Overview

overview

1

Static

static

1

504efc00d2...7.html

windows7-x64

1

504efc00d2...7.html

windows10-2004-x64

1

Analysis

  • max time kernel
    138s
  • max time network
    150s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    10-01-2024 10:26

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    504efc00d27d1c077585b3998e70ab57.html

  • Size

    57KB

  • MD5

    504efc00d27d1c077585b3998e70ab57

  • SHA1

    cee5a385b830de701f4738f0d6ef1e3f0c40ff6c

  • SHA256

    e965ab1a74555e5c5d7c06603973100a4cfd6a32bbd51b85e06a095e9df39c56

  • SHA512

    2b402bc8d44dabbc5d86efeedf7e872c462a010623612b1567cd2230729c9030beb26c1c7381901228ce81a00a668be10b9981b3968ff4b78c3930e3a5a8cebd

  • SSDEEP

    1536:ijEQvK8OPHdFAbo2vgyHJv0owbd6zKD6CDK2RVroRWwpDK2RVy:ijnOPHdFx2vgyHJutDK2RVroRWwpDK2m

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 42 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\504efc00d27d1c077585b3998e70ab57.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2632
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2632 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:3040

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\070E0202839D9D67350CD2613E78E416
    Filesize

    1KB

    MD5

    55540a230bdab55187a841cfe1aa1545

    SHA1

    363e4734f757bdeb89868efe94907774a327695e

    SHA256

    d73494e3446b02167573b3cde3ae1c8584ac26e15e45ac3ec0326708425d90fb

    SHA512

    c899cb1d31d3214fd9dc8626a55e40580d3b2224bf34310c2abd85d0f63e2dedaeae57832f048c2f500cb2cbf83683fcb14139af3f0b5251606076cdb4689c54

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\070E0202839D9D67350CD2613E78E416
    Filesize

    230B

    MD5

    fa00688efa03fcd5f8ad510d5fb47e6e

    SHA1

    975169857a55ac2d3c0920a39821678e25fce052

    SHA256

    277475e13df53513a31b78b4755ccba7820875cdf63c12db4d67f62f239e7a01

    SHA512

    6bae711c089239ca9030add0b4b66f0dfc356a26f3aba76ad5018fddbe5ca554242f775f34507f4acf7fa469431c4e942e6a3cb0248825913e34af3215640066

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    cdbcdeebd054d60bc52a6ead99e872f3

    SHA1

    3612dc395ed818f9519d297824c587f6bd4bc3ad

    SHA256

    1c2272ca86e32c013f19434e4e9d86c369217ade58f9d57e51cb323016ed708e

    SHA512

    1ed4cea16c0c6264a3c9a66a37373e4979f8cda46430865d32df456e6ebe45bb57267ab12bda3594da1bb6182c140503678ca1796e1bc7793063753117b490a7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    98447541d27900490d86c101d97b854c

    SHA1

    601c907d583eb1d95432365030cf089326046839

    SHA256

    80a162c78802c4879b4cdc17db6c708348b5890d63c26b676846385ba03cd5e5

    SHA512

    61718e4d707ad45bec6e07410c56cf444db3f416702cc2b73dc3a53776d5389bc46d83fdd6584aa6b08335597c0e0fc9b53c3ca65fe165c1de483d739c4df8db

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    0d7bf278b475b91ae6ea372e89b0dfce

    SHA1

    d4bd8730fd2d71856c0e5e1ac4ecec36c77b0527

    SHA256

    511aadf7cd30a1aece6b91185531e940847c9c780ccb8a4163432308171d9119

    SHA512

    76767cf0f38027ede79d70297da2127ed78bb743253dc47260df33260a3cc09ae53054b3ccff5397d52347c43b3d0b1cb40b95c9f27886ce60c3d49b2629240f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    6d6152e0f278cc04553659c2428a397b

    SHA1

    260aa4becc681d7a004cbf8faddf731eb1092efc

    SHA256

    5e7bbe837f070a67ddf1a53cca870ccce447ce2c63a15d1527c43478db84e0d2

    SHA512

    9f36379a30ee8fcebf9a0579e082a4afd4a6442a316f24ba37f8ce148d3b011056ee68da3ca77d64cf2b086c7f96a8e65740d9b2c581352b2a41cd40f983a6ee

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    52337115beea47df4da34a6358f77618

    SHA1

    87d56fdb420336dccbc39291ea6038ceeebba51d

    SHA256

    fb44cbf09637945b5febf005d5560045f2e5421d3918a6713b422d9595e15b97

    SHA512

    dbfa2edbd13a0f368f8bba5d43d616d40c7ff88a736fc18a187bee50bba5ad9e1eb29b07498bfbe13324b40162a8800ab6dfcc7ad853d7ed22c91e72de65ba67

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    e4060d3d692d2546c0fc54e4ebeb9469

    SHA1

    9b60be52f335594705d36d1bfcd458d410e1fd76

    SHA256

    eb8b5742b728ad2945480b3dc3f511e0ee1b21190a09a77f1187a84daad5c50e

    SHA512

    0884f2da695f599a5fef7e3417fed992fd0faef31c659461c7c6bae713a020c45c687fe86f1477da1cb571955f689d3ea006607158312f86917cdd8d7a24e217

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    c5bc691da575ab3cc860a899917f3143

    SHA1

    6eb3a23b2d5e78ee8e69ff6bc3a2923549cb3883

    SHA256

    0c1654b372e888a9bdf7cd0c3bfd566aad410d28984f83705ff70ca6e7e57c8c

    SHA512

    b91a03c81fadb16f8629710837a3d371fc47b49c0755f6ef8e4b7fbc794803f8e5954035d73507d2a30795889672a446ec9a2b97cc80e0575bfa28f5150876c5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    bf90c9d69f34775a9bd4ebe1954b4a55

    SHA1

    18dbe28105801322c9d121acd0976417635fb7bb

    SHA256

    d84ec1c71f093c5a99e04e61f87db3308e4e960016df0383e950aab7afb1f045

    SHA512

    45f1ac0f65497c18e29681c9013131d9c0edf47291ce688ba23277e2d37ad90d59089140cccbd177769a5d54fc4328f6d634129275e0ddb34f61542d5fb508d2

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    8440c1edcebbc42ba2a09ac1b3023d4d

    SHA1

    4bb6142b4240777c0454520fe857bc06b0a4347b

    SHA256

    a552ea5f6a938c2175607e18f3060f5e77871c5ad7ea511be08f4c604c6f4064

    SHA512

    fd1214913900be217e80d685361f2b174f9775dc01c81410887534974fb2eeb7169409797749cc4bcab2acfc61e735c6a640d970c5654e5a9bc1fa0cf930a1a3

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    20d39cc0b8e0a2865b1896b57233531f

    SHA1

    499e7441dfc024cd7d06c515107b6d3e1fb430c0

    SHA256

    57bcf8944c4ca93368066b24acffd40aa14fbe5f8b87f6a00d659cf721e8a2c3

    SHA512

    9225ce740aba36ae35e0b60461a9eb9e1f51f95d2a94064d06e09de111eebbd4a0d6b240875c9afb6c06a388a82a6e0985245f740949bed27a613cd64d8d36a1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    02351e252a55f4e1c510fb1fc5dc55c4

    SHA1

    88277501c0f90147ed93e2714b9f5394fbb3c084

    SHA256

    fff64a364723bcbb2ad3753740db56a7a81e9791e6165b4290bb2077b74839e1

    SHA512

    ade901a072c8320b014edd8276155d8324071685baa94b3b4ce6a51f598cfaa35528f566d72e554985e84524a1aef1221d20f60f5714f976134640a31903be26

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\4R90HQQX\f[1].txt
    Filesize

    34KB

    MD5

    cc866a64429e153ee936a2863c148ca1

    SHA1

    daccf343fd2e8a58735b93568f4bb796a13ad24f

    SHA256

    083ddcbd971d24614c54e2a23af8945e24a577689d4c0a36295df5b94e0ea6b4

    SHA512

    9941a4fd95f1b73614bc9fa76e1daa26307b2b9175d5cb8cf2687b7e3087314110494e1e1cb8b1e68f60352044af6cc7f8b227ba2cb79be632336c43a8f2a8a7

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab77DE.tmp
    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar78BF.tmp
    Filesize

    171KB

    MD5

    9c0c641c06238516f27941aa1166d427

    SHA1

    64cd549fb8cf014fcd9312aa7a5b023847b6c977

    SHA256

    4276af3669a141a59388bc56a87f6614d9a9bdddf560636c264219a7eb11256f

    SHA512

    936ed0c0b0a7ff8e606b1cc4175a1f9b3699748ccbba1c3aff96203033d2e9edabf090e5148370df42fbfc4e31d7229493706ff24f19ff42ff7bef74a6baad06

    Download Submit