    Filesize

    171KB

    MD5

    9c0c641c06238516f27941aa1166d427

    SHA1

    64cd549fb8cf014fcd9312aa7a5b023847b6c977

    SHA256

    4276af3669a141a59388bc56a87f6614d9a9bdddf560636c264219a7eb11256f

    SHA512

    936ed0c0b0a7ff8e606b1cc4175a1f9b3699748ccbba1c3aff96203033d2e9edabf090e5148370df42fbfc4e31d7229493706ff24f19ff42ff7bef74a6baad06

    Download Submit