Analysis

  • max time kernel
    134s
  • max time network
    127s
  • platform
    windows7_x64
  • resource
    win7-20240215-en
  • resource tags

    arch:x64arch:x86image:win7-20240215-enlocale:en-usos:windows7-x64system
  • submitted
    22/02/2024, 18:26

General

  • Target

    7cd039acb6a41c5f.html

  • Size

    87KB

  • MD5

    1a6358ecd290e2a8fc16b8d711a9b8a6

  • SHA1

    eb7486081eb08486c8ecbd9f9c37f2191c50e476

  • SHA256

    94dc224f305782d593205438d916e9ee0ab41aa9522dc8bbc7c45900ec904cb6

  • SHA512

    cb3baad371f842528bc6fd66e97f45bdeee07f64d540c0b9f4dfda0805737d6d139365f01554023a32440383de5f85821c564ce84179eed628688c375b878f76

  • SSDEEP

    1536:dz+ha9uJ6sPV9Ro/TdOkinYkBhrqkidhSco1r+Lkzl6Uvl4onz/VrnAv40TgXT/:N+sQ6eRo7oHBhrqkidhSco1r+LKLvl4U

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\7cd039acb6a41c5f.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2620
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2620 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:1336

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\103621DE9CD5414CC2538780B4B75751

          Filesize

          717B

          MD5

          822467b728b7a66b081c91795373789a

          SHA1

          d8f2f02e1eef62485a9feffd59ce837511749865

          SHA256

          af2343382b88335eea72251ad84949e244ff54b6995063e24459a7216e9576b9

          SHA512

          bacea07d92c32078ca6a0161549b4e18edab745dd44947e5f181d28cc24468e07769d6835816cdfb944fd3d0099bde5e21b48f4966824c5c16c1801712303eb6

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\1B1495DD322A24490E2BF2FAABAE1C61

          Filesize

          299B

          MD5

          5ae8478af8dd6eec7ad4edf162dd3df1

          SHA1

          55670b9fd39da59a9d7d0bb0aecb52324cbacc5a

          SHA256

          fe42ac92eae3b2850370b73c3691ccf394c23ab6133de39f1697a6ebac4bedca

          SHA512

          a5ed33ecec5eecf5437c14eba7c65c84b6f8b08a42df7f18c8123ee37f6743b0cf8116f4359efa82338b244b28938a6e0c8895fcd7f7563bf5777b7d8ee86296

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\E0F5C59F9FA661F6F4C50B87FEF3A15A

          Filesize

          893B

          MD5

          d4ae187b4574036c2d76b6df8a8c1a30

          SHA1

          b06f409fa14bab33cbaf4a37811b8740b624d9e5

          SHA256

          a2ce3a0fa7d2a833d1801e01ec48e35b70d84f3467cc9f8fab370386e13879c7

          SHA512

          1f44a360e8bb8ada22bc5bfe001f1babb4e72005a46bc2a94c33c4bd149ff256cce6f35d65ca4f7fc2a5b9e15494155449830d2809c8cf218d0b9196ec646b0c

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          a3c72d789142bc08a236d75b6b875475

          SHA1

          7e123f858fbecb361330c47aa2e8be0ff5d9152c

          SHA256

          cb46aeccf61684946bbe204342e0e5e13ccafb874239a4a5c715e6986570ceb0

          SHA512

          a64aa1a359e26e008d1326354dfd5eba47a1d242125381cb818b6030a152a8b002949aa4be9b74f8e57016dae7ceed112dd22ed5e545f4d48ccd9733899d8931

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          cde666b64b18931057422cc59fce8571

          SHA1

          e51d83817038cc389200358f1b909932f283348f

          SHA256

          0717c1c3b4f5722e5929f4d04a87935973a47323c059f9edde6b58bcf852a23f

          SHA512

          32112d7e7f6f3061700d6599f2a5f58b1d00001b9f4bc4834eb89b5ef7bd358f5f942003759cef53b2116d0a11d055f36aee2f89710d7be2598795527900c222

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          3c45b3bdd69f4ffc51721f5d8efbae14

          SHA1

          87d3f5c7abb0fd3fad62c4ef04dae55446766557

          SHA256

          d4f60c0f451cfcd84438c38b7fccfaa4dd8ca0aaa391cde1f2589eaadd504531

          SHA512

          412cc85bceef271a904970a982f552d747ddf08488dc66c6a83b84781c322bdba3919154c483c962da22b306a4a85a237acb7189d2e359ccdbe9773f40a7562d

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          d8c50a07cc2240c8e268f27e27f9cad6

          SHA1

          a3b032e7cbda5a6d30f52375b2c5b4817a4231e0

          SHA256

          b13d90cbcda37eefc08f88a5afdc1e01e186a663705a70d71adbdb14cdd49f4d

          SHA512

          0a75cdb49d216dc12a22fad39396c05cf3443b68957eda10ac10d4c63d62f72935c672e88a35c9dc0204a32f7068bdc3713a3e30b8b8b3f9faef3b5b6746b29f

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          dc30c4a47aaa6eaeb2e599c5f3a77702

          SHA1

          a5b48a96fe0e4dcbacffe8c0b906b54ec8a57411

          SHA256

          39afca1bb8252f1bc2ecc988c1724381611c8203f26511431d189e15563a9123

          SHA512

          94e54b0215d2a18f63293ea1b2f1d1e68f662b9d7165afb6556d8d4952c6a694799458951a88344ab7d8b87ce4ae723efa011353638dbb23c8f6af49b13d18fd

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          5be8427f1e7ba6c175b9e49a301e8290

          SHA1

          55361f514d0d436f7df64879bb426f6559267d6b

          SHA256

          c1bfcdba89df251d3c9f71fe0de88b1bd3f9b34ebc9fd8b119f13ebffd624c0f

          SHA512

          e759231d573b91b6cfd7974653c50fd1a0eab116f8fd53b9a918e597cf9830b15b27c66abbdff3bd98118c54c1174683533c90a81d5b782d9980ea1addba99b2

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          10269331bc4a411d974fe94fa32055d0

          SHA1

          9496c828937922ce448136292ca7ee2fe3f0962b

          SHA256

          2a99655660222057be1988e1dd45b1316bb43dd85eb4571ac125fc4c77d5d37b

          SHA512

          1c05ed82f29315a7351a8caf9335fa231f2f0d7c329c99e8ab87191bd29879d499de8e171f463c11006d824c8a65ecb52962fa59c16078de9ecc4ca89a198e02

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          99bd65ba0eaa31625f5420f72e348141

          SHA1

          925ea093ff99e7380d5462c6ac4d08d5ce629c83

          SHA256

          2ecad97460a1c4c825a1967db78db643803fd439a6473a7b88d57247282d1c75

          SHA512

          35d2eed1bb4b6779e3afc22b9d8796d740c6f179c866c236c6cf77bdafdc6e45e965893babf80febc0d2a849afa6fadf9c83db3ebef232bcd8015127a5c7f07b

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          384e27eb0655b357504c09b79df290ce

          SHA1

          9b4b5a80e842593735fa74c5e045d24d79c28c1f

          SHA256

          0d8fdc6ce9032f635c1282937f80dbde273475d7f1b92dbc78f78cfd959ffd70

          SHA512

          205d5d00b243012eb488eb2edcfd5463c95cb140349caf70c39d41a896cdc2f637e674497d5033941dc168706de58e9fd2d7d887d8128d16485ed8863d803324

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          2bc0383c590c3670ae9f39bf853edc12

          SHA1

          58231713eea331933b8c074a6abdc01bcb9a6b33

          SHA256

          4d801e3e624ff428d505dde3abf40302f192dbc4829dd6e6585f27094e4dfb4a

          SHA512

          f69366fd3d3f21835edc8f4d7f2adb33ed9f7a74bdd64eddd6a568afd234bd1dc652c10e71c546a3697cf3e74fa964b119e432ebbc700a320744f01bd4e0b0e7

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          bf702e7b43ba8c00121ce8267e5ff3b4

          SHA1

          d7f66a2ed3db88d3fefce6e1e727878e62b13a59

          SHA256

          0d855b88aeabfb8ed70f56a5b9fef641c04e673a7e6dbe0359c9c121f23b472b

          SHA512

          b00cd3aefcf12435cdbaa3e9b464f9e64008d571b7a983cc8c619106d12893d56224431214b90d78a6ae14b192570cb65764c296e6754ed695d2bbd29fe89c38

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          8809ea887b48d35dcad212818b23fcb9

          SHA1

          ca70f35c701ae050adb1f495ef74d259250183e1

          SHA256

          f4283d22674eb3c95ed32d6d49074d257d54ec66ff74b8b66686f5482fe082c0

          SHA512

          95fab36a56d62407467af53180aafb1b8579175b19347f99145c24924bc2f7ad9004610761caf128829685b4e63b5a4f526f643042593c0f151ff7fc00c93229

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          223874c04d5412310c25da33a3c19683

          SHA1

          277e401b9afa944b13a444508b6c692d68639945

          SHA256

          26b77cc1e24a1de8a224b164e9b8e0bf59899c258b4b03ad3092be0ec461aacd

          SHA512

          7f8b91721c786a9d6bae69ca5ad14d1099aa8d6c82aa7a0d1d20e23f4c4cbc0f8f0e9e79d230cd46cfc55ccc92c524174c66cd91158a34d689c8883ff9c6327f

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          1c6fc75ea44ff1a463ba5e9df2132473

          SHA1

          777c75e14142808ee823598600de8bd9555ac97b

          SHA256

          d140d34879e37bbfe45da61d120ac43d688aad0dfdc1d1931ee37efd9f3ec782

          SHA512

          6870fe98d2abbbfd1e0efc643b1b6103a072391344b52e2a47b90d458bd522c0799f46ebd9e8fa4df160beacafe22453502e1b20e0677df6ef833d654fe49cfd

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          5b71e755232a3ce7086fbb2e0edf5a05

          SHA1

          69a631df75ed071b854a6a48d86f0d90fa1e5df7

          SHA256

          6fb7bb5cc6bb97c794c6384c925cb126f1eeb1f64d18198024be51e3992c14bc

          SHA512

          f54c83a363f9b43c812d871b21caf64584136cdc3df3e1c4c3cca41fddb97ac44e7891d61a39c5b6df55981301bd288632259f89deb119690a9a229d45e6b156

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          1350f552ec295fb55caed37fde0295e8

          SHA1

          3d4a893d03fef83980d70f80004975ac261d8c8a

          SHA256

          f8f7e29cc9e07bfc7dcbff8c2886f3be394597e23efcbe71e92ccd63254d60e0

          SHA512

          87922678397a57a24c24d09246ca1eba948dfb5c7a5a67522416399f3e2ea0f6b775fe4bfa32b1cc476873b1f804c0e4211c9f01ec00c1902fbd518aa17f13c3

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          0296e9a4330057e4bc5cf4ab8e78cf88

          SHA1

          6eb9fb4ae07ca8503128f9a77f597d8e23f892c3

          SHA256

          44cb80e345a39f76954206ead6d33b5adafddfbcdf6437a22693979911b6daa4

          SHA512

          b243b32281f8135af87a0f980f46be00a3dbe07f90397ad55d52643453cf3c9d7da5fe9c6f93625cc2baf352928da7c4b51edf7c998cebaef54430f455a2a3da

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          82f6fe9b4ecf1a29ce1319efe1044643

          SHA1

          cbf1b920d16075617fdf88bada5b28be177ffdb6

          SHA256

          5a45fb4a9f8f592902584b1fd5e43e3767f35113d78daa46195d66d37f74ba54

          SHA512

          b32a92c546320c7a68317e8c531b084c98fc3db21ffb3e3f4d203fd57e8b04ad60376cc5e8f8f8ab7ac47396d734094e164a9e9299d74534b78851b22c316220

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          a7a95653ff1ec82c450be63531945ae7

          SHA1

          7f15fe00315222d985d22859f6c1058c70b8b6dd

          SHA256

          7012c250cf8c3989f82ea2a0aa905583c10c72885eb03e6be4239cab809eece8

          SHA512

          537d60f82b8e27ae8a5dee988b5cd7af8a034ea1cbab403471516780e3a78f9d722644982b05906c6e389ef95f339a4fe3c4a6c1b2926a032cc0e36e015b7d2d

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          1b410cd21fa4c5c034fdc963ac8483ac

          SHA1

          8f19d8a174f2eadbb0517dfd9e1922cb5219ffdd

          SHA256

          81ac9e952363789fca39f72790d8f18bd664a7924e069bb36696cb09d8532fd9

          SHA512

          b8c8cf58a7b14cd6e98bb4cd129017fcf1c02da684a34282ef26aad37544430d83c3d9459177b48b80f0ecad6098bd3184c299051773b04a311e60a903e263f2

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          3c4850990552d5fcfd7bf93224c0e94f

          SHA1

          e9498049f2de015363fc9e3f9ad8d02fbbc0e489

          SHA256

          6f89cee26a6b04c4bd0bbe4aa4ba65b9385834336df9b10460a443743fe018c9

          SHA512

          4568fe72f08fe0f619a269870a4244bab46148cc3ad5edef88232849461c68c28ea818a134c8f62538fb32049c634717498c85da5c8c79bea8d9221a8474307f

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          1abec28e2d58dec256a1bf06a61cb418

          SHA1

          b2989c4ce60dfe148d6c3d0707c889667748d8e1

          SHA256

          1f8110ca02851de355bb9fd6fbc4545a9bb601bff723de720a9104480ec8ad5e

          SHA512

          287b8ffd37764b463c8cd026bc7a9af3b86c023f5cc312ccf87530cad50fa26dd64551d1e009a9b1e2d24bb28a86c56599e4532d2d5d6ce70a5570dd29712ae0

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          d0051a014ae352a86a404e99d09fce00

          SHA1

          401ab8ae993da88859faa750941ab0b721990329

          SHA256

          b6d4c677aaab1b39de57d69fe5f3a5a8e52eccf08056a683bc2c8c4110751361

          SHA512

          25a14278e67fa230c4a7f291105fdf1ae33b092eae3225700d7211b6495e61856b8beb2f5dfca91a143f333c2ffdf94f439907486b396625db31769d55bc1a23

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          876ff790e9f320b765a47a334d4c0fa4

          SHA1

          053b7533a212de3110a27e1eee46feb790f4a41b

          SHA256

          0d376fd33aa79062483e053322e9123cd49d55811d6ae8bf50b5acd9d489d03f

          SHA512

          e3c31fe763d2ae5bccd5488014922722704e6c94c3f48a1f87dfbf5c80bb9d572d1af4138fcec61736d4d435c259339b9dc7a15dc302f2a1ca919b304c685aa4

        • C:\Users\Admin\AppData\Local\Temp\CabEC2.tmp

          Filesize

          65KB

          MD5

          ac05d27423a85adc1622c714f2cb6184

          SHA1

          b0fe2b1abddb97837ea0195be70ab2ff14d43198

          SHA256

          c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

          SHA512

          6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

        • C:\Users\Admin\AppData\Local\Temp\TarF51.tmp

          Filesize

          171KB

          MD5

          9c0c641c06238516f27941aa1166d427

          SHA1

          64cd549fb8cf014fcd9312aa7a5b023847b6c977

          SHA256

          4276af3669a141a59388bc56a87f6614d9a9bdddf560636c264219a7eb11256f

          SHA512

          936ed0c0b0a7ff8e606b1cc4175a1f9b3699748ccbba1c3aff96203033d2e9edabf090e5148370df42fbfc4e31d7229493706ff24f19ff42ff7bef74a6baad06