Overview

overview

5

Static

static

1

phish_aler...7).eml

windows7-x64

5

phish_aler...7).eml

windows10-2004-x64

1

email-html-1.html

windows7-x64

1

email-html-1.html

windows10-2004-x64

1

Analysis

  • max time kernel
    134s
  • max time network
    150s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    18/03/2024, 20:09

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    email-html-1.html

  • Size

    3KB

  • MD5

    9c63fe9472d74581a789b1c2f270f672

  • SHA1

    425c5e186995fad30256163dad5de48ab2fb06db

  • SHA256

    4d193482f01caf7a893f2bb14f2c5db92af3408abe17b320f848f5463af23bdb

  • SHA512

    9116e966b379355d20fcef9bc75283b1a44d7cf27b21120936b1729387e16c8612ee093ccc84eca5203ac12fd0de2471e1e8eb462b982ca2995dd553374b4a38

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 64 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\email-html-1.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2512
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2512 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:1028

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          30ab36ae4e83bef57f7907692a79ff2b

          SHA1

          795bf3ffcf445f5b35973135d73b7672ae79ad2f

          SHA256

          e7dd3175f66baa81da1f551668eb0dfc4da2dd2f7c8ea88240d082553e3cd05e

          SHA512

          877290f2a88f8bb89407241d68b6c70e936132af152516fc7096d6cc0ea90d315c6241bf256b953297735bd5c3493f101351e068c24f4dea9ad35e135ddad36a

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          f4bd912c87b0be1d9f359d36dbd3d294

          SHA1

          75f5dcd025c4f110af8c3d75613dc7f8e39d4b3b

          SHA256

          b1b9f63feb18af34ffe9d13f679b3b8fbf1b612e74ccf8a0c45f49e7e0e33491

          SHA512

          e1eb5ed110f5267ce01db14b01b9c9210df0fb60cc0c56bd5d5f2fc18d389a536e5c8939b2c5d8f93dfd89cad6ff8c60786ada423e66c492281e00eef9dc0676

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          9ca6e6ad48c53aac32d58d3c8b36f046

          SHA1

          eedfdfa3d24eaa983ad4e57616413108a5d7bc37

          SHA256

          9e0dc442af43c78c187cb1f343b2ac8412bcc2d4db41b6e31807940478e8c4a3

          SHA512

          131187feebb8631c7fc0cdb1d84e4fc33f1c9340aa45e3dc88944a9091b7ea21d9d5bfac3a298f4a84a456943b630a8aa09cb2d11b70258b5ef8a934d2f882dc

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          46dc8223dbf795fc4749874ee3e0713f

          SHA1

          658e275085565c97786633a8878f5a498d75ae82

          SHA256

          752f39ab679ed2084720bbf180a03e34297eb1d5ea616979d262b7eb746abb0a

          SHA512

          68a80175ea204a396703c77b1c169ca657511d1feddfce2512e31743af672407389c881df0a0f419e8984cd035bac1956f0ae83004437d4d32c3bc75bff1fa5e

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          50cc4cad5bed28bd6ffac72592a2d2b2

          SHA1

          fe884ec5bc5dd772c1dc050861309cea970c75e2

          SHA256

          c5f5b3d6b390b662d8e123ce5ccd0ce90de80037bdb003ed08307a4102811af6

          SHA512

          6777ea6ba79ee55312ee5a50bc74db917cc690db51d0975b9e0e9730b8b805aee49b6fae5cfc6e43cb571f4f425b08c47740f161b62a2a0cf035e4940cd84b3e

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          5455a0f1431241e6b9a81e863232baed

          SHA1

          a00069db8dd3fec3be6346df2631ea3b47417beb

          SHA256

          0d3b53a6fafe07a31b08054f442bff7a877bf8dcb9ea74939b7c93e10722266e

          SHA512

          5677fd6472a305804b6cf34810d751223d52648407b4308dc1297de87abe060fc250d71bbe5662761e1bb71d4b8873e9024776a0a26316a5311505e041ade92a

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          a998a40d7e185068be474e6fafd27d10

          SHA1

          614e8c1b41ec33e0075d9c3462aa5e8865b07b54

          SHA256

          1a59759ed005b7635effa3fd3e1fcee1659a7dce303d7f8d8e71ef4222228847

          SHA512

          5fba8fad488373e72d79bd987a2d4387f3cc6579843c5c590161e7c6763a29c473d7f791bf18704d998ce0209035f6f24c199214b147b333da48c580cd7a2fad

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          bd5cb3ee101a548eeb10321d739941fd

          SHA1

          0a601f52df30f6ce1353712b492ff5de3c41a553

          SHA256

          a7ec7ec01ffe874a78c7e983604a80a91fa8ebeb335a9d58e1dbc78333305603

          SHA512

          7c8dcf69ea0c26a1b92eb64a8ef065a0ef80c152a2b7c36436af9288bf7ce46f9b41baec56abc29ddea3c3f62102852cc11546e5236b6376aba1f7cd2d50590e

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          8dea0f35219ef9d6e4b97206fc79cb33

          SHA1

          f515dbb7e243f01c056f87cc6dbc5569e8ea79a4

          SHA256

          15ced60b829cb034b1aadf4160d223d7c877cc35ae793980e89bd512926bc85a

          SHA512

          76bcdcc6e91b9e496c0ea4acdd8714f210d066c72dab30dcf703d3be7839f1ca3c3888a0cfae5c5b2a8c9707a776e37be4e768e521eb935260db1245097a8717

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          c052693850d9319484e41966fcd5f594

          SHA1

          9999b64a063eff1e97d3b8497dbfd13528a1b2d5

          SHA256

          0803a42911f3205e0b302ae5f9a9e864f048c885e223cf991f674dbbc7e4bf1b

          SHA512

          d527ac7c16b95059eabd175b803747f647f2ab974d303ec4204f82a0883f3fcd995fcc81fa7ce641269d32eea6cf964b6418a0f4f5ec5e50447e9d51dd4ddd64

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          5e6fced5000728923f1912a4b77a122b

          SHA1

          17453d5c7db1891e492dfdf7be485d651f5a703f

          SHA256

          c66a4ede8c991570620874dd7c4bc437d56b7e6de9fa6d25dfb68b5676ba382c

          SHA512

          59848b97bfd1daff1bab1e25f8cacd2f599fc392533b80a48802847088b821b12413053a2c1fe34763d118030440c6d7f885e6f16b47fdfe7d93d774015d8f8d

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          828df9f62282b15fc12531dc7e766662

          SHA1

          69ef9b93f94eee82633899a242917933c2fd746a

          SHA256

          21771cb2eefd152f94912b18637ffea096b9830b396e81bd30f8d89d4533b0f6

          SHA512

          d501803b135e7595a6bc98f95df4ddd195746e16de857f10e8cb114ed26e21a997c9bc136edc32346871d249d570cbb9248dc7ee4b004da7b38c54c2c1e667bc

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          310824b17ff40f9c63ab14683ceb3693

          SHA1

          ece2860fb1b09c3df56f5dccfc393a1de3d2727d

          SHA256

          5b9047e6e7e19a7ddb65c8c1dbe26bbfab7eac15b4b44719c399e29697113509

          SHA512

          f178f845ecca76a95111bb2882770c8804cb3e929ca5314ec972dd1fbba6847cc6eeeaf1b8767445b53b1a288076d220165b31db34e6c0d26e0a398d5fff0819

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          081378b5586be1dec0c1a5f61eac8855

          SHA1

          e5a29ba200363bfd46831d22e4abfe4e4d97ff28

          SHA256

          520b25e2e75bd74e22fbbe00a23871671952e6ab01faf9e2efbeaee785fff07a

          SHA512

          99d2ec151c4a5960af2ce10984420d34aeb890ca93acba714735a2c2b36b842bddb4411a12a105c050b6161e322a252f5dc27458940a3c676efa542ce2dde7b1

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          f3345dc2d6a02a7d5cdd924b93da5e60

          SHA1

          f4b70b585dc37e49f6cc24258d0c07f6d2dcbdc1

          SHA256

          4ab02be94edaa07489c2117bdd9cb0e7e74a4970dfa71874da10634c8d737977

          SHA512

          7fec2da9a4b3c4153c148c3384f01fd8e28a4ada1a5423bd17fc003db0a4b1eacdcbc04dbb8c618ee2d8ebc22f2a67f3b5c424bb03ccd40fecf66512f42974de

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          14fdd077a39e479f27ae8d0e34d281a3

          SHA1

          c0ec9238c528721b43f6f9791f6e97762378fec6

          SHA256

          fb6321169a9aa00aa38b9dcf59d4ef6594735997e568567e4e9d6d534f1d87c1

          SHA512

          89bac60fc4df57b61387e078ca7ce9f5bdcd3118afaa276f5019ed445f5ea45623a0cfa02eb98e01ccdd793a1f38cee40eff1e4441ab2159cda909922d97052a

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          3c25fed26441fc0eddfe7788dd286038

          SHA1

          e97615e7289e5c383ed84c2b4c8312620c172262

          SHA256

          cb5c0024510624074bd187914db4a98ed390e64d7df7d1b8318f44e0511f4c75

          SHA512

          565b3521fa5c42b820bf383ad373b7d0420cdb30c6bcd24a8a81b3bf42f16eb434af1b13790d941f70d734b97be120e0afbe7134bd0bae990de249a5b2a76d54

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          8bdfadc6901741d8d87881008a659017

          SHA1

          febde61b5d6d0917842f5689846e95b863254e99

          SHA256

          38e99cf97f652460f88b5fda1326066ff7a4947fd04efa416afc8195c8ff583a

          SHA512

          dbfad07b564dedd8b89597abab53c1f1812f88de40147d084bbb19ee713e9ea165cbe289598ca906d31ca4727198f08ed5714926ea1d6e7808bb8a6f514c819c

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          a97952aa6b2d795f7f9b88167158ea27

          SHA1

          fe7b626c4eae6ff613ce3db57bd317d42fd7d680

          SHA256

          716efdbac83af6cbc2e1404e07df4126ad06524125771bb31ce8569d3e6d1669

          SHA512

          0543e803711cc326312c7377ebffc8bce45b48f745f3991f9fb9f7a9fec5c718dd343f355ad641de3ee17c69ffa0d4b18fde14ae8ae918cc21201eedfd0d446b

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          8ee5bd5f8af1c77447416001f5124bac

          SHA1

          278ae28c8b3d4ba40dc3793a5a8a5829dc3576ce

          SHA256

          9daba8d53cae2543057629273be627d72b4bb295f54fdc977db29f59064dc159

          SHA512

          84f599611edbc3f2c80234f3f834d2878980c1483ec2649c0364dc00f72b986042f5da84703a9e8517786799a30a21594c6ada46af537cf049e2055daa9fc788

          Download Submit

        • C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\09QH3KXA\www.google[1].xml
          Filesize

          92B

          MD5

          b93b858c46ffff4749e90ad18226872f

          SHA1

          225231ecd865796172bf165ee6d1c840719af426

          SHA256

          36df114e2204e44f70156795de0a6fbd25e3f5e6948815efae2e00fe3cbcd160

          SHA512

          a965a594255335de1801e935ed101b1498ddc98edccfa10eae0cfe2aa9a163ede1d8c86a7e0349e197b7094abe58914464f66b1caf193e57f6985900f8fad235

          Download Submit

        • C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\47NQE4NG\antiphishing[1].xml
          Filesize

          13B

          MD5

          c1ddea3ef6bbef3e7060a1a9ad89e4c5

          SHA1

          35e3224fcbd3e1af306f2b6a2c6bbea9b0867966

          SHA256

          b71e4d17274636b97179ba2d97c742735b6510eb54f22893d3a2daff2ceb28db

          SHA512

          6be8cec7c862afae5b37aa32dc5bb45912881a3276606da41bf808a4ef92c318b355e616bf45a257b995520d72b7c08752c0be445dceade5cf79f73480910fed

          Download Submit

        • C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\WYN13TBT\www.recaptcha[1].xml
          Filesize

          99B

          MD5

          30ce8719b24164280ecfea55f4c0648e

          SHA1

          3f766af9389bd8cec620cdfae6571ac27767ba60

          SHA256

          3ec6249b8c3484de95959490f4ecfb506ec5916af73c0bfa7945de69c253723e

          SHA512

          05ed7301f3aa10698801a9c323923fa5bd658f0065fe69637b641ba905b824a21109dc41b71e31b381dcdc267c7be30d49a1644332f3eacc5de4f147d0ca1dad

          Download Submit

        • C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\imagestore\3pl5scb\imagestore.dat
          Filesize

          1KB

          MD5

          12ede81e649a70a5280f313feba13435

          SHA1

          c255599ca49e1b37d74c32d8ee9f664c2d06ab22

          SHA256

          a3565fcf7aac6cdcecbe5cea03c186b1ca04938b3646810831e6610758d5d214

          SHA512

          32564468a10dcac6123a05013845150442988395c2384e01a01cba350286560c7f2df28c353145666d22df03a51ea3067ceb676acd09eeff53d47fefdbab522d

          Download Submit

        • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\4JZQ5QLK\cropped-favicon1-32x32[1].png
          Filesize

          1KB

          MD5

          57041c22fcde0488bebb98f2e5764eac

          SHA1

          ca9d3f9bf38ca3587e52bc5d30735d32a9a962b9

          SHA256

          a4bd90fa8828ef42bdd62c0f50ad053c301b232a81d693358af220403e36bc0a

          SHA512

          514840074ce2120183d9a98276a30c83fbd9083bf53b29ec72c582e0e9efe765eed53ab6797de1f837f85c1a8bb77a5ace53c72163728edb723f9d2a0c4b0d85

          Download Submit

        • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\4JZQ5QLK\h0O0dfkKZTvXCyzvMkZYjxuok7wfecojbF5-T3RUjWA[1].js
          Filesize

          24KB

          MD5

          f45c5b8b9eef6b07fceaf678a58abc62

          SHA1

          7da8872d4c85b72a67cb42b3aa7b498371cc15d9

          SHA256

          8743b475f90a653bd70b2cef3246588f1ba893bc1f79ca236c5e7e4f74548d60

          SHA512

          24d573364e806e42b50cc711a3c6e66bef7a39ccc205d7e12f603e178e86449a2909e2c76f5286a34df01d03e6907d7f192d09f57659b7c3a4a11f5f78cab44f

          Download Submit

        • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\4JZQ5QLK\recaptcha__en[1].js
          Filesize

          492KB

          MD5

          65082e430d08b52736c2139120f8a4fd

          SHA1

          38235588a8e981171e0e58233085d8f36191aa5f

          SHA256

          926d6123e0e95e1576a0ed9668e524d25a69b41a29c11228d2d7149656b34f7c

          SHA512

          4423b8e88a1eb2672c25cbe15728613c988970d85cd66fe2f2f2cf562d97146ce7582adc0d4cb3abcd06e02f9f0d956db29dc5246ac828e56a10bef50fd69437

          Download Submit

        • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\9ZQLLOZN\styles__ltr[1].css
          Filesize

          55KB

          MD5

          eb4bc511f79f7a1573b45f5775b3a99b

          SHA1

          d910fb51ad7316aa54f055079374574698e74b35

          SHA256

          7859a62e04b0acb06516eb12454de6673883ecfaeaed6c254659bca7cd59c050

          SHA512

          ec9bdf1c91b6262b183fd23f640eac22016d1f42db631380676ed34b962e01badda91f9cbdfa189b42fe3182a992f1b95a7353af41e41b2d6e1dab17e87637a0

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\Cab32F5.tmp
          Filesize

          65KB

          MD5

          ac05d27423a85adc1622c714f2cb6184

          SHA1

          b0fe2b1abddb97837ea0195be70ab2ff14d43198

          SHA256

          c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

          SHA512

          6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\Cab3420.tmp
          Filesize

          67KB

          MD5

          753df6889fd7410a2e9fe333da83a429

          SHA1

          3c425f16e8267186061dd48ac1c77c122962456e

          SHA256

          b42dc237e44cbc9a43400e7d3f9cbd406dbdefd62bfe87328f8663897d69df78

          SHA512

          9d56f79410ad0cf852c74c3ef9454e7ae86e80bdd6ff67773994b48ccac71142bcf5c90635da6a056e1406e81e64674db9584928e867c55b77b59e2851cf6444

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\Tar3436.tmp
          Filesize

          175KB

          MD5

          dd73cead4b93366cf3465c8cd32e2796

          SHA1

          74546226dfe9ceb8184651e920d1dbfb432b314e

          SHA256

          a6752b7851b591550e4625b832a393aabcc428de18d83e8593cd540f7d7cae22

          SHA512

          ce1bdd595065c94fa528badf4a6a8777893807d6789267612755df818ba6ffe55e4df429710aea29526ee4aa8ef20e25f2f05341da53992157d21ae032c0fb63

          Download Submit