Overview

overview

1

Static

static

1

0a0c194ba9...4.html

windows7-x64

1

0a0c194ba9...4.html

windows10-2004-x64

1

Analysis

  • max time kernel
    145s
  • max time network
    150s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    30-12-2023 01:28

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    0a0c194ba94fe5d17124bc041a208374.html

  • Size

    99KB

  • MD5

    0a0c194ba94fe5d17124bc041a208374

  • SHA1

    39a83607ae63851bcd663b2071a95560c76ccaa5

  • SHA256

    7496734dd548a7e4677d340d9705487a77dcd7a9d49bc64b3a8cee4bd6347de8

  • SHA512

    e068d103d173772f20a3b186fb6d45fddef2a0d104adfa094f93fff8d4a6f21e9879edd92d8297fcc48e921aefd0331b655c21e828378c3bef0a79acb473eed0

  • SSDEEP

    1536:WJV1+B4yz6GWuRAaHaG1WJGaXASjaU7pxDG9lE/LIMUmNL4cUZPMY:61A1b1WJJXASjVjDG9lE/sMUmBUZPMY

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\0a0c194ba94fe5d17124bc041a208374.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:3048
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:3048 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2180

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\F2DDCD2B5F37625B82E81F4976CEE400_C7CF4FA7BCF717E50C9341D69112D7D7
    Filesize

    472B

    MD5

    e1e3d9da0a10c5e46fae62a87dbd81d9

    SHA1

    6da14087c9a9f69ebce85fb1326f906a09b68306

    SHA256

    9e490c4cf79ce1f5abc3bee4e02c5f3c24f64459b5874bb461f087dea4d85c04

    SHA512

    6ccb62d6cf1f503b5a64795546e1fa8356ed71c9daa572f1e0c52c764bd62564ff7bd6fda777673b9d07db14c2c453725da465e1344068bb8d7d522be3d7cc09

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    4c898c90818047e6ab36a4c20cce9c64

    SHA1

    404c4d9fae4a566eacb04e38ced8143b7eb1f4d9

    SHA256

    c49b02d1160fbf20289cfe76d494b7657f49bb33b9feb3a719979ace587a0d5d

    SHA512

    585aa6dbbfdbcfa5aa7f632cfbe2248ca2583c93a2c27d2e8d154ca3e1c52fa6099e612f7924d4b852868cf31cd85d1d63c92da10d5a12b80b2607626fd899f9

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    3c70e58495860e720ed504a0c7a2fff6

    SHA1

    a988f179568d7770a11ba770d794fb057247fd59

    SHA256

    28f57ca43004eda6bf81b20470184f3195a9787638a9d5ad9242641d0d2468b1

    SHA512

    297c81f3cf489544ee0a8ebc0e7249806d2f36012c0c40c8cec365b8eb8c4b1bde8b447491414d498e61cb90addf599ebc5a3312886ddc2f2562fcc55949e4b6

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    ceac802c4698e6d03ffb7ce5ae309c77

    SHA1

    f54f0e93ce10090fa928dd7c9a6631fbd8f5a6db

    SHA256

    0e87287ad8c1d6cf397c76f7303a93aa9d8eee58f1c1c80dacbbd17febb6942f

    SHA512

    5edb98924b2a8208cd6b53d558f60ddd8be408bcf11e8dac9af74058a5ec4ca1e2a7abefd6cfd6eb4d04c3f818a275a25468f15e82ce2765ce545d7cf21651b6

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    048ea91b7afbef8e2a909fb27d6f7e6c

    SHA1

    07e0ed47a57f6c1bc1d16360b4f724c7dc3f0d20

    SHA256

    d3a48e2362dd8d937bdeb5636ce49b760aee73dbbd2f0f48504df88fca99b068

    SHA512

    d5601ea70deaa45b46fda8ce6d26bbb9afabc36eb87f48e7dd4005d45ffbb6d659ca465038ff26e4f7717c8bd7ef8fb7cf0e4172c8cbc17957fab69385c1e88e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    35ae258897a92b9a578242fdac496837

    SHA1

    d40748e9d4209081a0abb122d08d36a79de25011

    SHA256

    ea246f4103e9380cf84b59bff20ac98a18cd7b6061f9107cd3370c42f0824b18

    SHA512

    d0b03be04499fe13b849a6ca9e012e77e00ed30c1f35e19e70098369fec4990b5d4699a9f48ba8bb9ff30bfbb2f967a81b4b4c67459318c4fb9fc94bae71d086

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    7d80008756c93ca0070e46ea642aa551

    SHA1

    c2efdffa66ae681f3279d39d1bbb3da60049325f

    SHA256

    f9b54381551a023edc1400e7d46fbb015770aa072c49f74f3bb0d79a3013b425

    SHA512

    43fd4443241e15d4518f85e2438184549b89fe6770f22e95ef3cf4f3df7b1821f10121ab6d1f133e85b3119fa86bc7014050dccfa49ae669f0e50a99fee5b1de

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    d103eb01c75a90ecca7a2011a5173af9

    SHA1

    5e05fe6ab8302a95ed430b86a146a21fdf875e07

    SHA256

    39193f52b5af4d88667c5ecd19b90017b21f5a5c9c716bddc71228e70b143cba

    SHA512

    b810db5609ec26f9ab4d4606d1ba27dae72e31fc9ed697b040c18414866695dc5fc4a473e56f5f297e0353db9dd920cb21303ad11584c24e6bf311a8496f3060

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    d44c9e54cd0a39ad975160cf4801b387

    SHA1

    392c209b0a4077fce4ff25a0e8e2dd3a7477f7dd

    SHA256

    735c477760b2c4a9cc7da461d0d3cb71575773568af90e437b568bb0162a7e40

    SHA512

    b10d397aa5dcd88a75772a14aaf71e60122de8914d892daa95a36676ac52e018a22ec5fc584c6144666e65268f589a7b06ad79d558b1ec923184885ba7025524

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    19c22a37bbf0bdb00edb988e050f3b10

    SHA1

    71fa58a76f14c7ebe60b10a942e59d3b425eea8a

    SHA256

    1fb66236531c663f230e2b769e280fc773cf65c089440f7f3ce8b78e650d4771

    SHA512

    b020122733480d05931ffb3b08ac190df2780dd03483f6bf4fbdfaa6c811fad2053e5c686b7ac6a82925e4b793bac1116e6a28afb2da7bd2536f3c1d988aaf66

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    44fbd69f6746df76021ada14e2d4a86c

    SHA1

    d9c05a08877272347e1cc8c1712c4fd2a21cadea

    SHA256

    b1e850d362fa8cfd28fe09d0cadebc4f4d5da12af64f6a30238c5e4048c6e036

    SHA512

    44c5b1649af0628980bf4c9b09c47462473f74b9ff3873e53e99a7bceeb698edd1620da7f4e214cea6e2406091a930f3a9dfcdf45e98a51bfb922697c534f927

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F2DDCD2B5F37625B82E81F4976CEE400_C7CF4FA7BCF717E50C9341D69112D7D7
    Filesize

    402B

    MD5

    c0ae1581c6a9be078a24d75b4075e8af

    SHA1

    ad564cf7905ef45cc5c04891585c11f945db0555

    SHA256

    030d8e22b24bd4b4fc12455449ed28ae4aa80770a9a38ebe17406cd054f9419d

    SHA512

    6ffae9eb1861e3936910adcc480e8b0d5f848b41ead03d4c654d88d7b9358cb33386c0240c6aa7162e5122426a15b11eee5c5ceb8b57d3174c3ae21a09d92593

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\53STNJLW\platform_gapi.iframes.style.common[1].js
    Filesize

    56KB

    MD5

    f6140cf2e81a9d5b9bc96970fe1946f6

    SHA1

    e18cb20a08d0c13d44b72e36e9560aec2187abce

    SHA256

    68cc8a99c8ed5cc0eb3aa2146fd34bee0051bfd98faa3c03b83c78b4a12a8bd5

    SHA512

    1f61bf7228ae9fc1b36249223f4ca0675da05beaa6c00b28b7fff500e0527ee237d139eaf6793ece67f8730dfff0207bf945a848795aab7c57301433449a8acb

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\HJ0GGVIM\cb=gapi[1].js
    Filesize

    133KB

    MD5

    288c5ba5b7001fe841c32f690f62cc93

    SHA1

    29aba9d8e4f7cbe25fa5e64b9ecbe256e51fc789

    SHA256

    c2f33dc18eae27d4e878bf837dd97f1bde5151e44b0271408535bb93265b8c52

    SHA512

    e375d41344a086d35accfb02bb1f91e2dd383db032af387fc3d6b1230057cc5e432e9b2cdd976e51425b4f587391d42f4d9d857c2e6f11e822a65edcb85f1c9f

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabB7EC.tmp
    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarB7EF.tmp
    Filesize

    171KB

    MD5

    9c0c641c06238516f27941aa1166d427

    SHA1

    64cd549fb8cf014fcd9312aa7a5b023847b6c977

    SHA256

    4276af3669a141a59388bc56a87f6614d9a9bdddf560636c264219a7eb11256f

    SHA512

    936ed0c0b0a7ff8e606b1cc4175a1f9b3699748ccbba1c3aff96203033d2e9edabf090e5148370df42fbfc4e31d7229493706ff24f19ff42ff7bef74a6baad06

    Download Submit