Overview

overview

1

Static

static

1

5ab1fcb7b4...6.html

windows7-x64

1

5ab1fcb7b4...6.html

windows10-2004-x64

1

Analysis

  • max time kernel
    133s
  • max time network
    150s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    26/12/2023, 06:48

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    5ab1fcb7b46e851a809f5eef974b20e6.html

  • Size

    104KB

  • MD5

    5ab1fcb7b46e851a809f5eef974b20e6

  • SHA1

    74a48f572a5ee49810d22d9dc4ea3b063e369aaa

  • SHA256

    d53bfcb3ea7ae5e93427423081fb02a8745ce8c379caafa0166560e86e7d458c

  • SHA512

    df22e6295bdac86bb62b97b1bf2e29f070afe75eb9194a27d85e5e2110f3f1d670f4da242433df35f98daced039246944f02ac05eb1d4147127a4618b13eeea5

  • SSDEEP

    768:C6h7meJskOWzOw5PS1wdvlCBo1BvjrUuS5eCJXxCyGsaMWHS+uqmf7SMMCpW:C6hjFOcO8SERCKmzSMMCpW

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 26 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\5ab1fcb7b46e851a809f5eef974b20e6.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2564
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2564 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2704

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    4435063b82574e1ffa12c56c98e7591e

    SHA1

    942176932d5a941315da1547561691e4cc1a12ab

    SHA256

    7bb211691e2e763c4711d447410930e76584f5e21c8be1ef07c25915d3d10b05

    SHA512

    48f3d0cd56822179704c4c4012f070d4f257061edd2cc0b8056efb52bd231dbd063d09aafe2e15ffbaad4256f3430493ace2b4bf17dd8db6c39230de2a31ac70

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    284f1c0d29b039108900289740b66599

    SHA1

    61e883fd10d64604d3f097fad3a34f734fe41320

    SHA256

    3ac8d7a9fa73b37f6ecfb8dfb3a80220954dca0ed0bb9f87541ab0122fd12e97

    SHA512

    7e8f40d79df636d383dc1d6b4170dec7a80908617bbf5f1ef66db18778dec1b929b2c271378ca8ea7473d33bc404c2bdd992936e261b273427732850e9a2e4f8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    66ed62e0170a18b6ccc3450f12b3bab7

    SHA1

    b0b2621e065ef48da901988e67c2ab8b79e98ae5

    SHA256

    05d79df1a96c3f8b0b7ec0b03c94e5f1eec0daeb76a4879dc6404f4b82fe1447

    SHA512

    1221f80690cf6b14231ccd32fd7933bc0472c2d16eb102e294bfa0f89ba1f50f4eaf093681ff7227104af0b1c01e66b406abfbb0105038395d6980b7eec2fe9b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    bfce5116afd3f2bbee1c640d8bb47955

    SHA1

    2d98de7c48366e2cc477e94ab7ae9c0b46d023b1

    SHA256

    5b7b9cfbd163d774f6874388ac0622756e0e0f8bd696c5955e51fec96c7a983b

    SHA512

    409c3ae38c99f451aa47bb5663d9598c9a1deafccc3d5c57d2a4b14be91fb05389fe2f2dae23c13686eaa18bee6b17debe51e2e9903a0cf6cf042a5ee9de9ee2

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab89CB.tmp
    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar8A5A.tmp
    Filesize

    171KB

    MD5

    9c0c641c06238516f27941aa1166d427

    SHA1

    64cd549fb8cf014fcd9312aa7a5b023847b6c977

    SHA256

    4276af3669a141a59388bc56a87f6614d9a9bdddf560636c264219a7eb11256f

    SHA512

    936ed0c0b0a7ff8e606b1cc4175a1f9b3699748ccbba1c3aff96203033d2e9edabf090e5148370df42fbfc4e31d7229493706ff24f19ff42ff7bef74a6baad06

    Download Submit