Overview

overview

1

Static

static

1

faf21947e2...3.html

windows7-x64

1

faf21947e2...3.html

windows10-2004-x64

1

Analysis

  • max time kernel
    135s
  • max time network
    144s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    28/12/2023, 21:56

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    faf21947e2bcc4bafced91ebf3562313.html

  • Size

    156KB

  • MD5

    faf21947e2bcc4bafced91ebf3562313

  • SHA1

    3b5f7b2e6c8e9425d32b9d72ce64af57eb5d0323

  • SHA256

    a85da47070d331ec6bdb5cced57d4f0bf8f0809a8c1843aa1166892da3744d08

  • SHA512

    94c82774289e556994c6b0a7f88f615a536ba8f31483521a013bf51b04efe98b378496a62642cb7ff23354afc8acc8f6ac026e2876daea5daf9eabf36db663dc

  • SSDEEP

    3072:D+NORS23XssZF3G4k5QhLpOatVScCIK6KYVyH7Pq1cHIxvzV+R0nzMV22wOoS/0K:K84O3G4k5QhL8atVWE6PqKHD22wOoS/t

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\faf21947e2bcc4bafced91ebf3562313.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2000
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2000 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2272

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          5e0f6d97024f7a278c83b27cdf2ccdee

          SHA1

          f170fadb377cd50de6b349e536c2d143042f575f

          SHA256

          84c32df53bba497c01f58065b681c6661e86dc4c11caf9c696ac410ebf1160f6

          SHA512

          ace18907654f39720ace8f7c9a392a2b9737a75f31db9369e47e19dd156cc02f212dcf74cbc4803e05508014c1ef92d50df70ae6079851230fe99857c2fa160e

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          5ad7ce5443fa379499103043f57c516f

          SHA1

          6221db8dcb58b1a192b422562e9a9890305f54cf

          SHA256

          a685f612418a7655e9c84488006f13663fe320cb48568170b1afd92a74c95da4

          SHA512

          378bcd7ea2880862c333fdc6420d93228880f0bcba72ba033085efd7e8b52092eab5e301c52b750b8b4fe3e7c854537bf8ba69c10d8f9113a572535d215be1a2

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          6f1b1f2bfd64ff8ad6ffacc0d20398d8

          SHA1

          cb68ac58c384c14573bba0364c77b78db940896c

          SHA256

          fdd30cbb9bb12bb2ebdbc32a8a5a67b711cfe51a7b8c29bd18945d26e7ff15c7

          SHA512

          30e239d400410d07f6706dbd2cff08bf06980fa69032cdad472cc8af00ece76910515f915037cdd82a7316e11cd0a8a04305ebe28bafe575897f40c476786efe

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          808c855f0c11f8c41dde9bff709e0fb6

          SHA1

          65a485edd452389839eb8ec738e54cc93e528cd5

          SHA256

          4ff4ad02f15e29817bfcd4ddfd9e0a82df27c3198100547508a73fe76b7d3cbb

          SHA512

          d46bb011abe87f491a9aa1549328777a4c7b34cbb363ccba670dc058724c045ef9e31b3896148b4ac7bc6079f302d3092d9ebc90f0c7dc0fdabddc376a7c8bbb

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          72529e17545dd21b91debd60305a02c4

          SHA1

          f3790bbdfa719b37b7557198e40763355c3a03be

          SHA256

          4ce7c39b03aea1d5670f0e2f820e9856e3096c5d32377328d853b38ee403d5e8

          SHA512

          5e3272e054794cb0be342950d468c401d83c404d3a0ecc3bc3b78d0666b699e27009eca08e624c3b15043b89cfd1d12ce994117e0dd6fdc782fbef87cc6cd505

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          e15de65a7bd267df128962a890783e40

          SHA1

          aaf2c522103ab071f0895984d942dc291cf227e7

          SHA256

          113164137a3d8cfda3e377f76211da818f409c7a09ff99c08e1e62325b2ce5dd

          SHA512

          083ae99a113d1e120d0d50d30d67f2a2a50b4568b342313fe13cde8a61fbdc4c9bb7f97ea473169fcfb72c8919f2ccf8d1fcd28f794b96453acf5d3de1f18fbd

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          3bc036ac4873d22738ba0647ff54c739

          SHA1

          548c52118766396522680ebdc390f1a8f42cea2e

          SHA256

          c060845b10501f4804ec0e405084a246b02ecce1722c62070ec02ff24df34d9d

          SHA512

          a3e39868dfbc59f6e98a3e16aa4296a346dbdb81b00a7e7e94eae15cc06cf3b5b9e239d297a109bea5b41af469545d6ec82e31993f33c1fdde4e4547cf63ea72

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          5fe3642c0e9924fd9dc53755aef78023

          SHA1

          a294a5626c6f80b693f7c2c6bd7718542ec24e6a

          SHA256

          fb8d9c5775a3341541a38577c2f6d02ef9fb615d224e004b02786b6338e497c4

          SHA512

          1109d21332c0d69b37719a5bda72c797e70524cc6ac0e89481e7f00b7a237b9bb65f1f3b147b258e32af1f1cc0f0a56d517a3e20b9dc2af92840a920e89f0c14

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          fe3c7d04975aed5723ad7fcac9d105a0

          SHA1

          9d9bfaf713461538826addef54850348a55c5b92

          SHA256

          c11097ddf10611e36bc78bdaaa84e04394df1140f0989034bb8c7f9f7f4665eb

          SHA512

          49ff98d2d9e30a8949cc8359697bf9d68bd9007298dbfbf57f8d5d82ec696f32f9c085b8c60758eba486a4214ee63e4609069189eb839a84cf5f8acf6392524c

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          8f631d79e40ecd021484e2f5c6c59a7c

          SHA1

          11eb5e208efc73bbdaa483b66dbdfc5fc7308d23

          SHA256

          6a5b4067cb0e330ed7390ed7ad8199325f488821763ed0c99f7e345a3bf30733

          SHA512

          461e2bd496ddd3a8bc8beaa567805f0206f195a2d1d485d5209fa32a36979949201e6dc306d572d8e2e775c0765f63653269e5e99dad42af7a6f6a757a5d1698

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          0cfc34f3f4448b3fc8b3c4d4ea6d1d90

          SHA1

          85561aef8f2a839d544ee79792c3aa32e60c1ae1

          SHA256

          17474a13db84e79b8e54196cb4a543bf4e572fc5925cbdd6c648817232c07a05

          SHA512

          2e8cd4d8942c6ffe09a340a688f094a422c832e03dc039a65bf402745b1e08d6351c52751ff4d05c400d70d4afd837c22c28a2252ace92a16ba0969f4de2acc3

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          9d066479cd3fdfc11eec6928bd30c424

          SHA1

          d9b2d411510563484da34f426dda29946e6d175d

          SHA256

          e3118936cd60b53045f5933d63867b6304fa061c742b24dbb81bab3b4801c12c

          SHA512

          514620a1cbd72589a58049bb667d43f9ab6deabd1a83dd913d08df2c560989e90191ddcfa53955718d988f61650e6d6c3e61a6ac29ef6a37edd08fb95504d821

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          b7e36085cb8ce05b811ddbb87ccbbf57

          SHA1

          0cfd3d150f2361e238ef096a8591700a5c738e55

          SHA256

          86e8bece5eec9bb1d42c6b377336d5911deb58766ffa90ab1342dae2050e0d02

          SHA512

          d682695b2e89687d278f0b426faf7c2918fe929c884ad5572774873e8cbe8df7bd07ae311e5bad703fca08d84b8d2e9ab6e8d1928579200897a34125ea4e72f3

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          e26349b7e87b6d0ac2fc7b81bd7403b1

          SHA1

          83967088c81ef93d8de251c3144e9053160ca49c

          SHA256

          d8db69e34a7dec118d6b87c0e3147e8b9b21f45870f6bb7115774743e2b91f41

          SHA512

          1dea067db940aa283374de27e191c82fa6732f068448143bc7d828ae2d35130812de7181c449c542d58b60476802ae3f35fc87077cc1b856ce673c285a10693d

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          594e4c905ca452e048a79b2482b6d1da

          SHA1

          a7b693604ceb866f8872ceca47cbefdb1ba5a074

          SHA256

          b95305a91f9a56e3ac35184067e2363f425724402fdf4d68ca94fff2c3d4a781

          SHA512

          abe7a8107caa9d537dfbbbcac35aa62c9d8368fa7d5241293b9e73512b6ac7719ae279fae3d4054f8bc6671fda0d6d39b35aaeaea7f39e394167ed7a4db3f676

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          c2095ae82da4c115d16b8fb5c02c8d62

          SHA1

          e197e4ffe39aa3615cc5aae57ba49fe34ffe0498

          SHA256

          a2b18290adabdd71c2fb33b36c1359848fa1348da22270cfc702f77f4064209b

          SHA512

          1944624b604a7a58612aa20d692aced6d02204c6365bd8f44222f49ee9019a16f732e6f23bf292fbafec6d54833ee8dbd8fcc2a5bb67c2576aae42f32b140787

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          80d7b1321731ddc40784f956bee51381

          SHA1

          4463d640e19f83fdd0899362dfa9788ccd2170de

          SHA256

          e9c95de9847bdbfe595fc5a8d94eb0dcb8e10eef44611c5f95d56131c75d1c61

          SHA512

          92df9210396eabf30327adbed2639d2e40c7b24d291dc2fe4af3e1c69664f7317c0f1374af8bd54f926c1cc57a8c26017b9416fcd83f8f32778d1e43a696c243

          Download Submit

        • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\M2VO416U\Z9BELG99.js
          Filesize

          157B

          MD5

          67e216a27dda24bdcb086c2385b0cb99

          SHA1

          17141c80f5d32bec3691c5ab24741d8b7dd5f0c6

          SHA256

          9dc433b2142d3ba0803fcffa53f19d34da26996d20c829df6d694bc887325dd7

          SHA512

          802319543dc64cb011bc2684004e878a842b73aa55e4da1141ccb8650cbf42fabbf2b46c730760bbfcc7a140e11700244b9f5da78bafe9fca7ec7825c12b4255

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\Cab67AB.tmp
          Filesize

          65KB

          MD5

          ac05d27423a85adc1622c714f2cb6184

          SHA1

          b0fe2b1abddb97837ea0195be70ab2ff14d43198

          SHA256

          c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

          SHA512

          6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\Tar67CD.tmp
          Filesize

          171KB

          MD5

          9c0c641c06238516f27941aa1166d427

          SHA1

          64cd549fb8cf014fcd9312aa7a5b023847b6c977

          SHA256

          4276af3669a141a59388bc56a87f6614d9a9bdddf560636c264219a7eb11256f

          SHA512

          936ed0c0b0a7ff8e606b1cc4175a1f9b3699748ccbba1c3aff96203033d2e9edabf090e5148370df42fbfc4e31d7229493706ff24f19ff42ff7bef74a6baad06

          Download Submit