Overview

overview

1

Static

static

1

64569de158...1.html

windows7-x64

1

64569de158...1.html

windows10-2004-x64

1

Analysis

  • max time kernel
    144s
  • max time network
    148s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20231215-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20231215-enlocale:en-usos:windows10-2004-x64system
  • submitted
    18/01/2024, 03:21

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    64569de158fd08879718c5f23c1dc3e1.html

  • Size

    17KB

  • MD5

    64569de158fd08879718c5f23c1dc3e1

  • SHA1

    e71f2f607510e30c15edc028a6a1a48553e8c4e1

  • SHA256

    e2a1af734c5582d0fcc835603d1d6ecf106bf4737dcfc9e967c3ccccb573fc6e

  • SHA512

    8375424f8d7b072d8887dac6f2ff08fe9cc0a46d48bde7b8bcfa2f36392bfe49bad930aa813ef47ecb803f3f74f23dad2fb2e6b2fa68650550fae357f57f5fa8

  • SSDEEP

    192:z28+h35jcV5nndJ6pg4LM1c3/73bM5LtXWUKYfH8EerNhRPdB708auZ4vmkPCc1X:YDcjd0CevzbqXW0EhxdB708t4vTCc82V

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 64 IoCs
    adwarespyware
  • Modifies registry class 1 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 3 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\64569de158fd08879718c5f23c1dc3e1.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2152
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2152 CREDAT:17410 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Modifies registry class
      • Suspicious use of SetWindowsHookEx
      PID:3504

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\7423F88C7F265F0DEFC08EA88C3BDE45_AA1E8580D4EBC816148CE81268683776
          Filesize

          471B

          MD5

          730572c7d358a2df33eb48f59dc2e793

          SHA1

          c1d79af30208aa046b0c5f389d3dda975c0d1644

          SHA256

          a2f5330c9ea73b3e73d6acbec94b658da87cda89616aff6c02161eab821660e7

          SHA512

          cb938674dd554df4efa19b09f90c94e0dc5b60d1f56c922237f37c835e8d93e946163a7c0a7e7c4ba205ccd16f3b1157c91425f4f56a95d48879ceeb35a4436d

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\CAF4703619713E3F18D8A9D5D88D6288_A7725538C46DE2D0088EE44974E2CEBA
          Filesize

          724B

          MD5

          ac89a852c2aaa3d389b2d2dd312ad367

          SHA1

          8f421dd6493c61dbda6b839e2debb7b50a20c930

          SHA256

          0b720e19270c672f9b6e0ec40b468ac49376807de08a814573fe038779534f45

          SHA512

          c6a88f33688cc0c287f04005e07d5b5e4a8721d204aa429f93ade2a56aeb86e05d89a8f7a44c1e93359a185a4c5f418240c6cdbc5a21314226681c744cf37f36

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\7423F88C7F265F0DEFC08EA88C3BDE45_AA1E8580D4EBC816148CE81268683776
          Filesize

          404B

          MD5

          e1bb4ae7507c8ab490416ae166bc90ef

          SHA1

          73ee505dd919d7ad8d31be8ef76623609aef860b

          SHA256

          c817565bc127926d9e78d7c0f7caf7b152ab18842f3461cc81072d4859e21bba

          SHA512

          378edb7f34ac6a7d99e3d88b936812a11147aaba226c69ea8d0403d6ad173bd5dc7e63033abd785f3f5465e528128b3390dd13138c04290ddf98cad865a8a875

          Download Submit

        • C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\GGGZL3KN\www.google[1].xml
          Filesize

          99B

          MD5

          0992ed64c07cde4280b8da49a9d2e02e

          SHA1

          e27734b2e9a60e86e921cf41061ccbfb781ea360

          SHA256

          1f601efd66529f32bcb70f906204162b0e2e0bf2d803be196d91af8386e50391

          SHA512

          cf583d192761ac9875261b1bf6de3d54a4112126d1bcdbcc24cf1e61c3565a5999c80af76245725a6b411fda6223eb6542afe1b5d780790523df8369f589cc0c

          Download Submit

        • C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\ZBU4NE33\www.youtube[1].xml
          Filesize

          13B

          MD5

          c1ddea3ef6bbef3e7060a1a9ad89e4c5

          SHA1

          35e3224fcbd3e1af306f2b6a2c6bbea9b0867966

          SHA256

          b71e4d17274636b97179ba2d97c742735b6510eb54f22893d3a2daff2ceb28db

          SHA512

          6be8cec7c862afae5b37aa32dc5bb45912881a3276606da41bf808a4ef92c318b355e616bf45a257b995520d72b7c08752c0be445dceade5cf79f73480910fed

          Download Submit

        • C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\ZBU4NE33\www.youtube[1].xml
          Filesize

          19KB

          MD5

          222de7f90358a52d48b02ab1a5faa5e3

          SHA1

          55fa37421bd1259a42668a629f67d18827503b89

          SHA256

          a474d99746131d34615ff617259df03fd80059f8502a881f67951ff9322b0f8e

          SHA512

          14fc11f44bac392a3b9a57641418e1418181fc85ced76a06964b3713b28663405d83f682aa5086761bff02332a9c98771ca4cc236802f74a25cadcf810d9e6ae

          Download Submit

        • C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\ZBU4NE33\www.youtube[1].xml
          Filesize

          578B

          MD5

          45a0a6a4690f0e7eac7adec86f2567c0

          SHA1

          c54f95d327f63843b1a8a604c9dd23cd752a7b80

          SHA256

          b60bf6ebcdc721a8d1b21ed1aba92263124d9b732594c2d91b0af1b7aba0cc90

          SHA512

          c51767aa9ebfe344f07bd9d24806abb5854b93e693dde47bf48033eb08e8fc17ba489c2a31758ea081bcc7084475a2d5d098b280b38c14e548328fe5b15878a1

          Download Submit

        • C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\imagestore\ccxtump\imagestore.dat
          Filesize

          1KB

          MD5

          8e5c7c6bc71b866291d0f65f4ecf299a

          SHA1

          252d2157e89814546472e660ac23fb726abd69cd

          SHA256

          b0823be7db9c9b4dee7d88428e8ecffea566db8666e205a96d348e118fb81807

          SHA512

          38d53456b635d4c461ca37f7c2e6442ff1d3adee9773b7a78afe4a74bbaa02b9dd9f1f64f13732195e9b344c737d8b1ca7c6bd096d182a03d4cc9a01d88a8a14

          Download Submit

        • C:\Users\Admin\AppData\Local\Microsoft\Windows\INetCache\IE\0A013ETK\css[1].css
          Filesize

          530B

          MD5

          0a127ad39a8ebe4207492293b556adf6

          SHA1

          17d3dad64e4f9139cfb85bbcca6659a8aa532a48

          SHA256

          c1294965425b5028a83bbe5eeed0cd9b92733ec41efd07e34532522d4c97b6e1

          SHA512

          5aa845c5c6c20259d9c6bc0c9fdbd13ff178ba4008865f7113387767db0ad39cd53c1d276cfa4997186fd39f21d30bf00caf8d092e5c04119d992368b1563df3

          Download Submit

        • C:\Users\Admin\AppData\Local\Microsoft\Windows\INetCache\IE\0A013ETK\favicon[1].ico
          Filesize

          1KB

          MD5

          0106d4fd24f36c561cf3e33bea3973e4

          SHA1

          84572f2157c0ac8bacc38b563069b223f93cb23c

          SHA256

          5a6c5f7923c7b5ba984f3c4b79b5c3005f3c2f1347a84a6a7b3c16ffbf11777d

          SHA512

          57b77c5d345eca415257e708a52a96e71d3ddf4a781c1f60e8ba175ea0c60b1d74749cd3fa2e33f56642ce42b7221f16491cf666dc4e795ecc6d1fbfdb54ab98

          Download Submit

        • C:\Users\Admin\AppData\Local\Microsoft\Windows\INetCache\IE\0A013ETK\jquery.min[1].js
          Filesize

          84KB

          MD5

          c9f5aeeca3ad37bf2aa006139b935f0a

          SHA1

          1055018c28ab41087ef9ccefe411606893dabea2

          SHA256

          87083882cc6015984eb0411a99d3981817f5dc5c90ba24f0940420c5548d82de

          SHA512

          dcff2b5c2b8625d3593a7531ff4ddcd633939cc9f7acfeb79c18a9e6038fdaa99487960075502f159d44f902d965b0b5aed32b41bfa66a1dc07d85b5d5152b58

          Download Submit

        • C:\Users\Admin\AppData\Local\Microsoft\Windows\INetCache\IE\0A013ETK\js[1].js
          Filesize

          187KB

          MD5

          aafc772fbd792bb7a2fa3272eb3d77f4

          SHA1

          96cd9a403f00dbdfcc92b4a80b8e2f620f9145bc

          SHA256

          0df222b0cbf03b1de52f08a88e941309b17dff4241a10bfa7591a203a6d38b50

          SHA512

          d78f9a9d1d9be83954672a27ff9c25e9b05e4a941338089362560e23f9382afb4959ac0621ebb290e236ca87e49e75a371dd34319ac05fd7161cfdde2e051676

          Download Submit

        • C:\Users\Admin\AppData\Local\Microsoft\Windows\INetCache\IE\0A013ETK\suggestions[1].en-US
          Filesize

          17KB

          MD5

          5a34cb996293fde2cb7a4ac89587393a

          SHA1

          3c96c993500690d1a77873cd62bc639b3a10653f

          SHA256

          c6a5377cbc07eece33790cfc70572e12c7a48ad8296be25c0cc805a1f384dbad

          SHA512

          e1b7d0107733f81937415104e70f68b1be6fd0ca65dccf4ff72637943d44278d3a77f704aedff59d2dbc0d56a609b2590c8ec0dd6bc48ab30f1dad0c07a0a3ee

          Download Submit

        • C:\Users\Admin\AppData\Local\Microsoft\Windows\INetCache\IE\0A013ETK\zyw6mds[1].css
          Filesize

          1KB

          MD5

          a5bb75d5bd1b19def25c1dd4f3d4e09c

          SHA1

          d0c1457e8f357c964b9d4b6c0788e89717fe651f

          SHA256

          ff0689879c72300a01eae0c05c3205e2ca57c4bc1a6bfa0718fa6fea4a51627e

          SHA512

          b9fc57f7ade8f34cb02ece2935acb30757ed846e4bcf81d3fcf5bfcb45611d386bd337a6337e9945c5654cf044dce4dd3fafd60a2b42ed5bdc857ef96d077a69

          Download Submit

        • C:\Users\Admin\AppData\Local\Microsoft\Windows\INetCache\IE\DQ2SYU15\banner[1].js
          Filesize

          95KB

          MD5

          8ee1a595af3f234a8c8b37801673c61d

          SHA1

          9874d2cb057cf2effbfc793f76cd85261f8d6d83

          SHA256

          1278ae96ce63e87c53f529a7f549173f74097c4fa5d614afb93811a4dc3f9acf

          SHA512

          eb3e21f3557ef1e8f1fb2d882c4bdadad3e7e86fbba5d2ecc31be106932b9765967df4b0d5e33497d0ef1d3dd1b5bd0bc97ac04bd3c16bf84360146d8ae37b2a

          Download Submit

        • C:\Users\Admin\AppData\Local\Microsoft\Windows\INetCache\IE\DQ2SYU15\hd-js[1].js
          Filesize

          337B

          MD5

          8238ddf7e2685bc9d985f16872e9a3c1

          SHA1

          683a790d6b6afd3382e05764864ce858f684d3e5

          SHA256

          2c2a679130052e1826e1a46a7024418d82aeb15ef8c8e8382e4b57b2f72cddc2

          SHA512

          c3e3e2e8b663c1cee7f4e4fc01b9f4ceb2a3b8cbefe07727b6083ba67ea1494024ae0cb380c6c282717e34a4f13625c9608fe434c233a70fc7dc2024814fcf3c

          Download Submit

        • C:\Users\Admin\AppData\Local\Microsoft\Windows\INetCache\IE\DQ2SYU15\jquery.fancybox.min[1].css
          Filesize

          12KB

          MD5

          a2d42584292f64c5827e8b67b1b38726

          SHA1

          1be9b79be02a1cfc5d96c4a5e0feb8f472babd95

          SHA256

          5736e3eec0c34bfc288854b7b8d2a8f1e22e9e2e7dae3c8d1ad5dfb2d4734ad0

          SHA512

          1fd8eb6628a8a5476c2e983de00df7dc47ee9a0501a4ef4c75bc52b5d7884e8f8a10831a35f1cdbf0ca38c325bf8444f6914ba0e9c9194a6ef3d46ac348b51cb

          Download Submit

        • C:\Users\Admin\AppData\Local\Microsoft\Windows\INetCache\IE\DQ2SYU15\js[1].js
          Filesize

          242KB

          MD5

          f6eb9f4b0a563b5e1de9e15cf78c1483

          SHA1

          c49ca0a73a6d798a6294ecda41fe5a2a090b9ad3

          SHA256

          de0bff0338e65b2afe4de657dc86fe6b2ba415629addf6afbc0c44eb0af3d491

          SHA512

          7da358d7d4beac61705d51307046fe59a239383b745f78634678ac7f18f468b8feae6034f5444dbefd50a43d627074247581336ec5b36e90576bf1d2db83f415

          Download Submit

        • C:\Users\Admin\AppData\Local\Microsoft\Windows\INetCache\IE\DQ2SYU15\recaptcha__en[1].js
          Filesize

          503KB

          MD5

          f989b2a4486b04edff93aef40f36584e

          SHA1

          02234ba0b3dda2cccd38470f35da5494069b1186

          SHA256

          52c308157b0f273a5f4f67bb4f28ccf47c24a68fbc7d0226d49bf4eebacfdf97

          SHA512

          d725f9b39f13794bf0ce57f5821a49eecf2a0b55c73efbf218826c9f001514fe5c6fd290d553638c36ebc7d6bd0fab29c0307f00e894ab9d0353093e2288752f

          Download Submit

        • C:\Users\Admin\AppData\Local\Microsoft\Windows\INetCache\IE\DQ2SYU15\responsive[1].css
          Filesize

          66KB

          MD5

          781608aaede6e759fe48d7967b0a6c53

          SHA1

          bc595134b15c604ec6d42dded9f6d167d94084ac

          SHA256

          7371dd376a195424e3df2ee7877a045a2d60c307b3b3a119789c7160b7c21b92

          SHA512

          0eadd4bd38115eee3db9c62508143e7b93b5ff5fc5f8f05489af21c6499ccfc9e741d4de740e75ab933a32de2a1ca5cce7777a60b015ba53e503196e75bd0c71

          Download Submit

        • C:\Users\Admin\AppData\Local\Microsoft\Windows\INetCache\IE\QPBAQNGM\enterprise[1].js
          Filesize

          974B

          MD5

          53e14e26af9293b9f30d458788209187

          SHA1

          3671e2af1bc0a6c52c0a8d0810b69f97bc9f74a7

          SHA256

          dad7910a8ff788765ce961c12b09e66fda400ee230a4802d7d5123301cc91342

          SHA512

          ac08ef4b3c98b193c61a0cacced9fff32a7ae9a434ac81b2e1fac77928e331a2e802985adce1af4e97702fda584c599df65367ee7aabc809332a92781e588919

          Download Submit

        • C:\Users\Admin\AppData\Local\Microsoft\Windows\INetCache\IE\QPBAQNGM\reboot.min[1].css
          Filesize

          3KB

          MD5

          51b8b71098eeed2c55a4534e48579a16

          SHA1

          2ec1922d2bfaf67bf3ffabe43a11e3bf481dc5d7

          SHA256

          bd78e3bcc569d029e7c709144e4038dede4d92a143e77bc46e4f15913769758b

          SHA512

          2597223e603e095bf405998aacd8585f85e66de8d992a9078951dd85f462217305e215b4828188bf7840368d8116ed8fb5d95f3bfab00240b4a8ddab71ac760d

          Download Submit

        • C:\Users\Admin\AppData\Local\Microsoft\Windows\INetCache\IE\QPBAQNGM\style[1].css
          Filesize

          165KB

          MD5

          65760e3b3b198746b7e73e4de28efea1

          SHA1

          1d1a2cce09b28cffc89378b0a60cbb1aa8a08c4f

          SHA256

          10e40ea3a2ad69c08d13e194cf13eb4a28a093c939758a17a6a775ef603ac4fc

          SHA512

          fbcb91f26b7bd874d6a6a3b1d4d6f7277ded091cdae5706c285b4d5d17446a1bf58572c224af38393ce49b310a51d5c5d60711c7094e5d32abbaaf10d1107e1b

          Download Submit

        • C:\Users\Admin\AppData\Local\Microsoft\Windows\INetCache\IE\RVXHSNZG\analytics[1].js
          Filesize

          51KB

          MD5

          575b5480531da4d14e7453e2016fe0bc

          SHA1

          e5c5f3134fe29e60b591c87ea85951f0aea36ee1

          SHA256

          de36e50194320a7d3ef1ace9bd34a875a8bd458b253c061979dd628e9bf49afd

          SHA512

          174e48f4fb2a7e7a0be1e16564f9ed2d0bbcc8b4af18cb89ad49cf42b1c3894c8f8e29ce673bc5d9bc8552f88d1d47294ee0e216402566a3f446f04aca24857a

          Download Submit

        • C:\Users\Admin\AppData\Local\Microsoft\Windows\INetCache\IE\RVXHSNZG\common[1].js
          Filesize

          8KB

          MD5

          56b21f24437bfc88afae189f4c9a40ff

          SHA1

          a9d3acad3d4c35da454e4a654bdd38f8d2c4e9d0

          SHA256

          cfece1b609f896c5cd5e6dbe86be3ba30a444426a139aec7490305ebf4753ed4

          SHA512

          53d4718e60a47526be027c7829f9ad48f381e22765790f20db35ff646bd994f8085b12b8fbeefd5b29ecda8f71f4c6c62b64652bc9a7256e001b5e4047c21651

          Download Submit

        • C:\Users\Admin\AppData\Local\Microsoft\Windows\INetCache\IE\RVXHSNZG\hd-js[1].js
          Filesize

          23KB

          MD5

          6761faa022e0371e84e74a5916ebaa44

          SHA1

          5320c3d53d5447bad2a02c63208deca7fb94b655

          SHA256

          da17fb5b54c0fcd77c7358ff274823cb6a02ba0c4b6fcdf347c1ef611818bd9e

          SHA512

          a8cdba92942f299b648e87109d193a1f7eeb8f243eb2bbe4224423b512c400fccf930d81cd403a925fdf99220fdffcf89da69305cdc054963a64da470072d019

          Download Submit

        • C:\Users\Admin\AppData\Local\Microsoft\Windows\INetCache\IE\RVXHSNZG\hd-style[1].css
          Filesize

          39KB

          MD5

          fde8744255e382e251084ae221c25d23

          SHA1

          016ea38ff7ad08d3ca61e487d649a19ba1822034

          SHA256

          e197a30b0057ae4b6bef30a9a703a6a90ccff0ba42446c89db9f7ae123447ade

          SHA512

          8aede3f6417a7e7f7905889bf08358ad4fc7147e028831ac3414bf8bfeaa9d2601db82ce7edfa6570260e2dddb12ccfb0c684f55aeee6218b8e7404e72471bd1

          Download Submit

        • C:\Users\Admin\AppData\Local\Microsoft\Windows\INetCache\IE\RVXHSNZG\intlTelInput[1].js
          Filesize

          41KB

          MD5

          0131b7c96ef8eda32ab47aba87d481bf

          SHA1

          0e5cd24a4797f3d3649254bb1e7ab1d22b7718c1

          SHA256

          1aafcc8aa40051234444fd47d973660991991d492048adafa92610c410418f83

          SHA512

          e5fa133d8c4b8da05b739057bdae7ee154b18fd5e317a21c50ca9aded6b3713fd534c919200b55930c1d37537a6c0a20be47bd62a947125b348e6bf97c4b0b9d

          Download Submit

        • C:\Users\Admin\AppData\Local\Microsoft\Windows\INetCache\IE\RVXHSNZG\p[1].css
          Filesize

          5B

          MD5

          83d24d4b43cc7eef2b61e66c95f3d158

          SHA1

          f0cafc285ee23bb6c28c5166f305493c4331c84d

          SHA256

          1c0ff118a4290c99f39c90abb38703a866e47251b23cca20266c69c812ccafeb

          SHA512

          e6e84563d3a55767f8e5f36c4e217a0768120d6e15ce4d01aa63d36af7ec8d20b600ce96dcc56de91ec7e55e83a8267baddd68b61447069b82abdb2e92c6acb6

          Download Submit

        • C:\Users\Admin\AppData\Local\Microsoft\Windows\INetCache\IE\RVXHSNZG\script[1].js
          Filesize

          9KB

          MD5

          defee0a43f53c0bd24b5420db2325418

          SHA1

          55e3fdbced6fb04f1a2a664209f6117110b206f3

          SHA256

          c1f8e55b298dc653477b557d4d9ef04951b3b8ba8362a836c54e2db10cda4d09

          SHA512

          33d1a6753a32ec06dcfc07637e9654af9321fe9fa2590efc70893eb58c8603505f2be69084fb2bcbf929218c4e7df9f7a8bc3f17a5b41ed38c4d8645296ebab5

          Download Submit

        • C:\Users\Admin\AppData\Local\Microsoft\Windows\INetCache\IE\RVXHSNZG\script[2].js
          Filesize

          94KB

          MD5

          95e8ffa91ef91c1e68f9d647feebe119

          SHA1

          efbb044430afe01e2987f5f436ba0303c23e15c1

          SHA256

          693880fbbc65bb93b95798ce3559971dda0c635db8db33b3dd6d1d3d0414e6f5

          SHA512

          af3349e738142f141d4b6bea3aec0601dac3c3ceb40c38c6add87c1d7b0a54d4d9f9b4274e2e8215d81ba15803727a7751ba09295cbe86dbf1d42b9f0e61070d

          Download Submit