Analysis

  • max time kernel
    132s
  • max time network
    158s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20231215-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20231215-enlocale:en-usos:windows10-2004-x64system
  • submitted
    04-02-2024 19:43

General

  • Target

    8ffdd73b2b470e19ba9f21c02cf2f851.html

  • Size

    432B

  • MD5

    8ffdd73b2b470e19ba9f21c02cf2f851

  • SHA1

    8cb77b52a60e174972e321a84db69ff702f6c2f8

  • SHA256

    7d8969d6a5dd6f26a98673d802e700427f8fdfc44758d55131432ad9ce27d345

  • SHA512

    2edd11c738de752834760bff5fc725f782465874f3bf71964a24b968c6e633263145cec00fa0aff554fc4c2e30308cb1a0ad2c3630546919e60a31fe194fd65d

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 46 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 3 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\8ffdd73b2b470e19ba9f21c02cf2f851.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:4052
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:4052 CREDAT:17410 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:368

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\7423F88C7F265F0DEFC08EA88C3BDE45_AA1E8580D4EBC816148CE81268683776

    Filesize

    471B

    MD5

    7bde92ff965b73dc76190e608c2fbb93

    SHA1

    95547789d183bbf9ea20ef6ba4c6b2f0249fb30d

    SHA256

    821420f187b512f853c8b73d9439e940e6e04c499532561343a739717a9a76ee

    SHA512

    21406b04613e8be9f2036f5057d6d3de568ec1aa4eb6471cd457e70e6ddadfc3b988d5f4c2d316e548b21b2850944a78d75a44ec3bf929e71fe61fb6b0de4ec6

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\7423F88C7F265F0DEFC08EA88C3BDE45_AA1E8580D4EBC816148CE81268683776

    Filesize

    404B

    MD5

    e10ac1b27372f3a58065f2eab48befa8

    SHA1

    30a5954bfb69602c4e9714df060df7c6324ff93e

    SHA256

    1611ce1f7daa012e65adcd053c8e9a14ebe11fae60adf80902fbb8a7793bc77f

    SHA512

    61f80d0831165b1d8e9d927987ea3bcabf91f7af9a45d715effa9aecfab5110dd5e81ccde18d4188ca2fdcb13b29ded44ad5aefc55dbcc3de1c6a59b1c728f6c

  • C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\VersionManager\ver15B6.tmp

    Filesize

    15KB

    MD5

    1a545d0052b581fbb2ab4c52133846bc

    SHA1

    62f3266a9b9925cd6d98658b92adec673cbe3dd3

    SHA256

    557472aeaebf4c1c800b9df14c190f66d62cbabb011300dbedde2dcddd27a6c1

    SHA512

    bd326d111589d87cd6d019378ec725ac9ac7ad4c36f22453941f7d52f90b747ede4783a83dfff6cae1b3bb46690ad49cffa77f2afda019b22863ac485b406e8d

  • C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\imagestore\mtw0pfb\imagestore.dat

    Filesize

    1KB

    MD5

    777109e7bb7e5fd7eaa2678d467f63d3

    SHA1

    279aaa71327ae80a6b0d93be639297646456c5b4

    SHA256

    f2a4dd9e5d9a7ff48c3cbdd7630818bb9ed3bc997ed117d34f076cf372db8281

    SHA512

    f256846632a27766725b339ad2a05d6e13b850998a3919f599ef722afb30909beeaac82894d035198946a268a332d41046f41aba4c1fcca8aed5e3dfeb0d7bc6

  • C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\imagestore\mtw0pfb\imagestore.dat

    Filesize

    16KB

    MD5

    0fd942dcae2be4393cfa8dbfd0f4ad7f

    SHA1

    1299616163bc734de3964512e24a9a91885f926a

    SHA256

    ef5dc703e7858c0e6f8b2e51b853c2367b3a5c1ef686e3e675aab2f3bfbf3653

    SHA512

    1ce3fa7a300bcf0203ed7722b7a40bd4b6e978d7ffe7647ed8d0ef2c0d6018c8e84e44977ec4457521becb7d19f5aab2b55729855befdfd24c09777fde16e6ce

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\INetCache\IE\AAZL0E9Q\favicon[1].ico

    Filesize

    1KB

    MD5

    91abe01116ab422c598e9c8af72cf4da

    SHA1

    0f2815fe8e067d48537ad168225ab4674271fa27

    SHA256

    b1d7aef06456fe7431124129a28f0138bb5fccfa4f4161e3087de23c005e5edc

    SHA512

    a4d5b20c3014153b6b382c43404917bd2cb5bd2a59bb1e981f5a19eb7dbdec185ace288e9700428d24e5ac623e45d04905e706f0c45a1642b1aa6c091213c23c

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\INetCache\IE\CCM17AA0\suggestions[1].en-US

    Filesize

    17KB

    MD5

    5a34cb996293fde2cb7a4ac89587393a

    SHA1

    3c96c993500690d1a77873cd62bc639b3a10653f

    SHA256

    c6a5377cbc07eece33790cfc70572e12c7a48ad8296be25c0cc805a1f384dbad

    SHA512

    e1b7d0107733f81937415104e70f68b1be6fd0ca65dccf4ff72637943d44278d3a77f704aedff59d2dbc0d56a609b2590c8ec0dd6bc48ab30f1dad0c07a0a3ee

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\INetCache\IE\PG47MANB\sedo_logo[1].ico

    Filesize

    14KB

    MD5

    def00c11b1596db4efee6a9fbe64fc27

    SHA1

    bd298981e6d8d7e4ffa18abcf687041f4246672d

    SHA256

    95c427fa3143b1896faf42a6406686ce7602cb39052081bb32d12b51c9e047e4

    SHA512

    c056e95dbfa1aab3a50dff18c6d577dbffea72c93316ffc53b6b7aa41dcc7707a810d563894589a7305de0b76610f88150b2034670de368773b2b356f14ad30f