Analysis

  • max time kernel
    135s
  • max time network
    133s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    02/02/2024, 22:09

General

  • Target

    8aa94d80ab6c8d9161b24df88d483e6b.html

  • Size

    66KB

  • MD5

    8aa94d80ab6c8d9161b24df88d483e6b

  • SHA1

    9c385d8ccc0a72f21231d56a069b380aa82e016a

  • SHA256

    102897ebc26846b49d6f0c3da29494f86f8f9acf29fc53858eb63e39c482630d

  • SHA512

    c29e49ecdaccf7c4c84f8d92ec63dbc14803286706ad87213cdfcf315696c627c6d7779991e2382d2e2ed43673f40304a4f54f76c4c4bb855e1450430131a6d0

  • SSDEEP

    1536:/B1MKVhnd+xmBuPsbTaLOI4rNDBATaLOI4rND08jp/S:Z2KVhnd+xJPsbTa4aTa4g8jp/S

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\8aa94d80ab6c8d9161b24df88d483e6b.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:848
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:848 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2728

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\24BD96D5497F70B3F510A6B53CD43F3E_3A89246FB90C5EE6620004F1AE0EB0EA

          Filesize

          1KB

          MD5

          230436fc402a027155e3213d5785c3ba

          SHA1

          47d5cb9b2669c0c048a3bccf207fff76ac170a67

          SHA256

          7bf515f114d9386f1071e63a484d2e65051cc6432343fcfb7232effddc795070

          SHA512

          4d1cb6d2b02b26936626a6f42724c50543626000a09644bef7670c4648fca7d9aa5a27ce585ccaf566a1bfc386fc311e438b1a8c747fd62311c6ed645c10c4f6

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\3C428B1A3E5F57D887EC4B864FAC5DCC

          Filesize

          914B

          MD5

          e4a68ac854ac5242460afd72481b2a44

          SHA1

          df3c24f9bfd666761b268073fe06d1cc8d4f82a4

          SHA256

          cb3ccbb76031e5e0138f8dd39a23f9de47ffc35e43c1144cea27d46a5ab1cb5f

          SHA512

          5622207e1ba285f172756f6019af92ac808ed63286e24dfecc1e79873fb5d140f1ceb7133f2476e89a5f75f711f9813a9fbb8fd5287f64adfdcc53b864f9bdc5

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\CAF4703619713E3F18D8A9D5D88D6288_A7725538C46DE2D0088EE44974E2CEBA

          Filesize

          724B

          MD5

          ac89a852c2aaa3d389b2d2dd312ad367

          SHA1

          8f421dd6493c61dbda6b839e2debb7b50a20c930

          SHA256

          0b720e19270c672f9b6e0ec40b468ac49376807de08a814573fe038779534f45

          SHA512

          c6a88f33688cc0c287f04005e07d5b5e4a8721d204aa429f93ade2a56aeb86e05d89a8f7a44c1e93359a185a4c5f418240c6cdbc5a21314226681c744cf37f36

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\F0ACCF77CDCBFF39F6191887F6D2D357

          Filesize

          1KB

          MD5

          a266bb7dcc38a562631361bbf61dd11b

          SHA1

          3b1efd3a66ea28b16697394703a72ca340a05bd5

          SHA256

          df545bf919a2439c36983b54cdfc903dfa4f37d3996d8d84b4c31eec6f3c163e

          SHA512

          0da8ef4f8f6ed3d16d2bc8eb816b9e6e1345dfe2d91160196c47e6149a1d6aedaafadcefd66acdea7f72dcf0832770192ceac15b0c559c4ccc2c0e5581d5aefc

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\24BD96D5497F70B3F510A6B53CD43F3E_3A89246FB90C5EE6620004F1AE0EB0EA

          Filesize

          410B

          MD5

          87a2a95cb3d323dfbfe3295e3bc4d261

          SHA1

          8c3a9bad7c4feb7b58b8e30884c59eef2a7ae213

          SHA256

          6781d347b138fe5e90d05f79e3fc02e018221824f39c72eb87c9b4d86f9ba7d0

          SHA512

          ba2185f40fcbaa9ac2ced4311f32ee1915ed1631ce1fc78cf5bcd1e787468637617b5f80283ee4f8a7616e6b8687f1a514f3422ed68d5f401f03ff0f5113a5f1

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\3C428B1A3E5F57D887EC4B864FAC5DCC

          Filesize

          252B

          MD5

          98b84182d330927127d9268f3316b192

          SHA1

          53f7c98d491a64f2b307dc18f39af3ad4479447c

          SHA256

          8024819a6aeafdc2e50687e162d2bbbc9f6ff476b781bed88fcd967f3caf3d71

          SHA512

          392cd254c5cb10b0b4c4983eb6594b7374cd8bfe2df862f2416e24ff2c3c507d066b417fdc994377d33abc8257eab369e7744ed593da0e91d7797c782751f237

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          36a2069bc65145f24f4084f1842321f7

          SHA1

          18fbc52de2b8d80d7927b8038cfd380dc0e5b278

          SHA256

          3ac32f0cfe2a81ebc86f3f90a25d265ecf2add59d28423af4091469b52d9ac42

          SHA512

          367d0dde997ca5887b28d4202fd13cae865f44808a237cc87cedaa8c0ecfe330220dfc75a02a0cd2c214429c1abfeed6905926ac030ff8c44563614548916ff1

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          5e460aad141e434681876d5eea8e93f9

          SHA1

          5c06d3c63733560b4c3c4c2198bb39f2bf953c81

          SHA256

          9b3d7385b5653526e5a267daf4015dd2e68f2d0b226087ad6d9f9b928f3c96d0

          SHA512

          4ce14b591f304b22f970c741febfe6258ef9153ad2b659099592576f4d0d4bfe739f56dee3fcfb5fcb5b0d6ec832345e83d21931a4023c661af9a44dd94616f7

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          98e45b9413b8f782c55be949a01bcea4

          SHA1

          e567daa9d4dd9b93678ac1f9c50d1fa335abc479

          SHA256

          409ebbdee41ee551bdd8809e384b38938468ee13849d8d669a1756184d3f5389

          SHA512

          8d9d60e56e5473ecb31da788c30eb7913db878f2271b3359347b32f51f29266d9b8281e8ba5a21fa8637da76b973a1acfbb4df2891bdafc816b4cdd4d8b9a24b

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          85274f7223abd47053fab145adaa5cf6

          SHA1

          2e20b04d92a53807f5d19a1e3c5842d18c8407d7

          SHA256

          56a70d63b6a1d667aff2c45881da8264634c6b86b1a2e7010a66b8bebc67c07f

          SHA512

          3cee414600a78f2e2f807540a60f69fa969622370b00ef2c1d80ffd9cbb863a25a5ffdb42b3aff83c25394f80359fb59b2101f571866e601a5e67710c50fbbd6

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          f73623e2d5e6b2eb126f98e9a4a5380b

          SHA1

          2189df97524440c4341ab558eb151594af410a6d

          SHA256

          1beea504357f2659c88f6e08cd839452721ed5dfd1e7e674707f0d0a751f2b16

          SHA512

          b8c714f169379a4cad441c2a018afce1266b15ce6e8ff80adc065128fa4b87e912a9a845cb7e39d67fb448597b079ef60b4a6b4c1c2916c6aeec39dc7c69d2c0

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          ed8650b3f8209e608f0fb6112317b6b4

          SHA1

          55d09a8ca1b825bb6d45c1e7460c2b06f3ae4233

          SHA256

          2323bbb1a06941118b71beb55b005119d0868a720a0601c3118b3ffee79eafcd

          SHA512

          73c473a44393e449919194414ecbf41c5eb2c0927708df639d01555ef42138dab216d142b8d04938ac3702835ac8a840bac5b1661f4cce9bfb0cb943e7705c3c

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          de90c518a528dfc59c67982378336641

          SHA1

          3315986b155267617694a5b7af72e50a293f9c8b

          SHA256

          e06c9341543a116010b7fd0313622203eaf050dbf639e9eb7964d596927b8704

          SHA512

          ede563a6eb0a5d719d614f41e01777b97e2944cb1d3644229817b9b143ce44e5238569f79071591f9c5654d98dcc381798ef5e13c9093b1256e62d5c566e991e

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          06475f43bf413efba93f90c4b471ab6b

          SHA1

          ce262d56afccde0ec72227fdb997123dedc41482

          SHA256

          56e493bc51182f0b06b4fe0ad60d8b93f009a96b1ef3583f61f5c9e8a27a985e

          SHA512

          8571d4da756c4fd3005bcc70194c900dd2ae9a05a91fb11f83e94f0a6468bc77320151b9ee2b539ab574890855718d67262f483b2450cce62dca4e85e24222e3

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          d0fc597eb1f085362f2a265609af4108

          SHA1

          4b77a98176f043195bd4133ea4f17c5928b90a95

          SHA256

          159834d5b185d588fdd23b88d7117ccdf44cc1de9a81798a88c333fe3bbb8f25

          SHA512

          9bac81d99fd25a63442ad214da92fff4f708e8fa525e1392bf866b33e4516a0861ec1b862da975ac677fc52adf9760ded3f0a13656e7394fa17b7e5d4358f6b2

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          a5e4f95d1186309c03cfd6de12a310d7

          SHA1

          b473ef8509a0eba8f4cc726ca942419d3c32270f

          SHA256

          a2bb15b2c122de1037ed166e90ea5e95f852033ca051ee3f77aa9131a8586433

          SHA512

          7112678359d457537755106a88f1fca467771850dfea2e7d2a979d141ef7ec1fb3b4151ca6ebaa7792b4c1f689d6120a981fdb7a6c10f182678b11f77caa51ff

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          2ea482738b5c2c8f8137f113a14fd38d

          SHA1

          2c9b8ba9a57329999b5203fc08cb28c24d3383be

          SHA256

          28037b57c32fb9138529676567b3f984ba4f97cdaedd06823f58545ab21478ee

          SHA512

          466697c2a01dfe7e3a390d1d3289aa4bf75cc09bafc975fc36f3c94f87acee2c4e75b3527b935cfb70e8be9bb30ed43d1f2b544f88a6a903e8ece9b9f3223044

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          90f48f36c3d6af4c0208d648f4d5b38b

          SHA1

          94e7c9e1191c5345aa301f51164e4c5389fd8229

          SHA256

          cce84cc8dd595fb601bd4210515a0e6c85f3f3566003469b7611c0515befc91f

          SHA512

          b0b253d0da9587ede4c76de50fe630c78b69ed5d06210eeddb12e063a940144547f14a7414a0e3516a89a50d3d73f1237d5ae1cd6af19f52f4a8352670705026

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          7f36ec75a9dba6d17ea022faa057839b

          SHA1

          b7ec1aa2224059e773bd16f248ade044972da30d

          SHA256

          1caced5d515a1e1105679a6bea151a7a93ba6d7064c8b59ffbdc26592bc76f7c

          SHA512

          b3358343f592d14f1d8d446de6654c985d74b6635304211960dbb1fe83658ebad4aa3ea674d50d8a3e10007b5689f7eeae335ce9e1a428f65db404e532df6141

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          5f941a99cc8db2920a95c54aec90d8e6

          SHA1

          ccea5ef8fa84a9efee3d7d61b666b67b93e47909

          SHA256

          c1d2c08f5c4b07e62aa35e8e5b297e4767c899cfe6ac48b923c27bce6069f438

          SHA512

          eb86aae814a518cf1363721f6f3f6e83678ec2336b547474f4acf94b86879c1b38a05baada429d81d8c11d267cb4643a7fbc7a90172ce5d4ff92a989cafde36b

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          7095bc995f22e2b5680bd5c86a8ee26a

          SHA1

          f3f952af838eb37c4340ca700fdb8a20214e6eb5

          SHA256

          913dc2f6734a72f153e0f7304590ccea5c2a595986576af1b2bc57389e600d37

          SHA512

          19388ae5358e3d3ee2d5575d8b235250d79464c52f9a5faff2883b3ef2203a0fab11faeef9297711debf752e8d8b5094ecf4c96a82275d70006ef71eecf95433

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          59294cb414e30820e628a09a606e67a6

          SHA1

          f9723fa25e5e1c0008af826cd840bfd3ce04c3e6

          SHA256

          e927117b27c5afec7e5ea40761ed0045ebef1f11cb10b75d704057af4bdff8a9

          SHA512

          a38be562c3753d6645240b313ac75b66868eb18b0e7bc984dfab481b9925fa36f404b2ffc2df9b4aee6f86110cce51693fdadaebe7891f899ec54dc9936f0d27

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          16e5d8e84ac7153b2fcff3c9dbde6c83

          SHA1

          3669474db1a1f8a0df03cb34419c662a3c9f5239

          SHA256

          5267329fe9e9c0248839234f769f1e48cbb20b464cace98f37433a71f13e8a3d

          SHA512

          80b163f2cb19f97724a6bd2f9c8772d6586025490971ca52620cef4e6e4b422bb8a5607ed3567397498aa93917121a628dccd54695171f8c821adeb4878f52c8

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          addfc528d80ce852b228738c2131fb6b

          SHA1

          c6b84a5d81e561c0a6c9268ce81c33df3fbb0d8d

          SHA256

          65daff5110e8ddf8399c772301ed6628fa46e80dc1c3940e9fdf05276ef9bf12

          SHA512

          525908df5d3bb7bae312ea38a5ecde76d19e4d8df2f8d269ca51e91cb2405c0d0a869a16ee212aa15d8439620ca92456140b038efbcbecb8725a123c83e5da10

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          2ba2e96e196084569e3e29aeb94c276f

          SHA1

          b45da46f7a25c5c13bc99ff3c2f9fefbebdce303

          SHA256

          7c65fc5f281ae6f3b758f282d6c08e8a06bb252a9181a72d371bcb7d2572b21b

          SHA512

          4ae676c088abf00f66e1250052be52bfcd9099c15909efb54b0b4ba8fdcf4166b5422b768ade29f9adc1a3f4ec6f2b96bf3761cce72d0c70f93aaa217e44ce5d

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          f23abd5e1bdc45dc51672d295d0f8bf5

          SHA1

          f6b7d5c42fbc130b110cbbe81285ee9b85283dd0

          SHA256

          1c60018e51bf81a3c1b3cc70b25f6c02a69b1fe30501519314ac306b0155163c

          SHA512

          93c646ef57f87fec216ace7f49516a836bd1770543201e87ed3078c0a1a0da5019c43e34aa7124e33cd77ffd8d349b825944ae54f15e8394b37c2d12c14cc3a5

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          a935b5bdc2141ff52ae7f9565e195cf4

          SHA1

          1aec02ab76034041c9e9822ca5e7fac4e8ab6d06

          SHA256

          6dfc63e986edc819a19883f077cfa405cd8ae50fbcd348e631fe673108f98f6d

          SHA512

          f12581fb79412b329b0288a23298b9648fd716f4241c488de1ecf14de52238a3e0d08ae0c9c91bb9626c89aa7121a2ce462f04d26034b92b057ca77ff472b890

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          d295130b12a9db2f3fde9ea4fb1c1c6a

          SHA1

          d446f40d0e5433d4ee8c2c7a4d2521f9abcd3f36

          SHA256

          d5cb5655607004ec073f424504785b096d88b2389869372a606d8512a8d4ab70

          SHA512

          003b1f879dbf35d635ff2888212f6aa6dae0d861f760162a55b6175c227d356e883a079e79eaef58ab002d6666749138722625ec62a1401f613a8922ea4c29e0

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F0ACCF77CDCBFF39F6191887F6D2D357

          Filesize

          242B

          MD5

          6b0a789b8d5b54046360928edda0e44c

          SHA1

          691fcd821a52acb4aa7320d7492554e282183b22

          SHA256

          f6cde59f3aa170552a3a0142f322906445ee7eb89efcd6daafa4cbfac58e90b2

          SHA512

          cde2d88080ba0cbb6aee2eb73108eb92cc17222556175cabf8522b1e6bc86780cd021d016a9f75662ac1d1385b1723817509e7600d77bd966f8a95c5115d997c

        • C:\Users\Admin\AppData\Local\Temp\Cab6F86.tmp

          Filesize

          65KB

          MD5

          ac05d27423a85adc1622c714f2cb6184

          SHA1

          b0fe2b1abddb97837ea0195be70ab2ff14d43198

          SHA256

          c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

          SHA512

          6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

        • C:\Users\Admin\AppData\Local\Temp\Tar6FA8.tmp

          Filesize

          171KB

          MD5

          9c0c641c06238516f27941aa1166d427

          SHA1

          64cd549fb8cf014fcd9312aa7a5b023847b6c977

          SHA256

          4276af3669a141a59388bc56a87f6614d9a9bdddf560636c264219a7eb11256f

          SHA512

          936ed0c0b0a7ff8e606b1cc4175a1f9b3699748ccbba1c3aff96203033d2e9edabf090e5148370df42fbfc4e31d7229493706ff24f19ff42ff7bef74a6baad06