Overview

overview

1

Static

static

1

2212d960d2...b.html

windows7-x64

1

2212d960d2...b.html

windows10-2004-x64

1

Analysis

  • max time kernel
    68s
  • max time network
    140s
  • platform
    windows7_x64
  • resource
    win7-20231129-en
  • resource tags

    arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
  • submitted
    25/12/2023, 13:33

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    2212d960d2a4e81c85a2c0188cd9625b.html

  • Size

    144KB

  • MD5

    2212d960d2a4e81c85a2c0188cd9625b

  • SHA1

    4d982d1c75a3bc751abff7f4e3ff0466ea2d9d7e

  • SHA256

    ac0a585e6696693996b797a20673c18afa6f152fb3174a5b734036b6bf18e999

  • SHA512

    4e72b0ae5bc6e8476a587997221197000d05b6bbc03d94387775d2414915c20e38173cce611bd5704e382b1c8d59543fc43b7c713972dba86fe95ed60f26cf25

  • SSDEEP

    3072:wkclhRFn2eD3B1+DREO/ldWSHwLJQ8vgAhaV1R:wkclQcB11O//WSH5

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\2212d960d2a4e81c85a2c0188cd9625b.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:824
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:824 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2172

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\24BD96D5497F70B3F510A6B53CD43F3E_3A89246FB90C5EE6620004F1AE0EB0EA
    Filesize

    1KB

    MD5

    4ea0f61afd52af85f04a48feaca9ea69

    SHA1

    9fcfc85796020d63e933f4c425200ae9a8c5080f

    SHA256

    d8beac6eae5e39a34ebb48e02b7e6763b4e97679fbd5c843686619c0236c2c23

    SHA512

    ba10cfdc53fb1a27ad44ebd03d3e864d0169d108b425840d504d25e96dd616835408ec61d79c3addf9080695e2bc89ba3122d99371a819d5c3dc750fa7317c26

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\3C428B1A3E5F57D887EC4B864FAC5DCC
    Filesize

    914B

    MD5

    e4a68ac854ac5242460afd72481b2a44

    SHA1

    df3c24f9bfd666761b268073fe06d1cc8d4f82a4

    SHA256

    cb3ccbb76031e5e0138f8dd39a23f9de47ffc35e43c1144cea27d46a5ab1cb5f

    SHA512

    5622207e1ba285f172756f6019af92ac808ed63286e24dfecc1e79873fb5d140f1ceb7133f2476e89a5f75f711f9813a9fbb8fd5287f64adfdcc53b864f9bdc5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015
    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\F0ACCF77CDCBFF39F6191887F6D2D357
    Filesize

    1KB

    MD5

    a266bb7dcc38a562631361bbf61dd11b

    SHA1

    3b1efd3a66ea28b16697394703a72ca340a05bd5

    SHA256

    df545bf919a2439c36983b54cdfc903dfa4f37d3996d8d84b4c31eec6f3c163e

    SHA512

    0da8ef4f8f6ed3d16d2bc8eb816b9e6e1345dfe2d91160196c47e6149a1d6aedaafadcefd66acdea7f72dcf0832770192ceac15b0c559c4ccc2c0e5581d5aefc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\3C428B1A3E5F57D887EC4B864FAC5DCC
    Filesize

    252B

    MD5

    a449978c218b5861e23a45d47e2f0931

    SHA1

    a2a1e73bd663265af7e62714c673f3850c502195

    SHA256

    5a865ccc8220a241b6b40998a7da7068e2be9c7eee6d1d880335d275cecc00b5

    SHA512

    a4baca2459275b95c963ee242a500c0eb7f7b69e346c660832986c980ceac7c2c920619c93170dbc9256e33223a10d692730cfb6ad23ff6e4e3febd08a554e44

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    8321c005a703e4bfb20028df75867d82

    SHA1

    0854146317914195a29bb132cc5fa7e53f159d3c

    SHA256

    0c229b96488f49a9ae3213e79243f4c3d41d638bf3176245e998f2715a4ea483

    SHA512

    62a4b19525e07dd6c29995ef13f070ce0c15d332e5561965273f81d3aba03650f01062561592052ad2eef49b9d6d8ada57e05c9faa9a181c3dcf889a0a059366

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    fdc75ce2341a71882fe9bd636afe19f1

    SHA1

    c41ab6755854dbdb3114e512e94121ed4275ad9a

    SHA256

    283b5b8ab8b6519c0a70db0d62fa94db7df5b20e59f2fae2e4ae7c52281b33b1

    SHA512

    d69ba496325b8f23103f19f1747881e1b02de9aebc8b59d4daba294fd3a002ee63a2662d0857bc88979dd31bb3b1a1ce917b5909c2d7cdbeed4c330b71dddbc4

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    62780cd39f6af8e211bf43a289fba103

    SHA1

    488ac3c1ff4bf5c8145de2730e6473ba7f0238fc

    SHA256

    08f7bf230933870a322fc40b7879e68eca5c5d0a057fd490d10e7762d37d5438

    SHA512

    22d97b12f9cc2e2bd919cceb962623d2fc90fae581e679d8b9079fbc7da8f855205bedb6b13924c61c7c5e67ff91c3f34a2be44d2429286a973551ac7fb1259d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    eb97820614575ba3387dd9d54ea595fd

    SHA1

    5e213690b3c9c64c52d25cef9e040b61707eaf32

    SHA256

    33a92d2e4a1e140c684906828b4840814b974ff017a5b30b72685c75b16ea25b

    SHA512

    4e354df8509b0f21b0a2569a5e957f920c1d010b9e6fe3178fd7165fc7aa958b872f3729d9118af58cce2e7bfa0210271c0ad21298018607dce20b8891cdd7ec

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    d86df20754835728cc29103075e14f5c

    SHA1

    92cb204955677b5d73d5728aeb08cfe1cf65df01

    SHA256

    db8cc425a0a701048174c4aba6d5215d671b1d6f962a3fad0742d598f585de01

    SHA512

    5c1c62ea05598fac934b92703cf5f6297e08cd3aa4ed3728f8c333befa0773b85ccb8e4b1f20352b4697ba845d4159cdba6612091d604e61d52897967430401b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    38d2908feaa6769951585e727b76ec2c

    SHA1

    0fd715fce75c029cd402f715bb3ad8b9d2d2e9f8

    SHA256

    a716c0f0514bb702566a6cefec066c4bd2b91b3a8db2f4892ebfdf580274a2f0

    SHA512

    f5dd3d2955f14212749c9bcc9eba47fc350289faabd010b9fa8a6540d3ed3c18763f7928ce1c34318d923bdaac29e9ff251016fc5b77cb2803304206335d183f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    d0567fc80aedfc777e53cd13ef89a923

    SHA1

    9e96bc1f69248cf367f630f0a8a876eec152284f

    SHA256

    fb0b2d4c24a7422773ba0f3d92487985106545bf973fc483399cc2953d840086

    SHA512

    9237c2c64838785cd4c6158f14c3c8ea6817595280cac2000392f0348fcf24ef4d731dd2bbf83f0df288fe49870565daf8c68601eb249b3df4c279d3929bdd90

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    438986458196f31422ce1decafe90e70

    SHA1

    733acce5ef6d0bb425587b0c7fc095b9a3c0d79f

    SHA256

    a5d7e639150814a9995366ed4fe32ce1c080f592466eac7d2598d6fd8a3c8a5d

    SHA512

    b81b46dd46fa8679b5b1d8128bdb39b97a62db1fe6b626da3cd1caa84ad456e2e51212d666c7834c3ec59580b0de12252040ef1dc9369a9147edc20d231df9db

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    dc143a82fae5d258bebed52c33fc3491

    SHA1

    a7c2857becddbdfa37650310968dc609f379242e

    SHA256

    c0ff3dcc1fbf0d099f3de254917bd4a426242adb80ef7bd0527cafb1312fa3a4

    SHA512

    2b8ccf8eb11e27a2fedd0e1880a5b8bbbfc47cdb037bed8fed093eee600f46e5cf7de3288e2362e382af07609a7ccd05dbc2a37e8ad1a5aede60d1596437b8d3

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    112ba2a3f3d2fcd0a93ac563c8bb6177

    SHA1

    565fda4fd556c196e7c37c0fade5320775473e29

    SHA256

    4cb939bc2f4112dfa0066bf7ef75ad6b31b31dce5bef293937be8eef6425cbed

    SHA512

    0be26de02b51b2483d19b8c7c3a7faa31ffe828684096c5ecaa950172a4e97e836fab434654aa29ef6050c879489fc62f77dba26f1f3c11a19e3cc6cf1539291

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F0ACCF77CDCBFF39F6191887F6D2D357
    Filesize

    242B

    MD5

    7cdcf4c397505bdeee6c98f62848cce2

    SHA1

    659134639b10aa1c353324dff09cb92dcec7c659

    SHA256

    0c7fb02f916ae157f062bfbc4bdb462ebe8fe78a82630112ccb6879f6935b919

    SHA512

    deb50ea753bfedc233c6fe885d5fe28c82c725205d579f5df969ca51f596b47f4dc22cfe037bf51948f73fc77981197b11b41b258dfac664865544a882a87503

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\LH3OW312\cb=gapi[1].js
    Filesize

    133KB

    MD5

    288c5ba5b7001fe841c32f690f62cc93

    SHA1

    29aba9d8e4f7cbe25fa5e64b9ecbe256e51fc789

    SHA256

    c2f33dc18eae27d4e878bf837dd97f1bde5151e44b0271408535bb93265b8c52

    SHA512

    e375d41344a086d35accfb02bb1f91e2dd383db032af387fc3d6b1230057cc5e432e9b2cdd976e51425b4f587391d42f4d9d857c2e6f11e822a65edcb85f1c9f

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\U4K6WDY4\platform_gapi.iframes.style.common[1].js
    Filesize

    56KB

    MD5

    f6140cf2e81a9d5b9bc96970fe1946f6

    SHA1

    e18cb20a08d0c13d44b72e36e9560aec2187abce

    SHA256

    68cc8a99c8ed5cc0eb3aa2146fd34bee0051bfd98faa3c03b83c78b4a12a8bd5

    SHA512

    1f61bf7228ae9fc1b36249223f4ca0675da05beaa6c00b28b7fff500e0527ee237d139eaf6793ece67f8730dfff0207bf945a848795aab7c57301433449a8acb

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar5E48.tmp
    Filesize

    171KB

    MD5

    9c0c641c06238516f27941aa1166d427

    SHA1

    64cd549fb8cf014fcd9312aa7a5b023847b6c977

    SHA256

    4276af3669a141a59388bc56a87f6614d9a9bdddf560636c264219a7eb11256f

    SHA512

    936ed0c0b0a7ff8e606b1cc4175a1f9b3699748ccbba1c3aff96203033d2e9edabf090e5148370df42fbfc4e31d7229493706ff24f19ff42ff7bef74a6baad06

    Download Submit