Overview

overview

1

Static

static

1

redirect.html

windows7-x64

1

redirect.html

windows10-2004-x64

1

Analysis

  • max time kernel
    134s
  • max time network
    127s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    08-03-2024 16:51

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    redirect.html

  • Size

    6KB

  • MD5

    ce88b4661ce7f5b8169d45d91fb05444

  • SHA1

    d0088b6abe8e594c2e24b818c2f9300305473eef

  • SHA256

    20812c928ee8f115941ee184a3f16a0e3ad50444823a3806613e388f7920340f

  • SHA512

    9acd37bbe897b6dab916c0ff5ed2426f7191c1f40be9f653a57712658f76885b8caf34b5fb8a411e6c4140bd200af5db2933d10776c7adbb1cd56c267364aa11

  • SSDEEP

    192:dHHLxX7777/77QF74yr90Lod4BYCIpXOHXEA:dHr5HYh0+CIpXOHXd

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\redirect.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2208
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2208 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2528

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015
    Filesize

    67KB

    MD5

    753df6889fd7410a2e9fe333da83a429

    SHA1

    3c425f16e8267186061dd48ac1c77c122962456e

    SHA256

    b42dc237e44cbc9a43400e7d3f9cbd406dbdefd62bfe87328f8663897d69df78

    SHA512

    9d56f79410ad0cf852c74c3ef9454e7ae86e80bdd6ff67773994b48ccac71142bcf5c90635da6a056e1406e81e64674db9584928e867c55b77b59e2851cf6444

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    ea4815bf81b752068900c63b2483bb35

    SHA1

    1adffb213d4b954797aca24d5073adb10733a65b

    SHA256

    2a0b2ade1405d471774ae9e098af839894dcc7b5aec822e303c6e44be05052c5

    SHA512

    386b71d6006049fac5d8606e57b30c7be31cbac87185f0b8c1e9c23e8f429287882f2f3f5aaf50e8be3638fa5ab6573f9dd48a947cc8330ebfd3d902d97952a1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    baa8d67381a3d3478a33060eeaf8e5c4

    SHA1

    337f236a78669d6c3c456a8b04e0e302ac33ddca

    SHA256

    081141eaacfdc85cc7c1a97a4d808209529fc41c3f6750574d897a42af18bd36

    SHA512

    2fb54408b1f637b54951f628833f8943b1a6446932745d7e068947db90a32362618fa25003a70ab5961a18e551db1cb3944829710780c59e075ee49cdb78a694

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    b569b60fa1ff8156a7574c9f6a061f41

    SHA1

    fe7fa7810a6ee768ee5bf5c3a19b0a45ecd55b62

    SHA256

    692f94cfc7fef57b52917b9b9d7243d951f2ef23c2e8b21066af81a446e6a8f6

    SHA512

    438bfc4a3256128555ab55fd5deb01fd5e39c8dd2eb5d40b0433804178c261edeb9910baa022fbb76d25a407a24419794b44c93cb37cd3b0e3a4200a9643c367

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    535a4093e6fe73997e32338e35b3d6d6

    SHA1

    ca137f0199e60975fc75b22293aaf4155060ff21

    SHA256

    5c0b4874d983e2af899fba82ee792dfbfe3814ab3ebe3927a0f957354b78fa44

    SHA512

    e4d0475eb5f18841011141613d5b9615b91ab07ec6d784a3681ad036d2da96f83f251ad76c5f383380048dd73ddc03d1a623deab9ee2aecf32fbe504d290b13c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    39ebd02624d3e448822f6a926412cd5d

    SHA1

    c390f6b0c252f1a87c3911e38c259eb85d5a6509

    SHA256

    1698bad1f5243243acc38da5f6aec0a435380a47aa36e7f899e2f17beef1da35

    SHA512

    1a2faf6f3c4546b13d73053ffe7805e61df810229f8a45b9c0d1c47addbe3f6d15e73e436ab03c53f16908f066045fc704f363c26bb3674aa958148a118d093b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    19fc6753262b5d17ff1d5e7124accb18

    SHA1

    1bee6389b9525f20626b5480b9152b705cefde1f

    SHA256

    09681c923c40a6070a5c284d7d5975b0b194082c59121eaab2763f5b51f1f439

    SHA512

    d812e41d091788a8af44e939188ecacb1768d4c0340ef74a277c016427ede124083b707fcbcb6096ec9ef72a7907718ebb511dbae48bc42efe6cbc1509d0fb3a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    3d756fab4f081c76f386f0bee0feaf42

    SHA1

    dfa316bc7d4c855b722bd013d349ab13b51e98e1

    SHA256

    5062e02b491480066c315cb46a93ce1638334a53c46a57be8acb4e53ccbb4035

    SHA512

    76226dc366d33fc4575bf3e894db241ab33f91b221c7ce916591bd50f2720e7c395d79da8b8e62aa0935ad9871200f29ce3cb962dafd32c17127f00fca487321

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    8b6e3227a595a5a75944729dc1bfba20

    SHA1

    62966be178057116edbed47fdb26f5e65c769a00

    SHA256

    5690b9b73e322493a6d04c50d4386345df71f6a7a4723ea20fe87475cbdcd7c3

    SHA512

    ef422f3b936eddadbafeb19d3cbaf3bae21a26e6be9a226f78141d6874a07a1e3a3f5ecb739616bfecb35d56a8ca342af4aff88a3606a6e56cfddef5e268b1f8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    f55dedc05786a8272f193c1b1347e235

    SHA1

    252020bd842ac8c6a547f8145412ea44a814710b

    SHA256

    9a7dc47f0d9d77b45059e84f99b4a7e69fd8e20e51f4ba7fb8af7bf684dc68d1

    SHA512

    946eb38af4a35a2710c43105045964b205b22e4ada2625d6f911b66b3b045917ab0384142541a6625f5e02ecb13f566f46bc91de8c23c0677566eee6ca9a648d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    be556a851db794af8ae74c8ade55c833

    SHA1

    6092b6b5fc6d7d1f176f31843b34b193304ecf80

    SHA256

    1329a4c211983f0021b7f00c103a08401a5897aef3b163ba410c4b5ee8f789d8

    SHA512

    1ce54914ce18a845d67ebd3cc64bf3b8baa76676de81c0d29926483e99e3fb5a2df193df2e269181bc8b36e63a7327d594df176230ffe482cbd117d3b0b9a8ba

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    9881b2f652bef38afd49d6e0d0d6ed0e

    SHA1

    ef2e17c598b99c8b461ea678ba071793a8d9184c

    SHA256

    54a028fd04751fd77fe9b3a8bcdd40af68bb4e118ed21ad75b1f12dc03b67124

    SHA512

    74b40416d6b9661e7d349190d0a83a50ebc2cf1edb9deac2b3fa7c4954d96cd27b37070bdaa047416d68413c535f04180c4cd714daec7448e2d8060015b69377

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    f60bb01ae9e347a21f8e407213a38904

    SHA1

    fcf0583bf36febc876903dd1468676a638ccff65

    SHA256

    7b4659f3de8cec17054380cb6c4997242cc4e6dfbf9f84ea59cd30107574ed98

    SHA512

    9cf7e43ee6d7de349cff5b9b01bcd222b3378fad8ed0b9a32ced53dffaf2bf24b9453a81a397f03f092dfe6a1a9c1e8f9fd9cfd83434fd8b593b4293e5d2a65e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    09896c3ff06727fd5b56afd6ff71d04a

    SHA1

    3830d34ef4d747c7b6bd7add4dcdabd3b3e7e397

    SHA256

    0200c24190661a797a93ef876420cea4de970d92df1777e8b3e0e1d46129b251

    SHA512

    8348501ea2656367fb58e2eb97ac0ddc075623c82cc085ada80f2ac9e50639efa840faaf1da37e5cc38ed35462f141d648ff95f4dbd9d83d55281e585c7dd04c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    88d565aef4da3b68cedae607d277ef73

    SHA1

    c50b6fe511d1ea3256d53bf2e96e949691eb059d

    SHA256

    65098372a654451f272d97ea6fdabfeb77c1324df7877a658a55d8f6c01c0e2b

    SHA512

    8dca577cf01b34d00804c3601b42410ea067508b8ca5fb5bc32fcf5ae1647b1b9312168747b60a4a051dba5ae008f6532eba3794713c0812afedb415f6beb54b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    2302c0abe8430e43455a5092daceeafa

    SHA1

    70a2a37b4c067ad14db222a80ed230665a248909

    SHA256

    54ac3a035dd8799ee0a474024eca71ce93ca78c119d5908f614e1db1cd89e2cd

    SHA512

    4e59db42d9750e814e3aa02b222a8f97e377b3dfec9884cc295a695eec5521b5bacaccbe708c73f49ecf620f28663b0c1f29b1009480baac3c430f6f66d42ff5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    8e2e390fa3e5ec2509201ecb21bb0865

    SHA1

    6a3007e21bb6572f61fd1b12b837847abc2ee2f1

    SHA256

    c323d2afcdc10665f7e29ac0794fc4da1b0a63a9f010a51408ba14b8d9434a52

    SHA512

    5a70763dbb6d583ce1838273d39d436692579a7cdb3315b879df33bce8f60e7b490b4fbb4e3c60547dda266099a8cff1b329abdd388fbc370fd1f658461a4dcc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    18383c1c5e457e3bf45de10bee9f5c22

    SHA1

    89a92415ff38d3fc420bf31d0630efce3ab08a55

    SHA256

    027fb6ffbd22f84222f6f423ea932155e758edd444955fbe809ed93f33cdb82c

    SHA512

    2deac959fef4ee89b890cb0864cd9e2614f3cff857677afae8261c943066f58e641e1e1cb1da28c6dbd4dddfc7d18f7a61fb2ed2240ca01fa819c82f3a222fa6

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    0d28d495b16bf90296d114bdfc4a1413

    SHA1

    9e4d41e431dd4b1354abff2e8533c6d650d136ac

    SHA256

    293bd570aac1c9cca1c4630f395ae1323461fcef712c37cfed5a017a3b8341e3

    SHA512

    1b266aa7cafae59b36d61b3bdad0c7cd846d175e4c40b71c1bc0a588fbea543a4e8fbd5144a15e97fe41f4c1f4770a178e9d5b8d9080fd6bd9854e11fcbd87c9

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    08dcae9b7fc31d6c247161492720008c

    SHA1

    dfed0611c2c6889fefef1350fffbdedef0b47e4a

    SHA256

    108d29215777a25ca56c2ace085aee6b2283d096fa2bf69a8758b4dab8408ac1

    SHA512

    45f487d3233fd7004063c24cf651a1d830c3be8253791a6c2a8a7d0991754a5cf5d196ea6859ccee1dc8b2c55bb22ef636dc8ceb92bfcb8175086bae738658f6

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab1F35.tmp
    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar1F38.tmp
    Filesize

    171KB

    MD5

    9c0c641c06238516f27941aa1166d427

    SHA1

    64cd549fb8cf014fcd9312aa7a5b023847b6c977

    SHA256

    4276af3669a141a59388bc56a87f6614d9a9bdddf560636c264219a7eb11256f

    SHA512

    936ed0c0b0a7ff8e606b1cc4175a1f9b3699748ccbba1c3aff96203033d2e9edabf090e5148370df42fbfc4e31d7229493706ff24f19ff42ff7bef74a6baad06

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar2047.tmp
    Filesize

    175KB

    MD5

    dd73cead4b93366cf3465c8cd32e2796

    SHA1

    74546226dfe9ceb8184651e920d1dbfb432b314e

    SHA256

    a6752b7851b591550e4625b832a393aabcc428de18d83e8593cd540f7d7cae22

    SHA512

    ce1bdd595065c94fa528badf4a6a8777893807d6789267612755df818ba6ffe55e4df429710aea29526ee4aa8ef20e25f2f05341da53992157d21ae032c0fb63

    Download Submit