Overview

overview

1

Static

static

1

167ade16aa...b.html

windows7-x64

1

167ade16aa...b.html

windows10-2004-x64

1

Analysis

  • max time kernel
    139s
  • max time network
    161s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    30/12/2023, 10:52

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    167ade16aa127aaecde72dc2f73b7a0b.html

  • Size

    8KB

  • MD5

    167ade16aa127aaecde72dc2f73b7a0b

  • SHA1

    5109ece852cad38fe48def915d172b81d4c62912

  • SHA256

    1e365c52e1a770b8ff6097344ef7b7fb7972554d5caead846bf64be0a3e087f4

  • SHA512

    372656f40e69971a4662c81ac44c32b678889a7b5cdc14667c4e8eec51d3f3ce2994b1c84d2490cfedbba681cea6ba0804635a5b20ec97e9ce0b402bbc07c820

  • SSDEEP

    192:f/H82clSZrdB2clSsnrdB2clSl1a2r9a4Qf5NlScy4kJ0r:nxJZr2Jkr2Jl1Lr3Qf5NlScy4kJY

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\167ade16aa127aaecde72dc2f73b7a0b.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1268
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1268 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2404

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          0d2a642ee1f4d39bf3dc17840b6a80d4

          SHA1

          59ee647aa0bbd65bdc8960660b3f14ca94f44818

          SHA256

          61b53ac2ce9d5bbba3e4ee19ff3d0d6d6c39828c4314c20f6d207c3e409543b0

          SHA512

          525449795e9c8e57c93c15f41eef060d112462550ba10f85105453a3d0667e0912e6129725cff3c384b04cbc8798825173a8c6449e2757fdf87ba032ce889a49

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          ceb3a96c11ed8b51cd8b836035efba3b

          SHA1

          713017f89375ad1ed81689326fa4ec6b35918f9b

          SHA256

          f3a08e5d5cb3a68db492ba9ca378a6b3ae27fea1f386d758abf3fccb080de0e6

          SHA512

          a6b436a7f13b950ff64323345908ea281a61a38e337d6af3b32535decb856777db682ccc280a782beb27f09c5bef344044024dac69e110784c882316a7b8ae87

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          f41b852338d9b842d5b5acd6adb74138

          SHA1

          02c6c0c6f581c2677da3177a3fec1e13071ad869

          SHA256

          b0f69648ed271a7cfb541851121bd8033becd9e86cc761f520170777438be540

          SHA512

          54671fd6600a3dff86409605f49cd1dada297e48dd94929fc68262e7808434727054a30ab831903eb415366724b9417fc3653236fe1c9d9ed3ec5bdd9b8ef43b

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          569c3283b192c61da66ce2961a4e178a

          SHA1

          e63b140213fddf1fe12b8425be0982681cb6fe17

          SHA256

          09d65c7e9fab07e6d87c7739a355b0697e4184dc9c8035aab3215c6a37f39ad0

          SHA512

          c61f4aadea60fe27da32440507bf8e51c8b21d79ff2f32ca5f98d23bf48b6eb31246618111cbfca7798286150001278a52b739f18fb5fa5fa3eb6b6e221b0a06

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          076375f5aacb0a9624854c471f2f66ed

          SHA1

          811e9b748563f88f9230c1123f5145d8cf4f18f4

          SHA256

          3d2aaaf1e7e3472104b293cd132b623c6101415a4f2e15c63099c968258abc89

          SHA512

          cc180950933c9682845f877ec2e7a8d410917a585865e13a386d77d62538c3a2de7f3941442e8d686e0a81b30202be7afe71fb92997d0c0cf0366227e31ebadd

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          586ccdfa73a2a6a517d5f2821fcc34cf

          SHA1

          fc9a91d20712a2c1ef6b4887fe05019ddb878561

          SHA256

          403af6e00fa44a969b6b96688f2b741d0258ceee77ac5f5664758dd1035e8963

          SHA512

          4b429912236c8d0563573b4fd047093dc36537f00ebe255944e8fe502c06855ddfe07f5b79d2c35965f469e5cf43faf65fafd881249c71f9c93ab7fed4d4799b

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          7e909f41bae416bd0804042e638b4f21

          SHA1

          1b33d6d729e875c64e83d79743b6978caa5588f1

          SHA256

          12915cb9e13eade44e7676085e573e1e6cef90aaaa9d021671f5fbb87ecba823

          SHA512

          6ea584a97f7a0fd3e6c9f95b2fb4bcb4213b5145d51cda7f343b95d1829b213319be25e3d8ead8a63d7e58a3f1f24fa44b8d8fb6b6bf71dba92166e8d00433b4

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\Cab7DEA.tmp
          Filesize

          65KB

          MD5

          ac05d27423a85adc1622c714f2cb6184

          SHA1

          b0fe2b1abddb97837ea0195be70ab2ff14d43198

          SHA256

          c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

          SHA512

          6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\Tar7F92.tmp
          Filesize

          171KB

          MD5

          9c0c641c06238516f27941aa1166d427

          SHA1

          64cd549fb8cf014fcd9312aa7a5b023847b6c977

          SHA256

          4276af3669a141a59388bc56a87f6614d9a9bdddf560636c264219a7eb11256f

          SHA512

          936ed0c0b0a7ff8e606b1cc4175a1f9b3699748ccbba1c3aff96203033d2e9edabf090e5148370df42fbfc4e31d7229493706ff24f19ff42ff7bef74a6baad06

          Download Submit