Overview

overview

1

Static

static

1

b66478ffea...5.html

windows7-x64

1

b66478ffea...5.html

windows10-2004-x64

1

Analysis

  • max time kernel
    134s
  • max time network
    129s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    06-03-2024 03:27

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    b66478ffea444bfa9ea5eb09ee35e2a5.html

  • Size

    432B

  • MD5

    b66478ffea444bfa9ea5eb09ee35e2a5

  • SHA1

    ce18ae41b4f5134365dc1c95f8d9a4f4f5127a90

  • SHA256

    9971eae030ff56e65eca81b6e9e93332463e48558e48f6cc434bca9239663a48

  • SHA512

    0df4165d39991e42b03d0f4971002b27a19e9afc7ba0e4902c3890ba5a4e7a5ed8269a0e8a6bb61fc3799ef466bb8fff4d7449c96958a14dd25c206f1d01b3d0

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 46 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\b66478ffea444bfa9ea5eb09ee35e2a5.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1700
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1700 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2976

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015
    Filesize

    67KB

    MD5

    753df6889fd7410a2e9fe333da83a429

    SHA1

    3c425f16e8267186061dd48ac1c77c122962456e

    SHA256

    b42dc237e44cbc9a43400e7d3f9cbd406dbdefd62bfe87328f8663897d69df78

    SHA512

    9d56f79410ad0cf852c74c3ef9454e7ae86e80bdd6ff67773994b48ccac71142bcf5c90635da6a056e1406e81e64674db9584928e867c55b77b59e2851cf6444

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    8947df5d54c08e4dffbaa50e001f8a44

    SHA1

    3e7ee0c38bcf9be973e4846422976b28a155e57d

    SHA256

    d8f41603296bd65097cc44688ef57a5ba1c3cce1dd6e11a944ad9056b6b15828

    SHA512

    3406c10bfee35a8a9f2795a09ad0cb62b1ba769444f8394a9dcd4f8e866385c3011650418ccad542ca85fa85df2b4151cbbdaf25831101b3a21fe64ecd4c3763

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    e25bb40b9c3548b3a36416f87de4861e

    SHA1

    2e4b4656dcfe35216f2dc0625016db36be4b68db

    SHA256

    0602c92473831f0f29978a656e799b254cbe347f55674b0d69291f7b1ab416c1

    SHA512

    17bd0e8df1025c1dbe32c5d7058b451df4255619ceb89d0a1be167f3768838f2198885ab05b8793f6cb0de11d0b55baf87974dbb20149fbab66aff8de80baf7e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    b7544cdc99cc0c0bd728216c2dab3ae0

    SHA1

    2e54b21de34ec1a8ac6ef3e124ffd47aa7378192

    SHA256

    d49375c49933d854671fd5d711590e8c5b24806b07e1e9a5990520d25d35fb2f

    SHA512

    ea019fc4da198e6ba2d7cad38eb7bd5422624e26d7cc296bd97d816853a3a7d43952a2acf0983760780fa4bafb2aa778af7bd021d62f5c09da78c71d7cc4e5d3

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    f1c38fabb226575c085e2472d7136f3e

    SHA1

    251a3873ef5e7599a670cbb2221f70e3a29cb3ba

    SHA256

    30af36fca10fceb8bae3d76c0d20e53709522964bd3c17ff2ec33f96a198c7c4

    SHA512

    1f9b9891338b62b2246dd63de6d52e14e3d6ccbc2ea3d9e24735a2d61e36265f1a52ff2e09875f5f84a6b97327a649e26958bbd4cc82824809ed78be0cf80eda

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    5c1579dc8a1155b9f630e81364d5b09d

    SHA1

    c1a252325aaa98afb3fc50f2ba69325621dbd237

    SHA256

    f60111614bfdbd472da0da4270880e1c4a9c8b095e3938b9fe6608710ae8ecff

    SHA512

    9e71019a775b7909df270208639c96ed3be5a547fd3862d2a4fa93e702edada7b1ba509fbeec940df8fdf2bdf52aba9830b8cc87e1cd901d1390aa85a5c048cd

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    c17a2d0112d473c9178060eb7f2c9926

    SHA1

    6ec0a4906be4209c6da6e1f9449e218a70184db0

    SHA256

    4b76a8bddf3bcea6b1355e530d6988717fa379ee460034cceff0d64f0ad98b3b

    SHA512

    05552eee198ce7d231a16ea9e6a3335aa4b0c2468a8e2c14c49ea7f55a2d76618912861d269fb0b9dc95e6b9cf578cb553f61603e3d4f049c3487f60d003374c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    768ce53e0f4fccafb5eda0d5d0889a2c

    SHA1

    dd4d9a6234d3e172818e6d69d9457fc1b9af604b

    SHA256

    0d1c857531e7ef99c8bc872f1d4ca2d72ed2f16753faa77eb55f7b05fc4827c3

    SHA512

    bc5ef5acb6fb7b079e9ab3cbe41cede7a9901bbabc9acec7df11511bc8cf190275b5ab1fbf6d017f39f35c978d4ae454537ba987e4d045e7e27a9025decc5f46

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    ab59f862c267af1766d5fcf9497f8914

    SHA1

    3d07824d621a7d5183887e50814b7ec389d425e4

    SHA256

    bb31b4d4833eac6fdf0fa1f2b6c04e7d757444014318c229a5f0910cb8ddd61f

    SHA512

    28ccd1e590124e96b2eb3c87d0bc0cf8f4de392e5522d4b8bbf02c2e50401f3d5a17bf91a5ad33eaa20bd0715a8018fc6b192adee33c928730f96317b97c1c41

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    fe09e58832ced8416eb901e3b23f41f4

    SHA1

    3b9c62e4235dd6d171011c655c1ee93766e8d0aa

    SHA256

    14968457903e2a2c38065e8664faf2f7bbe709242c226626b5e5b0d17c95d762

    SHA512

    2b2ab95abdc4ae3ab212f647c48654c675268cf6a73f83455220fa205faacaa5f3431ca00ffd2c8080afbf820d88f79e407f15118f44e12786ae8324cfbe369f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    e2137b3350bdf21bc1a319368bdc76bd

    SHA1

    bfc987b3d45582fcb5f1ee77ee5d9eb1212d4d76

    SHA256

    d7e6bd06f591a89035f211d942f85ff3115eb1acf99768c740f738aefc748d8d

    SHA512

    811a2c732c166f240d2b9f9d033b3b2737452d9f12d557f6c877e8c0cf9d5483052dbe4232dc38932dfbd0a184126290e41d7bd464a71bf4b04a65f5e410861e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    015f34b23020a92db3acd7d5bb91b18f

    SHA1

    d086e5d823a53c94c2f7491d79abc48d9eaa99f8

    SHA256

    2977d48b281650eb2370a8e2fc87b042666202c2e835828e5f753f3604efafeb

    SHA512

    e2fa8e343f7a4d7560432e1a511806bddc453994d3c135d46206ed94f2210057c2ed1a20546a35b32a8b9a1fc5cd73b65a0c49105ee4e5c4cff8e716fcb3e3a0

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    9ef09912e09cc88966be82efc02a8f0e

    SHA1

    319be2beb40194f79d92ee4f2f61a54e71a613cf

    SHA256

    4d5f5537244da6fae7af6e9a5227ee30ab576d1502e4f9b752365089898b0a81

    SHA512

    291aa519ab61671e224aa4b34efbba4739d4db8286da464ee28f0a8652b20798fcc0e68c2f96abb965f5f3b3167373d6c9ed0b77dea5a8a7d6b4a12193b41da7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    9b51df5165d31c992bec52120ab2ee75

    SHA1

    823867767a13f1fb462d71fbe9202f40d43e1c85

    SHA256

    e13ca30e1eccb4f7f33837f5c639b43cea7f91620f2a0bc0010d0df4cb140697

    SHA512

    00590541181eb81d313f8163fb7f2b21591228b87720ff026d06abe2e549fa0976fe5f11bcaf04ed809dad927bff324bd24eabef090c05c50f613602fd56040d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    9eadb8ec04bb90bd2f4b2f948ce19073

    SHA1

    923f8aa99f493b704f62e3f8171b7d1d9bd29121

    SHA256

    8ca691de3e2fd2b49266c9640376c337a9795f437d76273dae4488305e3bb5b7

    SHA512

    9f46263b1da64c05fb9e24c4e3a628ab13b6eec14089ceca90048d0001aaf7b242eb30236d1fe35cd2d430a5eccba0b1e280483b857768faa9596402fd62876a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    83c3e1905a775035d94b8c39338b9459

    SHA1

    5b7bb4806f398d285bfc9da5972832bf9e16ca6f

    SHA256

    9eb826957821bb3aab704532943a634a87b71012e19b46b286ef78eb85984c72

    SHA512

    2e7308f7734a3a12c457b8bcbeca77ce07f441dd36750cba64685e47a12c92bc02d6d052ddbeb8695661617e7cea5b0fccbcd0a0b4a5aaf87b620e595e935552

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    fa92eb143bc6246dd023b358fddbcab0

    SHA1

    d53c26ddd3d2b283860fabb863da8c68d13cf7a9

    SHA256

    e60153b040cf79be4f08b8421e2963c53cf9b8a248d813305136bd653ea4e083

    SHA512

    73e1b3c2916747eb90f774a0a5201ddcbcf4bfaf7c1241c1948354bd9213b29a89f1cb2fd3243fbceaf72246607748fb4b9bde3a34f5c3a87b5c8eafaec71fa0

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    1817aaa42561f70ac8baa11cdba58c0d

    SHA1

    ab67b3ea37d7b2007505877f6b9c17bc5e8c5515

    SHA256

    dbb4f60d6d299d3d81549ef37e0795851519c0273c9a0454ee219e04e32d9494

    SHA512

    a18cef69ae0cd074d8d6991100ecaa78f10fce0ebffcc1bb39499ff3982cc819ee4bb9a282ca2903aa336d7648dfad79d3c98e627b5c9b716b413f0e855ad95c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    0c61a3791d0b2007b7add7ea149d0793

    SHA1

    2181f864dbe34dbbca2682ccf218e39203517677

    SHA256

    0f134abdbe15299cb8f8fb1feadef07c0a8be0dd6db30a12d56aac0bbf07e3d0

    SHA512

    a1629b64317b776c41a94bafad34b4d449ecf35490491e87f6fd0fb6d04a7bc8eb8eea9f0daebe33b4b9365df99127949fc85e57f3464e5c242e914ab37c7fbf

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    cfd15e5a619b309d7daaeb393af3005a

    SHA1

    1adc1f620fd1948d01e238d76505439912f85cc2

    SHA256

    ca2d5fc199e39ef97ae3433bb3cb19a4204fe7f1d5f86903e8d892d918b019ae

    SHA512

    569a32f21b4b9a5f5ec277baef9b8b7c0f146aa854f36ca66ff00e06f706a9f7f1749eeaf92fe6963fb693bf89cb78352f485b8ca3fa5127280c7bf0987b812d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    9f2a7c9341373b4a7ee9e9b8bfbbb98a

    SHA1

    195bafdef5c5de4d4854b51f0a0a27f290ac07bf

    SHA256

    44c0f8fcb0b50d39e045bc38c7a8349a8ff38dd49c01d88388141a6710ff8a9c

    SHA512

    b1a5dbf5c4f70bfed535618158c3c169db5b1274dc3bb6f59f900786eff34e19ac22e7c86bacc5865251b75b8e3fff1439100e11afe35d840e06f5313bd9dbf1

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\XD0Z7VMI\ovussaul[1].xml
    Filesize

    13B

    MD5

    c1ddea3ef6bbef3e7060a1a9ad89e4c5

    SHA1

    35e3224fcbd3e1af306f2b6a2c6bbea9b0867966

    SHA256

    b71e4d17274636b97179ba2d97c742735b6510eb54f22893d3a2daff2ceb28db

    SHA512

    6be8cec7c862afae5b37aa32dc5bb45912881a3276606da41bf808a4ef92c318b355e616bf45a257b995520d72b7c08752c0be445dceade5cf79f73480910fed

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\imagestore\re26ad0\imagestore.dat
    Filesize

    1KB

    MD5

    11a02072dfac6a174b26b790f959e03c

    SHA1

    11659fc33e0e52e197272a255646e0061b6ffec3

    SHA256

    97358f31b0378e00e02d67b38d9d9d1072dfb2ab0b784d13cf12465fc552c7d9

    SHA512

    59384f0e32f1a0f1a6b8db5e20b0fb1da2d25f35ebab5accebb5ffc971d9e82956e0818d367a20f15b4e6b90ac35257a98d19ebc1288022d359255666d9386fb

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\imagestore\re26ad0\imagestore.dat
    Filesize

    2KB

    MD5

    1f2b7d74ae1311cd6b585a708534a84f

    SHA1

    1636f669d810cffa7bf223cc8407683f09482e26

    SHA256

    23b3e805b0a236e168dca73cabbf0a7e3554be89ca7abebb5f53130c43bf0a8a

    SHA512

    db70ba2e61a031932d4efc908c484be190852c231061f6b03f1c64be623a0f43e49c040424e9a00e6ec09408fdf9830c3141ddc27d4b2f5c370bbdb40d7b4551

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\JB8Q1DZR\favicon[2].ico
    Filesize

    1KB

    MD5

    668ba1a9fa1890ba16cb8adc28d3dad8

    SHA1

    5e35223b2541265114eaf61b9da2556c812fea17

    SHA256

    7746cf1b553433822522f2dc432f55fe64eee1f1cf823ef6adfde02e58e1d7e2

    SHA512

    212aa3e6ea6a2dd1abc10d4a96b7be179e0e490da187641ae3be7b7c0c30b7272d8d5b37b1c6ca5c75732dfb35a8ee30fa97cdb35704b97eeee11a2163e53664

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\MPR7YYBV\favicon[1].ico
    Filesize

    1KB

    MD5

    91abe01116ab422c598e9c8af72cf4da

    SHA1

    0f2815fe8e067d48537ad168225ab4674271fa27

    SHA256

    b1d7aef06456fe7431124129a28f0138bb5fccfa4f4161e3087de23c005e5edc

    SHA512

    a4d5b20c3014153b6b382c43404917bd2cb5bd2a59bb1e981f5a19eb7dbdec185ace288e9700428d24e5ac623e45d04905e706f0c45a1642b1aa6c091213c23c

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab1509.tmp
    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar1770.tmp
    Filesize

    175KB

    MD5

    dd73cead4b93366cf3465c8cd32e2796

    SHA1

    74546226dfe9ceb8184651e920d1dbfb432b314e

    SHA256

    a6752b7851b591550e4625b832a393aabcc428de18d83e8593cd540f7d7cae22

    SHA512

    ce1bdd595065c94fa528badf4a6a8777893807d6789267612755df818ba6ffe55e4df429710aea29526ee4aa8ef20e25f2f05341da53992157d21ae032c0fb63

    Download Submit