Overview

overview

1

Static

static

1

0eb78cbeca...5.html

windows7-x64

1

0eb78cbeca...5.html

windows10-2004-x64

1

Analysis

  • max time kernel
    120s
  • max time network
    135s
  • platform
    windows7_x64
  • resource
    win7-20231129-en
  • resource tags

    arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
  • submitted
    30/12/2023, 04:37

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    0eb78cbeca50b6fdb04bc85224475f55.html

  • Size

    77KB

  • MD5

    0eb78cbeca50b6fdb04bc85224475f55

  • SHA1

    eebc018f362ed5ac5d2a2466e41829486af1655e

  • SHA256

    9659e28a97f8c94ac6baf900186d6ea5ca672428588e6ed653902282e0e8655b

  • SHA512

    27ca9eefad508da963ece7935e74bb8343423de73809235d4e2e0df4f42c57ab1d4cbe350306e2b23e400a7c79584cbfdfa39139429e3961e68bf265f2f26b39

  • SSDEEP

    1536:l/vrrJ7bowrnnQ2YWeyGBG62tLpTfw/fCoUtJatYclkjtAmdXl4hBjp:JrrO1WeyZwXCoUtJbclrrV

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 28 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\0eb78cbeca50b6fdb04bc85224475f55.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2156
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2156 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2892

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\3C428B1A3E5F57D887EC4B864FAC5DCC
          Filesize

          914B

          MD5

          e4a68ac854ac5242460afd72481b2a44

          SHA1

          df3c24f9bfd666761b268073fe06d1cc8d4f82a4

          SHA256

          cb3ccbb76031e5e0138f8dd39a23f9de47ffc35e43c1144cea27d46a5ab1cb5f

          SHA512

          5622207e1ba285f172756f6019af92ac808ed63286e24dfecc1e79873fb5d140f1ceb7133f2476e89a5f75f711f9813a9fbb8fd5287f64adfdcc53b864f9bdc5

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015
          Filesize

          65KB

          MD5

          ac05d27423a85adc1622c714f2cb6184

          SHA1

          b0fe2b1abddb97837ea0195be70ab2ff14d43198

          SHA256

          c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

          SHA512

          6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\F0ACCF77CDCBFF39F6191887F6D2D357
          Filesize

          1KB

          MD5

          a266bb7dcc38a562631361bbf61dd11b

          SHA1

          3b1efd3a66ea28b16697394703a72ca340a05bd5

          SHA256

          df545bf919a2439c36983b54cdfc903dfa4f37d3996d8d84b4c31eec6f3c163e

          SHA512

          0da8ef4f8f6ed3d16d2bc8eb816b9e6e1345dfe2d91160196c47e6149a1d6aedaafadcefd66acdea7f72dcf0832770192ceac15b0c559c4ccc2c0e5581d5aefc

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\3C428B1A3E5F57D887EC4B864FAC5DCC
          Filesize

          252B

          MD5

          69fc2d273a559509f415cee6e80de7f2

          SHA1

          5bd74f8f959fa9aa5f1d2d2ac328be5b3947dc98

          SHA256

          579072d0754bb2d728b7f39e0c52cdecef2cc78a35ae8282f200b61c1ede85b2

          SHA512

          79ee94faae61d75c5681d97bd3a08f838b76e99754a7213f6394c91a889344461d69a2afd960b0b1b3194798103bd18d5e337b1e7cdbb329b4b8e9c13cccd2d8

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          e44e4134c960ec555cd3f99989c675d6

          SHA1

          c86f9cf2e0061b3d252692482ba27ba706c331b4

          SHA256

          bf0f0625b73c0b5bf01b3453bf4f10a1ca7e6e84f20a73f3e739c0b69a760403

          SHA512

          26a4cb3db6706231c5d1d281cab2de62ac3aef9bdd55f19b72aaf6c803743d4af2231a880b755cc99518090d26444fefcb7df37daaba28fc8c3122ea199ed8e6

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          e0f2197df47bb505abfad2ec9640a681

          SHA1

          2a273acebf0008669d95fe54f17a6864affc9390

          SHA256

          8ad37dc4bcc0aefb50a3a1a74a64f88cefbf93bd2a2501c6dfb1ee2710187a84

          SHA512

          2df2caac03b2cc37214dcb8bba437922c8b54e0f0fc20701c39ed2edec715be5aa4f5577ffbb9bf160f16267393d6afada7548876865baa09044504e5bcf18c8

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          52b5cc089d91c208f3c576c285e9c164

          SHA1

          b2590a3a6417cd0d997baf90c2956f2d66b9248a

          SHA256

          6bfae3df52c33d772790dc7639956321953465f17cb8b9aecf47576a6e54b14d

          SHA512

          ce7444f345fc7c9a76c254be32aa18e1c2db01dc0e365a55b4a476052780a79e359f9c3600d791950cd63ddb5cf266a94a5be16c6472719024472a5658c664f6

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          1fb71191a00c39f2a845ab0d0afbfe00

          SHA1

          7d6379f270d8f56489f574c691f796b1408e866c

          SHA256

          2dc52fa8ac6fe4b47d7ab6494379a43581bea0d433a09f8e114637f6b84536cc

          SHA512

          ef3ae66f9ddbde15b42707e2f22e89ea7e36390ff52cdf625740e895b8d52eced0e0efc8f2e74d1accfbb1f7de989549b478898686fda002c4861933c8d7b320

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          5c26efc1b1a3011a7a9f369c4df1514e

          SHA1

          0efc718861379804bc0855092c279c4ecc418a17

          SHA256

          9699ed4ec0b092623452d6acf358fd6d8b106fe64503b9be622ad764ed527872

          SHA512

          84c68bce09823a23eaf8832e8f8f3dbbea2f2987944388f965d2ef1bfe0dc5bef1832ed68107de9259a8515ab47e1c6afca71beef509e45265f3313ec90308f6

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F0ACCF77CDCBFF39F6191887F6D2D357
          Filesize

          242B

          MD5

          8b2a4a195031b156d0f254e003c5f0dd

          SHA1

          aaa1f82a8e52bc539f3b7ec16552c1df3edc868f

          SHA256

          b747d278d196dcbd9e3f2213cd512e6d1d3af34e985b269b42a3e04283117f62

          SHA512

          29c9fe1d486806342bfd470a534ced199023309ac36da539d1c6ecd422dc41bda4df81059dc5e8a1a1c7ed0038b5408dafa71e5638974e3489a9fe5ca2631180

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\Tar1739.tmp
          Filesize

          171KB

          MD5

          9c0c641c06238516f27941aa1166d427

          SHA1

          64cd549fb8cf014fcd9312aa7a5b023847b6c977

          SHA256

          4276af3669a141a59388bc56a87f6614d9a9bdddf560636c264219a7eb11256f

          SHA512

          936ed0c0b0a7ff8e606b1cc4175a1f9b3699748ccbba1c3aff96203033d2e9edabf090e5148370df42fbfc4e31d7229493706ff24f19ff42ff7bef74a6baad06

          Download Submit