Overview

overview

6

Static

static

1

b578086d35...9.html

windows7-x64

6

b578086d35...9.html

windows10-2004-x64

1

Analysis

  • max time kernel
    150s
  • max time network
    156s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    05/03/2024, 19:16

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    b578086d35af2dcd14555e36f6e30009.html

  • Size

    194KB

  • MD5

    b578086d35af2dcd14555e36f6e30009

  • SHA1

    b177fc91828cd0baa66f4989489aa0d88d65874b

  • SHA256

    d76bd63380e8346a0befaa3032ae0294662e7c946329ef0f043e5c73570d797d

  • SHA512

    b27aa35263a0370e53433bec113303277ed2351e1449231827a750c3d84b3230da66244b39fdda614757131163801bbd7628f960e1f968e3476ebd892fcc2375

  • SSDEEP

    1536:6JScJSHRidKDZvnV35KNEUtszXaBBeu5snpn68l/K/Yczb6lCE6OpB9isHzhzAB:6AcAHnBGtFE6SS

Score
6/10

Malware Config

Signatures

  • Enumerates connected drives 3 TTPs 23 IoCs

    Attempts to read the root path of hard drives other than the default C: drive.

  • Modifies Internet Explorer settings 1 TTPs 41 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\b578086d35af2dcd14555e36f6e30009.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2912
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2912 CREDAT:275457 /prefetch:2
      2⤵
      • Enumerates connected drives
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2636

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015
          Filesize

          67KB

          MD5

          753df6889fd7410a2e9fe333da83a429

          SHA1

          3c425f16e8267186061dd48ac1c77c122962456e

          SHA256

          b42dc237e44cbc9a43400e7d3f9cbd406dbdefd62bfe87328f8663897d69df78

          SHA512

          9d56f79410ad0cf852c74c3ef9454e7ae86e80bdd6ff67773994b48ccac71142bcf5c90635da6a056e1406e81e64674db9584928e867c55b77b59e2851cf6444

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          e4f17efc1f77046712a96c7570441dc2

          SHA1

          bc81612823b4cf454963076b99ec68b5c8cf719e

          SHA256

          1834305bbe0887e589f83db3a76eefb5d1b774f1f613949c84aea99d30e18fc1

          SHA512

          8d88472c4036b3239f0f94f16d1357c5b093ac571a7826d81ebee93bb8df6a8ebb36399e332284626bd4c7dab205da3a9d75ed5465e8cb3cc4789dd2dcc76a08

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          ff70c9b0df955aaa735201421899b212

          SHA1

          1e91adcad37f706208c2311fdb5583ffef232010

          SHA256

          853caae64da3544fe2cda85be99ba71e853cf1a80b05753ba97172e987b8fe9e

          SHA512

          451839fd97e9eb0382f3bf545b51b6cebe43d033fd52637c6bf73951bc31ef09f1430c6aefbbcc962e4e8289eedcc282dacfb92371d7fedf5b7107bf2c576e83

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          9bd7a268fffefc595d5d0535a9b4e21f

          SHA1

          ea16d4196011069c2cd3d35d698b19fbe4db1f42

          SHA256

          fa754ebe4fbb8a9980ccbfa9022b8efdfe92839054eb586a4795d0a62cd349a3

          SHA512

          b7d574a4ec5260cfe81eb41c30b4c93e9febb5e500311e723cf13b9ef5fafbc09876e28cd78eeaaae95e29eb3aa0d1e72632ef93365bea9342a6c70d13684181

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          841344d890356690e9642e7af75b95d0

          SHA1

          ac6945a9f9b1b81c5e35f50afc1943e9e3c555ba

          SHA256

          93785b65297f440dcaab3023c029ee59eb708aa9cc61e31122eb692160c78d9d

          SHA512

          d0ce2ea1718c33ca1315dbf086e5ae2c094bf640edf46498dfb87ed7e460ae3d1d7a3224f46cc4d507dab8cde80a588fc1dbc872ecca062e2cd9b0270e1dd23b

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          af8a77177610c99d4ef7b154da6b4c98

          SHA1

          427fc8ff32feb5e34db6d335ea69e319462a0ce2

          SHA256

          2e9adf947b5d9d6b4158d612dfacab52402212044d3d98babe59484e5c6fb09d

          SHA512

          97a3a1c4131ef7db7a158dea6dd26c9226864eb9f605a0c3dfbcfbfb5ad13e97ef9ff4f6d4cb40e8aab6aee6e61346f3194f6baa475b7b4e4a5cfd28e1a52f2f

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          5a7ec7929f53bfccb44223407c790b25

          SHA1

          b4f5c5c964e30426dd7db6b5c918c0ef1f83f365

          SHA256

          085ac103d8786ba070d7b7e8e08e2d8f1ab161a6c4d52f26c47a47b64171065c

          SHA512

          9b23da65d0c6f80ded6c5919317fea38c0dbd12a3cd1a4cd74ef03275ea8d7cf1a5b53bbf0722c15dfeeeea689ebbebefad4508b139301d5345a79357eb445a0

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          8f556894f518a2a2852b62c4898a0fd4

          SHA1

          51676799cf9b2996f429a9f0813102b51d226791

          SHA256

          2637b742afc095c61cd095bc02bd74ca6855c6ac0d95d228de705136c57f1913

          SHA512

          28952ed76808a440141ca7d13894c7db74bd185101a636b258437e8de3357cda413de38ef871374b68d00de6b8e605273d3cf9be7a7534e83f195847b0134ef4

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          a5af1507d3468ac0f7c4139b63f34b68

          SHA1

          89c8e590bb436d5c65baf01fbb1c5f948c768296

          SHA256

          275c8628677f5de214754c1b2002efa1bea8eda5ffa608e182eed8531351dc44

          SHA512

          cdb008d9b96b29fcd37a0c01ab8a9baa6727865d43d07762f674c4ea6039af8c49268dd449aefbefa82f5f946437be74a3821a531904405ae58dc6c1a995222a

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          95e7a0cf2f52180b305a1a2996dbd924

          SHA1

          91f8dafcecce0dd2d83ec98983184ba53ea1832a

          SHA256

          31d1e6a1206e0993814c5ce5b38dfc4a577fcd963a6014e27a2a1ef11751673c

          SHA512

          a0a013701c7feb29a76dc7b9414ca69d175d26282544bc746b87942e635f80956d6796397287c61b2edd80d1be3c03bead62b1dc30640f8ba5fbf6c7cf5142f9

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          94ad5c494e3e1ea846877f301bc3dfa2

          SHA1

          072ca2580c3b33a5bfda8af5a94dc76ed2b650c2

          SHA256

          85e6beabfccafd505b6d98ad7bda844802da2be4a54e0257a46d5690eab2f483

          SHA512

          eb05d1cdea78231db6592a9d672b4eeacdf024db6d35bba212a31bb12d2aee48a92014a49908481c7163f354fc256bf14770c59401379b7251d96de0d66afdf4

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          a443e4afb8078093c155a3f03f59c101

          SHA1

          992c8cd9a4ed96e042854e5dde46438bb61bd313

          SHA256

          fed4957c3fd7a0f2aa2ecc12308ee59be5b101ba2750c8ea556323ecd7707ddd

          SHA512

          63328c1ca40f0e0b483b6e33f32fef8b7d991f99aad0b05c539ddc6cd4c431284447ab29cb4b663624428bbe6856478cb4c05d7e14a354aa7838721eeb7c26d1

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          b979b2e61dc11dd51deb8ea9a56f4e9d

          SHA1

          8f5e0bf20bbd3cc0db1395b15f2522175bdb455d

          SHA256

          0457cc59213fe22e3c3185c7ea2f91944c9a382e78881fb1b561edcee934e4ff

          SHA512

          f01bd2177a5b481de3384c30c1ff7ba629eec46f042ee18881964a36acad7d4270513cbe7636819d8589290727e7932d095c749666725e9c69cf89af10e0fdd9

          Download Submit

        • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\23EIUNT7\1005847222-postmessagerelay[1].js
          Filesize

          11KB

          MD5

          fc4f777baf3abc58239cbc8efe48c659

          SHA1

          32a32fb5bf485fa53a8256d24db6460e8eb1ccef

          SHA256

          fd632e2d64132d33c6becc1c4f1d35b828eddac1bf48c4cdfb326b53b161885f

          SHA512

          d223db5d31692f3f5289d6a8999aff916ffe12e16b5f4baf69716f31423de520c1056966152c906d34f8ba0f27cafa529dbaf0e0e503fff03d30bf656ce4b6d3

          Download Submit

        • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\HQQVSTWU\rpc_shindig_random[1].js
          Filesize

          17KB

          MD5

          67d30bd5193f15ae8ee6128538edd798

          SHA1

          ab010651bb8f61f38d2659fd9d4026c192208a84

          SHA256

          09308ada60e95c434dee4dd6e8dd7a4f0800bd446a770fd2aa915dc178ec7de3

          SHA512

          1af993b336babcaf70031d8a1e416ec698a84c49ad7454ecd6d87d2c64577536c0c85460c90bd9c07bfb7404acd52fcd8efdf5be96244ae58df7a6b031e11d21

          Download Submit

        • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\XJ0RD6PK\cb=gapi[1].js
          Filesize

          63KB

          MD5

          87439b87f0150903ce85fb66003ea693

          SHA1

          a3b671c53265a4c47941233fbfdf0bfe365e7046

          SHA256

          a6b92e1a8f4f0dedb2d7077a131a47af0401c794a0bdfdf94bf8ca5996979c6c

          SHA512

          bb1d1adb7335ca62965608ce703c237fbbb3e316c022564b585604aafe9e94c01c363d8cf1b0ab4e4efb969313d74e0f6a0bb47e8005fe9c70bca6e94b6bc1d1

          Download Submit

        • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\XJ0RD6PK\ga[1].js
          Filesize

          45KB

          MD5

          e9372f0ebbcf71f851e3d321ef2a8e5a

          SHA1

          2c7d19d1af7d97085c977d1b69dcb8b84483d87c

          SHA256

          1259ea99bd76596239bfd3102c679eb0a5052578dc526b0452f4d42f8bcdd45f

          SHA512

          c3a1c74ac968fc2fa366d9c25442162773db9af1289adfb165fc71e7750a7e62bd22f424f241730f3c2427afff8a540c214b3b97219a360a231d4875e6ddee6f

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\CabD664.tmp
          Filesize

          65KB

          MD5

          ac05d27423a85adc1622c714f2cb6184

          SHA1

          b0fe2b1abddb97837ea0195be70ab2ff14d43198

          SHA256

          c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

          SHA512

          6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\TarD82F.tmp
          Filesize

          175KB

          MD5

          dd73cead4b93366cf3465c8cd32e2796

          SHA1

          74546226dfe9ceb8184651e920d1dbfb432b314e

          SHA256

          a6752b7851b591550e4625b832a393aabcc428de18d83e8593cd540f7d7cae22

          SHA512

          ce1bdd595065c94fa528badf4a6a8777893807d6789267612755df818ba6ffe55e4df429710aea29526ee4aa8ef20e25f2f05341da53992157d21ae032c0fb63

          Download Submit