Analysis

  • max time kernel
    120s
  • max time network
    134s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    06/03/2024, 18:10

General

  • Target

    b80b49275e7d8346174b797b56c44917.html

  • Size

    35KB

  • MD5

    b80b49275e7d8346174b797b56c44917

  • SHA1

    5cab2760675ece318bcb88ed4e83a4210bf416c4

  • SHA256

    e244a7c1e0dc565510e7482db51f0553069db6dbadb3e6a084e2282d3e74d77d

  • SHA512

    9f003ae87cc7f8fcc6181a857f213d635c2e80527b01cd207f87eaa303da79f8d4c974b20511f5ff4bb4b2a9a92db5f88222670a09fa077aad7bf7c49fc8b5d8

  • SSDEEP

    384:XMxvtaeBssdbWWG1jCNvxvRc98RWFehVa668:cxUeesJvc6vR88ie/

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\b80b49275e7d8346174b797b56c44917.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1412
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1412 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious behavior: GetForegroundWindowSpam
      • Suspicious use of SetWindowsHookEx
      PID:2240

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015

          Filesize

          67KB

          MD5

          753df6889fd7410a2e9fe333da83a429

          SHA1

          3c425f16e8267186061dd48ac1c77c122962456e

          SHA256

          b42dc237e44cbc9a43400e7d3f9cbd406dbdefd62bfe87328f8663897d69df78

          SHA512

          9d56f79410ad0cf852c74c3ef9454e7ae86e80bdd6ff67773994b48ccac71142bcf5c90635da6a056e1406e81e64674db9584928e867c55b77b59e2851cf6444

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          99308bee6a334c28c13a7ae763e70745

          SHA1

          d45ce09b84c41469bb3558d8fe974fe066e22ddd

          SHA256

          c5f2e81625878c29f574beffbcc5f8923073bba97a1d4ddfda9c681c6ca8efa0

          SHA512

          3c276aae7e4e0a59e22c1a77d014200555e4a8807e4d02418a994138c43105bef5288ae14b7cc6ef618ec7af6c5229f20d60243f5ce65fdde2e57e3efcac0092

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          e794046329003cacbbeaa3c6e6e9be47

          SHA1

          523b485cbe99fa4dc36ea16209683130c4abc0a4

          SHA256

          891b4c30c599d1007605c984dd188b14b8861ebc83bd96d7e23caae786255099

          SHA512

          db2ae903bf761867f1abb1139c666c259c57ba60c3467ec53c9f6794cafc9c89c4049923aed74e77c4323bcce7a9b6cda4c1ac561cab006ee4f7e9bea2b27c59

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          d47eceacb91fa2e25c8ee754b3fdf31a

          SHA1

          e0934fdb3f9fa54a9dda90a6d7096672356c5897

          SHA256

          1a0c5fd557f3e80d46d00ddba928ea699e92ec3173cb743fa7618af4e3d3d7f0

          SHA512

          f981349242bacb8e4c05357a99a81fd54030a1140a5f8f69197d75e8b831c4459eba6f13b96bdf06254fb05d673c5dfdbb0b9dc562f6e8add3e1f67661d68c37

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          f87c3c681bf62f43bd745e9d0f2e370d

          SHA1

          174dc93fd7a75bd503be7de3c431a357503b4cb8

          SHA256

          a55f74b16b410389c52efdfb94ba9a15b21732c2398f5c0042e25f635905d4a1

          SHA512

          2aef7461ae7f1a25f938424c3962ecc846b559d39233698b82cdabc1cab3bbd423e0f3e7c1f6aac1a2cebf5f654c475dbbf5c49acd07b4513124e8428eca4c31

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          81ce4aea46603315f83a64b91df26388

          SHA1

          04dd11da6ba5be4108c22fe417066b2e11ece794

          SHA256

          1f0326ef20d944d87b745330f706a76cadcd2bca3daaad5b4a8241c9eddf689a

          SHA512

          9a8844322211187f224b63c0ccf3c11a93bae83bcb13b003334a1aa0647bd1f4473e8dbd841bf25e8752fe7f0558ac92591b6c5fb36b21ab28d1d4968bd11e93

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          c41b52ee40285c02629a329502f15897

          SHA1

          1e5461515997aebbbe520f3ae4bc3615e1ab2126

          SHA256

          094ccba8c2000a5c5226551369e717f26af599617429f9c1f8cad8d09afa17a4

          SHA512

          1afbf91fcb953260b18350ae1a4e2c9f5faabc6fbb1f04a42588f21a57fbb13cf710a8d1db68d9e8334f2651ab5daa30044416c5da8453f003d86b903aa1d4d0

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          a9113f046973546c0f60ae334019baf5

          SHA1

          5be7859c88af993ccca24825a81bf4ce05964f5e

          SHA256

          90e6fca3a457327425d04b786afe12a15dc3a90c4628f01ef5e47901dc8bb7b8

          SHA512

          2ff6be5981386374e76ca1f3300922132c9e4c1e2064da34bf8a773ccc039a53a4d6445145560838e5288a084ee08c417b8fdf55ecc757eaf20aa69f067c9036

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          29affe757a79f10d487f155a3327ac6b

          SHA1

          ae12294ff073eb053fe81b1df5727586c1c2ddb3

          SHA256

          615fc0bc1c85eb8d1f3c3dc19df60ead6cefdf30b06821dc400e022626610dea

          SHA512

          ad5c438a955f967bb1debba3d098c30f30134ef608373a6aae6c7422951b485ae311cbc841a79267902964e0cfda1eb9f4a4f73313079756caeda9d186dd8793

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          20f8104094f4f61659a287432b7f67da

          SHA1

          54bff57d9d73799a4fecfef487aa883f76087abb

          SHA256

          46bf183e7fa13b545ccc8e0997d0f00aa9711852653c310583b389cfe106799d

          SHA512

          a143a27c5c8d3ab79658c37969dd651f77c94faf22968578c12d8e1f97c2eaa511480e1b2afd34b334540acb150d440bd8ef8d8431a60fab82d6b7cb87ca720d

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          a56b1b433b38184dac77e86f03eb2749

          SHA1

          6e436bf2ac301bca53e5dddb4c9325b0e9805e39

          SHA256

          9ebfeb8a5ccd6e751f2493a3e6942c1d7927e5d91ed7b3daca84af9bd7ab3617

          SHA512

          c5d5d645d10e8a32e4cd34c3e71b44dc5ca8026d151adcee4c6bd09e04bca4863ff579288ed6c5b1be3f4a93e89fa4140c2c36c5d655c9ff2d310212c9a7abca

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          6a7752518ce063459d4fd4f3c23d5a0c

          SHA1

          61ed20534932246872279e84b7c4df962800e39c

          SHA256

          1c43230a9931f1c2d8ecce80d24d572c99e509f2dfd1dc28a4f47b40d92f2e70

          SHA512

          0609872e751822447e1e95ede7a0c5eef8afad11adbd762942bc65176db74fd49e5ca71a59398844410f90717e0988f9ee6131dd7925912caa63433985ab3ca2

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          9c8163069b051bd83f6b1b88e8c86cbd

          SHA1

          a7c3244fc160aa89aed640cb03b3c2f28ac5af5e

          SHA256

          d775291debdecb22a442410164ba16f177c5b9d0525b502101929f4641d08278

          SHA512

          6fddac86bda787f94a7e93c7451265fa5ab6003044bea985b61e26672027ed381e749195a26c8e445052068965a2c61753e26e8fa6c7b30c7735e637c33be664

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          1776867ae43e4bd9bbd7238f57e0ce61

          SHA1

          f45d1da8413d417b14627a38b364ea7e0fcbfaab

          SHA256

          b8ac42d7bd8f35c6d44530fb5a4a82b4295693e45d587973163b0410ce93f7fc

          SHA512

          38c5bb5dd77cdf2e06c02b820c15ef5a02464cbd4e3df39e0b023a16099afb0276c1003cac5b64d5403267012bc8fc5f333c58fc057aa71983228db89a832587

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          e6905823d53b3c4be1b828a5cb2cf365

          SHA1

          2090fe78f692bf0db24e93d5fddb92143c7e325f

          SHA256

          ed1d5b5840ce3485202f477ab0d919d9bf8d53f45afa87689117ea9024306d84

          SHA512

          0eb3f1f0db8072d1fd24c918cf6d6589c350d7164944c8a3a9cd8b011d9a26389d493dadbb7d4f1de1f85f819593cd2405ce8c0d84bbebf7bf546fa32e6ad217

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          81a5964977b9824c1837445dd4f85666

          SHA1

          ad9add6d06e7858f8b06282b1e4feb4fb016783e

          SHA256

          f483b715ed3e64683202ab55681e3e84f9bc761496e1be892f69e9afa53dbab8

          SHA512

          228b6cfc8701c60c1ec40091619a1094841ba0f061507bc48bd43836fb3e118da9ac33c771bf68495731070f3facf4b37928fa404479630a0532d831a4428a05

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          817c8a18710f5178d0c093808e0d6428

          SHA1

          583b249c0096bacedc2d2197631043f808e4cb5b

          SHA256

          44d2c2579403c69d8c10251ed6f5968833c741b8361d92947b9bda24c6ee8338

          SHA512

          0c03b64066384054fc761e614b9f50517347f41ab651cc464da889a20c69e05cbd1524dc26df3c1bd4794514035d5e34fe5d640a83db5c771352b6d35f1dcd3a

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          756c9a2be435c1722544fcbf4e76a047

          SHA1

          4b7e8d68731e85a437fbe742630798a72c600590

          SHA256

          10aefa8fb9c0597d7b6dcc2cf03fc7d62833548a36b5c0a6c5d5923a84aee510

          SHA512

          18aff9b3def857304813751216aed40d189d8cf48b9206b05626e73e99e480b0291fecc27f1df1a94fdb54e8c783cc852ff4d1d3a2edda2a0d276efa0abc2654

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          d5357fddd70501a880165d5121a0bd3b

          SHA1

          738def7e4649b8f845cd1dd2ed57f356b0cc4ddc

          SHA256

          d4a142dc13bb1f00ab606d41f738dabe0d1a2b7d66551549bdd9b414f528ba76

          SHA512

          53a75f2d4d87573794427651eb391327b318d87b1f59f3d849de7c3b104724b443e215d92c2bb2d35347efe67d1231801bf5accc7a54c5ed18bf34cc6eb9dd21

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          daa98004bf9e750a1659d91acfb2bf0d

          SHA1

          7b7ebf3407fd4968a0cdcf561699e3ae4094d481

          SHA256

          08e93d10307f21e715dcf9aa5782fbec38934437d69e25cf6dc42721bb62f233

          SHA512

          251138e98bfdbcd7b26ee9cf135f498b6a18ee68ab94f5bf41dd100e4cf6034e58a94d6c69592da163493601931e414b42ce7025510faca448e948dda69ab420

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          7b7a862bbedcd2a242f520c831a7a058

          SHA1

          22dbd94dfb224d966e97f5d47d5876137d8e8e92

          SHA256

          9e5f05d37fb1fb7e0d2d59e3d12ab79dde033c7a5a173ed7037a7de905541cd0

          SHA512

          c55da23481f409713dc185b8a8937a08ee4690302a13e2df5f1b9022c397c36a21f994e450c2b4f4a715cdbf68c5d4d705aa54c63de075718f891301cd155c5c

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          684886005558f606ae8aefbc04058adc

          SHA1

          7a1752c1146199196db2eba526c257b55276a6c0

          SHA256

          5f2ce8c5deb727acfbb15716452dc8f0546a5f686f00491f8d365039c1a46d25

          SHA512

          5c1044b6574ad16df6174782ade7f82ca6df7a4c7fe20991f9ee890d77db2e0427ff7b957141d4ce755ef772edcbb442cbba25e5353f5f59bf6b2f37495c0583

        • C:\Users\Admin\AppData\Local\Temp\Cab7217.tmp

          Filesize

          65KB

          MD5

          ac05d27423a85adc1622c714f2cb6184

          SHA1

          b0fe2b1abddb97837ea0195be70ab2ff14d43198

          SHA256

          c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

          SHA512

          6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

        • C:\Users\Admin\AppData\Local\Temp\Tar7395.tmp

          Filesize

          175KB

          MD5

          dd73cead4b93366cf3465c8cd32e2796

          SHA1

          74546226dfe9ceb8184651e920d1dbfb432b314e

          SHA256

          a6752b7851b591550e4625b832a393aabcc428de18d83e8593cd540f7d7cae22

          SHA512

          ce1bdd595065c94fa528badf4a6a8777893807d6789267612755df818ba6ffe55e4df429710aea29526ee4aa8ef20e25f2f05341da53992157d21ae032c0fb63