Overview

overview

1

Static

static

1

0add35c095...6.html

windows7-x64

1

0add35c095...6.html

windows10-2004-x64

1

Analysis

  • max time kernel
    140s
  • max time network
    153s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    30/12/2023, 01:57

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    0add35c095f1e7a55686c0d5caef35a6.html

  • Size

    3KB

  • MD5

    0add35c095f1e7a55686c0d5caef35a6

  • SHA1

    f145f359332493a42876034694be88bc538d1136

  • SHA256

    fc93bc1d53735814edf982eb5762d8af9866acf5c941a2e5ee893b95076769c4

  • SHA512

    512a77f186acaf7586894bc12cc9cf5d6b546353611baa4bdae4d251d312a65a0eddff81cfecef75df4161b74609c1cdaf3ae734e4cb52b0bfaeb02eb5440503

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\0add35c095f1e7a55686c0d5caef35a6.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2192
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2192 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2508

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          8fab2929419fc472a46921d327f76737

          SHA1

          c7e097122e190fec9afa2662439a73fabe5a34c1

          SHA256

          4fb0e3441b76093fdb419e0b22e917720cba36036adf29655334daa85697c26f

          SHA512

          48a6e717bd1db47462da86dd426f12021eafe5ea40a829bba4b978be114df47c4ed033ef321c3ac9e876590606562a8ce8adff0dc013515146063d45d09f5a9a

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          9bd722c4696f7251f94da9eeca8f2987

          SHA1

          1fb59f893af82daa04522120ea3e985fab4b055b

          SHA256

          d03dd27475fa99687f9bdf42921c9a6425ada2a5e25bcb4c98a8c8434a49ad59

          SHA512

          f80545fd6ca9b42b6fa5f9033ec57a912b6d09188dbf55db259ac1c77c154bc9c8a3186f50dbd7bf7bff822d47b62a090c9815a386912af8fb6b2831e25c0aa9

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          7057b76076bafe8271ed5e4abb977454

          SHA1

          eb70ffd62038a9c2b87527f1df4b3b95b36e82aa

          SHA256

          e8898b4f90763f1d04589f53341f6d58927135251cecd7f920f51bd5fbd580b2

          SHA512

          db983db790054bcce51bfd002dca93bba3753ce1cd7bfe82acceb0e2406103c5dd176967a713be9d98b95b1eca1464efda063b18c41eb83857e7fbf0ca5a7b3d

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          202966cb3512d4ef3863fd90c5206a12

          SHA1

          5f211f494082dd427f91653d74bfe4b314096659

          SHA256

          2f8bdad34bcf196312c0436c65b404490f6da7d9fe81ed4d6635dc7fc32f95d7

          SHA512

          851cec405e3876afddda774281f661c0b03169ae3c51988e0e3773f9e615ff1921457e03d658c305676c3e1adc93d4f4981c2e1a5447c6f51e0d7560fe85e628

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          010cea327a515faa6f269c7e158067f3

          SHA1

          46c4e167d6501fa1444860b754f2017f011b9c8a

          SHA256

          3187320919473cbd2ec71e14f233f6ef0dd4358805bc94a1294a7c7b9ccda2a3

          SHA512

          94a6b1433f9dc68338f563b679fb57e47007d6c3644dea5bb44be54cb063744fae0531b5becddf685d82e64c97c837491b7c9a379aed99cd9dd91d54743d661b

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          31c15ef04af230f73cfbc9f215c14fa0

          SHA1

          0c5eee16e60025658ab94b632c2fc96212c6667e

          SHA256

          7c7359f71b8f061123ab471b6798a2a2d29be94c9aa9b6d90d418907868caf8e

          SHA512

          15ebe32ca3ae599f929379fe623dad7e658b242a790ef2103d20235d330cafe0677a37e91d8ab6628b2627b9ab796f0a07a0c7834618a8d681065ccea0de9486

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          46e70359924ca0a9934187718a87d2c0

          SHA1

          63d88cda9840cae788e16f8ef3520db09079ef52

          SHA256

          5cc693605935942c190a272410c41b31cb92546fa279e7d379f55221816be386

          SHA512

          9c111cbc60eb33acca6762556c502e4b4b12d6c600491b38ac7b1a72e2f3722dbd77c4be4320bf924df7a2198cbf8e77bbf2d3938dcf175ee686c386a8fc3c5f

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          edf4e41dc4764f9662f32bf6dab9af59

          SHA1

          2c7891943a2a6bc4e2df23edfa1b80f5cb636feb

          SHA256

          87e290fb23077c6d7ae3095072ebd095057d3460942ea6538f7b86f668993184

          SHA512

          0a56705a858e1d9ddad1950129ccd9555235282032ae8b86e23a8fc2f3700b200c95c306ea1910685977bab9cd296b7222fba6d7144dd7b33bbbdea201f48eb4

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\CabF394.tmp
          Filesize

          65KB

          MD5

          ac05d27423a85adc1622c714f2cb6184

          SHA1

          b0fe2b1abddb97837ea0195be70ab2ff14d43198

          SHA256

          c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

          SHA512

          6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\TarF396.tmp
          Filesize

          171KB

          MD5

          9c0c641c06238516f27941aa1166d427

          SHA1

          64cd549fb8cf014fcd9312aa7a5b023847b6c977

          SHA256

          4276af3669a141a59388bc56a87f6614d9a9bdddf560636c264219a7eb11256f

          SHA512

          936ed0c0b0a7ff8e606b1cc4175a1f9b3699748ccbba1c3aff96203033d2e9edabf090e5148370df42fbfc4e31d7229493706ff24f19ff42ff7bef74a6baad06

          Download Submit