Overview

overview

1

Static

static

1

b6b3373cc7...6.html

windows7-x64

1

b6b3373cc7...6.html

windows10-2004-x64

1

Analysis

  • max time kernel
    166s
  • max time network
    180s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    06/03/2024, 06:08

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    b6b3373cc72cfa504ea290765b31c596.html

  • Size

    87KB

  • MD5

    b6b3373cc72cfa504ea290765b31c596

  • SHA1

    9f9184c5333bf8c75a4478b26661d35071964f9a

  • SHA256

    c726ac7307b51bbb8c0ab999b40b116ea88fc5c731ef6340fbaf865dc68b5ffa

  • SHA512

    0e6515d5d51d452d79a555678b7f0081079de2a6bfe007594e47a6603037fa22750b7cd323c6e8fcf89c4a404e7a6098be78a7dfa0e40151d8800810e490c7ac

  • SSDEEP

    1536:EMwgr8VSeO3LBmt+9qKsF4TUnmiaS6cgRrYv9bu:DeO3LBmE9iFaUnm3+v9bu

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\b6b3373cc72cfa504ea290765b31c596.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2792
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2792 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2588

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015
          Filesize

          67KB

          MD5

          753df6889fd7410a2e9fe333da83a429

          SHA1

          3c425f16e8267186061dd48ac1c77c122962456e

          SHA256

          b42dc237e44cbc9a43400e7d3f9cbd406dbdefd62bfe87328f8663897d69df78

          SHA512

          9d56f79410ad0cf852c74c3ef9454e7ae86e80bdd6ff67773994b48ccac71142bcf5c90635da6a056e1406e81e64674db9584928e867c55b77b59e2851cf6444

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          79a8870272b7990c16adcc44563e63f2

          SHA1

          793327254f27d07ffe48cfbbb5ee49edc04bc1be

          SHA256

          abb4eef7106364560b9603dd39825524cfde30cbe35944cfb2f75675041f1083

          SHA512

          a502b912577f54134418c8dc55f4d32fb56cb94c465623ed8dd1b5dbed66dcc4057e6981ce83a85c19606d3255f602ad05a9f5a937323ff7b1040453ebe3ba71

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          ce9a723635249b2915930f5535e1321d

          SHA1

          c04215d51601d7138a4a02534a02e03ff5ab718a

          SHA256

          035c48e424e35e880945f46840212b1547d08125bf77acfd5cb784aaa9054f47

          SHA512

          89f16e4a0eb8c218bf92b80305d424f9fb4416610d4c0550c05cf06b1b80a58825fcc7ab23d33203121b97362debf76a1f92e5abac614599b0c39d5b5e8bfd4f

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          7ff7165ea5f574695b1d8c6f9826f7b9

          SHA1

          e59acc5f23ce2eb3e6439ac6d3950eefb1720d13

          SHA256

          ec0e89f57bf238a31cee95ba9d8510296afdb172fc8803075fce31ddc8220d6f

          SHA512

          e5d66dc692dd8d1f0fcbf8457273552f911b1850afecdff980ca63e8a7270185086a006a744adf775017d726d05524d65375ae5019ec70c6748af1cd1ce92539

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          0901f9a6b51896bc0ba79e3894abf4c8

          SHA1

          a64998d2e111bdab977cfe82b58134a8af3194b1

          SHA256

          61ce91899d2c8220c5c4d8b57c55c5c61a55ff66769fef83c345ac8fe823613b

          SHA512

          9a2bd95ea3558e17255c1d5fd6ebf4057b1f457b1b88c11951468cfcfe3d6ed97d3076d48e448a2428df146f287aa4d64edcc2c2e5111f20609bfe547da669c3

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          8468ecc6d6e80fc2631a3e13e4f7481e

          SHA1

          ba740bc9def94fa4a3e20e4c17a680c0f123b2aa

          SHA256

          b700792a5b9057875a200bdf191b9bf89df16e3ca0cf3395a99f23e2f35fbc74

          SHA512

          379bfbab3dfb2d8d39984aa656da97dfb58ce46f8465c9a0fea69e04f4c9adfb842806ead651d85c9ed6181e56e476b776c68c60e7fe0429571eab2b25e33d06

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          efd653780cd96d04aa28892e4b5d586f

          SHA1

          c3eb3c9eba2e16090cbc410ffa88d7f0922f039e

          SHA256

          7ad8e9bf66f98cc34670b26970995be683178667862a8fe41334a067518a3717

          SHA512

          5ba41d3dcc4a8479624617243b35b4c443117419c75dcbf3a3bdbd1c93f31dc3429853ef835b77a65533b3ecf5ceeede6d9882860d1c2221ae0ac74763fef2b3

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          8b4554c2f77c5dad1d70ef539971a205

          SHA1

          3502c9a7208b96773ea430a2d097bede5913ff31

          SHA256

          074557042e4a839273e1c7974e81599178484487b6e51a17875d47767213b571

          SHA512

          ac04d8cba7a86d8f2cc0619ec165e07e14a674ff1fa2b69dcacf0e44cf73c5e0b15c107bf1895c763bf085da2b7781b1d7f36c381cdf993de35ccca09eb4710e

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          510c871357a287ae7cb8dc77f46352c0

          SHA1

          edb0c47d0e3a11116149272c20c2f7d4c8237da6

          SHA256

          e654d4645529b78797e01b0f890be01b28411ca1a58c19f7c5490f2b3f67ce0c

          SHA512

          c282072e2116597102521b3bc20603dbfd9cf8fb4d0a5c86e71cb7480850ca462a8231351b01593cc0227168fd8bc7bbcf750a76ed114a112719742aa2bbe432

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          bcd303ef876c694f3a8198264f380e7b

          SHA1

          ad943a5cb0adadbd3bf7e9ee62f878a1a128ec59

          SHA256

          f59bd0ee1c74d0f9eb241c5edecb9a84b412b0adc7106c38155759d836d325a4

          SHA512

          ed07fc0dc7c29f16ad84b8ce3db5df22fc94908908493d07b8ac7918f1520f647a15f2a0dd481188819dc0fe2c9d7a5e480ce3a933d953bcb38fd50fe7043261

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          825662a9697a40ad4572390c398d2fe2

          SHA1

          37ffa7096ffbfdad1417e1441d4f0b4198dc9909

          SHA256

          fb8d48e8a5281da8e50197ecfb2e9a3a1f3c801fe74bd6244559aa8da1fca154

          SHA512

          2a6347a15010351e718b7abccef55706046bedf2cfc27c363d5bc27c86bb5af28ddf29b8525f10a1d365328bdc694f37cd21898275c143b27cab04b320cfd4cb

          Download Submit

        • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\23EIUNT7\geomap_iframe_css_64[1].htm
          Filesize

          46KB

          MD5

          f3ba01963235f45bec8c0015c6667ee6

          SHA1

          1ea56d85bd10919a557b046b0abbadffa36d8a80

          SHA256

          306c3aff055c53a50ada58477115ddad2d2909b6b12eb5351c735ef98349647e

          SHA512

          0dcd6ef74abb7d7a6d5c0e67d8404a5f8e45eba8b148c2e262eda3c67a7f4c540cc6f6189591aa6d57650000f5615e8378823500a22fd2198051ed856263446d

          Download Submit

        • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\23EIUNT7\loupe30[1].cur
          Filesize

          3KB

          MD5

          8d300e130519fc6dc5cf027b3307804c

          SHA1

          dca17fefa8bf60f4997a9b107cfcdb5a2f5864cb

          SHA256

          5f16ab826f87f46f60ad8c98c3bbed9a4273ff2da7843130b3036891251af5ed

          SHA512

          1e3bd73d6ede3a9277d38873e457db57f6af60365ab49a8d10003f4dd22e6abdb27388dfd54be440debad1da46b46e52753d465b94875df541b156626f5a214d

          Download Submit

        • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\HQQVSTWU\jquery-2.1.1[1].js
          Filesize

          241KB

          MD5

          7403060950f4a13be3b3dfde0490ee05

          SHA1

          8d55aabf2b76486cc311fdc553a3613cad46aa3f

          SHA256

          140ff438eaaede046f1ceba27579d16dc980595709391873fa9bf74d7dbe53ac

          SHA512

          ee8d83b5a07a12e0308ceca7f3abf84041d014d0572748ec967e64af79af6f123b6c2335cf5a68b5551cc28042b7828d010870ed54a69c80e9e843a1c4d233cf

          Download Submit

        • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\HQQVSTWU\jquery-ui.min[1].js
          Filesize

          232KB

          MD5

          e436a692a06f26c45eca6061e44095ea

          SHA1

          f9a30c981cb03c5bfa2ecad82bd2e450e8b9491b

          SHA256

          7846b5904b602bd64bea1eb4557c03b09dabc580b07f18b8d1567d1345f0a040

          SHA512

          1b09a98336cbc0c8ff0f535a457a3db3cd3902e4a724bb2e56563648ed1a36201dd84e63f45dcea80bb6edfe80a17db388379417386dec76341fb9eadbafa88c

          Download Submit

        • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\IT88KKGO\204402360-widget_css_bundle[1].css
          Filesize

          30KB

          MD5

          123e73e213c43b44b9b248dbfe063dcd

          SHA1

          766a241b6502e19de002c08ca1fefb413d3fc28f

          SHA256

          eac64365f691073d4103638d8087cf35fd9e91fb0f5b2f7a219ea2bc39f782b5

          SHA512

          829a32e2312bcd9edd4d58720a12a9017b005e95ead1e0ba245ce92fc5f9619226dfd986e1aaa6f047b5c4e2cc2c639a02ee7bdde7a85062e02141d217e05dd6

          Download Submit

        • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\IT88KKGO\cb=gapi[1].js
          Filesize

          133KB

          MD5

          c8be3350843695958a33474aeb3ea8f1

          SHA1

          ad92694d9b189ee479c1be438636e39247b216af

          SHA256

          22494eb4f5fc2ef8c229b9df2e171990687e4837282655145cca0fa302af1278

          SHA512

          54ba5d4076fe9fe4c4ac22f45cd7d2ebb4e8027d8b8f82580436dccbcd60fa2adbb948ff1234d9912c663bf1fb33ac834007850f5a3f2abfb96a7a4feb110bc8

          Download Submit

        • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\XJ0RD6PK\cb=gapi[1].js
          Filesize

          46KB

          MD5

          3f989c517506b9a5933389020b5fef6a

          SHA1

          713c0c37b8346b5e61d6bd766fce2b2ae18f36ed

          SHA256

          dda154f3369656fab506c3126defc449eb96a51232cb972312a9535b4d536f49

          SHA512

          c3d1d1f2711f92725ac11ad469d12b92b59d740af7ab4d4cc69eeffb3c29fd8da129b19365c6eca6aaf4971bd372f719e3f3380f425002ffa1f54a59231b74b4

          Download Submit

        • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\XJ0RD6PK\platform_gapi.iframes.style.common[1].js
          Filesize

          56KB

          MD5

          bf78e91c4b8c660626008446d6d30703

          SHA1

          db09dae5dda987e24027a540e47650cb970e31bf

          SHA256

          f554260f317f497231227b9def0144f0bf370ae71cdd7a54ac60d0ae1a56e096

          SHA512

          15cf262865ed7a9aee617939501430586460eea04599e7c09f5b223ecbebf454450e9e6ba93b81e6e1a35b1039d0e80039bd4d4c768dc72ae5e3bb3ca1f70fdf

          Download Submit

        • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\XJ0RD6PK\ptp[1].gif
          Filesize

          5B

          MD5

          fda44910deb1a460be4ac5d56d61d837

          SHA1

          f6d0c643351580307b2eaa6a7560e76965496bc7

          SHA256

          933b971c6388d594a23fa1559825db5bec8ade2db1240aa8fc9d0c684949e8c9

          SHA512

          57dda9aa7c29f960cd7948a4e4567844d3289fa729e9e388e7f4edcbdf16bf6a94536598b4f9ff8942849f1f96bd3c00bc24a75e748a36fbf2a145f63bf904c1

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\Cab6FB5.tmp
          Filesize

          65KB

          MD5

          ac05d27423a85adc1622c714f2cb6184

          SHA1

          b0fe2b1abddb97837ea0195be70ab2ff14d43198

          SHA256

          c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

          SHA512

          6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\Tar6FD7.tmp
          Filesize

          171KB

          MD5

          9c0c641c06238516f27941aa1166d427

          SHA1

          64cd549fb8cf014fcd9312aa7a5b023847b6c977

          SHA256

          4276af3669a141a59388bc56a87f6614d9a9bdddf560636c264219a7eb11256f

          SHA512

          936ed0c0b0a7ff8e606b1cc4175a1f9b3699748ccbba1c3aff96203033d2e9edabf090e5148370df42fbfc4e31d7229493706ff24f19ff42ff7bef74a6baad06

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\Tar724D.tmp
          Filesize

          175KB

          MD5

          dd73cead4b93366cf3465c8cd32e2796

          SHA1

          74546226dfe9ceb8184651e920d1dbfb432b314e

          SHA256

          a6752b7851b591550e4625b832a393aabcc428de18d83e8593cd540f7d7cae22

          SHA512

          ce1bdd595065c94fa528badf4a6a8777893807d6789267612755df818ba6ffe55e4df429710aea29526ee4aa8ef20e25f2f05341da53992157d21ae032c0fb63

          Download Submit