Analysis

  • max time kernel
    146s
  • max time network
    152s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    25-12-2023 14:48

General

  • Target

    26e279b54b72198fcbac1e67d6758682.html

  • Size

    13KB

  • MD5

    26e279b54b72198fcbac1e67d6758682

  • SHA1

    05aaf34feec6540b532754e03e9d0d926daa8902

  • SHA256

    14e6fe980d89f71cc1ba99b9f3dcc2bd24e6ff43ac6fecafadf980b71b175e93

  • SHA512

    460c62dea017e629ef73ccc6918ef02ee6065f38aaf96c866dca87d4c5da7377a1e7e88dc0475a32b5cd6a3d868f886e44fd05aae1e3aa953c464af697ac5159

  • SSDEEP

    384:ahMDWYV6fx94bs3GsL3THyAAHk9TRM5KR1oqt7WPh:xDVhbB23zyAA8TiQjt7s

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 41 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\26e279b54b72198fcbac1e67d6758682.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2224
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2224 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:1964

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    791972e83ae9c5ba435414da7009026d

    SHA1

    880fb9ef2b1b493fdcad60e129ced9da4c01db5e

    SHA256

    670e9267e5efaa125526e89d38bb191ffdcb2c1973470ac89a19c03bc86e93d5

    SHA512

    d0b2be68b953cbda00960b8542858145a0aee4426f3fbb5b177104d79b8a8959050704f82348e38f0ce6e30269d6dd515543d49653ffd5c44f018999bd9f3102

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    dcc8f3c84abc43d9e68338ca4956594f

    SHA1

    e584cd985bd4043ab39c35f5a6149113f74d04c6

    SHA256

    85aa0be4bf7b1106804e4f113ddf889558e4e2d67d405afa7747766feba13300

    SHA512

    0db8ac1f92d29975e425fe7f32a6beb12feb48aabf904d9416d5cd800c12976e2dd6c4a4cf0a48cef53344469cd8b540e42ee11f83ae6568de21e08aa6a440d2

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    d3d469665ec39ce2930fe95b9e9cea3f

    SHA1

    3fe9d3c1e58a9bcb936d1221890b5ab9e7487bdf

    SHA256

    6b8fa1c2b14e5d60b8592467e46feba720e23ba9132256413b879b6d1ed67626

    SHA512

    ec39abd250f489cad6cedb40d2b358110bb97c3029a81cd8f4bc7eed9a301cb297f6ea2844a2ae05e71ee6bfcecff4ca8a3697c5f16516cd10ac56d0920a85ba

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    28b34fdf4e4085b18eb4577980a6b2c3

    SHA1

    1db21bcf87e2a9574ecb83c5f2587653551f06d9

    SHA256

    cef83f889a30b6fdd37b0a4570d5788e8ca67599a24dd18be0b4630932e1e9a4

    SHA512

    a34fefe7cdb850b0736fdfbc06519badc438429f0e39ab7e36bd52d1e6329326f65ec3c0012f021bc9880c6a6c33b9489b51fdcca6dbbe25ce8051ceea98d185

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    5527d92c871cf56b27eabcd68d789708

    SHA1

    3cee12a790ee3ecf8b7fe088949ea28a4405c2fc

    SHA256

    270b0bcaaec52ca28def520f66c53261355b89246c2b762f0d57df4b3287efc1

    SHA512

    9470e081c69eaa191a4632e5541fafceb5976143c37501ae2cdeba0b2c63dc8295e8d6f6d99f1ad288b7c8d82319b8980f24597c1acb06b3fce363862232079b

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    6262c4d53b27ee66924ba45abb5bb715

    SHA1

    941253dfd9bed8b1418fdf6856144021e7d38f49

    SHA256

    e813bba133a36c629520f44057989c911a7a453501d24311eeb657227108c155

    SHA512

    7ac09a300c20540d8ca82065fa230a46108f640d2bf05293fce661e6ebd4fbc8eb3643fa98bde7fb6bbd445ee1f6e82c90c38358b4fb42ae9970aaa7b9fda986

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    19c7c9da3829aba5e5df6d4838ec476e

    SHA1

    a263c59b4e5df4e519f6a786c607d2b60851e91f

    SHA256

    5d158e713734a1f0dd5640afca3fe1fd2c5ee2e7e7bdc1bca4ba3da206c73a65

    SHA512

    cca99b3cec1768c677b294aad529f1a342476fa31f109074bb0b5c71a47770ff8501dff464a398a08187de8d650639a60d89be1fb596beb5aee42032aefb39f6

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    901a9f34fab08ec03fd7687371a3013f

    SHA1

    06a79a38707419c283a355576174a92a04ef436f

    SHA256

    afad3840530c9b487e8dec61eaadf52ec517aecf10019921ea1b20064b411cd4

    SHA512

    1453cf11746b498dbd2451c81225e8ab0e229c44b05a8c7ce01d34353d6ebb3dda3c16f49f1cff4c2168d78cf047034e1980a2cc9f7bd47304cb2d3906012248

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    50c6b57206bd58bd57b937aa84d99fc1

    SHA1

    fa12afd816c2caa072604361ef30b9674841ce6c

    SHA256

    e3009bc3adaad63e7b5bd28d1f96b1620aa9794d9c1bd06f9161406dbad322a5

    SHA512

    7720bdbd91fa80ed9be303fba890cc89f1b9b70f598624157a9b759be911715dfa479aa788578fc84df2ccebcaf20b76c9d4ebe9e60d832f6c4c15deb7b3ddcd

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    b7a28782a78a24528de03b43d92f5e28

    SHA1

    584916e168ae4db2e7a3a7aadeec635408dd82ef

    SHA256

    c9a6c928cab60293c62227d8e4c4b01439886277263b930de887fb2d491cbcb4

    SHA512

    202179ba751a25a921447ef7ebb1d81e2e6afcd8061fb9758f5a2205af798279e0447dee24f52a81213e3cd81bcfe7375252789d0272f787bddc4a21f67b78b7

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    527ccae42237ca1b52c8a6395572063d

    SHA1

    acdf0fc6200a4b48e4f7d170deea51ee44308c33

    SHA256

    bf9ef0d09ca941e1faa88a9a1e6e899b4aecf985ee7ee225018c978284baa4f7

    SHA512

    b7030bd88e9997d21bbad032698f02cace3c2cb38e58f9cba5f4835c68a2d9ff2402ddb130af1d450c32c8a27d44d38869a5fbf1c38bef7a0944d5c3741f71c3

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    2f4e328d788822fafbc323bf11b8f605

    SHA1

    6ca1f42d6eaa59e70a8f2d31c549ddb6e21cba2f

    SHA256

    fb7566b313bcb0a04dc3ed8494ccaedfd4ca4671693dbfb6ca5ea09b3fa2c27d

    SHA512

    d97f81d36328afb1dc6b5d69549fae51d399020dc962357ea8c16991260e9235424f460affc3d55e6fee0f5b1e848d073f4809ca4034fa437e8e93090f62ecc8

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    12e71b526ccdf7e7bf1dea28c803f05c

    SHA1

    d083116fe95b4513aa184117cae07062291a5935

    SHA256

    a842eb6774f419a3a7c2c314d79311d821b0b12ecb69cc123d85d0b15f7f1901

    SHA512

    5070af6058799c10b310923345f59ea38afe5b582b95bf8aabc9315d9b4adc4cb5d0093194c40a17a5e1275c16b68a83da4c04e4169c9c44a922994a2a183544

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    7d8687fd656c6aa78e53b5d9686607c8

    SHA1

    23c94c8b440a4f759feec8489f36206004dccc6e

    SHA256

    a7c0faf1e1d77ea578d7211e6c63b3530809ee801c8b410eafdfd9cc8cbdea57

    SHA512

    bd53bf6d2af840afb6e57e05fe0c85df9e029b61838a37f78f284305171a4a41a4d4c8669729c7e9f878c23d4da7cb0f1db10f9ff181b5971cf336af07ab783c

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    a05fe312e8e7d079aadad915eb206f7a

    SHA1

    5770862a28fca9b4f940ba5bfc65197d65be6e6d

    SHA256

    93eaee06d4a66158939b1c124014fecb90b856bd06f5045ad14b8ef16ee2c502

    SHA512

    62c8045a74d8079d194e190ae85acc1f9528d02371a8fc4ff1df2b63f6f205283c725ba9a95adac07f25e667b93ccd7eb2a66b1302ae9844088c7d8769f12c01

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    db3d4e6cca57194a35392423da4cabd1

    SHA1

    d72d52685c5411d0f41c1f2cdead124a74d148ec

    SHA256

    ae676240fbf208e250ed71d8e9831c759c7f7f3a2c3ea7f094ef466282123a28

    SHA512

    b4c8ab179a83952538cae1e0cab00f44a26d90a718896e1615e30ef5406c4c7b5869c66ef7b2cafa1e6c0129fcc3527d119e23bd5a18b146c1f07c7f40a6ea49

  • C:\Users\Admin\AppData\Local\Temp\CabE275.tmp

    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

  • C:\Users\Admin\AppData\Local\Temp\TarEA74.tmp

    Filesize

    171KB

    MD5

    9c0c641c06238516f27941aa1166d427

    SHA1

    64cd549fb8cf014fcd9312aa7a5b023847b6c977

    SHA256

    4276af3669a141a59388bc56a87f6614d9a9bdddf560636c264219a7eb11256f

    SHA512

    936ed0c0b0a7ff8e606b1cc4175a1f9b3699748ccbba1c3aff96203033d2e9edabf090e5148370df42fbfc4e31d7229493706ff24f19ff42ff7bef74a6baad06