baf58e6e2b3a7ac61fd70de2e01b053c050af943ee4eaa3dd6137be3dfc7bc55

Analysis

max time kernel
135s
max time network
132s
platform
windows7_x64
resource
win7-20231215-en
resource tags

arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
submitted
12/02/2024, 14:57

Sharing

Copy URL Twitter E-mail

Report Analysis Logs

General

Target

976f15dcf64e69c8610007002f6323bb.html
Size

1KB
MD5

976f15dcf64e69c8610007002f6323bb
SHA1

8eb6ed66f3049fbb543fd5146fec973eada1d8f7
SHA256

baf58e6e2b3a7ac61fd70de2e01b053c050af943ee4eaa3dd6137be3dfc7bc55
SHA512

4ebc6802d4665251db990e5e17665cad10e24a0884d4bdb55c496274d1ae44291a89a0560225f2f468c80f375aba995773fad5a84a12d8c31ba00d51204a1b37

Score

1^/10

Malware Config

Signatures

Modifies Internet Explorer settings 1 TTPs 36 IoCs

adware spyware

Modify Registry

T1112

description	ioc	Process
Key created	\REGISTRY\USER\S-1-5-21-3427588347-1492276948-3422228430-1000\Software\Microsoft\Internet Explorer\Main	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-3427588347-1492276948-3422228430-1000\Software\Microsoft\Internet Explorer\LowRegistry	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-3427588347-1492276948-3422228430-1000\Software\Microsoft\Internet Explorer\Recovery\PendingRecovery	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-3427588347-1492276948-3422228430-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing\NewTabPage	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-3427588347-1492276948-3422228430-1000\Software\Microsoft\Internet Explorer\Main\WindowsSearch	IEXPLORE.EXE
Set value (data)	\REGISTRY\USER\S-1-5-21-3427588347-1492276948-3422228430-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing\NewTabPage\DecayDateQueue = 01000000d08c9ddf0115d1118c7a00c04fc297eb01000000d80bef292bee784c8e3c940d61fdfeb800000000020000000000106600000001000020000000bfb0596afad98375d0a61fb85f37abad8c7177b2097a15ba809270a99cb7f91a000000000e80000000020000200000005dfaa88ad5ed04a6d702343450578cb357d866c386d299361d969e0b1a82bb672000000017c2c0f27fd4839afca9d434b5e494b49d3878b70e6e81aa51468d8f55e9b0c9400000004d3626e11a7ea249cebf610460ff75412b0623651c8c33ec50de6d9407a4a949df782ca1f7ddc2273621ae5816ecea00aeb5731070239aee416da7e8f37b043a	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-3427588347-1492276948-3422228430-1000\Software\Microsoft\Internet Explorer\DomainSuggestion\NextUpdateDate = "413911741"	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-3427588347-1492276948-3422228430-1000\Software\Microsoft\Internet Explorer\IETld\LowMic	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-3427588347-1492276948-3422228430-1000\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-3427588347-1492276948-3422228430-1000\Software\Microsoft\Internet Explorer\Zoom	iexplore.exe
Set value (str)	\REGISTRY\USER\S-1-5-21-3427588347-1492276948-3422228430-1000\Software\Microsoft\Internet Explorer\Main\FullScreen = "no"	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-3427588347-1492276948-3422228430-1000\Software\Microsoft\Internet Explorer\Recovery\PendingRecovery\AdminActive = "0"	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-3427588347-1492276948-3422228430-1000\Software\Microsoft\Internet Explorer\Recovery\AdminActive\{18756141-C9B7-11EE-9201-42DF7B237CB2} = "0"	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-3427588347-1492276948-3422228430-1000\Software\Microsoft\Internet Explorer\Main	IEXPLORE.EXE
Key created	\REGISTRY\USER\S-1-5-21-3427588347-1492276948-3422228430-1000\Software\Microsoft\Internet Explorer\SearchScopes	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-3427588347-1492276948-3422228430-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing	iexplore.exe
Set value (data)	\REGISTRY\USER\S-1-5-21-3427588347-1492276948-3422228430-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing\NewTabPage\MFV = 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	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-3427588347-1492276948-3422228430-1000\Software\Microsoft\Internet Explorer\IntelliForms	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-3427588347-1492276948-3422228430-1000\Software\Microsoft\Internet Explorer\InternetRegistry	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-3427588347-1492276948-3422228430-1000\Software\Microsoft\Internet Explorer\LowRegistry\DontShowMeThisDialogAgain	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-3427588347-1492276948-3422228430-1000\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-3427588347-1492276948-3422228430-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing\NTPFirstRun = "1"	iexplore.exe
Set value (str)	\REGISTRY\USER\S-1-5-21-3427588347-1492276948-3422228430-1000\Software\Microsoft\Internet Explorer\Main\WindowsSearch\Version = "WS not running"	iexplore.exe
Set value (str)	\REGISTRY\USER\S-1-5-21-3427588347-1492276948-3422228430-1000\Software\Microsoft\Internet Explorer\Main\WindowsSearch\Version = "WS not running"	IEXPLORE.EXE
Key created	\REGISTRY\USER\S-1-5-21-3427588347-1492276948-3422228430-1000\Software\Microsoft\Internet Explorer\DomainSuggestion	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-3427588347-1492276948-3422228430-1000\Software\Microsoft\Internet Explorer\PageSetup	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-3427588347-1492276948-3422228430-1000\Software\Microsoft\Internet Explorer\Main\CompatibilityFlags = "0"	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-3427588347-1492276948-3422228430-1000\Software\Microsoft\Internet Explorer\Recovery\AdminActive	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-3427588347-1492276948-3422228430-1000\Software\Microsoft\Internet Explorer\Main\WindowsSearch	iexplore.exe
Set value (data)	\REGISTRY\USER\S-1-5-21-3427588347-1492276948-3422228430-1000\Software\Microsoft\Internet Explorer\Main\Window_Placement = 2c0000000200000003000000ffffffffffffffffffffffffffffffff2400000024000000aa04000089020000	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-3427588347-1492276948-3422228430-1000\Software\Microsoft\Internet Explorer\GPU	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-3427588347-1492276948-3422228430-1000\Software\Microsoft\Internet Explorer\SearchScopes\DownloadRetries = "3"	iexplore.exe
Set value (data)	\REGISTRY\USER\S-1-5-21-3427588347-1492276948-3422228430-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing\NewTabPage\LastProcessed = d0e1bdf1c35dda01	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-3427588347-1492276948-3422228430-1000\Software\Microsoft\Internet Explorer\BrowserEmulation\LowMic	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-3427588347-1492276948-3422228430-1000\Software\Microsoft\Internet Explorer\Toolbar	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-3427588347-1492276948-3422228430-1000\Software\Microsoft\Internet Explorer\Recovery\PendingRecovery\AdminActive = "1"	iexplore.exe

Suspicious use of FindShellTrayWindow 1 IoCs

pid	Process
2024	iexplore.exe

Suspicious use of SetWindowsHookEx 6 IoCs

pid	Process
2024	iexplore.exe
2024	iexplore.exe
2732	IEXPLORE.EXE
2732	IEXPLORE.EXE
2732	IEXPLORE.EXE
2732	IEXPLORE.EXE

Suspicious use of WriteProcessMemory 4 IoCs

description	pid	Process	procid_target
PID 2024 wrote to memory of 2732	2024	iexplore.exe	28
PID 2024 wrote to memory of 2732	2024	iexplore.exe	28
PID 2024 wrote to memory of 2732	2024	iexplore.exe	28
PID 2024 wrote to memory of 2732	2024	iexplore.exe	28

C:\Program Files\Internet Explorer\iexplore.exe
"C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\976f15dcf64e69c8610007002f6323bb.html
1⤵
- Modifies Internet Explorer settings
- Suspicious use of FindShellTrayWindow
- Suspicious use of SetWindowsHookEx
- Suspicious use of WriteProcessMemory
PID:2024
- C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
  "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2024 CREDAT:275457 /prefetch:2
  2⤵
  - Modifies Internet Explorer settings
  - Suspicious use of SetWindowsHookEx
  PID:2732

Network

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

T1112

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
94dc4d13074d44ee56340458c9366e8c

SHA1
a1d50202327a9b3bb85a0f080bd816ba510ed7c2

SHA256
e7a30c8698e8dc651b7c8551c15bb02ab7f0047fe6925daacf81058ea0fc8910

SHA512
b7f5d70d4a941b737d6439e153369b551a69eb92ca8f4681fdf4b2d42c32e7972bcf7916e06de95a2cac8cb65c93a8552a2b4dec6d12ca8ae6cdc08161659ecf

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
fdecbd9f726d7cc43770b06ca10e95c1

SHA1
8a0cd4df6aa1d6fff627b723e66353145e73420c

SHA256
e6b43a1b2496d35ca285e953309715def1a3c819a15146e540ee300c3d7cd6ae

SHA512
c1ea0ee05b4d67a7c6f68d7f08532cda208e44f08da68a9c32de6e92b4ad5cb046aa292409040798166af889e0faee3ec4ea64f06d5960bca71defa75739297b

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
8c0eaf35e9faaabb46b2fb7aca0268ab

SHA1
c6cd83d222e70a1de7eb6b9f299d6c7faa303198

SHA256
797a921560d9e005ace86c9fb9017c26ebac47dbf6ebe9c004e9fb2d1b536c21

SHA512
ab98e376b0298d70d1b9366da81c7fc7beb0df1837c87a4bf87979b4e822d705d3b2dd9f75ad8dd53f115272ea2a97ec5f1e562972da76e0f8c60372825c6de0

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
1236d061019347c5de856557d89aa333

SHA1
7d4add363ccfc66ca30ff8962934bd42737ae62e

SHA256
7857996c4a5dc96db1b938db9cfd1332b3bb7a78d2f685c3514777a995801df5

SHA512
bfd973d24d87d318b0f9a0ac451c93133ceb5bcf242ff27ea6a5349740bd8ff4f22da9ace4c7689632774d29f10c23aab619dc71584e7b388ffebfa38817e91a

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
151ae45cdc95b8d7e8d9ab0469154258

SHA1
671f7fa44f4cc28e26f080f95620fbd6ff430281

SHA256
4e1e698baf448614c5792f9b1924842f15e52bd2b6c0bfcd43f2e42c4890e94e

SHA512
e34291e58d13c2b88252d06a11f8ab4119b129f4e46f1c20a888b5620bc6aaf509363ede1cf64859f5f2c906bf7ae20cad317ad5ffa743fb77af9c2e16b65c70

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
403d7bb99219f1f10209e74fb2f6fedf

SHA1
f4113979459cd95087f3f469758a4dba2d5421f1

SHA256
d6434e31ae7f9bd4cfc440d53f448f82cb4bc8d67dc615243e61686935966d6f

SHA512
9c4a6c6c49173288a45f6b2d6464e7d82c803ad99161af18774ce2bf80dd53ea4f5a31a3ed8850cf6fe021802bcc41df01ebb5c7161f34641fab2baaa5f458ae

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
f1da322c35a1bab4798fc36746e542c9

SHA1
a0e45a97f5a7b479c4a9081c876ebe23565ec449

SHA256
7cabdd0cdb721020b36174f8e1511bd16416d173375b7c9ce6bc2a2a9f86a4b3

SHA512
e0f9e85e8d8c85bfd16500974b325a938f40c27ed2c0aae447044a963627338da9d9981be7a73839f4efe08af30cb7e079ba7be06508d53125a1494c969d84c8

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
fa10c07334f49f1bde13b48d32d268af

SHA1
92b38f6d75c2976578f0945a25120f876629bbb0

SHA256
a6a8559f1106f61ebb1d84e9c48f41b7fd426ab093e3d17693aa4fc1971ed4fc

SHA512
9c16ef4a4adfe7a4ce4e4d995d1896f8503a2aaf1603cce194879aa54ad60166985f9d4f0d89b4c6b6b2c63a043ca60791a877bbdc229278470cdfb473fd3776

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
c7da938b7eafeafc26407d5fdebaba89

SHA1
b6e6df78b915765ab392acdc9009f9e549c510f3

SHA256
6bc4a22867432ae9eb8f872a0c78f94224e7dcadc9fe0a187e0c5649033fc1c6

SHA512
9287dfceea1d75b4f7abacc398db005af4dd6ca4e57d16e9c01f96a57b5e8c2e2091317b12fc6d671d31cbb62f02b9f356abf2c7119464f7abf6f00317a1dd90

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
2ec78caeb3d6e3f8405b867fd37ec52e

SHA1
7c2abfc09bea32d8fc58bf5e0921dbec94189d40

SHA256
daa07f6e867a13f6de8940282fe3348dcb70871de8ebf0635943a138cec6fba1

SHA512
0c9bc859d54913c35729b5b34dc86442d6a4fa228dcafc966eb653b29cb89720d5c490674cb4b4948b04610c6bae42b802d73420a898b2cf2342e4430e3db329

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
f6e32438954b0ab4155a76070a999f1f

SHA1
1e577cc7d738f0d30f4bd6e7a0e577cf2eeee095

SHA256
c7a8aac2b90e36b84cda2c7fa6a5b63c920b3edff0400d64ed1bc032f997f997

SHA512
2590ac28cdb98657b5dcd107aafbd6878eaf7243fa5e49a8c7c21dc4de09bec0f6403bda45abc58e11265097835904e1f8781c6ecb09e06c83372dd0ad648a0d

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
aaeee0c31e7fb12376c1ceb758cf55c1

SHA1
b22a9f74a1c98b6bb4d63deadffe396204de49be

SHA256
3c3b3c127a365bd92c63c547bdf1b6709ad7688d62d8bc91824c9c808afcf2c5

SHA512
82d169cbc6853123c22a3aa96377ae5ac54d6668c2a8434ffea992e95670d9a3e94a4aa3ccaa2184d828c3fc5a9f276eaa3f81b658dd4d8ff434f4118842b17e

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
b85908b104de0d90fd12fce1ab2bddf6

SHA1
ee473b4842f76a168ae4aaa2f577aab4b7c13813

SHA256
54f7c7ebfb145a8d18eebe470a05c82f9574bfaf86cea599ea3a77c744068259

SHA512
39f863b2706a7af92a96c6c587bf87ec8b5d12041e61091eaafe910e912b1ed989edde23bc22b66cdc50262b65147fbf9eb0a3b5d32a5900a4c5c51a76532254

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
5c6a6f6674c80c2e28035a13a1209790

SHA1
c36a0bb9b90e0fe137aaba29c53917905a5bee92

SHA256
ee03a81daec5c38799891ecf6be27eed34fe15a6cde1a3fc47a6ff4bab0d5183

SHA512
8002915eb21737687483dabe67bcd2aec4d65bb50aae29985e514474f33c7f2d4cc2ab42674b98d6897e32a5719a2d2b5bbd01713b2ead9cb3fa569684261252

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
49a68a4e58cbbf16e3333e453b0742c1

SHA1
d2177aea96e830db0b3f63a4bc91fe6db5cc2a32

SHA256
bc9322f39191114e33cbdaec626eec0aca8c37686c58aa42d09a0edf62e6ee57

SHA512
fbf43df389075f247cb0826dc269b45f54865dd2bf15d82bb675b8e3710aa220c4554e13e93898e1b80b1c80ac5dc272229acffc692a397b3c21380568e0c8cf

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
1b6f1221baa62a8279cdd28da57cc580

SHA1
07c17c88a40be56db3597558a49bfe1ac8db8c2d

SHA256
284ec6864ed43ced7afaa853927789bbd759031f213a67dcd406a32954988f87

SHA512
3ac0480e1dd104ea0c47ec97d674ee009213cccef2362db110bd782a83635ae165725d1604e4ff1c5a34d3143f352426bd9200bd68d116e64ab6bedc29ba51da

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\imagestore\0ptx2pp\imagestore.dat

Filesize
1KB

MD5
5bd3025720f7511d4ae38927c09d84cb

SHA1
26f3594e03023e7837391946c0b5f57464825b28

SHA256
332a8f551374c8811d0b4aee2f69fc83d17b02c242748cb58873d17a053df935

SHA512
d0082391daf2f02c34366e7145c319153e98e2b613429553cd123f8769052a249fa09c6c76ce9f1ada39204018cdab1d6dd2b6212634e955e274dc862cb21a77

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\M2VO416U\favicon[1].png

Filesize
1KB

MD5
f49c4a4bde1eec6c0b80c2277c76e3db

SHA1
df34f60a4001bdcb8c2ab15cd50c92feb6288a31

SHA256
50ee6523a4cba10377554c53f88bcd8b53cb5d11a03439f04f73aff55e982e86

SHA512
fa7c06123c254188bef8e3a9a62f86c09e3f0d6e1e8e4727181d240d715c7b3a1ad98ceb09a0d2e4479d2a541afc345b363b62da0c58ddc9e4db2ed01ca8eb62

Download Submit
C:\Users\Admin\AppData\Local\Temp\Cab8C0D.tmp

Filesize
65KB

MD5
ac05d27423a85adc1622c714f2cb6184

SHA1
b0fe2b1abddb97837ea0195be70ab2ff14d43198

SHA256
c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

SHA512
6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

Download Submit
C:\Users\Admin\AppData\Local\Temp\Tar8C5E.tmp

Filesize
171KB

MD5
9c0c641c06238516f27941aa1166d427

SHA1
64cd549fb8cf014fcd9312aa7a5b023847b6c977

SHA256
4276af3669a141a59388bc56a87f6614d9a9bdddf560636c264219a7eb11256f

SHA512
936ed0c0b0a7ff8e606b1cc4175a1f9b3699748ccbba1c3aff96203033d2e9edabf090e5148370df42fbfc4e31d7229493706ff24f19ff42ff7bef74a6baad06

Download Submit