Overview

overview

1

Static

static

1

1f9c4c6b89...7.html

windows7-x64

1

1f9c4c6b89...7.html

windows10-2004-x64

1

Analysis

  • max time kernel
    119s
  • max time network
    147s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    30/12/2023, 23:13

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    1f9c4c6b892b59cad2829192f57156c7.html

  • Size

    3.5MB

  • MD5

    1f9c4c6b892b59cad2829192f57156c7

  • SHA1

    7cd541689934c858aebac855eec9c428b1f7bf06

  • SHA256

    d65000f23b7a53db27051942a4a0467c802f2498fdf05fb0340707837cd72610

  • SHA512

    46d7c7cdaab8926e79931d5a19c09b0a95a20813e3c5a61aa40ec5ba0606cf717a4f74abaac8bd5ba712a247b3c1cc3631b728951ef33415efe94f843ac443e4

  • SSDEEP

    12288:jLZhBE6ffVfitmg11tmg1P16bf7axluxOT6NAq:jvQjte4tT62q

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\1f9c4c6b892b59cad2829192f57156c7.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2932
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2932 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2380

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    f36e8c3f5a330808e73e88fb7496d1f3

    SHA1

    8b1e8da5444aa14c655eb4f4dd37c48109b77bf7

    SHA256

    8177de81821ba7428c77882d48b6c62c1c19701a2991ac43d3ed82989d87e991

    SHA512

    e3490c66e47ccaead62bbd4a3c73e0fc8e9865ba88ed3d56fb552edd424b3ec7578ff2dc9bd93c5c63d79219c1caeb4133e5ef54148a3d4779053f2f38a584a0

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    dc403e6a3e9ed0a343d5d05175d7cc7e

    SHA1

    50f7bf0d2d09f03157f4cd2cdb9d64f2e9d08f7a

    SHA256

    32c879241bc2d32054431f2dd8074f00658020bb8bb36fe2787aee438e479217

    SHA512

    f9cd9e9ca29eb2b22c44a8dbd4ba7a1e780acb25a3075c288171e978898077d8e82a9881f9917c31d9ddb5c90bfa4e9b568e1e11d5fffe0bc2b98edd0b874b2c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    0558343e4210b0242669d8d11361e4ce

    SHA1

    03462b5e4012fd037701d4fcd4e1a4e3296fc46d

    SHA256

    a0f969f6cd0db9cec851c6f8722df78176f30ff49aa82f044e305cbd6179cf66

    SHA512

    7ef46e6df410bbb89b42ef7a66d73de7aa56df9e8d2464f703868d26dc6721c8dad4b6299ae0d180eda6d2312f02649f2955b6e4b461aaee330bff71cd6987ff

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    1022d3ac67bc9fdecc77e0b458fc89c6

    SHA1

    8d3952f76a424e670ae5cff77272ce6dc149ac54

    SHA256

    17f1b7ef1f40327a4d7a5eb7c1de7f54d83588f74d89535bc692536ce6d0f711

    SHA512

    a73bd051f70cdc84ccd658a86fde5677c177892cae531a579dddda2691309a13bdb026eb1c44f5f2b8fb2362facba40c23ac494bd587490ddf86ace9472d5b94

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    e58cfa614492e269e9bef1f7c306cf39

    SHA1

    9bcb146e896858cbd3f7405c93704f96a2c53398

    SHA256

    495a330da1a4fa07a088c83ad9a3226b408b7e27ee10113b547d04e862e8e37a

    SHA512

    c140eb53371d8e9740f9500b26aa08e449c8f6ebb13999c9792fe8c8cea4f2c436f78dc7779859b5a8593f2ea7d43ad9bbcc04473f8956a244ec07e0ab23b565

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    c8c89031f8e0607ee30c7fc9ff92a0db

    SHA1

    93b774f50611e7725a6eb113b8147359d58c03f4

    SHA256

    84d61d3a08bedcb4a6ee2130f182294f778c9fc7cb0a0cf10e5915948317fa91

    SHA512

    702c10c9aaa46423b3e23e7c0ef9f4f35b35ab38fa05817b56f1b259e8bee2c3d551e93e8925b5d4a827e8629416393c651afdb6485e57fc375ad0703eab5ded

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    cc9552e54b303f7fd6782270f7e352b5

    SHA1

    8dad85a095ae44052b6eabd36760d324f2ba189b

    SHA256

    a5f04cfe811cdf86351b1472aba912eee41d73e2a389adfeda669fcc6d9a6c8f

    SHA512

    b2d820f6f383034e9f1dbb52bfb73d9ae7573a35caeee3f259c8a7cbcfa49a36265e61852e0b843bfc0f5a0aa240186893ecce9689136674057b2484b7bfc5f2

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    ddb7b64f998eefb2a4a40b37861d3f5b

    SHA1

    7cb711da7c2a33f688905d4688e5a126982dd286

    SHA256

    1b8a2000b6bb41db6f4a68014a41c8eabf9b16bde96c26fe9d209203ff51401a

    SHA512

    552f43f7c35e521fa26b15dfd85b8ed841c9059e62b59614ab11fad076d3781c407d5dec8f968905dbaaa85f92de2faed3a39c97bd511c7084c92a68ad899b00

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    c64f6a6885e263bb9826bd13fe224b15

    SHA1

    8eef81aa30001c117e41e658e9caee0fe2ef989f

    SHA256

    5eb47e3b10c11a917e4bf85e46122a4ed2df47b365d5ce7a5788f3e17f82b8d6

    SHA512

    957d7a7d736759ede7c4d4945ae498acacce47d5d6be1ebf4a028227c8e25100ca20026c1c654c79bb2639921359a07e5bdba042a2b847cab85bf00776f31dbe

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    cb69d5b0b55139168e7669ba9e18205e

    SHA1

    d95a71e6d6cda6667e97a5e14d2d9512a6dcbcdc

    SHA256

    94e1633eae9dece08740c85a10fce356ab460b28abdf54dbf9a9d142acbbc6d8

    SHA512

    b02375f41887daf8d9a52d26af170a06fc4e5436ae7384e41c8c9c3a2490e326694f1ddf2df5c484d1eb2dc0255d12ed5a9053d8c57c34946d98d9c0fd6bae6c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    2c180774bb06d5bec5475dc8b0def938

    SHA1

    0a265fc4de988ead3cdd92240fffe3de4d5f610c

    SHA256

    4f5228fdfde64ba2fd9ee750339b8f867001a2134c61ef82952df8514c69b765

    SHA512

    42eebfc8e4bd74d9488295cb77b043a34c6459f1089ac6128f46ca10aeaf21782003bf3d10c36e682e17394aed21ad559d0a65a18adfd7ce0c7d307647808797

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    114682c3ab38a1e9872c62dda6821957

    SHA1

    5e5189f727216b264d244fd81cd6414e1d842d87

    SHA256

    6cbe717f886129d0d3ec748c065b0c1b7d10c53a8f0b1dc46d85eb49868959f9

    SHA512

    ae03027823ff3a02b6ce348f7a6a6cb0f65cc301c4578ab92f075d6a38c9be685655a163f0825b0bd58effa5e698c22a691494ff2381393b5ff06e12addfd4ab

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    e39754329e18a60f8e318d2fd25235e8

    SHA1

    e2dee2cb0a25d6d0654e56718c57ec022d472820

    SHA256

    b5f69061b632fb6c20c59f39c1f761387b86cd3cef26529e4ab94a99f69f9e37

    SHA512

    ef4d147a8e77b395df077f7632e3a0c1d31ca58dacdb5f5bdb9d0c404a368373302d1e54a90e329e8af6172e0a653d24cf8b28b8e0da6547dc09ce8ca8795e65

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    c011d833336884789327bd69802fbeb9

    SHA1

    5de7887997b10860221272238846be8608c7a810

    SHA256

    74fe0859f0e9470009068acecd9e9fbdf6390c3610e46325908522b075589b9d

    SHA512

    b29065ab790c7adc8dbc07f6497d3919d78cc6e3cb662f3fce04f61a9ba6aa67fef45d59bac7d24c18355bfea1fa535239b39200568e3ab8946e989651f4abe6

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    f6894a3309cbf035e47883b618d82899

    SHA1

    47c71a11c4ea9e292103861421664b73006d9857

    SHA256

    cc980f7dbcc74728ebaea3ee410faf9d7979247655f7c25eb832779504efee9e

    SHA512

    ecf97f1600c47dbb622e2ab114d0b5ed0c812e91db93f082589e4e1c68c26b5833abc52d0aaefc0aa907e074d2fa008e90b17b9eb5980d751e04a22bbf6ddb27

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    eba736e4ffa096c19dc956f867702a83

    SHA1

    78c234c2e81ae17f0ca5db91b75ce9347c381509

    SHA256

    dee36f76192106bc7721de349e40e67e8f734b4a46eaa26e5bf919aa1f296b1d

    SHA512

    f8cd6c33e62eaa30f53fd84c2f65c8832320d5d28c60affe19bf990437c2145b0f64b634742daf75dad4bde4fc4c9a09d1e0eac9351513786fcc1f8f3c2c1eed

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    7d0d402231f12b25f9a9a1d1fcced770

    SHA1

    29c78112c54d468379658ca6e8fd7c78ec53edf4

    SHA256

    d34098ca5235a3aef60d1473b1040125853c5ae5dc2d09700f1dea6de797e634

    SHA512

    19c017198fc613346a353a52a19c605efb15aa92a251e1c263254e53b016166b22a4ad3c726dbaf5ee94729f3fd19cbb6c6b1bc7a74a5c3b8f1277386ccf7b0e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    20b71d93dc352618ffc399863874a425

    SHA1

    711c9e814e07c92e06b0f0b39f9ece7ad8736b83

    SHA256

    9be83c3de68e462151b68f5942fdda20af88c159f8d9298918a196bf87d85ab7

    SHA512

    96bdc3db976fea98fba62cfa15acba05524590daa5ba84df9c75a9ffc0517d1619e8436c2f3d1a38833e36c6ff97d77d0225a01db30273d09100ad62a700badd

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    085980b30ab78b143de8b3e2fa9704ee

    SHA1

    317ad13153a45952fbee42d8e373c90c0eaa3a2b

    SHA256

    0e9d0bc0614c536d741e4c32923355caec8397d51f31e60f8b43fe1b7adb24e8

    SHA512

    4fdee2fe1ef14408cae2bdc2a217644a48709df915d1217444f20eab61d859b0b20802ecc9fd5484ece0bcd2cf6bc01e7a37d9a876a1873e43dd2f41a9c152e6

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\4R90HQQX\jquery.min[1].js
    Filesize

    83KB

    MD5

    2f6b11a7e914718e0290410e85366fe9

    SHA1

    69bb69e25ca7d5ef0935317584e6153f3fd9a88c

    SHA256

    05b85d96f41fff14d8f608dad03ab71e2c1017c2da0914d7c59291bad7a54f8e

    SHA512

    0d40bccaa59fedecf7243d63b33c42592541d0330fefc78ec81a4c6b9689922d5b211011ca4be23ae22621cce4c658f52a1552c92d7ac3615241eb640f8514db

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\E25VF8N4\beacon.min[1].js
    Filesize

    19KB

    MD5

    dd1d068fdb5fe90b6c05a5b3940e088c

    SHA1

    0d96f9df8772633a9df4c81cf323a4ef8998ba59

    SHA256

    6153d13804862b0fc1c016cf1129f34cb7c6185f2cf4bf1a3a862eecdab50101

    SHA512

    7aea051a8c2195a2ea5ec3d6438f2a4a4052085b370cf4728b056edc58d1f7a70c3f1f85afe82959184869f707c2ac02a964b8d9166122e74ebc423e0a47fa30

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\YT4IJQ91\jquery-3.1.1.min[1].js
    Filesize

    84KB

    MD5

    e071abda8fe61194711cfc2ab99fe104

    SHA1

    f647a6d37dc4ca055ced3cf64bbc1f490070acba

    SHA256

    85556761a8800d14ced8fcd41a6b8b26bf012d44a318866c0d81a62092efd9bf

    SHA512

    53a2b560b20551672fbb0e6e72632d4fd1c7e2dd2ecf7337ebaaab179cb8be7c87e9d803ce7765706bc7fcbcf993c34587cd1237de5a279aea19911d69067b65

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab4741.tmp
    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar4742.tmp
    Filesize

    171KB

    MD5

    9c0c641c06238516f27941aa1166d427

    SHA1

    64cd549fb8cf014fcd9312aa7a5b023847b6c977

    SHA256

    4276af3669a141a59388bc56a87f6614d9a9bdddf560636c264219a7eb11256f

    SHA512

    936ed0c0b0a7ff8e606b1cc4175a1f9b3699748ccbba1c3aff96203033d2e9edabf090e5148370df42fbfc4e31d7229493706ff24f19ff42ff7bef74a6baad06

    Download Submit