Overview

overview

1

Static

static

1

1744c4ee0a...d.html

windows7-x64

1

1744c4ee0a...d.html

windows10-2004-x64

1

Analysis

  • max time kernel
    146s
  • max time network
    182s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    30/12/2023, 11:35

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    1744c4ee0ad8b35dc893d9a349cc988d.html

  • Size

    71KB

  • MD5

    1744c4ee0ad8b35dc893d9a349cc988d

  • SHA1

    156ade905a01cd522b126f019283a03571daf049

  • SHA256

    1753decae73c4bae933ed37826a8c0bd6e568ddebc623de93a52b6c696c6d56a

  • SHA512

    4b9d7987e9e49284ae47c6566b0c7bb3b502df018fc973f0899a5f5aa3dfbd8ac6dcbde9d9782afad3d1a026b8051ea4ed650d17857e4120d2a1240f651a937c

  • SSDEEP

    1536:rPTupBO3LRw6ZoZUq9oduhPcD1k+Lb2DNdQEC2jqAtCbY:epBOFwcBq9oduhEv2DFC2j7tCbY

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\1744c4ee0ad8b35dc893d9a349cc988d.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2672
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2672 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2884

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\070E0202839D9D67350CD2613E78E416
    Filesize

    1KB

    MD5

    55540a230bdab55187a841cfe1aa1545

    SHA1

    363e4734f757bdeb89868efe94907774a327695e

    SHA256

    d73494e3446b02167573b3cde3ae1c8584ac26e15e45ac3ec0326708425d90fb

    SHA512

    c899cb1d31d3214fd9dc8626a55e40580d3b2224bf34310c2abd85d0f63e2dedaeae57832f048c2f500cb2cbf83683fcb14139af3f0b5251606076cdb4689c54

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\070E0202839D9D67350CD2613E78E416
    Filesize

    230B

    MD5

    b4ee6db52ac65167fd19e9911fb60432

    SHA1

    392b3200c7cfe05f87786d660b53e3557c20fca7

    SHA256

    354bd066e54b6af28e1e31cdf7136746fc55be8c9e058a852c41995a3b4b4e7b

    SHA512

    3806cbb14f4481e4de64cfb1d746a5dd95c9873d1bcbaaf8e84890fb63ec036ae38f8889a800729b3a4a22e0e06e242d6cc13d078596a529470aa0c55c9a46d8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    56d76f4fd22e9be7f6afdc970b8f7722

    SHA1

    c22339f39bed2ad97ceb4329f40dd92bec045016

    SHA256

    3b259e322a18b09cf753b85f33d63ca47ac77ea0b7331c2ad53814321989a7b1

    SHA512

    80b8e9216ac4fc78d1ff8ccfeb646b32e5ad00e253a1bd0bdb3ef1a5e5b4875b5bcbe1cbfa7c8bbcf81499f775104a6b3a8e22bcc33e47fe5a38562ae808f898

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    234e9feffbd2a57414bc5c2d664b80e2

    SHA1

    38e120b9c242cdabc443bb7541a171eeca909493

    SHA256

    6a1aabaea15b4065b75a1f2265affc70029d3e4d8ebff9fc2605d56d25bc949a

    SHA512

    e20b2f0a4e75c440816eaf64457582215f7955fc39ba40f04a6766ea320b8b64f437d8ce142a4e1a773a77afc66697e168b71936d3ed4868d8fab282d24c8ae2

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    ab9a99d8d18bc4c8e43f93efc0b28b91

    SHA1

    6619559b38368a00f1391afa4cbfe90a35141f7c

    SHA256

    bb9abd388b329c142c02616eaa603d94e9dfe2e9bad356f9d01b7c31d2b99103

    SHA512

    28970f373b010a911c1dac5487861e897610041c7a8177d93e1a9d5fdc4368e9b713c78ebeb88c18c44b87571b9ecdd650b450452947f469aaef7401b9b93877

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    d24a0f3d9eac02d510754c45ff551a89

    SHA1

    f485c5cee54fff880f802bc340c49e102b231bf6

    SHA256

    8763b7e4cbcb374f5415d1aa384e44124a117b6b059a57e686284bcba685a774

    SHA512

    d0d6d41d73aa1a9b0a59ca5cadb02b47ebe383b2af4851825667c532d25ec11ec7ebca3365a5127eaa3648e079b8fde63cbb94c7677411d6b6cad59a0042a37d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    91f8c509f93f24b2b66cbe3e303730c8

    SHA1

    906d6d3d44874dfa5836ab3e52bab3082c70193d

    SHA256

    e74ce7c41c8910b023526b43346f3385a7eb14a0bf10922c2321bf12957f860d

    SHA512

    cfec4ce1f6ddad46f21f07722794ab69edc0a330bd970d417c239c89c47c1d37a42135bbe435f5e02b32c61f3a3e0ea530f85bc321e418b09fa1dbb71382a4fe

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    32767cbe97c608ef7f528bbc3c920ddd

    SHA1

    14317ef4c614bb279bd63d52b30167460d3df749

    SHA256

    98d6b0ed8cd3a36712cb382b015fd659b27279985a55c83c9a805f6a0eada5c3

    SHA512

    aed1ea38e10fdeef12032ea37646a31e8c53314dc6e0919474cc496fc48d25ef180e8ce970e92fec422239df46f1f6a646e780a42544f41c7e81434f7fef2d79

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    c6152ffebc23b837710f2346a969acd2

    SHA1

    433ce41d7cf4418ea3a935fe6b05d7458f7ecb26

    SHA256

    25815819cfed555e41f229b3df30feb95c2a6f601a82cd2565403b8cf6e8a3dd

    SHA512

    4e4facd332f9a1cfeaf34d0a3f47d53ee7556fd39247802d7dd84f20aee6bacb82d2c13e7c1d5626dd8fe3819f861a3254efad9aeabe67c924726310cdbf6562

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    5aa00db8472c85c6174ca503d15ee63b

    SHA1

    5c99eb33df14c8a40e02882e2eaf1332750853cd

    SHA256

    213803c3fcbf1cf408c14ef81c033b80d6a101012050b2d5700b6737f6578e1d

    SHA512

    ee24d7b595b807429154576adc44222a74290390d6be93d0b263f429c38cdaf9ad1dd5e215fb0820ec6a5eb7c1132aa5a1e4dc8ab307690d641255bfdefb32bc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    ccb6131ab4b009ab8f67d38587587c08

    SHA1

    c4905fb88d86b1e5cd29ea8f99359b53527d5426

    SHA256

    9f420dff4a3a8df21d0607cdf687199774262bc190625f965776808a1723c144

    SHA512

    d0f455a1b64be098fe9fc03b1a36c83f0ff62b4106c015b18b5b8ee4e72f3bf937efbbe8dc59e7e7ed5a41d1159e2f08c25bbdc21cdb7c38d46db0fe05755609

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    c640fb9b611a97d2a7dd554f7a4f4890

    SHA1

    a970130edffa199e4aecb140476c241c75d9b6a6

    SHA256

    8deb5461bc76e7c8bc45e657d36c4a8123095dfdb7dc442ba3f8c31400aca5c6

    SHA512

    db548fb019b944d374611af25c29b92985754165d5c24e752345a445c76705ccd83bccabb34628b970ae6fd8b36526477ced61a97eb2e2655354ed6404503e13

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    f9c382d760b55d37793533c3cc9caac7

    SHA1

    135107f06fc9d6ebe81e36c2eeb128da67bdc54e

    SHA256

    2e6de652bc7eb9a812324e137b0035969150d01bced56d42cbe69958e5b1d180

    SHA512

    685808ea6a832b32acbc2718a13f83d6c749fc2b97f7fd234db7e2ab34b13718116e08f31a4acd9c480953821c2e4602d5f0b467d38dfd92abaf2eaf7e03ea3a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    a80820f024053d99403b360ed5821117

    SHA1

    d78c2f0bf5214b6199b8f3bea7c4745f209e02fb

    SHA256

    1a282c0f18a36a35d69bbe0ce70f53ab1c003f2cf408d46b3b1f52c353e52f8d

    SHA512

    67354ed5f4f8ebfcb95d943d96752013c2449192caed2323925ee9b80dcd0e5442e5e84ee89eeb9d1414bf43114895de0c01dbe7647aece503fddde9527586a1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    577d55918c621db709424e527928f5a3

    SHA1

    69c70e19567082c338fc645e926e7acac6875033

    SHA256

    26832e0b1429674096cb27bb938cc8ec23ec586c2be96084ca6cd91f44d03133

    SHA512

    c526596e6e78ae617de8dd9a0bc94f9b1cdb3a7eeadfb6ce86c99492478eb5013083a27125cba93891f185157d0fabc5e89feac972159036178d8103295c0e47

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    08e5c6f51fbb20bc0d441e59c9e40de8

    SHA1

    3c7d7664fecf85fe2ca1086f4769e4bd9eb7f987

    SHA256

    cfc15de996906a5103ee17d41cb8e81b30202227f84874879c7f405d476b8baa

    SHA512

    b559fda3933dc81956a12a5210169c85888b5f8b22ddfe576700406cb921501488c91ca391b4a1c17320a03b6d664bb658e462435c8b61add5004674854c0bf5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    56875405684b7a6d7a77fcd95f45f7ce

    SHA1

    9cb6543da87e0ae62c889fa1818122bc5fab6db1

    SHA256

    54ba82a3a2e6be76ab2deb4ece2c8a106264b7af9026463558a2d26f660d9a1b

    SHA512

    c222bac4377713aabee4f3957200c0cde029c2416d98c6fb66946108b1334e55601197a9bfedf9c0f77548c5a5e6ce72ea527e234f861ec5ccc90a0e6f998374

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    d967abdab97e554f92291736325ea5f7

    SHA1

    c7b1844c886e70656d65abc5415aaa671ecf586b

    SHA256

    4d64f7d06dc438e317fb63cffdabed8ef673692e315962d72ff454089bbae311

    SHA512

    321ae65f78bde213449c89694a9d068d2f082bd32b49a418a801627b9fcb997bb7b12af492718630c909d68f9dd09f94f47eec201e1000c9cc8e65d633c7bec4

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    6f78a97865d3f8a9692eece880427527

    SHA1

    b90d170b5e437d377afdc0efb52738f024705d47

    SHA256

    845d66477c5010df532443c95773c512269d84214f9ad661ed5b22317da936bd

    SHA512

    9dfa795eb91310ea24bc5782fbb0894aeb252b503e90351d4567ff9e86894c4cb7c133e72b1f85f4b85de798df877fc18d4bf77edfe8db0be04b0fbd9f57bab4

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    2f3815f824dd73db4c1abda56cb9b54d

    SHA1

    bd9062c741c7d6aba185b84eb4770ee51dbddc92

    SHA256

    cf0e5bbe8441707b5560c81eea32e285098a3f40004594e6a4cbf50bcc8f8f76

    SHA512

    71b6da432f52ec2b3d41745a94f9c350b007e5a7449fbdbaad48a3bad423c27abb387a41f07911c1589801d95a0d7f44271c8f4454dcb6657f5b46412be64881

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    799447de1efe9ebe30f74bc428ba2725

    SHA1

    dfe810a44b315cafbcccea4a1ea8b2e6c36801d2

    SHA256

    f663c8f06d9855b10e5b44affad165c078f1585dde2eb1303f92b50a8db10155

    SHA512

    21e810b4933a625a5d33262fc78b220df7314a09f1600aade85704946255429c9698892488ff4b8ec304180aeb7311d7ee2ebdb46a39d8ffe4b0c3e2ba8847a8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    9eda25d65f5f8cc9d3b6f83c2588cb4c

    SHA1

    3f4a83f64333abd47114c7fdacf8f90a350507ee

    SHA256

    477201e850d8383903a4ccfd1df582afec726d9ac2cbd59804744b1df7189c46

    SHA512

    cdd11c6ee3cac7f39fa5b3cc9937342d995072dbba7f0c842fcc354caa05527448428b9c24a0e538e4c85fffd48ec0cad0bbcab6ddde57d96706a64e467060b1

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\4R90HQQX\478691279-postmessagerelay[1].js
    Filesize

    12KB

    MD5

    92169c8a0fbf6e404267d0705cdbdf42

    SHA1

    a5cd88b74ca5ced239cdbfb458fe25540d671f46

    SHA256

    dba668b49a111527aac8f616b9053ea57c944e01a84ebdcd02a13da921223384

    SHA512

    8c5d35ea512fa7be367cd9a9ded2f23822dcce730e5502a355ed0d48949ef763eab13be0d50a66de6b0f8419d6a002c12c4ddbf20d97f5393ba922e48a4f02e2

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\E25VF8N4\cb=gapi[2].js
    Filesize

    64KB

    MD5

    ee01651d160cfc55249d6011a3c45916

    SHA1

    79d6121df6575974ad21dafce33ec98e3f2f0a7f

    SHA256

    639d75299973c7d3794eb7eb129e3b5a6139f9f521e1f14383abd0fd501219c9

    SHA512

    8a39dfc1ff2c58ac106225976aafdaf7befc0a28903a0c65e2c272e1967c3336af2b477ec12604400bb8e16aecee6567c9cb9d157e3d54649e28b9b2f920432f

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\E25VF8N4\px[1].js
    Filesize

    346B

    MD5

    f84f931c0dd37448e03f0dabf4e4ca9f

    SHA1

    9c2c50edcf576453ccc07bf65668bd23c76e8663

    SHA256

    5c1d5fd46a88611c31ecbb8ffc1142a7e74ec7fb7d72bd3891131c880ef3f584

    SHA512

    afc3089d932fb030e932bf6414ac05681771051dd51d164f09635ca09cbd8525a52879524b6aa24e972e7766ddf529484cc1ec416de8b61255435a89ba781f8c

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\E25VF8N4\rpc_shindig_random[1].js
    Filesize

    17KB

    MD5

    f019fdda31635d2a31b151ad8ad56c7a

    SHA1

    6adcbec55f66ffaef83d9a134423aa98eb2a2189

    SHA256

    c7fc0b1526533002c956ebf8e8c42c3ad3f96c41ace73fb4063cc89051944831

    SHA512

    fc278c12316e098976833882a38c788d812f9d36bd1b9b2b8c87dab4dc906af26a860df95436ea1b7d509236d44d0533d475a153437f8f5d42653fc28a77ad64

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabB7AD.tmp
    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarB7DF.tmp
    Filesize

    171KB

    MD5

    9c0c641c06238516f27941aa1166d427

    SHA1

    64cd549fb8cf014fcd9312aa7a5b023847b6c977

    SHA256

    4276af3669a141a59388bc56a87f6614d9a9bdddf560636c264219a7eb11256f

    SHA512

    936ed0c0b0a7ff8e606b1cc4175a1f9b3699748ccbba1c3aff96203033d2e9edabf090e5148370df42fbfc4e31d7229493706ff24f19ff42ff7bef74a6baad06

    Download Submit