Overview

overview

1

Static

static

1

2215eaa71d...c.html

windows7-x64

1

2215eaa71d...c.html

windows10-2004-x64

1

Analysis

  • max time kernel
    16s
  • max time network
    147s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20231222-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20231222-enlocale:en-usos:windows10-2004-x64system
  • submitted
    31-12-2023 00:42

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    2215eaa71dcaf996334c93ed78aae3ac.html

  • Size

    432B

  • MD5

    2215eaa71dcaf996334c93ed78aae3ac

  • SHA1

    3b2c42f181f22f693daa2af5959eefdfb50365b7

  • SHA256

    2256d1772453a265399cdb76ff6ee4c5fd3ee67ed0e620821fec31d15bfd369a

  • SHA512

    477daddf7d025c3cc8835d799e34ff5ba3704b005967e2836e1f63720815a1566a4f7ec91ddc356ea9987f5ec1ce8ca7a170617b4683553711fe65d3e4b2c096

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 44 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 3 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\2215eaa71dcaf996334c93ed78aae3ac.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1740
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1740 CREDAT:17410 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:628

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\Internet Explorer\Services\search_{0633EE93-D776-472f-A0FF-E1416B8B2E3A}.ico
    Filesize

    4KB

    MD5

    da597791be3b6e732f0bc8b20e38ee62

    SHA1

    1125c45d285c360542027d7554a5c442288974de

    SHA256

    5b2c34b3c4e8dd898b664dba6c3786e2ff9869eff55d673aa48361f11325ed07

    SHA512

    d8dc8358727590a1ed74dc70356aedc0499552c2dc0cd4f7a01853dd85ceb3aead5fbdc7c75d7da36db6af2448ce5abdff64cebdca3533ecad953c061a9b338e

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\imagestore\r9e610m\imagestore.dat
    Filesize

    16KB

    MD5

    974cb6efce3a9f208b65e8e9ceb9ab20

    SHA1

    5fb66f11a456d1fe6f29296d3e80223499cd0855

    SHA256

    bd8b00c4493c87e20a5a83c33f13ef43ae4eeacb8d9d2b2cb23a56ca372f73a2

    SHA512

    d980cedd49bc9b6866c3d7eabf12f5315a535d451b877e548c4eb931840ff697ba0df861511cd3ce9903feec3a782cbd7b3554959b66ccf2c6f3cf13f1b876f1

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\imagestore\r9e610m\imagestore.dat
    Filesize

    1KB

    MD5

    5ac47d9ae83c5653ed1ff9fa700221b4

    SHA1

    cf655a660852c80a0e2a86f9371c6c6b96bec9fb

    SHA256

    9f76bc2d3242f88fdb084a25331b0ed7778b0bb1670f6e39fe17462337de604e

    SHA512

    301c8ddcb8bdb5ed79a1c08556b40daf561ff2a05c69e628b57ced6b4a525640b0d3bf35fd8e44541756130de8675d55e94c6a83011ff6524bdaccffbbff3015

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\INetCache\IE\8D1Z5HG5\favicon[2].ico
    Filesize

    1KB

    MD5

    91abe01116ab422c598e9c8af72cf4da

    SHA1

    0f2815fe8e067d48537ad168225ab4674271fa27

    SHA256

    b1d7aef06456fe7431124129a28f0138bb5fccfa4f4161e3087de23c005e5edc

    SHA512

    a4d5b20c3014153b6b382c43404917bd2cb5bd2a59bb1e981f5a19eb7dbdec185ace288e9700428d24e5ac623e45d04905e706f0c45a1642b1aa6c091213c23c

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\INetCache\IE\8D1Z5HG5\suggestions[1].en-US
    Filesize

    17KB

    MD5

    5a34cb996293fde2cb7a4ac89587393a

    SHA1

    3c96c993500690d1a77873cd62bc639b3a10653f

    SHA256

    c6a5377cbc07eece33790cfc70572e12c7a48ad8296be25c0cc805a1f384dbad

    SHA512

    e1b7d0107733f81937415104e70f68b1be6fd0ca65dccf4ff72637943d44278d3a77f704aedff59d2dbc0d56a609b2590c8ec0dd6bc48ab30f1dad0c07a0a3ee

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\INetCache\IE\GG17NQDF\sedo_logo[1].ico
    Filesize

    14KB

    MD5

    def00c11b1596db4efee6a9fbe64fc27

    SHA1

    bd298981e6d8d7e4ffa18abcf687041f4246672d

    SHA256

    95c427fa3143b1896faf42a6406686ce7602cb39052081bb32d12b51c9e047e4

    SHA512

    c056e95dbfa1aab3a50dff18c6d577dbffea72c93316ffc53b6b7aa41dcc7707a810d563894589a7305de0b76610f88150b2034670de368773b2b356f14ad30f

    Download Submit