Overview

overview

1

Static

static

1

101870ee4f...d.html

windows7-x64

1

101870ee4f...d.html

windows10-2004-x64

1

Analysis

  • max time kernel
    148s
  • max time network
    150s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    30-12-2023 05:34

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    101870ee4f90bac8f1f9cd3fbdfd5ecd.html

  • Size

    43KB

  • MD5

    101870ee4f90bac8f1f9cd3fbdfd5ecd

  • SHA1

    3ebf16be912d6e994bcc3d1102cd2deb625fe3b5

  • SHA256

    b94525256a423a92edf6cc06b919c1690d261ff579e18324c6d3e34fc3d244b8

  • SHA512

    70226e471b9b77985d868b889e270cded6a9b609ac7aeeb01c05d5d1a5d029b103d036a76fae2bbbf8830f60454a0282aa99ef322df3aae1e1ee74a2570e5b37

  • SSDEEP

    768:bj6zqLob+5FLKyMRX2R4KeMTnzBhdcUVX5w4wnw2Sg3v:36OLS+jLKyMRXK4KeMTnzBhdcUVpw4wl

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 39 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\101870ee4f90bac8f1f9cd3fbdfd5ecd.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1776
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1776 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2472

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\24BD96D5497F70B3F510A6B53CD43F3E_3A89246FB90C5EE6620004F1AE0EB0EA
    Filesize

    1KB

    MD5

    00d05bdfae83dc1a7581977aa309749a

    SHA1

    ff38b1f051402e79fe43ce11739af1f10eb2af15

    SHA256

    ccaf3f38f64877ad3553e8f7b568ac5acc04a1133ea462733d7ff24cf27b0ce8

    SHA512

    b8aa97b51fb78d583511882ed90c9c1b8de17f5a5c338ec80b928d1728e923777e0b3855d6e71db0fcbe2fcdc88cfdff0ba36d55c946fa7b8e4e77fcde0639ce

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    1003e125351e4da7d2cfd5e828049a16

    SHA1

    1c021ab33a4f8e68530e371106cb946af54cb761

    SHA256

    0143d2638ba014dc0a2a785c8e30da96f89d6bd076ede91d8a41fd57162361d3

    SHA512

    9428f24aaf467c0535ac70d9cad5f373056d64dbd60ecace08b00c3f8a8058d6178104827cc81c4ec836aba47ec1192ad8951c5109af78be8381471ae925f914

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    5328e934fa15691576b397e192912f01

    SHA1

    2c9ccff9b3c9281e8256ee9232e814ef58854151

    SHA256

    07b8c0c1ec8b2062973cec9c3862920a50a62a7cae870d21eafa0380b9b65360

    SHA512

    22a186bfaaa5e5f59a8201ed77e0e924aa204ebadcf505830fbeb1c18862414d774f06a7c346cf8042835880e661251663bdf5eef108a639dafd680fdb665e02

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    c94294ecfd9ecd1f9481932db0c7fa54

    SHA1

    8a1690db0e43fd83cb3b437165a544585e0192ea

    SHA256

    0e58159fe6256919a66c9aa89f0af7d53ef119fed400a030821a57f5bd1eb2ef

    SHA512

    cca298a5425cfbd40d1105d3a27255d2478bc48125cb0cffa85d16c78106b5d914cbb68dacc0aeac9f3adff0f1874a2f24873ee93003c7b03d1a4d50dff68ae2

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    6753436f85da37cf0b67424177d811ea

    SHA1

    3ad8dd690bac4ee79538dab7e2dfc1ae20ecf599

    SHA256

    3375d001f624ec86aafa342d076bb06507cb98b5c53cf66514f865224f429dea

    SHA512

    2e2e59b52292eb7adf7485e83580a64b3b23ea6d40ea2a9ae2c08148f227f5943aeb7a0b559f3b9517c1b2c060f5cbf74df59352094afe3f9d4590159bd564f2

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    6699fb50947aeb051816ab82ae369691

    SHA1

    08634784f12b16d558f1883b6ec80a98ef6e6545

    SHA256

    ed93393d5895feb3136fe6443e80574dc06094de13d2d7e7fb1979b3d3c97fe1

    SHA512

    34f4c995d03e0e5f3f4d9a934881d62d36c901561107a9cad3fc5dd4570e9f6796ff0c4c4ae52e69b9e79b24448e09e8bc37b264af2d033e7a84c52e50977019

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    dc93fec79859c4db185a7c04517a2f24

    SHA1

    ae759fc738071fbd9bfc8e36b13cdf445e47b055

    SHA256

    c9e46c7ef7aba115aa56648ec98f3cf2b1ec1586bdf706d8f052fa93d7e8d132

    SHA512

    2175f11e9fdf57d6b948cf614678e201178dfebcf6930017b8a15eda8b5b47d67e5d1dae2952614962a7878bf9609fd3e0e44655e7ce362466ba887a86976144

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    e0c4f030b87f13ec79e8f0e83e16b9e5

    SHA1

    ce090e40ffaecbdee6bc661c6686ba075556c8f0

    SHA256

    c1d5f6eb0a7032c4f27ee81e870cc5a090295f3ef26a73eb4a9ba95ade43be91

    SHA512

    c616c2f61d5f82142a6dba5a61256e06e1e3d77168d1bd59c0411edbb0c18ce963884980339d9a29d4defaf2263ab9ebc923e302bdff4fda4796a89d1d2c2640

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    a4811180460ba264bcf4cb82c66b34dc

    SHA1

    a06d5e5c1e6af1728230212318b476ff33d4e815

    SHA256

    438a613b5722b84a64c136d23a2ba5c1323c2c54e31dee519e86621aae43fd6d

    SHA512

    cba9670462cac80215b0906d492af3aab5b853d399d9cbba66f2205cd1f784f42fb458717de3f02d832c5c724cf1bdf967b069787af40f1209de5906ec63eecb

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    b02ee98ab42258f05891d83f03b4fd8e

    SHA1

    7d8e009d110f0c6f1764b4968039e87584b9eff4

    SHA256

    5ca0f65ca82b2b752f30441d6a09a29fd5f0d6c0da688f27399dcfa4e2b6c3a8

    SHA512

    113fd1c191c14124605bd618c7ef51d10de9305a91a65f4bc7bfe7aaf34ae6a3f4074570913c7d13cb127f518929746f26b06c7ade21eeef8c5e1686c18fab06

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    1059cca6745ee54321adbc031057c0ff

    SHA1

    a7f67a41d5db51f0de6078d4ade86cb80865a1bc

    SHA256

    e25a16ae8c2ba947b93d5acc38779371f695856052ba9f79da0b0a362c88d33b

    SHA512

    ff02b1f9f60fcc06113970ea64e87d0f75508f5702b8ae34cee48fcf5057b005189100dd5e358dcad6c8404b73f31259a6791c950cdc0bc7876d14518bd22017

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    17c4b9d830447f66e13746162bd488ed

    SHA1

    1d3552e0a0385b9da72fb90bb6e59057b0d9ad3a

    SHA256

    2d81eb948f9e932bedacfabd254ad4bc56db93add5e92a9542dc49264d2ed585

    SHA512

    e290beaf4dc989c564c4112e802ed9522111108d3b3a229c111491a7affb62e73583903c1198b2790bccce9cb83ce9a444655676f413ca2cf32c2c827e31971c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    b4619e5cc03783c0501481807eb06a47

    SHA1

    9bb26fa0e538e2998bef8b232955a9b389600a2b

    SHA256

    19ddfe455802953372e01af5fa74b9a2c039af1c5d41a64056179142b9279d97

    SHA512

    d692e818cd8b7034cbc745490180fddf5cc7e2d0233d556820b24c79ee363aecea7e5e69d9c2fe5b244f4b49b81032d9aaf5e644bd1b3ff97e127bcdf999398a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    ef87664abf64a9e1faafb22669d13952

    SHA1

    bb264fa00be88d240eaffeb3890005499199b64a

    SHA256

    8e489e0bea348fbf9ab9de8b0188d852272fafaba931b30a2b6ce6cc9fdb5b05

    SHA512

    902962761ffce607bfe3a21075abdeeb2f6c10d5a3bf72daec88d72f6b52a89a239dad061ef7d0cfcd72a217977acfdeebf5c1248b4b5e3b12825659d9dde6f5

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\05ZIV8W0\cb=gapi[1].js
    Filesize

    133KB

    MD5

    288c5ba5b7001fe841c32f690f62cc93

    SHA1

    29aba9d8e4f7cbe25fa5e64b9ecbe256e51fc789

    SHA256

    c2f33dc18eae27d4e878bf837dd97f1bde5151e44b0271408535bb93265b8c52

    SHA512

    e375d41344a086d35accfb02bb1f91e2dd383db032af387fc3d6b1230057cc5e432e9b2cdd976e51425b4f587391d42f4d9d857c2e6f11e822a65edcb85f1c9f

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\HVBRC7A9\providers16_38b8c6108a3caa45a561f5f38909a98f[1].htm
    Filesize

    185B

    MD5

    4c555068310076e85908835c721911f5

    SHA1

    9ec990aabb4391e139034f68e5e657e0f1d0b74d

    SHA256

    568b4de0ad30e85670e724dc30ccb675924353b77807356c5ad7f29c8c38f510

    SHA512

    4d5cf0796a5336fb930e72266a8eb447275dceb9ed16821e849e747e3d3957c14b495befb921f1c0d29ca9d406704c2d95b3f8a8c3d9ed1e8c2d61e0e85f3f7d

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\JIH1AB02\platform_gapi.iframes.style.common[1].js
    Filesize

    56KB

    MD5

    f6140cf2e81a9d5b9bc96970fe1946f6

    SHA1

    e18cb20a08d0c13d44b72e36e9560aec2187abce

    SHA256

    68cc8a99c8ed5cc0eb3aa2146fd34bee0051bfd98faa3c03b83c78b4a12a8bd5

    SHA512

    1f61bf7228ae9fc1b36249223f4ca0675da05beaa6c00b28b7fff500e0527ee237d139eaf6793ece67f8730dfff0207bf945a848795aab7c57301433449a8acb

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab78E8.tmp
    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar7C74.tmp
    Filesize

    171KB

    MD5

    9c0c641c06238516f27941aa1166d427

    SHA1

    64cd549fb8cf014fcd9312aa7a5b023847b6c977

    SHA256

    4276af3669a141a59388bc56a87f6614d9a9bdddf560636c264219a7eb11256f

    SHA512

    936ed0c0b0a7ff8e606b1cc4175a1f9b3699748ccbba1c3aff96203033d2e9edabf090e5148370df42fbfc4e31d7229493706ff24f19ff42ff7bef74a6baad06

    Download Submit