Overview

overview

1

Static

static

1

58cf42043e...f.html

windows7-x64

1

58cf42043e...f.html

windows10-2004-x64

1

Analysis

  • max time kernel
    141s
  • max time network
    148s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    13/01/2024, 11:28

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    58cf42043efddbcc802775f46bdca87f.html

  • Size

    20KB

  • MD5

    58cf42043efddbcc802775f46bdca87f

  • SHA1

    b18bf74aa42e7e01a12d30e5ea46402f243e455f

  • SHA256

    4fbb26682ed9b92f846f2a9bf3cf6bc6bd11cefeb90ea6edd375707327ad74d3

  • SHA512

    c45cb70fdbd149f4f2e41b00ab39c742a2aabf8571096490d7ead9f11953017c14412a1bf9b2862c7149f2d69e2bf3adab0f54f9f3b23687fec4e61d6089bb0b

  • SSDEEP

    384:Ba1PXR4WXXRXrKYTRzkPART6i+rJCWWYa6g0BclwHIXAVd59y90XuiPuiJ:BacWnJz18xg0BclwHIXkHe0X/P/J

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 41 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\58cf42043efddbcc802775f46bdca87f.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2552
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2552 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:1812

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\3C428B1A3E5F57D887EC4B864FAC5DCC
          Filesize

          914B

          MD5

          e4a68ac854ac5242460afd72481b2a44

          SHA1

          df3c24f9bfd666761b268073fe06d1cc8d4f82a4

          SHA256

          cb3ccbb76031e5e0138f8dd39a23f9de47ffc35e43c1144cea27d46a5ab1cb5f

          SHA512

          5622207e1ba285f172756f6019af92ac808ed63286e24dfecc1e79873fb5d140f1ceb7133f2476e89a5f75f711f9813a9fbb8fd5287f64adfdcc53b864f9bdc5

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\F0ACCF77CDCBFF39F6191887F6D2D357
          Filesize

          1KB

          MD5

          a266bb7dcc38a562631361bbf61dd11b

          SHA1

          3b1efd3a66ea28b16697394703a72ca340a05bd5

          SHA256

          df545bf919a2439c36983b54cdfc903dfa4f37d3996d8d84b4c31eec6f3c163e

          SHA512

          0da8ef4f8f6ed3d16d2bc8eb816b9e6e1345dfe2d91160196c47e6149a1d6aedaafadcefd66acdea7f72dcf0832770192ceac15b0c559c4ccc2c0e5581d5aefc

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\3C428B1A3E5F57D887EC4B864FAC5DCC
          Filesize

          252B

          MD5

          f2ed28a86896eecf852638566bf30aa1

          SHA1

          7d88aba1015b5a1c6ee0ac69a9b604fd59918c3d

          SHA256

          f071228a1248af54fc4b348b9ab8f89b612624e4c49a5ca54fb101c5bbec2d58

          SHA512

          5b255afc4304a0664035806e0ce087531a9c52d517c36e3027d1edaf54dba7f672c219a7e6c5e881bc6cd0ff00e9c1296e1a44f002afefef9c69f7714093b227

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          78ee5811bc055433df7855154a2cc85b

          SHA1

          e0556d4a466c7e9d58af12e2e898c0d18fca399d

          SHA256

          0c5cf84a77b0f6aeedc65784448047cf3d67ecdb5fab1934dd66ae11b24e6f02

          SHA512

          d5ebf9bcf4cfd898924c8f4cfb09a37cc198cefa86b8328950750beae2b1fcd6c4c3f26b782cc80b30c512844bcc320e2eaa8416e5d0d7b1fcc0c8c3216ef10e

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          4975393a8711cd44166b2468040f7da7

          SHA1

          5b75528d1b47e756e3c4f5481c39d57eaaa09ba3

          SHA256

          c3e2dfa6fb1832cfc0d6e5d51d0e9518e3fa11f44e8544fea2ec1de26e034ed5

          SHA512

          1d8a1e19e6d79cb6cca03b8478fda8be1e7fb0003bb0dfed7988ab76bae4f4e9e09bd1a4aeddfc3cc8e5bad5ae7d0b5267a6ee812872bbaea49c3b3418583a00

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          a6aab6c787673cd6a673e9fe8685a4d0

          SHA1

          c6d20f2ad61e783aeaae8938799a28f9412a19cd

          SHA256

          a0481b56996262190339d81108134c1560860951d775a4a58a64ddb5c4b2d08e

          SHA512

          d70fb9354522215dfb470da1d4a3a06d7e65cd8976eb2a2a31399f3bb2523ec880a0c7bbd91c39b8a6102d83faa45b2e66b0783aa22c8ad296a28f81bf45ccc3

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          69e3789d960dfadcb28a48ee01bea636

          SHA1

          217bcc98af4cc8b6fc6af0e47964dff1d06a4762

          SHA256

          f210a48d402aac19471dbadb9f59da3a1776199fc439b91664fde606c3dca2f0

          SHA512

          c1bcae66535fd6ab7ab5f787896b374a7db5a563dd10e62eab881341350c602fdf505169b0ae8e7d2749ed5dc07eeea47047f2b852978b075be4e30c8c22b6d1

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          046a943792b8b15a5c918095d6fd90ab

          SHA1

          dd030810fab3b575e9441f07b4e22a815f65c037

          SHA256

          9058a93edeeb5b2ecccc921236aeee6c2119457d66161c65adb9be3b6c006df9

          SHA512

          81a2c5aa73642c78f83d224658e6f819c739884fffa207bae3a5c29b3a91d1f65056064aa714b70f0f70331650fc44a9de8d69e737ad610393f3ad7f38a4f246

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          95d675f257ba881e5fa933b872e9e4be

          SHA1

          b8a4322c0e4aa42ca87eb8a37a11880a76f7a317

          SHA256

          26c2d085c80c989d06d7809f8ebb106ae573e6a7b9f5cbb20ba2f17fc458c384

          SHA512

          ecbcd33f478d9ef77f8849cbba54c67a3d74c0c7068d25727ce389e6f8915e336ec0e385ea0568c479f6cade1a85057967ac782b35e9ebcb07c73f56d150c7b0

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          77ac12f363b6127184681a5402a3ea79

          SHA1

          bcea0605ceeac6da2917a10a394d2f3e500bbad7

          SHA256

          20f97c9fe6e73015b20d9ab2d2385ffaf1ca9829c0e7f16d0f70510301ab6ca0

          SHA512

          4b5f8c0e8a28038f22124c3634ee408beceef244bb6501bc9d1efc1e46a838f0bd8a6641ae3206a188a7ba7eda9f16d9484e7557d5d2c3a9c3e4ce164c8db6e7

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          32556c4f4862380cccbac5f393928458

          SHA1

          eb60a50aa9d2fd48cfd9177a85fabdc68d833bf3

          SHA256

          c03c9bfd215898f1c147dca2b497988ce34a343694523a2893d47f23844b2093

          SHA512

          608f92f55eb39c265751682b582ecc4d6adc3d180b7b1cc0fe5c578271ce0c35c0415f5ade242ea552fa0e882e64515373afd3b5d6e6adf6470100b3076f36b2

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          8504a9e9f8ab761a91bc8d1021df0f47

          SHA1

          0d48c2aea7d75ca60e50d72596cfc751673b4a64

          SHA256

          22a219c275e9f02f087178b4f66596f8f223930a1bad8155d8d95b7fbf45fae5

          SHA512

          34d2cdc623adf01a0b01ef3106a6ea3c2cf16573c8fc6603026d07d112f99bce7c175121f2d6054460af208c39b32b8b31ea67c99dc3be401f585e792e37e78d

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          69ddafa1aac205f6ac6ab7f3a7300362

          SHA1

          eba7009c3f6ba788bc9012642afcd056ebefbf0b

          SHA256

          b4d6ef71d7a77ae982baaa5d33ab7533e9224cc1d6463708b320faa9d92556dd

          SHA512

          3936d34b466f7cf38736d1c094776dd638cbc069784000c7513ca4f83ce185bfdbecc07f47e75937ae0c1668c5240d55c65e5bc9cf4f26439cf6ba07ed917796

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F0ACCF77CDCBFF39F6191887F6D2D357
          Filesize

          242B

          MD5

          471bb22e86310db1445ddd12e853e3fe

          SHA1

          1f031ecc77f4ca06271df50dae8c8f346b36fc26

          SHA256

          1c4784415cbf3daac62c74f773d7e69409bab6a006ee82c6cb98e9ab65d45f78

          SHA512

          3ee7445c0d22ddeff55852df0389d6e625272465678d99f3fe00ab2bef55fbc09bcb0fe313f26a4370e6a0098391480902ec03854b6ecd736319cefe6d4ef6e2

          Download Submit

        • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\6IJYZ6B5\getnum[1].js
          Filesize

          48B

          MD5

          562da3c8985696cc9ca4a7f971060257

          SHA1

          a88cbd2c0a605a6eafbadb3df7e1fad5fb42449a

          SHA256

          8ce67a0d6bbafe907d017afce02287e8ba5840268f54d5c7f1473a5d09467005

          SHA512

          b919914b3fdb6544a3d32cbaee4217e825c60e57322bbc643df3d5c15143aa643274fa714785a8102b2f1bb3a6bbab4e28d9be815c68f4194ae60aee665e7788

          Download Submit

        • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\LFTKP12M\shell_v2[2].js
          Filesize

          1KB

          MD5

          22589e4e13247c72d03abfcf26321152

          SHA1

          54add8ab3c97313ed67cca6db4284f36db5507c0

          SHA256

          96e94fab37c4307d249cf2582540f86e433162b2e537cd54c7e888ca8d93c214

          SHA512

          02f89ace12c31aa709aaf7790d732fdce330808e90714315c7bb38a9af5f63b413a697cf4cb4366a0cd9f007fca4d21da91b8082ef94dd4467753c44a6864708

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\Cab91B6.tmp
          Filesize

          65KB

          MD5

          ac05d27423a85adc1622c714f2cb6184

          SHA1

          b0fe2b1abddb97837ea0195be70ab2ff14d43198

          SHA256

          c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

          SHA512

          6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\Tar91B9.tmp
          Filesize

          47KB

          MD5

          3b411be3fb4942232e4186be27c3161e

          SHA1

          4329a8dc6adb75bed32f7150b0b1890920cf485c

          SHA256

          468a04ffb7eb968f7f081224d6433070b5208a35a0ae5a72c5a614c62819d942

          SHA512

          d2887704a16c5a834e9e4dd737291e823bc5b106c70e82deb1900feb73a57501d41df18989ea532533d141a5b94840f72a09836a635f8950fbe619524ba8a434

          Download Submit