Overview

overview

1

Static

static

1

b4a146f704...a.html

windows7-x64

1

b4a146f704...a.html

windows10-2004-x64

1

Analysis

  • max time kernel
    117s
  • max time network
    132s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    05-03-2024 11:49

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    b4a146f704b8287468bf633219dccf8a.html

  • Size

    430B

  • MD5

    b4a146f704b8287468bf633219dccf8a

  • SHA1

    33bdeb85f4d7c6fcf33fddc5467df941bb557fbc

  • SHA256

    798070d0a5a38d654e60b72fa75904d03f98e66aeefad6be31c7550e4103fb36

  • SHA512

    41909d887d52e3d8afb5192868513af720460094eed6d24a080f730ae54262a414fa075703f79851507ae26ae32d6017f381915cb7d8000916675af48340b821

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 46 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\b4a146f704b8287468bf633219dccf8a.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2300
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2300 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:928

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015
    Filesize

    67KB

    MD5

    753df6889fd7410a2e9fe333da83a429

    SHA1

    3c425f16e8267186061dd48ac1c77c122962456e

    SHA256

    b42dc237e44cbc9a43400e7d3f9cbd406dbdefd62bfe87328f8663897d69df78

    SHA512

    9d56f79410ad0cf852c74c3ef9454e7ae86e80bdd6ff67773994b48ccac71142bcf5c90635da6a056e1406e81e64674db9584928e867c55b77b59e2851cf6444

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    fa6def9431e8893365c5bbe4283fd9bf

    SHA1

    fccd0fef757b4095e94830b6b47f69e7587a1b69

    SHA256

    2a24cb2694d50cf911eb7a1bdac606577878dcd52bb744ca33c0f12eda081cac

    SHA512

    e9b2d304404e04d050697f7f4dcc778c744bfe93faaa0d91986a4e2a67af7614867bdc4e22ca7e6a3540d0c2c459b91148f2017259381756896d583e54c57845

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    04e0cc34863801c5dedfe3d744b68cfb

    SHA1

    a40f11fdb1b59b7befc4996066a12b74dee16458

    SHA256

    e53a84cc7a373e69c7ae2a1e3e5cc24eafb26e76cca3d558850a23636893968d

    SHA512

    bd31b9d8828f0b1f3aa5c768124751f9abc7567e8e45a2957dd0377090f5a87494c27cf9527f93cf29bec2cecdae8b8e0145be99e85e8543a50379d7dba3c5f1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    4a7de63326f6b9663be6340494b7ab2c

    SHA1

    5a7d6e7c7c4d87d109543ef2db16d73254c74977

    SHA256

    b33b6ff29b4e1bf236acf3400e30a635f1443c34bb1460de381b4e0303e20f97

    SHA512

    0c465f3bc974ac2cd54cc3c4638004362c05c798c333f934e6064b2d614ed3db5555c33499140da21ae97d1bfaa85696a036cdc0756b20008c1f9bbf96cf0a1a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    28a33d8ffdfed6e8194247d7598eca60

    SHA1

    5a2d8a9e3183ebe382ad891628292318b06e60f5

    SHA256

    3bf2331955428460fa3f5c4fb35bc43fe58d13134b606b9053f40f9890b17ed9

    SHA512

    bf4ebec8f93ca867472215f098ad7f75dcea6623b04b119c956fce6793544710c6dab9d87415217d79e8c58cce4c494986b14a562f7cb34643013a1134d40fa9

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    8c45172f49447cd0cff723a4f58a3296

    SHA1

    6b5248d08cbe6016d8bec81d4f04440521ede028

    SHA256

    08eb7a00cfc00ccba827ed3f0152a9ef402d731ff5559ddea56d15d396997acb

    SHA512

    ddfb6a40c8d398ba71810812ca5a38fd6a813a11278e6f72e2cd82cde1f1414ae3508a561d3cdd13e193e0f05e0955bd4f15ccababa50639e0b8eafba2116531

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    d23bd7f9746416f7ad993ce3505c5879

    SHA1

    f7c08019d9fd7122d61acbceed7bcae74682f3ec

    SHA256

    a23b6d7fbb11fdb22230f8ffb2ace21b9b8f3128d635e9f7ae26617d611b2c23

    SHA512

    1631a6344c8dee822639299d8310c68f8edc6bbabe4708a632e0a34d3ddd218dfe5f62dbbcaa962d046fe1d61a28b9f0b84d64b667946d14856a8b63ea01eb29

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    66d0eda515b27e75d4ec14fc0e10d233

    SHA1

    5ceaca6c625255973e0a53b77e89be571e43444d

    SHA256

    94e862610057ca5633eb3f3d9fea4f2fae2a121d50d44e4bda45538afddb52c7

    SHA512

    d4feadde9487be85f15116e5898d1b21ea397974a056b1c2de29f73af362dc4fa98b6ae0b8ce19e777399e884323d5e78f8ef89c085bae7e216ff26ec5d52ae7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    faf6e9314fd1dd9ee2235709739137a2

    SHA1

    9dbb1fd4c319d53fa59ea5d0d51d616f927c2735

    SHA256

    23b134c8563d296553e1753197da16b50294eb0ef1b9728964a125bf1bbb0760

    SHA512

    6ea56b2be3544b2e60477fa212aeae8024c704e7b73267796a7c41f4233dd694e05a2c4fde6794072aa49367bf22c79b4d37c76cc509850eff94d807ee3e9743

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    392fd5dda1f5e6d43db7f49088de3647

    SHA1

    2cca97246306014a2c644c4fec7d3b16ef0809c4

    SHA256

    0859c74cca7c6f5c5eb0d407f9d57b887a237ef56c5bbfd7c363f7a20a34a533

    SHA512

    94e8ffefb82253825f2094a47f2135ae7f4a19a8fec48cf2c03d9bbc0fe921b4a7559399a10fc25f741594f1366e0000a12f2475a8769fcf986fd1ada59d8f5f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    77307a156779ba57eccb5550cd443f64

    SHA1

    8eb9bab4b54c4e0c33da272b9e6a5c62896038a1

    SHA256

    2cef8fc7cbd84927bc3099e7fe260a5cf34310bbac9cb087d8223f01cf7f71ec

    SHA512

    f3cb0ce23fcd991ca1f3e42b294d0326126e6ce2109e3e050deb574bb890cf23deb277f1213fa212c46d482c9e39a81e610e27a392ab7f4d4c6d105ce57c17fd

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    3b5d5fa7b04a6f04141d3f1d471f8dc7

    SHA1

    5dcacf7180ad9ecd9ce7f146bf9b10e4a3922ff8

    SHA256

    6ecec0e020c87aa9c22e2b7a3792c57640d4b7ea45db6c5ac3a8b4be4129f822

    SHA512

    40093220997a200be7a7ad6fe37a4f4ce0c48ef62e2a3f169a3ff638e458d7ca5e4afd34a6a2816f5240ab657dd0a97a717326e420fa251fd703ce8c5f471d1b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    ba4082f7e2cd219031a104f8a49cb5a9

    SHA1

    7eab2bd2b485d454399058f3c31ccd3e550daddb

    SHA256

    d336cfd4d5cfdf54de5f7763004ee1663bd5c7ea36c07f5c411b3b8b203d6e5b

    SHA512

    7ded95d99b55fce2a4901685ce1787953297fd6b72a7fa1a88ed16a9a3ae96c92130dd41b0b1ecfe45d488e951e1e1537de5f37dde7916ec3261a46ff16887e6

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    f91bec533b7330a9d69d651387448dbe

    SHA1

    ff6a3f76c2129d83b6e3b5b77bceec4b23dbce18

    SHA256

    3ad0d342859199e5e4e37cbceb9c3dd94228bc06a65f340c45d52acc37924ede

    SHA512

    ad8414841190384e47695a800beb518ce771d9485368bf5dbbcdd092d9932736b1c4eb86c13f51d0a2e8b5267fe75fbe997dd6caaa21930b370201e830d7fdf8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    75261ff1f58d8948430bea1797ec554b

    SHA1

    ae79882d3f4e69308ee1ed2aeaa38240f42ab361

    SHA256

    ad3b18da5b71c1e14acc46dcca5660e47bf026858f32d850132dafd4296fdf1a

    SHA512

    1310a4f479a84ab0e97e629a4ae567949f972f7611385999b2d08839ccc30cb6a405d980586d164c68105e29b7d4743170aaecfa2898a29c29e3d754a130cac5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    3a8faa77245a5374eac5d252ead6630a

    SHA1

    fb19b2f2f8f7cc19ba88ec2e9ce58f38814dc5a4

    SHA256

    5463a51b14efa88f3bccc08ae8ab7e3b6c9e417d3c5b9e62888446ff815c66c4

    SHA512

    8a8a6af890d1c6e40ff7b57332c1169e1a94944fe1746ec67c3fe73610f4e1e346aef37a095a11bc40222a173fd131cbb8edea3c70bcbeb9aa37e78cb940c688

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    a1e730d28cd5036844cb6fbbd27d54b1

    SHA1

    574c47f19c43ca48de2d0641cd74f4e349bba476

    SHA256

    b7043221f705044ba06341a6f79a172767008bca9b3fcc75ac25c48049bd35fa

    SHA512

    11af8f3cebd289ba89532a4be0b5b2bead58f2e8c0a21fe48f04db17cf421f538018c9bcfedc5f3b21b4f11836f9da24aac5f06511dc2465d2f093f8f919f5c4

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    88933cfa2f59ee2a8cc8b9c8e9b14f41

    SHA1

    1ac25de88ff449a4ef1f46d312c0e96c27bb6242

    SHA256

    8e7b2bad9bd544afe199521f5c12b394e1660b0ffe5dfdb4628c11bcc15975b8

    SHA512

    ec8ce556428814330503043705331bb8040a8fa268eefe8a03a5ca8ea699d8da0e6f7185d732970165e7ed4aa52b30f16e5e54498acf1051233689d12af7c177

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\RG3HECKM\zabedreb[1].xml
    Filesize

    13B

    MD5

    c1ddea3ef6bbef3e7060a1a9ad89e4c5

    SHA1

    35e3224fcbd3e1af306f2b6a2c6bbea9b0867966

    SHA256

    b71e4d17274636b97179ba2d97c742735b6510eb54f22893d3a2daff2ceb28db

    SHA512

    6be8cec7c862afae5b37aa32dc5bb45912881a3276606da41bf808a4ef92c318b355e616bf45a257b995520d72b7c08752c0be445dceade5cf79f73480910fed

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\imagestore\jre0bgm\imagestore.dat
    Filesize

    1KB

    MD5

    da6cc017b7ac69bdc67626129d31cacb

    SHA1

    a5ad508df7ade0d198b514f9d3a60d923a2aec83

    SHA256

    df20398e3965db1e139fd3da738d0b9e4eb197a44a66b023b138fc7093aff2fb

    SHA512

    faf9a53d0a3f379bfb6209ec38f525c720cca0623cd97207fda9778af95c4947021b8325fec7a3235f15dab9958351b445dff65b94f765a5db763a27a8a807ed

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\imagestore\jre0bgm\imagestore.dat
    Filesize

    2KB

    MD5

    5d9e37a395c53ca377cdc116c1bdc4fd

    SHA1

    ec5eb69783fec6ab2e0e9dfd847f996b653b2ef6

    SHA256

    6b83524835fee76012ef311e22c5d10084b962949f738959f075dd687f301cfb

    SHA512

    4c93134e5048e2775e7f353cc267feb4ed8150bf5d11907d6613d273bdf687f0f1dff289640b96bcd344db3351661e5fa1df9d9c75c968a10ec3f337b6914383

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\75OMIGJ7\favicon[1].ico
    Filesize

    1KB

    MD5

    668ba1a9fa1890ba16cb8adc28d3dad8

    SHA1

    5e35223b2541265114eaf61b9da2556c812fea17

    SHA256

    7746cf1b553433822522f2dc432f55fe64eee1f1cf823ef6adfde02e58e1d7e2

    SHA512

    212aa3e6ea6a2dd1abc10d4a96b7be179e0e490da187641ae3be7b7c0c30b7272d8d5b37b1c6ca5c75732dfb35a8ee30fa97cdb35704b97eeee11a2163e53664

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\CTT6L9LH\favicon[1].ico
    Filesize

    1KB

    MD5

    91abe01116ab422c598e9c8af72cf4da

    SHA1

    0f2815fe8e067d48537ad168225ab4674271fa27

    SHA256

    b1d7aef06456fe7431124129a28f0138bb5fccfa4f4161e3087de23c005e5edc

    SHA512

    a4d5b20c3014153b6b382c43404917bd2cb5bd2a59bb1e981f5a19eb7dbdec185ace288e9700428d24e5ac623e45d04905e706f0c45a1642b1aa6c091213c23c

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab431A.tmp
    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar443A.tmp
    Filesize

    175KB

    MD5

    dd73cead4b93366cf3465c8cd32e2796

    SHA1

    74546226dfe9ceb8184651e920d1dbfb432b314e

    SHA256

    a6752b7851b591550e4625b832a393aabcc428de18d83e8593cd540f7d7cae22

    SHA512

    ce1bdd595065c94fa528badf4a6a8777893807d6789267612755df818ba6ffe55e4df429710aea29526ee4aa8ef20e25f2f05341da53992157d21ae032c0fb63

    Download Submit