Overview

overview

1

Static

static

1

0bd9e1d775...a.html

windows7-x64

1

0bd9e1d775...a.html

windows10-2004-x64

1

Analysis

  • max time kernel
    141s
  • max time network
    135s
  • platform
    windows7_x64
  • resource
    win7-20231129-en
  • resource tags

    arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
  • submitted
    30/12/2023, 02:35

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    0bd9e1d7752327ad192bed9a1715ae2a.html

  • Size

    194KB

  • MD5

    0bd9e1d7752327ad192bed9a1715ae2a

  • SHA1

    240067e3dbf2317b49c7c202a8c2600b1236c14c

  • SHA256

    a862fafcef16329facb69822c4ba22b898247b5dc433861c8427c09ba0b81e12

  • SHA512

    5adf1b057639b18592ce75aa4bb07cc61b272cb12500142373269dfbe4fc1ca947e9640921349a8086a90eacefb519ee108e31655bf6b35391b34615b8395017

  • SSDEEP

    3072:koylL66qUVus/oMr8zr9WVbD2zuX9yrHs8fAlcfj73q4HSs:koylL67Mr8zr9WVH2rHlfAlcfj73f

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 38 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\0bd9e1d7752327ad192bed9a1715ae2a.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1700
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1700 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:1216

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\4A9377E7E528F7E56B69A81C500ABC24
          Filesize

          889B

          MD5

          3e455215095192e1b75d379fb187298a

          SHA1

          b1bc968bd4f49d622aa89a81f2150152a41d829c

          SHA256

          ebd41040e4bb3ec742c9e381d31ef2a41a48b6685c96e7cef3c1df6cd4331c99

          SHA512

          54ba004d5435e8b10531431c392ed99776120d363808137de7eb59030463f863cadd02bdf918f596b6d20964b31725c2363cd7601799caa9360a1c36fe819fbd

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015
          Filesize

          65KB

          MD5

          ac05d27423a85adc1622c714f2cb6184

          SHA1

          b0fe2b1abddb97837ea0195be70ab2ff14d43198

          SHA256

          c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

          SHA512

          6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\F0ACCF77CDCBFF39F6191887F6D2D357
          Filesize

          1KB

          MD5

          a266bb7dcc38a562631361bbf61dd11b

          SHA1

          3b1efd3a66ea28b16697394703a72ca340a05bd5

          SHA256

          df545bf919a2439c36983b54cdfc903dfa4f37d3996d8d84b4c31eec6f3c163e

          SHA512

          0da8ef4f8f6ed3d16d2bc8eb816b9e6e1345dfe2d91160196c47e6149a1d6aedaafadcefd66acdea7f72dcf0832770192ceac15b0c559c4ccc2c0e5581d5aefc

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\3C428B1A3E5F57D887EC4B864FAC5DCC
          Filesize

          252B

          MD5

          bec675636156107c00d32ec20674891b

          SHA1

          3ffda47e223191aa2c588e60eeeb305760836ce9

          SHA256

          6161198249d37ebebaf937402c8e4117730eabf7537196e13c85fb330d0a76b1

          SHA512

          988ee0cea778733a50c1fbfd99183ca42289532b86b209baacb0473412286a6e5c038c96ed7c11e62f4808324c8bedbe37848e58290048f3b7850af4bce02dd4

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\4A9377E7E528F7E56B69A81C500ABC24
          Filesize

          176B

          MD5

          575ee17ac4e1b470aeb18861559cc23e

          SHA1

          5fd91b3c45b34aeb0b54b89278a63f9246fd5853

          SHA256

          1bd8d385cd519c24d2acd8f90203712a1ee37e3d1c5a035648c731779ff2fa76

          SHA512

          9e393e715599d83ac6abb3948fa8ed949d53d8a5c1dceda8918f48d3a3a057bdfff3e65fe473ec015b824fe924798600a70cf5d21f00e6cd6952f6a05a88c363

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          6f6f5fefee4e944618cc228a78fdb0db

          SHA1

          859cdd8a93d46e20d690671221dc5e9765ce6152

          SHA256

          226397b3573cab7d885e62136af9e811edcc0e4aa9e88b726cdb85a8e09a3b7b

          SHA512

          6bac2e81a8b61755a4e49b4b00b7bd96ef5913c7e51c801f474a6a9113affff4236d4d456df01f10f6b3c59fd492b9b64e7d8c2f94046fe57ae4942162bb450b

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          a1da799fe2167993ec4bb604fcab6eb9

          SHA1

          ac88b592c60200dfd42d04c5664635a4daa0f30c

          SHA256

          c2cc42def2fd6e437b13a3faa366825ac44e42a74469810b57f36ef3a1b24af2

          SHA512

          6e705fd98ac2e7f95c5cf9be3dab1d41dfe7803c1cfaf91b7e1b57b546c0a7892644355e8c4af37d380fe99d2cf082ba215f54b5cee6d1e6ddf8fcd725a8ae49

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          b107b68e9e334230e628b192e004aa88

          SHA1

          d341e2aab4994086ceae61a12e8a87936970db35

          SHA256

          1e002d8eabcb849c975e3c19346f72d18f4b7f314f4d6c65a28588cd70b4df9c

          SHA512

          5ff5eafa8540210acce74313491deca5d778ad40bf044858563529a1aca2fd3d11bcabe440579217df5aa52f9cb06738c2e9f784ff25c550db050425eed325ed

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          0f72915d8d7be82cfa548cb339ab1acc

          SHA1

          b36f7f2c68611ce581bebd4b9f4219f6bab26ab7

          SHA256

          1c0686902c8bd6c33575f85c36ff01e8cf80d93bac069f6cfc5ebf9bb9a0e5e5

          SHA512

          afb57adf5d8db660cd7638b210322de0478e8717409a9f67e07c1c1c7ddb0d20dbe6f90405fdaf0e19bc3af6bb7834838a8b03ea2c77bfff27da952d61f16f10

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          ceb18ede40a440ad3ba665657978d2c4

          SHA1

          a8757009df4ee78f8524b9ff76c82ba9657e4fe8

          SHA256

          d7201b46a766e079468e260be2714bb873449fec6b005ee3b9ad6fc58057ad4c

          SHA512

          6d25255e4359d12c88a624d96872664ab870702ac18d4e2236bae8e6dbfa9a0945223db0c79e33b4f3d68a255f1e70ef65e24176a12ecbcb24f98f7c165bd843

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          1fc7589a541fdedce5b5715a03ee2aa3

          SHA1

          dae489f5ae97e59612f0971c2446ecb6ee57efde

          SHA256

          1fa5ab8850fe6346e164e03eb628fb901a1e693a423ded61fdf50cad93d35d11

          SHA512

          2a3b5b851f5695bb3e0c4e599ff43c9ab161413511a96baff181fe941056c2d54845eb5984858af3ef987343f669f1932784666719b077a7b5c8e593da695472

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F0ACCF77CDCBFF39F6191887F6D2D357
          Filesize

          242B

          MD5

          454207dc84466bcdccf968f4387ba0d9

          SHA1

          0d5d98a36adbcc87e6d3b7ec1f06ac50a14dddbe

          SHA256

          211b6deba175ee2818936e45b69d1f324761f0277b4b55544699a4280d0ad9ad

          SHA512

          4e7888f54f1532e73d09ef23d628a9a7b75a8e6a087fd2d3b52f319830e3548df641efcf2bb955c8f164a463ac32df0e564a438bdafadc6dcdb9f5b98d0337b6

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\Internet Explorer\Services\search_{0633EE93-D776-472f-A0FF-E1416B8B2E3A}.ico
          Filesize

          4KB

          MD5

          da597791be3b6e732f0bc8b20e38ee62

          SHA1

          1125c45d285c360542027d7554a5c442288974de

          SHA256

          5b2c34b3c4e8dd898b664dba6c3786e2ff9869eff55d673aa48361f11325ed07

          SHA512

          d8dc8358727590a1ed74dc70356aedc0499552c2dc0cd4f7a01853dd85ceb3aead5fbdc7c75d7da36db6af2448ce5abdff64cebdca3533ecad953c061a9b338e

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\Tar35E1.tmp
          Filesize

          171KB

          MD5

          9c0c641c06238516f27941aa1166d427

          SHA1

          64cd549fb8cf014fcd9312aa7a5b023847b6c977

          SHA256

          4276af3669a141a59388bc56a87f6614d9a9bdddf560636c264219a7eb11256f

          SHA512

          936ed0c0b0a7ff8e606b1cc4175a1f9b3699748ccbba1c3aff96203033d2e9edabf090e5148370df42fbfc4e31d7229493706ff24f19ff42ff7bef74a6baad06

          Download Submit