Overview

overview

1

Static

static

1

2178e6126d...5.html

windows7-x64

1

2178e6126d...5.html

windows10-2004-x64

1

Analysis

  • max time kernel
    121s
  • max time network
    142s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    31/12/2023, 00:20

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    2178e6126d13743d36cbe76362873f15.html

  • Size

    71KB

  • MD5

    2178e6126d13743d36cbe76362873f15

  • SHA1

    3c1eb696d92885101eb2ae82bbea32093e28ab69

  • SHA256

    bc0fbf1e8b48e1631aef7a0c91ba615c5c0af33af779f954c916dd7c79987e24

  • SHA512

    036d8fdef3abc88e924df755c23c94df2ef3765d950455dee6d2679602e2fedb639a2a2890c12701df6e86dd041ee9c4d0ba6ac53c6095b881d4f9a6f9c35b02

  • SSDEEP

    768:xlkSgOriWNcaSoYBgGLAusTmRr1FtopIJcPfVTx0h4bM5t1PrrGNaXlx2SvR:0BBNAuGmRrddrKaXl9

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\2178e6126d13743d36cbe76362873f15.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2240
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2240 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:1312

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    453a2d06a726a6b82d0c03e5be7b23df

    SHA1

    c559c7efea4fa6a28fd503be4c78eab380e7865a

    SHA256

    381cec1533a03a1ae991cb63b87437db9409df0ba5aa1cf5deb0b630f0476a29

    SHA512

    ac8af811c39d0d24445034e65d7b97779004a2d69111e37a0491f5007f80ac4440e3ab0225c3fac22a7f7577ebd2c6357d233ddc490bbb615a4f0d4ef56c8e34

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    994d29f9e8b32a0cafe152e1b9ce099a

    SHA1

    b812b3d59bbd105e7f15c39792e1c1b202ee6467

    SHA256

    016c6ecfe9cc663b4ab7a479d680a30a101c4a9aee8a15056f9f6ec878564924

    SHA512

    05308dc9d5249a73690d25fed4f7d25935cbf85215d3634c4d3b42f2dea80b5ae14339af37cf886fb8444658277cee715ae0272fecb0156d38c1fe01922f3843

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    486bc662b7eb7bfd5e223f0cf3dbcaa2

    SHA1

    9efd90501cce48c588d8d97364674bf493b65ba2

    SHA256

    6f68e39cf50975f5856bb89ebd5ab3c9998f5cbd6515dfad4a149452bdbd2dfd

    SHA512

    b85e215f54e838c8ca86cb06d8f431b1988478f3962a5500636e306acbb4ee7d1eb3962c97af3041f99120bbf072ebaa98bb64711e7be7dab356141290a4ce78

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    a5e54385e07435398c0f540631e44326

    SHA1

    150e8270e45954c94b2def2f04a91fdf5315604d

    SHA256

    9f0ddf3440fa13564bce0223b642f144fcce98edd69402de194c99b732133ca3

    SHA512

    c07942d92876f56a292f5bcbd9dcdadaa9525761e57f86068a3903bbc282835905c59241a4a90ec8b1040e810d6a3037fb1c68c591f28a874267775f2528e31d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    02b41e83f382efc6d4c33b2a5fad974e

    SHA1

    bdb7e3cfa6d5d6f34c52162166f64126aee9e8a1

    SHA256

    383501ddbd724d83211df86dd498edc616ae9f7671d092c6be76e1646807721e

    SHA512

    38bac18db79a7e3f2cfbff90971125b95a9a69e2d620612ef5696becb8d77cd36456f4bec4a14bc217d60df37672bd40459a8b4405c57204a08bc8c072936f3a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    e62e4a4f84f8014a200474b0185b5ab7

    SHA1

    efdcfc6fe4e90da513aa3afdb6e537cd3a27d281

    SHA256

    c3543ac66c985ab70b7c2afd7cfd32f3ae02f3b667db1099723092b32ea29c20

    SHA512

    91e1f742e1b332c8cbdd35c0cbf0daa7e8cb6d5fb5bd5cb4b6e90ee687f782529692afa0860a479dbe2d68441b4e1ed8c17f9207db8dee81f422ef421f8ed85c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    e459240c560d754796bee025e9c7fe94

    SHA1

    daca60e06b8becbe540f6ee39a556c3eedd2d9c9

    SHA256

    4dc888dca89a245db3d4e9745482ea003a7f8d6df3a04e6c05196a67b1352553

    SHA512

    c721b3b0bfd13212027fdc27cafe9b98ccce59fa2822aa3a1544a998a4381dfc133380880e3d65fb665c98334de932d4e70794006def8200e3adddf66bc3ecbc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    279e0b6cb6728182704a256dafd0925e

    SHA1

    e92ba996eeccc4ae58a993e00baac6736d7bb6bc

    SHA256

    919fc0092575bbe16889614d46b725ab8b074bafcb45a72eb6b672a1dff765fc

    SHA512

    bc5dab1c4f418b852ee32effd6e265cf06f9b351d659ae598302c2ba75a5911ec3bec0c1bae799bffa5eab1a7fe6322b972a5a6b86ff521c4cc409fe83c16b68

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    07064edc1d0ea123c60c287cfce99ced

    SHA1

    6c7d177a3172114490b12bc3de5bf97ecb710730

    SHA256

    0bb7f90b7a395e1fd1daa58bcd4112455b634a8d5f23ad74c563315d207390f6

    SHA512

    fc2280da6f0f59a19b32f174e2f3d74abddc6ebb391c168dc0ba6d29db64b24d91eaf97d745332d24c998ce0888b8f8bb0a664a4c3613bcd8f615d09b8751192

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabC3BD.tmp
    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarC40E.tmp
    Filesize

    171KB

    MD5

    9c0c641c06238516f27941aa1166d427

    SHA1

    64cd549fb8cf014fcd9312aa7a5b023847b6c977

    SHA256

    4276af3669a141a59388bc56a87f6614d9a9bdddf560636c264219a7eb11256f

    SHA512

    936ed0c0b0a7ff8e606b1cc4175a1f9b3699748ccbba1c3aff96203033d2e9edabf090e5148370df42fbfc4e31d7229493706ff24f19ff42ff7bef74a6baad06

    Download Submit