Overview

overview

1

Static

static

1

6ee1a5752a...e.html

windows7-x64

1

6ee1a5752a...e.html

windows10-2004-x64

1

Analysis

  • max time kernel
    125s
  • max time network
    140s
  • platform
    windows7_x64
  • resource
    win7-20231129-en
  • resource tags

    arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
  • submitted
    26/12/2023, 12:34

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    6ee1a5752a93acdd4360299c852e82ae.html

  • Size

    6KB

  • MD5

    6ee1a5752a93acdd4360299c852e82ae

  • SHA1

    0d382c92f00c8f0ea5d8921a17f8f550d31e442c

  • SHA256

    e213d9114efb1b8401127b41fc7ad45edadb54a08e80697f8a34111c1e92b768

  • SHA512

    2bb6cdd64e662c3386d95c5cff5769fda5cdc8a403225336b322ac154cf58fec5274520a9a4a227c182ecbcdaeeac514daa603700b0dd7a7ab1c02f17732ec1f

  • SSDEEP

    96:uzVs+ux7+qLLY1k9o84d12ef7CSTUeccEZ7ru7f:csz7+qAYS/4b76f

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 38 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\6ee1a5752a93acdd4360299c852e82ae.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2196
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2196 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2156

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\3C428B1A3E5F57D887EC4B864FAC5DCC
    Filesize

    914B

    MD5

    e4a68ac854ac5242460afd72481b2a44

    SHA1

    df3c24f9bfd666761b268073fe06d1cc8d4f82a4

    SHA256

    cb3ccbb76031e5e0138f8dd39a23f9de47ffc35e43c1144cea27d46a5ab1cb5f

    SHA512

    5622207e1ba285f172756f6019af92ac808ed63286e24dfecc1e79873fb5d140f1ceb7133f2476e89a5f75f711f9813a9fbb8fd5287f64adfdcc53b864f9bdc5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\F0ACCF77CDCBFF39F6191887F6D2D357
    Filesize

    1KB

    MD5

    a266bb7dcc38a562631361bbf61dd11b

    SHA1

    3b1efd3a66ea28b16697394703a72ca340a05bd5

    SHA256

    df545bf919a2439c36983b54cdfc903dfa4f37d3996d8d84b4c31eec6f3c163e

    SHA512

    0da8ef4f8f6ed3d16d2bc8eb816b9e6e1345dfe2d91160196c47e6149a1d6aedaafadcefd66acdea7f72dcf0832770192ceac15b0c559c4ccc2c0e5581d5aefc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\3C428B1A3E5F57D887EC4B864FAC5DCC
    Filesize

    252B

    MD5

    8014e81de0dfc4388f5bf07186234359

    SHA1

    928deff3253b423853643c032915275521355f01

    SHA256

    f48840c32f198f2fd2cc02b48b4334d6062fdeb90435013ee757bdd627773285

    SHA512

    3ec3150c81da921c1e50a3a6654c87f2d8a3bbeb232b74230185d422cf59aa7770713bc22381300a6b89b879b80228ec44fffcd9064e9c92d7ee7dcb457e5267

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    ad0bc7b86f22f3096d11dd4665b0c221

    SHA1

    167696b33a8124e5ed27012341ee5df771c529b7

    SHA256

    501667ad7509420a4517f0abf910b9a77bd967cee11d6ab9539af24c73f7e1a6

    SHA512

    80c0f1c8373799274060395fc55b62a3fa698dcfaa1122b8874144422ed0d2360b2db022edddde9329d8e5264c49e39ce8d868fc03ac0b53082a682df7cd5e20

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    8b735d0e71ddfb5083ca03de52cfcd92

    SHA1

    cdd64b9f22fda903076428cf50a45658e00afab9

    SHA256

    f6e190067fa6a72fb9bb87df2a94bfcbf2aa92dcd4f885f4f53c52b5e2c8d5ab

    SHA512

    e20dca8737327db975760a7f471cbaef16506848dc0aa2104847349a54ddfd505ee22487a50f197cb3fc1f6ffc121ea87114acc07fc897755d7fc21e4211eefe

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    d1f5eb4e6a5fb6610a5ba9efb85d49b1

    SHA1

    b820d6b8b49416d01235e3f566e96e04fc76a658

    SHA256

    992e753ce5ec02c3f663b5c8790264eaf6e3a74401a0e86a13440b53693a6bcb

    SHA512

    648de8364605be8c6e15161b710d967f3a333fd91449d7c5a82c09c5a48b73d180b44d58194b42135feb210c76131acc5e3bf1912ce0bd3946c0c5bc77466678

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    5996bf1064cb5ff8f67f5ca72fb283fc

    SHA1

    a7f95403ee5df4c684b1d2cf735f281f1e58f24d

    SHA256

    23e7664d182cbb51a39e1b7e5fee00bbf9d43aa5fc606d1926076cad54f06dbd

    SHA512

    4f5cf57c1d67773ee7110ac8aab788b7d7bb3864dafe43b7370275f8a7ed54a97ed018c15c04c69d4d42675fbffca2891388955f6de9cd41a8b53999d5028264

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    770b871cdd3d30c5f0549c8abe97d92c

    SHA1

    0791bcf389d829def247c1b7bfb57e0373516165

    SHA256

    44d835efdea9f66b26c8a97b1fa740c6966a310f2bc859728b1e851dbd1f6cff

    SHA512

    440bdda794d0d26048a039972d05c556bf092ec748e76bc1df2e4195b117f3eeb351d3be64e5fec5ee3c1353a079953c4d6025a72790c986007abc11b705749f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    3e6e106d952dc6e6f6698068c4604bbb

    SHA1

    044a9b51061ccee7f56e7df0db5d6b7471c4cc48

    SHA256

    d5906a0a9d7fb2379670226fa0f713d9b599589406b5396bdabe645ff8e0d83d

    SHA512

    4ddb12c8ffae2eac9fe86d8423949fc1e67bf2373db49f1ef1e2b38f18369e6a3d76dce3b599d1e437ad531123c838807456a328d7e9499ddb6c6b3e9073ab9a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F0ACCF77CDCBFF39F6191887F6D2D357
    Filesize

    242B

    MD5

    f1d27eb8ee67e918adbb9b050d336234

    SHA1

    09927e86b7ed531d00c7f896d161175b1b01ed00

    SHA256

    481ebf9fba4f8bc96149433f344fea0d875fdc59dca250eb3a3b6175d9a4ffe2

    SHA512

    080282f3fb9735fc367f1f4416043081e1fd9a8e67c455417bdb4c5af102cc218bd096bc2eac212649a2ebb6ccc85dff492d925fbf9f34301cb86d582fcc3051

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F0ACCF77CDCBFF39F6191887F6D2D357
    Filesize

    242B

    MD5

    fe54cbfde425ea1918a474c31f623cb7

    SHA1

    b31315d70f367173cb76c503bcde2fe5f653971d

    SHA256

    f67c6be0bdd2d2ebf7fbfabd304f623de5b675871404f30972000d9026da8c19

    SHA512

    fc888a37e0647942bbac243758021a66954ed87467ac2942053090e2adee84ad47e859440edcebaf3cb7c6fda4dc5baa0843f6d233b373b9b2b2e9ed28dc5349

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\Internet Explorer\Services\search_{0633EE93-D776-472f-A0FF-E1416B8B2E3A}.ico
    Filesize

    4KB

    MD5

    da597791be3b6e732f0bc8b20e38ee62

    SHA1

    1125c45d285c360542027d7554a5c442288974de

    SHA256

    5b2c34b3c4e8dd898b664dba6c3786e2ff9869eff55d673aa48361f11325ed07

    SHA512

    d8dc8358727590a1ed74dc70356aedc0499552c2dc0cd4f7a01853dd85ceb3aead5fbdc7c75d7da36db6af2448ce5abdff64cebdca3533ecad953c061a9b338e

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab582F.tmp
    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar6213.tmp
    Filesize

    171KB

    MD5

    9c0c641c06238516f27941aa1166d427

    SHA1

    64cd549fb8cf014fcd9312aa7a5b023847b6c977

    SHA256

    4276af3669a141a59388bc56a87f6614d9a9bdddf560636c264219a7eb11256f

    SHA512

    936ed0c0b0a7ff8e606b1cc4175a1f9b3699748ccbba1c3aff96203033d2e9edabf090e5148370df42fbfc4e31d7229493706ff24f19ff42ff7bef74a6baad06

    Download Submit