Overview

overview

1

Static

static

1

b8395b03f2...1.html

windows7-x64

1

b8395b03f2...1.html

windows10-2004-x64

1

Analysis

  • max time kernel
    139s
  • max time network
    150s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    06-03-2024 21:23

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    b8395b03f25335a08a6d8183e8ec1001.html

  • Size

    38KB

  • MD5

    b8395b03f25335a08a6d8183e8ec1001

  • SHA1

    330d72405a47b9b01f3fb44c8cf2ec1218e5336f

  • SHA256

    115438853feccd6858e3942f683ee054b10ed1058a5797a60b4ddce4041cc790

  • SHA512

    1b62ca56128a165ecfde57abcbb4484a0c180189224aed97a103a9e6d3f2d2d43ac92a9b0811a57869c117f131b1e2376a8c711b6c551090ee08a0d688b3e9b9

  • SSDEEP

    384:eCRQe4n2b0P2db57JJ/LVo2VXgSyE0YfxD7arebuCxoBoyMLrHCfzrp38GYZ:dRo2u2dTd5o2DyEPxVbuCxoBICfzr0

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\b8395b03f25335a08a6d8183e8ec1001.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2684
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2684 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious behavior: GetForegroundWindowSpam
      • Suspicious use of SetWindowsHookEx
      PID:2788

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015
    Filesize

    67KB

    MD5

    753df6889fd7410a2e9fe333da83a429

    SHA1

    3c425f16e8267186061dd48ac1c77c122962456e

    SHA256

    b42dc237e44cbc9a43400e7d3f9cbd406dbdefd62bfe87328f8663897d69df78

    SHA512

    9d56f79410ad0cf852c74c3ef9454e7ae86e80bdd6ff67773994b48ccac71142bcf5c90635da6a056e1406e81e64674db9584928e867c55b77b59e2851cf6444

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    9474bc7385741948bac28d1272ab6bcd

    SHA1

    426202d3b5e7b27a7e63d8e0351f6f5d458d2f27

    SHA256

    8f11f0c45fa8902d7bfc3403d55456fdcca5811ebf7e013373d95d87063fd148

    SHA512

    89cb21c54a52b1e1791d66f77e5925ed5b5aa71e859e073f313852818e440c5ea6528c78617344bfae7ca80e195ec726d419eac0eb29d4dd687f6585d7597c29

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    d348d4ca27575733da20c97f10911e05

    SHA1

    dad3d0b35e1ca019cd782c1a15c724e832233e87

    SHA256

    c4a2cec00b796cc6c39268ad94f1a6d3811ebc0c0bc7f8d16f51eec59ca05773

    SHA512

    468f1bc4b5d58db45c9fa0ae2f95bf8d04a9087cc9f85da8d4f3f38929660b8774dc979914e077fc12c5408114963c7b0ac2a58c05099723eb4c76aac14096ba

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    298c57c279fc8588d69ccb29ba2e5f75

    SHA1

    60f39ddd27c95550b607ab3dd7554930d5dae3e9

    SHA256

    d187dd82a7f3dea3d5e6671c148ec1866c2c02849f9e1896e3eb32f784bb5336

    SHA512

    cec954e92330c72f4ddfc5a66497c60694a7350bbcea969e05a479a7646c21f6fd44b5c8d0551e357fab887902cfdac8062e927e7affeb6b3e75a34a9ccd44ad

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    842b46547293ce333c40dcf88470ff09

    SHA1

    2ee27c9878394512083f73cc83acac0b7826d908

    SHA256

    a30f5f70a32acb46678afba5bef8c16f6a067d2d6e5583a831e80afba64f110c

    SHA512

    6c6aab0b127b768f6b1916a2304bbbccacc40d5530edbd4b7a4909ea09469e1182d76eed06ae691e1f4658264f61fb8570e6b6ffa70b87e9603ed726865180c2

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    7a3c02d8af2d2519c1d819f6a5db0c78

    SHA1

    811204b825fd90d21892aa49a4bc50b04a6d3474

    SHA256

    daef55a0df56bda276b63c9e634d66dbd03f377ffa47aed80c25c72c01bde2d7

    SHA512

    a7de5c2fb8e365e4e03e471def3914072095ebd1f642a52005167599b5e710cfe4e5c203e19e881f11d6d77a023720a3dea0df964a4067908550ca35a6444646

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    5e12d55b9f343fec6cffa8b5b20036c5

    SHA1

    5ed97ae62e24d5c425b50ceeb42158a550e41e2b

    SHA256

    34315084bac4b32eff52dd952cfa2f55ec269ec5c5d51338190e57984d8fd671

    SHA512

    5c7773bc44122d28b50313050873077f16da29b5420e763619a05c24d044ca0e8d1f53ea9764a777f25298b0968874544c13f77828571ddfa04ed77f0d451381

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    7b957dd8b049ab0185eb2e8622d12fcb

    SHA1

    fdaf3c5b1f38f1c7aab068fc32d13b05bbfd9d35

    SHA256

    916c88acda23bf7dd48d055218add4c11fac5a69999f7d3ed359a7af032f68f1

    SHA512

    3dbad7a832d6dfe9cfff25946e723e87b6dfb7cc3785d2d11f97cffcae639f76f85044f41bda8e352da3576691a8e5da28eba629b4e838d597f601249d72aba7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    42fb81f4f7efc0e5621260f48e15da39

    SHA1

    2b496980e8f70a6a5fd184fe4e8a4bedb4815157

    SHA256

    03f21974094a9c96594a16023b14314a287b65ea1ddd3de83435eb0d575a06c1

    SHA512

    5d966c851467910605ccb5c84988b658a5d58e3d0595381056da9efe45fa36c6375af71aedf90be4617ddb00e976600a1c9ee3db326e5daea33fca143ed215b3

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    ae3d0716d947ddb4c77c9f0ef86feccd

    SHA1

    f4937a8f6fd9d340915c5936c4128aedf51eb8bd

    SHA256

    104f39dda4ed575dd29d60d78ecc14e1e14cdc065bdac7151716ec6b1ab35140

    SHA512

    31890c88ff3973e5f1ee83c1d49056157ecacdeddbee82a8720ea9537495f3aff19a53c6e511becccaaf717be018389217a284579e5f79e58f5f6d3024dbcd0d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    3d4e6871eb9a106078ec7d081e0bea32

    SHA1

    34e163f897bffe4de576ee4c69761604b5db0a6b

    SHA256

    7d3e20feef41bfe6a6f13784c2acc6ebfaa8620120be0afdcaf4913232653219

    SHA512

    2882b05967690aca16b34418b7fd1dcc4e9cbf3473339d0920ec501642017d57b875168c36e2a7dd74230d8ed069e0bad4bb23f3310598d3a8da8bfe2cf7ecb3

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    d56feff5b0d2fb9392c93e9091b19672

    SHA1

    356111696f214bc3e723d2ef2657535a33c1a39f

    SHA256

    d06b9747a18ed2efccae72e65e64138924f444a75d36a412f78e76be88b07f15

    SHA512

    21915f0edd1f2cf78d93105a6aee0bdcec9712020354a271367e18755c6407b262ee444f28270e1fc28b8da869867f505ae06f4de1f827f6c36ed8d42ba0e147

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    04287fd62c34aea06438b7be03101217

    SHA1

    62119ca2320ae6d4c7c1eeb1488c7fa14cd72820

    SHA256

    78d5b43d0619b933083a283542885ae29e8dac56f01ad9a029e3fa9a0d066fd2

    SHA512

    53d1aa0ea906c6305a44f8b28acb3a3234e822c047e39f91a111d25dc4e0ca3f439af96db0f8af4310017f144c36f5542abe3c12f2a10ea93754fadf46af7e76

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    dd10a021dc0484c81cd78e31c6ec5d71

    SHA1

    b86a48eaa10e2d6b25ef4a0344adb9029291d1b7

    SHA256

    60d0cced03442ad3efe2582b55c09e36edca76915ca029e5e9213e09fd3dc383

    SHA512

    8422c23caa23f5def4d2471a65390bdf252c95bbfdad6dc96a767927e56669c529b5c7a41692f1bcb47cb07c7c7c7ecfb74a67bc4736da0ebf0a7ad06da4e2b5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    7e34823db4863800f9cf2f8905a9a4cc

    SHA1

    8dd2d1ca1a4df6f3bf39bcd3bd1e7c49407ae652

    SHA256

    09e59321cbb1717ceb941dde974bc9c272876d5a2448c6dbcbdc432f8a33bbdc

    SHA512

    0ca1c207b00d3adb15e6122bb53b2ca1aab074bfdd2c373c73e84b9b1f3809994d494f03fca0d386e382a138c4245279aa5f1a3cb370fbdcb1a740aefd4818f3

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\4JZQ5QLK\alert-window[1].js
    Filesize

    177KB

    MD5

    8e94c3cad07b650bcf428fb30a13aa4c

    SHA1

    d167c8127310173efa15b24d49e0175b3b43d33a

    SHA256

    e446cc2ae47dfac9d712829de2aa0f6f5f646d49ee7529275df52c6a0478fac4

    SHA512

    708d638dedc7f8007457609cad44edddb430fd8bfc0291873fc7f9713b0fcdfd31f41a0fbe2fd96f1c5c65f0357c7af0d85c1053e3e5f6a8fc7952c032876917

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\4JZQ5QLK\index[1].js
    Filesize

    691B

    MD5

    c286482cbeadd4cccd96de75fdb30dd7

    SHA1

    721efc564bde6d08d2f836d665dac92988f7a2a0

    SHA256

    035d2ab94f17e6901352cf1ff145f7e9dbb246856f87b02b44248c86096051f5

    SHA512

    35487acc10feaff17000819f7b3ec87f23d05b56ec2c8ecfe1b7475bf3c19d95a93b1b135f03c96c72d956a3fa33d7da3a2f34d05b0860458d71288da78f677d

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab21A5.tmp
    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar21A8.tmp
    Filesize

    171KB

    MD5

    9c0c641c06238516f27941aa1166d427

    SHA1

    64cd549fb8cf014fcd9312aa7a5b023847b6c977

    SHA256

    4276af3669a141a59388bc56a87f6614d9a9bdddf560636c264219a7eb11256f

    SHA512

    936ed0c0b0a7ff8e606b1cc4175a1f9b3699748ccbba1c3aff96203033d2e9edabf090e5148370df42fbfc4e31d7229493706ff24f19ff42ff7bef74a6baad06

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar22C7.tmp
    Filesize

    175KB

    MD5

    dd73cead4b93366cf3465c8cd32e2796

    SHA1

    74546226dfe9ceb8184651e920d1dbfb432b314e

    SHA256

    a6752b7851b591550e4625b832a393aabcc428de18d83e8593cd540f7d7cae22

    SHA512

    ce1bdd595065c94fa528badf4a6a8777893807d6789267612755df818ba6ffe55e4df429710aea29526ee4aa8ef20e25f2f05341da53992157d21ae032c0fb63

    Download Submit