Overview

overview

1

Static

static

1

00f557ffa1...8.html

windows7-x64

1

00f557ffa1...8.html

windows10-2004-x64

1

Analysis

  • max time kernel
    143s
  • max time network
    124s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    29-12-2023 18:51

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    00f557ffa143433072fc6a93c47e85c8.html

  • Size

    21KB

  • MD5

    00f557ffa143433072fc6a93c47e85c8

  • SHA1

    68adeb14f1fee14650df6e8a803f10125d943695

  • SHA256

    327acfc881eb7ff0022989f9674a894839d6e13087a618fe1625888c626e27fd

  • SHA512

    7b48bdd3b1bed74b7bab75cba6937a63c6e80f8360bfc9b68ddde548d5c84ef6519c59c15a0d6665e44296f8744a2a6f6696523e4ff1f6a260e88744e63a6cda

  • SSDEEP

    384:F1jQvQt1jQvQG6WOQLny2BNIVpvU8OD7ib:F9CM9CX6KUM8OD2b

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\00f557ffa143433072fc6a93c47e85c8.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1816
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1816 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2216

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    59ba94c7533f83b83cc368b5650c89a0

    SHA1

    3193d0eb3154569655229b2e8f883b091c9616ff

    SHA256

    aef3ba36a010ba1923a56f9c3a192ea43a605636839d895b586b36a8037cc4d5

    SHA512

    efc9a88f8b8ee0ef3bab06ba4ea56be850dbc3fcaedcd488d99a1e2715c96ec882042dee7bfedcc81f1456400bf55e100f80537e23d7af81d6f4279de68f8183

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    de52feac0cb71fd353497626cd6f8e09

    SHA1

    a5ac3fd17be803f2ad26c8ccac0462446119869c

    SHA256

    b3eba9c47e7e7e0a2dc1cd523720f800c449c4444f88ab05db68142c6f2ff10a

    SHA512

    4d944844ebb491caaff5771f13035a7d59b297be2ead7eeb267b2b62216e4fe436e8f26e50c55b3758dfc6b1425c2e5301acb49a352d7f4b1b39d118c3e2b6b9

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    940c60b8d78c06031054b3391ced9428

    SHA1

    5f243527741dd2fe70b9a7522c948842e98c297b

    SHA256

    bc3d2d3784964db751ed9677b7b1081d31b2f78d16cf017684f431b85d909ef9

    SHA512

    c16731b825934c7b6b7938475ef6f94f2c0e83ea2a07e822a3af24f33ba462831be63adee0554ff57ca6acd30c410e2f8c737013df0509cfa9f40f03b4fcc2c4

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    ab48ff3f960a752332225412f93d402e

    SHA1

    908d56c35a6b24d17cd37d8193597b44ea426a29

    SHA256

    dff5dc1e83ef209dc2dcf097c2b72528fccc8f2794ba1fc02f7a13ba43a839ca

    SHA512

    82917a87682f03490e49ce998c9dc5ad65511130408cbc6c3a8259df857e9b89f40c7309e6d45762076493f4020d51bcec2751fe249c6dc23ca67dc3bce28f99

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    a349fc7990e9476f862fe401cd886dce

    SHA1

    53e8903a7fe1e19c05281d91a78e7c33f601daf1

    SHA256

    1f59794647463a8fb79973dd83d1d6483b77cb7b1eb090deeaa4de229fe446d5

    SHA512

    800d5d9ecb917f2a906a6f054f22983031981828d06f1f3ab8888350f3f1b5d305a8e28efd8f9eb67e56e6dbb6896cd65cb977e4b2ae2da22a6fa525c4ee7f87

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab48C6.tmp
    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar4917.tmp
    Filesize

    171KB

    MD5

    9c0c641c06238516f27941aa1166d427

    SHA1

    64cd549fb8cf014fcd9312aa7a5b023847b6c977

    SHA256

    4276af3669a141a59388bc56a87f6614d9a9bdddf560636c264219a7eb11256f

    SHA512

    936ed0c0b0a7ff8e606b1cc4175a1f9b3699748ccbba1c3aff96203033d2e9edabf090e5148370df42fbfc4e31d7229493706ff24f19ff42ff7bef74a6baad06

    Download Submit