Analysis

  • max time kernel
    117s
  • max time network
    128s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    13/02/2024, 09:27

General

  • Target

    99104a3a5c279af311f8b3ac0277000a.html

  • Size

    1KB

  • MD5

    99104a3a5c279af311f8b3ac0277000a

  • SHA1

    dbfba855a7350789ee27d6962be3824991713197

  • SHA256

    662a578894e757cdcaff39467630958d8e3a4ceb2a644e9ef52c047a3ddba691

  • SHA512

    5e81022a158059336ad99ad4d988df2aafa0ec2f09e9cca50d4ab9a8acebd06747c2bf92c59198e3ac98e91d6e5e0d3cab1c3e9437ac5ccdce40923da9dc45b1

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\99104a3a5c279af311f8b3ac0277000a.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1936
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1936 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2284

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\3C428B1A3E5F57D887EC4B864FAC5DCC

          Filesize

          914B

          MD5

          e4a68ac854ac5242460afd72481b2a44

          SHA1

          df3c24f9bfd666761b268073fe06d1cc8d4f82a4

          SHA256

          cb3ccbb76031e5e0138f8dd39a23f9de47ffc35e43c1144cea27d46a5ab1cb5f

          SHA512

          5622207e1ba285f172756f6019af92ac808ed63286e24dfecc1e79873fb5d140f1ceb7133f2476e89a5f75f711f9813a9fbb8fd5287f64adfdcc53b864f9bdc5

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\F0ACCF77CDCBFF39F6191887F6D2D357

          Filesize

          1KB

          MD5

          a266bb7dcc38a562631361bbf61dd11b

          SHA1

          3b1efd3a66ea28b16697394703a72ca340a05bd5

          SHA256

          df545bf919a2439c36983b54cdfc903dfa4f37d3996d8d84b4c31eec6f3c163e

          SHA512

          0da8ef4f8f6ed3d16d2bc8eb816b9e6e1345dfe2d91160196c47e6149a1d6aedaafadcefd66acdea7f72dcf0832770192ceac15b0c559c4ccc2c0e5581d5aefc

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\3C428B1A3E5F57D887EC4B864FAC5DCC

          Filesize

          252B

          MD5

          9c551bf4de9e869720fc89d07acb9190

          SHA1

          45ce91277bd09f74f6326ace0ae60fa785cae08b

          SHA256

          12969b850ad4862b1ade6a68b07ac1388fb55503cb1afae0ed3bac761b9d96ed

          SHA512

          be02fa3abfeefeef447ef05608f926e1df6d26bb3c9476c7bacf880fdc1edac291f0c89776d691e23d5d5f6cd306e7c23ffb51b117912bfa8b0a4c2cb02a2bce

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          1715ac28fcd18905556d7971b33a4054

          SHA1

          34a2093ce8997c87edfc858157a6bb63a02648ab

          SHA256

          2807f90a030ea960ae60228fc889a6fdb04fff28814ab1603aabc4e0fc26615a

          SHA512

          b18de72795b091b675d9448abd1928b14b9dd4a8745a8175fe3ab7db25e29bcd93e25e3fca99e77e46d9cda128d35ab41607fc85f5b7d0f8e868082d60de1429

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          cbb8881a21fee1c2f5fbede5c18ec676

          SHA1

          29e1fe4e9af63f2144fa9899f65e5f141099925f

          SHA256

          a94ce25e457f42213794543ae6f2664adb6a80089a334ab61f63696cc01ae0b0

          SHA512

          213a6debb67fc4fec59c9c03254e9cce0e5b93829199ff8e309c6f4f254ae84faf016efd6c2ece6e9eb6d313ff80206bfa8f1b13fffb6afea8fcef905686a8fa

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          10275323db06c6ccc3b644b04268ae83

          SHA1

          d3ae2fc6b217d52fc1270332cf629402259e26f9

          SHA256

          832423b66179eb0932127ea5003988ce078237f44e0fca07ecce6b2f0b5f2f47

          SHA512

          5a92ce40b22d1617c80b9081702e53305fb1e56bfd0bdec0f78e1ff4c3ae7abaec0eccb3cdf00f238ead27baace1ae68c497e4bf26dc9215b2dcee6e47b8c26a

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          d51569f5f5db84d130e7efc0eb2785b6

          SHA1

          9832b62f1fe98d4bbf2ca4fce314e25ac8f41f5f

          SHA256

          41f07169e391dd4378ef7e75ab0b2a77c7a66b7a64680ac25f2d0e9107882668

          SHA512

          cdeda80045194a2f5e6b970859fa5e14ddb813cc82b7722fcd7e79803c6cfbb91345df6586a9e2b119d5aca5bc90aae807ba585f07cb3974a0b17c94ba1928db

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          fa0faa9a1846fcafa0f4eb211def74b6

          SHA1

          8ec5c0b4dcbba0cf12e0a361be20fd9595fa62d3

          SHA256

          432c0fdd7c0b047521645b7cbc143d7d240225cf12c9480c5ea27b97201664f9

          SHA512

          d2c27ef422db7faf73174f0922a6738e49dd0ee03bdd8a094317aa4502ae482aad8ef598875fa5cdb9ef152176412d8e625f7436d9131223cea11488ece90269

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          c030a2d8ca81f634ebafb77bb43c128a

          SHA1

          265d27c85c7b5ccc43e9e346359d20a11c1702f2

          SHA256

          0ea9c6643da8d3e56087ccdeea453141359d7e9ab19fca87b978e93e5e1fbd19

          SHA512

          91e301bb0beb70d82f2d88d7c5fcb3bdd5f271eddf56e92b7b1cdba0d4f62d753f00f43044177a3702660cf04355aeaf0c0e3439fffd0075af3f66a434f9b70d

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          6167ac5a3722b32acb898167d2ba0a81

          SHA1

          e8dacefccb413a4b13c0c39e497d983d4b836190

          SHA256

          ce2d6cb59ff5275393f85f9989cc6f1f70cfc44802229fb43e539b4e717ed131

          SHA512

          0dc8b7b9945ef1a76e4f0b1a0ad0d02f763f6213375628e6e690127262b59f9cf276f9772fb1eae0a523a999a4e94d6b274e1315a8b3effd98620da4535f2520

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          3e36e87ee365124b91b71dcd17ec17a2

          SHA1

          c1e8875bcf60e1342f233f990b83cc2974978d79

          SHA256

          0b3c4739c9398f95198dd461f0547bc37e42b175c1863fb625618972ffb2be21

          SHA512

          366af847eea0f556afd3d03358152a0c932071bcb49ffe2983d8dffef2f5341df027d05a54eb7f7007cd9772212d71c809acac50143f5c213e749aabedd458df

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          8c1d9e7bf46d3e71d70359030380f9ae

          SHA1

          b9d0fddbb17c7d6c8b39333ed6792c8b3ee9f424

          SHA256

          6dac927dbe429a05db1dfd2169d23229b8d9d07f7c6fa637b1bbeda592716ee0

          SHA512

          0d2953e3809acafa20419edeca9ec5f55fda7f5cd5a3b95fa5cfec6402d9adba126c88ebbc7803af9857506a63fa5bf63a36c02309f79adcb4e2cc3b3ba5b466

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          dc40a87437fe40df5ca03b0f69e760a0

          SHA1

          5b723d7cb50b401fb44f170e29c08da35546ec67

          SHA256

          dbc5c41c1b42825ed3755216354298e664940db5db4d8d9c008d9fecffb88c45

          SHA512

          0c66e14d74c2221998401a4f1f888ec3d2b13350fa4484d37b2071a3273a1ca23d0e9863970f1c18647aa81257fa0298eec33aadc2258a045d1fc4186b8e167a

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          eb59a302704588aa15bf1dd1bb9971ea

          SHA1

          bd9d2f436085e1e5cc211bd5d84447580843de10

          SHA256

          e6d6c5d5c432fe03d0fccc13638241d178ee186607f67cd92d3157a2a4a29b50

          SHA512

          e4a073a52aa820800a78b30b407a88386c930f14ed763f10e6914f060bec391b709dd1d460ba53fc9737704adac5d0c8ec5888f33a4c34177b61a65f2c49f4e4

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          3ecd68d346edff4fa3855fa270b9b793

          SHA1

          a3c7b7b165b474a5aba2ca9fa470a4f3328acb3b

          SHA256

          6edc8e71a387a587cb2a4816cc8a2c9fe8ff7103a38141cda9bdf0d5b4d86830

          SHA512

          09d7eaa82c004960b444b96ac5223c5aa35738df2d569a879b9394fa8e9962ca24e6ec8106a22d57eff1d5aed060a26b5547e8f087a560b08ecf9013c36e7731

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          19e7867aa81f0dc3d3ceac87928b069e

          SHA1

          f8691107015647baa4567cf80f6fdf17a83d2367

          SHA256

          93167d3506d79ce9fd691d164a25f2af2de2ff71901a72bf340f3861d164af77

          SHA512

          1bdfba308f24cce787e160d87d3dc97d9685b75eec3fe3c6886e6e6c3f1b7b02d255930ac6a8936596eeac8c9c509825cd7c9d79defb03acb64ab8899d9efb59

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          47da8e800d293149c84c9c39fc4217fa

          SHA1

          87f4048b32b63f3a03cc71b8e1a2b1bf54785f38

          SHA256

          55d62174ec838e8a033afe7678cdb76526941667f05117765ff547ca7edb3508

          SHA512

          ddf7f482508a299c840064ec2a0367889a35620f0c106314b4b7c9b3a4ed5f39037ffb13720a6e19cd6f2a7090581153904febcd16b46f605701aaa5f1fd9fe8

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          e373e2d5f928031c88049baefd260f2b

          SHA1

          317b7d3903bd79cdb042b816ae5214366757d87f

          SHA256

          46559f7ec328e068179011f6ce884804e5bcd227317fd623781b0b20dd11cdf6

          SHA512

          ef5e66061e8fb60da035e4e78320ef5de65327147ac59bc2108cce0daee7078a43072841c6efc026f8d7083eb5d9cc9c92fb5df86e38444f4331d882dc081ecf

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          d2715e142b199e4225e4c670c0806cc7

          SHA1

          563926bd75e6126b78d800c59412a7fe80114e28

          SHA256

          749c816f0b29bec4f9f652286c50855cc01fc7155adc1ca07911b9f932b302df

          SHA512

          c1e430dee1b361836ded51f89b936944092568f22234b14a1b9fb614499af0df682b2d9bb29ca436db8c25610adfa54cfa8c89afa826e8e9ab282dcaf7763266

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          db02902fd933f640a1c90c0d2f58276f

          SHA1

          128c842f1046a1eab61cbdf11b2fa0c25c885d1b

          SHA256

          bf39b370dc37582645cc82d184ff8e0290ce78c01a3965500f5528974b13966f

          SHA512

          12c28ddbd59c4f0ba2c291fcef45f925b50abe7a32d2d8e910c872dbf32d497fb224867243551a61e918b9edb1c95717b3e2399a0aed0b705284b04d3c00e22a

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          bd790fc9b54f261c2d370d2800d5d5b2

          SHA1

          5e994bf65ae74b6dec823aaaf2a28572d066ef6e

          SHA256

          6a23d9b96049c329d4e566cbe5697a090716f22775a6eeb2755e67f701dac166

          SHA512

          31be148d0ca90bd039f64f58bd0a7ea2abb046acb9493aa207c0dc04b25a3adf6e7ecda004e0b1d72bd0a1000f84c35f59a2a9917cb77db8e9ea260db6e261d5

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          9173da9773b507644788792252dd641f

          SHA1

          d3769dfa898c25c2c1c7d5ec157cc8b1d96ed421

          SHA256

          d66e947692b1c33e388921ed51390a83390ff791415dd79a8ad3aa5a61c7912e

          SHA512

          b90a25a485e2b9930a0b406c4739d9df3986ba5305b1ded6badd843d4fa4fedf4470185591cc9abe59e15c86078d3ecb001bca9d2380b326f589340ca8dc8d97

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          b3263269e730aa0cf94c5dc7fa8f98fd

          SHA1

          4780427aea43cf8564e5c31da7d9a60aada09841

          SHA256

          18e32af54bd2aad0a544d8a71bd3141fdae2f5009cfc006f8d63f5f52eaac795

          SHA512

          e094a591f5293d5dfaefcb9406833bb35532831f56fe98771d902e8c6f90f8f1af64307215417cf53bdb2da1105fd66f729755c6e3002950928a6f2e7847e573

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          d5b05487bc670fca68c916396226d91b

          SHA1

          6cb96bac02948ad196f2317aea55b1ef757bb686

          SHA256

          c41b779e658d858349d9f2000827b019823c0310154198b23ba9045ca30ae068

          SHA512

          382b6274785fb644eaf89b210920fca296d653c10d827b6b2b79e94cfc1a7157fd9893a15f97eb67ed7602077e10f33cfc7d6a494ae9dabb06089c3e83d69445

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          149c7b067f43f3ed2d02a6594f0a740c

          SHA1

          3b3ab3152422f3624f74ba7a73c034c73f85a0c4

          SHA256

          540471e00f902527bc0ff6ee1759aaeb4db827ad60012624a08f27a600ea7da4

          SHA512

          69e66ffd4cda78a56206e04bcc6ccde806cffbf0ca4ffe7857a9735f134249b8f6cb44f4e934d09f3a1ee35d154ed243bb5f10e2bbb950b78205fafa1f6e0fd7

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          09ec89561d321dd61e71c9669c14414f

          SHA1

          fca5a6733d801be3262a55984f698121777954ad

          SHA256

          a70ba6e260c2250386ec446b0de2f612fe1fbf107f148533189dfe7624a3d486

          SHA512

          09afc3f16fb0cbb13ce4de7e4ec1b6b347a2061ab79dadca8f141e6a8e7699531cae44bc3eb595a62244ecbbe3a9a0f05ddbb63f233501368409412ba87853c9

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          a67477d07f4aefef6d3a2384d7da887d

          SHA1

          edf1f70a30ad13642b914dd770d43a9b8c4c0d78

          SHA256

          2ef711f58707abe384de77d05eb1f1e49a27ca3a06cc97bcc896d8f513b518bb

          SHA512

          a842e37451ccf8ea95124e4fc1dc164b45c7d394990c05edfaed561d4bb2d61d16796fbe27fcf04e5bfb02597f0207059ac4febc23bacc908d10f1e5848f67f2

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F0ACCF77CDCBFF39F6191887F6D2D357

          Filesize

          242B

          MD5

          377bf7d09c9216882f8695eb77550ec0

          SHA1

          4a5db6c36672877bb4959a8d00a98eca763e1c72

          SHA256

          f4b8d58ba4ce3c2aba9cba4ccd381c00b9105ea4aa57031d32b3d0ef02349853

          SHA512

          6863e7d65e3a79f996542d5846df29dd92737d412a7bad8865dd35dfa7086f4ddd99329ee1d2ad9df5ba833b1e570d84a4a69796caae304d824de15a96357160

        • C:\Users\Admin\AppData\Local\Temp\Cab1DCD.tmp

          Filesize

          65KB

          MD5

          ac05d27423a85adc1622c714f2cb6184

          SHA1

          b0fe2b1abddb97837ea0195be70ab2ff14d43198

          SHA256

          c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

          SHA512

          6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

        • C:\Users\Admin\AppData\Local\Temp\Tar1E8D.tmp

          Filesize

          171KB

          MD5

          9c0c641c06238516f27941aa1166d427

          SHA1

          64cd549fb8cf014fcd9312aa7a5b023847b6c977

          SHA256

          4276af3669a141a59388bc56a87f6614d9a9bdddf560636c264219a7eb11256f

          SHA512

          936ed0c0b0a7ff8e606b1cc4175a1f9b3699748ccbba1c3aff96203033d2e9edabf090e5148370df42fbfc4e31d7229493706ff24f19ff42ff7bef74a6baad06