Overview

overview

1

Static

static

1

3c1be79379...3.html

windows7-x64

1

3c1be79379...3.html

windows10-2004-x64

1

Analysis

  • max time kernel
    135s
  • max time network
    132s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    01/01/2024, 06:20

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    3c1be79379d7f9a52b91f22a68df83b3.html

  • Size

    87KB

  • MD5

    3c1be79379d7f9a52b91f22a68df83b3

  • SHA1

    7beb41612faa525d7432917d132520ac7e5595b6

  • SHA256

    935fc588fe3346dfd0058dbea083aa02c141334d32ea1867db72d21c6cc5e1d9

  • SHA512

    3c01161cd28af4a0e5c2495d18e7bd67950072d1340acf6015de29ee4ba2d2b3a79feec9918e2b5737189fb0c59ed39f646b5c4bdef2987fab5119c75b29e620

  • SSDEEP

    1536:/7G5o+DKDY9pxaUdGF9tZlVxpvVfQj5/GyeSzgrdey3iqFi7W:frNvij5/Gyee0dey3iqFi7W

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\3c1be79379d7f9a52b91f22a68df83b3.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1352
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1352 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2196

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\24BD96D5497F70B3F510A6B53CD43F3E_3A89246FB90C5EE6620004F1AE0EB0EA
    Filesize

    1KB

    MD5

    066f25f02e2b2ee2af54544028f9dd37

    SHA1

    9167983ad24f65c762b7622a8f43e8a218cd72b5

    SHA256

    b208bbc90869834e2fe53ae058b5ab6c200f5c5a00d8b536989f65071568be8c

    SHA512

    d79e1b28bae5f2026cbc142aa0ee78552d20b477ef507b12ba36f1522c7be1b20b4d0e218a3755537d5610ef0852744e673149944f8b337ace006280e71c2beb

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\265C0DEB29181DD1891051371C5F863A_1AE11409F57BC5D68541053A9AA94231
    Filesize

    406B

    MD5

    8f7ce3e9433c3a17fc4e5bf6c68bc122

    SHA1

    be415af4033ad2c7b76f424fd7e585437ae59be2

    SHA256

    d920bd7aa55907a64cc957eb1234f031066112c069eb9de3786ad2726ab9e4c2

    SHA512

    81394c495e35dbb4dd15ad64eeb2663889101468b0d8a18feb7e06356af0b2d13547490ca4ce3eff6654d5c8cdbe5e35ad3c1e8ac093e1ccb392f9b65be9e58f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    9a58843b7803ed14755adc6a1fdb61af

    SHA1

    faf14c959bf3994a1ec1b732e70149e97e81487e

    SHA256

    3b507ddeae99a9f121ff7c8452d8caac34742d5ed2052f564f8564f07b4db53c

    SHA512

    9dafa12cc7ea25fcf84b2f2a77be13bc7b37a1661bb5f82fc1b23025bdbc3410042cb47992ba46ecb9eff070047fe534d2dfd9a049079a0e6b82df2113064b1b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    9dd3368c056eedcaaf4ac38dee2fbbf9

    SHA1

    91254f302a4227566097fd5336ea3631065298ba

    SHA256

    0dde3c98ff6ae60b4269f6acbf12a42e54c73d48e77a6ca38304e1300881d47c

    SHA512

    0b45c7f4d3bf972107ec2459901794b49c63c6b542e8d7e14f088acb430d7eaa7e9195abd63e4f97a0ef71224d045d4e91ca03d0a3d230a96024846c961aacba

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    d3ac7385b5e755a5699f062834acef4f

    SHA1

    326cdbb580b85eed06c6d8f927f131a4dde39543

    SHA256

    321b7f0f808d16167731537c39a74d0e112be561afd2f3ddb55902b025886cf0

    SHA512

    d8781672a5199f9d9516f14a04b086c20ebe93ac2a476d16c56da81634b2afdc53abb3429bbc30c2c59d5e6b58470a017ad90b8aedb9bd22ad6ba91dfd0f2b9e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    44fbb9f6d9c43c6d32ea7caa0e25a757

    SHA1

    2f70afbf2b6e45790a2ad8cfae4933dc3f187a28

    SHA256

    4e619fa5fd1d6501a2e3dd98d791e3ce03727fc9f3e6db5f9aaf692af5ac0ee2

    SHA512

    086b525f8e2ba5bd61c50742e75f297e5b302022a454993c14f01629fd703bea5a071a8b8b0b3ef25811e0be82da4df5e96f0e899dd7766ddbf65fb8aef540a4

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    7bc6cf618600db3e940b8dbc92dc1a66

    SHA1

    205942cf310488f997759195cb2cac0f4607f6fc

    SHA256

    af96c8eb162f6fc2eef9d40f2b7259d3537a3f9df74abc868591447be00db4e8

    SHA512

    7cd882762268c221514dfabdb8e74c69f1dd38c1cf9485540014b0613c06f42de924919bbe088bcb555c1f43bb8a453d6c8f663447f72802a46d86285871f8fc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    48916fe12e7b54c684d28f5e7fbf780e

    SHA1

    b863102a0e3b28ed34cb49fafcb5414ec6d54c0d

    SHA256

    c1937d4aece845e3027e4e972672c399d63303350e228f7d08675cf240d8c958

    SHA512

    a4c493a6dd3ff05a81e66cbcc243f0f344eb260a137a8c56f8574299181107882c93bad701881465ebea44d82c503e5c30410b55334cfe5c8e60d0432c1aeadd

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    457eb92c65e06ce9659ade5e0623ce9f

    SHA1

    54a265aa252d2ebcf68ccc84a912bad17b354d5b

    SHA256

    ce26b4e3083e8914214e25ef5f52e0f0b939c783a2758217dae2d6a579c84a81

    SHA512

    71f32cee8ef395191d274442480b96e1e26536c656a7a221de4ad8d0f5a51272518938599e65a2d4b0a51bae1bfcfc433119be889737b2820e2b92cc479a90b1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    bd70bb5f0945d9b35b7a9421f5bee458

    SHA1

    fb2616ae9944d9b666a53104fb5690552ab18716

    SHA256

    4005381890ffde32fc0287efccab2543143fb3d68a80318347b64a2cf736d557

    SHA512

    cd6e1464c94aa0319da1dbf65eed654789dbf75091e9a47da130b55369cd67ce8c023c3e41e46d02b7813470582d58c3c7deea216a95f57720dde52aa70741d3

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    7b6aa5da233bd5af9c1f170426ff7c83

    SHA1

    93efcdfa3d9a0da73b5bb8df803b8aa18da979c8

    SHA256

    8c6291f1924d1c8eb6dee1cbd8ed79f2477bf7bd4b3864cc6c768f07c703273b

    SHA512

    89b7e0bb7db5dabe7372db221181b80651e52e7b43e16ef686a8d8516e4963f58e76a247a63d217dfe35baa2af53800035179b5b93d5c0bf3b7b3360cc88e8f6

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    df837b14ed2d62422f31e553afeeb664

    SHA1

    e5bda859542f9e5d24e9ecf3f9eaea0887c74302

    SHA256

    ef12e0f49797e10e12073d03dae2c0c5742c5982cd3b601d69d7c318b4483be2

    SHA512

    b15ff2f2fa9fc0af383bf93e6c462c811fd3d7d9f02a30d2292e949da7840bddddb021190190213506f50c730f188cdd121539042e6b35e3769c080d6cf927e3

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\E25VF8N4\platform_gapi.iframes.style.common[1].js
    Filesize

    56KB

    MD5

    f6140cf2e81a9d5b9bc96970fe1946f6

    SHA1

    e18cb20a08d0c13d44b72e36e9560aec2187abce

    SHA256

    68cc8a99c8ed5cc0eb3aa2146fd34bee0051bfd98faa3c03b83c78b4a12a8bd5

    SHA512

    1f61bf7228ae9fc1b36249223f4ca0675da05beaa6c00b28b7fff500e0527ee237d139eaf6793ece67f8730dfff0207bf945a848795aab7c57301433449a8acb

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\YT4IJQ91\cb=gapi[1].js
    Filesize

    133KB

    MD5

    288c5ba5b7001fe841c32f690f62cc93

    SHA1

    29aba9d8e4f7cbe25fa5e64b9ecbe256e51fc789

    SHA256

    c2f33dc18eae27d4e878bf837dd97f1bde5151e44b0271408535bb93265b8c52

    SHA512

    e375d41344a086d35accfb02bb1f91e2dd383db032af387fc3d6b1230057cc5e432e9b2cdd976e51425b4f587391d42f4d9d857c2e6f11e822a65edcb85f1c9f

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab5BF7.tmp
    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar5C77.tmp
    Filesize

    171KB

    MD5

    9c0c641c06238516f27941aa1166d427

    SHA1

    64cd549fb8cf014fcd9312aa7a5b023847b6c977

    SHA256

    4276af3669a141a59388bc56a87f6614d9a9bdddf560636c264219a7eb11256f

    SHA512

    936ed0c0b0a7ff8e606b1cc4175a1f9b3699748ccbba1c3aff96203033d2e9edabf090e5148370df42fbfc4e31d7229493706ff24f19ff42ff7bef74a6baad06

    Download Submit