Overview

overview

1

Static

static

1

0a77503b76...6.html

windows7-x64

1

0a77503b76...6.html

windows10-2004-x64

1

Analysis

  • max time kernel
    121s
  • max time network
    125s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    30-12-2023 01:43

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    0a77503b76da093e128818926e51d886.html

  • Size

    32KB

  • MD5

    0a77503b76da093e128818926e51d886

  • SHA1

    00d5c6f90fc83f1c2bff505c6a0f7e11774e746f

  • SHA256

    6b2c858be2103cc5a34917003b86d2407b7ee9d427060e736f063fb8c25e1346

  • SHA512

    b6a3b0737a9292d13326026c2f579d6e1e2d3255101a26aedf82d70f99f4a61742331d05db8a265f8a05f829e02e7844d4277310f3e8c414e818b75381b063e0

  • SSDEEP

    768:gIRIOITIwIgIiKZgNDfIwIGI5IVJ7SqIRIOITIwIgIiKZgNDfIwIGI5IVJ7SZDFu:gIRIOITIwIgIiKZgNDfIwIGI5IVJ7SqX

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 53 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\0a77503b76da093e128818926e51d886.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1548
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1548 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2260

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    b28970add0918df9e6f162a8a72ed683

    SHA1

    ffc3359050df8f67535cc150bcb915d8d7fc4703

    SHA256

    6994a996c8f1c25d3e1a66628c5ad7586f6e9dc45b2ee961ffea8ba5404a82d2

    SHA512

    c39cdc995f191ed509a00477ae93af508fddc7ef18b6b97febba35a8e9d5e4f5808d0240b47bc5df9700abf6f979f774cc720b06f0c699bd4ccf78789e9a3513

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\ZXHUPNJ3\www.youtube[1].xml
    Filesize

    229B

    MD5

    040884feb02f3940ae0e6005ce1a547e

    SHA1

    ebc31fc4922a6515ba9d65f72e588ecd937c9983

    SHA256

    a690ecda22114666a7958ae68ae0af2391c8c87db2e3a1d3453e871b23c289df

    SHA512

    78677ecabe29e368a9b3d0f8bb5beb4e2b6df26d9174cac2063f78934c000af60816872686c92f77cedffe2cb688faa8b6dd59ec48d3a9160ca1def952f170dc

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\ZXHUPNJ3\www.youtube[1].xml
    Filesize

    13B

    MD5

    c1ddea3ef6bbef3e7060a1a9ad89e4c5

    SHA1

    35e3224fcbd3e1af306f2b6a2c6bbea9b0867966

    SHA256

    b71e4d17274636b97179ba2d97c742735b6510eb54f22893d3a2daff2ceb28db

    SHA512

    6be8cec7c862afae5b37aa32dc5bb45912881a3276606da41bf808a4ef92c318b355e616bf45a257b995520d72b7c08752c0be445dceade5cf79f73480910fed

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\ZXHUPNJ3\www.youtube[1].xml
    Filesize

    229B

    MD5

    b12301906abe635a0043eab0b74e1395

    SHA1

    a7b751d12f12a64cb653876f25ef479f9a01e678

    SHA256

    9f7e8c8773f8557576b5a7bc4cc2beded59e59d9707ad2977e01db5190fc54a3

    SHA512

    12df2b18765dfb8e86db981fca11abf51976564e856401088d10b0816fee19d7f5562955cb390891bc98e199e69210ee1f080f02a19bdd6d1c1c8a8c655cd29f

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\LSNXCBKV\ad_status[1].js
    Filesize

    29B

    MD5

    1fa71744db23d0f8df9cce6719defcb7

    SHA1

    e4be9b7136697942a036f97cf26ebaf703ad2067

    SHA256

    eed0dc1fdb5d97ed188ae16fd5e1024a5bb744af47340346be2146300a6c54b9

    SHA512

    17fa262901b608368eb4b70910da67e1f11b9cfb2c9dc81844f55bee1db3ec11f704d81ab20f2dda973378f9c0df56eaad8111f34b92e4161a4d194ba902f82f

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\M61DDFBK\base[1].js
    Filesize

    2.4MB

    MD5

    5bdc213718b5e58cdc9646967810459e

    SHA1

    80a2b274802a65a8828300f961e8ea30166767e7

    SHA256

    fd8d118fe8ac283b6e6ece58b4bcbbc06cd734f11761faa7c46ff08069f711f5

    SHA512

    c164c540f71c99784277e542399dacba89fafb9de63ecbfbafac636dbfd75a46093d5a71d8f0b63d2fba65fae20e84c0fdc2786e221bb57f553a7c656ec8c5f9

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\M61DDFBK\embed[2].js
    Filesize

    51KB

    MD5

    02e3aa6de0c0cecb0267cd83d6f64d51

    SHA1

    ab29481e145d32c7ff2a2e850a90e93ea9e2a60d

    SHA256

    234595572b74d58cd52917208142b3131ad7992126358ee0d917a40cd1240e83

    SHA512

    2e01c259120af23f10fab29d646879a9db5d1b8c4d8ed37b1c6cb0a49c19fbd7683e77f1749ac476fb44fe6f992c2403a3590a8d79ebf0dbaa3164f50c702660

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\M61DDFBK\www-embed-player[1].js
    Filesize

    322KB

    MD5

    303d9f3d8084d98c3cfc81721790f192

    SHA1

    7bd3f1a1f6b4752b7d646dd45051e446be259a41

    SHA256

    d854531f9c3833536d6971b4fd7617dafe1a2c6fd0bbed9469122e73ff3b13a1

    SHA512

    5dacdc9b308da058cbc33e80a4e4900adb17bd63c9b55316da06cb3f0867257180d89cdf7d0069440cfdf5a696f66d2b6161add2e090daed59114bf1d6c36aff

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\M61DDFBK\www-player[1].css
    Filesize

    357KB

    MD5

    f273335110f2108edde77264cebddef1

    SHA1

    7b7881cfffe8fd1197e74da6ae4fdc62b3cce672

    SHA256

    af17d4cff542b33c97ee3a95f82a21d8993c87fd3472dff534fa855828a3b615

    SHA512

    c45111893164fcfed5be0c6c1fc847495868964e498411f7dd1658c7e7af6aba6931fd73825c9ff73d0afd0e7c48af0c7b3a7fbdc08b02a81deaa51657b00c39

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabE8AB.tmp
    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarEA82.tmp
    Filesize

    171KB

    MD5

    9c0c641c06238516f27941aa1166d427

    SHA1

    64cd549fb8cf014fcd9312aa7a5b023847b6c977

    SHA256

    4276af3669a141a59388bc56a87f6614d9a9bdddf560636c264219a7eb11256f

    SHA512

    936ed0c0b0a7ff8e606b1cc4175a1f9b3699748ccbba1c3aff96203033d2e9edabf090e5148370df42fbfc4e31d7229493706ff24f19ff42ff7bef74a6baad06

    Download Submit