Overview

overview

1

Static

static

1

4aab0be1f2...d.html

windows7-x64

1

4aab0be1f2...d.html

windows10-2004-x64

1

Analysis

  • max time kernel
    143s
  • max time network
    152s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    08-01-2024 06:22

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    4aab0be1f26444696effb5da79c0629d.html

  • Size

    31KB

  • MD5

    4aab0be1f26444696effb5da79c0629d

  • SHA1

    23cdc4a069256f525777c1af63cf3cfcf591b9df

  • SHA256

    c4e85096fa7b15acef181e3b3fe90207d67eb150c1bb9836cb94a6eb021c8a10

  • SHA512

    3655320cda8ced22882b8065d5d1fbb22c4da21219d5a1993dc931f12b11f1a98c63c381c5e99821a12e9f06409029d73a4f49b98b6dffdd77af96b29cfb17e4

  • SSDEEP

    384:FPFoZO/r8JEtf1jOD+ghjEEKTQ//h9FxfDNhyZ9sYZ84OUcNdLLPj7fZh+WfLaYE:FSrnlLrVfxny

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 41 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\4aab0be1f26444696effb5da79c0629d.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1352
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1352 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2312

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    cd2aebd38204ac10dc46464b5828312b

    SHA1

    ab18517007ad87df49502d27c7f99d36996a6c08

    SHA256

    1e942df4c4a342eb0bafec91c7593c0176b1269337020a2506b2004ecae9a900

    SHA512

    b705ded0587c70ee2693ae84c9a120e11ffccbef9fb013e86aed733e59745dbd601127200413c1a106fd37e48c5a68eaba04381fa22bc1827b987ade1e8dc6c5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    8268243926dad6148e9f5cb5476c17c9

    SHA1

    bc0eaca815996fe58c094c292ece5ed6c915a776

    SHA256

    b13807e7ad69fcccf447cf0eb4e386f9e080d5b93cf95ba7c88fe1eec2464449

    SHA512

    55b049e2e11b2906eaa8c0edfc03e8de73c3c704d133d1261f9eedb2a0d6eac77ffa05bcd6e8fd12619e2a4ed8aa4f2e0bd2a6e252a2369bf59670fdef57cf98

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    4ce1ecf04bb9e42f1d740f6ab2ae5fe1

    SHA1

    0dc2d1cdf1890b97a090f228bb32f2c1e96b3442

    SHA256

    67f3dd4162eeee6089a6a61f62a207451d70419aa146078bf0c9bf6cd380d7cc

    SHA512

    eb89ed69386e153dc68b3ab112fdb6104e5ef4b99d5154596ee8d0a54c9831bcc0502a28545ebcdf93301d610105f76957d95b011b1c9f3ec54328ec598a98b4

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    9f2dc46e98dbe5d88d73ea036d57f9c3

    SHA1

    f248245c0cb0cc19e1456c9a8c8a9b97e9a2edfd

    SHA256

    83c5bdec36dd2aeabb3f94ed6b1244578a51a96debe3c8e659df21f421d154a2

    SHA512

    9bbb0f65f08b03e0c6595a4f3da933b1ca69e4452dfa264cdf55b0322807bde041c366cf13a0058b0b1d17bb3222e354a3d498bcc3fc3fb63af34c21b0c97517

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    105fc184f005dbd0cf2c62d2659a8343

    SHA1

    a8f0f156428dc7f47c1dea577ef4725698c72944

    SHA256

    a668aa78483016ae9a6a18363a27582aa7e467b44a1e02df9b4db0afe4bf7dde

    SHA512

    27af54d450b02e4caa222d4d7f7146be5649449bfc0fb305432beb30d36deee6a3da5a8f44f71770216c84b544617334038a8e690daf072445264b9c6f9bb3db

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab7504.tmp
    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar7517.tmp
    Filesize

    171KB

    MD5

    9c0c641c06238516f27941aa1166d427

    SHA1

    64cd549fb8cf014fcd9312aa7a5b023847b6c977

    SHA256

    4276af3669a141a59388bc56a87f6614d9a9bdddf560636c264219a7eb11256f

    SHA512

    936ed0c0b0a7ff8e606b1cc4175a1f9b3699748ccbba1c3aff96203033d2e9edabf090e5148370df42fbfc4e31d7229493706ff24f19ff42ff7bef74a6baad06

    Download Submit