Overview

overview

1

Static

static

1

4729b27bee...f.html

windows7-x64

1

4729b27bee...f.html

windows10-2004-x64

1

Analysis

  • max time kernel
    66s
  • max time network
    147s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    06/01/2024, 20:57

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    4729b27bee62e008a51cf69749bdb53f.html

  • Size

    18KB

  • MD5

    4729b27bee62e008a51cf69749bdb53f

  • SHA1

    89188651327baf002d904c3852d60607a9c1a32d

  • SHA256

    5b5053befec288e6ff3f78e9dfc01d40e7da32897d21f75ee7c06bc777d8f255

  • SHA512

    6059c0a29d9336a989e107c94dfa3928bcef18ef237b7249946b283361090c9416a043ca629f635eb9b3c6a13cfb787f017558a50eedd707b28859fd15570c1f

  • SSDEEP

    384:cUeRu6bcUahr1AgdGgs8jMaztTLPAuz68MMv07X:QLwUK1AgdGgs8jJO8ts7X

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 34 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\4729b27bee62e008a51cf69749bdb53f.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2668
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2668 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2424

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          f17b91dbc03a944060428b1f56fcf1e0

          SHA1

          09039d4eb27f26f813ca141dc5ed09bf41140847

          SHA256

          df21e52fc6671340d1209c400e2c8cb7310db0280b9dbbd7387c6638b7c05ab8

          SHA512

          1635a40b543bbbf347fc41cddf12bbbf8187d8898fa23f9222247d194bd8c9b832c2ae5733b0b5d0f40a2b05fdc336a751b5e9d3af1379a3c285dd0f93946a8a

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          6288060cf68a592209e360462a1c3afa

          SHA1

          1ae1ee5b988e8ba1c1303eac506d69d295249ef5

          SHA256

          1d99edebd474f758fed271cdc5a89de3de1eb1c658b878983edea40e5702146b

          SHA512

          648358b637c3d65c954a834d2f0aed17198b66a6e55585ff1d14539bd49b101140a898e1d028360c170ba8bb96808b12a4b32034d5485f6e0fca051bdfdae10b

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          7cd67411e4a2ab0ad2cba30fed8b739f

          SHA1

          8361fde4765750619d23fd4222cbeb3c9687a079

          SHA256

          9928669dd98ad7c3db7e90109b8bb4e44941b0370d3cbac971d68c2887b46f36

          SHA512

          9050ac340ce9165c5bff3ed2166f103be5bb5c870911c1d033f4870a34f9c7f0a5129c735ed63340025f29376fdf9ec1674b16d1946320d9140694d6bf9cc981

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\Cab894E.tmp
          Filesize

          65KB

          MD5

          ac05d27423a85adc1622c714f2cb6184

          SHA1

          b0fe2b1abddb97837ea0195be70ab2ff14d43198

          SHA256

          c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

          SHA512

          6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\Tar8CCA.tmp
          Filesize

          94KB

          MD5

          e1abb863db1d0b032f62f49ed58f27b4

          SHA1

          c093c3fcc224d95488b8f301ba7befddf5425ffd

          SHA256

          64767e64fe26c4d639115c43832dcc7fbabebed613ad09c4f6bfb7d1a87a04c0

          SHA512

          838353a9133a71e6783aff54804d85c460c54babaa975632eac28328d92881bdae5d6b73eda28dd8121488fb71922de04ca504f69b2000a547717fa1e051b06d

          Download Submit