Overview

overview

1

Static

static

1

3956175e4c...3.html

windows7-x64

1

3956175e4c...3.html

windows10-2004-x64

1

Analysis

  • max time kernel
    93s
  • max time network
    186s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    31/12/2023, 14:11

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    3956175e4c7b8dd88f79c16d3c304b63.html

  • Size

    2KB

  • MD5

    3956175e4c7b8dd88f79c16d3c304b63

  • SHA1

    d2ff1533f08a8e44192b2d8b68a978cfe7d68e31

  • SHA256

    15ac0d88ee02a803bc486f9cd46bc60daae086d1b5706a1700be36700602920f

  • SHA512

    fbf44096b3ad2866106f386ea08a8883a97df999aa34cb011589c53aacc6b2c23d4b309a51ee20c2dc3f5d2d9e54bb85d019f145feb573db03e28662d518e7ce

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 61 IoCs
    adwarespyware
  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\3956175e4c7b8dd88f79c16d3c304b63.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2312
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2312 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious behavior: GetForegroundWindowSpam
      • Suspicious use of SetWindowsHookEx
      PID:2872

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          5be1039e34d86c1cdabdb5e57b646247

          SHA1

          89877ab8af350ab976a013b2bcb4badd061302e9

          SHA256

          a658959da79939b72227a12276689ef1c165ce0f642daad6f94efd2a07aacee6

          SHA512

          ebb07e477cddb80988249392891debfdafbd66e276fd3d3dd257c6440c33bcc2cebdcd0f64ac8b3935ff1b619566abeb1ec1e140361d77b22c5249ba13eac7bb

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          4252cbc5c7f0ef08a9eb87a33de2c526

          SHA1

          3e6ee27ba9a37c844812df4cbfd8ceed0175d13b

          SHA256

          832438bd9cd6d67bac0fdc8a1c9235295ef5211ed21f8eeba42cdb0112ea388e

          SHA512

          c9e9ba20d7cd2ca03d7b74b75543b4f0bae5e5ba713ff639bfdfd8f10500a3ff1d2c2a91973cce59cf1bd88a460227c935d55206a2f468206fe464df05086388

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          48072c3c967453cc7cf484de3cd8e982

          SHA1

          dcbb9ccd6f094aa2e24546953fc4f5ee0b54168f

          SHA256

          2912dd771de96b9732b96dac35b84fb7b08c2d1633ec49487bc400249e97c089

          SHA512

          26d4604b266e05758e0933b5abf30ff65946f72744d1db54e4cc2711176e56e51563075b28f61aaa0dbe2e12d0e8ff4d99b2797f7b95dda0d37cd7d74b579da1

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          4668a3523fa4f3859b52dbc49bd740ee

          SHA1

          6b0afe6c468d1e511a99bcd130d845f03cd944f0

          SHA256

          16c700e57a9e0997f23cfd7c179df9502ed6e0a044e8b91a6024f26ff6959887

          SHA512

          64e124f2adaf154e917c16fb6c4483a599c6ffeba1c770996ce9b61adcdb5294a6694762705ea15749de3aec679d3c6a01e25e3a8de517c49de2cbeb74132fbe

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          5e3c270df2cc1fbd2f763a6e20d0b13f

          SHA1

          91a82f54d4252e4274207b1f98f2d97ace997af4

          SHA256

          2697d113e1215e5780c01ebbd8068830e17732abcf6fdc1f12da20a9f078633b

          SHA512

          f2332397a743cf305c96ac8cace882adc2901edadc4ea26dfc44593525b07194314a0a71e9a7052b8771939c982c3fafc85e8d4d1ff2dfd9314e635517c8f645

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          74f8adcd11bbd4b9cffaffd0a9294e34

          SHA1

          bb5f6c2790cbe5c3235031b09764a89e06e449b1

          SHA256

          39681d48e5e789ceb3d8cdb547686fbc9693a6d10945073854f404f44799fc3b

          SHA512

          494d7cad0ce714dd63c4be9cf339b5f9eb48cbd86e72101551af310ad76c9330f79c22111b1dbb3c606ffbedc439925c98ef5be9dd3fa8e4fb81214f212fbd48

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          c9cfe7341288d6a869881fc4701904a7

          SHA1

          093a5c719e59e2c21b555aec96e84f424961fe70

          SHA256

          0a9f9dcf753eff0dc291693e8b9798b136de42d26364dce4f5e27b8498b7b166

          SHA512

          e4931c33171335a1752d72420e84667ea76d80cb17e4fdb4eec01cc3b404c8f775f78b38184d51d96966668ee0deb951d75c891e6fe34f587a6f927378104a4d

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          76d05ea1f49d6aef7d232246fab7a970

          SHA1

          826e8738b3c9e1d5be9c3cc5469631a980a3f020

          SHA256

          01dea75a356da8ef9f3750a4fc3b1c50729ce622f2030d30d90a99978770aa91

          SHA512

          e8c47a404142e05cfc172d72d3ee7ed8a9bbc5f413b1b1f0c658e363153b7ef31e22ad31f8c2276993e219a152056f402500769c8c10e4963c3e0c9c56007187

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          f7920da9f722b468325617b0631285ea

          SHA1

          b58c475b29adf5cf038f55ba4d784b676e17feab

          SHA256

          d740f6e091b3a10f520548256a143ee7408b775c135656231393f6419e54e4ea

          SHA512

          84d543474f8d4a08c0d01a15c3759b8139a301badd301e7af50ca9e71811a8fe872d096c7387fc27d8f0f35e9bd02384ed3fe96eedbee9c382db5f94d9e6eca0

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          aad18f907159b87b01e302b12630ee36

          SHA1

          6ed450aefbce1233349d560b4209078a09b16757

          SHA256

          b4228265eb75cdda42a1b2f0257062807b868425406eb1942a9ffdd026939e83

          SHA512

          9bb86b2f7f7ac4f613cdc1565ba5606183761fc73a0e2ed22fce7e9e86e39e33950f41bf8ad1545eff70019a0f9c0f9710d4f8ed36c1f878041c60fe4699833c

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          80c063e6d4390e20f05e7eee70bb925b

          SHA1

          39e06c8a4017e07b1c632747c9ca9f10f906993c

          SHA256

          729424c319fdd078eec065b799c0382ccadf0a5247ff4032a5477b88f6228c21

          SHA512

          065760e5adcff22f6429324978099c48e0e51307aac876b8b5ef1e7bf7a2da834353400c4157945d0839aabf3fb02d130efe2774330663c4a6dafcd968452279

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          0f18d1fe45d20f5ef94782e0169247fe

          SHA1

          4d81c3753589714140045ad9ef4c58b4fa662935

          SHA256

          60c5cb17db0e106612c3073ab6aa6ec955d8186ae9f839cdea72fc06a1279d10

          SHA512

          cdb9c848084bee3c9d485413e74b6e65376579126a7cc0abe627f4c2159738a71e46b5843cefde9dd36e16762af9b85e7d863ab051348d89a8286d0f009dc2f0

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          fb8e4b3837ceaead9d7d431de9d4ddb1

          SHA1

          787b53dbcc8a327c0040827349ec0767d6615999

          SHA256

          d1832abdb8fe3f142630dbd2b6e648bbe2d0a1e50189627b8151e07718b4fc79

          SHA512

          92c4adf78edea80c61b9f48771d6c69b105b8ad39d326612c335292ecf24a5398b4bb69ee2a8cee4f27cf571e13d23db71e25602c0600dbf8e7855ba316762f8

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          01a1dd8d5bdfca9ba91417db05152963

          SHA1

          2d3c6ed58fbd8536a84e9149826c26c6d6f54423

          SHA256

          1e1883ca39139559b9340384f96627e553e24987328d0bd00d4946dbc06ecf85

          SHA512

          d319ddf939bc7d40260ba0f9f49071ed495837fa32f98586bdc0c2141d1588068b8987f345275f9269e81d09bd863c46c5694ffad16939762a6253cc60af811b

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          a28ca53e126193dc09eef9a78436a641

          SHA1

          4d7c510677a7be5d175db95d78b59596d4a9a8af

          SHA256

          7470b0ffe4085ba286c13b50675ddec17dcf11ee0402befa7c69edd5e8666466

          SHA512

          95e47257918955e5e71f31fb87a97b99ee215c027d0b737c8b0c5a4de5386a34087426dc8276c8ccc9a992116fa330d73e10602526d08b4164225366fa794bac

          Download Submit

        • C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\GK8HW4K7\nudismphoto[1].xml
          Filesize

          13B

          MD5

          c1ddea3ef6bbef3e7060a1a9ad89e4c5

          SHA1

          35e3224fcbd3e1af306f2b6a2c6bbea9b0867966

          SHA256

          b71e4d17274636b97179ba2d97c742735b6510eb54f22893d3a2daff2ceb28db

          SHA512

          6be8cec7c862afae5b37aa32dc5bb45912881a3276606da41bf808a4ef92c318b355e616bf45a257b995520d72b7c08752c0be445dceade5cf79f73480910fed

          Download Submit

        • C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\GK8HW4K7\nudismphoto[1].xml
          Filesize

          365B

          MD5

          d6a9eac384f062d2f4adba1bb764bd3c

          SHA1

          36fdf4621d56b71ea34a34648801baa57daee7c1

          SHA256

          34b66f74807893ba93c27ebe2c6a2a86eba3a1cf00ca5b074cb69ef8a61f3bf7

          SHA512

          083dafb8dea63afaa836865cf7f1e5e14b1336f6b847d20eccee08c7c52754c253e10423da0c5d704ea1913a8cbc55c1b2f0224d092c927b49384598c26da4c3

          Download Submit

        • C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\GK8HW4K7\nudismphoto[1].xml
          Filesize

          557B

          MD5

          8ae87915b204957b8e2f2b497d81f853

          SHA1

          dfda7f801bc7a768a840fdd020efe7081411f23c

          SHA256

          254467af0358dcb95ae2c54ea554df9e54457d1961f6ceef1738244049b10956

          SHA512

          5dadaada91cf3ce052d34083aa45d092e29b683c925c4597ccfe0734e9d8020af8957c19e6d4c13af5b7822c4f0b7d5d62cf6f6c7c29baf2513d3836c606c9ae

          Download Submit

        • C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\GK8HW4K7\nudismphoto[1].xml
          Filesize

          763B

          MD5

          838697fc03cae5b628222bf3f383e544

          SHA1

          34bc1d8c58356440bd38622dfa733b6b30b28003

          SHA256

          8ac8cc5c80d3e7720d3cea28860be75007d7b6bb983dba2021304eaa465bb0b7

          SHA512

          447008db5b9b0c3c38e102f875ef644129ed40a7226fc9d9e0bef69a42f223fb8cc00710480f8945d4ffc71c2acb3dad624136d0b21e5b3a8c2f1bad17411e23

          Download Submit

        • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\D0I6KXNQ\favicon[1].htm
          Filesize

          55KB

          MD5

          3ce8f968e0bc4c9d14f651f19d54f533

          SHA1

          fe8a983f4525cc350e64afa47df12e9f049fc092

          SHA256

          2c81f630b1bac320803c5224b2bf32234a658091219d67a269db2adb2a8b812e

          SHA512

          1c67630acbc37c46f6666326bbfababa2a7ca8e27d5aebc4b138c2f6840e1d6a15448184142f9ab360262f825102d28e0b5ede8eac31a0e50d521d9030df7fdb

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\CabE504.tmp
          Filesize

          65KB

          MD5

          ac05d27423a85adc1622c714f2cb6184

          SHA1

          b0fe2b1abddb97837ea0195be70ab2ff14d43198

          SHA256

          c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

          SHA512

          6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\TarE536.tmp
          Filesize

          171KB

          MD5

          9c0c641c06238516f27941aa1166d427

          SHA1

          64cd549fb8cf014fcd9312aa7a5b023847b6c977

          SHA256

          4276af3669a141a59388bc56a87f6614d9a9bdddf560636c264219a7eb11256f

          SHA512

          936ed0c0b0a7ff8e606b1cc4175a1f9b3699748ccbba1c3aff96203033d2e9edabf090e5148370df42fbfc4e31d7229493706ff24f19ff42ff7bef74a6baad06

          Download Submit