Analysis

  • max time kernel
    142s
  • max time network
    145s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    08/01/2024, 04:14

General

  • Target

    4a69534adbd38684549dc92e8b29f13e.html

  • Size

    16KB

  • MD5

    4a69534adbd38684549dc92e8b29f13e

  • SHA1

    d61738e9bf26129a6d306fa392ce3396f127c399

  • SHA256

    e4d4c42e45dcde1d6f049d1ca1b84dd585acd3b6b7e97210822c7a6bc8f591fb

  • SHA512

    c6e026fede32dcad6aebd455b1be830a3a962c1695bde055279e6c4a6d7073c02c1a2d86e6ae7afaf61607c9262731c5ca99d2c7b62965ca63383d91c2abc4c9

  • SSDEEP

    384:MtecIgr6+0up9H6zCtr+lfFnZL/SY10qZ0rp2V:MMcPr6+5QzqSZ3

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 49 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\4a69534adbd38684549dc92e8b29f13e.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2480
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2480 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:1976

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\F59A01A8B782D93EA6991BC172CEFFB1

          Filesize

          867B

          MD5

          c5dfb849ca051355ee2dba1ac33eb028

          SHA1

          d69b561148f01c77c54578c10926df5b856976ad

          SHA256

          cbb522d7b7f127ad6a0113865bdf1cd4102e7d0759af635a7cf4720dc963c53b

          SHA512

          88289cdd2c2dd1f5f4c13ab2cf9bc601fc634b5945309bedf9fc5b96bf21697b4cd6da2f383497825e02272816befbac4f44955282ffbbd4dd0ddc52281082da

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          50f2960607740353102a658b545a1f8e

          SHA1

          9a6da6769de2083812be98921611b6d94b364311

          SHA256

          363cd57f60648b16a13f1b0559d88c9abcb73e3c31b7d50aba76b4201309e9fd

          SHA512

          07cf1b28ecb9c8ec823a8d08f34e064bc282a129a875c1f2ac1712dece730a9810c0018dea401fb5d8af7a48a22710a345dccf00a435dde7d30d402a54703b55

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          7c264ba72a8c82b686da33efc8cf6085

          SHA1

          1570ac21a4133bc73af5aea284395926a3f4e263

          SHA256

          0da3c56202e623ef58bf90c9d8b049f5d34391811cb05bc76018211534663b97

          SHA512

          ba8e610e33b6a0e1208433434239011eaa5e08c0c50ca1583f960ea78f834e3f1825122d19038a1fde0e96cd3286d2a27fb86b4b00bc07df38d51125a9a28fab

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          4a6ec2549a90f6a03bcac2e62214c82d

          SHA1

          c1ebc855664d87c4f52749b06f1e076e2683b48d

          SHA256

          940df338588a4e9faa6be10ea25300fdcb15c0f9eacfce43368f9c81e96cd122

          SHA512

          ee10aee780261f7c4762be58247a353c1d337dd05d7a3b474816b2a43d43e84a2193678b4a90d02e18fc1d2b87f8714b8d06ed72b7041438eaa839e264501533

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          4870f21757810607e981172b35e3df7f

          SHA1

          3e5b88ccf54670293037ab5ae412aefd211c28d9

          SHA256

          e85cf5886e2133f15ebd68cf86624dd8423f462c3fceda744908005cf99531d8

          SHA512

          7f314622a9dfe105a11a173b7a56703d1f04ecb2a6d73351cdca308f324b530b6a73bfa9345952a0396af8abad4abcb240da21d5326c6ed55db8dbfecd4ca085

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          36991b6058fd9039b578c0a90178906b

          SHA1

          d1066befd70d28a7cd7647221de4a1b42099d4ed

          SHA256

          2d09616c6fb40f07a396712d666de5501a141a62be5db82d4ae0a3a4b69cd707

          SHA512

          5efcab06bc8d5960a214f4daa80c8593c5818dc6fcfe9669cc4694ba430f3b3b0db7b12be50375d21557fa3449a321e15b411bcc29f47b6bf39e06c8ec469e30

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          dc7dff1593cd111c19333f666251edfd

          SHA1

          aa90cf6dac3e97dabb4ca57b1465e569b44378ee

          SHA256

          49b98a757d8e5295545541ff9b7cd257cb448faf42e6bbf4420e5db95398019b

          SHA512

          8109af746b4a2a1ffad7aaf97fc7a41478995d0571e02e5489a0b4b03e688ceaea1986d2b63703b57d3152cf5d6fd2890e84a4e1be4821aab64f41b602604498

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          23f7e0ae16d2eda05c606a45f86e5f1e

          SHA1

          afe233a4b43fe09e83fe331923cb4c3a27f23750

          SHA256

          471e1e1fbb829a5ba9829ecbe76d74429ed91207ec45e7462810cb3df8613ab7

          SHA512

          dab219e91fc7ffb210618238519b48480d123d92bf4771c020ae20092ef87b22ed538effad9b24cde6af6bd6c422dbcf6bbdb3ee0c8bc8b994304cbc8ea30302

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          6646ed5cf0fce4cfaaf74f3ec6235c86

          SHA1

          41cf83867c6593cac7e504bfcc6dc8b043c22c07

          SHA256

          322e605896115117050e57f4abcbe4ac76b47e9d4557b1f9b2afb1d9f6bbcbe1

          SHA512

          27337c67d4bc0cba6ea857f998ae25ba5743520020ba00d924dfc56c2bf12025e2f5773d7520d32c3935a5662c625de5f4498b567bd410a3f529e9575c0568bb

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          802a95283efdfa1ff09189518d148f38

          SHA1

          e0971853fba8cd41c1a1ffa6f14ac7dc1d6e2abf

          SHA256

          6ca9f20dc9977263d8d9f281747667956fe014ab78489751049e8cd9045afa3e

          SHA512

          dc627384125c6c9d922041fbe81d520f40e4ce5edd8f9abc3dc0066d4b83cbad2add237175b81a94d87f9c2af9827f88b25a628a5c01dc9edfa8237c975d0974

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          a7c73c888541effe2dc769f0a20055cf

          SHA1

          12350dd04678d066f5c2111df66b44ec009fe443

          SHA256

          25c81d0ce724b68215a08f73b96923ff421b36f293a814ef20cd446bb1c3a882

          SHA512

          ab5591a78ce89c909dc91ca575358b48848fc246380fdd264b44c401822c8fa0beca3960cb578c17bf9365ecf0bf98f78a0731f4a8c9853e3d4d0e24190ef5dc

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          3b509207f2be763a2c7c6664d2b7835d

          SHA1

          941dc9e4dba65650907440361be7daad8c5fb26f

          SHA256

          79d2aade7edcf0f11b2fd8ce975759da811362eea47b7729d985e96db684ba3a

          SHA512

          8cc9b4e0028dad8106e94b19b05869988240d24efd7f37c967d957576179f4d8e4f6ec093dcdce55ce20e9c58eedf2767363b9a23784b9ff59ce0f7f6e2b5624

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          38f6430f7ef8e8e63ce271290b1e7fe2

          SHA1

          c21aaca184faa7eb568bd31b3d9eee85b86c7538

          SHA256

          0876ca68a1e36377f19b06855ec37e36138734ce7c1a5403aa1b76664b9e3848

          SHA512

          f10b1608f6e1d8dbe882f299c879d1a2d068a6e09091d63d9bc073c4ca4513b3dc1fd62e0b0d5577227f0e00c1f7d6077a1d45bde3e074655a6aee6ec0182275

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          e48ae8790504d52e279f5d0cccbc98e9

          SHA1

          9c0eb47563399afeb259a8fb3347763bcd574b6c

          SHA256

          ba641bf7fa99ffbf82f785ac88e6ef9b45702aa576ff117ddd4eaabc0c68a7a5

          SHA512

          03fc9c7abf24ceb471c4a69ce7dc5aa5a13b3810d7f0b3b7e64f3f11dc670053060cffe9600a6b2d8c0a15c5a752a75239877f99b389b0efaa31a70ce40b09b1

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          a5c97606e519ca522b159dc4219024aa

          SHA1

          3d9fd3a44f98c46120652a83288ce8d8d7019d14

          SHA256

          01cf3a9bf1ac9b6e97845dfda8ccd98de1e41518d057c4820f0abdf3d24cd85a

          SHA512

          9d08a349b03ff95d352dab125252c4dff726b2173f954caddc3a674525e1811272899b84b084d454967da9523509ebbc59417fb69738f6fc8d424d3b0d82798f

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          6696eabf79a1ebdb32f84639ac45473d

          SHA1

          f2d65e7f1fec7c8b8c33343e3f18e732068e7fef

          SHA256

          26e7fa84e1ad739f83713c9af6a088cbe6b150b344611415511a68c2591a66ac

          SHA512

          eb5625212616470a346eb495ebf82ce9f384d34eec1802164569abed6314de585b058d9c710bc5d88270efa4051bff557ac7a918c88b7f567302a82d346a113b

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          a6ac3a5b38b0ec59f429f2578eb13e7d

          SHA1

          e752af62443d375f2e737a2cfc6b553aea7f293d

          SHA256

          37dfbe8a11e9e2b7bc6ae3207ae16ca70496e1eba282ac71604e411115a3c35b

          SHA512

          69915835330d22bf92c4b8bc8a3c6151890a457b97cc9b5f9c6c3e7dac961ec8b3c3452d85a8cde9e4a4a09bd99fb9679a1da9058d5327b399d417ec05a74bf9

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          4cae2235173dfda193d19f203d21eeae

          SHA1

          eec33894ec0b5a1468a61d66193228cc70882626

          SHA256

          a32347e946cfc2383cf1fb4dba0f56f0cd2aeda798ee22e6866754f77912f359

          SHA512

          5f05731a03a9e68b653d9e5d8ece0de3b151e33fe53700d29bebfe3d4c00fbf96453afc4416262855e8ad5fdc4f33c2d2c9fbc97ed65aafaebd96fde4d7d51b6

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          780d4c670dbc4ffc025b75baed27e09e

          SHA1

          eef0fd2821f9827effa23d035435395f12052d31

          SHA256

          285ae588fde9f1858764e86a338ade9c2a22efb7432165d8da3e7db336458ad3

          SHA512

          4e6688d2f47000943015806943a3ac85fda157a588a4e3c13e6eb31b41277aa21c28a2ea2aa8375682d7871459a53f01c51439cefb56d6beac08aeecfd42e1ef

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          276d1cd048081c19682d3673178c467e

          SHA1

          7e8d53617a0909b3b40d27d4ac035402f46c900d

          SHA256

          98865fe6b37a747857fe39e50e94dcfd35deb28dd43becbfa0d2919c3a6fade3

          SHA512

          b42fe3b1b0563b42ea4b3056a5495e6cd3451ef9ef5a36b7527f8c37cc1c59ee4c2ca2572fa6648460e5cc166ff9930ad4775a41c5ea4b2487fa3a96dc18ad60

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          0c00f53c6255255f9447282631a9075d

          SHA1

          734fdd593832b30570cab3ed49e49b7253acea27

          SHA256

          990d529b49371001f1eea79625d437262e11a739bd90ec9763564649075a464e

          SHA512

          80884120dadb62f48d6efdf090f4a5c50d9970847650d3ce251dcf7d11f1abe457373a7c1f35a170f0325172b9bd245cdd9a444484d62614333000b6b933c1b2

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          625fcdac86e5b6802186f295498311d0

          SHA1

          94112402a344847e3beef1f36bc0d10070f5a676

          SHA256

          08b454952c6a7fe8794bbd272deedccf6da7198ae91eea64eaab4a8c5145daac

          SHA512

          4d02ff5dd967de249b1ecc3edbe54a924b43eb88525cf8a803907bfad48e5fc40e58772ec7056d22d0d46dd16156b9580e4a9ffcf2d613f58385115d5b1b1e23

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          90120533b705f11147cf0c93b6274f94

          SHA1

          99320e70cf2271c57760627a62ad28500bfdb8a9

          SHA256

          4b5e3e3e50ab9d250c387cc5c7f6f011a30ba7a071bb1bdb00bd192d389355d9

          SHA512

          278a42fb29230ee3ee4ed4c870c12ef937beb74af13c75ce37b97097d6b15dbe194f76fa9b95786e4591a7c43bc94c296903053ab1d2d51ee851c0718d067bb1

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          71d9a764f19df5d16025de709ae12979

          SHA1

          61111db1fcf24a27d91a6daf5eca8b6546196c06

          SHA256

          64e81860ce9a73944420d75c0402fa3280c81784dec9d5d5922d21829ddf3103

          SHA512

          27a22c1bb645d499a8a977c48c5a0dd03837b72ea5f1d72a866b1a266af17863f99a725aa0c448c0721133b43c2ed8ea52565d1cc27b1a0e36d88cce428967d3

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          187c8bc2ea6ade43734e8f96cfbf620e

          SHA1

          c2d9ad02df2942153c8937487884a7d43af54e3f

          SHA256

          833415dfdad7429dbe272f8b95259d6780e529bb6742c23463153a434e0dfc86

          SHA512

          ac1a797ef5f58e5372d4bb456f3f7ac47adf06c884cdda2d48a6aec223c0da9f6be7288859ce81975a8600ad79fab687e9ac8b38639ce419fab256c6ee005560

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          dbed325f80461bee2b4ec526a5c252ae

          SHA1

          aaa77fed649e28fd5eca32d1c343d9f37b216367

          SHA256

          fbc506aed64face0b914c01c7228ab7b41dc5dfc8ff083358cb0053f254d213f

          SHA512

          5c3864bf6fdb59acaa02304ded11c618ec9fdf6273972df64d26bc9fb56546140e285fba24f7c68949416685513731f11ad1d0be8e738be89c9d10fcbcd33733

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          609df332c43624b422e88e427e1e6d14

          SHA1

          57b236ac142d69d2d8de6d1e1ff852453d7bb4a1

          SHA256

          6503e9af143ff2bbb05fdddcb8c51ae988124e291e309e56fbc727389824aafe

          SHA512

          335764affdd68c59e51281b19fb72c764fa7a9f28e21459b5592b27e6e6988ff20f84c811f3a13ef82e0fbb1a06d975eabf4fff2b262432f9b55dbf8158b83b6

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          32733b29186388c38edbefbab1bca66b

          SHA1

          dc512544a1a2525ff26cd48638080d08eda57166

          SHA256

          954f508a58a755fa3e99d4bc56b4263bd0b5687a4b8c149f8ab29baee01d5a7f

          SHA512

          d392e1dff97e76b617e95315e09be3f064ef9e48d06448a02bf785322dfde3838c99e007b339711fa522f4b1e64af92129b996180a4cc994786954c0307b0166

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F59A01A8B782D93EA6991BC172CEFFB1

          Filesize

          242B

          MD5

          d8085a8e19672624b29ae5334ffad33e

          SHA1

          2359d342461b737dce99be94fe829061b1eaa682

          SHA256

          aa55eeaef852144292a946fae865ae1411a5dd37da0a5a4304f7c6b47023fab7

          SHA512

          91b97c44497a4b484871cbd6fb7fb7a00758064acf2d0edda0d38e5d384606599a09fe9f4f7ce825cd1aa5a8e393997b848691b69483f5e2e03806d38cd73bd9

        • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\E1CCB52I\recaptcha__en[1].js

          Filesize

          502KB

          MD5

          37c6af40dd48a63fcc1be84eaaf44f05

          SHA1

          1d708ace806d9e78a21f2a5f89424372e249f718

          SHA256

          daf20b4dbc2ee9cc700e99c7be570105ecaf649d9c044adb62a2098cf4662d24

          SHA512

          a159bf35fc7f6efdbe911b2f24019dca5907db8cf9ba516bf18e3a228009055bcd9b26a3486823d56eacc391a3e0cc4ae917607bd95a3ad2f02676430de03e07

        • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\U1J1BPYJ\styles__ltr[1].css

          Filesize

          55KB

          MD5

          eb4bc511f79f7a1573b45f5775b3a99b

          SHA1

          d910fb51ad7316aa54f055079374574698e74b35

          SHA256

          7859a62e04b0acb06516eb12454de6673883ecfaeaed6c254659bca7cd59c050

          SHA512

          ec9bdf1c91b6262b183fd23f640eac22016d1f42db631380676ed34b962e01badda91f9cbdfa189b42fe3182a992f1b95a7353af41e41b2d6e1dab17e87637a0

        • C:\Users\Admin\AppData\Local\Temp\Cab59E5.tmp

          Filesize

          65KB

          MD5

          ac05d27423a85adc1622c714f2cb6184

          SHA1

          b0fe2b1abddb97837ea0195be70ab2ff14d43198

          SHA256

          c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

          SHA512

          6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

        • C:\Users\Admin\AppData\Local\Temp\Tar6953.tmp

          Filesize

          171KB

          MD5

          9c0c641c06238516f27941aa1166d427

          SHA1

          64cd549fb8cf014fcd9312aa7a5b023847b6c977

          SHA256

          4276af3669a141a59388bc56a87f6614d9a9bdddf560636c264219a7eb11256f

          SHA512

          936ed0c0b0a7ff8e606b1cc4175a1f9b3699748ccbba1c3aff96203033d2e9edabf090e5148370df42fbfc4e31d7229493706ff24f19ff42ff7bef74a6baad06