Analysis

  • max time kernel
    145s
  • max time network
    147s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    08/01/2024, 04:15

General

  • Target

    4a69b77f4259cd81a1e2ad477beaa823.html

  • Size

    10KB

  • MD5

    4a69b77f4259cd81a1e2ad477beaa823

  • SHA1

    9763c7a4be3d2639cc96707ad8c67c940c29e89a

  • SHA256

    e8bbe0e6be0216bfc327a974d7289ff16e0f4876689262e3383e52206b0167cc

  • SHA512

    33631dbfaa7fa937f0d1afbbaf4b7e84708ee4dda55f1ecf87c5a6646e0de870543ee108c3899ebcbb7664a635a7ba0787a1c9639d1d78ad9d53221a58921d3a

  • SSDEEP

    192:2VtlIsr03tu8k/w1wvqVkZ6Bi5n3oCgDc01kHauBuLbdU8d:stlIcut+/gY6Bi5n3oCgDc0WaguLZ

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 26 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\4a69b77f4259cd81a1e2ad477beaa823.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1720
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1720 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2180

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          2f49ae46ef75a265adfcd64cc191bf03

          SHA1

          524653470c27c792b541cf03a10206182cb627c0

          SHA256

          10af31e1dc9839585e496172b3c3d88353ce90a47eeba8d3f96fca708368dc1e

          SHA512

          18b35502969b4b0cc61025233a657f62c2380b48099bb009e74ab91192b0fc6d7e81e4ce2e374838b5b068e1bace6316932eabdcb61e7e98eb310261d3862ecd

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          dd99135ed5b93446aba5d8094011df8b

          SHA1

          c76899b893b501200a0e7184af65c57d8b501cf5

          SHA256

          520f046d7ffb82875b9bcb5a703e6f25ad34c5f1481e9bc42f21b8e0f0c4f029

          SHA512

          f79df12199c333a39b3879b53e2563124b0ee268ce977e885dfba3c8a52462a6b5e9f86cc27dc9efab835338c33123cd2af6b298e79635391d67edc66489029d