Overview

overview

1

Static

static

1

c880114bcd...5.html

windows7-x64

1

c880114bcd...5.html

windows10-2004-x64

1

Analysis

  • max time kernel
    136s
  • max time network
    130s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    14-03-2024 11:25

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    c880114bcdcef4d38ebb180038c84215.html

  • Size

    432B

  • MD5

    c880114bcdcef4d38ebb180038c84215

  • SHA1

    d0cbb5ea34e9671bdfc49bcaa1589551def00617

  • SHA256

    8e324405f8fde6845684197b9f5713617f99315c82b950d93d5b2701231919c0

  • SHA512

    8f1bf39e5ce091e599cacd3dc542f8597bae0bae9067e2dc05e9e1f8a7e87f35ebb93a976bfe20d4ee791f91721fe5d2ac8a1f8d3e43a759acc31f971c2d2563

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 46 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\c880114bcdcef4d38ebb180038c84215.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2844
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2844 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2136

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015
    Filesize

    67KB

    MD5

    753df6889fd7410a2e9fe333da83a429

    SHA1

    3c425f16e8267186061dd48ac1c77c122962456e

    SHA256

    b42dc237e44cbc9a43400e7d3f9cbd406dbdefd62bfe87328f8663897d69df78

    SHA512

    9d56f79410ad0cf852c74c3ef9454e7ae86e80bdd6ff67773994b48ccac71142bcf5c90635da6a056e1406e81e64674db9584928e867c55b77b59e2851cf6444

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    3407aec725f7170607ce51ae14c72147

    SHA1

    d9090d188ba8ee7e250cfcac7a787703123b21c6

    SHA256

    f083b40364d48e39f30d9c93ba585e804fa2792ac010aba770b3724f0da93de9

    SHA512

    45f4069d59ff264ff417d8a1fcba14b581552df7f3235767b779324afbf2779ccca73cc5df10654293835b2f7296cdff2fe2b5e118f4b1dc5f6cc271c1ca02c0

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    027b51f98ccbcd5c40233552a90e7fed

    SHA1

    8674bc168025017d7b7b3a93ff53444a8ef9ebc0

    SHA256

    8e76c5e66fbf1e2caaad0167968766c0a97213ef6d6a8d23f075e3f0ca9c88d4

    SHA512

    b26edf5c9f8bfcfd45400e0d3d3f3f423a7575c35b64994189d8140a41d4f46604fceafde9b257c0392003184b3b94c1dfb450163ba7d70ec3409096542890fd

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    6e38332c1013c5cb619a70b46400a410

    SHA1

    30b0d215d65158311ebdf022ccb5df01c56ac839

    SHA256

    267f4993cfac925c40730551028fb7770c3b258114c0987ef8fcf0d379ae1b8f

    SHA512

    e377635752892366083bac51931ee76f71b2f9790b09f33dd59ba52870fdffcc34bfb52b4dd90cfa6badb4bbfb68583ef9a8e0ce0487d0cc22a471352b33fd90

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    920c148c9043d5d0df6a4c2aeaae69f3

    SHA1

    ea6a5e49942a4df9062f9757161e7c9baae8de21

    SHA256

    fc025f63cd681d44237ceffe4e85b0f2f2403699bb9875c45eaeda56084f84ec

    SHA512

    bc3cfcbd2dd055c48791cb808108d3f85e7c413b1a9a61c99e28ca37bf49c368c7eeaedd56eaaaa722984ceb67a2754cd6ebc649665a30aeb117f2fa595d6e73

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    ad3d7f17814f7757e8a9176019816163

    SHA1

    ca030c0b8889182dace6786de822959235ebd7af

    SHA256

    5606a676b08a27307df6fdfd66879bf7086fff80d6c928116b1dda3d0460ea65

    SHA512

    306ef24b4c5d2f4ebe2d8528a5064b9a0809cd85844862d6c1dd8da32981c0f63de6ae74d2bad2c87045c8f2dce412424d1c967b3123b07bf4cc46184e0f25d0

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    5f92ea043535c2658fc52e7ed977ede5

    SHA1

    1cb4271dbfd545500b10fc4b876a10d84cad7d67

    SHA256

    d385bd1d2c94181e8a0870803d7dc0777c36bb27be9e760b0042835f7f96c399

    SHA512

    0a16c50825bb88832c6855880ca1c114d0a9ddbb290bd515ca4a58c72faf50f7fbeb5503ab1b522b1081f5a5c3f2ac1103ce4371956e365efa854997701cb24c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    cf43f60249ebb6e70717ef4168452844

    SHA1

    7bbd8ef39b069cc3098ab423554a05fb2b9b9c56

    SHA256

    361f572f4806eb1bf5b4f61644406e6c9fd6f8f3d6d20c0795a0bf6e19c562e9

    SHA512

    d738b8c75cda33483ad07463c49509241a97feb5a0cae36ad59b3b854fe1c465e91f98b122a264bb8ad26a6e1223f0fa642f7d7923872f1549bf1e9d34bb1776

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    4720625dd01f2635c081186546046d48

    SHA1

    9e867d33c9e8cc670b7097b057fbc1cbd344634a

    SHA256

    cbfc13fddf11aef255f140be8a87e2e80aa24e4935b8996391eeeab89afd7c2d

    SHA512

    ce2038dbbf3dee87dc3f7e6e9d32f9317f7925785620ffb2d5c003d6e0708eaa4431226ffd574f99d6c87a7559d6f00125e84d81db836b26dae0953a022bdac7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    4d70ac7498614d1f96fb6f18d1b4d11d

    SHA1

    be4f72aeb423908ad75031e9a7ee4e604be4eb1b

    SHA256

    bfe02f2fca8a0306ddaef00373abb1f855cb35af9cfba23f648e3ec0e9d0afd4

    SHA512

    b894f0182681ae33ec9937f82db1409fa34f7d425e146bbf95c597e05e175e88e5a67322d3e7cc6461c54f85bd0c3a8c59795bf6d0edce3a725b0caa82f8f825

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\YZ6CS2VD\zabedreb[1].xml
    Filesize

    13B

    MD5

    c1ddea3ef6bbef3e7060a1a9ad89e4c5

    SHA1

    35e3224fcbd3e1af306f2b6a2c6bbea9b0867966

    SHA256

    b71e4d17274636b97179ba2d97c742735b6510eb54f22893d3a2daff2ceb28db

    SHA512

    6be8cec7c862afae5b37aa32dc5bb45912881a3276606da41bf808a4ef92c318b355e616bf45a257b995520d72b7c08752c0be445dceade5cf79f73480910fed

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\imagestore\re26ad0\imagestore.dat
    Filesize

    1KB

    MD5

    f7647420df17b8607ffb75c51deb7bc7

    SHA1

    9c8c9a69d14d2d7bb10611d3369573d09b218d90

    SHA256

    54cb4016e096d45073eeb9c383f809af96949089cfa17f3046f445d90aa07a89

    SHA512

    eddeac8e7623faf2b5b50622f26789c61c805abf9ee1d9048f734d7bbb47ea97f7e32939e771f0e8b569f72bd6d79653a45418821b3e60f503353d3c6fd2d969

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\imagestore\re26ad0\imagestore.dat
    Filesize

    2KB

    MD5

    221f2ffce1dcaa4f59f938e3dd10037f

    SHA1

    460726008b80032c7ae9b66310fe21a850e3bda7

    SHA256

    9168da610dce41c29472c75e82e8090fa4c8881222deb938bbcc7622cde1fda5

    SHA512

    00d956233a6a3d5b66a10123babf108d25af0e8863e0605ec5640a30a112f5c4b4c827cbe4c8cd6fbe9b6ca5cda7238de16102fe7af72da23a9d1674b94cc0a6

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\JB8Q1DZR\favicon[2].ico
    Filesize

    1KB

    MD5

    668ba1a9fa1890ba16cb8adc28d3dad8

    SHA1

    5e35223b2541265114eaf61b9da2556c812fea17

    SHA256

    7746cf1b553433822522f2dc432f55fe64eee1f1cf823ef6adfde02e58e1d7e2

    SHA512

    212aa3e6ea6a2dd1abc10d4a96b7be179e0e490da187641ae3be7b7c0c30b7272d8d5b37b1c6ca5c75732dfb35a8ee30fa97cdb35704b97eeee11a2163e53664

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\MPR7YYBV\favicon[1].ico
    Filesize

    1KB

    MD5

    91abe01116ab422c598e9c8af72cf4da

    SHA1

    0f2815fe8e067d48537ad168225ab4674271fa27

    SHA256

    b1d7aef06456fe7431124129a28f0138bb5fccfa4f4161e3087de23c005e5edc

    SHA512

    a4d5b20c3014153b6b382c43404917bd2cb5bd2a59bb1e981f5a19eb7dbdec185ace288e9700428d24e5ac623e45d04905e706f0c45a1642b1aa6c091213c23c

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab25BB.tmp
    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar26CB.tmp
    Filesize

    175KB

    MD5

    dd73cead4b93366cf3465c8cd32e2796

    SHA1

    74546226dfe9ceb8184651e920d1dbfb432b314e

    SHA256

    a6752b7851b591550e4625b832a393aabcc428de18d83e8593cd540f7d7cae22

    SHA512

    ce1bdd595065c94fa528badf4a6a8777893807d6789267612755df818ba6ffe55e4df429710aea29526ee4aa8ef20e25f2f05341da53992157d21ae032c0fb63

    Download Submit