Overview

overview

1

Static

static

1

c357385039...3.html

windows7-x64

1

c357385039...3.html

windows10-2004-x64

1

Analysis

  • max time kernel
    140s
  • max time network
    143s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    12/03/2024, 12:11

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    c3573850393fd285988a562219741273.html

  • Size

    133KB

  • MD5

    c3573850393fd285988a562219741273

  • SHA1

    2cc16a3863eaf273145103d8d7e53fb0fe168537

  • SHA256

    03793a182abbaef555b6a46dc1622a64a5e85536482b355cb23e050b6a7f3e3e

  • SHA512

    c175b8a465ffb8e4a9b89d3338aaf48b1b51847694b8c240339b6ca318829043b9b4258255dfec37c80f476f46f42b3504855fb994b77e0dce5f3de0b43de1a1

  • SSDEEP

    3072:TFLSF3zZP13G4k5QhLpOatVl0YoO7/fNbYaaLStR6xWUu/v66sbsGon4G59t9Vcz:JuV3G4k5QhL8atVPfNbYaaLStR6xWUu0

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\c3573850393fd285988a562219741273.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2728
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2728 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2560

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015
    Filesize

    67KB

    MD5

    753df6889fd7410a2e9fe333da83a429

    SHA1

    3c425f16e8267186061dd48ac1c77c122962456e

    SHA256

    b42dc237e44cbc9a43400e7d3f9cbd406dbdefd62bfe87328f8663897d69df78

    SHA512

    9d56f79410ad0cf852c74c3ef9454e7ae86e80bdd6ff67773994b48ccac71142bcf5c90635da6a056e1406e81e64674db9584928e867c55b77b59e2851cf6444

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    80cce575eacc1e2cce44a3d9957bc918

    SHA1

    d86d3384db53db1f083bbe92e55a09d318475b49

    SHA256

    8899dd8511ab8449c69f5049a11d73f8a1534d1f016c1de536aea5449beba992

    SHA512

    cfa93b33a53f17d5e0e624a26297269ee5732645b7bb44f05f1b29611a2935e668df797520db4a078cb8bc5156ec0b562b8b5731e5ccddc117afc36aa3b7a5a5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    8dbe980224b5b9bbeea5d83f06297fa3

    SHA1

    22378b40461ead47daacff4d432784eee7f8b743

    SHA256

    245eb643041ce55c385caf9737a980e1f875e1a9874e47b9fbc63085acb6bcc6

    SHA512

    990bdf99e0480a8dd8bcc150dd6c2893253dbeb472c1f26273a79de830fa8d245fc81a053078646c2bec78b2fa3f78a9cd1429fbaa6eda8dcbdc4bd02d80fe52

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    d7e97628cc2a1ac48b1f260770f9beaf

    SHA1

    846bef207260e17f3c10e49e5e91b1fba938e8f0

    SHA256

    4914f91c6edf6ea25de7abfa53f5a913ad3ee8ca2dcb767f1256367a2bfee5e7

    SHA512

    e8498d1356e067807d337959bcabcbacf047e8f2f31e08460851f66f9f1194ab565e17586b00c22b56c3fec0cb108e3b71cd330548ece01d6657401e4d54ad01

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    96272297edb7e7ef63a1236ac24b94b9

    SHA1

    7572dc1f4e926e25aff7b47e362e5deeae87ac10

    SHA256

    108683891b9e0e59e4bb0c8734c0ca571eb0bcbb937df152a34080da42a4b966

    SHA512

    4146ed2f72dafdb1c01a4d34a6baf8fed6269765b6b9c1f1890c75b9a7b5dbdbeec3a80e5727725c591b59ae5dfd20f197aa7b5433c8e7991f9766704dccb617

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    8a8c27b2da1d1c970db2c81937740c5f

    SHA1

    20807ebdfa88abe1d4371d6dcb24edd601128768

    SHA256

    cbbfd00d86fa9fc408edf08f59c10c43260ec13dabea7d65cccb30bf78c73a13

    SHA512

    085c608f0712b4d6549455eefb24cf70e1a3594de6b8e635cf8cdf7197d340909e32a24a81774d0bdd1ad5fe65df4deb83bf2304b9357ebe75567b86a84ae0a7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    1f6b6ab6889c9dfa6c94704ba475db54

    SHA1

    7a33c7ce7f973571dc552c3892108c6be3ff0309

    SHA256

    5397247922415221598b9055a9e05fb0cfd3e5ae7bc5768d92f8e9784e5e31e9

    SHA512

    b79b2fccbf9a91f2781bd0ddfeac14e35197d7e82dc685fcca0f7977fcafc12b299560d89a4f287c7e6a7cd1e107a388e6683795c3bd4c634cb77ad86bafef2c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    1068d5fd080e824c12f938241fa9fd31

    SHA1

    d9cd829e797d383245f3e98b54f6e5b320c178c0

    SHA256

    9926c4296dcf992004b6093b144fdc4aac447f9250d49c48ec955d6e650be5bc

    SHA512

    c281050aa2fdededa5d1b42e48aa8c71e493df8abf9201a128d6734c0e475e96eb42a76dd9b6921c4ec687518e0e4e57fe9c8611d437fe3cbdeef587713c76ba

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    df3c15bb4c7342b6da9181d5a9fb07ca

    SHA1

    516d7961b9ed48a77f547888c967c421ee47f7ae

    SHA256

    5276b8863545cd0abae172ef7827bd4d5a999673b5d1f7db993b810d5a08419b

    SHA512

    ddaf8a29f6c38a80d643ff92af11347fcb659643ddcb5c0ea9e611869b20500130557dc7d12221c469335fa605e5ad3ce68ade6e6a7cf859fe5a4f9c09318299

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    548ab97b23d2d13bf663439789d38c24

    SHA1

    ff2a4371afda655daa46180e81ba9eab7973f0c0

    SHA256

    f95ed787ad04b0e5d790fef154f81eb90e2dadf87e1d176eb80bcaab21356c25

    SHA512

    debfadd84c1615b8b4fa7ae643afb54aec60e0bc588a8fa23f8f32394d56af7331db28a94b51703b7b3da126de151e9d4c0202e7d22466393774c06f9efbab2c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    080380bd3a1fb6ee3da146642324dc76

    SHA1

    519925fcd820dc8132ec2894fc7a9e139cf2b15e

    SHA256

    d4b16affce8badfafff314514acff42718c284fd53354e0cfffa5a429568a639

    SHA512

    8bc223f7380063e61e83887d66948d3f545d8fa37d4575a9ba572d17f69437f41c37f969f10447cdade2a989657c5c3a07ce2c0ad0ca868e7d5b6b70cf888da1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    1c406337fc0671601f840c3c5da28d78

    SHA1

    ea28f8bf3aa1321af2ecd9a21628f851d6aa2dbd

    SHA256

    ecb9d8d89f3d0f8cac3ae0b6e5fb3e309a50d30420c3e667f300e4c7910b4229

    SHA512

    a36c419470851608571d234b6291b9f986e0d7360948f8b28b533ec27a2a468808fe2a599aea0d15dd62e0170f17d5df63ccb10edae7a03d9539f88b50955fe1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    78c0062516cd02cb79644e8db1f7ca09

    SHA1

    313c3dcb65eb4902f82f526e0819e47f6f27f229

    SHA256

    d54787fb72afb1459669b68c45794426f42ef7349f5757f0ec8094ac20ecfd65

    SHA512

    2bc8d3211a258e07b9a04adb57ebe393fdc19f43d7588cc5a8658b8ec586f4f1981aa0bc6162437b6bd38f4b503ae8b0ef8a9a96ed4673ca9cfce5e5d8402f3b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    abc77b65367c79f3ebcb806916ad491f

    SHA1

    c1f0df0dc679f08580ac47fa9606de898ee53a79

    SHA256

    89fcee90a91ee7491de21637cde0d942312e679bff42b64e7ea07e81e733081f

    SHA512

    f56844f174cf26686bcee7ad025981f68c18d59eac6a4cd70e7faf28fc6451e5880099dda8f53fc05821d2219b040bed9a131064351f643ee1a8779c25c82fb1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    e8c77b870142b21864d3d904f1fa48f9

    SHA1

    9d148ca0afbc8b740dbcf57eed4fbd9bc69b00f6

    SHA256

    88c9f0c11b3860ca6f9b29e9dc6bfca9e1f9833b1fc02496605530e7958c896c

    SHA512

    b915d9ce77aa5c4b6a42737cce491cca8f88a3e06feb690d9190138c93bda43314130ae7b7b05cc177d0980df5d953a37cb345f33f4ba9c118ef953b3ead9c4f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    f9f030a92397ad8d9fb69aea253dde9e

    SHA1

    c7580a924ad215e03b5a16f0a7ac8970cbdc2299

    SHA256

    2fde6ae1f57d3fbd17bcb216580414df37c7b967b506eee9ca52f25eadd41ff6

    SHA512

    4a29a010d091d2b0f5b6280edacf2157dc177af21b55d9c7c1281da837ed2fe1a327f98b81786e1cd3b712fbe30ff1f6ce6abaac153b9ca63b9566f8c502b6e0

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    44728b3574b4b5ea0eebfbb977922c71

    SHA1

    6cff90a2980b343276e37982675b35b25f25ad8c

    SHA256

    07270c610a1c0dfa679392a7d6656f8f274c64b1e0165716a26574088d7f6923

    SHA512

    339ed232ba6d74f3372ce78e79c1ceb4722e940fd30063a6efbd3875bae9c81b61d99742422bc5f42edab4ee0a7c98e56a409340d5a559e4a3c3c3a599808cb9

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    76fc2c585cf3d2773c59e56210d459b4

    SHA1

    e714c5c6f44fec62dbf9d66991201bbf34b5bbd1

    SHA256

    ef55106aeb74768a67567f46356b560650ba9fa3d9a96944bd74ec08625a4a3e

    SHA512

    72896e59a482945276f97603bba5cb36182346e64c5d5e036fd30b972ce91732cf924c833b60e54c80b2e0167d9ba4005d1e06b38707326b04116b121865aec9

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    6bc746a094843ce21fa5aab7f8aac512

    SHA1

    17e360e9200b615bf1521131ffec73046d62c677

    SHA256

    59d1e8a0983155bcdcb6b63489369f39613e0f04cddb50dceb6b44e60fdade36

    SHA512

    e3cb848c9ac28edb01fc1b67ed94ebc653f85d5314bb8d3689d9bb5a664604d0b88b8855b0af055f4f5ebd8d92f8e6935a43a68b20fd5e91c891f4882f496d68

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    b0870b9e0400000d88d0e7ccbfcfc09a

    SHA1

    4b8ee34042aad854804dd5ca32e9502a4a2a6bf0

    SHA256

    d2bbe821ea78ac388d20c93fb58fea6004615713391cb8ff758fcadbabcc62a0

    SHA512

    922467b6cf1cff2f13b5bc7d5be462c4be536ceb8a5463ca4f980da2695b73774d8b25a9cff5b1d52a01a5d825c322249b352ea1694d480bcc6a6ac4c39e36ce

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\8HPZEQOB\1005847222-postmessagerelay[1].js
    Filesize

    11KB

    MD5

    fc4f777baf3abc58239cbc8efe48c659

    SHA1

    32a32fb5bf485fa53a8256d24db6460e8eb1ccef

    SHA256

    fd632e2d64132d33c6becc1c4f1d35b828eddac1bf48c4cdfb326b53b161885f

    SHA512

    d223db5d31692f3f5289d6a8999aff916ffe12e16b5f4baf69716f31423de520c1056966152c906d34f8ba0f27cafa529dbaf0e0e503fff03d30bf656ce4b6d3

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\8HPZEQOB\cb=gapi[1].js
    Filesize

    133KB

    MD5

    c8be3350843695958a33474aeb3ea8f1

    SHA1

    ad92694d9b189ee479c1be438636e39247b216af

    SHA256

    22494eb4f5fc2ef8c229b9df2e171990687e4837282655145cca0fa302af1278

    SHA512

    54ba5d4076fe9fe4c4ac22f45cd7d2ebb4e8027d8b8f82580436dccbcd60fa2adbb948ff1234d9912c663bf1fb33ac834007850f5a3f2abfb96a7a4feb110bc8

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\8HPZEQOB\plusone[1].js
    Filesize

    56KB

    MD5

    b9dd4bc0c774f6e47fc7f6f84318d3bd

    SHA1

    71e659af69facf4538bde88422c6ac7574c3bb5c

    SHA256

    e0f79422a5e14ac8ca345540ab58da18651216e375c4fe02143496bd9dc046dd

    SHA512

    419b21dd145dab3ab4b543c87fad7fed6281c2300ac7f1cfef1119703e5ee97930f1c07353b2a1274d4879b481bb673ce3566306c9b0b91b1e573ee43486b342

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\8HPZEQOB\rpc_shindig_random[1].js
    Filesize

    17KB

    MD5

    67d30bd5193f15ae8ee6128538edd798

    SHA1

    ab010651bb8f61f38d2659fd9d4026c192208a84

    SHA256

    09308ada60e95c434dee4dd6e8dd7a4f0800bd446a770fd2aa915dc178ec7de3

    SHA512

    1af993b336babcaf70031d8a1e416ec698a84c49ad7454ecd6d87d2c64577536c0c85460c90bd9c07bfb7404acd52fcd8efdf5be96244ae58df7a6b031e11d21

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\KS3HRGDJ\6363URUZ.js
    Filesize

    157B

    MD5

    67e216a27dda24bdcb086c2385b0cb99

    SHA1

    17141c80f5d32bec3691c5ab24741d8b7dd5f0c6

    SHA256

    9dc433b2142d3ba0803fcffa53f19d34da26996d20c829df6d694bc887325dd7

    SHA512

    802319543dc64cb011bc2684004e878a842b73aa55e4da1141ccb8650cbf42fabbf2b46c730760bbfcc7a140e11700244b9f5da78bafe9fca7ec7825c12b4255

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab5A62.tmp
    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar5D46.tmp
    Filesize

    175KB

    MD5

    dd73cead4b93366cf3465c8cd32e2796

    SHA1

    74546226dfe9ceb8184651e920d1dbfb432b314e

    SHA256

    a6752b7851b591550e4625b832a393aabcc428de18d83e8593cd540f7d7cae22

    SHA512

    ce1bdd595065c94fa528badf4a6a8777893807d6789267612755df818ba6ffe55e4df429710aea29526ee4aa8ef20e25f2f05341da53992157d21ae032c0fb63

    Download Submit