Overview

overview

1

Static

static

1

561dcfec9e...c.html

windows7-x64

1

561dcfec9e...c.html

windows10-2004-x64

1

Analysis

  • max time kernel
    13s
  • max time network
    131s
  • platform
    windows7_x64
  • resource
    win7-20231129-en
  • resource tags

    arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
  • submitted
    26-12-2023 04:58

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    561dcfec9e9a67fb93295544bf99194c.html

  • Size

    895B

  • MD5

    561dcfec9e9a67fb93295544bf99194c

  • SHA1

    75491ad15d5c189da1232cae2f4b9c5eae4ba3de

  • SHA256

    ee1fac8750daae44f9e94354828fa302f4d83a5cbc988f60e9af61e5e7160480

  • SHA512

    576b66325b7f67ed8f6ef2ab11fa5cbb3d5397b9d5b07f3f79e77b0965ee898c8e6c7997c1b9329340989b9a10136bd3ba44ae17bbed5a13662c7ba65c0c941c

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 26 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\561dcfec9e9a67fb93295544bf99194c.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1244
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1244 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2928

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015
    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\F0ACCF77CDCBFF39F6191887F6D2D357
    Filesize

    1KB

    MD5

    a266bb7dcc38a562631361bbf61dd11b

    SHA1

    3b1efd3a66ea28b16697394703a72ca340a05bd5

    SHA256

    df545bf919a2439c36983b54cdfc903dfa4f37d3996d8d84b4c31eec6f3c163e

    SHA512

    0da8ef4f8f6ed3d16d2bc8eb816b9e6e1345dfe2d91160196c47e6149a1d6aedaafadcefd66acdea7f72dcf0832770192ceac15b0c559c4ccc2c0e5581d5aefc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    c4c65171fca6341370d4f8ca32cb9606

    SHA1

    ba0a794f0393c13a996aea74ba7be02ad46f5320

    SHA256

    4f618a2528b15b9d391c6424571596673f6b00ecb7e7787f2b8448fd25cc6b70

    SHA512

    f39a23ad87ffb584ba6df0c15a724ac433293ea37d82ef0b6dbb80ec32712d150cc0223a6b898865d12218823c74bb5bab049a277a1ef07dfaa651fe52a0b763

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    ac64417318f7d145bd34b4cbf347c524

    SHA1

    55a5908d10089cd7cdcb160fc0a691fd1bb67970

    SHA256

    fc16c255ac73dfde9be46d43f02814e06c226ada7354c3fd5d57763a37a19c6a

    SHA512

    555b980d56c87c3af7220a41f93ff14c086baa3589f6266b3b7db1fe529e7771c3427fe5ce9749604b2246258f01d1d02150373c87b5210acf8d31e9c2fea229

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F0ACCF77CDCBFF39F6191887F6D2D357
    Filesize

    242B

    MD5

    f0d1753d4695dd53fba5bf8969f82a4d

    SHA1

    f12880b81f3f9844e7deca3bf760b1953df33553

    SHA256

    ff489516967a8a51e767dd79b5fe3749bfb55260a6481a0ccb41488c267b4de3

    SHA512

    147ad4ab8d6ee3d90be8110735f05293d1e417404628d96db22433e7bed41ab22745580920759ad88523010c8568709ba11afa10202ea04e98d446d673a44ac0

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar3059.tmp
    Filesize

    93KB

    MD5

    ac61eaa48255890d137c13baaf731c5f

    SHA1

    f9ae28f6c21358660ec40239618f6ef9f6b333d7

    SHA256

    a1535f48249efcf97d37e825a27275a4e0d7e4ac51bceb4ff1262956c6e48c2a

    SHA512

    e36257b46ed34c2ee03231464ec70d889d35ea9f7f9255ea8bdb062838df8a4331fb6e8808bcf52323e4c26d6c6e9be8af4babdada794495237fd51f75b79449

    Download Submit