Overview

overview

1

Static

static

1

38c122adf3...3.html

windows7-x64

1

38c122adf3...3.html

windows10-2004-x64

1

Analysis

  • max time kernel
    127s
  • max time network
    140s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    31-12-2023 13:52

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    38c122adf399460273f7953a49e41173.html

  • Size

    45KB

  • MD5

    38c122adf399460273f7953a49e41173

  • SHA1

    492ce522c78a3fd175ca4b314cffcf134744a594

  • SHA256

    49f296516065cd13d7908f7434a60b7092f84c2f713cb11c381973c67fcec3d5

  • SHA512

    c7b4db96009b77859732700c2dc0fa818874510bb26c27f85e4179e0fc36399ba0a64d8c7fef4e95f71fb0cdb94caa742e747b188da57fdd25815994388a5944

  • SSDEEP

    768:ckMH5ZtMoOAO0TjtiZe3hgfZ/WCHQZpQ4FFJVFLF0Fk2rfhcD24xM:ckMH5wsTJce3hgfZ/WCHQZpQ4FLV9Gj/

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\38c122adf399460273f7953a49e41173.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:816
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:816 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2704

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    66ac99fdc1e2a76449ffce94701554a7

    SHA1

    92fdf2933c5101451a2ae9fa2ceaaefe99498c3b

    SHA256

    06c0425b8287ace2aa180bfbe8dca583842ab3ec00c42ba9f86f927a5f738484

    SHA512

    e53d49aeb9d71c55048291e2cd28d521774147b147b55106338b6c3e3ac11e195440d0db366688e2879fb4e7448ee3a450af55b73ca0b383e831b3f7017f5058

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    0c997fe59c283abe16e3f468ca313c2a

    SHA1

    752afb4ad0f068bdd74e14199a8ae91ba51e699c

    SHA256

    97a8b2819d38c3d508e2ff49a147e78fcba62e6a05e9c81ec2987ea7a7d24e6c

    SHA512

    4f28483b42a4062dbe31e6ad2102b96ccfa96c4bb9cb3caa1d45d369cd1df5f0f97f2bb4e1024c351a7f4aaca5262e0efd5cab5889541c30eea93057796f1e82

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    e6f3dc468c2f65ba11071a3c1b26c835

    SHA1

    9bace60661da298fb34df689a74fc1bc78deba70

    SHA256

    7dbc8bf20b1ebfb98e1722bc3dfaf27c7998c4dcd94452ef8b5014b48ce1cb2d

    SHA512

    3631edea77f235f9d5fc1e3dd82b6522a066fb9b9a4e11c180566f421955b5ba7127eaa9f8411fa92fa079906b25861e8cb81ded6f3e727602c4e02a9128f420

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    070a4ad5fbc12d5a0d1b4305c41a9672

    SHA1

    564cc6677f6d887581f3410b2e7bcfa1b12a11b2

    SHA256

    05c8f6bc94ed1ce30b3d2b1427c8b560cb5ee3ca70355f9e43ee52bc248e66ce

    SHA512

    7da68f135495b74adcdaacf76ada4c94f3ad4ac3ecb7a0097b865d63181b223c7c0f250ce8e2bb337671b6cc7d9c6be8b389f8e6344fed59282c8d5c08f1c5d6

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    f25ca3a63666450b5b945af256b8b443

    SHA1

    2753056c316a13f5fe753cb86008180186166149

    SHA256

    7472d02f45998910723211033d004523e1a99e09c88ac8a97a05c6745d8dc295

    SHA512

    2df744d0ea07989c876643c8cfa42737bd04d321eb72fc16688e7ce7f5026373041e9c0c1dd94b215d858f1d036677dcd50d6289d59481b7426f0297b6d6633d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    15ee527301b45aa930411591b4112e37

    SHA1

    03a837ab73129fa66d14fe77d6e34d36c489fb21

    SHA256

    09fe40c8da5e384952ecb4bcf4feecaa26eee6d3db7d32492d80b25c3d408cf5

    SHA512

    6edfc18b011c9079dfcbd7d6003202747cf2ca0aede7a015b4c78049d2814b0f0031a254d6dfb7aa70d10cb34d747c92c22202e94b400dabb8a8825e516145e7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    07e61f87a0d928696f84d592df867d0b

    SHA1

    90100515d0110e25da99f3f23237c43133fa4783

    SHA256

    9331eed8232989d57db1a57b0f3a1fb6dfbb70d1baed3e8c14833461ce65c128

    SHA512

    7f60ada65af3fb6188134900893bc0472a7c4ba6acba75f37e11610035459410583c01bc5ee9dc56d0be32141344ce200eb78e8fa5954226ca8af3846afe78c0

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    ac03b8609e21b3387f38ee01ae9463d5

    SHA1

    a89bcd1bc2ef96be12802c31238f96ecf05bf546

    SHA256

    0f446fbda739b7c9805b6123ebd87607a01c708c3abb5c8f9e022efc91b95eed

    SHA512

    8bb219e15a81e8d60f4f8c4f79d5aadae9cdf2b93c4b010a0995d045405100cc3da3ea65d392e5a6f4df81d8a1eea5b5a7d165544bb793474a69fc2f3bb878ef

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    fc6613bd967382d45fc6e537092062cf

    SHA1

    0f8259f59c2a439db21c44706706a9d4a18d23bb

    SHA256

    250a041fb6156e666dac2de23e392a73223511a8e1b71e3f558163424b46b21d

    SHA512

    165d6c580c9155e9135ae5a5872f43b6b6f2fac5e3b4ef66e7c6ab0549fd2cdf2ffe113904d3369b2873df6c7b9ec17e9410ad03ae5b70515a11cdac9603ca78

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    dc9230fa09a00a702af04f4a4de6b124

    SHA1

    68282a3836dea81ba15f4fbaa2452e8a0efd64e2

    SHA256

    0691d5196cdb7b92fdcabbfbfee2623ed4509abe8b8e8767e91a1fedf4a60fa5

    SHA512

    e752dbbc5dce03184d953d44a72e6be3b48d2d5e825d06917022f4f588291752a2f3aae981497a86c68b7d367c659d7c855aefafa45e563a46dc729e2184429b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    30fdeb219262eb2841a4452d49b8ecc8

    SHA1

    128ba6d11600dfd3c9850b0b8e0675f13ba33f2a

    SHA256

    9308175b25ae0e87232b17d086fcc28e7539baa6160843e3b79959b80399c5c2

    SHA512

    abad14b2f424b29cbcbc15a03ebd08001381f54c69349b3cd27d5bbc8c444abf73041952096285607252d5a87ca625e720c04bfded749510f1eb09c563e1a4d0

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    5de42e99850087aefa4e1a75f55bba1a

    SHA1

    affdceef9f08fb2a88d427e8cd40636bf6f47c60

    SHA256

    6e942ee7dda4e71ee45170aaf88b17dac8f766cf565fabb020754f48bf5995f3

    SHA512

    74fad6780274aadd9f0b400697c49e7b0a52451610ed28381393d1adc0b60c1ecd32477b2bb4d7ebb2601887d8700faa20b34bbb3e015eefd2d401938a175040

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    476b6b8d228c43d509846e550177cd2e

    SHA1

    884995f75296225d2055d8e3071ba6916af0db16

    SHA256

    12f9170bc7e4916487f6615c576e8ab9bd06beaf08dfbd1f10daa78ba1f4ec7a

    SHA512

    710841eb3880c03ed052d78766ccb3e6ce52f0602340b5b3424feebab6a4471594160b6e266411f80846123c8ff6f6b60837527ba5bd6e50521aa42a755be4f7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    690c671660481682f5720a4210a12b2c

    SHA1

    159a8f8c96f69cce386bc8c1ee0e8f9c7aa8243c

    SHA256

    0ef3268b20fe0ed0575ab5ba0401152cb35b374f85769e36357134cb514a3bad

    SHA512

    2b2fdc6ff6bf5b66188a29aef5d47fb078b89e559d9b845d302d865aff6d6abdf60271b6c6a541847e61c116efaac2b78c8f6a66814a73cb8f296b1f7b8f3d1e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    c5fc700ddb803731ac09f4578cbbff27

    SHA1

    80f25bf28fd569fc71aa678a4d0426d095b0508c

    SHA256

    6b9171e1e9169b00e56e9d9deb96668dcf57791feb8c587715698843b017dcbc

    SHA512

    6e06a7ba19453c580d239b7edf027650c2db73856b8a8118f7d51a10537a0cefd62a195f03363773b7f55c1be31058d300e060531ccf58c0b851a653c6c77d12

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    1944b7d18cd8979719ef1ea7e97e006f

    SHA1

    f3ddef6857bd9753478ac60779ae10b3d42d7888

    SHA256

    ef31cd79eec3884e839dd1dec114974031f81f584dd8ae78f8c1d2def4612984

    SHA512

    d5309f53f3d502b114bccba2fbfb531d8bf8460e4120723924c2d9bd61a5fd485a8cb9a19ad066c595b5e6e30ba1057c9c2e94ae370977d29ad8ca711d5f021a

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\05ZIV8W0\478691279-postmessagerelay[1].js
    Filesize

    12KB

    MD5

    92169c8a0fbf6e404267d0705cdbdf42

    SHA1

    a5cd88b74ca5ced239cdbfb458fe25540d671f46

    SHA256

    dba668b49a111527aac8f616b9053ea57c944e01a84ebdcd02a13da921223384

    SHA512

    8c5d35ea512fa7be367cd9a9ded2f23822dcce730e5502a355ed0d48949ef763eab13be0d50a66de6b0f8419d6a002c12c4ddbf20d97f5393ba922e48a4f02e2

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\HVBRC7A9\rpc_shindig_random[1].js
    Filesize

    17KB

    MD5

    f019fdda31635d2a31b151ad8ad56c7a

    SHA1

    6adcbec55f66ffaef83d9a134423aa98eb2a2189

    SHA256

    c7fc0b1526533002c956ebf8e8c42c3ad3f96c41ace73fb4063cc89051944831

    SHA512

    fc278c12316e098976833882a38c788d812f9d36bd1b9b2b8c87dab4dc906af26a860df95436ea1b7d509236d44d0533d475a153437f8f5d42653fc28a77ad64

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\JIH1AB02\cb=gapi[2].js
    Filesize

    64KB

    MD5

    ee01651d160cfc55249d6011a3c45916

    SHA1

    79d6121df6575974ad21dafce33ec98e3f2f0a7f

    SHA256

    639d75299973c7d3794eb7eb129e3b5a6139f9f521e1f14383abd0fd501219c9

    SHA512

    8a39dfc1ff2c58ac106225976aafdaf7befc0a28903a0c65e2c272e1967c3336af2b477ec12604400bb8e16aecee6567c9cb9d157e3d54649e28b9b2f920432f

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab4250.tmp
    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar42EF.tmp
    Filesize

    171KB

    MD5

    9c0c641c06238516f27941aa1166d427

    SHA1

    64cd549fb8cf014fcd9312aa7a5b023847b6c977

    SHA256

    4276af3669a141a59388bc56a87f6614d9a9bdddf560636c264219a7eb11256f

    SHA512

    936ed0c0b0a7ff8e606b1cc4175a1f9b3699748ccbba1c3aff96203033d2e9edabf090e5148370df42fbfc4e31d7229493706ff24f19ff42ff7bef74a6baad06

    Download Submit