Analysis

  • max time kernel
    134s
  • max time network
    130s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    24-01-2024 10:40

General

  • Target

    7203a850f4f2c207be411cb2af24fabd.html

  • Size

    46KB

  • MD5

    7203a850f4f2c207be411cb2af24fabd

  • SHA1

    2cbaac403566ccdd38ef06c8c6880613caf85f0a

  • SHA256

    4369d08ec6795cebebd131c0d7bbd7b62909c39f5bfa23f385b328052ffce655

  • SHA512

    98859dfd50b39e95510b78156c9fa7a913cc63deaefcfa69e63df898804a7fed4fc9e75d1173fdb232c928aa747b66e89b9387cfe14dd8416d85865bf4afdf65

  • SSDEEP

    768:jiTcZr9DevR7gcT/No+hJyx4R7BpI0IQW/BRBC/V4eRuFn8bn1rcj4S+e05nwGDO:jacZr9Dev6m1o+hJyi7BpXZW/74/V4em

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\7203a850f4f2c207be411cb2af24fabd.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2044
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2044 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2140

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    13fbf38f53477d13358285c3e9ed206e

    SHA1

    0baef72a6066ab474f3702d6d06ed825a9c02c03

    SHA256

    21dc61d4309c265ced68dedbf4a2496042de39e19fc29fd05e03ea5316bc58a6

    SHA512

    2e9869033077b4017547fe873ce5f987a0bf73fc76536b50874dea73993f87c6faab501685d0155eb35e5ea71df140033772ea73e8ae83f1fabb321c5ecb3916

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    222f81b550611740435464634941525b

    SHA1

    88a61ca74f7fbafe93b4070dc5d16bc42e4366a9

    SHA256

    dae62b9d445a143d657f3b2d78985bf79825a32285d9e8ca2ee6783742cbcd08

    SHA512

    44fed994b3d69d5326644e72b1e7434b521e5da87ee10f4a18897d53b37890745181f8c107d8cb42baf0baacc56ffda5546d77151a591994d165191ed3cd98ab

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    4c63e0fd2e095dc7721d2aa1d6c61554

    SHA1

    3fe549e8be37c3cb2cc1c8910ac5a8140d5d62b3

    SHA256

    953c623c47f821e4dba0b772991316230b452792d6edfdc484ecc19cd347fb70

    SHA512

    11b8ff98a8b2a81f8b94278b96e358f00512b34f724364ded2a6cd586c9ce6214b7f1a5527f3d3c2790e69c4fd067e25a4b4d4c57265ced740e1abe1eaff736b

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    899642f9b966ba113acc93702c9bdc5b

    SHA1

    2c95127ad3ae9eee40a2561c306e6d06d5e25f81

    SHA256

    40c9e6038c12d377e031d2ea05aff53cd1a0e24886f6afe652b45eeea7abdb50

    SHA512

    d8357f7baa1fcac0e341d40ac025d49c6434191600bcde0ac01822688bcfa4edc6b363720b755fc16ae6161735f2fb0cf31ceee510224f5b5dfda50fb439a396

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    479a90cdd046e942f9cbdff1d39a0afe

    SHA1

    1fb1b4e82230b3a0dc4659d8c82d5d9a8e98a45c

    SHA256

    0b8c26138f1fdca89e27a4b08697c3fa4689093bd107f9657af4f025ff155f98

    SHA512

    f0e128e0de402315ade6d1d4809e7927c288319c5ec512450b1e2ad370ab6dfc225f1e88586ee0b25139b311e26471e4530bdafddab270fda221eaf933da4237

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    2dffcc84b11408df6b6c89b2c40e1dbe

    SHA1

    23f2c9c8569ca7978dfc51eef1038c536d8ba29a

    SHA256

    3c19906a7fc1a0854e7bcdbb0d65e44bb0dd56f80281d237134496a2988e514e

    SHA512

    627bcc6b770fb4e0db53969135f55397f537c2db27ae82e3241701a1698c8a730efee935e88cf8e1d9f87ad0f57fb9e2f466d665d220c3c10b93b8b31a6d0d06

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    f0c36b9d0375f36825c9ff352dff4e18

    SHA1

    6e0d242634ecd025da24e57aa72820bb2101d128

    SHA256

    415fb2f809f74c725ab5f01abc03b4e6bb470dc8b51fd76ba62148e129200b25

    SHA512

    02bc8705b71402f528f8fec69da256b368fb35af1b1179fa30686c8f34cde40c869caa5e6ef5ff947eb573f61a6a39673e75cafa33238b8f7706ba1d286b8415

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    37edad1d4787c5f3531bd8e67cab331a

    SHA1

    9db4ab3a57f103f1bba44555c03d8babb4d777f3

    SHA256

    d2b6c71299aa1baf059e68b92d1ddf4873eb8fdab487d5ef1ee00b3adb572dc4

    SHA512

    d3f065b098b734aba3c442a3feb2dd1938365aec5884fc2fe685f2a9d19d7ccf4bba3bf6a609fd0a4928f17f0ce2269e6060351f47c622f93431faf3655fd2c5

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    651ccbf56cbdc9a9ce081fb73cf23cb8

    SHA1

    56c84b5bf1194b5af2d5c325f1ee937e75d15dcb

    SHA256

    aa41ed01d42badc8e2ceeb53f9f653e3b15e7cf9da49d668cb8e1f49210238de

    SHA512

    5d13c09c9d5de53683eefd35b837a35ce55f6a5805a7c4e8e6d335fe627ee0082a5bff86c80f1d52d05f7c3f76497f825b39219a94d82a174024a37acd74ba5c

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    396ffae3ede7369c0b2f6079b497bd58

    SHA1

    2ca21404c2acc20ca0c2fb03fb776bc02e8b9303

    SHA256

    997d72d9449c0377831805236a724024258c4c58b3deeec14592560809af99ec

    SHA512

    b42822b3359ad176cacfb5ab99b336e2a36872fece076c737fd226e49b703df133ac2b0e80f49dac0fbf3bfb8e70f544e7cbe025fc83d9733f871b108669ea72

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    77a57cfe7216181e8647c3b9b29ab3da

    SHA1

    5e6eff8f215a7930aaba83ff03334fcaae535aaa

    SHA256

    1bb29d74619b4ceb0bc1667ce5bdebc4073572de05ce9dbddb5d87464ac89d3b

    SHA512

    b99f4d20077cced412b40ef9add2333b8a005afde429acd7c385b5d3044050e8f0b8a44ffe5f4f9123dbedad56e6a4d3c6b4a4d99fe386c7b8ee1b7a4c4a4a64

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    d12e132ea44b050c76065f0fd8fcdf3b

    SHA1

    9c0e95ced396514ac839036616160a08ef95bd1f

    SHA256

    fe0eb4d1f7cdf53358cac8829a2c8813d96003b9b187dc8a21a57a2f0f3b80b9

    SHA512

    802d6c35ff48aebc99a113cb54814a8905f810cab7cd42b1b193cc0192186f5481d784ddb37fc27da9b22b7c687bacf5ea66ee7fbc24580829ad9745f30f8640

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    9adff39e8d157c0c667e8604ff51662f

    SHA1

    d5e37706118aa9c97d6c03186449736d92f6a663

    SHA256

    b951485c0146c11c2a3045991994710732d655b28c16fccfda30603cd02ba949

    SHA512

    5ed017b4c57574608366d31f2ccbd5fdfea6801aad288ee5d257c6b63ccc4d673a1a9eb8b64eb42001327cd43132507bbf4b51af14bafc77213faca276a5b30f

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    03245a85cd787f54c5388c9b4f2d9e1e

    SHA1

    b9f28f62d0334e60a28c84d26abac6e61f3392b3

    SHA256

    958bb2f21b8eb8ddf3addf83904135c0f83792bbd2c20741427870db46a8fb1a

    SHA512

    0942261aaad90fda70908faf0efef088d302bc9c249f6bb0dd11b3ae3a94af19950e6af945a2724e3bdec97764d2efbbc33f82684bd5119adaba6fd843f18006

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    8fd88543effc58d6113f4c102e1d596b

    SHA1

    caf8d660ed09fe4a4682a3b0323173e7c87823d5

    SHA256

    1c5fade374528c5485e76fd165801771773e96904d08e05c5c957c940a21d8bd

    SHA512

    97f95c35cc7475f8aff9862d19ebc736bb547dec1af700d65eaaa2e19e6f771e9cb8ff6e5eba8021a460d0e6c8c9343c7e3733af241ec2c1d5efe40b003b5eb1

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    59ec989f42047120a0a86eca58929200

    SHA1

    0c2fe4863555f6fbfe73672802e53804f871d9ae

    SHA256

    a64b6b6d2907194628f62a7c09522cf57833602b2b6540cd0cae39a32e7e7898

    SHA512

    3bb0b139433b777eda4c1ac5f46d774a334b38d9e61d17e4330c846e539f17fdf02cc319ed6131ddd8738c4b6eb6f700375e300b4545c0f94bc3f270c229d5cb

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    bc3eed835ad96acadae1edc1c8dc4eee

    SHA1

    389e852bf344fbcc4edf566b922f8fd235173bc5

    SHA256

    d710d41bb86d11c32dea562e8903426e312407f434bd60f0665be1e6bd63a267

    SHA512

    52792507bae8599951853c5b27ab079520b774b6370abf91e0d1360c36103023bde7a146339784b918dde8d52131c289e451387e6c591e2a3f72002ba4ba3c25

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    99ec9aed838435c993a95960597663ab

    SHA1

    2af85641a5e8cdc2a59f7f916ef6c08310df2af1

    SHA256

    3af4450a24dd36116e16c2c81978d718372df4399cfff4058411ed16c5a07ff1

    SHA512

    4d58f888170fa9bd37544030693a4fbddbeefbe1c6a9d5d8df45fd174632b9e36f4fb44c4466d9eebc932f9c86fba048b4063c093a5554e4abea18c8ae92c975

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    c4d4afa884d2788e0c03217da2603eef

    SHA1

    540d3083546d91b92503045fdbc7c96457c11fd0

    SHA256

    85e6f94e6e0661d46dea96c113ca78596bae4c69930d252280ef61c68c6418bb

    SHA512

    ded3eaf8b581cdcf1eae42f48bd3c7a491020b43128d4b501b49afc2d3a1967eb6bfdfe73a93eb928b302eaa9e84e143fcc6967702974dd89c45e2f297c5363f

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    e57ab3967775faa42457c5d5571ce131

    SHA1

    bc07466a64f8916a8657556ab9d3e8a633f911a6

    SHA256

    3a5e9177fc07daa894b50a2626842d909394b81cd535a0a6269e51d7aecee86d

    SHA512

    cdf62850eb9d57c6fceebca7bb290ae0d2fd8cd9a4ad130ff87c1d6511d8e17f95e461a95746cfe6adf1122782282c7d218e94770d4aae57bfbae6c81b143eb5

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    4fe366a9d93aa018fe9a8eb919352c8e

    SHA1

    f7c2a009e399137dcd2c837602f496b70f1adc4e

    SHA256

    d1db754b6f878d7851a745374450056f3c7b2d0046860b43c24ec6f86f0623f9

    SHA512

    221c362cd77dfd3f6e755ce816d893f67879eea266adb7f18994381d579f4b7d21c790469b253cce6363644405d3b62356ea7cf6f701d3694589784e8a79c1c4

  • C:\Users\Admin\AppData\Local\Temp\Cab767A.tmp

    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

  • C:\Users\Admin\AppData\Local\Temp\Tar772B.tmp

    Filesize

    171KB

    MD5

    9c0c641c06238516f27941aa1166d427

    SHA1

    64cd549fb8cf014fcd9312aa7a5b023847b6c977

    SHA256

    4276af3669a141a59388bc56a87f6614d9a9bdddf560636c264219a7eb11256f

    SHA512

    936ed0c0b0a7ff8e606b1cc4175a1f9b3699748ccbba1c3aff96203033d2e9edabf090e5148370df42fbfc4e31d7229493706ff24f19ff42ff7bef74a6baad06