Analysis

  • max time kernel
    122s
  • max time network
    147s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    22/02/2024, 18:47

General

  • Target

    classifier_tester.1.html

  • Size

    19KB

  • MD5

    0f474fb2b89d493f4b7249a99be7a0d4

  • SHA1

    0822a29c226a326186d7102a45ad006a2a87da41

  • SHA256

    6b5acc1371f817ca3345d6672d84a4c3c58db467ba6cd85e4355bef6417f6b11

  • SHA512

    1d99776ecb718aed1ebe1b6af46dc83301fc9ab7a69e32b5895ea6d8ae704613541f98c1823d06db482d3800efff70d23e023887f522d6cb20c5fb1628bb5456

  • SSDEEP

    384:Bic/7NlHRVXnP73SXoFn1EppMkm9HOKTUn2Qg:oc/7/HR1D3nippMH+n2Qg

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\classifier_tester.1.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2784
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2784 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2120

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          3d1fa820ca638f4c6f98a1502b0fc72e

          SHA1

          58a2b2e092d044ea8c0ba02c2853c084293aea5a

          SHA256

          f101d4477b04aa219871d7d0221ad5146d8d66b81757bc11a4d4935b41134ba8

          SHA512

          bede5aed57160138ffd0ece0437fed00a340302700c41947fcff8a384f3712baa1c0d02f7b5884096dd1213964b4ca39f56be45e0ae76f2140e5806cea03bd67

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          d2e1f8a323a8ad2066b23e73a9261887

          SHA1

          df492ff04aa8216d18b28e5b1408fb4f22e5cd91

          SHA256

          ccf06b6eb78cee4fda2dbff688b2276942b0311344fd1a3631203abba9130f46

          SHA512

          cfa3c97ec6d8094e7ec9938a400b9e295577fa993b837352a24922251ddce0f38454697d42ae53218412e6064249d8e6a9204ba7f99a6be2e0f6011ca6aa9759

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          5a654262c8b6353803412baa0ed12040

          SHA1

          ceaa2c48e7fd9a51ee6eb992878089704af1422b

          SHA256

          06b3f4e186898209fbf67207173afbea473a49da28928048dad20dbaa5a4ded6

          SHA512

          b4edafc8ca7adc1ec0fd00191a25ed2acfd45e7a2e734a06e49a2d7a62d8f5b95b0c64ff2c66a28d3bb08538c37a860a38430430ac5cdf6ee7e9008d8e998eea

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          1ec1009bb1f4ad732d06dcad75f74d6a

          SHA1

          4bfcb155a2702020d21f00bf6337199b877f83df

          SHA256

          c8c805c17001b84837053ac854dca249d27385218e1bb3ba35ce767b6133379f

          SHA512

          84363e3fcc47b24e85cf3fa1991f6bf56688a20ee747d48457f6e55fc11a4b22949c42f5d9c34b66172d51e1841bd9b8d1e7f8a9a5ee50493bdb19cf9daf2195

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          d1d7508e933dce50b2bd7f9b2bc7bfa4

          SHA1

          3aef9cca24781a3a30738c4e31f9ddb2c12ed604

          SHA256

          ade3c6d8a91682288084dc0d282ea5b5ca821e2ff78287e6065bf366f4462a48

          SHA512

          d827ce965ef153cfd0b2aeb5e4048ec8aaf1c4abaee3030bd6e0d5ad46c4191bdaf8fcd4af8ee194e279fd61783c69a4663d722b830a04ee595d63df34a5dd0b

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          0360995246da9dc20f1a335e72429873

          SHA1

          ac7952e38afa7db46210efe272be0c68664cb5af

          SHA256

          9f268068e36ebf57eb481e26e2cc0af5779354f7a29d9603dc90868315cc7882

          SHA512

          9d79a2ffe4ed9c4c3f1681084609b3b7aa35440796880853cacce64a7d9583c673185f4d7cbb60316474a49a869c90ee3e032d576227f2cc2941f319ebbe5856

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          d9282efb677f7c7d19e0493c237c7004

          SHA1

          eb0c682eb94b4b3cf657d34551ca3da6d5f22f3b

          SHA256

          cd9011e6966ae200b1204380b54f9e1fa8026b111deb421dc889d130bd7db7c1

          SHA512

          5a9d44e5d4885111edce5a477ee5b023341009c74d5c55b2946ff4702f8fbc12e7472e46ea34043574a807f18fc58fac0233322a07d00dbc5b7af84a74559cf8

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          7b41d5c06315b78d8ab84ee919b78f1c

          SHA1

          bba56b10b1101d0a193f62b1688778a8156a74fd

          SHA256

          c34366e418dde1b20960632f59d4d48c03c6de2f3d7baf8e074816d1ce67d369

          SHA512

          d418265a10e8067d3ebfe4b2984bdf8937dbb26667dc8edc185121acf3799669cad590cf87a331ea75bd7e4eddc46340708528d5be626be1669c1450b2531e6f

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          fd0fb6baffe0a5541fe592b4649985fe

          SHA1

          81570862ff6289d60846015756b4075fc06829cd

          SHA256

          6733e28b0a0b34365b15b97d55a05a56511f2c4081e43de0230196fa025e8d16

          SHA512

          5867c49c31f0e0b79585899cf2fbecbecee5a44c5e89ef7bfc673061888acbba5f7105a85166b902def974cf18ecf72619467ea16105223499c223aae79605e1

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          4bc0e6950d926c6b190a6c01e7600272

          SHA1

          13cd205efa9b81cd61a40bb03eeb4a91e4d99672

          SHA256

          2c9286c275d8060591f75f985e47379b9692f98465ca2388c0ec3a56af015211

          SHA512

          c9241ff0957b9f1a1dc79595e1b4407656136cb3d3414ea7735f48d55348a8892f195d07477ccefb68192e2c4bb89ad03b8c857ba2f428a95c641caac96309d3

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          26d4f0da311ff3a1796d71c82373ae3b

          SHA1

          6f215150206d0b7233ff91b0852fdd95557087ae

          SHA256

          b9622d2ddfc73ce5d3999e085fb889f310c3fa1a9c647b0ca0ba6e729a4057b0

          SHA512

          0128f67f51ae135056e48dfd0b895154fac5985e996bca088d35f1244a4fd537ba7dde8f1b350e16340165fb2b1760d13ccffb13140b232a70c07570722ac7b0

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          63aedacb8d8d457e86f5b5740e0abc17

          SHA1

          65552775691458d5253a2fcbbcd33f02766f3f07

          SHA256

          46317fd569c631ab1b690a47acb687eeb3dfe1b65cec26eb650bc5bbc1da3a86

          SHA512

          6302fcfd466169a71b5a021d4d125c48bb1c2b6c6fd4b2813004d6863269f681245979abe6a80b29a8829083d87d9fac5a7ac061267b9d0b813c5010ddacc6cc

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          f36ae6597ff0a155f6214c64faddd85e

          SHA1

          f01a4636706ad1b672910c626943c77ecad6b126

          SHA256

          f6b007617a6b7159ae6ff44a1e05d37177c6c2a0610c51f14237bf78a51567b2

          SHA512

          74d1f4e06d43507ab57625b7ce858bfe8d092e9e6bdd9a9ac5229a6a9c629cb2aa7b04373fd014abae5df2021e5d7e91b14e186ed24def6d224b365f1d1b44fc

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          9d57f560eb8ee4f1194329067b459102

          SHA1

          c82e622d4b662b08ff15f5864d21dd663bf28d38

          SHA256

          741648fd9b2e00ab568981239f84db7816e3a157b695290bc3068a22d9e91334

          SHA512

          9c00c47e1f739f3107c180b8ac0d6de3623d67599eae3a41bf05abed55057bb72dcc8b6767f824286447dbed3b4479488d6069a48bb7c8bb3c5ff483225d9e25

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          f1c90f54fa6f69b146a64055892c5a7f

          SHA1

          3afeae7b32f42df51c938c27a5d1426539d2f3b2

          SHA256

          27daaa181ccdcbec884f558d0a5f90826ea4d4bd73e6e6a9127b05fb3dbb0bb3

          SHA512

          7be6ecb9bd7359a315698170f1d02a18fa882c8eb23478e30eec6e227ed5c0e7f4ff8f7e81e53af3e4e5d040e8dd6de481b5678dc12b129caf457eaafbcd258d

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          d6bb47fc42fadf3cc95b345ad0187ee5

          SHA1

          b9bc904484a5059b592b1a5dd654b8dff92e580b

          SHA256

          cfb8d6519ab078c247df8920512c23c7717ac50a43d4051b8a469cbf90f1e299

          SHA512

          6473ef0989fd03c3bedf65a8ed5c1aa864cd2e0826918c38c32e92ae1a553fc8569908f63e9cd38153e69a3be079069fc4e1d46f41ebe2351792d7e04fca335a

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          871c213a22fb9dfd31b9b33005360001

          SHA1

          47653c9364fef6d07aab92dc101c7014c7e4db1a

          SHA256

          5f57f40b9f49cf90d85b19b833d7d33dd55fd641ff47dccefba81459ea779157

          SHA512

          c5d749ed5c74d5c5ba811e2b2a17d3ff55a5f9214f899e63fe37fda9d19091b55fdfc753d3b1a2c10ec34986225ccc7f25a8915acf16ec4ea226677d02f1ac5d

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          cc2df6c351ffe6173e9e8f68169c9f25

          SHA1

          e7da3a3d83b480e2ff3c72b83e78e252c57768d9

          SHA256

          5831a0103e8d5fd45f6aa508648c70f3c7708a9ca745367d0493ae4ad4b3bd44

          SHA512

          b5d60a63ae189f22d127b197dc7732e683bb1bf7124ddcb062a448033207369de4f9b4f9ce8bbd40f0166530c980de9d6adbf9f4675e9260b79d4c9c3113a70a

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          0df39cff826635fd39e635e1703c7ebd

          SHA1

          7dbc89434234aa3704783435bb5f896ff2145d42

          SHA256

          75b85f3cd46024a9c0b835ee0bd90a2715eaee9205585c7b20e07a6330121946

          SHA512

          f1d9447099a34764d5059fd62c329d83d0ccb9bb4c2ee23672f0046bc439d70f4bc6753995a0127226a2d8f4fcd11fd42ffeed04fa94367b26f636ce514aa568

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          9097126d70e0e6af1a76712a6e808150

          SHA1

          818802db7bdb3f272c6dc0a265c2e64aa32a6bfd

          SHA256

          c9c4c1666870e04a256c1964180b982e9ab32c864d08c522eff27ac8216faa37

          SHA512

          08feb7f89d931c26157b66f0b081923262020506a9ffb078bb81760b423da00c749273951a4788f8a3d5665850ca07b2dab9db80f3c7b2b3f3f25f4f5a330cb6

        • C:\Users\Admin\AppData\Local\Temp\CabB684.tmp

          Filesize

          65KB

          MD5

          ac05d27423a85adc1622c714f2cb6184

          SHA1

          b0fe2b1abddb97837ea0195be70ab2ff14d43198

          SHA256

          c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

          SHA512

          6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

        • C:\Users\Admin\AppData\Local\Temp\TarB746.tmp

          Filesize

          171KB

          MD5

          9c0c641c06238516f27941aa1166d427

          SHA1

          64cd549fb8cf014fcd9312aa7a5b023847b6c977

          SHA256

          4276af3669a141a59388bc56a87f6614d9a9bdddf560636c264219a7eb11256f

          SHA512

          936ed0c0b0a7ff8e606b1cc4175a1f9b3699748ccbba1c3aff96203033d2e9edabf090e5148370df42fbfc4e31d7229493706ff24f19ff42ff7bef74a6baad06