Overview

overview

1

Static

static

1

3e43556ece...c.html

windows7-x64

1

3e43556ece...c.html

windows10-2004-x64

1

Analysis

  • max time kernel
    149s
  • max time network
    152s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20231215-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20231215-enlocale:en-usos:windows10-2004-x64system
  • submitted
    02/01/2024, 00:30

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    3e43556ecebf18e263833dee874ba61c.html

  • Size

    21KB

  • MD5

    3e43556ecebf18e263833dee874ba61c

  • SHA1

    8fba4a7dd8ebcc2461f95cd55d357c07e095aba0

  • SHA256

    21796aac69c1f0373f4f3fe5642e7d198793470374c043236e4bf2d142e55385

  • SHA512

    182a7ac1095f5bbaf740e3232fc1bed606c212e6bcf320a869c3e1474b4fc6063ecd12ca9f31eac5e5ded394da30fd68e837eea1ea87c3e7cf15a01aedac6eae

  • SSDEEP

    384:F8an/nwa9BhnflvP5LEfqiSiDfQ3anVc1kXbWBzwHrmnAwskkUgVLRd:F8an/wa9BhnflvP5LEL7DfQ0qqyecOvF

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 44 IoCs
    adwarespyware
  • Modifies registry class 1 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 3 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\3e43556ecebf18e263833dee874ba61c.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:3224
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:3224 CREDAT:17410 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Modifies registry class
      • Suspicious use of SetWindowsHookEx
      PID:268

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\CAF4703619713E3F18D8A9D5D88D6288_F2DAF19C1F776537105D08FC8D978464
          Filesize

          724B

          MD5

          8202a1cd02e7d69597995cabbe881a12

          SHA1

          8858d9d934b7aa9330ee73de6c476acf19929ff6

          SHA256

          58f381c3a0a0ace6321da22e40bd44a597bd98b9c9390ab9258426b5cf75a7a5

          SHA512

          97ba9fceab995d4bef706f8deef99e06862999734ebe6a05832c710104479c6337cbf0a76e1c1e0f91566a61334dc100d837dfd049e20da765fe49def684f9c9

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\CAF4703619713E3F18D8A9D5D88D6288_F2DAF19C1F776537105D08FC8D978464
          Filesize

          392B

          MD5

          8b0ea7e198a0395569850306b5347050

          SHA1

          79bbdc75868553581b5c1a50d6d1c998d2c55c3a

          SHA256

          0af99bba5edaa86ed412bf254a7aef44b04a01bdb2a7c123e469e82704a0e8e9

          SHA512

          2441ef04bfff08d5c3cab2ecb83c44ea694cb222b864002980189d2688cd29c641730203c2ffd1feeb8838ea56a106505be8d1ddd07687007d6981b4daabb442

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\CAF4703619713E3F18D8A9D5D88D6288_F2DAF19C1F776537105D08FC8D978464
          Filesize

          392B

          MD5

          d96f933d797f7ef0814c5a0552cdf13f

          SHA1

          4e0481212faa576d4014e4d2cfb1bd5df4e1b765

          SHA256

          3dbdf1961e11be9f4a20236625ecdb861ea575855de5085d9dd93c8e3db0a893

          SHA512

          9a057419e1bf59233e8d07dfdcf40a77149c4b937bf008d349dc397d4909e6b3598903405807cabc6bc203eae955405a40e91885922ee8c28e349176be80e8b1

          Download Submit

        • C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\7GP7F0WZ\avgle[1].xml
          Filesize

          83B

          MD5

          070d06d82808bcc9b9d73f80fc3ffa93

          SHA1

          0a3a7536d6781c244680362b1974ba6b8df4b7c1

          SHA256

          248260839ec90f496886d990b93098a9c077580452c49d64d7ff79589557c726

          SHA512

          f74e2bc6e89241059aa6f49d5a6332bd00f0264b25fc8d62360ed5e9ca530a8404dc2fccc63ef23fa36d413d651fde6f39099a9a36d2a6d6c798cb227c0120d9

          Download Submit

        • C:\Users\Admin\AppData\Local\Microsoft\Windows\INetCache\IE\PZ64U2GI\jads2[1].js
          Filesize

          3KB

          MD5

          bc8141c4650030c41f6a98026b12ce80

          SHA1

          af5618f7e467a207d4c64627be580283ab5640cd

          SHA256

          5ad0b5133e45b32908a388c8c6dcfca2c23d1d9d3e2ed6a839a742bab1ffde51

          SHA512

          70fc6246b67dd18b92661c9562020cc9256a9f2aa500017bc79e71b9528251dc241505b58efe58174e0268d6cd44a2158c25f5cb6217ea25a6ea73f58e99ca86

          Download Submit

        • C:\Users\Admin\AppData\Local\Microsoft\Windows\INetCache\IE\Q15AV1NQ\analytics[1].js
          Filesize

          51KB

          MD5

          575b5480531da4d14e7453e2016fe0bc

          SHA1

          e5c5f3134fe29e60b591c87ea85951f0aea36ee1

          SHA256

          de36e50194320a7d3ef1ace9bd34a875a8bd458b253c061979dd628e9bf49afd

          SHA512

          174e48f4fb2a7e7a0be1e16564f9ed2d0bbcc8b4af18cb89ad49cf42b1c3894c8f8e29ce673bc5d9bc8552f88d1d47294ee0e216402566a3f446f04aca24857a

          Download Submit

        • C:\Users\Admin\AppData\Local\Microsoft\Windows\INetCache\IE\Q15AV1NQ\suggestions[1].en-US
          Filesize

          17KB

          MD5

          5a34cb996293fde2cb7a4ac89587393a

          SHA1

          3c96c993500690d1a77873cd62bc639b3a10653f

          SHA256

          c6a5377cbc07eece33790cfc70572e12c7a48ad8296be25c0cc805a1f384dbad

          SHA512

          e1b7d0107733f81937415104e70f68b1be6fd0ca65dccf4ff72637943d44278d3a77f704aedff59d2dbc0d56a609b2590c8ec0dd6bc48ab30f1dad0c07a0a3ee

          Download Submit