Overview

overview

1

Static

static

1

13943ea0a2...7.html

windows7-x64

1

13943ea0a2...7.html

windows10-2004-x64

1

Analysis

  • max time kernel
    134s
  • max time network
    147s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    30/12/2023, 08:38

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    13943ea0a2a837c2787daf20e2dd7fe7.html

  • Size

    101KB

  • MD5

    13943ea0a2a837c2787daf20e2dd7fe7

  • SHA1

    5b08f81fac3f43f49ed23b01bd991e6587207e26

  • SHA256

    e1ef069407dd9fad2b5f39596c57b8d1ebeb5e655b3f78d452cc4f6fccef0e2d

  • SHA512

    3b5fadf799428e231be523801b97ffc2ccae6a63c13e74c5f2aebd5843354dee7d3a9cb7bca7da140d2d97550fd6958d379905dcc9053f6643b411cf6a90e0e4

  • SSDEEP

    3072:GaLAWS4S57cMgKB6HeCHNWdSzuYXrN6YJlv5YmIJHa56myQHSj55Ay:HAWSBS5hyQHSj55Ay

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 26 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\13943ea0a2a837c2787daf20e2dd7fe7.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1180
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1180 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:1748

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    6515f742e510bc40fd9ea06bc8e1cbf2

    SHA1

    c72be40ca6fba49d61011eee6c0508af86d7506c

    SHA256

    e592d873b838df35b92bd826cd70bc196ba337c113498419860ae589ad21a0fc

    SHA512

    2a0aa69fbdd06e2f10dda4a8d03bb3c7c3f6a777d8442e8fc144d87ba4069e2ac03ec43ca811553f5ccf738c451b14df2eab72611791837b87f92099f79daa9d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    4ee228d4810b6a3b36fd75276a2b9552

    SHA1

    56245eaf4e6be9a11fc9719e7afed9462221a09e

    SHA256

    c0b1e11810267b8d1b471fc07746d4c0684eefe9e3b945aa721ba0c5397ff2f3

    SHA512

    f8caac6fc75095a18a67a075881129bcb859c964bc155eb3c2960b7b34f116bf1c3aceb715733017334b9e70c8485263826517470a3b42c20ff3f296f8e15e19

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    e9cd559322c82c24221d4615cd1905ac

    SHA1

    5bfb6a014bce17595304469dd6d9b472ff56da70

    SHA256

    b9fb330d173d326241c3afa125e6ce6ac2d0480b3d473ead7baddec801a7c9b1

    SHA512

    5fee027766e8ac34347bf7a37d3fb8c0d27f101e8029dade7b7e5c3d8a9387a849a42eb1306c30ff060c1419df5fec228bdaa2c871c950dcb6473ebb9c708c69

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    cc48445356e8598d5d1b25e939989fc3

    SHA1

    7d669e7227a35e0329867947764a344f2cea0537

    SHA256

    238cd17ab61df0f726a896439f21537fe360b3a31db81dca61411a5be0c739e1

    SHA512

    e3cdcb7fb72bf96eff5d1d563746e5024c6c05e63faffdfaf739036b1f9108fd7450d7d88b5c0271f968528b500c2b6d4a538900c6426c1f048fb08715e7181c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    22f00e32e82558bc245d8c5f16c53fe8

    SHA1

    c3edf50ecd10546f170345d89c5abc1317b95c03

    SHA256

    5af53678dd1cb772dd6d12c573e5c8461a8b37c47e95253de40e12b40d0a00d5

    SHA512

    3c1f632f5a21dee1572ee46b697a1baf75865ed4012cb6634e1de37ba1bcdba153cf9a2d4ab897bc29294c9132f9369da3abed6b93f9b707f182cd12762931a6

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    78ad820ea12e9c309a357a1b7f233160

    SHA1

    cd75c3fa154e3a755a2599368c695807bf3655d6

    SHA256

    dee03830ace05c0ed376df6c1d0f66bf03c58ac61afee2ca11c663fef1266538

    SHA512

    c73674f4a6a687e1d0a61e32f30660487aab8d40c56deedd3048523167dabd8d4a82e7115e58229f7aca996db128f9f8e88e1df54b22971fdfb3bc7a1f57d5bf

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    11ca673486bfa1dc328911e39a30de33

    SHA1

    e94ab60397c478974d14859f0bfd21277fa73c9d

    SHA256

    9a44185f181c2c2562e3832dde04c099f0bfbf5e23b55a38925f2d4dd8d866ca

    SHA512

    4c7bbf225207aa18c04685de85241b89572dc08fb538749990f2c756a25612e3eb13146b704f2c6ffaeb04affa6df72adf43ba24cc6ae658d9bc271046c3a880

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    f68c1c1137cd368b4288ba4a9089cdb3

    SHA1

    544f475e52f60f09293a1b2f9e75a0a5f3b79e5f

    SHA256

    c46dba4c8564bf5fe9b9fea459307166a5c5e84804f38c270ef48b68c896962a

    SHA512

    f492c890e5556199d5b5776a8c716b9a5a867a1f30aa91bbdb9b5a10c236f64403a3cf2d7d78ca19943e5197d9ed514c586e975bc8ff523ffb36a93c22afa9fb

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    241e4275e0ec33ad53d3a766e380d497

    SHA1

    0a9cd74d0c081c1feefcf7d32345441d593e59ff

    SHA256

    1877212e9557ac226c13e69a961d51fb25b739347a613a54f28199826aefae15

    SHA512

    48072518820508cbfd324f0ce35420b835b479d1bfe877f12f87c513b617f7d861de3035c859a681643ccc1adfe4624e8a304ae0061636514be3a8aba49fe708

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabD77D.tmp
    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarD77E.tmp
    Filesize

    171KB

    MD5

    9c0c641c06238516f27941aa1166d427

    SHA1

    64cd549fb8cf014fcd9312aa7a5b023847b6c977

    SHA256

    4276af3669a141a59388bc56a87f6614d9a9bdddf560636c264219a7eb11256f

    SHA512

    936ed0c0b0a7ff8e606b1cc4175a1f9b3699748ccbba1c3aff96203033d2e9edabf090e5148370df42fbfc4e31d7229493706ff24f19ff42ff7bef74a6baad06

    Download Submit