Overview

overview

1

Static

static

1

657d08a59c...a.html

windows7-x64

1

657d08a59c...a.html

windows10-2004-x64

1

Analysis

  • max time kernel
    122s
  • max time network
    141s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    18-01-2024 16:24

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    657d08a59cde5a2da3b0f4dfb632880a.html

  • Size

    22KB

  • MD5

    657d08a59cde5a2da3b0f4dfb632880a

  • SHA1

    880020f6732d043d624bd0bf408b165c050da81b

  • SHA256

    e9cb90372eaf08bbf4d14afaf7502f8972c238b61b4e37b04073ace1512b7108

  • SHA512

    afd755a21575ae86176157ee3bb6715876f2167a51624ffc5dfee23dedc9521a5984402fd46c899050fe9fa0db82450f17b1fbd1cbac7caa0ee7ef353367ffbd

  • SSDEEP

    384:eQybVv77RQxZSaULuuPMGEhihZLrBxGJ8xGJ8xPhdXJ8xZJ8xxht:ah7RUELuG

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 26 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\657d08a59cde5a2da3b0f4dfb632880a.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1068
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1068 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2124

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    dd92ab626df834be0534c1ee5539e736

    SHA1

    d9787064a6cbe2174a210540cc6e4459609791a0

    SHA256

    f3b469664f69256bbb7f6ee8a8630e2391d4ce7f5387626b397a46ff1ee701c2

    SHA512

    2de2defc160a44f589888ae08b325103e344703fc6e7effd67e0af5774be7732c61c3f1e0b981e8e9ecdd974029315ac7e6ef2f791fe3c52bab5bd913dc63cea

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    3f31a34afd8fffdec2bc5abf98c129c3

    SHA1

    7ce45dd2719d5c9fb3ba4686557a81ba12441d84

    SHA256

    1e083f0e6a4c88ae56168415dfd4ce47d50aaa3e8c8f59682e4f088c2f904b39

    SHA512

    70d22e6860d9d42ac3c7cadff20167be7289f1053ffb743d5350136d417e27bf006cc173248424061856b529577c60d12d7f4ce1d400daa7c5d150f8ebca14c3

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    14929dca5a3c1b64464fba0af4890dca

    SHA1

    c6df239c00708fce887eaa8eaea841ce52fe83e6

    SHA256

    bf2ab01d39ba7d0e71b77a3a9ac3f0fa41de5ecc9566fced5e2c413417dbcc00

    SHA512

    4f2322a50737c1dd6e77b7e005d2b813080e268458e93da01dc95fda65ce6f597eb9295f5241c89b0c4110fad61f290a07b349fc622862f4698a017d81927a10

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    b6a7e010a3018900aa57f2a65577d834

    SHA1

    252bbfec1dfe23e7bf30c9399d113dcb17f7d7b2

    SHA256

    0ba0007ca71bc8e79a45db492e4716355a0fdb8ac0bd993d93069a063751701f

    SHA512

    cd8e260205ff6690072384202362a9c8410d5bab4da1ef7191aa6c6ebddf3d82933401055cbd85cd089ef34f3866e05ded98b31953f8198a70bbc9c55c139f53

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab4185.tmp
    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar4253.tmp
    Filesize

    171KB

    MD5

    9c0c641c06238516f27941aa1166d427

    SHA1

    64cd549fb8cf014fcd9312aa7a5b023847b6c977

    SHA256

    4276af3669a141a59388bc56a87f6614d9a9bdddf560636c264219a7eb11256f

    SHA512

    936ed0c0b0a7ff8e606b1cc4175a1f9b3699748ccbba1c3aff96203033d2e9edabf090e5148370df42fbfc4e31d7229493706ff24f19ff42ff7bef74a6baad06

    Download Submit