Overview

overview

1

Static

static

1

38644867ff...1.html

windows7-x64

1

38644867ff...1.html

windows10-2004-x64

1

Analysis

  • max time kernel
    146s
  • max time network
    151s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    31/12/2023, 13:40

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    38644867ffe7f8893c1d8a2966d0c3c1.html

  • Size

    436KB

  • MD5

    38644867ffe7f8893c1d8a2966d0c3c1

  • SHA1

    321c387972d46bbaacf93be414c67d9bbffaac4e

  • SHA256

    b2c54478559a595da178c8d5b5292ca74b3cad1206d4cce509a68d8755fb994c

  • SHA512

    c26c1c87fe59c0e6a64e3b2b80db070d69c83ed7e9bd3bff9ed6f246e826cf28ae33632d177d192e8572155a9e7d154729439aad9bda42ed189a0a63e0feca4b

  • SSDEEP

    3072:ylQckjr7fRQWvhwhz5EeXyHyPaqBaCFneasBGtwDhPvNWcbhU94QfGqyhv:yMjRsy/YKvIh4QfGq4v

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 38 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\38644867ffe7f8893c1d8a2966d0c3c1.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2872
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2872 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:1984

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\070E0202839D9D67350CD2613E78E416
    Filesize

    1KB

    MD5

    55540a230bdab55187a841cfe1aa1545

    SHA1

    363e4734f757bdeb89868efe94907774a327695e

    SHA256

    d73494e3446b02167573b3cde3ae1c8584ac26e15e45ac3ec0326708425d90fb

    SHA512

    c899cb1d31d3214fd9dc8626a55e40580d3b2224bf34310c2abd85d0f63e2dedaeae57832f048c2f500cb2cbf83683fcb14139af3f0b5251606076cdb4689c54

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\070E0202839D9D67350CD2613E78E416
    Filesize

    230B

    MD5

    b2d3520d0a69242a254e30704118568a

    SHA1

    c71a19e3469cc6b6011dc59922112de9e75094a1

    SHA256

    8e174b4d189b20e46a44a8c260c66e0e1b9425d24f49737dcd7df6cd83c0ef69

    SHA512

    7bd104b0be3f1ecfb2de0aa45cd0a182da9e8fe7e253b1d7559260ffabf48511a24aabbfd30e33dd1f7e37494525d785d997b84db38bc3a45477238abde6011a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    8e7331c2dc382147e1ab0fd77c9a7e0b

    SHA1

    00fc62648d42320a65e12ae0e30c8618ea59d091

    SHA256

    5463f2cd9356c8d30c2c20ebf309c592958bff7411c0c0d9a478ae128d76c664

    SHA512

    3cfcf47658fbd14c9d197f5db15c36d0d0f02163b6c26f41a49e17b2cc692ba13614394c2ec3d71b14ece85ba46af8e12a4d8a6bdd3e695787c3aa62a23b768d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    0dace19fd14ad746d1b65ca9cbea2b3d

    SHA1

    f2a838bdcd6bb4e6e4e72c6789770356bdb1c641

    SHA256

    7ac8f944995b26ce57a4e02c578cb0def246720be74331af19611cfe64209497

    SHA512

    064d060ffb49dded1e4f118822b4f92a11e7c499c80b82372316d4d828eee61ddb6571fbc28ea8c6db2e760cb56b5ffa3f2ca5fb7fb886af58ef2379f97ee967

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    dec3018b247fce18bcbca679cb22ab53

    SHA1

    a79c07dad861c0ddb1d732cb6ca21e3778eb39d3

    SHA256

    0858c337c1542fbadab1d85496f65b9e38d60dc477bcf173a6205817d7a10a02

    SHA512

    5e467870c8bfcb6a4a5df86aaa86d896fe7aa622cda8ecdea0d2df682a21efcd6d9eb1bb60afc69be1c09d8c70b53d62ba357b6f1c0cbfb0b7fa01c99f6d13ba

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    3f5b3b6c2a9be323592b60040c48cb78

    SHA1

    cd3b8eb77df32c884bad6204d30f642a3164cfe9

    SHA256

    79b8f00aa77ae3e3a33be0cd1e9ba8ac0c2bf05479232544aca1e8caa804ea2e

    SHA512

    12bf6d3f375c72638d08c4af22fb162a997758ab348488c2cff7a4614d3808abfe97fdf0bc3ff5d64c5594ab64e50f36a508e43f0fc07fd6f4f06dc3157e2e86

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    8e204738821f4040ea4962bca2a474e6

    SHA1

    31fc7f5222b8911c409afab5791851a3bd71da75

    SHA256

    10a5c5f501694e854044cfa588374efe3ea823a62b8dcce4a2f796a6b3547716

    SHA512

    cbcc627f7fb82dc98cf72f7d1533e1c4408c3b44f490b261295964d671cd80459213ba6122949831550827a03898845604f278e932fd106213016bc233c516fb

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    f55ef110cfc0ba8976be4fb6d156de65

    SHA1

    d881c6570460070e66188f802fdfe1c25af0cf4f

    SHA256

    5ce62163afae7ffdf2875fca7e8967ea8cc5bb5298ea188ff5f6b584c4c6e0af

    SHA512

    47d3ee18a6ecbd7518d73e75410d68d66552470fbb056812495a4bb80828b8169abd13a6ab744599059b169494e07d7aa3e84b245c718bd8bbf0a87f98b2f626

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    a3c060bb1fd2636b840c91e8fc7d9f03

    SHA1

    a463b8f173dd8393ec268c49cc4d1ab4fcc4e11d

    SHA256

    a68bd5d149b728b25d2a18e1125e0b8d00957f304690e74c45022d4dadcb8442

    SHA512

    a481f4f7596878d529f0d5f40f5861eefe8777c9b0f55e1755a197c9ab26c9a477ee5646b934f2226ba52a920e2d22fa46403a89d227dfed3f3045167ba1cdaa

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    b27fd0fa32cdb36a7464f0dfc087c4da

    SHA1

    e8aad1d360405efc081f9ca5d1b98e1c8e71cc94

    SHA256

    d0d688926826ee35d8842ebbe009710738441e745decdaf04007dea6b707a731

    SHA512

    413ceb1100bf3a9be820769facbbcfa0f7c20af83ef15a3b5fb11499552e19a246257efdf994c78d62f2c91043a5c54cecc4f205136b133b125cabee5d0581fb

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    5a192f9b02c04dd2e494fc7695856706

    SHA1

    5415ee0fd1b7cb613404b2c42ad2bf8c7297df83

    SHA256

    203db897887bc1cd5c88d229e446f72e06d3e6ca79c8cd5e95efd3b2fd33209c

    SHA512

    56950b52028e653c0f172f48e4d6a257d2f69714f5dfd0ee499a9eae461dae7695b2b4b087b89f547290c4e884e2f40af415744dbbbc2d6dda2e7a1fdea44469

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    fea02c5bad657b6f1367387f40152475

    SHA1

    7542ba17ccebb5909da56bc2046902223886909a

    SHA256

    8da8677efe5d3dadb4c800045e5d21be4c1c46a2f4e49df6b658bf29729ff324

    SHA512

    56fa6b3982e517bf1800d4e5c5c017917b1dcc3a5b61e3df0998c7583a66f9f40d97f4376ca08badc53e3ef800d9051b3cfe2ae5806b435eb4c2b4a0d4d0c4cd

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    746fce43d8bd3a3c53793ba6ff6b1671

    SHA1

    bf976cbe38bbf1cc7cff90833b76f4eb7ce9f54b

    SHA256

    a44e53c7156e5b0c03454150057c8b639c76af9fb669f826c4f3cd474b826339

    SHA512

    fc846816c6f1bec0231d3b1dfc412653ab1fbe195c122bfddae0784c8b8f131ce045cc11dbf6654f0a92ff01f8a89b24890082d91a747f7e309e0ecae2d18b60

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    22d45effab4198d80e29055ce317ee2a

    SHA1

    55f2ffcfde8aafa8ff7ca453a74ede37b9481b28

    SHA256

    161a8a52d60a6aaf90aa8f0699936e350f3ffc74396e8dc003ddb78f06b9655c

    SHA512

    70479753987138d333accea148106bf7b9074e3e3dde69606e07cd304cd93669f19585a574ba14349b9b6179871263434ed330de0ceb1e845287c6f7e504eb9e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    c2c94d361619f9f16fac73725d0b6220

    SHA1

    9f79fda543f52d0be2a6997d837baa176af46cda

    SHA256

    a2de522bb5d682f816ac211f752d9539e9cf83e171edf9ae60dcc2471b29ea44

    SHA512

    3674f6f7084e254088efd18944ac9bce5cec623fb2d4dd9f4b7b1afbd272a2887658092e05c4c76576f25ee0c085acb169015335c39e88f05989fbe0147be191

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    266d2090ac14308fdd62d5834c7a95dd

    SHA1

    adb5417feeced5578a482ddee2acbd6dbeca6d9c

    SHA256

    f08a3d8128ae9ebee260f350bd80cb0084bbd7c1c2774f8e2470a211c0cd43f9

    SHA512

    69dcb7fb70ea01c4ce9ac91a6a98175e9e314844a197c8cffdbf01e1330628f046bb0007c2477e23a7f7abff2392d6e66a68616645f98cb4ba2770acbe058101

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\RU3RPYUN\jquery-3.3.1[1].js
    Filesize

    265KB

    MD5

    6a07da9fae934baf3f749e876bbfdd96

    SHA1

    46a436eba01c79acdb225757ed80bf54bad6416b

    SHA256

    d8aa24ecc6cecb1a60515bc093f1c9da38a0392612d9ab8ae0f7f36e6eee1fad

    SHA512

    e525248b09a6fb4022244682892e67bbf64a3e875eb889db43b0a24ab4a75077b5d5d26943ca382750d4febc3883193f3be581a4660065b6fc7b5ec20c4a044b

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\U9VC31Q9\jquery-3.1.1.min[1].js
    Filesize

    84KB

    MD5

    e071abda8fe61194711cfc2ab99fe104

    SHA1

    f647a6d37dc4ca055ced3cf64bbc1f490070acba

    SHA256

    85556761a8800d14ced8fcd41a6b8b26bf012d44a318866c0d81a62092efd9bf

    SHA512

    53a2b560b20551672fbb0e6e72632d4fd1c7e2dd2ecf7337ebaaab179cb8be7c87e9d803ce7765706bc7fcbcf993c34587cd1237de5a279aea19911d69067b65

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab584E.tmp
    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar591D.tmp
    Filesize

    171KB

    MD5

    9c0c641c06238516f27941aa1166d427

    SHA1

    64cd549fb8cf014fcd9312aa7a5b023847b6c977

    SHA256

    4276af3669a141a59388bc56a87f6614d9a9bdddf560636c264219a7eb11256f

    SHA512

    936ed0c0b0a7ff8e606b1cc4175a1f9b3699748ccbba1c3aff96203033d2e9edabf090e5148370df42fbfc4e31d7229493706ff24f19ff42ff7bef74a6baad06

    Download Submit