Analysis

  • max time kernel
    135s
  • max time network
    152s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    26-12-2023 10:52

General

  • Target

    68cedb715606d5bb46ebb60128fccebc.html

  • Size

    57KB

  • MD5

    68cedb715606d5bb46ebb60128fccebc

  • SHA1

    7bab6a38bfc1f4b4b7a60ddeb5e3a590e745accf

  • SHA256

    dd42359e3b64e63e83e76888980a2ee7d317ace524b2a2850578e817e2286f73

  • SHA512

    31fb24f1f09c5f80872b5356da994706a55a5019753c9ee7ad1f76e2fb7f992da49a2ba037f49e585db8e55762d9a251ede282c0e6a2094c5c78b0e012280631

  • SSDEEP

    1536:ijEQvK8OPHdsA1o2vgyHJv0owbd6zKD6CDK2RVrodhwpDK2RVy:ijnOPHdsR2vgyHJutDK2RVrodhwpDK2m

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 42 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\68cedb715606d5bb46ebb60128fccebc.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:848
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:848 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2312

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    047fc64cdbcd87e929993348621989ff

    SHA1

    1bdc77d2fc6ece72e7cfa901e8d4d7a393d6613f

    SHA256

    9384d9d715acc7ff24d69a04bb96577a303c31b7cb82b0a0c3b7928c53f43f16

    SHA512

    3a56db39385b8884ed44efa9ec448735517b30f2f46c5f9cf43fcd3048b5e27a82573a4479a9b9681a6833429c6de565db0c897097cde5b55fbf250275564846

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    f9866b7198d1a14dfed843185e4f12f8

    SHA1

    b6e5ca669dab1eb07e1a0c9685dcc0a50c8799d0

    SHA256

    275901b2c7ea0a3a886f1f946e11a17e87ba206001f9bc38bb9c42c04b63757a

    SHA512

    770a415117dbc065bf51346edc6f89b1229cc3b4189ff7d549227bc1e8f59cba9fca81f7c6e181ab5ddb98582c86460bfc16ccb968b265239c911f37c4f6c439

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    b5b4930c4d0b7e872239283b765de07a

    SHA1

    22e0026a2fc73ccede2ce5dbe06ebbeae32e991f

    SHA256

    592981f722a090cbd0698ada5c07d403c08169cb7dfe1dfdbb1986f3ff5f652f

    SHA512

    3d44ca717ca7eb1566eba3e640f58cdfb8c5500a90712ec2fc2ed0a707ad639ea77c148767a942dd0044d2c5ae5e1d561e955bfe7914e6384b361c3f6657ad29

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    fa3e07224ba6a4e3701a6e7eec90a8dc

    SHA1

    beba2b8f8c14cf6195957d2208f6aa0ad813ac38

    SHA256

    e0e4ef7a23fdd053819eb32860de5d80e2b91fba9ed4b7845223ec77a1224fef

    SHA512

    5bf3924053c573c43703af4df41e558e23eb6dab20ff32b957b2e14a7ebc2a32e5d68380bc13b9489247b40be9813e806303ccad9c54d356395087af42f500b5

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    fa0477898a829e1226f434eff81529aa

    SHA1

    e566206f405e33e7ccd32ba19084398cabba78e4

    SHA256

    ee5a58045e386170c959105b0ab860f3e7fce1931f4ad900bc71264ca8e9a7b1

    SHA512

    b454c2150746c12b054cadf5b96e26ad44c936816725e54156acd144aabec4cd5d8cda739686580e8f510100b76062b436a4bad0cbd7afbf5761cba0a557709a

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    553594c5e70083b93af733a2e20716b8

    SHA1

    8df0722d40fce8bb40c1e8acff51ecff04a0976b

    SHA256

    617f87200d31c7290df3cb3c8b51152bf3de07bf37a7473df8b65e2e7594308f

    SHA512

    d112b18ebc341d959dd87ad37074ca572fc4068e0f97aa7d7ac0637079b60c11bf795ad7b233f1314064ae204d4bb92e20f47599b6892e3b5d839b58c7c3665c

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    a4c847f563146a7f91f66a389dabbd05

    SHA1

    55e912c86f70a1bbbab9930fdaf02e1e0eba8011

    SHA256

    b12abdd5d1b7f74fef6e23c68e4662d6d2483fba832be83967ef7fd5d259ac82

    SHA512

    b6642ea02941a2335d148d93937f6ad9c03184b06cf882042f6d7c800873a7644a82e8b330185c9448dd9d98dc4a0ce388d49fdcd666a54c9d410aacdb4710fb

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    d5623c523544bb9a9a5a380b51f7ce2d

    SHA1

    ff55cf67edf50b16b07f591368463a63e40c92e8

    SHA256

    aa43d8be434556804ed188917267b4f548ceb7f02c58315e468045a83dca17d6

    SHA512

    054672ad51aae50d61cb8c38c679ff6f71779612fc81d7bfc4d4c56c299b299b1466ba70009ffc679bc6256524b63c2760b71d187496401801571679a0b888db

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    6a9fedee43ae7e521c1bd1bc8a25e67f

    SHA1

    37e518ff5b5b05067444c3fca0b3bf98d453cd9c

    SHA256

    95e6c7c0df76f5027ea6b1bcf19c7137136f3ebcb0ea329281cb51a7df2df4d3

    SHA512

    28f740da218371e39605e9b0aa0204fdc288fa23b4391d2643daec97d439e838dd55982e6b17a42ac2a9581f2e3b9b4e37d4418a53af237ff4441812faac2f6d

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    451aa2e8e426274c84722423bb4dde81

    SHA1

    32382aab67d00cccf650fce913563fb6c98cfc5f

    SHA256

    b635f896fd32d573f24e5b0e71dd5f14af866c6f4c309b1be91b34ba6caa7165

    SHA512

    79e10d3204d5351e9f57e675d9af1a470a1a00eb8c7208b6df7c6a060e237e1586ffaebbac36ab90bb539e4db5be5aa8ce92025c0fda0a84f76aba6367e97c51

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    17cd86b950d2778035f98053e143bb02

    SHA1

    29daff482e41baa1cb714a4fa1a5410aa94c0410

    SHA256

    0c0eb03da994e5bc4365f17759cf1553e1a76eafe7fe9152995f9ee90ad43a55

    SHA512

    82ba12f3cc0462e272b51317c38355007f366798a44c6ba7b3fed25ae688890c4bb45deba5ef45a9493c7e4873a100a9f43ed42f3152dcbd2a2b17c66b473d48

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    5efed118e1f3ee805182c58de639c300

    SHA1

    2fe4459ed91f92e94f925bca27f19bfba9e77018

    SHA256

    498e43572c2cc02845c33da32a9fa619d09c358ccd03520ce355389627db108a

    SHA512

    bbd346624484af005566894a3f48a04b1653a8ac7ba4cda57c2851a4e3469ac8a0cef02073b175ea28a2e5bef144263bf93bf788295615f0f9185987970c9d52

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    0d538961e3a2b1cf38c417feb8c1246a

    SHA1

    03a71f2e54e38152a83609234bdac47dc7dc8cbe

    SHA256

    5eab28df252b31ffc75a7290095d596c070f190a106bdde4ebd3f5a51737b740

    SHA512

    e2b7690f08517d9d8347a886b07a45ff863064f7f33760253e585007ef6f7b1537207fb85bdb7aed9942380997389b6bb04ccce10988014ae6ae9f5b85e85ff2

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    fbfbc4b490ff1ec42ad93c53d9742886

    SHA1

    482daccab8d5ae5939870f8a9cd153839ae8c83a

    SHA256

    4b6fa2f71915dd1195d779f9d27ae12bd336dfa7d4426bb5c2e209eee1e2ff04

    SHA512

    839aa959a8adebaa01293402f968faaa6be36be43d9f2fb7ee5cd82b04053dcef5b78a3108424d87b1e90adb79b552887fb3bfe3e21195f162cdb85ff405dafc

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    dc51ae38b782df37413d2099a1e1c4b0

    SHA1

    636fb92994ff10f88ccb95b264a4626c9565f890

    SHA256

    72e8f79314dd97e5a5d71626faef0bbe332a467c27d3b2ead31e4897e650a418

    SHA512

    cc746430976b34428c62efad0545b52ae431bbe5e141a96482c393917a892ff6185da90ed1b9119764135512743acefa4c729d79b0ac279158fc3a79d2bf74ed

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    f4953ee2c0652dc8cdfa96ad63846346

    SHA1

    c65c6b56d12d9025c163ebd3e3f3e2a7304e32f0

    SHA256

    94cb5bbf96fb10127e89b353f3a89a13ccaf493d487f2d0127da0bee9b39a6cb

    SHA512

    1d601a12f5c3b41c6a7795bae1ad9417132dc8403860b00768b82904b1efce65ba076e833a74ef384f0a0bc6b3561f6052d6beab2f45ab5a934d099411fe5dfc

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    e4600a8af37ce0f33a0bbc19b3a72dfc

    SHA1

    01e8524eb2281f43ec4138190cdae5b1110be4ca

    SHA256

    c4b14eb916e79e7ba8d1535530e37789d60b9e16f12cfd2e36b3107b72a54793

    SHA512

    ceb084d550aed7f70a2f4774306da6335873b409d9256390d8bc7758ef95327ff59517758c681ae487eb5ab337e66617e7c7ae3be948ac3b3cf7dcf6e1170ceb

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    9592d30560c855fae2becf4e4c339434

    SHA1

    4a924a295ade892140c4ffada0790b1698f0c7d7

    SHA256

    ae908aa8cf43e821137d2dd9f9338a54edb75c3a091d913d6b072b024f519443

    SHA512

    fb34cf177c238bc3fd0018408774f39513baad86bfcb4acf62ca08eb3761199eb3fc0e42af7a1948c1ade966bd92afe7d2eaa4f73269fa051de7bb83fab37a0b

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    dcb661360ba72b8da92059c38d2605d8

    SHA1

    5aefa18dd05e4b5166de9c377c0f21f1966b01bb

    SHA256

    735d6a858abc4ad4922d478b0079546b76e08967ba29a9237a8f9ac6d658fae7

    SHA512

    b6e50ce61fd70928e68caa3c352ecda42d3af02b972e4a9cd8e80daae6939624026b9667da6b32f1107327b2cc556cb9e1b6493475f1763b5e63879681bbe603

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    4ba6b95c4f52907e510586b4bdcc3fa5

    SHA1

    016a8b954a57f41f8478b0fde3ec7c89869f154f

    SHA256

    7f3f835f7f42cc15612974a9627cc6f99bacbd33925efe0e7414a920fb793168

    SHA512

    f9cf9820183dc8aba51a2f2d3ef42e23ae4ee2efc591804515eb3115c744a5a73b3ad17f11bcbeddc04018f1519c50d29554efd4021544ad1216526bb08e8772

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    74434db7014ae79f2f2580331fe5786f

    SHA1

    9237aaebd47c317870cb059ca974772d12bef1c0

    SHA256

    62e39d7fc448a8da76b48fcf823f22569b032b1bbe0ac71594ec3acbedc0fc6a

    SHA512

    b936f34b60c7e39732ab2af1ca570f0c96cbdfdc9e04330f973d5db4e500b81746d81257a9bd3eda08b2a639c413847c236f06f53d01b2885b715dd3d80433c8

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    7dd6ee43d61e54f144585c5482702559

    SHA1

    1f639062f136deed2bec30615b60e5e1e6906c03

    SHA256

    a21f8b12574cd5357c294fa01c9de02d25a12d245d43cc965d174a9d8dd64b31

    SHA512

    cab35640f21d44da2588607beabfcd5b691418e001cb8cfa786bd61439c6ac5168415e59fd4a8b99235cb6e87b583a63d1c94e4c7599e33d14b2b5b398cd2c29

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    42c30de717501b6c770373a2d2ca69e7

    SHA1

    7bd1d691f0d37b82b44a7ec5ad9a10e28b67e318

    SHA256

    cd8741fd8169da1e7147657670e27070a4bab999b3d5647ed49a46976f61cbae

    SHA512

    8d63794d09dc1293b6d8823ac2427da1ea939a4476872b1d5ccbfc1ea881d412d277ea97d74141d54200808b069c76ebabaa82b165244ffb3f6c957950398bf2

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    efdc91d7076cd859136fb107b349be45

    SHA1

    9f1352fa59a45d8f496b4d110e8a64722cdc9fc5

    SHA256

    cdb6dcfba1ce43306765d765478a7e0aeccd35d2dbb9513d947a7592cae21ec7

    SHA512

    2550c52179ece5ff514c6eccd63a36620d558597df61723efbf7813e7c473dbb54b31534276b91b2806ec45053e4d21b24ff2ff3f7a662843944e5311a1f83c7

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\HJ0GGVIM\f[1].txt

    Filesize

    34KB

    MD5

    177f413f34f6226df1a1d91d2958ea4a

    SHA1

    0f70736bd5035ce5f3ac9d3cfd65299cd92d35f9

    SHA256

    71c78f0184044c0b81f320c30cbc41136049f84b951901edf9c36ac9949a3d5d

    SHA512

    a2348d8193fc1a5fc76322956d9ed7925fa7af7e0aeb5c43a7151fc9974b3b5af7d815486551864b9404db36611433b70d4e7f3f5876420ffa7254840b4f050f

  • C:\Users\Admin\AppData\Local\Temp\Cab7052.tmp

    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

  • C:\Users\Admin\AppData\Local\Temp\Tar70A3.tmp

    Filesize

    171KB

    MD5

    9c0c641c06238516f27941aa1166d427

    SHA1

    64cd549fb8cf014fcd9312aa7a5b023847b6c977

    SHA256

    4276af3669a141a59388bc56a87f6614d9a9bdddf560636c264219a7eb11256f

    SHA512

    936ed0c0b0a7ff8e606b1cc4175a1f9b3699748ccbba1c3aff96203033d2e9edabf090e5148370df42fbfc4e31d7229493706ff24f19ff42ff7bef74a6baad06