Overview

overview

1

Static

static

1

11e851f096...f.html

windows7-x64

1

11e851f096...f.html

windows10-2004-x64

1

Analysis

  • max time kernel
    137s
  • max time network
    141s
  • platform
    windows7_x64
  • resource
    win7-20231129-en
  • resource tags

    arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
  • submitted
    30/12/2023, 07:16

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    11e851f096bb8140042e369b9ac7647f.html

  • Size

    37KB

  • MD5

    11e851f096bb8140042e369b9ac7647f

  • SHA1

    fc6ef8aad8a3a98db8ea8db0ff5d18189f50aca5

  • SHA256

    fc8089f7db680fc5e74e48e44c16cc238fb6f674ab4bca6bd70eba9425c9b527

  • SHA512

    c3fe93f817f69f6338c1ae512896dae7dab1995bfc5b5ac27ff730cd6c571d7b2cae99cd2c050b17f66809438384681d097923897ad34703e3e209c600e6bef9

  • SSDEEP

    768:/+i1S5y5vayzSpCos6rdA3yk5JWBLXOxsz:/Tg81ayzSjaTYLXZz

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 38 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\11e851f096bb8140042e369b9ac7647f.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2924
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2924 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2056

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\3C428B1A3E5F57D887EC4B864FAC5DCC
          Filesize

          914B

          MD5

          e4a68ac854ac5242460afd72481b2a44

          SHA1

          df3c24f9bfd666761b268073fe06d1cc8d4f82a4

          SHA256

          cb3ccbb76031e5e0138f8dd39a23f9de47ffc35e43c1144cea27d46a5ab1cb5f

          SHA512

          5622207e1ba285f172756f6019af92ac808ed63286e24dfecc1e79873fb5d140f1ceb7133f2476e89a5f75f711f9813a9fbb8fd5287f64adfdcc53b864f9bdc5

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\4A9377E7E528F7E56B69A81C500ABC24
          Filesize

          889B

          MD5

          3e455215095192e1b75d379fb187298a

          SHA1

          b1bc968bd4f49d622aa89a81f2150152a41d829c

          SHA256

          ebd41040e4bb3ec742c9e381d31ef2a41a48b6685c96e7cef3c1df6cd4331c99

          SHA512

          54ba004d5435e8b10531431c392ed99776120d363808137de7eb59030463f863cadd02bdf918f596b6d20964b31725c2363cd7601799caa9360a1c36fe819fbd

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015
          Filesize

          65KB

          MD5

          ac05d27423a85adc1622c714f2cb6184

          SHA1

          b0fe2b1abddb97837ea0195be70ab2ff14d43198

          SHA256

          c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

          SHA512

          6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\F0ACCF77CDCBFF39F6191887F6D2D357
          Filesize

          1KB

          MD5

          a266bb7dcc38a562631361bbf61dd11b

          SHA1

          3b1efd3a66ea28b16697394703a72ca340a05bd5

          SHA256

          df545bf919a2439c36983b54cdfc903dfa4f37d3996d8d84b4c31eec6f3c163e

          SHA512

          0da8ef4f8f6ed3d16d2bc8eb816b9e6e1345dfe2d91160196c47e6149a1d6aedaafadcefd66acdea7f72dcf0832770192ceac15b0c559c4ccc2c0e5581d5aefc

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\3C428B1A3E5F57D887EC4B864FAC5DCC
          Filesize

          252B

          MD5

          972a750c77e948c20542e6f8d9ad6c08

          SHA1

          15033d59f1fcd9970db1a164cda099b18aed754b

          SHA256

          f77f8449e5a762bedc895d9e94503d9e5d54f24169bc9e72be367974e70b8bbc

          SHA512

          052d64f4739a3bf594bad334ef9e311ed1feeac73a98778c7cbb616daad574635360cad43e50acc7a6b3a4cb9ed9a0fadcce9dceea25b5d908f0deb0e9033c3e

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          bccb480e5e54fbb6c8ff6d46bf5e09c3

          SHA1

          405e7d9ed46405a9066018b7090e9de572ee3bde

          SHA256

          4394864985b2b98308eee04376a45d741326f312197c4d4c4a0c54f71a857b4e

          SHA512

          875e8d9d438887e2c313ef49716490d93639a646a197f935ade4ccd59d1bd8777de354f128da203a3fb7770dc4df9ce7c260969312b2489f691428e451e0ad0e

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          8b3ddb4885d3c873780e1a2bd3c6599d

          SHA1

          4d265a4196d0cd162fdd4e317d75a6f2d50ce051

          SHA256

          c39f23c3726642fb2d9c9dab4e4e0cfc2d44af09fa1ed565bccc4f447a621639

          SHA512

          9c772eae6b26e6bc62858f8b8227fad5af14f3798d1934ed1a386ae224fc852b64ad727262cce6a8e98e43c169423a18285d6e6121723d58100d97b307f2203d

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          67569ff0802e5312506915cb4959b32b

          SHA1

          e8c7b63385b38a619e335297184d08ab50ccd000

          SHA256

          5a436f1df16b3ac740046777f60f9fb8691f817e600224b9a4542cfa5014ccc4

          SHA512

          47cf228135faf78e3c66b8ced001dc79c9cc3103b389d0c54ab0d115e7302a8f886fcdb8400b0d324d236e52031a01aca733a34ac585fcf7454cab4a6e91925f

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          31320e39521d22df2e8df2cb6fcd2d4e

          SHA1

          26b39617c4e591c368368eb6e63a7a7e98005f45

          SHA256

          2abcdd3f8694a0f7df3a43d9708d85c7b1c6c08bba8d66b791261d0456da5c34

          SHA512

          509538ffd75031cc27aace31f17558655064764c396b46bea4c12896713f18dc306cbca6242a1d243c34bfe29a7299345deb65752eac5d37316e746a73e6e199

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          6cadd6c72d5a3c5981e23017dd5402c4

          SHA1

          0b611ba83168003cff5bfd2b62613f2f98ba0fda

          SHA256

          91325d8f74be4b7072ec943971471026aef56b148c5b6a18d53600dce3736bca

          SHA512

          41cd3f54c2a3b706e59d1d6c6a92df82b6042b4cd03c4c3d52cf64e1f63c7a7087ada988505ee8c4a80d3acd7da0900d264a6c84ce89221289dee317ef6e1922

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          05091469d987ecb6ef2404ea2033f5f9

          SHA1

          f0dd388e2bfc6195e0c8eecff2daf108eca12e86

          SHA256

          a30d115d623541fece7899a2ed3e5fa3ff0dd36a75ec1e86eff76b873ac55505

          SHA512

          3ddd61a47decc2b6b91f8a9192efb57d7191f150ac97991d2b906c6f0d456ae92271fc20abf856b294d2d100bdb620ca1f76eba3558870c7163c39246b5f0f5a

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          cda8803ca8995af8bab0ff6cae7e086e

          SHA1

          f57c0440762409734d3e6eccfc6388b1657de27a

          SHA256

          82840351f5cee89b91af33da6ce699eca9722c7cae0635ca167ac4e812301d89

          SHA512

          20d1bab3ab2a626559f33422d07b10887eb1ec8d8836742a213332683885cf41471f4612dfa203ee3fc1146540054f7e26a7a868eef51b8496ae62480582411d

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          4e7f39d765bd5235de10b3347c4efe22

          SHA1

          7eae06b964318a693f51eecd096ada3cedcc158d

          SHA256

          195dbb283443aed274be9be59cade82ccf923c106304278a797f83927cd543f0

          SHA512

          6a06516fb89d07d6d1d75d958440b74242db3289a3b6896dce84e55a50956ed004e666a0d10013284ec94da391f0415a14901089bc7e1a56945339d4bf584ff7

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          66b8c1c407b30187a783ef81c8d0031b

          SHA1

          2235ce8ad46d9e21a28da59999be48503fb7c050

          SHA256

          3b662d1012d3947049233c749afa4d9930a4df3d72279320944f67ceab940938

          SHA512

          b49fdee9d36aad8719566286fd0c0836c0cd6ab68f783075ed4ee2e27da4efd4b0e3797e1277ae778de0b480e5d01bbd8c273757d50a22f68462175c54c3d84f

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F0ACCF77CDCBFF39F6191887F6D2D357
          Filesize

          242B

          MD5

          dea56a6ee1f4b38e68e0c6519e53ffcb

          SHA1

          ed292981838c07c2e4efdc46b2b8d651efa494e3

          SHA256

          a5890c2edfbbc29fab479e6adc6a5cb8e44a2ea5c533bb48ec3b26f154955ee2

          SHA512

          8e1c9866108ef2d89e28305a1cf48e48ccbbc39ee0f2dcb3fab471c34ef11241650622bceb5db3e6324d93449c001104c2f8a78bb521e9332e44a4732e4e604b

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\Internet Explorer\Services\search_{0633EE93-D776-472f-A0FF-E1416B8B2E3A}.ico
          Filesize

          4KB

          MD5

          da597791be3b6e732f0bc8b20e38ee62

          SHA1

          1125c45d285c360542027d7554a5c442288974de

          SHA256

          5b2c34b3c4e8dd898b664dba6c3786e2ff9869eff55d673aa48361f11325ed07

          SHA512

          d8dc8358727590a1ed74dc70356aedc0499552c2dc0cd4f7a01853dd85ceb3aead5fbdc7c75d7da36db6af2448ce5abdff64cebdca3533ecad953c061a9b338e

          Download Submit

        • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\94S90D66\cb=gapi[1].js
          Filesize

          133KB

          MD5

          288c5ba5b7001fe841c32f690f62cc93

          SHA1

          29aba9d8e4f7cbe25fa5e64b9ecbe256e51fc789

          SHA256

          c2f33dc18eae27d4e878bf837dd97f1bde5151e44b0271408535bb93265b8c52

          SHA512

          e375d41344a086d35accfb02bb1f91e2dd383db032af387fc3d6b1230057cc5e432e9b2cdd976e51425b4f587391d42f4d9d857c2e6f11e822a65edcb85f1c9f

          Download Submit

        • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\F46961I4\platform_gapi.iframes.style.common[1].js
          Filesize

          56KB

          MD5

          f6140cf2e81a9d5b9bc96970fe1946f6

          SHA1

          e18cb20a08d0c13d44b72e36e9560aec2187abce

          SHA256

          68cc8a99c8ed5cc0eb3aa2146fd34bee0051bfd98faa3c03b83c78b4a12a8bd5

          SHA512

          1f61bf7228ae9fc1b36249223f4ca0675da05beaa6c00b28b7fff500e0527ee237d139eaf6793ece67f8730dfff0207bf945a848795aab7c57301433449a8acb

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\Tar1DB3.tmp
          Filesize

          171KB

          MD5

          9c0c641c06238516f27941aa1166d427

          SHA1

          64cd549fb8cf014fcd9312aa7a5b023847b6c977

          SHA256

          4276af3669a141a59388bc56a87f6614d9a9bdddf560636c264219a7eb11256f

          SHA512

          936ed0c0b0a7ff8e606b1cc4175a1f9b3699748ccbba1c3aff96203033d2e9edabf090e5148370df42fbfc4e31d7229493706ff24f19ff42ff7bef74a6baad06

          Download Submit