Overview

overview

1

Static

static

1

49c539a7f7...2.html

windows7-x64

1

49c539a7f7...2.html

windows10-2004-x64

1

Analysis

  • max time kernel
    119s
  • max time network
    140s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    07/01/2024, 21:08

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    49c539a7f7c29ba04afaab7443adf162.html

  • Size

    61KB

  • MD5

    49c539a7f7c29ba04afaab7443adf162

  • SHA1

    af29f97cb558b2b56b9dc843c433676a37bf94cb

  • SHA256

    5fdd0292756a6407068f87fb94f9e18f4a646ee30c39611596b282162d93a62d

  • SHA512

    cf77196b4051553750e4003efa2d27bad734cfbf8f3ead62515d45d4005d8d0c639fd13f82658ff9a9d5a1549e65b07385cfa25248d7ba5673a52edf1208e51b

  • SSDEEP

    1536:/FeI9jlPppUChkQxeQxIBNoZrNvhINENuR15kpWiJ8q94hF:teI9jlDhpILwotRjkpWiJ8q94hF

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\49c539a7f7c29ba04afaab7443adf162.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2036
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2036 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2664

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\24BD96D5497F70B3F510A6B53CD43F3E_3A89246FB90C5EE6620004F1AE0EB0EA
          Filesize

          1KB

          MD5

          ec76a0e5c12e057fd09953aa4c89db48

          SHA1

          965160b7cd1a48a58c62cb27663ee108efd7b0fb

          SHA256

          a12c74241d1df0feed69578c08a1ff4cc4680847e02ce3832ccd026f1393541e

          SHA512

          74a2ad02e7bf98311bfdc2b95c3661b75ba66f29f2f34fe9b4ee230e9a4c7068c825fef4ee0f9aaabf3a1bbd49c43caccef2142c61cef10ff50170b0437828dd

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\24BD96D5497F70B3F510A6B53CD43F3E_3A89246FB90C5EE6620004F1AE0EB0EA
          Filesize

          410B

          MD5

          79d8b3bf4200dcaf918a2bd00fc2b299

          SHA1

          d1fca5e682dfd625918a3ac68b349400e679fa18

          SHA256

          248e61499811f3a4aaa25caaf5f945cfcdbb6a9b52fe4636e383142445defd9c

          SHA512

          8602d51a67c5b0989d59d9be735cc79f8a6ecaa017efcd3dbfad1232af181a8045c22ed1b65b22cf2bd40a4a7eb0bd4558e032d500b29601586265bf19e4ceb5

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          c7e7fe5c1208dbfe63a34ebd066ee585

          SHA1

          55203c7141c36c80da51dfe38984ac019eea252f

          SHA256

          ef22a38541a480138220f0069dcaafab6154cfb1b3a01d346f2699bfb08068e2

          SHA512

          b6a0c65c9bb8fd762dc9f081207cf4d6c5afb3e8e6eca730f43f21df48d327270d62f1cdd16ed97d705742f84184ba7e6b2d0bd2192bcd32584d0c677da48fd5

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          1ae49ff57a47ed0c8161f30f9ba9167e

          SHA1

          426e65479ed61d071941a69f1b8de5f5083335cd

          SHA256

          6d70a0359ded5175e04b01f836496572b1d212bc54e2770696d4150575be99c5

          SHA512

          5e679d44817cc2d257f48e9656bc152dfb4931b797798d8aab49977435825364cb3d916c84c70163aeb2f941bc32c5662486aa1c4c86a6f8443a1e64ca380751

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          ba5ffda92e30f1986db9a95de5a2887c

          SHA1

          4bfcf9303b5528fbb7615500674fcc28e1d8b201

          SHA256

          25ed56a81a5e484ef533e0278d290e5bbe50cd683832800debb9b3b2929eed59

          SHA512

          0e0ffee87f156d2da6c5d4f8dff03433f7a550e1c19d31738b6ef2eafa569f5ea0c688f5fd1f02352bcd124389492457c9120c6ae17c570c94acc77bd4e7e8bd

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          c5d8300357416ec5c507d8a4634a4832

          SHA1

          92b4dd96598806ea22695d8969e11fb6f726bd4c

          SHA256

          71391ea83e9cc401e63d9415ae0122a6dccbb226e615610622b18a427b45f668

          SHA512

          048c43e48807663cbaed5b128d12a924b0033dbeb900764b3a54d43c0d7672485d963a029d2921f6015e41f3c20b60405f8a6e4120f2de7e1e48d1bc3707626f

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          4ad91a5a9f2d9da8af4de4854d286037

          SHA1

          edbeaaccb34ca2ba98c64f0f29aee6297db6703d

          SHA256

          89e9c4fde9351642284b559b1bdd58dd7aba7384cb9e086ecee5ee166dbe47d3

          SHA512

          2226dde8a859048f1c73128e3471c816e4b5d16aefb5e04e7143c2fdc1e15abb37ed4850f94d6354c4f5c49d3a52a068ae69d466b7a53ae5bfaf1648f8719395

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          9032d53ac61f66252746787f0e7a873b

          SHA1

          2f4a4e65c4ce1c1c0f74ee3f8a6abcaa748045de

          SHA256

          d64a6cf97593bd38d44b12c6ecc00e7b7e2846af7c55327cc240d0b3d4b9b869

          SHA512

          58a2039f473525d2b131be43a6205a06de4d4eb1d2f107f9d444ddd3c5906e49cf902c96c78e4cfd426aa33703a8da25cc73c883b5deeced88350a654944bcc4

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          f7ce708b61f9c5ae2c7e19c8966c1379

          SHA1

          1afff4e48e0bf7af7c618afb2664a253aa6efee3

          SHA256

          57dcf5044ba72b40bb32590809e12d061896722028e42b5ffc2b017af0eedc2e

          SHA512

          adce17b5ef351f533c4069def79d48bb2b20b3b181c2c55b8b7cca691a064e61e5eb1a6cc095854c64c868293cbe3c46ca91e59ea2b7f39f3254b3f1cfe819cf

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          7d0bd35c4e50bb61b7f5d08acb0a9584

          SHA1

          d1da308e926f96a632e4121d5af3068a8e5779df

          SHA256

          0abff866d697b7db44ed2a23d1db9c60da0de438b50aab78929a9e762ab28e6d

          SHA512

          fcc71e1f17033019706996a33a8417b3298f7b20407f2778cdbdbab3b240b919754ca6f081896a51f605e3dcd078a284be3a910aeec757f98972928a77869cd1

          Download Submit

        • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\JGM5U0T3\platform_gapi.iframes.style.common[1].js
          Filesize

          56KB

          MD5

          f6140cf2e81a9d5b9bc96970fe1946f6

          SHA1

          e18cb20a08d0c13d44b72e36e9560aec2187abce

          SHA256

          68cc8a99c8ed5cc0eb3aa2146fd34bee0051bfd98faa3c03b83c78b4a12a8bd5

          SHA512

          1f61bf7228ae9fc1b36249223f4ca0675da05beaa6c00b28b7fff500e0527ee237d139eaf6793ece67f8730dfff0207bf945a848795aab7c57301433449a8acb

          Download Submit

        • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\SP6DRJYJ\cb=gapi[1].js
          Filesize

          133KB

          MD5

          288c5ba5b7001fe841c32f690f62cc93

          SHA1

          29aba9d8e4f7cbe25fa5e64b9ecbe256e51fc789

          SHA256

          c2f33dc18eae27d4e878bf837dd97f1bde5151e44b0271408535bb93265b8c52

          SHA512

          e375d41344a086d35accfb02bb1f91e2dd383db032af387fc3d6b1230057cc5e432e9b2cdd976e51425b4f587391d42f4d9d857c2e6f11e822a65edcb85f1c9f

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\CabCDAD.tmp
          Filesize

          65KB

          MD5

          ac05d27423a85adc1622c714f2cb6184

          SHA1

          b0fe2b1abddb97837ea0195be70ab2ff14d43198

          SHA256

          c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

          SHA512

          6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\TarD711.tmp
          Filesize

          171KB

          MD5

          9c0c641c06238516f27941aa1166d427

          SHA1

          64cd549fb8cf014fcd9312aa7a5b023847b6c977

          SHA256

          4276af3669a141a59388bc56a87f6614d9a9bdddf560636c264219a7eb11256f

          SHA512

          936ed0c0b0a7ff8e606b1cc4175a1f9b3699748ccbba1c3aff96203033d2e9edabf090e5148370df42fbfc4e31d7229493706ff24f19ff42ff7bef74a6baad06

          Download Submit