Analysis

  • max time kernel
    142s
  • max time network
    145s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    13-03-2024 00:55

General

  • Target

    c48dffbc599447192225a409ec3f2223.html

  • Size

    10KB

  • MD5

    c48dffbc599447192225a409ec3f2223

  • SHA1

    a268ef89fccb656a8229d79ddc730e2a5c981d48

  • SHA256

    e0025546bcc896c9d158e9231903413c6e1b850d119e295d83ba32e808a4d71c

  • SHA512

    1305352621f0693856f1229c94688dd6bbeefcbdd03c53ad5ea6ce3a7b320ee512c06785be07b0789806e2d6d1ecbcfbbe5ee12d19b0dbfc697cf435e1769136

  • SSDEEP

    96:uzVs+ux7gULLY1k9o84d12ef7CSTUkGT/kvSxp5DnQ7Yog+gQ30lVHcEZ7ru7f:csz7gUAYS/BaN6+n1PHb76f

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\c48dffbc599447192225a409ec3f2223.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2924
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2924 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2520

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015

    Filesize

    67KB

    MD5

    753df6889fd7410a2e9fe333da83a429

    SHA1

    3c425f16e8267186061dd48ac1c77c122962456e

    SHA256

    b42dc237e44cbc9a43400e7d3f9cbd406dbdefd62bfe87328f8663897d69df78

    SHA512

    9d56f79410ad0cf852c74c3ef9454e7ae86e80bdd6ff67773994b48ccac71142bcf5c90635da6a056e1406e81e64674db9584928e867c55b77b59e2851cf6444

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    a92a14598fd008d37c04088fbbf20fcb

    SHA1

    48507aaff6d066beb96f3459091f3671d54fe637

    SHA256

    fead4b559c5bd00dbeae144eff8ba81361d8095566756e2dae0e4f32e1a6e83b

    SHA512

    8e50746f6585fdbf17823a4c627c3e3ea51a50f651f5b89891046824eaa514b7ad7aa9df4b8c6d8313246f251cbc08406540f4270b93b09f18cd16b9b3d9e403

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    ac5c569be714c6a3d9c12084e745310e

    SHA1

    041e204264c120d82f32d2a873bdcb8d177475ef

    SHA256

    03e2d308e28a549aea8e737d6ae7a05d69d08b7c0bf86b1d9b5dd4351e38b486

    SHA512

    817fbe1f961e0b38ee3f25f8d927963360a76af06dee1a0cde4a4096996082e0c24f39a4366031951df878167f51f0157f69ec927ea496f02ac60700956804a3

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    a4c1a1722c107076df162a25cb2c684f

    SHA1

    ad4d9ef890f5519cf0c5244ecb6febfa336ebceb

    SHA256

    b2f2b7650e4bf24b112983608a3df5701807db075fd9bd86627d865d987ab291

    SHA512

    661ef677c0cc250c35c60199c47eb823486cab9c6d55895eea8ce24b85a33ff4f46c3d29fb91c7d40a0e17c281b2c0e150214efc63a6e201d40d3b6caf520866

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    4c548926616a381265a0071ace607340

    SHA1

    ffeaf612a24223d54310a8b4b5202e48a67d16aa

    SHA256

    3185916928200c95198e34fe4b903034ab99c9846279b641cde1588c6a0250ed

    SHA512

    6989132c8073b1f9168142f43bb657d406f3cae97800ddadd428c315c8eb594039a36cd9ddd5aa77e7a399e9c51b1dd0437a900e6f649f67962d0b2cdfcdaec7

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    3ba7d9a04113b9c72b590a9b509e6626

    SHA1

    67152193db1dbcbeee4d17412a6120473737f46e

    SHA256

    4e9bdee48de3976979e933a6f3f2ac4273cf77307912670eb8c4be054ed1415f

    SHA512

    7804f34082b00f5dadae1e904da9e2809d89a4a7a0f4fa27e1a65017e81eacaba2ce95900a86ee25187ec6cd773ec71c9539c66a44996d5ff8601073ddaf5c2a

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    62c046b58731fd2d39a1ceadddef7568

    SHA1

    0cf009bc25de93ddcaa67e53d79996cae9afb2af

    SHA256

    298262e171f92b3e64d4bf4cf4b4c78bb7db7c77b8966a737f99bc47f6ead8ae

    SHA512

    276747c41b5261a6962a6a86c3e62397b406230b2c7886d2e345fd4bd1389cddc7e5bca28bc921b5fe371ce9a7fe089c8861272c189d7c0c052c1d179b0b1152

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    1e3df00cb4a9c0951f5a391ec1728939

    SHA1

    615790526878c87cead8dbf158876837c0a190e9

    SHA256

    5ff78e9cf3b3a9821d12aeedd7e5146271b0907a6a73d9555929127e52a51e41

    SHA512

    78299bb5b228c24af56af49999a0bac76af9c2296de397a7c4c12b2784038bff5721c7e92cf4f11eaf245d79f4406118524130e83b768d22ec843712cc2b7a58

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    e7ecc98acbd9afe3e911b8e19aed15a8

    SHA1

    7efaa8e987ca01beb96519c3e5075ca656f60569

    SHA256

    26acf52fbfc9f166c27c31bdc17b9470c7385fa32eb72ee649e6cdd968dbf64a

    SHA512

    a356f74beadde8c1d3a59c3ef894c48be7e55b3f6958c9d0a7b6e2bdb408a0d55be9828ef77e56e9f1499921780ceeab7a36cfe9f3f734ce1cd2dcb433858071

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    e7e15d8f89db75e02c4cdf319a3e271f

    SHA1

    07342a063549c6cd7df37e005baa59c3c9a28272

    SHA256

    88a14425dcd0e6ceb1b313bb820081d894e5739246f79140d2392c1a26e634cb

    SHA512

    88de45da838eb73d8e131a6e7f6cb8426dc0528ca9ce858f4a18ea23d675d389948f9df59bee69451b4e00516235e4f7e080ea049966f8f3df2cd7a1d8bb64f9

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    f9cb360f43b2f3933514270762b07bd1

    SHA1

    b87424dfea86b37a90c4fffb2edc0b6db97746a4

    SHA256

    6a903d4e8ea16738fe8460f76c8326a6f3569bbd076b7fa254a635da805dd2df

    SHA512

    c384eaa6f50ba9852aa7722bdfa29bacc0ffa7d58d36cfb5671e7e36427bd2a0c37a0ba569581ac8c134ecfa40147b2a7dcc3778442133cd7163c7d7c9ca4704

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    fdd9318c4b2f37c1b6ee2673ef5194a1

    SHA1

    5cef0c7806beb7f28481e182d1fa1ae4d5ca841b

    SHA256

    ee3aebcaabc1fb384c334b931d5ea2135d87d18fbd9f2a6b23786cd57ef03f0b

    SHA512

    0e229f8e1f993ba0c4ea5a415c6864dfa89a1b6a48319388dfbffe3ac31a63b6d168459b61754a9bd0ec82f6ee69fab0ddd663378d25cb4aae49141599c20586

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    e5f53ff596e335283c61a6b096a5779b

    SHA1

    7308e78e8d1914995270810baed6ae1fccb07406

    SHA256

    7fa01af4c8aa619e58e27a67b12aa21caf23f3a5a0a360f0f973e9fee6f28713

    SHA512

    b0a1437f9a2bc059bda11fbedabb5c5d7781792caac3299ffdeeb40c5c5daab6c2db5543504e21033f5b85ad302ab1368717482b3bc846b519bf05677d5c11d8

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    48c15487494b92b56d8fd214dd3689e6

    SHA1

    4538cd880c9ff1973635997d53a44d0f22544f8d

    SHA256

    874c7d4bfabee427cd905c10ad75debb98496ef0678c5fce9491c7fb20cec416

    SHA512

    ffcac8d850700801599bd236549fa9a626b1dcfa54c15592167c6585cd65118b8f099d4504273d304518c73225a57492743bc7ad45cc0f01df7f372fa5034c69

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    8bbd2d2cc331f112cd3fa8cab92ceee3

    SHA1

    3d029e3848e6dcc133a33c86de633ef668b8b32d

    SHA256

    88b9381854662d55e558ad559bb58c5cd58c30a61c88b0b3cac037eed6144129

    SHA512

    23af80cfa752378e4d06cb8a18e46d4cf1989f2e1b728bfeafb284e168f4fd98a3d8e1fb690c53ea3b72f73af0c8fe7860a918ea74ce0b073c0929123233f591

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    07833ac4ef1cc9f41b3cbc556ccfc0be

    SHA1

    a9f72af4bfec7a1cd060ca285f7b6a08715107fd

    SHA256

    818e952d9738bd8a7ade85a9091349fe7bfc286d8a7c1f391f60932513afdc94

    SHA512

    355b21df884386d5f9a33f9262d8edcccf56fc5d91ad152402f36248f407a62277d03479a2e8b091643b1002d1e1679d9fa3847849ef6246f516ad589315e24e

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    7563abbf1763dc10d88d2b6267dfcd4d

    SHA1

    a916334f6fa66d4b947361b101d755671580f8e8

    SHA256

    acbb95c666db74c3fcd1b18d3581eda3e4f498fbaeb2bb89295c0548d7e93083

    SHA512

    d5b167282d828fa0b5fb71e75525e64ddf8142e9ece1405b16b415ba75383e93d9b8c79e6581181884e47e68034d667e8d2116a24a6bda79f437ab9fa22cc669

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    10497411a0cbbd4efc511167b0a767a2

    SHA1

    b0dd3bf2b8c4f15978bf92c28ae746d541fdfbff

    SHA256

    ed56693b0f2e2f947fdedefce17cc360baf2f947c32c53cb4eb1ca31f66ddb76

    SHA512

    3bf859d3ceea056d93059f79c22bc2dde8fec9c6cbf7f4c8847396bb3450da7e5cc885a2cab5fdcb09507dc0cf718d75214875ecfe2fce8853d4e2d81a405ff7

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    529c5dfe2a097af7c09830ef842f9f87

    SHA1

    35cad96122e836a89ac5378f574f47e55428baa8

    SHA256

    fc14204542f1fcc6fd1ecca047e909c2ce494c93359791f942d87e5b85ebfc02

    SHA512

    a06f3ed90a5b9330b4e9b12a8a6c512e229e47854f3f6f8ae48bc39c331d49be8ec6b61680563ad8ccc347cc121317552a183d9c69c5189f004518e99173ffdb

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    33e22ae7e35c10af506a3cd7d9d4d962

    SHA1

    45c11c11da96866c49d33d5487ab37e391d09b4f

    SHA256

    17cb78ef4a2e5fdf3d4f8e43999154c6856571ca0beb94c673be148b01a4657a

    SHA512

    179b99cb8edeb61c676e62f4760c5f5a10972f021e59cce9a184c77458327818e09049b85b01288808b86888e905a06fda17bc04af64b63a6bf81d43284cdbac

  • C:\Users\Admin\AppData\Local\Temp\CabAB5D.tmp

    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

  • C:\Users\Admin\AppData\Local\Temp\TarAD0B.tmp

    Filesize

    175KB

    MD5

    dd73cead4b93366cf3465c8cd32e2796

    SHA1

    74546226dfe9ceb8184651e920d1dbfb432b314e

    SHA256

    a6752b7851b591550e4625b832a393aabcc428de18d83e8593cd540f7d7cae22

    SHA512

    ce1bdd595065c94fa528badf4a6a8777893807d6789267612755df818ba6ffe55e4df429710aea29526ee4aa8ef20e25f2f05341da53992157d21ae032c0fb63