Analysis

  • max time kernel
    120s
  • max time network
    130s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    30-12-2023 03:57

General

  • Target

    0da7dce6c412179e0216b466386f1260.html

  • Size

    8KB

  • MD5

    0da7dce6c412179e0216b466386f1260

  • SHA1

    6150919552406dc9a09f7cae4fa0ba43a77f0052

  • SHA256

    06cce57f19941b0ab66319954b9a2919bad7e6e41ac9f897c0eab9ce9a8d73c0

  • SHA512

    b5dc8bc9e5acab53e1be17cda16582221bf1b994d0ac3514bcdf64b0c2a62f77f13ff8e494cb2a09a39f42084635007eb8357fb14ecf6ee6daf7459fa90117c5

  • SSDEEP

    96:qHb5V8SEb79eA/DJjicH7sje2/VMdeQ/6XkrLKi2:MFVJEb799JjiSsjhMdAXS12

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\0da7dce6c412179e0216b466386f1260.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1704
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1704 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2672

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    9a5d0184ca9323be9c7570f20544ee4c

    SHA1

    fbedd2d131ba30192e6ca538a1f5daadd6b45136

    SHA256

    2dd40d980278bb697b248726c80a065d58c68060284d382d35dd909eb5aab2b2

    SHA512

    5b2b8859a0dc6e8c1f3c7ec4acae96789dfc433422dc0d878e785fd2b2dd2622250a282e9a85c23cb0df7276a18af95d37f47e58b0b19fe02da9063526d65374

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    5a75f8e8eb38e17c742411da6c9b797e

    SHA1

    d8ecf15268cd6dbda1dbc9bb8f9c7f9beffe70a1

    SHA256

    1b5a394cbde074aa4cbb56708722a49085672935db6e049f7b5740eb9ef44ea6

    SHA512

    56cbcd01b9c8e0cbf9b997c02ca4a59f43a18528c1dfa89b4356ac751c1ddfe7cf679e94a05b4f193d4df5a08b381b3e2be726b14ce9df3390dcf8bd5e2de3e4

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    b753f6a8195d3060f86039987cf942c8

    SHA1

    0b60068d534f91b1f5119a312244473b101fa3d2

    SHA256

    b155dd0c6b964f4a8f9484b471c2894a3f8b76e00251a9b43bf96e95d6a19b53

    SHA512

    2ce3f00bca012c72b2f97e0a65c9246f9a22b3afd94841d5e9afd646f6e5a79b3cf101c470b90fd21d578660cc87e0b791941781b1d65181cf9c0aebe39cabd2

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    d20fafbcba22325137e45b9fa903bebd

    SHA1

    f19cdde8f5ff12d72ef3f0934177c87ccf5c6be6

    SHA256

    e666a5cc69020a8997544899fd972b9f6a97f0133f359760e7b11ecb668e8c06

    SHA512

    c064ae824f1bc1ca107ab4166c60deba9f0854103ef86ede13c81f03fe6cf943bafa2942c6aa66958cfee72e49b9c0d93257e7daeaed82adf4c8426f88e30c26

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    bfc60f02637a996d6e895a203b10845c

    SHA1

    74875b910b699997b1025365be91097f1fc41d36

    SHA256

    782c93cff9fbfb759020c7d7a557b72b2c55b474bc069fcf6698eb95fcb915b6

    SHA512

    c76e7c4e5fa78ec7049f6b0ebee55f1e16e8c594739ae89773610f08d60804a8be9db70d59cf7f1141cc0ffa5a07d79de1f62fc7db94bb9e14989c6acf4f2c3b

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    3475dfffa9e9464bd2584df0bcf5efb6

    SHA1

    84ece166e17300c2a7da1941291667fc7a52989f

    SHA256

    e0f1cc9d4f2830ae05f8e569499990492087084ba271ef28605955d1e81df113

    SHA512

    cdf7c3ba4eb22df5fb5e4d36efd101bd0aefab225d83ffdda4f6ea47f7d88febf1d8626088176e4f4553fa072d475c3c80ea1e77fe0c19f2a170d7c4e6a3df17

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    4a4f0ea7b20a6f01126281b1c28d4775

    SHA1

    ac02c325afdffc67240990d7125f4e75981c148d

    SHA256

    00ed897ec7c93bd5c0c65a0a42a4488dcc81902bac810613698310c83cf437ec

    SHA512

    a3ed61433c26126453e5f84f3d2ece801cec0d2d8d60301d90d59acf85cfa05c71ce7e169eb4bb27f87b260e448d779ce6b00e70b571fc8bad878523e99cc3b9

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    c8b987deaa3c3439061b8c1dfdc27c2c

    SHA1

    159d497901498dff2ca3dfe2c87d4f68a5ddf850

    SHA256

    8b42daf1b7036cc08c043334f614ec3c169363327594c8c7a751bc02badf4a5f

    SHA512

    338dc5a316e32ec1e46b747477f496fe3704d4aeb88228c0f99c3cb56e7601883d72486f20f0f5cdb0b19d4881d4f565b0aea001af61453ec0f608d8fa866a33

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    e3f60aa257343918ee78853212315f6e

    SHA1

    89d4acccab2a1dbef962380264aec37eccc100ac

    SHA256

    0935ffa68eb7db457a387cb30711565c71474df29c0745071a3038965f5e897c

    SHA512

    51db3736a3e06e22d6a588aa5a63b01254b2b87e6db8eb8ce2f88f9cc19c3851f5a2f3d9579cb1761e541188af6a16afc2866cdfd31249dccf300252752dee97

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    3a4dfba5affef6874cbe906537565262

    SHA1

    07a78816ce8866cf356957132b41b1bef1765d75

    SHA256

    b26954afa05c9d22764dd2c6e29153079344d192a2ec5f27890658af071791d2

    SHA512

    0c622d2f990da82cbe6885aafca760740963b254e2abcd853a594b332aec4d1770b1abe19ca96fd0f52b707fe2c49493de2fa3b17a2f114ed0eeafb1ae02c178

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    5d90ae11d879fe23b4ffefcc238a7353

    SHA1

    adbc7716c3b33f9bf40ad009236a7b8247e10227

    SHA256

    dfcfba130e8f5ac5bca7beda41f2755c9af9931e9479a8a5ed53a683ab17bac0

    SHA512

    62cbeeb0679a221adedeabc9bbce4b4bc007840a32bf25ec08ef5c14d763aa76f166d9e4d6ae6561c1da9e6d2138963789a88bc203118b9fcb3a72e40d9f5be9

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    9ef9223e21c649c770fc6a017ae37dcc

    SHA1

    318e11dd6937ce7a7f20295539abf926f2a07621

    SHA256

    7e7860b123a9f5cfd44c0ee53d00d4d7699323ba57abd9701aa9a4d971d9c08a

    SHA512

    c3035065a638bb535b2f001de30cb5de4b88d92f6dab6e24877e22259e0d1c7e39e147349ae0049d71d9e84f87679e92b913b2131bf76a1443a6e87cbc326c56

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    05ae96daad38958e99fee0c507ab8cd9

    SHA1

    de7246c3c9170c1cebeacae40d6d3273497ff919

    SHA256

    f069a4595f83f326ef415909c1bc9123f897462c6d18790d28e083059da062f0

    SHA512

    3a1bbe7eb21f8a329cb6f1efac758b11c292a300c02195b6c6ee57ed412dd0a4567a396a605fdcd9d27708d5c60ec4ced1eecf496cbe66aebdafa5bdd5fca9c2

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    0d7ae2701b1be225a0aa144a1690ec92

    SHA1

    760929d1db2020a993c4820a0e768a909577ecb5

    SHA256

    127c6583ce457fc5285da9d2b4f69dc02bfcd817bc8cdee3269336aa5996df3b

    SHA512

    8d89915269769529342bc8ae893ee0a596ae03b14e5d206db2ad3ebfa58373384852b0c129450c262a17c781c3bb347be36b22768b472e704b3b4eb8c35aee1d

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    c9122a074911edd1e48ab52b1c3934ac

    SHA1

    9d10c592bde4d2c1280c819833f24f1812000274

    SHA256

    3c71120f75da057f1210e4a6092694314982364ce00b840e04b0a49a39817b28

    SHA512

    8092227710b69860e08e4fe82d0910f185ce9eb42312d9d0131ebba59e1d4aa059fe9aff1e678dcb88455cb2df672fd661400f76e5605d6a505cfc5de65f1da8

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    f625b8f72ea58ff88cb2373e8f761a17

    SHA1

    9d8490aa15fa11a129162d2ad4f0c04b2a435d08

    SHA256

    868621a6345d490efdf5ef9dc7b5ae77ab27cfbadf8e53ae695800b2d6c24e61

    SHA512

    361c799b1b46b05d0706adb1674dd812242fc8ce888266bf0e2dd808c0ec8d9009c3fcfb6901147670eaa466e166f7170b0f576899764f8ef86e525482bce0aa

  • C:\Users\Admin\AppData\Local\Temp\CabBFC9.tmp

    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

  • C:\Users\Admin\AppData\Local\Temp\TarC059.tmp

    Filesize

    171KB

    MD5

    9c0c641c06238516f27941aa1166d427

    SHA1

    64cd549fb8cf014fcd9312aa7a5b023847b6c977

    SHA256

    4276af3669a141a59388bc56a87f6614d9a9bdddf560636c264219a7eb11256f

    SHA512

    936ed0c0b0a7ff8e606b1cc4175a1f9b3699748ccbba1c3aff96203033d2e9edabf090e5148370df42fbfc4e31d7229493706ff24f19ff42ff7bef74a6baad06