Overview

overview

1

Static

static

1

2a517391a3...9.html

windows7-x64

1

2a517391a3...9.html

windows10-2004-x64

1

Analysis

  • max time kernel
    149s
  • max time network
    144s
  • platform
    windows7_x64
  • resource
    win7-20231129-en
  • resource tags

    arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
  • submitted
    31-12-2023 05:38

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    2a517391a3787d9cfbc88347dfe3d5d9.html

  • Size

    990KB

  • MD5

    2a517391a3787d9cfbc88347dfe3d5d9

  • SHA1

    ac2c5a66d22f7cd3e375d1c5a36fe036c2943d0f

  • SHA256

    6dd9410515150b8d0ef8662582fb12c99130359cfbb1d03581cd5ede29a78468

  • SHA512

    a109edabc4328d0202a310573876e7998c2e23d4f33ac027b38c9e7012df5eae457b0afdac97813ca8b83b74c30fa2e809c028f5fad30feebe23fb69bf4979e5

  • SSDEEP

    6144:1kclcrm06APidjNx3rLB360zPqnSmCt88yHihEt5SGb86JZheW21TKmKk:1kcle36jdjNx3r40+yfmY1J

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 38 IoCs
    adwarespyware
  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\2a517391a3787d9cfbc88347dfe3d5d9.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1420
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1420 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious behavior: GetForegroundWindowSpam
      • Suspicious use of SetWindowsHookEx
      PID:940

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\3C428B1A3E5F57D887EC4B864FAC5DCC
    Filesize

    914B

    MD5

    e4a68ac854ac5242460afd72481b2a44

    SHA1

    df3c24f9bfd666761b268073fe06d1cc8d4f82a4

    SHA256

    cb3ccbb76031e5e0138f8dd39a23f9de47ffc35e43c1144cea27d46a5ab1cb5f

    SHA512

    5622207e1ba285f172756f6019af92ac808ed63286e24dfecc1e79873fb5d140f1ceb7133f2476e89a5f75f711f9813a9fbb8fd5287f64adfdcc53b864f9bdc5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015
    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\F0ACCF77CDCBFF39F6191887F6D2D357
    Filesize

    1KB

    MD5

    a266bb7dcc38a562631361bbf61dd11b

    SHA1

    3b1efd3a66ea28b16697394703a72ca340a05bd5

    SHA256

    df545bf919a2439c36983b54cdfc903dfa4f37d3996d8d84b4c31eec6f3c163e

    SHA512

    0da8ef4f8f6ed3d16d2bc8eb816b9e6e1345dfe2d91160196c47e6149a1d6aedaafadcefd66acdea7f72dcf0832770192ceac15b0c559c4ccc2c0e5581d5aefc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\3C428B1A3E5F57D887EC4B864FAC5DCC
    Filesize

    252B

    MD5

    3b7b0b0a0982e0d08512871afd148432

    SHA1

    ec8a89518ee17fa20d8c03f1eb465d2f513eddc8

    SHA256

    b8d9f76fbd17af2186efafd1365decdab0e21962cc6b6991ee659acf4c32ceed

    SHA512

    9e7cb00aa27731a5545583c1dde1e7d2133709660586b579ac4edb109d84ae7c88e07db98c8fca8d6af61d9ecd9ca6372427090789c1450965740e9a782e4fe7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    aa7df9037e220a65ac4e8d294aebdb10

    SHA1

    da32d5220f573388a63ef56c1f5e8cada5100196

    SHA256

    80a6b9069cc4b286222a4ac6b3181f4be79521e692b3d0011a1af32e291a29d2

    SHA512

    5c92f93d9b7e22acf19324acf996f36c345984bbda2a3c419354134f67a2cb707d66502af3c85d95f78fd538f29458ddbdb36861d784746cca9424dbf00b4438

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    483f0158963c0ea18baa82b6603f1153

    SHA1

    2addfdf372e0930ab01fe196f83c7cebd30de584

    SHA256

    d81a5af71cd3fed9874b5307c0eeec59e8c072d8a01da0ae4becbcdca476b1de

    SHA512

    110d8cb1dad8e006d95b46811b36fb23aeac9d747beda7b292d115781063a51e7cbe353e1dad97cfbaea74a63d0087cede1b048c4c364bf607911545f369ce56

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    921a712a06cf291a2b18dd8c576018f4

    SHA1

    b2e86735efc05d1e85f661b991d49171653b1c87

    SHA256

    f66676d52e8979688eafd910e4c43bc17bc5d17c7ddd4d8f16d404c2f9fc60b6

    SHA512

    8d5371096624240fd1133e5222e546d80f553f0952c4516e859e5e114d3415ad2369a43e0f15d8193ee4f15acc8c848d29e479016f42cbfa5ecde7a61c4caa62

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    db5e287a3f5d32a13dcbdae78997737d

    SHA1

    e8f5cc2130c9f200a7bd64a0973fe29aa96deba1

    SHA256

    5d8325e20ddacef9032e1b5353fa1f9e73815b21edd1eed0c8a379cf8e7a3262

    SHA512

    a9fe08ccc91b2d8a0b42fbc1759cd5d419976b603d74f47eccd431b0c237c446689e2b33e653353193299df329b8498280b5aa80571306550a2ea6bdf3006340

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    8d2f82f4944d6748ecb97e107e262a2a

    SHA1

    cf5a7dbf2e826b7562e41fd1984ee3216967cde9

    SHA256

    81745d239cd09100e33228c4fe780d85e064df117e28ee251050a43d23e721ed

    SHA512

    f225d897ba2f4144f3b863d531440a69a17e89b10735be35031685c465f358795fc89746a5980c2a321bdb0415c868fe3513a4021bcaeb19f4bc9847de456bbf

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    2cda46d61f6c88a35bf63c3f00ae3c9d

    SHA1

    e55feadc27dd92e007c3f104314929383a3ba141

    SHA256

    600898a9aaf796efce50b10398119ce4285356505bc9acd7abdd259cae23f058

    SHA512

    fb2fb97b4766a45185415efb65fdc1cd10f78f07d79ea20b03e8489d1f020f90ed78fbe4256d00ad4e1fd53330335405d335eab71bda7d268cf85275fbde8af5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    9788811e182721a2db0544c24a0880c0

    SHA1

    ba660631f49e4fcef69a729e8e44efb49d84e0e2

    SHA256

    4a19e24a38bfc0f39c2ed7ff782eb3b476edbc394daea78219bd625739f39aa7

    SHA512

    81c8e7d16b81e8d1755391c4246d20d7e0e3495cdea37be4f322b6e5fb82e1daf779ea22c387c1da4bd58885b3f3227c405f99cca369bc34366d0428cf796013

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    140a3add3ef883d35428e1f755863d13

    SHA1

    8ec7edf2fc366d0d7f91c807818dec44caf0b588

    SHA256

    b300302186eeb2dcfd527b89e6be4678b1163eb164c51b756e503f42c6d40c76

    SHA512

    dc3f5e5606168f131d03d6ecd12469eab207ce96bc5817908bc63d125f84d62b27db7cd8545a8c01b35f7a97b5a6226182ebe3fa64db2006a4a1c6c4802fd828

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    a9943b11718fc02037a711565f26d868

    SHA1

    e0fca463cc06861ebb67707b6c8dacb8a862fa15

    SHA256

    dd46c377a80e9a96e6ef2d48dee81f115abb370e4b430e0d7738ff4b9958b9d0

    SHA512

    c3ecb10f097d2ea3731f030f6cb361b9621287daf7924897eb529c22e5f56fefeaaadaad1ef2ccdc3198643f7f893540a385775016502f51b5552c2ebca3b684

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    519e87c824db6a38874df1eacda94052

    SHA1

    422015b1d0bed920ed3e0d8d3944256eb3ba7b6b

    SHA256

    73ad4cea07c8d14acf941fd9482edb3bfaabae44d0f25b06240e5dbfb95698cd

    SHA512

    0388455005f0abf280396d914bcc8f02cd9a06b84c526082fb97c68a1dda005f542ec98ddf906d73b1ff75e28f6dd45c102feb8e0947c5df6347b43acf52cf2c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    79bd329861217232f2c7e91fc16f7db4

    SHA1

    998757ef1d6c31e42f757f41880c1794a6705f92

    SHA256

    e889d2a964760f0c2708753890997a65a76872fdca0f345d4062f6725a60d36b

    SHA512

    07b1fcbce5745277fabd8a6412d9cee882b339341e2915805cfbf0ad30915b9d276ccd20027abb6f64af077724a6bee3663b78542c3b44d1eff7b0f947f630bf

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    d50bfa455a298dc6e6b03bfdf54aa6ab

    SHA1

    36dc1cd93bcb0ff9098bbadd69fc8f8bf90b84b3

    SHA256

    26d988c015b827fbd75a090dcb1da0a00d8b4e1f4278401a4ec797f41d9f85be

    SHA512

    087ae91817d436f30e5381351e175040e3a7a8eb7545d390a6310dd7099beb90258665310f8e24cd8d543aad72c8668c392813f8d0ac628f4c5bc1c091aa0358

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    c41dd885b870f839c57fc51f9375f5c2

    SHA1

    71638edc5080666e38a261f5570260c9147ecc89

    SHA256

    b5b0ed2a29e3f583e8f5065035a45bcfc9aa750d3a4a6346746dcb0138fb9b39

    SHA512

    6084966e7f2bb1c8496748e866c4dea41dac3edf9cd76fe359481f0f48346c7f1f4af3cea6b9c898db70c3516a9610ef4c80035380a4a1ad26fcdf4db2bc0c9c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F0ACCF77CDCBFF39F6191887F6D2D357
    Filesize

    242B

    MD5

    48828f71e07e4084d4374775dfc77d9c

    SHA1

    8dfe4638efb2e7ab0f10594ec30a13c59e4be4aa

    SHA256

    896d50edb61417ac6822c559e3894ed195bc57225e19d7ff822e05cd7725cb40

    SHA512

    2f4ad662ebc36a9ea510710d6a61523ed56ddff2cbea5baa9c957db8e277c856bb55372aa522069a70e1d08d56dad341aaed95c02a5015885e16900fa8075b9d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F0ACCF77CDCBFF39F6191887F6D2D357
    Filesize

    242B

    MD5

    51d43d8be0b9a8c127f9e31f62a7056a

    SHA1

    e60ddbcf46356b953ee2d6536ab74c73fb354ed0

    SHA256

    41025147cbb774becf84326e78fc06127c5d19656ecee4808d6999f396e5e606

    SHA512

    2210492c5c633c2a6314df4690d4d0d06fd578c423ca94380e1e91655dc00ef71270607b4538948e0a2fe85ba27fed32a61ad459d2b87704dd38477d31d55315

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\Internet Explorer\Services\search_{0633EE93-D776-472f-A0FF-E1416B8B2E3A}.ico
    Filesize

    4KB

    MD5

    da597791be3b6e732f0bc8b20e38ee62

    SHA1

    1125c45d285c360542027d7554a5c442288974de

    SHA256

    5b2c34b3c4e8dd898b664dba6c3786e2ff9869eff55d673aa48361f11325ed07

    SHA512

    d8dc8358727590a1ed74dc70356aedc0499552c2dc0cd4f7a01853dd85ceb3aead5fbdc7c75d7da36db6af2448ce5abdff64cebdca3533ecad953c061a9b338e

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\XRA3IX91\px[1].js
    Filesize

    346B

    MD5

    f84f931c0dd37448e03f0dabf4e4ca9f

    SHA1

    9c2c50edcf576453ccc07bf65668bd23c76e8663

    SHA256

    5c1d5fd46a88611c31ecbb8ffc1142a7e74ec7fb7d72bd3891131c880ef3f584

    SHA512

    afc3089d932fb030e932bf6414ac05681771051dd51d164f09635ca09cbd8525a52879524b6aa24e972e7766ddf529484cc1ec416de8b61255435a89ba781f8c

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar15D7.tmp
    Filesize

    171KB

    MD5

    9c0c641c06238516f27941aa1166d427

    SHA1

    64cd549fb8cf014fcd9312aa7a5b023847b6c977

    SHA256

    4276af3669a141a59388bc56a87f6614d9a9bdddf560636c264219a7eb11256f

    SHA512

    936ed0c0b0a7ff8e606b1cc4175a1f9b3699748ccbba1c3aff96203033d2e9edabf090e5148370df42fbfc4e31d7229493706ff24f19ff42ff7bef74a6baad06

    Download Submit