1ef619f82e48c2ea4e180add4e38edc5a533ebc0514371ba156d63446e4393b7

Analysis

max time kernel
0s
max time network
144s
platform
windows7_x64
resource
win7-20231215-en
resource tags

arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
submitted
08/01/2024, 20:26

Sharing

Copy URL Twitter E-mail

Report Analysis Logs

General

Target

4c61e55fdc17aca81e0131255d65ca55.html
Size

1KB
MD5

4c61e55fdc17aca81e0131255d65ca55
SHA1

2df3edc917436d2a861cc312c40ece6a3c023631
SHA256

1ef619f82e48c2ea4e180add4e38edc5a533ebc0514371ba156d63446e4393b7
SHA512

d81ca0108be68a40c641647ecd2648a4d4e48585d382819fc2a35345a882e54792385430e297245c4a71855ca1f886fc28d53d0fcd39daf64a85d7895ef26336

Score

1^/10

Malware Config

Signatures

Modifies Internet Explorer settings 1 TTPs 14 IoCs

adware spyware

Modify Registry

T1112

description	ioc	Process
Key created	\REGISTRY\USER\S-1-5-21-2444714103-3190537498-3629098939-1000\Software\Microsoft\Internet Explorer\IntelliForms	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-2444714103-3190537498-3629098939-1000\Software\Microsoft\Internet Explorer\InternetRegistry	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-2444714103-3190537498-3629098939-1000\Software\Microsoft\Internet Explorer\Toolbar	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-2444714103-3190537498-3629098939-1000\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-2444714103-3190537498-3629098939-1000\Software\Microsoft\Internet Explorer\Main\CompatibilityFlags = "0"	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-2444714103-3190537498-3629098939-1000\Software\Microsoft\Internet Explorer\Main	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-2444714103-3190537498-3629098939-1000\Software\Microsoft\Internet Explorer\IETld\LowMic	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-2444714103-3190537498-3629098939-1000\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-2444714103-3190537498-3629098939-1000\Software\Microsoft\Internet Explorer\BrowserEmulation\LowMic	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-2444714103-3190537498-3629098939-1000\Software\Microsoft\Internet Explorer\LowRegistry\DontShowMeThisDialogAgain	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-2444714103-3190537498-3629098939-1000\Software\Microsoft\Internet Explorer\PageSetup	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-2444714103-3190537498-3629098939-1000\Software\Microsoft\Internet Explorer\GPU	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-2444714103-3190537498-3629098939-1000\Software\Microsoft\Internet Explorer\LowRegistry	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-2444714103-3190537498-3629098939-1000\Software\Microsoft\Internet Explorer\Zoom	iexplore.exe

C:\Program Files\Internet Explorer\iexplore.exe
"C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\4c61e55fdc17aca81e0131255d65ca55.html
1⤵
- Modifies Internet Explorer settings
PID:2040
- C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
  "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2040 CREDAT:275457 /prefetch:2
  2⤵
  PID:2256

Network

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

T1112

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
3b8eb3218040e3f195ed350b74b4c60e

SHA1
fbcc08356ba8b264847b26ccb04218055358b93b

SHA256
9779251e1bad56075e3d402eb70c275f612c525d3ce55cfb6d8ff7e6a9d05a6a

SHA512
956334e5906383b8ffc9ce2bd82736588e7230c84a98ba29619d6dc73824d6037cef03b6d2c4e148ae2d2e23bb644f3b6894bdc2f3a765730445ef791cd7bc35

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
37b40f03e304d6e1c0df357fdecb6ea9

SHA1
1dd8c15ff9e87d98fe6301b8829775afd47cd3d2

SHA256
8b13d5ca6f8837b0e578d48b41e637abaa28099602b40262ede3f033c62c54db

SHA512
cf58b6a43b840c5bc4337942256aaa0313ed9509923db2fd41397ddd53a89bee4c8eed5dea7219cfbf4459271b7e00440484677c7a02da993c1f3c309a61038f

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
1f61a3f0a2c125efd47e6bbe0c2ca9cc

SHA1
b9f2f6f9d32da5dd87a1f5d4b6a148726887500d

SHA256
84ed9bdfb2eaa3cca68e119c995f299a628d1738d63c6f70eaa98164a4493744

SHA512
3db592410cefbc3a14cf43316ca56fd96b98d04158ac10e163c1519fb5a4f576a3d2aa01bc76a60450146da1b076d7a991b701ff5325e4536d5e66665dbbd05f

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
7b24c0b81bfb27dfc80121c0f95e871a

SHA1
0db12ab2f45322c3986462650c3f0fba190c89bb

SHA256
2b2a0b9ae1ec963845a4cf70f5367e017a75cf1a94f9093d18827e6a510243f5

SHA512
ceb113282e91911c4628d5c51060289fd31cd1c44e030f4e0d5b833b6f32b5989f1442dc7897082b51b20788ab27609391050427b3ef112af3e4dc21aec36e42

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
17af1469d471d38a1ea7fc536b88e3ff

SHA1
50bd5fa94791daf7af197f84bf7fba3ce5f7523b

SHA256
90a40bc924e416a393c1d1f6e815c8f2b3a5dbd0a226de06faa3621fd45e4ab5

SHA512
7a901da6f80f08201a5ba85fcc99447b667c26ee72bf07a035b661ec4f1f76c222bb6ad4e334d16ee3d6359c32dcc737bf1f3f7674179b687f05f7d9109362a9

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
a3b5e1fc15c9e9507b0b07eda979a889

SHA1
e28e5ff172692cb69d23cefd06d9c0e039ecc4a3

SHA256
48f740ccecce8ba5ebdf25cbd6d6412da6b8f721ae3479c2bc4737a40fddb927

SHA512
68f0be981b2f7bc68d4ccacd8400b1d13efc2fac261f03ff61c516d09c59e693c7db488db2291a3941d323ce01b248d578ce35cc7445bf276a67679f03e145d6

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
9a5489f0af5b6a4f6492ae2c7de0a2bf

SHA1
34f35ba8e5700787c8ffe654b90ae0413ce9fd07

SHA256
785877d9e9e7c99afaaa7fb8fc78339382dc9fe63c2b02608a7579f97988bc57

SHA512
0c97751b225de113c2756c1accfa6efe7003acd25710f72b922eb8a4fd1cc33430e70f3a63f6b344124dee13608b65a51d8955c38509781bb699063da5247452

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
79cc0c5902453011c577b906c134efa8

SHA1
21c1c4bac1aa76364324230034f8452bf3b155f5

SHA256
503fc016d8dfc3cb11e651cb03df35b57877d049da4845917bf345cbafcd2669

SHA512
fe6c4fcb1904da54334b13d39e330229b467032b1ddb31f56e6398fefcbf00437d66c298deab4727836c4035c6e7ddadbcd524c77063204b3f44546a8073b47a

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
eb0d4385b71afd8f97449f562bb17283

SHA1
c8d4535e4459dd4bb5f604b4e0fc83555b8eaf5a

SHA256
1267fb1af332f38d3b99bbd4251d8bdd2f6a59b467d08680d5c7b5ebcb790b24

SHA512
d79938cb6b94d5e80a3ab1c33c002cff5a06fd7cfbb09cb6239f09d96b8c32d0693e3d88db8c32aed65c8cf808835b017be7718e8f47f73c9c382cba8c14ae5f

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
c239a29ad772c0c71bf51296a9ecfce1

SHA1
21f6549deae3331609d3e9dc52709e938e5c47ff

SHA256
6e910c0382202799101bd49455936e2df1eea94fd7cbb63538ff5eb52c50c4c9

SHA512
c5ae7d77c33721c078dfb89a3a10082ddd12414ea503fbccbf1dc0a382cafcff7141d40ac0ca3145302d2030cef9be2bc5a6c80134fd0de8d5b96ee1f77e9259

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
d03a3ca98a8e1d224333018af814a7a4

SHA1
951af16ac5dd4122c152fa8b688f67d56d146a42

SHA256
44a7a85b675eb154de5a6bfad081971b974c4c653816d2cf3fd79ecb6c325c05

SHA512
762c8e720f53882c8172d9383495a7ff5e1e48fc59b30ef6a80214c92590ab3579f9066613ecb8b477a899d02271d8f0734a16abdd3a5c7ba5ed1729f37e57a3

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
06783f6c336620f61266d7fbc60da2f7

SHA1
ec8e91a2c32a57f19bbacdbb6db1612694b67cb1

SHA256
fdab2e67f3f6ea1c5f3563ed00e3bcc5ad87dfdee10ed1610ea3ee2f605f6fc0

SHA512
fe5df6016e0da033d5fc1b3b7f989fe8b4878bf201a59c068efe1836adfead1979f7f2ad1387f76ef8f5589d13300818e44b29f2a87dc79eb65225e9f6c32f88

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
7063e97c3925e636724703587eb48694

SHA1
90ab0f178aa4d5714c241137cb0658124f1df6b5

SHA256
33b7bce67773d8033239bb534de650212087841f49d5dc9cdbae9dac71fbc705

SHA512
4ca0e82f4b6615d0fd152213c0cfba0f7a0c39f6a05539787923b292939ecb19b251405994b03d8221adc78a880e097652edefce79c25fe7642b72bd9b70c1d8

Download Submit
C:\Users\Admin\AppData\Local\Temp\Cab4E42.tmp

Filesize
30KB

MD5
92dcca9edfdfc71d16df5f267b1612cd

SHA1
d07310b73433a3b1abbe888b1a80f6e586d59c03

SHA256
acf865fd031db3fbbc292b8aa08a74065dd63c783c5f8862c5ed89618a3bda04

SHA512
f68ba2f27d33d3490e86d973b514045c4e958a745f47555d22bb8e9fd12db1f5a02cdb8cadab29cca195472876972b82d28c3776a57a6388fb42cd714c4a8feb

Download Submit
C:\Users\Admin\AppData\Local\Temp\Tar5325.tmp

Filesize
1KB

MD5
fa527dcd6b5eb05e72fc51570a2a6608

SHA1
3380c5ef74408265fba2f67e790636d0ad0a51cc

SHA256
4dc7a4a6cb3be2c334a27a49df89f18f8f91749fe6aa1cf28d548e0e0c75ce3d

SHA512
05c0e217c433949cab210102a26ca7f6a765515b228b217e25c7409408fc167b5a59a8494e1181284e9ec72849c90288f3a066faa284e29d871097ec76291a5a

Download Submit