Overview

overview

1

Static

static

1

cb88a6e46c...e.html

windows7-x64

1

cb88a6e46c...e.html

windows10-2004-x64

1

Analysis

  • max time kernel
    141s
  • max time network
    149s
  • platform
    windows7_x64
  • resource
    win7-20240215-en
  • resource tags

    arch:x64arch:x86image:win7-20240215-enlocale:en-usos:windows7-x64system
  • submitted
    15-03-2024 13:31

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    cb88a6e46c1e96fc64bef8e512344cee.html

  • Size

    68KB

  • MD5

    cb88a6e46c1e96fc64bef8e512344cee

  • SHA1

    af7ced1b79c547d4179d1c674d0bf430b245b21c

  • SHA256

    53245d9da932a893a892c7a397a7798967769e92a44f45bf8cdf4e12a3531ea1

  • SHA512

    53f44ef52d669cc07ac4bed849e343e9232ebb88c03f261a3e7219faa9163f41223a1c9c697646e41cc322e71ba1a3b5bc4d3341b0b39443e7a8dbbeae0cd4bd

  • SSDEEP

    1536://T645QOdZHI8vA082ESlxT2NhmtwFCK2Z9kmeQUDDklFYKSSLNOaHE1:zv28vA082ESlxT2+twFCK2Z9bFYKSSL4

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\cb88a6e46c1e96fc64bef8e512344cee.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2356
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2356 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2508

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\3C428B1A3E5F57D887EC4B864FAC5DCC
    Filesize

    914B

    MD5

    e4a68ac854ac5242460afd72481b2a44

    SHA1

    df3c24f9bfd666761b268073fe06d1cc8d4f82a4

    SHA256

    cb3ccbb76031e5e0138f8dd39a23f9de47ffc35e43c1144cea27d46a5ab1cb5f

    SHA512

    5622207e1ba285f172756f6019af92ac808ed63286e24dfecc1e79873fb5d140f1ceb7133f2476e89a5f75f711f9813a9fbb8fd5287f64adfdcc53b864f9bdc5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015
    Filesize

    67KB

    MD5

    753df6889fd7410a2e9fe333da83a429

    SHA1

    3c425f16e8267186061dd48ac1c77c122962456e

    SHA256

    b42dc237e44cbc9a43400e7d3f9cbd406dbdefd62bfe87328f8663897d69df78

    SHA512

    9d56f79410ad0cf852c74c3ef9454e7ae86e80bdd6ff67773994b48ccac71142bcf5c90635da6a056e1406e81e64674db9584928e867c55b77b59e2851cf6444

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\F0ACCF77CDCBFF39F6191887F6D2D357
    Filesize

    1KB

    MD5

    a266bb7dcc38a562631361bbf61dd11b

    SHA1

    3b1efd3a66ea28b16697394703a72ca340a05bd5

    SHA256

    df545bf919a2439c36983b54cdfc903dfa4f37d3996d8d84b4c31eec6f3c163e

    SHA512

    0da8ef4f8f6ed3d16d2bc8eb816b9e6e1345dfe2d91160196c47e6149a1d6aedaafadcefd66acdea7f72dcf0832770192ceac15b0c559c4ccc2c0e5581d5aefc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\3C428B1A3E5F57D887EC4B864FAC5DCC
    Filesize

    252B

    MD5

    f8e54e14829d132ab071a2fbc69e03d7

    SHA1

    7ccc4104fea4ef375715a386a5dc0161b52f86d7

    SHA256

    15ce15a630c3fd6ce22ddf9b36c6cc1c674874671a3ee4ace4d72c00923e7466

    SHA512

    4e5845d45b656f2bdd0d470bbf2da682efbc3f9a070df407c5a28e52263f359abca09c8b4fba7aa6e723337e6d8ca9365f31f425c92c41be55f647274e245591

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    226acf7e2c816f3b7a796ca5cee1b3ae

    SHA1

    2e2b38740321793add5ba8b4871ad442b4ea9937

    SHA256

    785a6b3461dd6bfd32dbcb5213e74e8d9026402c219f45123768952ea74178cd

    SHA512

    af77bc66b53a329f8fe371decb9c32c8ceb185eaea897d1ba6b1289700a191fa21193edb6be74e8110dfc5a85e3022a8aa243cff3aa2a19e9e33b6bea5e4d966

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    95d6ca6ba69412bf7c3b7da68d44ea76

    SHA1

    18ac9ac9c9427cf831dfa7eaf7886169f4d374ce

    SHA256

    46e74ecafc7beb99c6ca29d7e704c93b0f449c7db12788830a6062e7e9b9cc26

    SHA512

    ed6901e57a8873062668369bca505724fc55b17dda63039147e5b68e34836963e8ae79df2a095b503f0c7278131dbf70a160f138a9b69bf662b03927685052cd

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    3a55459ac13762b6afcaf25d9ba9ed11

    SHA1

    7d7b5a3a6e1d0088cde24256ab66bf4139d972b1

    SHA256

    934a0521b7d1098f4c270395894803537159d740f91a0ab1d753acc8d173ea1a

    SHA512

    af6a49b031f2e9a69a2bc5e35443fe69fbfd142568bd591dc42fd251035e0ee60e4bd8c408e461e20f78828b32be60af09565f01110c81d8cd000f2f22988dee

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    b2ad1acd8cee0cec2e6bb803c36f571f

    SHA1

    f16f6271fb62f7eb1271590c25b74b2b6d0c1aba

    SHA256

    19abbfb7e0a8a7459b15dccde70a5617d719a16c3d8664fd50bed0e4098e4fd3

    SHA512

    eb55845f207d909915a50736cd6df3e26d8bede778731f8c72e541ea451a1b34248ec64c29dc81beff93b3813fbfcb607bb449b6c8ef3a49605b8056f244e2fb

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F0ACCF77CDCBFF39F6191887F6D2D357
    Filesize

    242B

    MD5

    d3796a46fa3265bfcc93099db3d68068

    SHA1

    f4192d7b6c7ab972780a55ecc3949af411e90398

    SHA256

    21f6e81fb0c81b8055cfd3f6d3b251cfb60086d003a8c80c37847b5f0bdfb1ed

    SHA512

    39b9c9347202772c9ad5b6ac12a6dc7ce6c94a7f9d8b5b918a9418d7394d2a089fef430885fdf7144e02713c3f9cb1eafdb48ee1dd5e8149ca11f0a2f3e93f41

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\902LKC6A\platform_gapi.iframes.style.common[1].js
    Filesize

    54KB

    MD5

    ea9dd251399dd23cfaaa58cd75d83802

    SHA1

    fc80615d89aced96d1c7d9e4226b1b39986be9a9

    SHA256

    e924fdde63edcafd0ae3c3f223cd2ac30c8cd2f71fc6da9267566a6a3a285ec3

    SHA512

    1d0640ba21d600a7a7f6d1eca0d7c7d22aff87d074c97bb9f3ab44ee9f6dafc0db075a2a39ff04c0e721b2f046aadb8ce1e860a73e9f0b1123d70e6fb59246f4

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\IFGNZ1XG\cb=gapi[1].js
    Filesize

    132KB

    MD5

    c23494121f5468488a8e79a6268f4648

    SHA1

    1fc2646c75df1b8528667487997ab1f5b308133b

    SHA256

    100700c4795780ff97f999795e8477954da09fcb92a1131cd17216203914c425

    SHA512

    956f396bef9df5a542ae410256686e2259e1ae67402615f937c2f2c004ff2f3de5f5767200661c0ce204fed9b32b1a8707c26a566da1d3aa120d428901c39769

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\OOWQLMJV\banner_show[1].htm
    Filesize

    162B

    MD5

    4f8e702cc244ec5d4de32740c0ecbd97

    SHA1

    3adb1f02d5b6054de0046e367c1d687b6cdf7aff

    SHA256

    9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a

    SHA512

    21047fea5269fee75a2a187aa09316519e35068cb2f2f76cfaf371e5224445e9d5c98497bd76fb9608d2b73e9dac1a3f5bfadfdc4623c479d53ecf93d81d3c9f

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab2271.tmp
    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar84C.tmp
    Filesize

    171KB

    MD5

    9c0c641c06238516f27941aa1166d427

    SHA1

    64cd549fb8cf014fcd9312aa7a5b023847b6c977

    SHA256

    4276af3669a141a59388bc56a87f6614d9a9bdddf560636c264219a7eb11256f

    SHA512

    936ed0c0b0a7ff8e606b1cc4175a1f9b3699748ccbba1c3aff96203033d2e9edabf090e5148370df42fbfc4e31d7229493706ff24f19ff42ff7bef74a6baad06

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarDB1.tmp
    Filesize

    175KB

    MD5

    dd73cead4b93366cf3465c8cd32e2796

    SHA1

    74546226dfe9ceb8184651e920d1dbfb432b314e

    SHA256

    a6752b7851b591550e4625b832a393aabcc428de18d83e8593cd540f7d7cae22

    SHA512

    ce1bdd595065c94fa528badf4a6a8777893807d6789267612755df818ba6ffe55e4df429710aea29526ee4aa8ef20e25f2f05341da53992157d21ae032c0fb63

    Download Submit