Overview

overview

1

Static

static

1

sample.html

windows7-x64

1

sample.html

windows10-2004-x64

1

Analysis

  • max time kernel
    150s
  • max time network
    146s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    31-12-2023 07:29

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    sample.html

  • Size

    21KB

  • MD5

    9631e0c3176be811e3f296284604d075

  • SHA1

    8e8976304a9db36628328b23c2584b1452ced827

  • SHA256

    2390e379bc5dba8f21643ad7fef68b792668c0cc520c10322c33572fb618cbe8

  • SHA512

    0d81e4ff25bec62b2bf06699722b52c30161c425b80ef4864fc4290cfdc687e3d0cf0838f9b3cf6cb7885d9afb8c003e131a5113bd461d5200859a734a330425

  • SSDEEP

    384:VSFpvsrulzCmCAdLD4pqSzuXyE/1RFPvMotdvu3hl:Vo90FmCAdLD4pqSzuXyIM+dvahl

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\sample.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1172
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1172 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2052

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    ba2e493ac3667012b247b78f3c0082cc

    SHA1

    0821c128aae06eeba45ec2ed46cdf1fac15bb16e

    SHA256

    75552739115a935e11e8aacc088f045c72df0e5de91852fbd2e12e3e99307814

    SHA512

    b9d050e2c9e4d8f867c7f3791eb42d2ca69c35816a378f8866e0c5c68291faf7dc10ba88d39f506a73bbdb4254339651c57456a14500458666d03c0c750e4fca

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    571700514795bbcebfd270c605519913

    SHA1

    3f29d82b295d1db4e686ab5d0deab7a7f7184da1

    SHA256

    f1e14cd58577c565a6f1ceef0fc897a113cca073ecbf037a5955a601d9039347

    SHA512

    9cbf84f1b569b85148600da5366d33ddb95b47f2384be56f0df70bda7274420570e497764f442d618803c624804798e2e9652116fd0d35061af755b5f38c2066

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    3282db38ab3b53238908c4444233b8bd

    SHA1

    9de6e86856fd3c58df91c4af92ea53c4bd882591

    SHA256

    b530cffa76b8a35ab8d30a2c98537efd5976719fa74ea71da9bba2627bd0d5f4

    SHA512

    77d5216c24fdf257ec19a89edfa7516da232bc75017a732b48132f1f79e3e9caa5a35eef4fc0b5a795d431186ef4a9b398cde114dbb3735a22534751edc26f51

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    ee34417a0eb815e595e638882ca5bb2b

    SHA1

    bee56edb7696cf46454a319a445943d4057a957a

    SHA256

    509f3d89718921d8e96c65f6c50b570c76d6a5ac680f0f29f5142a919ebfa6f3

    SHA512

    192513d8efaeab039834bc916bcb93c8f72d687bb0bf8f574d3fde7ac09b96f0e2a04a86fb2362f64a38930010af25b80390bad358a4db139f90e72070ffb5c9

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    7a036924ea4bd746879b0f0d10ede2f8

    SHA1

    792fcaffe8d80cc272b7a3824a666183fc74275f

    SHA256

    ea4f2e213c47e7935aeef7cd96cb32d5e69c9c3108783a3ccefcf5d4a626884f

    SHA512

    f56e7969d1c990028d2beebf2cdeff05739b49c1bc7582f2194aace697ba14b4c4e50111d4b2d9492c1458a8e284d048fd1f879f04c3c26b824bb48e9bc10987

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    c6d2d2c0084fb1c2b255208e5dd55b83

    SHA1

    b5ab4285658f1c0e53266779757a85e10c5d632f

    SHA256

    572a5a3cd5ee8d263840d43d5af27429ded84bbdb4cd93ae4143837ceb802122

    SHA512

    d30a46eb3ede980a502e9dd9ecebbfe88a3798d15d54cbdf13f7e7e1511639cc70ad342e58162845d0649eada4a0d608609863a6b9619446e0a04aef659cb72b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    4303a2b64eac98c1919c55bc4632cc32

    SHA1

    0397506e38d94c5485d6ce18f289a20c859bd21e

    SHA256

    748c0dd566f19a7b8b7e0f643f6ae2dc3642034bcf880b71ad944420a2e52dac

    SHA512

    dee6465fe2ef7f980166984d07f9124ec2b4174d1f0bcaccdce45b203f52f186a7dacaf3622c2f8338ac8583135ba846fbfb25c650fe41294d03f37171e735d5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    5251bb19774b99535ceb6b3fed8911b0

    SHA1

    2805133869518a67725ba00c00187ff3a6ab7584

    SHA256

    9b2e97626e876ef09f6072d8d5cd57101113b8f806e4c6e0f8f3cf1a9f998f86

    SHA512

    6010589076aab072273d5550cd27b8d7dfd5d4f016555efcec6b209479e144d9c53c68c59c8925b26476e29699c1cd67b235a7e9262e937e6c515d6b3970a42f

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabA7A7.tmp
    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarA7D8.tmp
    Filesize

    171KB

    MD5

    9c0c641c06238516f27941aa1166d427

    SHA1

    64cd549fb8cf014fcd9312aa7a5b023847b6c977

    SHA256

    4276af3669a141a59388bc56a87f6614d9a9bdddf560636c264219a7eb11256f

    SHA512

    936ed0c0b0a7ff8e606b1cc4175a1f9b3699748ccbba1c3aff96203033d2e9edabf090e5148370df42fbfc4e31d7229493706ff24f19ff42ff7bef74a6baad06

    Download Submit