Overview

overview

1

Static

static

1

1204ba1c45...c.html

windows7-x64

1

1204ba1c45...c.html

windows10-2004-x64

1

Analysis

  • max time kernel
    1s
  • max time network
    134s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    30-12-2023 07:22

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    1204ba1c45ebcb485c2b2c839e4b9b3c.html

  • Size

    3KB

  • MD5

    1204ba1c45ebcb485c2b2c839e4b9b3c

  • SHA1

    14791384a612d2b1099b77d1d187ac6c3a6f21b2

  • SHA256

    bbf7ea8665d45cf4b3e863e0013cb5a0fe1e4e9485c86b5caeb9d4e893c9a8e3

  • SHA512

    aada952cee3ee53719d95c9b6f9c1908ecaa8a8b248dad2f03fff1dc2c8df52534206cf55e772cd0bbf439a3b3d999d5b103e75a45bbf01949f536f758c9d08e

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 18 IoCs
    adwarespyware
  • Suspicious use of SetWindowsHookEx 2 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\1204ba1c45ebcb485c2b2c839e4b9b3c.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1244
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1244 CREDAT:275457 /prefetch:2
      2⤵
        PID:2172

    Network

    MITRE ATT&CK Enterprise v15

    Replay Monitor

    Loading Replay Monitor...

    Downloads

    • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
      Filesize

      344B

      MD5

      837ec0c02489b6515a432867f15e72f0

      SHA1

      3b3782e56feb61cb94f0794b847eebffb267632d

      SHA256

      a992d1b77332d62e4947363e287acb4364348c5f747b4ec5247eb218a888e4a2

      SHA512

      2ac9d2c6961bb61891ba939b79796e91fec065b2ac03e591d6b6aff63685cdbdc2c2524a74a0842742ae1f6e7766dd5142fc797527666004e59bb76c67d8b397

      Download Submit

    • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
      Filesize

      344B

      MD5

      fa159ad5b36646db40f74cfde8dc84af

      SHA1

      7b75ca368d85c08bfcb9ed36ff0f11d2fb70c18a

      SHA256

      3b3a4e00f541095de8b475f2416c367ebb8a3b3b8e34f1c4bd772f8cbdf96bec

      SHA512

      3d556f7e248ffc984cd16f23b2e605dfebbb7ffaf957713648c2701876490fca0ca2e85199de54cb4f20b3a93c92cb83ae891e66bb1c3f827ab826186a59bc4f

      Download Submit

    • C:\Users\Admin\AppData\Local\Temp\Cab591A.tmp
      Filesize

      8KB

      MD5

      ab2536bfe71a803647a1b99ebc7aba28

      SHA1

      055deacd20d88c521932efda2de5223ddc558105

      SHA256

      d5626811f05d3bff010310fbb16a3ed50f58ec2c85da8e5c59db84e9f7bc9b29

      SHA512

      1f46dcb886c449b1f8170d0cb7131e52a77210302fdeba6e171bdf26e7cfdadbc0ba489d997d159a4f91192864ee7011bbe9681606bd638e269b217e00fa1d1e

      Download Submit

    • C:\Users\Admin\AppData\Local\Temp\Tar59D9.tmp
      Filesize

      4KB

      MD5

      28bd1fabc38b2587ef4041b11fd3ac6a

      SHA1

      803700f6b2b89a5c06356569908ca1af23067638

      SHA256

      702574ea4240fda88dcb09864ac9f82e6f44ef06ada0c2274af239ceccb2688d

      SHA512

      c2a83813727ab6dac249f0ce0ed86daef3644e4ab0daabbe0d90186c37d8420b59e3888ed2a9841a8f8c1a7c2238d53bb89f3f40c8d607d817590807f3ac71f3

      Download Submit