Overview

overview

1

Static

static

1

Regent.Sms...e.html

windows7-x64

1

Regent.Sms...e.html

windows10-2004-x64

1

Analysis

  • max time kernel
    117s
  • max time network
    134s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    19-03-2024 23:43

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    Regent.SmsService.html

  • Size

    1KB

  • MD5

    2923b250a3660c034aa7831d5e6d7f3c

  • SHA1

    646f109012bac000fe1bc58f40d112f77483f22a

  • SHA256

    e682dfcdde010f6e15bae0d843696f6ae8d5a85e75441660b782789ee747f075

  • SHA512

    e7a323d17f9f1c70bbee04c2d05970eed992e01830f73531a9b08a70a72bf253e5e3365213c96b2495b4b1fe9b9a61b8ee0a43126ed600f4468559a56ca03e74

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 41 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\Regent.SmsService.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2772
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2772 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2744

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015
    Filesize

    67KB

    MD5

    753df6889fd7410a2e9fe333da83a429

    SHA1

    3c425f16e8267186061dd48ac1c77c122962456e

    SHA256

    b42dc237e44cbc9a43400e7d3f9cbd406dbdefd62bfe87328f8663897d69df78

    SHA512

    9d56f79410ad0cf852c74c3ef9454e7ae86e80bdd6ff67773994b48ccac71142bcf5c90635da6a056e1406e81e64674db9584928e867c55b77b59e2851cf6444

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    b78b8907b29108df57e3334bc8d37099

    SHA1

    77c1ca33eedf363e92b6bc154e542cd839ba9d23

    SHA256

    8203c640c7b2857726afdeec453987ca32ed33ed7dcd8daf8117c4a0f21af9a3

    SHA512

    6bc91ef62aaf3ca394a2f811f379f59abee140df1c0928788ac3fbebe09c487c3e3c87cfcba5c0dc90d7fd18781632677989f803205b4d934adf72c557499a9d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    8521997ff52ac208ea5af05d38f21e95

    SHA1

    7f20ada05f484bd3067069eb9e453e54a5e45f7c

    SHA256

    5b7544a2d966d6bf37797b548929e50b4e9731d05be146921bc87fcad14518e2

    SHA512

    71e6a834fed2ed1f9953fcf2a50c4bad253324cca026e4e30fc6a71e41bb9aa46ff72960218318abd14a87a6aff2f7585b764988938be9945fc5f86891c0430a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    1842eb61cd595368d526ab8a4f690726

    SHA1

    7ccce8ae4e4fb34775704c66056c53fb5f785099

    SHA256

    8051783ceb18cf0c9a8eeb2cb164564c2bdc52357038625f57fc36f2769198e0

    SHA512

    c813fe1c54ae24accce0ec8522a399025a53d157a37f9b0b32e1b0fb31b3da4c63c34a0f2ab87c900ba8f64332260ad9d32b29cd5da93e7a6937efbc549571b8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    6ebc8ee960f6e5ba0499b298c8e0db3b

    SHA1

    4140dc4c04a577d1b5ee394ec57dd64b23e12bb4

    SHA256

    5cd907f405015c26b4662333ff84f1308ba4e2a2e1ce1afad768d9cb8f28e6d5

    SHA512

    7e667c50761278de3139dba5a08a4527ce21f106d8b3aee253c3c4bd45c2ebd8ee64f5d94bc76fe7c3de538df3f9e5c8feea489558a536026e7a0bfa36a2978e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    61ada4b813499c36887d84aae2f6a786

    SHA1

    6cb85d8eeaac8b40aa7fcd5c131d4695dcddcbbe

    SHA256

    e5554f5cf0dfac24b9bb197701844195e40521089ed1ffab7051a27ab189fb68

    SHA512

    124407f496f963044b2b481abf055fa1e4be9e7eaab1b6dbdd584eeda18ceb22768367874497dfcb1013159e3564e0d102f7baea379017cde532fb351b047b01

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    415155d29c7016df61e13d6fca832494

    SHA1

    9f40493c596cb30f43322e08befab34fb3a9e471

    SHA256

    3d36fef630bf5dd7f32958877a934899976e77d9b33f60f8a81debac2b9c732a

    SHA512

    c055e48baf0e78c64f81d98753016a060613863277d43a5fc8db23c962f111c8c9e21c75264e54e5af82a9fd7951b7cb4eb4cde58e4bc9eba9209d9ba498fa92

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    7439a48ee601f1b08455b0d5c0200395

    SHA1

    7ca4d59e4d0f7729bba0cba29f30b48bc54f4e33

    SHA256

    73d1e1635200c265a330e13ba462e34cf268f2863a00e39d07b5237ebf50a2db

    SHA512

    53eea8cc6b5e3456063c4afbec60fd961e1a2ad4f28c655d8e3658ae400f6c5604bd628b9e57b15e62c00bccb4023cb2f7bced88df2416cc80559f4cdb11536a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    b0af6915f03b2f365dd701e2fe33608b

    SHA1

    ae498d03e6e9cb6c911ee4dd75fcdbf19a1fd22b

    SHA256

    e41abeb7c96e08d8c0734a9ca0c1747d884fd8fbbf3e6d6b6dcd4457e7b68982

    SHA512

    2821256da3a73900da9785dad2daee91d2e0b103d7e9d3544333e2311c596832146c0b9155bc8988251d145a46c97061b8306c5dcb2c45af66efa89321501e3a

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabD8E4.tmp
    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarD9F5.tmp
    Filesize

    175KB

    MD5

    dd73cead4b93366cf3465c8cd32e2796

    SHA1

    74546226dfe9ceb8184651e920d1dbfb432b314e

    SHA256

    a6752b7851b591550e4625b832a393aabcc428de18d83e8593cd540f7d7cae22

    SHA512

    ce1bdd595065c94fa528badf4a6a8777893807d6789267612755df818ba6ffe55e4df429710aea29526ee4aa8ef20e25f2f05341da53992157d21ae032c0fb63

    Download Submit