Overview

overview

1

Static

static

1

WkIUf0.html

windows7-x64

1

WkIUf0.html

windows7-x64

1

Analysis

  • max time kernel
    121s
  • max time network
    128s
  • platform
    windows7_x64
  • resource
    win7-20240220-it
  • resource tags

    arch:x64arch:x86image:win7-20240220-itlocale:it-itos:windows7-x64systemwindows
  • submitted
    22/02/2024, 17:10

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    WkIUf0.html

  • Size

    534B

  • MD5

    0afd4f1967e5760ba6f19e5a86eb61f1

  • SHA1

    778533576464dd2e7b74208731eaf84c29baad04

  • SHA256

    de680f4e58757efb82df32f13e0c5aac6df608ddb96c1309f1a5b8e546387b5f

  • SHA512

    752021184a46f7e90d87ed8888b3a1d60da21a11cedb0ae4533013a0230a8b65ec4ca9f8aa33a22fade9fa8c18ca1531267ab2492b207d255473b87e512a050e

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 37 IoCs
    adwarespyware
  • Suspicious behavior: EnumeratesProcesses 1 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 10 IoCs
  • Suspicious use of WriteProcessMemory 8 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\WkIUf0.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious behavior: EnumeratesProcesses
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1988
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1988 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:1184
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1988 CREDAT:406540 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2704

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    fc7382ec89139513846f4c7ef9338c64

    SHA1

    253cb33d46048a418dd93d76c8b7f34d0afcd41e

    SHA256

    9ff111026316eab2798f551ce88b144e20476f8d949a9faf32454e90d9db8cb1

    SHA512

    cabd128781a5cad14b4fe0026cb749fb206edea48b16d835afa74a7802a5786fd5d9e28f14a2b5acbb5a4ad29e18a9b5c470fa7c2820b87dbe92fb5f28fed126

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    3340b64338951876a0db8f87a3e1ee52

    SHA1

    5dc5570229ad25791082a3ba370352696aad0778

    SHA256

    281c891cfdc774242bcec50806d02207cf9e8f02789346a82cef2adf3e60e6aa

    SHA512

    41ca196ca9960879a2cb3aa57a5d225b25c28c482dc5424f6675aef1a0e8ee6681dabcae4d12cee791344930150f8ce952966a3fbf4f0ee265ab6823b5a282a8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    f21133c6e406bcdf2d85f1aa932f0365

    SHA1

    4dcc4779e2b405cababde00a1475cb8b2a4a81c6

    SHA256

    8d6cb4b48fd59b7a267e4e7f15c4b94be8268124ea4b33b826a803524ea23b39

    SHA512

    6935dab7cdd17b9ad32fd7b183853f0c8ff1eaeee91030ecc9053735331126fcaa2febf6ca842a9aa763cd1a9b42493c3fd7a328a0ed5996c14b96b74b306a38

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    fde8419f2dacee6aca5c0a611647cc9d

    SHA1

    3bd987719e5dad044b71adb8bba1ada924d4e7e2

    SHA256

    c2d6e2ee93536851b6abbba476ef54455a33274ca0298ef9e579a3f218e54ba4

    SHA512

    8d6c15469c599efacd4a838aa221a85b0fc9079e27371c0f611964f625e78d0924f4979530151c5e9fd8350c5c8a71f1b34ee5e6680230e3426d765d87b302c4

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    24b1425bdf9f4155ba5344e8289a0a86

    SHA1

    62a5567b77a6beb319e5111a319415fda41ab7be

    SHA256

    9c7d1962bcda90d8ed227952be79aa85d30ae8bb52bfd80c7ce1565719ed4862

    SHA512

    e55056c82990dcb752db2d43046b95695323d41f184bdb9a186b857de84693afe530cf7710d06fd244632b4300e4164a1859fb2eb0d6b68fd68a2b5270959071

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    3d868ef2c2ac288ba1419e180bfeaa63

    SHA1

    62674cf95f1ddf074c4ebe549f6cf6286f6ed90e

    SHA256

    7a33165fe0cb0ef9ed5ea17afabe723650f49fcf8948c22551e14112bbe69d4a

    SHA512

    a3d47081546262c95ee79a1d7c38861072fa07b74aa2f1f97f7c4b23eb1b237b3590acf2c6d4aa9c1796687e67f1d5daf2b7f2eaa44012048f2833c1e0e68e45

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    45a63b6b7e94c0c69dfb439272f452a7

    SHA1

    cba345ff17d140e984bad59e477ab2ad366b0b82

    SHA256

    02836319795bae89ffd6af798aa2a2ac829ea8bb6c96bdb954855d2031031a03

    SHA512

    4badb1819947115698fb964f3aaec13ddb34b7cb49eaefa94d03a6ba603b0c4d7b8d41a57b5a18102c425dc02c0c1c9c04134db1b73994b4658662b97a28b799

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    78982d603dd7c95a30e6855a83d538fd

    SHA1

    81c1d571ef2839ea67ce42a812ec3f0794252028

    SHA256

    1209c3f034db693c52d2c21b2198b0e705332591f4d2ce2044c50b6ba33c261f

    SHA512

    99a4e520bd7f067bb0502a7b6f9210423b88fbf529a33592d99cc25bd920c6d5fd56f8cb5db28348d7bae6c94103180b1a663726300a15cb13e1ca622dbb230e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    749bccf2be2e02a9403e6fa889ba4ac4

    SHA1

    a0ef9f0ea8c0310920ef539459047154f6deb51d

    SHA256

    a3b6ea3b23914258363ef34850423d03f6bb19733745a4e84cefba2d6cb25fc6

    SHA512

    e955bd0204d358f687b88eb6a8e81f4e641af10298fae020bd8259070c347ab1600cfbe7adc25374827c7d4ff6caed5ba06594b8075a9390ee1e70cb6af88c31

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    b14d36e1a4d0339e6ab2e02e2ca655fe

    SHA1

    42c7b9d9dc6fb4d7bfd28932ecb449795fe297e2

    SHA256

    b278b4962a4642eb484f662532a7d2d90e4ffa8965b2e52058a7761a0fcba2c2

    SHA512

    37a66880ca41d8f6ed260238925d7fd56815d4dec5f9f36fe7044004b0634bdd16df45b140263b727b01168c7128e4b4dc6a369b68f1b185eb838fc1a921cee3

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    4a5a69631740aae8419a7e4628c34d8e

    SHA1

    c0187019ab4d3b99307dbd76d107099090f06eba

    SHA256

    46ec27bf42f5891f39fcd88d9dd5e3287f9fda3fa929b202916e2aa11a392589

    SHA512

    ce5b313f7d70a92bedc29df59420943adc5b4bf961957fa8013f1c8eaaf35a42aeff1e4f9d273f97495755d19aa4b049f8150a59f72ab5c1d448a817e43a9a9e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    eba868a53060950cea82b50909b6e228

    SHA1

    2c81b12a4474c6ea000129ef58640082cf560ec5

    SHA256

    eb959044d25db42559ec96779941f43ef6433fb917846419db01f0d4eabf5341

    SHA512

    489c64c4c9f82c365b2e3c428d7028dfedd7a68f600b8f43dcfaf4991f039be07e30ec9ebeb80ccf18e7842a09de87f33850383baf82528b5210ffad09b491d4

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    7418734d1d8e4d04ddd9771e8de04df4

    SHA1

    89dc6b815c25abdfbc987bb92906ee86e792c3c0

    SHA256

    a6529b7ab6bfc266bcbaeec9cfc6a6e7221d7fece8f7bf7a148e1f5f5e09e2a5

    SHA512

    f0c321d465bc2839b73251194230880014ff02401f3b10eb4effef3fef66a9c053a17f13da7cce17f2332aa07540d550e9679118adbafe3184a4474bd1a8a817

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    fdadab6cb7ffec9d2b94ea44370a28bd

    SHA1

    61bcb2d01f9bf2c206d31f6506f53920e826a584

    SHA256

    ebaba61145bb0cdf21fbc0f9847ade54c5c8716b82d780ee678b1428fe9f9ec8

    SHA512

    ab7aa17a062217668f63d92a104dea6796f60453a19e6db04d8982ce8f96e95b41798e80e556f24c34ef9c0d4a5c62483f45455e2961bba1226530e89fb930ca

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    48d9b0762f05cb66ee0b7e143d2e4b94

    SHA1

    3de2523b809f9618323cbf74128844cc1ac6f465

    SHA256

    49b2a001a418f74a5ae64f4ff45087839e849bae1381233a1f96413a147e9478

    SHA512

    1a09b4fc763b752b27e0c7041fed6898c2eb9b4007274097211dc97f838591f37ad10422d2cd9d22010dd82aaeb4a31fb21a8908225ecb9bb0dde207e5ef1544

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    944b8a61808790623dd6c6718e036a84

    SHA1

    c7d3d24c936d0e4b740309bc3591ff59d95d7d84

    SHA256

    088fe68446645524912773a3c7eb461b6c0f193a2f8a3bfb874f7d7939caf353

    SHA512

    5f3d7bed4a10c326ba5e875e44d0ac4a376b5679ad0998cd44471bf60a96f686e01d6cdd0ec2275692f8ccdf056693adbac2e658eefcae05b021592198159558

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    6bd7aff254da33cd91dcd833721808a4

    SHA1

    2b2c18085a3d159fb5de8632b3ea546ac3b98042

    SHA256

    1da8af6e11bf9c2495aca3299f97a6d31071be083eb1bfe4fec3fd97f282a934

    SHA512

    ccc58dbd10621992b728ce04a08bfa4725f3f2658e165215a191d9e7f22a605c5aa14c17cc6645c77c7a4660cd28f7ccfb7b08496d4dcfd25b529f447a51304c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    69c66b9e446b57b3ccb37795ed73760d

    SHA1

    3f7a773b551cb3489f38986d910bfe911a3563db

    SHA256

    70c07b7ab260daafd658186679229f8eef7adade9bad777e123a97fd592a2540

    SHA512

    cd445b2742fa7f91ddd7d1a5ca670d86c46648ef1b6a370e9c01e3b508aa8c2bc0aba758c354d791474acbe590967539bf010eee58a2247a37a0837f5c67edfd

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    a08b516d6332764526e0a254ecf59722

    SHA1

    a9b6b2132be9f7390037085ba32ba6070c205bf4

    SHA256

    b87063e1326df228c28fa24d6f69f6297f5680daedd90dd897ab12fdf44f4509

    SHA512

    b1531f3bf78f21cc23d64e29a0073b9ad38536afc7be22792df5b80049c5e5f2fa202d5cac0b6eac1b27b8913973040b96312541b482b27979b614c41537e958

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab3BCA.tmp
    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar3C99.tmp
    Filesize

    171KB

    MD5

    9c0c641c06238516f27941aa1166d427

    SHA1

    64cd549fb8cf014fcd9312aa7a5b023847b6c977

    SHA256

    4276af3669a141a59388bc56a87f6614d9a9bdddf560636c264219a7eb11256f

    SHA512

    936ed0c0b0a7ff8e606b1cc4175a1f9b3699748ccbba1c3aff96203033d2e9edabf090e5148370df42fbfc4e31d7229493706ff24f19ff42ff7bef74a6baad06

    Download Submit