Overview

overview

1

Static

static

1

678e754e86...3.html

windows7-x64

1

678e754e86...3.html

windows10-2004-x64

1

Analysis

  • max time kernel
    144s
  • max time network
    152s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20231215-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20231215-enlocale:en-usos:windows10-2004-x64system
  • submitted
    19-01-2024 11:52

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    678e754e8695ee470cfe94683766b393.html

  • Size

    13KB

  • MD5

    678e754e8695ee470cfe94683766b393

  • SHA1

    67d00fdad814cd839733ce17e4f09897b76d77de

  • SHA256

    fadab2a0476d32834c2ab2e77444b42713f221da82463cb1c5b3ee89f8805b80

  • SHA512

    d663bdb6499a0a44a74585e454d4f9722ea8d1cc73a11534f32bb63fa8bd1aba26cae3093ce200b6602a63c7c95c43d64cfbd7e060e6896326e18eb9a423d4df

  • SSDEEP

    384:ZtESCbhBwks4x4CGhB8hMUw20Pa0+9rxb2ksoNUPBUw26Gn6v28saNNUPOjNUPEE:ZOS2hBwks4x4CGhB8hMUw20Pa0+9rxbb

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 30 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 3 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\678e754e8695ee470cfe94683766b393.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:368
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:368 CREDAT:17410 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:3840

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\7423F88C7F265F0DEFC08EA88C3BDE45_AA1E8580D4EBC816148CE81268683776
    Filesize

    471B

    MD5

    49f252555ef47b8aa362c5d7c52da369

    SHA1

    bbacef3f462b03e69c8b9c52b8614d2d45bd116f

    SHA256

    3b38ced03adecab7e5df47aa2ef0b9856f7b144018e1eeaece5690dd64a0fd5d

    SHA512

    723b232632c663f9cbeaed39d75c6ba6cab9a690747ed93a74eb09cfd0d6fb9bf1caad9d25483e7637f55193a5e547706ab2648326f4b60900c144dc84c59cfa

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\7423F88C7F265F0DEFC08EA88C3BDE45_AA1E8580D4EBC816148CE81268683776
    Filesize

    404B

    MD5

    12b2c5a147b033c20ad789ae6c9ed0e1

    SHA1

    a36272b748a78a0f477ed2f7b43eb7432184e4f0

    SHA256

    d4fa8aceeebaec49d681fb61986e01776c472f6778438fb55de9ac8b08dedb94

    SHA512

    8d4a2552f7e2afb930e208bad6e963c040c5d2b6faa87c03c554c9dd36ef321944ab7cc1947003f7d4e5ea6ba46d09b2958c40a5fa0891448a8a00f08b4879eb

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\INetCache\IE\08N5I3QV\bZPRaSqtT[1].js
    Filesize

    31KB

    MD5

    fa133158899ce726ba4d5115f081260a

    SHA1

    940f498582631778544e43e1ab078bf5c0da788a

    SHA256

    abbae5b2df429f91ece4082fa7814c941f11d82bb7a7b1d15f5a617e909741a4

    SHA512

    2b4a90abd1a9843dd6941818614bd128f72632871fc36ab8cf4d0d2f740b63e342cc9e592d243583b9f2175a62111bf7474408373ae0cbdf02b06a7907e51f91

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\INetCache\IE\BPK32G26\errorPageStrings[1]
    Filesize

    4KB

    MD5

    d65ec06f21c379c87040b83cc1abac6b

    SHA1

    208d0a0bb775661758394be7e4afb18357e46c8b

    SHA256

    a1270e90cea31b46432ec44731bf4400d22b38eb2855326bf934fe8f1b169a4f

    SHA512

    8a166d26b49a5d95aea49bc649e5ea58786a2191f4d2adac6f5fbb7523940ce4482d6a2502aa870a931224f215cb2010a8c9b99a2c1820150e4d365cab28299e

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\INetCache\IE\DV2I56HE\httpErrorPagesScripts[1]
    Filesize

    11KB

    MD5

    9234071287e637f85d721463c488704c

    SHA1

    cca09b1e0fba38ba29d3972ed8dcecefdef8c152

    SHA256

    65cc039890c7ceb927ce40f6f199d74e49b8058c3f8a6e22e8f916ad90ea8649

    SHA512

    87d691987e7a2f69ad8605f35f94241ab7e68ad4f55ad384f1f0d40dc59ffd1432c758123661ee39443d624c881b01dcd228a67afb8700fe5e66fc794a6c0384

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\INetCache\IE\M4T5ISGA\suggestions[1].en-US
    Filesize

    17KB

    MD5

    5a34cb996293fde2cb7a4ac89587393a

    SHA1

    3c96c993500690d1a77873cd62bc639b3a10653f

    SHA256

    c6a5377cbc07eece33790cfc70572e12c7a48ad8296be25c0cc805a1f384dbad

    SHA512

    e1b7d0107733f81937415104e70f68b1be6fd0ca65dccf4ff72637943d44278d3a77f704aedff59d2dbc0d56a609b2590c8ec0dd6bc48ab30f1dad0c07a0a3ee

    Download Submit