Overview

overview

1

Static

static

1

641e7d2524...c.html

windows7-x64

1

641e7d2524...c.html

windows10-2004-x64

1

Analysis

  • max time kernel
    141s
  • max time network
    144s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    18/01/2024, 01:27

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    641e7d25244dad714dc4e14e55a79e8c.html

  • Size

    62KB

  • MD5

    641e7d25244dad714dc4e14e55a79e8c

  • SHA1

    d7e3be1b5a0d2fae12e42653aec994b88b544517

  • SHA256

    cb1596797ae8b66f9e5f055d1833311b4d4815ab772efc2284b1ac20133286eb

  • SHA512

    0be5f755b717ef6f6bf98c8828de50115a62c6683339414747c152c50b3716832bfb030f14489e68c04d64f17f9e435ab25416b5abb9d80db62db7bc763abc17

  • SSDEEP

    768:sR3xi+pHvvCIojhraYltFJdvsBWOvfxtJ6llFXv4TLeM:BmHv7ojhraYlRd0BHt6llBev

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\641e7d25244dad714dc4e14e55a79e8c.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2500
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2500 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2100

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\3C428B1A3E5F57D887EC4B864FAC5DCC
    Filesize

    914B

    MD5

    e4a68ac854ac5242460afd72481b2a44

    SHA1

    df3c24f9bfd666761b268073fe06d1cc8d4f82a4

    SHA256

    cb3ccbb76031e5e0138f8dd39a23f9de47ffc35e43c1144cea27d46a5ab1cb5f

    SHA512

    5622207e1ba285f172756f6019af92ac808ed63286e24dfecc1e79873fb5d140f1ceb7133f2476e89a5f75f711f9813a9fbb8fd5287f64adfdcc53b864f9bdc5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\F0ACCF77CDCBFF39F6191887F6D2D357
    Filesize

    1KB

    MD5

    a266bb7dcc38a562631361bbf61dd11b

    SHA1

    3b1efd3a66ea28b16697394703a72ca340a05bd5

    SHA256

    df545bf919a2439c36983b54cdfc903dfa4f37d3996d8d84b4c31eec6f3c163e

    SHA512

    0da8ef4f8f6ed3d16d2bc8eb816b9e6e1345dfe2d91160196c47e6149a1d6aedaafadcefd66acdea7f72dcf0832770192ceac15b0c559c4ccc2c0e5581d5aefc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\3C428B1A3E5F57D887EC4B864FAC5DCC
    Filesize

    252B

    MD5

    05e196099f592e9c1028978f73b9f397

    SHA1

    e84e6cfa2a34a4fc76b948c62c20a7c63fa302fe

    SHA256

    e1d9426b6f29e7e26d2f246d573904cfa592c9db6dc7dbaf1d21851484651e77

    SHA512

    03b8f297faf34f92f39a93f66727b8e65f506510dcab99356b480140e0b628c9ba987ccd7b218965a9f5b0c89cc755bda1455ae594ad4d86eab3489c9db4ab5c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    b4e81e7e986632e2ab8ce67723f0cb17

    SHA1

    cd8137a8fd722836f650b74e6f6416da1e9974b8

    SHA256

    d8806606d7eadc28d8578e7382d90964ff140c49ff7ca27d16ab9f4a41e2756d

    SHA512

    a01ba74c7d5e429ba9e110e07ad03724f7791aa1362221553cf58135e2da087cc8d871fe5e01e95ccba0f74cd8693ac83a3c56aa27915194bfbd6faeef066478

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    01c6f1ad6584b23ff83a4cd8398f67c4

    SHA1

    6a850e2ca2215af39c29425e921cd75b8d884d9a

    SHA256

    d161959351eea87230a03eeed33adf123e3b6a167ab06c268e66dc9ecb516606

    SHA512

    23c868951dcf6c77fac80c0b392ada4dd91c796e7d5465aa367c0b607bcaafd795847881305833f32beb746957f2998e3f84b85af15da497fa8a95eac7a711be

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    1551630d3abb27d826e023ad0215482b

    SHA1

    360b2ca695ab4c6ec1f7e8ed15cadb9d22499547

    SHA256

    44ed0fdba02a5cd5f0cc6db8c7b6fce3eff31ab60d01e6a1ca040cd8cd679573

    SHA512

    750dbbbd8d6076e1443bc6563d7f52cfe54804325d37873a56bf485a405a7a34c1c6e5389f716ba4b1d0e5def374c26a7ae332f8f8289dad48dae503b5d4710a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    11bf9fab211ed724cfbb8b459ced02af

    SHA1

    0ee25db9aab0172d3586aa8b76f6c2f77edce353

    SHA256

    4ad44149aadfc5604043dfa21313d9842bd1f743f9351c925a725a9fcf8619b6

    SHA512

    ec91ad8441dab0363d03dabcc0d411c756316595e318c96c4272956e9387ecd6b06acb29b235e8a5008f45b48512196e024584a0a868056e9d720c6023054126

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    d0b96fcba7ff2dadf9f3a17a752566fe

    SHA1

    eb9307bc8763d4d14cc01140cdd403963803030a

    SHA256

    7d11e645c2d46e1f13fc4aa72f24119f8dbc28fac05ca6fa44609ea5b5405ec7

    SHA512

    7d8f2edc30c6fd0b80c5a6a5981f8bfd62cf143a3ea4facf2df81fe14f22c1fca8f9d221651e539d495b4d5c73d6951be949ab27c526997173aec6d6fb913c3d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    c26bf7b6deb0449dc5584ab31bc6373a

    SHA1

    152807df29cdded5708c03fd1445c2f128e58671

    SHA256

    d39595e11a37fdc4d6084ca1b223b9173413ff1e1091b006f037a17bb34ffe7e

    SHA512

    c484b77393a9240419f1e7e8d474ec957626fea717a0935d36921eb3bf4db41d4508b4fbfe1ec68f7836ec8c1713ddd7d71f01a8c016d7a2e2f2688c5bdc4f4c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    cfdb3f82b17281f7bd3ffff41b9f817d

    SHA1

    261e0b135a2560d07832f2168ac32ede895c600e

    SHA256

    7b9d2e620a886c5b35a6b6efc8b50f1d0e824818b07dcd51c2cefce3527a8c4a

    SHA512

    6412f5922053e267fa824288373e8290eb4cfbc3e98a6efa6d27e91566e994d298110e678e7bac89119935feb3af47b44fdee5024fa618149e25edbd571406a2

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    c15cdea3a7e27f06740cc0e2e50e915e

    SHA1

    b048fc5152943a4dff4adfa621079aaac78889b6

    SHA256

    34c201883e32dc5840b71e52876286fe4d7611269544dc038bacbadbb4283c12

    SHA512

    76fddd095fcf08b4f8cbf45ae8f6f0c8efec4e452f258fcffdc0baf26126753e22e80beca3d9406943aed7c77f744945608799f5a1d94b9f2e59b433e0c67dc2

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    73bdc42305a52868aa4dc96015708ca7

    SHA1

    57b1132686815d3685d8a6c3b8ec913422ba248d

    SHA256

    fd9332bbec91152655945701577e50f18d49a9c2e4c901feda6ee880c86a1de7

    SHA512

    9501cb1e151a183a1c957c40960bd56dbdb100923584b362ed0987e4a3175b2fe0cb772b9b4a48843c63099f369f026ac1bb4d03feb8e8b82db704fa25151068

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    02cf9b7adcd5267ba561ab3daa4362c4

    SHA1

    93b822faa941d847a64108ea09685a0ead277f15

    SHA256

    3ffd5fe9186b059da2f323fe6c0fb9a62c2fd03e9751c697251c062ea421fb67

    SHA512

    b55ae6ab7daa197584c9f1f0ba31e2a89f72fb21be85513cbc037e805af8b479439d420ffc4de6b706afca4c03ad2fd1dde7c1b6a268799cd671459bafa67fa1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    e841cf58e7e17904dd7f1b54c7b998c4

    SHA1

    07fdfe55cc49fd0d5521a14277d12a31caecfcd0

    SHA256

    493d514e9402379860939e98387babfbd5e9cd1432f2f58b2a17ea48865b4859

    SHA512

    e88364c243b6508faa52b9ba22c41faca338c0bfa12df48e0fcfaa03a99a5d7c2d3e17b6682be6e8ba03c36ca75be248acf3fdf1c45ce40ca55003882791a0f5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    634e517e38fb1a51fc9014700d895ccd

    SHA1

    acd9e25912e6e74786fd0e55baaab770b752a2fc

    SHA256

    a4a3610182cccf0ce0cb71cd555ee9cb6aa6ef9a4e41cc29bd284611d2e1b7cf

    SHA512

    681e0161a403d82032c10a9f469374a2f3577396f9a2e2d467b9dbda912769cd7a11f8c787e9172d43303ab41036605d992aae508ea1ddf3305b8ff21077f947

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    dd760c96703ffdb4a4f3a251cb9ed52c

    SHA1

    ec56fd8cc55bb07481768bc6dea0a4ed2934a3f2

    SHA256

    079dc8383f7bbe2368597b3b14c41fd120ceaada9773c9fd9f8d56fff3aae8ed

    SHA512

    c958073fe2005588dc39df80509150bf19e1d7c27a4147afcf9397cc117a9ace333547280a38456c0dd9e419bafa53b26fc701b15d40ba30f4bcd90d66beaa49

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    0239c07940b2e8d1d0ba8b9916263768

    SHA1

    3b4d7b041e6f6f2b16fe887f125797fe20e6b34e

    SHA256

    7cd405137ae32f6dadbcbe477b9013195001734f4aff004a9238f160459467b7

    SHA512

    863cb5f635ccb261eeb80a5511f805ead6b2468990b21e9afeb90afc3dddbfd4249111bfaaa3cde298ee9fc4c8bf8832718d99571df4bff16ab16ae59ed3c867

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    cb5d6535a9fd3cc402b9e04238fbf27b

    SHA1

    e39ffd101d5a117f5c61c66747ae0e5611349391

    SHA256

    48fcb66529b902f893717571e31304eb4c25195544d6c94af9ca08a485ad57fd

    SHA512

    8d099efa42df564e1254cbb1bbd113ba31541868b874c5eda7c8bd4da597f7f87995dfd4196ec205c0e5a08401d00a056e7dc0f5dbb0920afae2c7ec70b3ac94

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    12d1451f6242b0a4ef7f657ee90d37ed

    SHA1

    1db5c755fea72fb367fe1d900fe0736bd6be2976

    SHA256

    c281492a6bad64399812fbd4aca5836c84a51dfbe1ce8d1a635cff827d68466e

    SHA512

    19339dde0aeb6700036682a7fb2218378c6e7bc2efd5c45a999633526006fb58b6c61ecffb91cf3f95db68a77112064ed928469a16fe8f9cd0fccb5c13506a04

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F0ACCF77CDCBFF39F6191887F6D2D357
    Filesize

    242B

    MD5

    f8044f7d8cc3fe362c73a89c99aec3ab

    SHA1

    ce89f1540b96712b726c87eec6e2587c41c9f554

    SHA256

    97f10289a3a3ab784f3d770180650231a8e93cacee83268ae014ae58558a9734

    SHA512

    edd7806d4b8cc88d8c15896c7382866faddc287479f214f3e65018cba0421fb3b9291ef73a741f2061635abaf2f8b3772ff32d041e7f603f9baa34ac7f022585

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\6IJYZ6B5\cb=gapi[1].js
    Filesize

    133KB

    MD5

    288c5ba5b7001fe841c32f690f62cc93

    SHA1

    29aba9d8e4f7cbe25fa5e64b9ecbe256e51fc789

    SHA256

    c2f33dc18eae27d4e878bf837dd97f1bde5151e44b0271408535bb93265b8c52

    SHA512

    e375d41344a086d35accfb02bb1f91e2dd383db032af387fc3d6b1230057cc5e432e9b2cdd976e51425b4f587391d42f4d9d857c2e6f11e822a65edcb85f1c9f

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\LFTKP12M\platform_gapi.iframes.style.common[1].js
    Filesize

    56KB

    MD5

    f6140cf2e81a9d5b9bc96970fe1946f6

    SHA1

    e18cb20a08d0c13d44b72e36e9560aec2187abce

    SHA256

    68cc8a99c8ed5cc0eb3aa2146fd34bee0051bfd98faa3c03b83c78b4a12a8bd5

    SHA512

    1f61bf7228ae9fc1b36249223f4ca0675da05beaa6c00b28b7fff500e0527ee237d139eaf6793ece67f8730dfff0207bf945a848795aab7c57301433449a8acb

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab19BA.tmp
    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar1AB7.tmp
    Filesize

    171KB

    MD5

    9c0c641c06238516f27941aa1166d427

    SHA1

    64cd549fb8cf014fcd9312aa7a5b023847b6c977

    SHA256

    4276af3669a141a59388bc56a87f6614d9a9bdddf560636c264219a7eb11256f

    SHA512

    936ed0c0b0a7ff8e606b1cc4175a1f9b3699748ccbba1c3aff96203033d2e9edabf090e5148370df42fbfc4e31d7229493706ff24f19ff42ff7bef74a6baad06

    Download Submit