Overview

overview

1

Static

static

1

1b3b66378b...e.html

windows7-x64

1

1b3b66378b...e.html

windows10-2004-x64

1

Analysis

  • max time kernel
    117s
  • max time network
    135s
  • platform
    windows7_x64
  • resource
    win7-20231129-en
  • resource tags

    arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
  • submitted
    30-12-2023 14:20

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    1b3b66378b2234a39d18452d9611bb0e.html

  • Size

    3.5MB

  • MD5

    1b3b66378b2234a39d18452d9611bb0e

  • SHA1

    f80b5c931849dcc783fa201eaba18b89ee3c5ed5

  • SHA256

    854d75d6b7f781a38fb1bfea9376a461c4c744d7cb1cba221f4323750ab235f0

  • SHA512

    c5f74410a3d7702a897d2bab2df91dc4ccd2a1684c623b0a4da41b9f913df40e281fd6c24961559a420abeb3e03dc9bd212432a0549827ccb39565b9cbaa12e4

  • SSDEEP

    12288:jLZhBVKHfVfitmg11tmg1P16bf7axluxOT6NyL:jvpjte4tT6sL

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 38 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\1b3b66378b2234a39d18452d9611bb0e.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2980
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2980 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:3052

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\3C428B1A3E5F57D887EC4B864FAC5DCC
    Filesize

    914B

    MD5

    e4a68ac854ac5242460afd72481b2a44

    SHA1

    df3c24f9bfd666761b268073fe06d1cc8d4f82a4

    SHA256

    cb3ccbb76031e5e0138f8dd39a23f9de47ffc35e43c1144cea27d46a5ab1cb5f

    SHA512

    5622207e1ba285f172756f6019af92ac808ed63286e24dfecc1e79873fb5d140f1ceb7133f2476e89a5f75f711f9813a9fbb8fd5287f64adfdcc53b864f9bdc5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015
    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\F0ACCF77CDCBFF39F6191887F6D2D357
    Filesize

    1KB

    MD5

    a266bb7dcc38a562631361bbf61dd11b

    SHA1

    3b1efd3a66ea28b16697394703a72ca340a05bd5

    SHA256

    df545bf919a2439c36983b54cdfc903dfa4f37d3996d8d84b4c31eec6f3c163e

    SHA512

    0da8ef4f8f6ed3d16d2bc8eb816b9e6e1345dfe2d91160196c47e6149a1d6aedaafadcefd66acdea7f72dcf0832770192ceac15b0c559c4ccc2c0e5581d5aefc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\3C428B1A3E5F57D887EC4B864FAC5DCC
    Filesize

    252B

    MD5

    762917e1d8beb7ee59144d6825bfd546

    SHA1

    76effff3e6ff10fd9ba0a10e572e1c98e933e1c8

    SHA256

    8251e79aeff2e1fdcacbedf1e73910c374aa4f21f17cf6a86a4acdae8316850b

    SHA512

    78c908c853dcaf3279bf54dcf2395556e3375d929df3bda8700873d67a7698ed321fc6a7bf4e9d4d1e920b77d851ed0e4971dd943ca1d808edc02cf0286c4365

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    a522966e3f785e0bcaa614dbda8c33e6

    SHA1

    e5c1aeff3c33ee17b99abfce132f9fac7d87f7f0

    SHA256

    a9d8f8b16d90bd6cdee2a34b92bc02144e7c5be1f5161cde3038bd1ccd7e65c2

    SHA512

    aace73eaee19cfe1647850d0b4eddad9faa021dba81ab2510007091255648d2c2a1b9421d6a9e568ac3f89a3c61adbc549d9700682117c897fcd2c0bb86d0379

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    3c2a90138efea646cc0f9b51af1cd85c

    SHA1

    d26cc996704d5310215f66d464c2a966a88e0085

    SHA256

    6c5608e0835de26d8bf3739b7efe9f21fe92b34e5ed547e9374e16e32b4c33ed

    SHA512

    9cc9f80d97117186e7486c35d5077b41cfb7c0538b590fc359e289b8b18240d8980ba61a2d1e6b0de624f279fa0a2d90f597319e9177d507dd9a46940c7ebea5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    8f8301a9d2c4981bd7c206e1dbaa96da

    SHA1

    669d5b8d967382b8323561eb9275d46d4f9129e7

    SHA256

    1de6a7dd1363bd77ae41180352f922f870944003617046f1400b6a62cf36fd85

    SHA512

    766129e36bf85651988abaf36d86f482f4f76f0e90b132db59da1efcc567566de6c0194aa568f73105356f76a1c550a52de78f685e4752d136c4e54a6024b128

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    5d718d0584fddeb856b48a1297a95865

    SHA1

    1f5252912a31c057bdb1cf3a89a02bd43bb836b3

    SHA256

    40ee5355dc420a79ca79323591e1394ac1e9f78de6102df0e62c5594bd6f0b9e

    SHA512

    6df7f121293afe1985e94130d8c6d84b34d545e87cf4e42a9fa683ff962ead4644e5c143202dd5fa797213c38b0909d52add154e8774f922d1103945fa31c362

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    97db82d59eeafc730627b2c4f56b866f

    SHA1

    b80fabedbdc60fba55287b8199175de1ca903d89

    SHA256

    7ca22558be4cf03bd9bea8f92f689f7ea8ce911f388ce47a493275e14757d6c9

    SHA512

    88f9d2f4a387a45f6f5c96346fb3a2583849a623454b7a96b84c665740ebbfccdbe27c33f3bf3d029255c8eab8df1eeb33cc8c2a2c544175708f6db73b941b13

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    3658e7e22dfbfc0c19d949f4845a79ab

    SHA1

    9d659b912390809610e4f4a5ba0121c13fb5861d

    SHA256

    3102d77df247e1be00c9d464eae3fe7f33c74e97fd4e7cc5646c5f2018583b69

    SHA512

    160788cf746487c6fbf325a47514a838bfbe1f89c790771d13916b5555172c2e308da6aafb35386538d8da2243b7a3c0b0a7dd828b72852038f06b0f52962f56

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    4fe14d3df47d68af3250387aca5c8d03

    SHA1

    cc44db5438c4845f74d080f7144d607358851bcc

    SHA256

    26edafc0b127be27be3525b9f51474f6777493b2a3e7270270ac68647d917a9e

    SHA512

    9ee1e5fd5cb46cf516a08ce83bcd8c019c8e544f57a705ad32eb87055078ca4a5fdc58b2a68103981c3e25e024471af13b808a9681154b57a488d0d17c0390cc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    34ec17f2413d28891be7f859c4f9571d

    SHA1

    73f04b17ace375fb6c236dca0c9553bd8f31c310

    SHA256

    9b04821e92c9d000cb4e5fb062e8c52cfb98d829b8568cfed921771bd862a900

    SHA512

    34089e8c55da57bd02a3a73855a2bf685a57f6624874f8097834e9a3217ebdf59748ffa27b1f910062210f39ec9303901fd474f36b3f316f2d588fdec5ffbf39

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    99b4bc8893c7556d178470826fbac81a

    SHA1

    1d0fc1bda692d1945cc8a89fa7a6111b04759791

    SHA256

    74edc6a91e5c467ba745645af84f6162700ab6b06601336d05f96394347e1f13

    SHA512

    1da73ea9559ee8576734d1f4881aa519fb7fd2807af305d3c0c0e3c6e99d7367622e25e9b57ecc1ed1222bb06546d19e110e669629a2b0aeecf1353f193685ee

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F0ACCF77CDCBFF39F6191887F6D2D357
    Filesize

    242B

    MD5

    4ba72bb2fa0fa86e79e772c5dc58e4c8

    SHA1

    d6d343a75afcab535fb77d9637c9b2ae7d746eca

    SHA256

    f2866dd2ef1aad81439370c253b3415b801eb84de7a1d5ea65b2165bc74737f4

    SHA512

    89192f30895638c447cee2903b9f1fcc03713d76228a08f11ca1f4e53ff8c9c12d7b07f5792ad28672d31d8250644bb6abcfd659f4fdb46e043c35786ab93848

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\Internet Explorer\Services\search_{0633EE93-D776-472f-A0FF-E1416B8B2E3A}.ico
    Filesize

    4KB

    MD5

    da597791be3b6e732f0bc8b20e38ee62

    SHA1

    1125c45d285c360542027d7554a5c442288974de

    SHA256

    5b2c34b3c4e8dd898b664dba6c3786e2ff9869eff55d673aa48361f11325ed07

    SHA512

    d8dc8358727590a1ed74dc70356aedc0499552c2dc0cd4f7a01853dd85ceb3aead5fbdc7c75d7da36db6af2448ce5abdff64cebdca3533ecad953c061a9b338e

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\U0POR7GM\beacon.min[1].js
    Filesize

    19KB

    MD5

    dd1d068fdb5fe90b6c05a5b3940e088c

    SHA1

    0d96f9df8772633a9df4c81cf323a4ef8998ba59

    SHA256

    6153d13804862b0fc1c016cf1129f34cb7c6185f2cf4bf1a3a862eecdab50101

    SHA512

    7aea051a8c2195a2ea5ec3d6438f2a4a4052085b370cf4728b056edc58d1f7a70c3f1f85afe82959184869f707c2ac02a964b8d9166122e74ebc423e0a47fa30

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\V52IUMX3\jquery.min[1].js
    Filesize

    83KB

    MD5

    2f6b11a7e914718e0290410e85366fe9

    SHA1

    69bb69e25ca7d5ef0935317584e6153f3fd9a88c

    SHA256

    05b85d96f41fff14d8f608dad03ab71e2c1017c2da0914d7c59291bad7a54f8e

    SHA512

    0d40bccaa59fedecf7243d63b33c42592541d0330fefc78ec81a4c6b9689922d5b211011ca4be23ae22621cce4c658f52a1552c92d7ac3615241eb640f8514db

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\VDAY1W0Z\jquery-3.1.1.min[1].js
    Filesize

    84KB

    MD5

    e071abda8fe61194711cfc2ab99fe104

    SHA1

    f647a6d37dc4ca055ced3cf64bbc1f490070acba

    SHA256

    85556761a8800d14ced8fcd41a6b8b26bf012d44a318866c0d81a62092efd9bf

    SHA512

    53a2b560b20551672fbb0e6e72632d4fd1c7e2dd2ecf7337ebaaab179cb8be7c87e9d803ce7765706bc7fcbcf993c34587cd1237de5a279aea19911d69067b65

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar20DE.tmp
    Filesize

    171KB

    MD5

    9c0c641c06238516f27941aa1166d427

    SHA1

    64cd549fb8cf014fcd9312aa7a5b023847b6c977

    SHA256

    4276af3669a141a59388bc56a87f6614d9a9bdddf560636c264219a7eb11256f

    SHA512

    936ed0c0b0a7ff8e606b1cc4175a1f9b3699748ccbba1c3aff96203033d2e9edabf090e5148370df42fbfc4e31d7229493706ff24f19ff42ff7bef74a6baad06

    Download Submit