Overview

overview

1

Static

static

1

4c86d6493b...4.html

windows7-x64

1

4c86d6493b...4.html

windows10-2004-x64

1

Analysis

  • max time kernel
    128s
  • max time network
    147s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    08/01/2024, 21:43

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    4c86d6493b8a41399e3eaf87e7bccd34.html

  • Size

    66KB

  • MD5

    4c86d6493b8a41399e3eaf87e7bccd34

  • SHA1

    cc4b9b2452c0d53dedfdcb7492f7f8f8199a542f

  • SHA256

    7f7964044f2a9fd1b80edfeda923000cdac7c31d7add41837714e2ec03d4fbeb

  • SHA512

    5eeb8d4681b0d052a31ee7969c75d90054e5687478c6109634eab1a5830fd0c39b667f2909e453831bbed9ad3576a865927ffe4015ca8ebd727eeb41e17a545b

  • SSDEEP

    1536:0WkADkAZckABKQbZkAXhTcr0IPGNMxZPdJXxPTQakAW+SOvFS4Udp2Vko5KF1vp7:fkADkAikAIGZkARTcr0uGNMxZPdJXxPE

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\4c86d6493b8a41399e3eaf87e7bccd34.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2540
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2540 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2656

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\24BD96D5497F70B3F510A6B53CD43F3E_3A89246FB90C5EE6620004F1AE0EB0EA
          Filesize

          1KB

          MD5

          1e8bd4708a5ff3f2243a01701055461e

          SHA1

          b1938bc202d1cfa998587a2ae1a625f824da3d68

          SHA256

          3623d4c31474b76813f1ddb7ed5f49dc5bdb16e65b0fe2725846082f95e3c1f1

          SHA512

          c5599751fa0fcc09a21d30a02d5330f059c5f8c51d0c7fc2b29ff1ce033336766891bfff2d4fff328cb397834e6475a01ebfd3fde580f2733dbd70424c416041

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          330d78f4aafb5d95e67c3f1b7b830aef

          SHA1

          8104dc2768d8407b9b58b738e2bc8b88055b26d3

          SHA256

          14276ce3d99ff9bd295459054747d39b630e40cd21f951d3c65cd3a62717641c

          SHA512

          5c42a87e9cd64a7b48b436809272ea5ae0e0b1f4cbd089abd6d22234734ec2d63545f52795bcec878ea8ec202596b477bbc1eb5fc713b56a131bd1f6d48dcbfe

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          60c8aafa9afaf4164a5480cba93dbcd2

          SHA1

          07206a9c4f79e44208d6a8b363fc0e556abdf763

          SHA256

          25146151ffbc117664ad920ffc8e18a069d3d3f8b41588af58b18cb4fd7d6da4

          SHA512

          e6fbc2f885dc537a55fb5c768e83347d9a51a515cbc32d174da0fe546b50617893d234b7347a6146de09a8e75e6cda1143f4441519fe7fc1383e69c5182199ac

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          bf13f71e9972877aa6eeb8b5874269ee

          SHA1

          773f1f2e9ac057b098a14838c591bc8cae96d64c

          SHA256

          993f2f7d40d5c0aacab0b0a8d2b215fb87aada5f334262b4dcef4686f34b4a50

          SHA512

          b11e95fce6f07c6fdd147d98001a3c77be5014c0d2f3661993bb3e681c414198a9bfcafe92ad69068d22d363a89686259f924d5a07786cee057775ff379f344f

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          33a752547c540952228758eaad5da87e

          SHA1

          4e1afa9bbcacf303b3ced19a99961efeaae09da3

          SHA256

          a952621545b6f0cfbbf7a83625ecd69ea58af183d7b7b9c91dc185dabe0c47d4

          SHA512

          f936ab7635e2f76d293b91d9cc3e01aee279e8a53b4b2d9e55f8281d77f94c5661a3ba76b788c0ea02e4f0c14e27b9e4ccad892fc6ca22e5134abaf9bc13f8c2

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          8b201089b9ded3e343d14aad5de6dd9a

          SHA1

          a92151f06207419331032cd00f936e1f4db40381

          SHA256

          6b9532df72fe077b51231fe652e8db905e994ac4420d73b0a80975323ae106b3

          SHA512

          aa4eaa43a37e275fd4433f93aeb9ac156dee5fd1ce5bf6f1b4974610146a73af49d329af0bacf4d0fd00b4d44bce5126507074ede72e6a762161225d83e845c8

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          856f9df2a8043e7cedb7a52938a59af4

          SHA1

          b96a9e15f6420c1128b6258ddbfd84dc64a3b86a

          SHA256

          cac487794af91df56d237a10cf09cb2aaf68bbd4746fd46a45864de2d1dd005d

          SHA512

          a451ff0358722d70756a1b945d9e6bddee73b7c09bff7060b84600de42f2d518df701f7ac9989a6cad2ae756e04ea64afed1d49e9303d0a33c579c169e761b17

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          84fc895d02f57c61ae1976102436aaba

          SHA1

          8ed81b86f26de41a1b964d2fa3a8fbba3f2960f0

          SHA256

          61399bab2d257646a433696cb006dd51d31ebf81af682b5dcdb161f503bbbdc1

          SHA512

          057f090676372fae4a1fbeaf2babeed5afe8e81c102a9980c5115bec2b7c14f7122e29bdfd3d3ec137eac095f9040b4f644ffb5a2ca7db755b128075d62c577a

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          a89d3764e9ecad8687b411c382a25159

          SHA1

          27b40eff600085e7bd21304e628d4e8a0f9a5209

          SHA256

          ec53f86976ca0097ee95031050a339e8f58a6cbee84fb82aa1b355ef9dd4fa4a

          SHA512

          bc3b5679fe3a23b7b9592ad77055ebddc927d517cef34e1c294ccbb4687dc4baa0d71297bcaf7dd893e26e8da68b29aeffe88fc6f19c5ce100b15e2c1ac9243f

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          e4cd4176b7ad3dbbbcc52009dd9d862d

          SHA1

          50d11e20317e8245778b20928503e27cbb30de6a

          SHA256

          9399b5c084ec86d7a69d02eb30d42009e69ffb9a02a48d45167869468215152e

          SHA512

          8f82d7fd14adbe741a273908d72fafd25cea5413b91db05d4d4718a64648297e19f9329f40522784e4ef50b9560b6d858e8de50f25d65e7732cf5fbe8790a8ce

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          a1439525aab732e66c68181f18223569

          SHA1

          8207480c6b6f52489bb6728de6af38ad2c382fd0

          SHA256

          05f95fb4cc29a8b62c42fc21af99b1c1c3692fc56ac20911cd8cdfe2e3d92d91

          SHA512

          eee5b07e5d44e24a45c4178ca84a1978d18bd3dcf88200de92ca7e632ef0592ce35269e92c24bc7bc4f595892425fd13d050f1fa484072540aa93c2ecdf2635f

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          851b29a009e296cd3d505295ccdac5f6

          SHA1

          88aeb9b81d52faee8536b5bdadf6b5c72e219044

          SHA256

          94da0a8122643d50d9a6d2fad93fc888e087fbd890174eb3394d63777136b443

          SHA512

          5666ea8b41b188f3a2942fa9356f7dbdb89cde4da0b9069d9df8e11f7ebf364eb1130a8e2cf103906f50dbb99e36b90ebd7f1ff6f7e48603f2974434b83ecec4

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          03faa167ffe1af6d9b846b149789079f

          SHA1

          c6d3d41b4d63629b136020aea956032af39359d7

          SHA256

          fcf8548732203bd9b5d4ab5304493705bc04efe61bd2344da795d2accde3c8e3

          SHA512

          b255a7024df15a05572a21395f41a615ee8fae67dd2b2ba565557f78b0fc75d1f6212e45ededbc6300f21cf1eacc922a160678d537ee9456d1332b5c452ddb5e

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          08dadc97c9ba463fce162ea7a06cfe63

          SHA1

          3f2c706d1294c23f4fee09a4f48dda75fcdb1a4d

          SHA256

          2baea6371a8b8631ffc43c596df0569a85b0f5a664797b65771f3e17bc8a6b49

          SHA512

          06f897b07dce6262f9753f8c686f4e89a4023aba92edc95fbf92c87ea1049fd9365282984e6ec374a1f0bf05ac98e8a6693ce73b6ef8dd946192fadcb024d75a

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          b2342f56d28b15d918152d40fa4a06cb

          SHA1

          5f29df10927dee4623c8f0cc74a5c1e371add44e

          SHA256

          40191521badfaa845fdb6496326af93d7062ce66ef19b4287adaaecea534ff7c

          SHA512

          130ad3a48a69304c28732c74fab4e3b5e551f670ef1a18022128a6522e30b530961fde1f519cd4b86f99c60ecc52c378ccfe22d80bfd6fb0da451f405ae783f6

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          421414a1d60df5af00878f53feccf3b5

          SHA1

          2f9c2459c0b15f337e2f86d646345a7709af5a50

          SHA256

          7de7434d6042c1496de66a309bc837e91f77e4c9007f78f5171bc60a0a650cd7

          SHA512

          30d7fb6b7e7c9b29aca6eec789598977e5edbd71a2ca4a9f38e2d372c42f843b60def34b0491daa997d4315cc0ebf9f43a3e8f4d9e31f2f24c4562ee3e370643

          Download Submit

        • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\4K0WM73A\rpc_shindig_random[1].js
          Filesize

          1KB

          MD5

          b6df12840a7499b242584a8d8b4f2894

          SHA1

          d38e07b8382e2326f84071c2a0f4dec12f19eb89

          SHA256

          032dc5f8581c5c17b55fdd8735477e8c1ccfbd59332730f134854fde3970ac6f

          SHA512

          82f88df7aa24ed033baca6b9a69852a6ea0a5acdc0ee91a606f4bca27eefddac585650bf60e7e5b8bcf0713f15b9415288307fc00984447fac44c1122b15fe54

          Download Submit

        • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\E324WJ9A\cb=gapi[3].js
          Filesize

          37KB

          MD5

          2def5c943cf118a5c8e9db2c0156dc63

          SHA1

          48bbc5f1c4fddff04e8fe0c6a949983740e6e77a

          SHA256

          c5b479d46e9ecdde8d6229ead72bdedd97f922b3bf9060aa8842cb37d9088d9d

          SHA512

          7d1ada9f28e06db2d2b1f78e33692c04290f6bf0fea7962739e4c6d070a21ec00c0f202534c3427c2c8fe5ec9d0b4ae6258bb0957b6845286c941a6a07253c72

          Download Submit

        • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\SP6DRJYJ\478691279-postmessagerelay[1].js
          Filesize

          12KB

          MD5

          92169c8a0fbf6e404267d0705cdbdf42

          SHA1

          a5cd88b74ca5ced239cdbfb458fe25540d671f46

          SHA256

          dba668b49a111527aac8f616b9053ea57c944e01a84ebdcd02a13da921223384

          SHA512

          8c5d35ea512fa7be367cd9a9ded2f23822dcce730e5502a355ed0d48949ef763eab13be0d50a66de6b0f8419d6a002c12c4ddbf20d97f5393ba922e48a4f02e2

          Download Submit

        • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\SP6DRJYJ\platform_gapi.iframes.style.common[1].js
          Filesize

          56KB

          MD5

          f6140cf2e81a9d5b9bc96970fe1946f6

          SHA1

          e18cb20a08d0c13d44b72e36e9560aec2187abce

          SHA256

          68cc8a99c8ed5cc0eb3aa2146fd34bee0051bfd98faa3c03b83c78b4a12a8bd5

          SHA512

          1f61bf7228ae9fc1b36249223f4ca0675da05beaa6c00b28b7fff500e0527ee237d139eaf6793ece67f8730dfff0207bf945a848795aab7c57301433449a8acb

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\Cab5775.tmp
          Filesize

          65KB

          MD5

          ac05d27423a85adc1622c714f2cb6184

          SHA1

          b0fe2b1abddb97837ea0195be70ab2ff14d43198

          SHA256

          c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

          SHA512

          6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\Tar5797.tmp
          Filesize

          6KB

          MD5

          9bbffcd6dbfb6e0047d6dbdbee422b80

          SHA1

          88486b98da80ddea2b48db6fa5af702f9b2a56e7

          SHA256

          2d00c923ba5b91ee2ffeab9e5913996ee63a150e440c4fc2029225939dd0d321

          SHA512

          a27ed113bce8865f7a315d02356dbf5688353c96cd4609d2327013ed39d15e1710d15a0cf34456a8dc5c9985c17c7e61903f831b7c90d49f7a8fc6c609c65111

          Download Submit