Overview

overview

1

Static

static

1

521323dd54...c.html

windows7-x64

1

521323dd54...c.html

windows10-2004-x64

1

Analysis

  • max time kernel
    0s
  • max time network
    128s
  • platform
    windows7_x64
  • resource
    win7-20231129-en
  • resource tags

    arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
  • submitted
    11/01/2024, 00:42

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    521323dd54de1722388fa1a90ec5642c.html

  • Size

    3.5MB

  • MD5

    521323dd54de1722388fa1a90ec5642c

  • SHA1

    b8ab3e9ba0eea84fa53d4bb742587ed0b3677c5b

  • SHA256

    cee9600447de3168df80c38de077d0ce76540618752aa2e9824c1cd8125acb28

  • SHA512

    c35bec97d7134c927fdb19e20cb4dc1e7ea697c40068ca680b4ac6483ebd7722e805ee5ced7893e6d5493af1f4270c75428eb305fb85b781b002904f94f03a42

  • SSDEEP

    12288:oLZhBVKHfVfitmg11tmg1P16bf7axluxOT6Nf9:ovpjte4tT6N9

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 18 IoCs
    adwarespyware
  • Suspicious use of SetWindowsHookEx 2 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\521323dd54de1722388fa1a90ec5642c.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2088
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2088 CREDAT:275457 /prefetch:2
      2⤵
        PID:2944

    Network

          MITRE ATT&CK Enterprise v15

          Replay Monitor

          Loading Replay Monitor...

          Downloads

          • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015
            Filesize

            65KB

            MD5

            ac05d27423a85adc1622c714f2cb6184

            SHA1

            b0fe2b1abddb97837ea0195be70ab2ff14d43198

            SHA256

            c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

            SHA512

            6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

            Download Submit

          • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\F0ACCF77CDCBFF39F6191887F6D2D357
            Filesize

            1KB

            MD5

            a266bb7dcc38a562631361bbf61dd11b

            SHA1

            3b1efd3a66ea28b16697394703a72ca340a05bd5

            SHA256

            df545bf919a2439c36983b54cdfc903dfa4f37d3996d8d84b4c31eec6f3c163e

            SHA512

            0da8ef4f8f6ed3d16d2bc8eb816b9e6e1345dfe2d91160196c47e6149a1d6aedaafadcefd66acdea7f72dcf0832770192ceac15b0c559c4ccc2c0e5581d5aefc

            Download Submit

          • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
            Filesize

            344B

            MD5

            8724c719e9c59bffa2f2f0f733a43586

            SHA1

            bc8af0def2e7127b2e5b8bd8ba757944a0764342

            SHA256

            14a5b90a2cca573493fbdf79609f5d82a80aadd13b222fa4357e82ab7f3f1d45

            SHA512

            bb5b092a9cd76bdc859f15c0722c72c625502bb69f903a8b96bf5c7d5e62bf4b5f0f76bae71df064e0750bca8a7231c3a4a189deb8eb031689b512955d1cbfca

            Download Submit

          • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F0ACCF77CDCBFF39F6191887F6D2D357
            Filesize

            242B

            MD5

            ad81f60fabaa727f980f6e201b06a725

            SHA1

            6c4f88de35bb79122e38cf45a807d45045810467

            SHA256

            0b56ded7c37d2bb46a87d2ba0f53305ab85f1240f52074d6fe73362e5242260d

            SHA512

            6c6aa85551a7b2b05137e603a3077ff7a4e35f53b1edaf6bd44a3222e6bbae1d6eeb18453d3328ff036dc600db4c3fdb4ebed626a719bce8e940f614261c3393

            Download Submit

          • C:\Users\Admin\AppData\Local\Temp\Tar17AB.tmp
            Filesize

            171KB

            MD5

            9c0c641c06238516f27941aa1166d427

            SHA1

            64cd549fb8cf014fcd9312aa7a5b023847b6c977

            SHA256

            4276af3669a141a59388bc56a87f6614d9a9bdddf560636c264219a7eb11256f

            SHA512

            936ed0c0b0a7ff8e606b1cc4175a1f9b3699748ccbba1c3aff96203033d2e9edabf090e5148370df42fbfc4e31d7229493706ff24f19ff42ff7bef74a6baad06

            Download Submit