Overview

overview

1

Static

static

1

13d9986757...7.html

windows7-x64

1

13d9986757...7.html

windows10-2004-x64

1

Analysis

  • max time kernel
    162s
  • max time network
    174s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    30/12/2023, 08:55

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    13d99867573fea29517e48b8eee94f57.html

  • Size

    55KB

  • MD5

    13d99867573fea29517e48b8eee94f57

  • SHA1

    b2911b84b2b07381513add4ec8e99527c9d8a945

  • SHA256

    921c500d4a4df5c2415e2760a200238c558c77827318b52630bcb1f1b8c220ff

  • SHA512

    bfb133f3a695895a391e7d0009ab6acaed51718234ea90c8d7e3fa9c14b772f0f60b3e527572e6d5dd8437ac6778dea1d5275d0654180e14b205938dc0b1813d

  • SSDEEP

    768:2rSpHvvCIooRurn/Kxn9Al34L5CR2/BLh1Z:22Hv7o+urnCbAl34La2/BLx

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\13d99867573fea29517e48b8eee94f57.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2072
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2072 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2908

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\24BD96D5497F70B3F510A6B53CD43F3E_3A89246FB90C5EE6620004F1AE0EB0EA
          Filesize

          1KB

          MD5

          034ec3b760b9b922d37ec2d86820ebfa

          SHA1

          70ace12a56aa61e58f53ca2a3de71ff18966278d

          SHA256

          015e7444eb0fdf2cae85aef5c1d3d1aee98ed7e692c848ea45bfec3a35ccd821

          SHA512

          1257126cb3ffbe026affeb47918d546df4fd018b1ef53971bfa8ab53c67106d7dbbed03695340c8b5a446fec87ecd100f264966d934a0982586bc45a7c38188a

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          0a679bd75f1114ff58c0840aa24156e9

          SHA1

          3e1561265f7ddc5ab8af6442ee208d072d077a5b

          SHA256

          09d1106b89414aaf4dbb1c73474a73e5d67e822900cbf91427c89aa48911182e

          SHA512

          05aa6823c7504b544c62093ed416ac5c79b2c10474a819186893267d87172adc00992c4885414e8a1daeb6f9cadcd62458733c73371e99581255ced8d9a461d7

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          6e77abf603912d5c3bf9ca739eea1704

          SHA1

          fd5e79d3e70ba5a14fe0f824a7ed5387d10555d6

          SHA256

          2d37aa5bf1fa417873d064240f7dc61549ac3c4228f1e1304f5a66565a969a30

          SHA512

          42091f4504c70708db6ee9d5ef63786ebeeb5e0aa952dade6cd05ea6f5fb4b1731e1cdf9f55b393fa769dd2e5bc4d7bf0c965ea3f2bc3a62c0c9b418cd9ab086

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          f5f2386a698f4c3b21e5ae0bf26d6792

          SHA1

          6838ae8c3b471b7743e36cc2a3eb723cc556208a

          SHA256

          fdf61fc1f36c6de4ef5302b64f25af57c753934bcb8e864463a18fa0894504da

          SHA512

          91b3b6ee83810b1f8f3261d09531bc2cce21f21f82f3d1c991639f12d4ec56c7a33eae4c3fc56ec3717fe097417772f9955c276958bfdb4327721dab80a7411c

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          535e980a2d42226da2a4fd2b4d079aee

          SHA1

          55a64b60c80c50cf8ee87e6f8f3660a021058ca5

          SHA256

          c5928fab81355c5a331b642c430f5150a064aa9d90d79d947fd64371f5c0b3ee

          SHA512

          037b42e8868ec2bcc9023bf292e6145e0fa4adc02ab3f64e666be8cba0bb36c4c15777633ac76284cb300ba7870e5619156497827cc4f719ad558fdf1ace69e8

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          6c277d5fb91b1f56f557527ff45fd845

          SHA1

          c7b3654730bb17d7824202c196defe364ed623ab

          SHA256

          2955711571dfb7d6d5485eb153ade567e8367d598d314273e5ead01850881165

          SHA512

          95b17fecaf3c0fb461d9399e933c1c67268c9efc8730e9461997a852fb8fe7950060531d61d772022644b377362dcb0b53ea71ba86e23bde907db013737fdb9a

          Download Submit

        • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\CFHPCFFP\cb=gapi[1].js
          Filesize

          133KB

          MD5

          288c5ba5b7001fe841c32f690f62cc93

          SHA1

          29aba9d8e4f7cbe25fa5e64b9ecbe256e51fc789

          SHA256

          c2f33dc18eae27d4e878bf837dd97f1bde5151e44b0271408535bb93265b8c52

          SHA512

          e375d41344a086d35accfb02bb1f91e2dd383db032af387fc3d6b1230057cc5e432e9b2cdd976e51425b4f587391d42f4d9d857c2e6f11e822a65edcb85f1c9f

          Download Submit

        • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\L6MCRSFJ\platform_gapi.iframes.style.common[1].js
          Filesize

          56KB

          MD5

          f6140cf2e81a9d5b9bc96970fe1946f6

          SHA1

          e18cb20a08d0c13d44b72e36e9560aec2187abce

          SHA256

          68cc8a99c8ed5cc0eb3aa2146fd34bee0051bfd98faa3c03b83c78b4a12a8bd5

          SHA512

          1f61bf7228ae9fc1b36249223f4ca0675da05beaa6c00b28b7fff500e0527ee237d139eaf6793ece67f8730dfff0207bf945a848795aab7c57301433449a8acb

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\CabDE6F.tmp
          Filesize

          65KB

          MD5

          ac05d27423a85adc1622c714f2cb6184

          SHA1

          b0fe2b1abddb97837ea0195be70ab2ff14d43198

          SHA256

          c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

          SHA512

          6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\TarEE79.tmp
          Filesize

          171KB

          MD5

          9c0c641c06238516f27941aa1166d427

          SHA1

          64cd549fb8cf014fcd9312aa7a5b023847b6c977

          SHA256

          4276af3669a141a59388bc56a87f6614d9a9bdddf560636c264219a7eb11256f

          SHA512

          936ed0c0b0a7ff8e606b1cc4175a1f9b3699748ccbba1c3aff96203033d2e9edabf090e5148370df42fbfc4e31d7229493706ff24f19ff42ff7bef74a6baad06

          Download Submit