Overview

overview

1

Static

static

1

2496e00d14...3.html

windows7-x64

1

2496e00d14...3.html

windows10-2004-x64

1

Analysis

  • max time kernel
    120s
  • max time network
    133s
  • platform
    windows7_x64
  • resource
    win7-20231129-en
  • resource tags

    arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
  • submitted
    25/12/2023, 14:14

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    2496e00d14bd20267fe0972d997d1e83.html

  • Size

    53KB

  • MD5

    2496e00d14bd20267fe0972d997d1e83

  • SHA1

    93afa90ebbb20e0769a9f3598234aea7aea6bc0b

  • SHA256

    e73a18c529b8647f78585da3e3a673f5a07afd43d16a23efd2c34222c798d56b

  • SHA512

    b0e6fa6ea36c93a46ea17da8885de3c0dcb72b9f3e551add3e24f35bc7dc689fbc85452e072749eb2c38f81ced5cad2fd52a002f1671e914631ca68dce1ec399

  • SSDEEP

    1536:CkgUiIakTqGivi+PyUkrunlYl63Nj+q5VyvR0w2AzTICbb7o2/t9M/dNwIUEDmD6:CkgUiIakTqGivi+PyUkrunlYl63Nj+qv

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 38 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\2496e00d14bd20267fe0972d997d1e83.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2960
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2960 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2800

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\3C428B1A3E5F57D887EC4B864FAC5DCC
    Filesize

    914B

    MD5

    e4a68ac854ac5242460afd72481b2a44

    SHA1

    df3c24f9bfd666761b268073fe06d1cc8d4f82a4

    SHA256

    cb3ccbb76031e5e0138f8dd39a23f9de47ffc35e43c1144cea27d46a5ab1cb5f

    SHA512

    5622207e1ba285f172756f6019af92ac808ed63286e24dfecc1e79873fb5d140f1ceb7133f2476e89a5f75f711f9813a9fbb8fd5287f64adfdcc53b864f9bdc5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015
    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\F0ACCF77CDCBFF39F6191887F6D2D357
    Filesize

    1KB

    MD5

    a266bb7dcc38a562631361bbf61dd11b

    SHA1

    3b1efd3a66ea28b16697394703a72ca340a05bd5

    SHA256

    df545bf919a2439c36983b54cdfc903dfa4f37d3996d8d84b4c31eec6f3c163e

    SHA512

    0da8ef4f8f6ed3d16d2bc8eb816b9e6e1345dfe2d91160196c47e6149a1d6aedaafadcefd66acdea7f72dcf0832770192ceac15b0c559c4ccc2c0e5581d5aefc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\3C428B1A3E5F57D887EC4B864FAC5DCC
    Filesize

    252B

    MD5

    674753acc0f9f471cac34ae00f9234c3

    SHA1

    d73ab78bc16ca8b7c0d12bc5c4e4eaf33b24dd89

    SHA256

    8cf5007c97d7dd125faacbf6f54c6b124062e2916d453c7bfee3ff59b9fc4938

    SHA512

    1ab712c65aa0e2f4bc1d1cfe7752a42b410e9953f8bb20cacecc974ad443985f8a902841c8c130ebb696532b87e766d2defc09ddda1ed11aa8bef2b5b7c779b1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    191807b8d125ae875012307a0fd42414

    SHA1

    5509703c04f73a94c9e4bb7ace840f3a04d2716b

    SHA256

    5ab8a5eaf2127aa2ad202583d96f497ba42a2e20a7621b3986b042442fd54063

    SHA512

    7ee260edd0913bb4b43366631505554a84eedfd99aa76dfe03ae44cbf50f89b94719e5bf108742269cfbbce1530e8d5b3e931f44373c12682ac93a7cd99ce8a9

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    1e27947e347804ff67fd307d1c5c7395

    SHA1

    e82cbde4a3608042d70c671990a56468afe9e0c1

    SHA256

    6b0012a7d1a480e2ebf87ca82629854347bb2deb61fb30c51ac9c68308cab6aa

    SHA512

    18499236116bd2d7846b66ece3361ff375021fe3b816f53ed3504453b9f67ddc6db85012a7b2e284b66c344ef1342e9f00463fb82936b28c0d0746e9fdd1907e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    c99ed0617acb39b1f4f21b2c7f0e0ab4

    SHA1

    cea9e58b9f050cd974a5ed5a15abde5b6127f627

    SHA256

    d8855f79c41bf71d63a80e66c25f529ff3ce2952f9bff1bc2fa77aa6bd203f71

    SHA512

    6c623087458abd88a19c37c4f82b19be54e7c2d7a03dbac57e14f63afc204c05dd37f9ec9437fd39255d0c2740ab75d939343b55459d8dc8a32f1d61d12a75cd

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    ef43cee30b01de7458e2651cd18e3e5a

    SHA1

    8bf6b0f4beafb3a3db53db1069ea3c877e8ac952

    SHA256

    9142f8910b184d161728cad696185bb4bed4f4df4240509adcccabb4ba523a2c

    SHA512

    9ee56b0a7867e86904a70431f33682dc9e63d6c6449e5aa3109658f0eb6d214afcef9f70c01e49d21f0231c895b86cd9726f49e56da0b05465ceb69f697ea7c6

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    85da215c9450d84080a41938fb32b8d8

    SHA1

    e5b6dd484947ecfb8438a319d2c52f6f50af7ef3

    SHA256

    dc975dcb4c799c41e5bf615bff2453b6933eb2f1856e41bcdfffa9d9df03d578

    SHA512

    fa4bee2f5112b9a4007b17da5353d83bd37dda755f21bda1927b1eda4fd3866cb5a4ce6170ebb05903fffa33839a77d2a5977174e9e3438bab1722f3b04bfeac

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    41a1917783dd860b19bd6299b7c316c3

    SHA1

    f96d2cbbbe6c22f522cfed2bfc282b1d46564d93

    SHA256

    1b7e1bc8f981c3f63dc782a0fdee05023c9871e75f2cb5e06f70f56b0398851b

    SHA512

    8775a5a9a81e45dc281252208445b88e821b2186066e2609b153d35063bfa71b991b88a42e3cc55ab81384adab188665b5b16efcedf20dfc9c5dc81450b0cfb3

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    a82a485183b3a4ce697cc6a8f868e33f

    SHA1

    c6061c7225eb4fda917e4b35438a6aeabc708cdb

    SHA256

    7ed10290e13f7a6d49e7443dcd4f0c25d98f22a3807d9bc1a450f95ffbad03c2

    SHA512

    b1182b9b13eff74ef78bf1b60f6ca168b550319b24d6a66bdae133b1aa76c86a72de425817327e54c37a4bc601f19428f810dd6c8f5ea20842dd0d86a4c3069e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    c38ea390f5ea6d7f1bcbd304d113cd9d

    SHA1

    070133363abdbf280fe00dde83cab50565c81208

    SHA256

    a87692f11070a1e7a4c05c2e6145012883251479d4fa6394b933a5f612219f02

    SHA512

    30ae9a843bba97f0e5b0911dddd2542717bbad012683e7b4a6cca25d273c8ec99c0dc29e5604ad3c176aa7e1f1b9871766e1d1353b13d2914bd0a410e8c78ac4

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    d7017c5f91b854609e582358c39581ad

    SHA1

    83fb13e1a3c1398c56c9db33243996a8ffafb3b7

    SHA256

    bf1828c1fc1c607d7d5dbdf08ba3f243dd8912e005176b9ea867eb04b1fc45e9

    SHA512

    8c767d8ba55a3c9f38fbdbae0980e6b7a105888be45f72ceb2e6a5c967ffb064c4a955e7155be139bbf9eb6de035b562e89ca1c114d7b959d30a6a1b90d008cc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    6e2ad571b7b55290d80ee809ece4ed02

    SHA1

    2ff6b2122f9b35902b0178e1bfb4730c44dcb413

    SHA256

    1d42720276192e1b4c677ca4a34c0bda460dd90c79e7f1a1f7174adb212cf745

    SHA512

    c7647070f150ba4c79a6304d5a2c83d34891634e9d8572ffd0561ae917e54682cc6d137067a473cbea75ba36feae2c40d466a96fe103c4d8db91e60f58879db3

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    b927a2dfea92fefdf93c7d655109c715

    SHA1

    69d215a3cf3521c70488bed15d3b0bef0cc730f3

    SHA256

    9f460a2ea6d7293c1ed692aa7b975bb0f12c4af1961125e76d39bbe2b0174fc1

    SHA512

    0c108cbbb81c584d9dd2343e1479fae267b63dddbe598da087f551a5923faa6d8b76271d97919a62c2a0656fa1f4d9704f7a2d3faf8e108af49ef654826ae8d3

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    37551300e934d7e39c2307958ec7f107

    SHA1

    957e7cce8a1d228b8390f0a49361e596de173572

    SHA256

    e2237ae571e62d7bb946c4f8a2fd26986799614d9162c259c1c666e21f864812

    SHA512

    66021110738eaf7b92826093e03bdb0f64c07c707a6381ff6b4632f121ebdb8cbb257d56cfde7b79fff61ff23498bbc882195611ca2e88d9e58b67df499ba81b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    14d81f13b4ee63a0a2a032b57ddab9e3

    SHA1

    a9e72d6caca92a2fc5f65297937909e220bf0e0e

    SHA256

    ec5a9bb9c8bbaacd4e476e056621d00805c63a8269640cc5b559a555253f4643

    SHA512

    9f24858262ee024cc23ccbf84ae4d6f046e83aade083ee099b759eca2df70b8c1d78a7b366016faca3e4e74e3f832c5750a95b7829f85e91cc72d65ea89c3f6d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    488464339f6d160af2b77d0af6941e27

    SHA1

    6e69f4dafa3568eeedd333d1f586f0d5e4db9232

    SHA256

    4dce7380070b007601f261a8724d5d9895ec1b7f6d22758327035da22f72f6d2

    SHA512

    6a909bf626cd84f1de77766657180efa033436f5d84b4ffec23ba24b69f251b45d9bbb1db59721e7ebedbccac770ab21d9fc731513a691a22c7b30a14326f2f4

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    a96200f862e96f8537922b52779c0794

    SHA1

    5b877ef676d0ccc6b71371108f2fd685ee2c9905

    SHA256

    634a4bf0b99d83ad51363c660bac2267557c9129ba4e91173d6b13a53f6f102b

    SHA512

    6579fe14326658e5bb51ad801c7f0ba7d0a18340069d47018b001b3c200748a5c217934422e60414b3a4a9e85ce990164d3c4dda81f93c55eb8999dcce9b93a1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    f9b19b718c943e6f4604fa6193daf125

    SHA1

    9779a385c0573bd51d5ec348c1261e341bbb11c4

    SHA256

    54c41a933942b98bd0518ae67d84ec3babc9deb55d2aa4861690c3bf0378157b

    SHA512

    a7d4ef52d9da010a0712b63a2896fcb264dcd66aa49f55a09a5100f2461e2d0e8da507bc48d92d7541aa7430b36c41f6cd1081490f605b59efe44e26148d782d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    4d9e9875643aa63634dae89bb0c57dfd

    SHA1

    3ae55d5b8465a8be50998e18649295fddf63244f

    SHA256

    14bfd639a789cef0124bedeb1b37151ff29393c13619dd832e53e9ce981da824

    SHA512

    d4f6fd7676ff93d2e8f3814e9c7eb404903512368977084e10c10f2f06e13640915be06216a0fafe101ad9083ba6ed46dbdc944ff03f978c84e98940a8df5e58

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F0ACCF77CDCBFF39F6191887F6D2D357
    Filesize

    242B

    MD5

    33dd9abe6a9f4cb88a4b432c3948ae9e

    SHA1

    494f112e465562e0bcf59e09ad24447ca612a78f

    SHA256

    af96c8120a4561211cee27e916882178834e440d82e9f9f0a0430b40a12830a2

    SHA512

    c13bb0ce7c10c15c1c2044eeaf78115c558dc3f6e80ae6703b4dd891d76d2599f1372c0cd607bc86e05deb158f2e82f98e0a14772bceee5975cf6bab2e1766ac

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\Internet Explorer\Services\search_{0633EE93-D776-472f-A0FF-E1416B8B2E3A}.ico
    Filesize

    4KB

    MD5

    da597791be3b6e732f0bc8b20e38ee62

    SHA1

    1125c45d285c360542027d7554a5c442288974de

    SHA256

    5b2c34b3c4e8dd898b664dba6c3786e2ff9869eff55d673aa48361f11325ed07

    SHA512

    d8dc8358727590a1ed74dc70356aedc0499552c2dc0cd4f7a01853dd85ceb3aead5fbdc7c75d7da36db6af2448ce5abdff64cebdca3533ecad953c061a9b338e

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\5MNNWHO6\upshrink[1].htm
    Filesize

    706B

    MD5

    67f3a5933c17b3ab044826d3927d0ba9

    SHA1

    5957076d09bacaa6db8ddc832b4fd87ed8f05f8a

    SHA256

    97e800f4836b7030dd58fe6296294b7ff5ef1b5eb0e88353f230ea1608d2bb64

    SHA512

    03ba224055ffdbf32b7eea30c764dc18d66cc6d8707dc5fafab74e155b0bb3d4d691c5788b033a68f05299547297125122778fa7e3252f93e7343d918936643e

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarADC3.tmp
    Filesize

    171KB

    MD5

    9c0c641c06238516f27941aa1166d427

    SHA1

    64cd549fb8cf014fcd9312aa7a5b023847b6c977

    SHA256

    4276af3669a141a59388bc56a87f6614d9a9bdddf560636c264219a7eb11256f

    SHA512

    936ed0c0b0a7ff8e606b1cc4175a1f9b3699748ccbba1c3aff96203033d2e9edabf090e5148370df42fbfc4e31d7229493706ff24f19ff42ff7bef74a6baad06

    Download Submit