Overview

overview

1

Static

static

1

5b55059991...c.html

windows7-x64

1

5b55059991...c.html

windows10-2004-x64

1

Analysis

  • max time kernel
    136s
  • max time network
    140s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    26-12-2023 07:04

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    5b550599912cdcb060b4918478ccdf6c.html

  • Size

    135KB

  • MD5

    5b550599912cdcb060b4918478ccdf6c

  • SHA1

    0ee17fce39c9c0183ac42e0772c66ec2bd3a16ae

  • SHA256

    ffeaba213b639c473ef4003f238c1702e7d204b329dbf2dda48f994bfa06a355

  • SHA512

    8ce06a60b345b83b2ecbbac0ad77d041f0218a2e13f3813dbdd00bcbcee445807dbb3c1cfe12f8c2e5669f394877ca5397f118a662496455531bec0c8ab6e96d

  • SSDEEP

    3072:pHhfaWYF1fp6wCpcg2ccKz/eHjo3jAuUrdBYjp7V6TPUo69W5LmKnywy9qM:thfaWYF1fp6wCpcg2ccKz/eHjo3jA7YN

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 39 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\5b550599912cdcb060b4918478ccdf6c.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2892
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2892 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2424

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\24BD96D5497F70B3F510A6B53CD43F3E_3A89246FB90C5EE6620004F1AE0EB0EA
    Filesize

    1KB

    MD5

    3c4792ead59fe6538329c1a375de28c1

    SHA1

    041fcd353eb1830a08e060606b72c61a2ee434e7

    SHA256

    1f673e580daa5b0943520e86a6dc96d672aa637cc34f90172a8dd7391f637cbc

    SHA512

    61f6b03ac30a600d955cfdcc51406edcfe1a6416023a6fcf50c7e0f73093a84bdc42059e9e8b5ccf7284897580a1cb00a2f578eaf9ac35aa38ae8ae917c22e40

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\24BD96D5497F70B3F510A6B53CD43F3E_3A89246FB90C5EE6620004F1AE0EB0EA
    Filesize

    410B

    MD5

    2fb1582c349d8351b7f5ce2ad4c1d789

    SHA1

    1d78ea0aa37512ec7abbe5798686e18d438338c5

    SHA256

    1bed289bbf7555be4a189a9c101dedbf4631be0b195b9ea0a8cbd910865664bb

    SHA512

    6a189563bbbd153c6d2f2f7411b54b7c23271f656b0e556273c82ad157d3c2b54ed022307529e8c8ed3b7b818d25732fad3f8eb97c6e9263d03dd7a34ff5f0d5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    0d55845581428479300e3dc9f27675e0

    SHA1

    8d3127f99850128f50a22aefb2c996b94014aa5b

    SHA256

    db21fc9cd152c9877fd30c64ab8c25990d7f670e234b1800adb3b0e363abd530

    SHA512

    76205f986a2a842a75d270882f1e7fbccfdfa8b3d0b0bd1ee72f87bd77d4bfcb89cbff982a46c2a9c587c1b52fc8db5a6c3db47fdc67c91c4322d46ef71e8a66

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    56bbb1e9e98fbd013db418f09745f702

    SHA1

    8c0c3b618f74266a3f24063da2b182a7a79735f5

    SHA256

    6994e5106ae29e0fac6130e4ffc4e351d75e4ba72ea2dde5f592478d9116a363

    SHA512

    11fa1fc5ab3fdbcca5e16688b279a5e86f766718f817e27c610b396b4d2d83735083468f798c5cdd7fa9beaaca789ddae17c02c811c4a729c6450d8f1e89167d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    873e18faa0d5274135b1483b2d160984

    SHA1

    e2a4ccead0dce01d8ffeb575da767001295f0df4

    SHA256

    5d2215ceb6a4e2997e23a615d534ff68fa6b7d753f2d0995f8d5596ea5850e19

    SHA512

    6aeca45179f4ffa1fd8025341d1d58e224afa279a7878f6cd569331100fb40a94c9dec356ea43b7b421fa78b2f372fddcab9503aa1ccd5f39b88ccf24e7116cf

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    9f946aba5b908e84a556ac442304355e

    SHA1

    37d61885efa3e29988c8f1f89b933cef26b0aa0e

    SHA256

    b60f1957175f121fdd8b3e16dbf0da4ab3b461384fbe4c5721c1586b905a97a2

    SHA512

    b786fdc421150b3c4dd8b74c97aa8538507ecbde0b6863dd03da75e40677c6cb8a4badc69f16a08c0400286faeb19b57669a242cbe9af28962d86280dbaaf1b3

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    1cd3d77c8082711a40c5f100d1d2e3e1

    SHA1

    8fa3e15d4bc07f85fe969c24f7f760347df73881

    SHA256

    e4f23d59cbf98ccf0d1506f0a3d8f7c8f071cf894aa8234f96f793e2cea3b60f

    SHA512

    18162d4ad93b2112f8c17c5e737ed04095cdd8fad5880313686618cfa7848d329ffea972e70ac9ec003be477dede2800ee2d5c4e56d84dd8d8d25e0766a5a9c5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    651671f08840ca9ac6c6bf527754f72a

    SHA1

    7947dbf6894ddc8155aa5921a11e59d463e90f00

    SHA256

    68a10f4bdb26a9198b3749d24e8978429c2db884b181eeb14a2704136bfa5173

    SHA512

    e96ad2c7ba23d74893f321823576a755ea2dc6800e0c1134399827227b3e30e93697a4c284005887542ae900b4751c2df6eeb92b4aa8b907baa00043889a9647

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    79872633ca23bd7097cf5a68233376fa

    SHA1

    deb523a6ce76eb4051a3d3b9ebeb4d6a60890cf6

    SHA256

    bd086938a2d4e7c3ec119c2905b2cdb0d19252ebfbc7ee7eedd95b66d7a4e2e2

    SHA512

    cf2808b625c285f264f1395c3c110e1cce82b3467768e19906de8425201bdbc36a9c4a2d63aad7d558c6dcaa4126b7ed2a7ff27432a6459067f4265bc51ad24d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    2879a750c3b71aff36fc2bcbb5f36edb

    SHA1

    ca624bf301677832928753f42f5f6a4b51426c74

    SHA256

    f51aeacce8445377b29b1f79ffa3af60ed48dacbf7171cf141bb46c0992b1f3a

    SHA512

    5510bc329a73216544bbab27c8b0a1d68cc92c2a6ffdf757d826e23446a184332345ba25128dd1a829ffade5a672d90e5dd339ae2e32f93369898cf9e7028c53

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    67d59bcab738b54a3fd64dc992cdc1f9

    SHA1

    ce7af3c26d4d0b361aa195cb66b346078e3c02fc

    SHA256

    801d32ff58e1b6276d81e0c30dd51243f5cd8483f769f5eee9ade44074c323e7

    SHA512

    28b7c615a3a3f994566901204a346223c6c73baacfe9692391e71b8330efaa1b75a0b7768506ba29b5d06f86c224504a4094ca1b87ab71482b49b1b0d78527eb

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    c45cd051e2f64430aa2ac5e7614384f7

    SHA1

    43f0a5bb6eddb454fa479768c7ac8220e725ca7e

    SHA256

    6468be4d841d2284244218fbd17e088a472be55fcd10de820d4cc7d3ab9ef3ee

    SHA512

    6ef848f53ba90bcfb31df226ee7ec1bb275475e8a827403a9298e04342dd67975a1019f3d56c82fe86af6c8c1e730b568bfb62bc1e4035f23cbadf70a55bf4d5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    5cbea63282d5a6ad0e4596e927038745

    SHA1

    193a5010b7210e8dd263f765c133aec461da0fae

    SHA256

    dc46d4a1937c0ac6c9e1bd5b56e29feb2ebbfce94288fd2319ccc89f1fe98d1c

    SHA512

    52f68f8021eb257467ce256a07536bc98ffed6511c6b0f5bff43d05fab948f1dcff6980c733749717239f48ca38a28490ad22ca6181f4ae687f142507557c5a4

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    34d738a6dedcbd83e43a1e96949d5f2e

    SHA1

    8a0f71c4b2c0e59f8b3610f20e2633d47870922e

    SHA256

    758a8b20dfb747337dfb4b3d2aeb274a24d2689829a1cef43d039c925e28590c

    SHA512

    ae1f88e3d2ee258a490ddaa38ca38e9a94b2de8ed2acc58becc2682a0c308c842dff9fab581f8d31a4266296ea3e7d124344168fc6078f8fee6b28e4ce83e09c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    156c87463a30c4f7d9f8f858d3deda92

    SHA1

    846011922af76dac0e1cd549fc21d46a478ba9c1

    SHA256

    33e9e8be0a46649956ab66179e443fa7610b409aff41655eeb6b354407a4a684

    SHA512

    0914c4553dfba3639c0d7b02d79221d7d8b8db7dd13c33a2b6188c3c8a15869755e77049c487ddf1dafb1317bc0dcae68f13f91b2cf5aad849cd9dbd968c2ea6

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    ea95110dd8420bbe21a0e5ccb12206c2

    SHA1

    8f17e82c9e9573b4653903224e6122dfd8de4ee4

    SHA256

    e15bbacd73fed74c60754a42c23b993838e9fd2478e9fcb56c0fbecf60e181c2

    SHA512

    13065e68c8ea2f571c65f89f42fcec8e1094b04982ddd097c5c00ead699f399ad0131294bbfe7dc4779d41d481b85d48f88f1f7b403b7166b6875252a60876af

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\LAJVCBJI\platform[1].js
    Filesize

    56KB

    MD5

    0d25af623d803b10050b53a7b218c652

    SHA1

    2dd71fa961b5df37134bc6eb987ee7b7e5861488

    SHA256

    0bcb6531cb0967359e17b655d4142b55d1eac2aed3fe5340f8ce930a7000e5d3

    SHA512

    919b48cabd548ae63a6b89dd3ac4df919b630b0cf75266d21b35ea3a6b54eb1ea5ed7371e80bb6611e105f2d994abf9f76f6dd8b6915dd2b8fda09edd263c139

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\RU3RPYUN\cb=gapi[2].js
    Filesize

    133KB

    MD5

    288c5ba5b7001fe841c32f690f62cc93

    SHA1

    29aba9d8e4f7cbe25fa5e64b9ecbe256e51fc789

    SHA256

    c2f33dc18eae27d4e878bf837dd97f1bde5151e44b0271408535bb93265b8c52

    SHA512

    e375d41344a086d35accfb02bb1f91e2dd383db032af387fc3d6b1230057cc5e432e9b2cdd976e51425b4f587391d42f4d9d857c2e6f11e822a65edcb85f1c9f

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab48A8.tmp
    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar48A9.tmp
    Filesize

    171KB

    MD5

    9c0c641c06238516f27941aa1166d427

    SHA1

    64cd549fb8cf014fcd9312aa7a5b023847b6c977

    SHA256

    4276af3669a141a59388bc56a87f6614d9a9bdddf560636c264219a7eb11256f

    SHA512

    936ed0c0b0a7ff8e606b1cc4175a1f9b3699748ccbba1c3aff96203033d2e9edabf090e5148370df42fbfc4e31d7229493706ff24f19ff42ff7bef74a6baad06

    Download Submit