Overview

overview

1

Static

static

1

0399b7a673...d.html

windows7-x64

1

0399b7a673...d.html

windows10-2004-x64

1

Analysis

  • max time kernel
    120s
  • max time network
    140s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    29-12-2023 20:48

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    0399b7a673c6cd5dbbb23fc2664fb9bd.html

  • Size

    12KB

  • MD5

    0399b7a673c6cd5dbbb23fc2664fb9bd

  • SHA1

    ed320207fdc8994a21939b0ac8e7cb4199156519

  • SHA256

    c9409c1327af0dc64bdff336c30d3611a1c6ffbe3efbd960829b9a9e4a67feab

  • SHA512

    4ec07d7fe2973c924125974086f00347b5ea2c2d748af458275e7839743827eda0673aac97526e0a86d20c9e7f8e0eaf565ca24ed7cccc365511e5ace9e5e13e

  • SSDEEP

    384:pyVyi+5LIld6rTyv6Rb+nQKrlibQmYMH/pMF1E:UVWUgyvCAdhi8yfpe1E

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\0399b7a673c6cd5dbbb23fc2664fb9bd.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2856
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2856 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2704

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    bfbad890699fe92930fb03dd6dcae069

    SHA1

    1e13cd842d50ddcf875ba875f04c9acbbbcf4b91

    SHA256

    9d5c393128d679358d5cd3c9300fc2cb0ba01cf75fd75eaa86fed9c3f580e698

    SHA512

    4066e0eab0ac0bbf8473faa66e4d96a12e4b69d0edbf041c669ecdd5ee975715cc31f8ac8aba49a24551b7eb423dc31b7169704f14f1734ab84fe4e7fe41ebeb

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    e1500b8c72fa28e1384c24af4ead153f

    SHA1

    189b7c864c76745633879dea58391fd70bdcf3bd

    SHA256

    babdacf45da2a881a407231b05541a0ad8b50e5452baea4f7e9c03840714399f

    SHA512

    06f47833c63a86856f402356436a916ec94c619e542d2e7a63e6b19024cf4240ec0e8531f0bb628a331fdfeb4cdba95d7e619f4af2a15405ae679313d9799285

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    cf47cff7576d5d1651a61518c9cb32e7

    SHA1

    9f175f2b7570153b90ea760bb51161a2d7e90466

    SHA256

    345ae11e8731fa49c8386088d1a0a7f7ce0d9a4573a75c40841ee241d9ff0a87

    SHA512

    b416b6081375e15fb9ec968a3e55a4df6de33d8acc10c25acf858dcedac56813ef338f47f39eebb5b6865699ff85267466da6195801db72875bf6f9976087212

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    0d2d8134966c764212bcd214da80507c

    SHA1

    78a22c6589089cf35a6b06f921eb18bb43c05980

    SHA256

    7fd70d8da292c52efa0cfd8aff6af4c990c8c55c74d6f53bd73e946a0721ac8d

    SHA512

    2aee91416c434faad608f687aea78229a43cd0f5519547bfa2062eed1b03c26efe1f4a0917609aae9ea8bfda64edba5bcdaa336d56a928313082a5dd3fb43ba9

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    7f56c3381efd9040f50e2ef1b59fba38

    SHA1

    35e51ad2f92c94cfce4fad43f3fc91a5c004a84d

    SHA256

    aba9e7b41e29761466e80b8ee10d2580afd51b71ea79fd05daf6a0e2e63f1da8

    SHA512

    1e0bbc61d5a98d74a28148304a3d8fb26ea9fa71f3c048189bbd914ee6a98fb749ef07036717eda7f4c36df4bfe496cd2d6cedde3bf569bc8a6d3ec558aac9d6

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    9ca5fc50f52f7f527a7ea0f0ab317c3f

    SHA1

    33f0ac72454542110f80854da6b3cd2bb75ce371

    SHA256

    31010f9babfad2cf1f057ec96b2fc51235df809c5e38d505d03dc3f08b20f4e1

    SHA512

    10dbf3ac27c37741bae6605dff533b372108086cbc9696e0bbec5d59bfa48943548acfe6f1b62cf0163d9f507d2a8e6854d987b589f99e3f1c08589520a0aa7a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    f9a2c6190b86fddc4fde300586786def

    SHA1

    5921885996e69cb40aedd094c24837b54594488f

    SHA256

    ee8f0979b03dfb71a5a0bf2656dd27ab6183feb8e0706b685e4f2004fd3dca59

    SHA512

    e91c3ba1438fa21c8e7b94b261509315e9fda57cf3a0a507c68d4ad9da578315f611a7db57d69478e93a08677b8518743ccc2c35104d2ccda2fcac7dddcca3f7

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab8C7A.tmp
    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar8CCB.tmp
    Filesize

    171KB

    MD5

    9c0c641c06238516f27941aa1166d427

    SHA1

    64cd549fb8cf014fcd9312aa7a5b023847b6c977

    SHA256

    4276af3669a141a59388bc56a87f6614d9a9bdddf560636c264219a7eb11256f

    SHA512

    936ed0c0b0a7ff8e606b1cc4175a1f9b3699748ccbba1c3aff96203033d2e9edabf090e5148370df42fbfc4e31d7229493706ff24f19ff42ff7bef74a6baad06

    Download Submit