Overview

overview

1

Static

static

1

20a3b9c17d...2.html

windows7-x64

1

20a3b9c17d...2.html

windows10-2004-x64

1

Analysis

  • max time kernel
    149s
  • max time network
    151s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    30/12/2023, 23:50

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    20a3b9c17d848d034675c5bdbe599602.html

  • Size

    2KB

  • MD5

    20a3b9c17d848d034675c5bdbe599602

  • SHA1

    d97eb79f22be6b06783f3fcde6a0172249b435bf

  • SHA256

    770e26250bcaffd96dfe89873bc324721684986d6850a550134b72ddcf6657c8

  • SHA512

    7bf4e4ed980d4daa326620719aa351e836a54840666a2a6260618e8694a6036fa72863530602f0d6e253b0483b78598e1a043f9f03d84b3d52cef6f6dba1300e

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 34 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\20a3b9c17d848d034675c5bdbe599602.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2120
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2120 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2804

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    1a3d389aca64ae162d00f024301f81c1

    SHA1

    43f9d07b481bc97495c3f291247cc6a2b0e56d73

    SHA256

    1d746bc8fcc462579d87b39939d31b393159446d651ec52dab0518af010492d7

    SHA512

    ef3e777951c70c50c3d4d43375d02bbf3651e9a3326a346bcab9f4f0ec47b94489ed9647cc5f21fdaaa757a59aa5304766dd73ceee8ce03b62854deb12daed5b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    35682b2e6e14f18cb3e8e1ad7fa59ac2

    SHA1

    60e3711f4e31e7363014bef290ec6c9c198c4647

    SHA256

    ece4142791f3fe1ff5a16825eee1b65f33e2c612767053b2be10b266d8009718

    SHA512

    9901b43912f5b01f54829531fbfd241613b6fae616b90ad697354b07baa1ae09ba6ebe4d1154e890f99e20a0fa1355f74168f36f68f1cbc5f9d67e700139fc5b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    17d945ae53d3b22bcf1bdbc2879616a8

    SHA1

    02908d207a4d1d62b01032896584251bf17d3e5e

    SHA256

    d9559f713d357e5b302a568c37af43335cd3efe9106b713f93a7e570bfccef3c

    SHA512

    ee2ab27403cecad342ae1360d322d5c1a3d201c10a80fea1cc0e830d47df0b3988c0c0c0d8ec0e442f94104936398877103e1915ce74270d4d04087f3f878a51

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    b43d3f24a428c3892abdf615623f4ddc

    SHA1

    7372553865d4d2dca9d9f259d88704beefb64468

    SHA256

    69a746301d85651c663dc878ada333d9b8e7cfaed8eb045230196006af55dab1

    SHA512

    69f503bde2a555c1903bc7b0ca2936ee88d96d070afbbfa79dd384cf3f14a75e9d6092338da65bd189b5f36e32d59e0f1d45fce111e0ba302273d7ac1db98fd9

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    26fcee7d41ef6331b499fa235d5185c1

    SHA1

    fe82ae2bf08777d6c52e1b24b1b7d5273d572e17

    SHA256

    978ada1e611101a66c201593428ead789035187615caadbe1ef0b124a0713fec

    SHA512

    4e328812820dcaf33e5cf0a111323bea07cc5f3b780a6801b6064823bf9a26e3829b2a860b26000ff7799ec1922c3f318951fe9931a7a5e5e5d4be3038e6ee0f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    531d981741251c85f89449dda411613e

    SHA1

    a9f7a709854ca5968ed1c6adec4bc72587326766

    SHA256

    d658cb7c61044d018f97c4aeccfaf6bfb0d394fc9944571b43828b82e56bfca3

    SHA512

    afa3de21b1586132d243ab93f765ea41206d059a5a3c29afdcb7101e217a30d8ddc6390d0d89282af669d543021f3c22a9349011e991b9be2f0ed98ea2e752b6

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    739855b27ad06ccc77997a43ff74ed57

    SHA1

    74cf7ae827724cc8f05dccbcead260f8567deac5

    SHA256

    8c463eeb42cf94f6034e065ffa9bd57129a6a60aaf101f7d964ef2a5659c5868

    SHA512

    31706f7a8afcc922b5c85c06d118bcfbb2544870bd378e6805f673c4040a3a16a4ad9a272d06d4faf979b870c6e3f6b16f8ad506b102e501c55e6dae7b5fb945

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    723741bc36af91c4d142349b6d2effb8

    SHA1

    3b4d9390fdbf25db3fd917bd3a345c46220d9f4b

    SHA256

    52f3e1cf7cffe4cd2da8f9f8a51d7fa73b140a31d1495a63d820b9feb4076185

    SHA512

    6a94baf0f97be8b5a73de17c2339eb3c7eef58ee51f75a2d21176d63e3a76cd4626bc1d8429831af67543464f900d3320d12be1ac2a7b2505318eb1bac4f4648

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    d5ecf8bfdbe7d988203cccd0702a7627

    SHA1

    37400ebab9088c3d370400120c771cf31ba1d7e6

    SHA256

    8523d91316ed6ef87b5296d7e9bf184ddc120784ea0a139f73a9f39ffe16832a

    SHA512

    76d50571e1625ece3940689a6be177bff3ae8884ada8ced3f649e0f7559845cf228c9efccdfc4786c90a9d3c2350530670f14518cfe41be82534d34f4915d53c

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab319D.tmp
    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar3642.tmp
    Filesize

    171KB

    MD5

    9c0c641c06238516f27941aa1166d427

    SHA1

    64cd549fb8cf014fcd9312aa7a5b023847b6c977

    SHA256

    4276af3669a141a59388bc56a87f6614d9a9bdddf560636c264219a7eb11256f

    SHA512

    936ed0c0b0a7ff8e606b1cc4175a1f9b3699748ccbba1c3aff96203033d2e9edabf090e5148370df42fbfc4e31d7229493706ff24f19ff42ff7bef74a6baad06

    Download Submit