Analysis

  • max time kernel
    117s
  • max time network
    127s
  • platform
    windows7_x64
  • resource
    win7-20231129-en
  • resource tags

    arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
  • submitted
    18-01-2024 22:29

General

  • Target

    663298652a3b0e5300ccd3ed8ee6b3c0.html

  • Size

    882B

  • MD5

    663298652a3b0e5300ccd3ed8ee6b3c0

  • SHA1

    94967b4bbef0525ba12143467b35bd03e3e75f1e

  • SHA256

    2bbb479e4e5616da1ebf0dee4627032d90df36926acaac306a86b5d9887b32bd

  • SHA512

    28e6bad0042fd0c7228964cef9ee92df332675f4eb6344e1c42f598d001e005868bb707cf98e0422bc907573720bc95d7c4fbda30eda2822e37c16f66d6d311b

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 38 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\663298652a3b0e5300ccd3ed8ee6b3c0.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2196
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2196 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2156

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\3C428B1A3E5F57D887EC4B864FAC5DCC

    Filesize

    914B

    MD5

    e4a68ac854ac5242460afd72481b2a44

    SHA1

    df3c24f9bfd666761b268073fe06d1cc8d4f82a4

    SHA256

    cb3ccbb76031e5e0138f8dd39a23f9de47ffc35e43c1144cea27d46a5ab1cb5f

    SHA512

    5622207e1ba285f172756f6019af92ac808ed63286e24dfecc1e79873fb5d140f1ceb7133f2476e89a5f75f711f9813a9fbb8fd5287f64adfdcc53b864f9bdc5

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\F0ACCF77CDCBFF39F6191887F6D2D357

    Filesize

    1KB

    MD5

    a266bb7dcc38a562631361bbf61dd11b

    SHA1

    3b1efd3a66ea28b16697394703a72ca340a05bd5

    SHA256

    df545bf919a2439c36983b54cdfc903dfa4f37d3996d8d84b4c31eec6f3c163e

    SHA512

    0da8ef4f8f6ed3d16d2bc8eb816b9e6e1345dfe2d91160196c47e6149a1d6aedaafadcefd66acdea7f72dcf0832770192ceac15b0c559c4ccc2c0e5581d5aefc

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\3C428B1A3E5F57D887EC4B864FAC5DCC

    Filesize

    252B

    MD5

    e227b66fc7d5fe8c9adb3b5c1f7219c7

    SHA1

    0447d62689ed9bb911f93ebc9e2b00b0b2a85453

    SHA256

    c1dbdca03eb742e74610fa5ea6774e50be68b6345e78ae1757e5b7d21534d4e4

    SHA512

    5c7e9b5105e45622d50cacec9f357085ca8b017dcf31b2e5f4ddb2131f77f2692786fd8544f223de6e5063cd31580dd8245e6759d88e7467f82450dc4cf68a8d

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    4eb4d771c9a2f3b560afb549c53cbfbe

    SHA1

    e8a0116b666e7c62085b46c32bbd82af836fa9e4

    SHA256

    3382036621eacebc3ab2fb575fb98e898d35ebd0e9876a0548e529633c648fd8

    SHA512

    f73cd4bd0281bdd88a1133e358d8f94c3770686bc7a203ff278047cd9eea6d044c33b9d83690e54fd682d251edf14bba90e7632e929b171505fe04accb6bd349

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    9442daff9a68467b044f349bfc1440d2

    SHA1

    144217a5c8789d2335a3bf032c508a6636176a28

    SHA256

    2dfd2023c6d6390b23d9be9d568b8b2351ba55054ac195d9b1ba666d5ea82f47

    SHA512

    2a1d335b87c0827dd6fcc9ebf0e4f3ca0705eeed11fb083f94a52ec341f2911e7557a34b08a6c2fd886087b84667d2cb95d22b560c4197d7016065de37782647

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    60074db4174a180e1f9abceeabc3232a

    SHA1

    a2744d93df91502a4dc0c36ccf59efde1d8c14ef

    SHA256

    894919b91c62666a70491e7a80860f9751061b7dbe73c7c5cadded4fa4c631b5

    SHA512

    7990d8ad67ddb92301536cef59488c13f17abdf0cdb107b71e79515512536d28f41609029650aac17b5a9d433e97ef4f54062fc00ae06a2d7439dc3efbf2c99b

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    411975a0268f3241537398512640c918

    SHA1

    f8347ccc782bf9accedc15d310c3572b21b39eff

    SHA256

    b8b6d404601e506687d2eed29c9efd2d50e0b0384a81531a342620cc76c1980b

    SHA512

    f4264830be859f0c878614195fa6453bf5c81ffa4966ac59109ec121f8fc6b8095551c0ec4155290bd4792a3a0ba5d26e3c10bbcb3696e7003811e779db25cb1

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    0cfca9e8eac59c3b7aa9054a077a4e56

    SHA1

    add6223195f7a70fbe6c221240dbd48daf2e0cf2

    SHA256

    3e039666e2c8ff413c51ca658278b02c4a3dfb84fdcab3ef20918b81207af3d3

    SHA512

    12f7e8a83a00b4321db5453c85a4eaa9262387c13c3061fe8baa5c79d6bf5e12e47faa7da995434cf78a37829c6106723cf41c8418bdc70bcad3fde8be3d1deb

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    7b682725e024b06d0a20800216476e44

    SHA1

    1b104271e7da77941b361740fdbabfe0cc8f6ee9

    SHA256

    6b15d222742d4e490237708d09364cd146a21cbe591da5e7149507f3ed28f715

    SHA512

    4db200008e6579f1a5ba1aba182c1350aceb1377afc84347f3e0abc4e9e4ef8df67df77128ef1d4dd3a61f07787b38f548bb9d06cd7500b7ec267a89b711c6b9

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    df002aee5c5343e824dcb79e7b1e7e33

    SHA1

    0e0cca4be72f0b0201ae0317903080e0aa3a9630

    SHA256

    af07538d17cf57f8a25d9f658bd720c616b73dcfb3b409c03953fd07f7693a05

    SHA512

    db98b942da00eb24aa6655d8e73e9b2532b1b5f85cf55a753f2dc0129ace2f5d326f1aac33fdca533114f5e70bd5477205e0d62eebaf37b328b25382bacbff31

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    506e68e5312101841b7c1f11f29e3ff1

    SHA1

    871181e861fec0847a86513fadca01816602d409

    SHA256

    053efb8c8b73f45f36e0cc0a914097606a0d7e1b32da279d899fce0a7ebe4c5d

    SHA512

    79b9e1fbddf62d6595269847037e797d05f6feab3cf27eb7fd0c6c3ff8d2eab19a292f56355e99d3b51d42da2e080e28ea41599fac412c24c245d7eaa7d497f4

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    e2fd579f868c0c781f043a9cf8cc93c9

    SHA1

    28d435a9e73666e2bf0086d42c01030b99cec387

    SHA256

    6869f1387d22e8b1c793af8fef437a74d1901422e1159d868d5dbd11def16ab1

    SHA512

    a83331ab4d4d0da2553e5bba6de2d38acdae8f5d5e0038e6d0986e93acad1676c54e160ca9921574d5e20e904d704cd97956f77409c1277c102ecd765164185a

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    1a7b4fe09a3f38e67360412b07356879

    SHA1

    6816654f2c630b6feaa9e991ac3b5e9995632cc0

    SHA256

    f4d6f19a66543bef967854806150167a203d3f2fdadcc5a4151a7f7a77236851

    SHA512

    c5b0ee94cc2a494b6c9a362977fca660b6d371be8fc9b8b35c9e85bfd1943bae7862bbaa87750de26bd69ee8200658ad7e399bdd55f3d08ea0413d69665789b1

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    a2a0bc4c73941e27fd8315d528f7dea9

    SHA1

    ef7f1e64832d0d573e617788e69366b5fbe7ce20

    SHA256

    de633f189aece9c3c8106abd1c167636eaeacd2a1ee0fad8ee7063fe8b3abbaf

    SHA512

    b08bbcd153015cc95074da6b7dd76c7ed687c71643329c953b9cc39ef229f62fefb18bdef8eb2130f63260b92507647294a5a10d869e6d9fb68a555d03f907f3

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    ebb553ad8fd8bcb66ae659aa9a7f6f1c

    SHA1

    95b4581e51453ca9743e41af4311f1b215ecb299

    SHA256

    ddd9d453cf9addeef160f5e8cb19532cc5fd4c2e28d51306147543d3d2393019

    SHA512

    945fe6011c6b66c69e797c627112ac1ed67da7929ca0a582f057396d5cc4c3d803bd62d6d436e4efd889d842eaaf9cfb63019f8c74b1b3d3cfb505dcd070b66c

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    9fb9ce84264f6bcef54fa5fe57d0d308

    SHA1

    6a9279b3c76577abdff105eaaa5e326d90932c89

    SHA256

    5c0925e654e907603817cd511196ca35d2341775e2fa6efd9d70f5ba71dda036

    SHA512

    d7098d6d8807862f868aeefd72766e9b4619f1eadc4b57e7b7e80b3f901f860429bb5b335f86dc95ce0a46c11dcdf78a10bc5006e631143c25767b72c1d7e1cc

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    162e3c0d76125d7c5dc24a9603fe8539

    SHA1

    a6f2b73e0dbff29b449d7f6b504f9f16bddb0b49

    SHA256

    117cf652354754dd35a0864245dc16eb40e688b753731d87bdae299f9b74c73a

    SHA512

    1588be40acde1b5df5f525131bd9f1ecc90ca6995fa66a5e967f127c0c52ef9e8c26fe68645c868d326e9c00ab2fa2d72068b45bae8eee6ab702bb1a61d737a2

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    9789a69f51ef9ba3baf309cb3c8b8e78

    SHA1

    11a8a7c87985462c96284a4020cb9e628f340654

    SHA256

    b3e49293d45ae694ead37a7fa1c2c3a2da2f15b63a0312ad1f76a25b77e554ea

    SHA512

    546a806b83a3c94788001f560b3b46e3d4846424e6170e9f2b83d367384bb57200c3d1c1232a34f065e8d7277315bbfeb3121b0219893d50028df7600c9d8404

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    867350ead358fa331efa2f414419d063

    SHA1

    b87103cf7488131a4744e7e85cc8bb9c33107a49

    SHA256

    e175442cb442d32f7e428f54b099a869612874391eeefb7246a23b4b04538a97

    SHA512

    3ae1aae8bd977916db182b9ef6ee1f09b0911b3e5b6f1b9cee16b8f18a6fe45d03be61c980c5455481486dfc13b27ee96c65c220f1417a276fe1aab00fc8303e

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    50d8a0045d4238bc60ffaa6827477a32

    SHA1

    3a3822d257c5a9b68e548247ff272701d4cf7e15

    SHA256

    01aef05b51db98f9947ad25e83a2bfb07964d8c1e1a38aae19dd6c041acdb653

    SHA512

    f4784081e050d3022e135ca98cb940cff3596883bfdd7d2456f6cddc68e4b5ca64d24ea26b9d52d2a08374dfb48a7dd517be5da661dbba95eaafaac1fd4266f8

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    ef4b54e45c6643982cde3738312a2262

    SHA1

    b8bd61cf60c60e74bd2386aef47197cd50fd6d0a

    SHA256

    60f4f4ff1a17c2c6387694c21bb7433458904158a3cc9ba023137c34bb5dc678

    SHA512

    757c3bd4f1e5c0b180fffcd557398fb6b9d1e38bc742789943b588a54653dd907bcf95ea434aca5bc9085eb0175bd1285d729103cfa64acc9ae3e6f63a3e4485

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    8bd8b8ab896b2f0d70a5eb59618c653d

    SHA1

    2c0fcd3f63a302099c08b5051e2424f93547ba71

    SHA256

    243477f607dcdea135ad035a4078f1a4fa40fdf5659282b6b43c6f2374c1ef51

    SHA512

    f51d223fc8f088e688a671f0d920d56495c248a717df00e4b56c5c84487eb4974ac151baeaafac8c58846f62c36d57fe0abaeca0c088cec1628e00d5126a9406

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F0ACCF77CDCBFF39F6191887F6D2D357

    Filesize

    242B

    MD5

    1c2cb6b37cec49124043d473c318ac41

    SHA1

    ce9322dbbc22a194cf3d3799749d466843eeeb06

    SHA256

    86027379b66f83fdab88e198d1f53fa71602c6ab88ad7cc7452a8acc7450b731

    SHA512

    41deb5c954f60f16b45bbeae75b0cf8adff8696129d15aaa1f34f88b595ad3bc8e8e9fe7fe740e1786e919a2e9500f20c1a9e2656e154244b0ba2c979fbc543f

  • C:\Users\Admin\AppData\LocalLow\Microsoft\Internet Explorer\Services\search_{0633EE93-D776-472f-A0FF-E1416B8B2E3A}.ico

    Filesize

    4KB

    MD5

    da597791be3b6e732f0bc8b20e38ee62

    SHA1

    1125c45d285c360542027d7554a5c442288974de

    SHA256

    5b2c34b3c4e8dd898b664dba6c3786e2ff9869eff55d673aa48361f11325ed07

    SHA512

    d8dc8358727590a1ed74dc70356aedc0499552c2dc0cd4f7a01853dd85ceb3aead5fbdc7c75d7da36db6af2448ce5abdff64cebdca3533ecad953c061a9b338e

  • C:\Users\Admin\AppData\Local\Temp\CabCC84.tmp

    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

  • C:\Users\Admin\AppData\Local\Temp\TarCDD0.tmp

    Filesize

    171KB

    MD5

    9c0c641c06238516f27941aa1166d427

    SHA1

    64cd549fb8cf014fcd9312aa7a5b023847b6c977

    SHA256

    4276af3669a141a59388bc56a87f6614d9a9bdddf560636c264219a7eb11256f

    SHA512

    936ed0c0b0a7ff8e606b1cc4175a1f9b3699748ccbba1c3aff96203033d2e9edabf090e5148370df42fbfc4e31d7229493706ff24f19ff42ff7bef74a6baad06