7acc6ebe9628e7a11df1e42652bd4a96d1f8092f74d084301a0629254142fcc3

Analysis

max time kernel
135s
max time network
132s
platform
windows7_x64
resource
win7-20231215-en
resource tags

arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
submitted
13-01-2024 07:19

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

5850dfc29bd7fb6246d1e5639d77de12.html
Size

2KB
MD5

5850dfc29bd7fb6246d1e5639d77de12
SHA1

ee34a58efce191900c2f8717d16e24d57d21d3fe
SHA256

7acc6ebe9628e7a11df1e42652bd4a96d1f8092f74d084301a0629254142fcc3
SHA512

88f7f987de764c96afa2c2c2fc61c96d6b083b31ec156d47dd968b6b11060679991d1498a2472b7050f7b5d20e965a8cf7894de669d1c9545b7cfad1080897e3

Score

1^/10

Malware Config

Signatures

Modifies Internet Explorer settings 1 TTPs 36 IoCs

adware spyware

Modify Registry

T1112

description	ioc	Process
Key created	\REGISTRY\USER\S-1-5-21-1268429524-3929314613-1992311491-1000\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-1268429524-3929314613-1992311491-1000\Software\Microsoft\Internet Explorer\Recovery\AdminActive\{0C4E2DB1-B1E4-11EE-8024-6E556AB52A45} = "0"	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-1268429524-3929314613-1992311491-1000\Software\Microsoft\Internet Explorer\Main\WindowsSearch	iexplore.exe
Set value (str)	\REGISTRY\USER\S-1-5-21-1268429524-3929314613-1992311491-1000\Software\Microsoft\Internet Explorer\Main\WindowsSearch\Version = "WS not running"	IEXPLORE.EXE
Set value (data)	\REGISTRY\USER\S-1-5-21-1268429524-3929314613-1992311491-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing\NewTabPage\DecayDateQueue = 01000000d08c9ddf0115d1118c7a00c04fc297eb010000008dcd4c448ce8fb42a8f577f49cde6d3000000000020000000000106600000001000020000000149c34cb5329e246d86de35debac1a85989a9616898578f9a59a4d3939acf80f000000000e8000000002000020000000b049cc04dbf8240aeebc8ff10dc47035d9a56d89334a1b8e89af6004236daa622000000095d4bcb2e56dd51cfdf44b53201688ea84e42dd7b1d3db937660cfba13d5ce2b400000007eb6b1ad1c58fbef3a3aa15f26e754943c6b56f08f1073592296990616f1f92b41231f2f225c35fddb4659f7822f4ed8b7532ced3b2708eb63d9801304d9e777	iexplore.exe
Set value (data)	\REGISTRY\USER\S-1-5-21-1268429524-3929314613-1992311491-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing\NewTabPage\MFV = 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	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-1268429524-3929314613-1992311491-1000\Software\Microsoft\Internet Explorer\BrowserEmulation\LowMic	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-1268429524-3929314613-1992311491-1000\Software\Microsoft\Internet Explorer\IETld\LowMic	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-1268429524-3929314613-1992311491-1000\Software\Microsoft\Internet Explorer\LowRegistry	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-1268429524-3929314613-1992311491-1000\Software\Microsoft\Internet Explorer\Recovery\AdminActive	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-1268429524-3929314613-1992311491-1000\Software\Microsoft\Internet Explorer\Recovery\PendingRecovery\AdminActive = "1"	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-1268429524-3929314613-1992311491-1000\Software\Microsoft\Internet Explorer\DomainSuggestion	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-1268429524-3929314613-1992311491-1000\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-1268429524-3929314613-1992311491-1000\Software\Microsoft\Internet Explorer\Recovery\PendingRecovery	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-1268429524-3929314613-1992311491-1000\Software\Microsoft\Internet Explorer\Main\WindowsSearch	IEXPLORE.EXE
Key created	\REGISTRY\USER\S-1-5-21-1268429524-3929314613-1992311491-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing\NewTabPage	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-1268429524-3929314613-1992311491-1000\Software\Microsoft\Internet Explorer\Main	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-1268429524-3929314613-1992311491-1000\Software\Microsoft\Internet Explorer\Main	IEXPLORE.EXE
Set value (int)	\REGISTRY\USER\S-1-5-21-1268429524-3929314613-1992311491-1000\Software\Microsoft\Internet Explorer\Main\CompatibilityFlags = "0"	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-1268429524-3929314613-1992311491-1000\Software\Microsoft\Internet Explorer\SearchScopes\DownloadRetries = "3"	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-1268429524-3929314613-1992311491-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing	iexplore.exe
Set value (data)	\REGISTRY\USER\S-1-5-21-1268429524-3929314613-1992311491-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing\NewTabPage\LastProcessed = d0cd13e1f045da01	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-1268429524-3929314613-1992311491-1000\Software\Microsoft\Internet Explorer\GPU	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-1268429524-3929314613-1992311491-1000\Software\Microsoft\Internet Explorer\PageSetup	iexplore.exe
Set value (str)	\REGISTRY\USER\S-1-5-21-1268429524-3929314613-1992311491-1000\Software\Microsoft\Internet Explorer\Main\WindowsSearch\Version = "WS not running"	iexplore.exe
Set value (str)	\REGISTRY\USER\S-1-5-21-1268429524-3929314613-1992311491-1000\Software\Microsoft\Internet Explorer\Main\FullScreen = "no"	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-1268429524-3929314613-1992311491-1000\Software\Microsoft\Internet Explorer\SearchScopes	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-1268429524-3929314613-1992311491-1000\Software\Microsoft\Internet Explorer\IntelliForms	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-1268429524-3929314613-1992311491-1000\Software\Microsoft\Internet Explorer\Zoom	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-1268429524-3929314613-1992311491-1000\Software\Microsoft\Internet Explorer\Recovery\PendingRecovery\AdminActive = "0"	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-1268429524-3929314613-1992311491-1000\Software\Microsoft\Internet Explorer\DomainSuggestion\NextUpdateDate = "411292220"	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-1268429524-3929314613-1992311491-1000\Software\Microsoft\Internet Explorer\InternetRegistry	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-1268429524-3929314613-1992311491-1000\Software\Microsoft\Internet Explorer\LowRegistry\DontShowMeThisDialogAgain	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-1268429524-3929314613-1992311491-1000\Software\Microsoft\Internet Explorer\Toolbar	iexplore.exe
Set value (data)	\REGISTRY\USER\S-1-5-21-1268429524-3929314613-1992311491-1000\Software\Microsoft\Internet Explorer\Main\Window_Placement = 2c0000000200000003000000ffffffffffffffffffffffffffffffff2400000024000000aa04000089020000	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-1268429524-3929314613-1992311491-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing\NTPFirstRun = "1"	iexplore.exe

Suspicious use of FindShellTrayWindow 1 IoCs

pid	Process
1040	iexplore.exe

Suspicious use of SetWindowsHookEx 6 IoCs

pid	Process
1040	iexplore.exe
1040	iexplore.exe
2416	IEXPLORE.EXE
2416	IEXPLORE.EXE
2416	IEXPLORE.EXE
2416	IEXPLORE.EXE

Suspicious use of WriteProcessMemory 4 IoCs

description	pid	Process	procid_target
PID 1040 wrote to memory of 2416	1040	iexplore.exe	28
PID 1040 wrote to memory of 2416	1040	iexplore.exe	28
PID 1040 wrote to memory of 2416	1040	iexplore.exe	28
PID 1040 wrote to memory of 2416	1040	iexplore.exe	28

C:\Program Files\Internet Explorer\iexplore.exe
"C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\5850dfc29bd7fb6246d1e5639d77de12.html
1⤵
- Modifies Internet Explorer settings
- Suspicious use of FindShellTrayWindow
- Suspicious use of SetWindowsHookEx
- Suspicious use of WriteProcessMemory
PID:1040
- C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
  "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1040 CREDAT:275457 /prefetch:2
  2⤵
  - Modifies Internet Explorer settings
  - Suspicious use of SetWindowsHookEx
  PID:2416

Network

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

T1112

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
5dfbeac9f30122323b8db37c0824439b

SHA1
08c131cedc11f669edc3e7fdfe2b87c65f7144f2

SHA256
194936b538cfcf5546e512637384d3b4f6c239869e367968ca32074494a5d063

SHA512
4a1850d8e97908953684a5e2d34c3a322618073fc9ea33542cabf3c5ae4e44b6d245db3aeb7e0c7e8289e1324daa01452d71c3b2ef2d5f916d26a22d6374ee77

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
f16299a9a3af1c5a6fbb325fbd045525

SHA1
543761a00ea993610a037ae6da0e2171fd6005a3

SHA256
ae70bc264b15d9abfc3f78c9406652570175a927d1c39961788c8815b866d686

SHA512
13300ad5474a354a9c31eb724b9d50db08b4a7a2eebae89161de51fe1c8c5a0d92a10c325616fe1b72fcbb59d1d2d06685b00e26469ae0d5c14ac6075b0f3f78

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
2e6e9b13069b2a569ad5a92f254ee904

SHA1
c43f686b3ba8f040303503badb5131de6166828e

SHA256
6bc1521e5fae1c89016399c52038cc5a46290804607f60b1924203611c153b40

SHA512
9a356b3bc3ac8a49767c35fef531f8cfc0194a87572c2e3396a27a3c298a7427ee11401ac3f0f64963681915624ee8fa63d77929191ee1e9afad45c04a20174a

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
b5f1f7b9bfef7f79bdee54cbdeda65e8

SHA1
c124c3623bd1341d7dbdbb94108e59e5c8cec4d4

SHA256
c9dad6be01c91e5fe5d88d7540efc817598dfcac5ff8cb79cb4e4a9cdd821e8b

SHA512
5f9d9eae459cfadb3b12ab4e9a07cfdf657259c50654995459af97f2789785f91abc48384c27c036669d6b111a4a44856e8d2682b0ebfb1d2960dfd44bd116bd

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
d200567f252bf8ed895d49ffb081a407

SHA1
b2c08b7d28ad1000110ae43ec8c5a34ae3571857

SHA256
b8dcd02cfca8a5b1b5d4363b26185e0628276cae2e55b9dcabc504dda703ca43

SHA512
3fefefea718a7448df951aadc39a83bd0e9cc2fccef0a0504921687ee0a69087d2028b7394073b171e337b2155be289350fb226ccb1f92011d7de6b181e9b069

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
3c9bda789ece15f13b515a02b5608495

SHA1
0569f7b507e28de9d738ee8c51b4d4c6fa41c537

SHA256
10e8d5c8835e6947c7b9bbe40e7a572fc1ed1cafcdd9b228e9452de3076ec12a

SHA512
bb29e14b4773929b7417c0084b2f4388d5b5b0d939576a8d96932914311259ed13ff1ac4f92931fda189a57cb6258f9fe7b2b16210b33e5af39c3ae00a8bb4be

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
769a2360e97a4899ea1ca5038230511f

SHA1
9cb690a9ca799b1a955ebcc4b52803f9db1dc31e

SHA256
3ee1848f0ff6acc2aa230ef41e5961a811ac6e26a09bd425e7afaef3f671f961

SHA512
2ddcf08aec984a9117f875028f76f684bb4564ed3d3cfb04bd305856881206d4e8f7c9b8c806914827d39411245ded62425ded97ab6bdb01d9e21f8d2c92baae

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
0ea805ae0186f1d3f957a548df6f842b

SHA1
4344d790786b2169188dbc0833d1e44575026e06

SHA256
7db56964347b35c7df82c057c3c6fb76f9d4eac2cffe4c08419ce1a15fff7567

SHA512
f39ed2c73f8f9411ad73e1d6e5f3a7b4cf4c026f07564965741c50c865d8072383e31b90e0c9ecdfd39dea7f16fc807ad1be04783e2277697420273be52a265e

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
c48bb9a739364fb99e720d683db6fe5e

SHA1
69fced20d31d7142506f04db00d5064b8fb7a113

SHA256
1c53cc343e74c4e87da6e17b4fba9aaecffdc079f1f084d04895f7edd5629cc9

SHA512
eaf0e9f0ba77e2130d3c9218e721485f0bf1bd354d03c2699edf20500db30f723062defbc43824de8af7b93b7839e73331e0eb2a040f56695ab8d671d0c990d4

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
732893708131e3b9cdb56165911536f6

SHA1
6c2adb47de37c7d22eb86ea15592dbe298bfec02

SHA256
2992f8c50d473a004198d1063eed148592e77f466269009f1faefe0a7938ae20

SHA512
ab8b148ffa45a0a050ab12eb1a7e1bc1921ef05f209495c506910ce9d6e457ebc201d7e5969c3a375b9154bc9c486d7db7473957b465ffdbdc15560c38cd6363

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
09840dcf48fd82c5cf8724a35c35bd78

SHA1
71e0b192b586fc0d7aa4496c153fbcc9b7ac63ea

SHA256
cf9c968438df1198841f6058dcd0e6ce13573efcac18875159e309734ceb2c53

SHA512
b531e4a86ad8d94836e411ad2cd39e3a392175fa44de968357894cbcb82fb09e17eaf176ce632c072eb119b7573149bc0679af49e6e7e472b29366614bc392b2

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
a1e67d8a1c5c5738f0f42d46949e2c02

SHA1
867d48dae395dab287693cc70e956c90c4e41e47

SHA256
95d36e00db7fb0ba9eeccc0a183f80277425f79f646bf3de37dc5536018495cf

SHA512
904eb665127d18ccd2096179083839729e13e2cc8f8a0a78639da567872a73510daffd3c9701c5f51c21b283bc3f6c3a58c5eb2b4edfac6f28014f42cf40b711

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
40897af2f2883efbba6e7e1de876dd65

SHA1
8e8a39f199e62758e22e4b5115d8ee9cfbd4f065

SHA256
4d349478f35723d1579b166117ff52ad8ff3113f9610466b52a9014e5a77eeca

SHA512
ed68e4efd667e1ecc15db59b9339f8e37c2ddb5e132ad53bc4d9aa309c5b2f401198edf074cecf7a946fa7e08c90021518a3efcbaa16fe185626b86b05a4b56e

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
4b71a9bcf91665ea40136a72b0cf7b94

SHA1
00694a31cb9746f4c86c5f54aaed6e7761aa3552

SHA256
b2e96f4e5c88de450def29e43fb8d62be50d3c95ed594c6913cd57de2e050907

SHA512
7eaa3c1e726c5c138e227f69f63ba80d496fde54084566694815f2425207c7e19c15fc153d480a223e14f1d14ba4f70d206705909689477ae709ded8ee67f1a6

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
7bd312244a5aa817890c88e0903e3ddf

SHA1
b3f8efb6655ca2e11f21fc8d3ce45f993c4b2e75

SHA256
eaa546d3af5b1066e7a394e9e943a5948dbe5b8883c6c7d3fd32f7d1276d60a9

SHA512
0982281426f8fc67835ac5bc00eb6904fbbcbfe8e851c0a90a480a88757436c350718b870a9056e796542d1295c733c1414a3fcb15a0a8272f5411e915c5ca22

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
af937eb9f6637fec0e558835f8075f54

SHA1
9f06795792b494c16e83cf471c8e7e4c513da515

SHA256
8a1e5267c4f23f87b3a9945554ee5a7bf6d2bdb04b511bf9c7d1c7b4f79d2c9a

SHA512
49f0258a7894002d0780e8b7e9716635f065b6ae5213ba0918b6e7be4a2bbdb6618cd6cb23195621a13faaebbd2badb1e321a2e702201b0992394f05fd3f284f

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
324dc9a84f4e0a86c00354521bc59745

SHA1
bbcf79338c6c438aca1b517422842a4a44759e64

SHA256
8117648086dacecf23a05c9b8dc44db36d26c15b45c993610891e36e62e65bcb

SHA512
d7a24c2e57c08d8729a7f170e760fc15c2a65afd54259455816a6d084bd23dbf70d2ddf935fbb81f86bce267a48643a933a334591ce9e045fd953314a528dd87

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
4a3885505536a56953d494e704538af8

SHA1
7d1521c4a98f0fe7e61f0523fe6b7ac4184dd646

SHA256
e38ffc5b7d611b8f960718e7383af7b65b37dfa688c07027fb1c26841b6aadab

SHA512
9a3890bcbaeaf4781aa0e73670dd8a980a63ceaa14fcecbedd49b67054fc4c32051e7b23909a0c94d6a97db007b374525b96cdbf75e6ae63e6078014ff785d80

Download Submit
C:\Users\Admin\AppData\Local\Temp\Cab51B9.tmp

Filesize
65KB

MD5
ac05d27423a85adc1622c714f2cb6184

SHA1
b0fe2b1abddb97837ea0195be70ab2ff14d43198

SHA256
c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

SHA512
6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

Download Submit
C:\Users\Admin\AppData\Local\Temp\Tar525A.tmp

Filesize
171KB

MD5
9c0c641c06238516f27941aa1166d427

SHA1
64cd549fb8cf014fcd9312aa7a5b023847b6c977

SHA256
4276af3669a141a59388bc56a87f6614d9a9bdddf560636c264219a7eb11256f

SHA512
936ed0c0b0a7ff8e606b1cc4175a1f9b3699748ccbba1c3aff96203033d2e9edabf090e5148370df42fbfc4e31d7229493706ff24f19ff42ff7bef74a6baad06

Download Submit