Analysis

  • max time kernel
    122s
  • max time network
    126s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    10-01-2024 06:12

General

  • Target

    4fccc514a5d6cd427b8694ae3a4555c2.html

  • Size

    432B

  • MD5

    4fccc514a5d6cd427b8694ae3a4555c2

  • SHA1

    e130afe5bcc25a8e1372154760e139c82696b572

  • SHA256

    9edb160bb7000c1667f179d4e44afca4f1280d591346bbc32abe241852f15503

  • SHA512

    56e678ebc4443790007182af802abe03841401550bfc8f61a7d2aaab48f9ebe5d9c9e1fd291c056af980446ee5b5cb5092c75c158c606cd425526edf77c25bbb

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\4fccc514a5d6cd427b8694ae3a4555c2.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2228
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2228 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2644

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    cfee02594b5f9ffcc0d6f145cf6b5318

    SHA1

    2217286cd2343c91a4fa3f49ebdfcfb81023f7e7

    SHA256

    fd29a4cbf32e848726f00bd9241bd08dbdc2b991640c6c1b15672a7116944cb7

    SHA512

    f7e841c5d38718296f2e88f8a391b6d02baca640dd775c99ea0b170be8e985663fb8ad91e6d358f1b2df35c770d81f974062293846bd80f9e736ad020ed87898

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    df209eb80ee931ab4c5122e829b6b09e

    SHA1

    cc7e330355536dbba46292a8644c4631088e25ee

    SHA256

    e021d08dd72769e194e1683a2ce47dba7513390624eaadd1caac70c0fe368255

    SHA512

    ff08f4ab4a66eddfccdfd8bf3ab44f7bef7d7dcc25ebce7d018d6179306c36c420b5fbd35ead17b31f5d91de5965c2a6a38a4ec0864a8011ec67013ceae454a1

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    33a9ae0c7792375d44be97838d035437

    SHA1

    610bad53c9e0d111c0e85f35b39777862ae3d905

    SHA256

    115a6dda8ebce86bb57771ec58f19b96e63c229554e0dcca70a0fb884eabf20f

    SHA512

    515d89b2be40ece114d591f8b139f64826d9b018d9a98d269ac5cdc0762c9341924b4538268e0452b87fe99a41dd2016d20c25356750b023799198e0d2fb5370

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    6667daae5e1d8dd755af5cb066f6b56b

    SHA1

    0900a4743a261f861c55aca937a243685047cc63

    SHA256

    c0fed3b3f84944cd8ef81f02468bfddbd60d102a03288d74606811179933e516

    SHA512

    f77561244604c324002b3730507e708a2b0f0762c0656936e7491e24fa5aa28261b3d6080bdd7c120c0e195407d2df1cc873a350b63b77d90ce912b6be4cf1a9

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    dcbdedb4c5694ef7e63812e0d39801f8

    SHA1

    aee6320d56a91a4549a5064a9c8f1a0fb5c514cd

    SHA256

    783ef559a7cce013b31e4bc38dd8917cda5d805a4ae2509bebab7e6e76790938

    SHA512

    b3f1717117ad1acb173f6be8b104a840b0b981e7886c4d261a8a94840860a414b6cb0796d890e0a39dc323aa7326573fc796614104191c8ba084dd7b2380d04d

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    87c0df1b9b995b1b35e1be398c9dd708

    SHA1

    560a839bdc049c72aebb17f37f41033e91a10374

    SHA256

    746f7f640af7666c48b489b1666140acd08d2a88bf8cdf8a114a14bcf2e5f4e2

    SHA512

    9b7a0b0dd8db3fe3931b63f238a77935b59c81680c45279a181ef27a612c073833289bf936e8b3e00be9ff0c43e69976d14906dc7bd3554f1f4280cb6907fb78

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    a4422525946093f2341ac53393b2d402

    SHA1

    6f47a1b7215a19115d0a7142f7e04a7536a76bf9

    SHA256

    a4054e7c3375d4f5fb09cce721a4aaf0d3eb3ebbcf22a049ec9243262437dc6a

    SHA512

    788f62518beadfec1e05e93add7a90c51d5f74df79eaa3685732aa5bd7381ae5b7966e827aadbe2bbf39f4da4e01de02df3649d6ffd186f30df298f59d517210

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    ed48cd4c2470b919e43cd9c5110542a1

    SHA1

    6eff6791700746696d4302afed5b896aaa1ac841

    SHA256

    57aa71c13d4e5ecd97747eafd5059cd2e065cc49c617285ef63f6e6626e8ba89

    SHA512

    6c30ddbea5dc5f3c1bc3f5943af9e2b626c0a0a59d45236f38f85b8bddb0e064abfbf81b8471453a07ed626a90b661a4baee1963142d355cdbe54817378f6d6f

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    dbaab7b253f9fb6d26ef7c09b9cf89a1

    SHA1

    a07b9f85a07bca7a23901c605199aaa2e552195f

    SHA256

    be5700a09c9e8b996ba9630d4ba6ae35dbf8a574d3f48205d3ed10bbafc5fc38

    SHA512

    0819ebf07b63403ae78505094a1bef7b93a018ead6e74c1d517f554dd215800035c2a2f826b60e62587583dace6cb33ad464acd072c030445e5ac6427447a19f

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    0a14bef2affe3e0dd19f48cbb8975061

    SHA1

    abbfee2efbe642a393e6b888ae34f0e8a4d2bc77

    SHA256

    2bf50cbe5bf7f0aeadbf891fd51cbe830ab4e4e9d4fd79f0bee0f611446da869

    SHA512

    f723f5e9a5122e537d49c98d821a20cddd71c7abf37a5028c15ade4bfb7833f3fec8aa940b6c8fac9d08cfa35890162e43746bf1c9a43a469477d5bea6914979

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    8a66178ca21f64ed7377d384dab3cd0a

    SHA1

    fb8c05da41ffb2c12901789f53c7abc2848c0cd6

    SHA256

    4eaa9ef2eb806f96e492f3c7329795e508b8dc8825413bce426076c94d48f6a1

    SHA512

    2100e7a5ece7fafdd8db8f921587a1467eea5f30eca6b5d03611589e0fde4d07d88b027510cad68633101fae5f4661dd72e7d2712f1a00e6df85b5cb310023fc

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    db612cc570762cd346c9237fb60533ee

    SHA1

    1d534087418fcd5975e1e71fc2c940239b868701

    SHA256

    3b52b2945c81ddb49f878967443a055c7a550e5e0a69100a7b5b74659a3c77dd

    SHA512

    2c0e55713335f0811f4adadba078ce823132b30ac91bfb98be52d10de6abe554ff5ec54152b72cbe8040e9c2b36ec7ff30ebe1129eee91d182e06de2a7e57b69

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    bfc73264ae7dc42128d18720f71f9af7

    SHA1

    8fac85856b769889e5151cf20593ec10cbd9c5ba

    SHA256

    62cf4034cdcbfc47deed13341516bb428d7c22a9093097a756ccc791c2625096

    SHA512

    2f6ab82101322b8727bf42c7506327e8a633a216be1e3b66ca9bc75e1998f35385fc6595a951f7e47fabc872784f2251d6fee82f657bd7c321ae92dd25b653b3

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    731d5c236a7ed69d48ef91d91be363f2

    SHA1

    43d59663cb1a1ff7ca1363fc200abf67f96451f1

    SHA256

    9ca31b04fefc1c1593d43cec7065c50844694adc197b36fc2c1e3520221b7349

    SHA512

    9ebe6f4ebb319ca3a756c5965f195c7ac87385c4933075b2b11e8377d58269e6541a1c9b8cd518bb77d132816d1a4463f8dbc7c839766a255d3bd1705f7d41c7

  • C:\Users\Admin\AppData\Local\Temp\Cab4D96.tmp

    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

  • C:\Users\Admin\AppData\Local\Temp\Tar4FE9.tmp

    Filesize

    171KB

    MD5

    9c0c641c06238516f27941aa1166d427

    SHA1

    64cd549fb8cf014fcd9312aa7a5b023847b6c977

    SHA256

    4276af3669a141a59388bc56a87f6614d9a9bdddf560636c264219a7eb11256f

    SHA512

    936ed0c0b0a7ff8e606b1cc4175a1f9b3699748ccbba1c3aff96203033d2e9edabf090e5148370df42fbfc4e31d7229493706ff24f19ff42ff7bef74a6baad06