Overview

overview

1

Static

static

1

1ff2965887...2.html

windows7-x64

1

1ff2965887...2.html

windows10-2004-x64

1

Analysis

  • max time kernel
    122s
  • max time network
    154s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    30/12/2023, 23:26

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    1ff29658871a4f46b96b8b031929ae62.html

  • Size

    40KB

  • MD5

    1ff29658871a4f46b96b8b031929ae62

  • SHA1

    865482bd1c7c5e6cadc3a91738d532186613ac3f

  • SHA256

    9630369002e03aee43ed5b4d657916a96a5117696204d360a75d51fcf7f0e214

  • SHA512

    6501ec6a87c8b28ba3e5b9313654fcbc2fdca89bc8897e7f7fcaa8c1f5401d1b377fc4828ab9d72f679bad5e88ffd49bea8d6e4f902cca212d79b38e25931d94

  • SSDEEP

    768:E+WKsjU5DdYZTUXJ7NU7a87NfH1Myfq2TNUocoplTjR56zd1WC8RfqdXHKh4rF9T:ER5g5gIm1MRRoplTl56zTW3fqVHcO0+f

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\1ff29658871a4f46b96b8b031929ae62.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1696
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1696 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:1936

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          d677f9604aa6becfa1421511601b7698

          SHA1

          cc0ea62eeecc35f0dea5d8e3751da5936a62c53e

          SHA256

          e92e3f33d199c7a3a18e18a1178996362d6123a579024089fb0fcdae74813568

          SHA512

          0464c1f4a1a0ed58492090eb1caad263b7f45d9a8b64b8f2d1deea46cbdb7b72cb5c4fb637dca29a3b31783c3c2e26df8e43df5dd82ba12c70ee736b09a326fb

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          0e0c8c4bd7a8a7a02af80bd25e15bbb3

          SHA1

          292281efda334331b8073ab0949be5e8200fdfd0

          SHA256

          e92e2274f13f2d73eef3e3bffc5f138d87aa3953c73c50cb3c612e8933ee4056

          SHA512

          ee8966f5b944e252858b98911acaff2309f9de5eca5993f0e05ea8e43509ee874787dcbf6cf6c06c8a121d2d9690a0529c14a6bf6f70006295ceebbf9cf48e66

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          6cdb06dfb32f9d81913bbfdc7c12f2b7

          SHA1

          edd2fb7bf79063d44bf28fa93256bfe988761943

          SHA256

          72f7a06c9fe3a7847f287a65c02e1962353d1b6c68903b57b5384ceb9e98a69a

          SHA512

          da869047541abde6e043eacac5305e5ba73ff40b27e5b9f4d187011804a98c7399320a4e45027af8d1f55f25763a3b4d3e29e627f7c3721e1d65fca9080e31ad

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          ce531760715d58d905891b949cc3a2f2

          SHA1

          60482c860244fb31ec265e4c3caecab657e998a8

          SHA256

          77088bddef7e84d716ba276db9e8162db72bc7ee67213a6cf38c978e876c83d5

          SHA512

          1a7e740e6e5c7e544e7d70fbfd929ccec13324f2ba54639c203cefa08720bb89d4f1386bbedcf61b7b134e21692a48014c4f540da5402fed8510c712ee823ca2

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          598c75557766f371739bd01a080d9352

          SHA1

          a170ffe03d0a812c4be9c0d18df5ee53c4760530

          SHA256

          c88ef7dd95fc471e28ada8d270dda6fcdd52f671878ae8cdbb960f367f771436

          SHA512

          d6ddceb8144e538b6343233213b62ea338b54eee79f0581268760b2f09b4574d5c775299e69db5e11ebd3942ceaa0b963ee111a9a532cb9992c69d4b3817bee9

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          e9c656e1a65210c0f933f464e39e91f2

          SHA1

          c8cb252cce87dae00c579f57d325d53cba965432

          SHA256

          3300d4fd75da0a39c19a8e1aca2faf496afc828dac4b174a44debe1ba4527de3

          SHA512

          ae9f6fd402d3ed6d00a2b60c02e8ac5a2a2507e2d8ee0fcfd7784d74a984fc858f87c98719d9ac799f534d82d6fe9af625d0245f85dbb94b4f797a428cd1233f

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          6f119e43aef6403158257bf733b82d19

          SHA1

          33be3e1f33c2fdc857178d781434515798a338bf

          SHA256

          b430ee0a12a3f1189255e401240cab399dd4de9b0b8d43b442851b368a8c9f23

          SHA512

          08df37070841e44039c2423432d011f6830014abf51164b91ac3c951124756ea214f97f989029675a50c121e2b7cb7ff6410d17a1849419c8939175fe50d3462

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          5b38e973ab96b344f8472a395ca6be6e

          SHA1

          02042e27de3191013e9d11901238b16994562354

          SHA256

          ce5e13abecd8f4f0d23182767959b178966e6c3ca16ff56c373b4d530e8b4059

          SHA512

          c0425e9cec0d98b91b43e1407d6b6e98cf3e9d23dbe2bb618c5887ae84055d28bc3fe3ac617c41a325f4c1f7818d9cae0c97fc3cefea5906510b8fe467b63172

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          3bafab6516b64f2ada060ddbeab2fa46

          SHA1

          d5b01a8222bd05205fa876b43740add63e49e8bd

          SHA256

          173c75de3f8b93f0dde1683894ae4b7bcdc398b4aacfe3f207f488a465b79b98

          SHA512

          0cd82db63e8c6182c1a8212b761b9b65f50996f3bc20f170426292b9968033c6e472d8f6ffa07396fd0abdef96e67a9a91620f4db0d386bbcf6df48325b56a62

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          d8f0f3376618f569cf28a5fa2aea35d4

          SHA1

          1c84dc074bd3b8bf2cdc37ccd012ea648ffdffa4

          SHA256

          01542cdef7acea02eea9e8e69e524d9311f0a2f5c4c45dffbe15cd46f2a839ad

          SHA512

          6a130232f9c09413feda82c2a86e50396a466ff278604cbe2619945d56966b529ebe59d2e0f22ee35f7c686083deb0db0b57d83ca7f3648fa1ba49f630982285

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          33cb6fd537c453bd67300266db59898d

          SHA1

          ad8cd5a74b435439c030c8b5f748cddf3dee04cb

          SHA256

          fabe32b5a330bc741e16a0b7a22b5d68b45f1984dbdf2124d9a752ea68172d00

          SHA512

          211012abd1487335d1a83e7b821c76ba81488302f2c58fd0f4b931062fddcfe12fb1c49a0f0a1f34cb50bed7e6fd23cc0ed6881d562c294150648ddb85d1826c

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          491207d9bceb1c888c16ef1b15947720

          SHA1

          f1f8de5a21a576eebfffef07376f42b00e6ba688

          SHA256

          d57c6ea7ea31c166247a689c6c1f3912c28756968aa16c7d6137c7d80e3bddc9

          SHA512

          ed266dfc20293dd876f8ef924635463c8471d255f023da1eb6b911d26fd60f09e4879ef763723e1c77fd3fa1890151387952d7c1558d1f8fe437910cee15ce61

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          a8056b43955c5687e63076eb52c1a0b8

          SHA1

          6632861bf0d175b36b2d12b734d5bec6b0ebdbfe

          SHA256

          e8cfd5706b7eb9cb2de32f972ee083f3a6a915d81d0473e954de6ee0aa915452

          SHA512

          60544a6cdfc0ceaeaae9b3a24dc8a151714650a5af6ab540dfc56b3205d366199db6521b7fd503b36ca0a3b684a06917952ecfc992d2c461e6ba8c4df0b93711

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          fb6fb162dd4cf7278c1cfaf4384d50c7

          SHA1

          9ed777c88baf304ca553db83cc4b44e7ec6dd61e

          SHA256

          97558bd1825bf1d0e2dd74e0995d9690b964b48769fe6f30dbca41a1a6487f02

          SHA512

          0f0924ca4878ae3879a4fbaaf0511bea8ece6007611339b40787c0bbc2c4ff356c81c8748cea4cae3dc51aab8fcb9ea9c80cf79bcde4040c990f368fa4619852

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          2d618aa0e6a91497d3cee58bfdfff882

          SHA1

          3aaa01e8fd1386a50690ac7a7022ebbdfe3666a8

          SHA256

          bad97765b4fe4a60df4136c7f8f2d448d2777e550c566698e6bd16d8230bdfbf

          SHA512

          1a85e05a600c96df8bd7d1f6fddcff2188457a0eae42dde9fa8665b0dc593177f9b0f9967d855b3d152d1f880ee77d8d648a1c1f414edc52249bc8e260ac520a

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          3eab46e37b7eb8dfa1f387536b000f14

          SHA1

          9e56d8e924f3daaef9aa50f48aadc8dceb7805f1

          SHA256

          d4d1f3ceaad18bd41c2686ea62fbb6f50a7ed4783943b8accf593da92f55cee7

          SHA512

          6d1f9253a98dbd994fe1b85963ad26b55f0378ac18f7e280c36514682cb70d79e410e1758b31dbe7c38bf86b00aa080b00927e84da0bc6c0ac2fae6a5ff421be

          Download Submit

        • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\U1J1BPYJ\cb=gapi[3].js
          Filesize

          133KB

          MD5

          288c5ba5b7001fe841c32f690f62cc93

          SHA1

          29aba9d8e4f7cbe25fa5e64b9ecbe256e51fc789

          SHA256

          c2f33dc18eae27d4e878bf837dd97f1bde5151e44b0271408535bb93265b8c52

          SHA512

          e375d41344a086d35accfb02bb1f91e2dd383db032af387fc3d6b1230057cc5e432e9b2cdd976e51425b4f587391d42f4d9d857c2e6f11e822a65edcb85f1c9f

          Download Submit

        • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\YV6H14B0\plusone[1].js
          Filesize

          56KB

          MD5

          1944af3661da46249991197817b6cd8b

          SHA1

          f952df40ec79fafc7c798f37aff92878977376ed

          SHA256

          63326a1c4e0eddd3501f0a064b06a2708eb0362f3ae934f53145978d3d0799b5

          SHA512

          0bef19b32be337cfba179ed9ce4533a207cfe645d2e5fe0da9fadc7b01c72704fc89749670d1ac48b8d494675bc62ac089fdc4d8495979226f10828225594376

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\CabA0B4.tmp
          Filesize

          65KB

          MD5

          ac05d27423a85adc1622c714f2cb6184

          SHA1

          b0fe2b1abddb97837ea0195be70ab2ff14d43198

          SHA256

          c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

          SHA512

          6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\TarA421.tmp
          Filesize

          171KB

          MD5

          9c0c641c06238516f27941aa1166d427

          SHA1

          64cd549fb8cf014fcd9312aa7a5b023847b6c977

          SHA256

          4276af3669a141a59388bc56a87f6614d9a9bdddf560636c264219a7eb11256f

          SHA512

          936ed0c0b0a7ff8e606b1cc4175a1f9b3699748ccbba1c3aff96203033d2e9edabf090e5148370df42fbfc4e31d7229493706ff24f19ff42ff7bef74a6baad06

          Download Submit