Overview

overview

10

Static

static

1

41f743003a...5.html

windows7-x64

10

41f743003a...5.html

windows10-2004-x64

1

Analysis

  • max time kernel
    170s
  • max time network
    190s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    06/01/2024, 01:50

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    41f743003a4c3742da171008584d9b75.html

  • Size

    86KB

  • MD5

    41f743003a4c3742da171008584d9b75

  • SHA1

    94f3ffc79def1735d554f150f16bfb7d7e11f965

  • SHA256

    690ba18326de35b2ecbd6c5c277b15563ea4638397359cc3fca438eacac2b6fa

  • SHA512

    c3a922d268ba2012c93f8f98b584a7bd67dae10d447215b850f44d23b45cdecfd0e7b2a8947f560151fc02c4b2eeea3376af54242427ecba9379a0b7ced8016d

  • SSDEEP

    1536:QbSDTwXuTlZODyxe/cEpRboOqpRgmR8noP7H:FDTdpZ/e/cicOqpRhR8oP7H

Score
10/10
socgholishdownloader

Malware Config

Signatures

  • SocGholish

    SocGholish is a JavaScript payload that downloads other malware.

    downloadersocgholish
  • Modifies Internet Explorer settings 1 TTPs 60 IoCs
    adwarespyware
  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\41f743003a4c3742da171008584d9b75.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2256
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2256 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious behavior: GetForegroundWindowSpam
      • Suspicious use of SetWindowsHookEx
      PID:2972

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    f41c805dd6593d7de8e022edf0a76d8e

    SHA1

    2aa93e7ae2ce07f340ad2ea0d03175a7d5ff5c54

    SHA256

    f9b2cf51a849a26b6ee960ace2ab52392abd95c5faa0dd7940f3d5662ee66269

    SHA512

    830347c6d65f4ac99089c7489a2048cc6bf1d663d47dcccf97ec6c2adbda398e070cebc8d0964a2a69f11a3f4811ef6de722f2c794a4241a871ab43d5d26cd7a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    0250e18854c58a4c2750aae73a23a01f

    SHA1

    2652ba481a729b766ffef990f1f539730db231db

    SHA256

    e1648b11e76ecd7e6baf2350a9011e81fc5bad325de84c73aea8d674333a357e

    SHA512

    454b13b474651aa240a9001c2505259202e1263070e78b98676ec714de5ba3684f6623752c48d8cd8863eddae002747bc90189b9dfbc350ef7872d39f6b6aab9

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    af7716389f066690e1495a8201af0ebb

    SHA1

    d9a3bed6c686b1b1ceca1eddc81dbc004b07d584

    SHA256

    041837daf2e97d59e8230037a0e2e2e675c5e16f1eea3e7d102b2182f65886cf

    SHA512

    26ff312b1f87c48b8bd8869f3478730f79138c7a95220849a4f672a0b666fa153fd6ec74dc8468e0c707c727bdd908d2d987c32036118831e61588ae0493f514

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    a41a7789412817b6e6e1254f0e519653

    SHA1

    cd3cdf73db06ee73b915ffeb6253f4fea7b21a04

    SHA256

    1cbc897d504e57e88a95848f5d5b94c3ebb0030f4381adf504aaf0213350dca2

    SHA512

    cb991ed8e4012b2c8299fa8425f7eedd8cf1c04ca600a686a7f3f95fb0776ee832e9af4974415a72215db0f3191d72c8ee981f1cc3863f4b7d870e2723bed823

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    64a8695bfc549994964bee2aaa9c98b6

    SHA1

    10bd82879420e2c976bb3ae14da229e70c597422

    SHA256

    8906721e8d470ad53ab236aa3e73991ec430e773006444e15446f67098b978f3

    SHA512

    9e8517e9bac533fba1c6cb1fc65df6ae7322eb64ced6183691f1aabcd841bf408e249ebaf6d0c2eaddec1f56a632a97f4c9a38a3261d2b57ac163e7f65341418

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    ffadc64c150e6565a2a34c6f6eb529dc

    SHA1

    d7ab46e223574bd5d58a48cb0138a7e61ab9554c

    SHA256

    37c832267e1cb2e9a66be997cf6642e1a1ecd9b4e14caa7617e597409bc38459

    SHA512

    7ffbf1aac6efb1c1cba314d52db3f54a2b45202616abb57e9cfba578d3abb785fa06fc886f4b12546ae28aa672d80d29401025dc6c186ff7279c77e4cc176e43

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    a74c686f53fac515772cc9b2e00edc1a

    SHA1

    1b7f05d8a26bf7770603d857e65613736ed4c3da

    SHA256

    43ba960ab25bd9fed5275469502b3984494f0fc1074682f3e7286bf130c940a5

    SHA512

    230aaa9d87fa67c1de11e5f6cb88a8d5490194d8a552f85b4cd75d8b0d453848c2b4ef11d819214a35564fb9e58344e775bbbe6b5a701367aa0df73625c23ff1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    ba887cc0d2f3c5b763e4c2bc62e3520f

    SHA1

    3da076eae69b3f43c48235e1213351ea27191785

    SHA256

    b06c822b288167baaa07e8e4c587babb825ecfbfc99a60f7c564f23e434a7bb7

    SHA512

    4f5d8511df07778aaa6f471233e9cc8616e9d592b15e9f24efefb6b299d9d0069dcc0404e55aa0d1ba7643f9aca20c839a37ae52326c968b539741947d1bb81c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    78d6c59493c2718171ac53c4b544654b

    SHA1

    3e5589f9f63a7474f0608e4b51fd9053653b4d9b

    SHA256

    d6c98bc900a3360c64acd930eaa2ea7bdb415f7b4ca9321b6ef93e6d3a3a5848

    SHA512

    8b11084eefb71633258dd3ef0408d7c74b89c316c60979a49e4dc17c1c58f500373bd22a431a2e5caa18faf923c14326f8568506a1297731de14f04400f9aa11

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    bd70bf1fa296f753a6c9c6db03cef7a0

    SHA1

    79dfa97ad148904a01c035285d1c8830b7d42fb9

    SHA256

    bb2cb6c9fa2fc67ae70f617769a61ee8b7efa93b26301cd0cadd1a47d350082a

    SHA512

    820f9c69feb68101cc0a43c6385f6fd3dca916ed35530cdb6178ef93d4f8ffcaf8c83a2ad588a13f878e610aa37080f0a56f1667cdd3b72eb8a0de178232dcb5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    e5a265100ec95779fce9c127bb88a818

    SHA1

    02c390a0233acfc6cdd9d6ebb50981ab64cdc41e

    SHA256

    9d7d30d26d4633cc4175ba38210dc6784a49758a9f63c59b7dd505b34cbd7742

    SHA512

    818b55a2a90ec353fc8c7082f559c00453d0f59be8accaac7f79c04254dbfeb31f550864b536325b175523023ad59ba150746c0edb73f884ad7dce9bd7bd8dd0

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    01e72878f5fe4cc2dad50658020b9f8c

    SHA1

    5acf7f42ed8256279c01f43a81517b75cc14a1fc

    SHA256

    25b91306b30c51d785a7df97882b51662af5598b1f992829717445d73d7a6a8a

    SHA512

    fff560c01bd9f0f9c43ab3fee5ea9541f1e4f8f5c08eca5f9949e9e4cef3730fd3ea831a332e883dcf5c70ba651fe2b8c83ee28d6336df5260b58ed5c0fe9f22

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    bdb6b31d5fcd5cade4d4cc195746a706

    SHA1

    f6473e60e4c7b4c93d7e8f11cb9df4ba8c41453e

    SHA256

    b4a3cd5870d10d4fc1be1e00ddfb398ac6ccacb9a43a03bca7e5958b474da03f

    SHA512

    d0f582234a9b26299371ef4869969412f06ec570d48f80aa6c72f64a938057de6d37793c5229c2a569e4522f4e372f701a1c421f6a0f410825a7df7aed246b25

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    722d1c69515d2f7e76b10c4bced131fc

    SHA1

    bfeb77eba217acec211725f27fda825ba9ba7213

    SHA256

    4af38a178e54bcbe20d2c68b94a2eb763706e002e086e59e5e53a5836b582208

    SHA512

    e9535ca43e09e9b4f8501fa2ef89e089ea7e6f63804c783e263c14e157e420e1db1b0ffc2683198f3d5a3532a4ec47f38af4dbd2b4183ca4afd17849d0604968

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    4660170e8bc3d8ad82285d7504775c91

    SHA1

    05daaf688f494316ab59a08d47d88a1cd609edbe

    SHA256

    630e64a36117891c4eeda616f7e3f38edf256567ede3435dc253105c3cdb3bd3

    SHA512

    c6ffc750f8d496369ae6200119a369e9a29d29e9f072c6775b82ce64db637d7505035d792b1fdf082749479dc1c606298f553ea27c515b442e8c81e4df085644

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    8983102dfc0886bc384a32e41a93e21c

    SHA1

    3e5b09a1551a6d3d421d707b2697ac101080c29c

    SHA256

    d5f796e465e5ae8fd108c4d73671392b49601ab6b0cb87be9f4a96d343a5fa9c

    SHA512

    bbeeb9c6dd25b3638fa64d67b87e731e1625e72c4d3a6a5a9723e473dc13179655ad6eff7d5eeda45db0faa1167057ef14468da1cde67c6eb1e444567d37f1be

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    c712e309351e45fcf6babac7ce34fa0c

    SHA1

    c55fceab45feea0d7211a56d477e5ccd95ff6442

    SHA256

    cee618c1436262717f33a20e7d50be3e21900dae37e49287181b33f43e2f2cf9

    SHA512

    d800e112bb04d9163595e77cb40c2f866bedc5cec509b5ea5a42fa7b189bca9cce4a8fa8f0c23bea6954fa96f64dd6933f98d4763803301a17a742295f5343c1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    61c8165401450d73b0975113aaa8939a

    SHA1

    5632740f62fe2a98a07904a7c3670172a57ab8f5

    SHA256

    32f7d7f11e72d5918635dbe78fc0711f846c50f5f1ed7994848103d4ca3c7609

    SHA512

    348be0809b886315d0b3d89de9cc856e9cc6c03627c59803e1080d7a69b523719ccc35aad2a9582173064248fee4f2886a0705fce660a0e0f33af06d591d451f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    4817246e5561eb9b1366c8c324820e4a

    SHA1

    af9bd58e3a93b91b7c7a782e2e2e74f1e7a6a144

    SHA256

    b021af0e85cda1b568d0ef488acc4f1fa526965ba5dc740890e1f19433684c67

    SHA512

    48db6ed27f8ea82578da5cac7c9ffa439a333f2a52cf77c4b9bf67d7f13da3363984546202df13d81433e4557f33ea67b66003d1e77db8f1dc2541a407edfecb

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    2e95d09f41ee225d01ab64329409a94d

    SHA1

    8e8f5aa77d4c7862b2e260f44e5bc090c63d38f3

    SHA256

    8fd48cf0743db37a9687620be7eca0f1907066b8cf45b21ad07a66238b27ed86

    SHA512

    3d124d0bc61468c7ef5c15643ccd8c2b649a4524f89f0eff5d049f35f8f07e9b1475dec8e3ed5bda7a929e562a509e6a594ac23637a54439d1d853085f086407

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\1URYYZRI\www.youtube[1].xml
    Filesize

    13B

    MD5

    c1ddea3ef6bbef3e7060a1a9ad89e4c5

    SHA1

    35e3224fcbd3e1af306f2b6a2c6bbea9b0867966

    SHA256

    b71e4d17274636b97179ba2d97c742735b6510eb54f22893d3a2daff2ceb28db

    SHA512

    6be8cec7c862afae5b37aa32dc5bb45912881a3276606da41bf808a4ef92c318b355e616bf45a257b995520d72b7c08752c0be445dceade5cf79f73480910fed

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\1URYYZRI\www.youtube[1].xml
    Filesize

    229B

    MD5

    10281b12e269124d3242a0489cd9d481

    SHA1

    a150bf9698c3d08ea265b05897c7151a2e3b52e0

    SHA256

    0bd4ea7a2317ff01cd05aea56f69b0bf8e10ffb7f39b8e3d884235b506ccbcc1

    SHA512

    eed42d1904b5f7fe234ecd289d737c5b8aab9bd07d34590e5f4afdbc018a2fb10fcb2401cce5149a6a893ff0d687ba635c22bd211da417b1058ff505f3d4f46f

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\1URYYZRI\www.youtube[1].xml
    Filesize

    402B

    MD5

    2a77207f5fa1b4812f6932cd45ad3efe

    SHA1

    e6fdceb5c8120c1f171676fd2e713d315197e3f6

    SHA256

    c82fdd6218671387433723295fbaad0f80bcc4e9daca6bdea410a9809ab26186

    SHA512

    5c0c66b396f6c45d90403e90f6f15c637ebe52a317eb78a5992f23a25487c6cd11f9f24e83796facef0e73385a7c73436ac2c61d0bfa6de67f0957b6b9e6f703

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\1URYYZRI\www.youtube[1].xml
    Filesize

    23KB

    MD5

    8323ee1055454feb314ce3e2541b5ebf

    SHA1

    0a2963b9bceb1ef442a284af29034a712f641f9f

    SHA256

    0bdcfa83175c2254462edd68ea993d68a3b77441a41e9643282fb3ed8f18368a

    SHA512

    dcb35cb658c24a050015db20f1ed3e65bb838ad25d8f71870e5ee97606a53ff8f3bb500778449d577730e63931071a385c38216e10a526e33081ab953d7d8030

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\1URYYZRI\www.youtube[1].xml
    Filesize

    578B

    MD5

    ff83466ab877b01119627b19582b157a

    SHA1

    baef5beecedbf57b96f401adc050faba223ede93

    SHA256

    eb65836ee57c4c27e865f0c7cce2e0755883b5615649c18414cd31a2b9874776

    SHA512

    654b150f68c2dcb8a8423bc50a5878c0e9bfd19e98b25c788e916b08e22e3948c87b5c137e8f3d6e959a0bcedeaf5993156e07a60443e512a3bb1acf7e896bd0

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\YV6H14B0\0w17OXwhJmC[1].css
    Filesize

    19KB

    MD5

    1131ca89cd388402367404f9ab6b5c44

    SHA1

    5eeee32ab67f7fec9013f9e19f96bd823521703b

    SHA256

    432d3edcdc9b20d37e2b99a7cce9124583e17ca233aa9c043782b9a118cbc7a5

    SHA512

    4a898299bc82342f423f8f4060c067af3abdc1105919dfc7f1024e041aab9683d57c07f273d05e2d92201df90831d31c4b36e73baa268a0c9c7f35a08581cc51

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabD809.tmp
    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarD8B8.tmp
    Filesize

    171KB

    MD5

    9c0c641c06238516f27941aa1166d427

    SHA1

    64cd549fb8cf014fcd9312aa7a5b023847b6c977

    SHA256

    4276af3669a141a59388bc56a87f6614d9a9bdddf560636c264219a7eb11256f

    SHA512

    936ed0c0b0a7ff8e606b1cc4175a1f9b3699748ccbba1c3aff96203033d2e9edabf090e5148370df42fbfc4e31d7229493706ff24f19ff42ff7bef74a6baad06

    Download Submit