Overview

overview

1

Static

static

1

d6c0322eba...a.html

windows7-x64

1

d6c0322eba...a.html

windows10-2004-x64

1

Analysis

  • max time kernel
    87s
  • max time network
    153s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    19-03-2024 17:52

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    d6c0322eba3efec10ce67a741f5c258a.html

  • Size

    34KB

  • MD5

    d6c0322eba3efec10ce67a741f5c258a

  • SHA1

    9c2bd4213aaf9a378cb83896bd7057b4439cf4a3

  • SHA256

    29752ce37c6ffd35802bd374bd64aa3fd674e33c4d904aaed1b9c7b1b2f006c3

  • SHA512

    41eef55df58773708c8f0ab9ffc316a9c8bc28bc0becc005857cf1123af59935fb7c377e5c7e5c7ac092294ad2f5c4af3b3cb2669ea53369290f168c200b069a

  • SSDEEP

    768:/8+GtbDgOyizGLugdGLgDKc+1Swk6RGM06aXmSe9rCX7CesIDSsB62wA+bfN2SFn:/8+GtbDJyizGLugdGLgDKc+1Sd60jrmv

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 34 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\d6c0322eba3efec10ce67a741f5c258a.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1124
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1124 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:3044

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\24BD96D5497F70B3F510A6B53CD43F3E_3A89246FB90C5EE6620004F1AE0EB0EA
    Filesize

    1KB

    MD5

    afa55570eaefad1a8a1d1230bc2e5534

    SHA1

    760aab283849506a817dd3f3a747ff5dcf6b1a87

    SHA256

    3a39c8491c8a4f9f57f49221bbaf876929568a4235f4647cc4c730b1cc526aa3

    SHA512

    386b540dcdc1137ad7854732735e6ec3d3d2abcd8fbe02f7ec5f5b69563ee934ba55ccddd5e5188474f0055503f4dd6a440779a047bf075f16dacb297d0f6cad

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015
    Filesize

    67KB

    MD5

    753df6889fd7410a2e9fe333da83a429

    SHA1

    3c425f16e8267186061dd48ac1c77c122962456e

    SHA256

    b42dc237e44cbc9a43400e7d3f9cbd406dbdefd62bfe87328f8663897d69df78

    SHA512

    9d56f79410ad0cf852c74c3ef9454e7ae86e80bdd6ff67773994b48ccac71142bcf5c90635da6a056e1406e81e64674db9584928e867c55b77b59e2851cf6444

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    40fb6cc5a9ede83d4eab2c6a423c39e8

    SHA1

    86fd1acf0eb9453361dc68e718800456b022410e

    SHA256

    cb6b75a22394c959dba74184eb2d0eacd65a21fdface6a5be6b0cebfeb927a84

    SHA512

    0bfd2e315b4e1a2841c7f201da1d6a751c5843d5222ca34a74cdd97e4b37baaa517646f33075634a620d13d829a7ddb319ab8edd09ed01e7c4d1e9f490acf13e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    e123e78eb5ea418b91598d6fbd0d1ad7

    SHA1

    2711ebcb916635d141d9c968d4ad15625da81fba

    SHA256

    acd15405440198a2eb26e619078ff05818287667dff2dd641c802ec0e98a11dc

    SHA512

    548010ea4c2467a0c78bbb91489b09d952c21b0e1d556bcca9a97b0c25548971285117a8f9d12843b8637fd75e6735cf3fe1dfb4132876d6c887957df9cf61da

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    c601c6ab7fec20d813662d4b8636d1d7

    SHA1

    20f78a908632335860a6ac10bd1bde767fb28703

    SHA256

    aa42c63904d677fac266905dcc790c4fb4695ea335f81c54f66476444b0958ae

    SHA512

    4b3a1ef907d7ca7f7cd366f47549f1cc51873a64f3f34161a9ff357461a3d23a5a197396af28bfd2ca3e61ae06c76bc2d0c8dde017d4531ab9f32d7781bcdd9c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    3e73b548eeb03a0646bed56f35c5c1e9

    SHA1

    d005810deac62c8cedb896ca53565ac503089a96

    SHA256

    13baddf74eec0063b99569770b0d91219a312e8a1f460cb938e40310bc975bde

    SHA512

    79360e445d75875b6e7e0b2a0de41ed8fc2e7c697c59f9a2049ce6f1850d9d824142392755afc8e4eb66dd8c969929340116f5b34f839429fd1b811da4d47ad5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    fede8a8234f431ddc11c5a8dc3ee9d9e

    SHA1

    464d1eefc48bb2b77716a91728ad288b1e66e548

    SHA256

    b61c26cf071c1453dd709637e8765ba7c966612bc539d2a732d3416ec76f158b

    SHA512

    8bb1ef57ee996745f9d7899c4c9bbfa9c6c0dd0036eda7c468214ad63b759032e22524447654a96ba7b25c24fa98f6618fd306e2d4611aa1af8a6c6287f39ce0

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    9410cf5fef0603676f8532c5d3e5a7a3

    SHA1

    94bb71ef41640477eadbb1184609bed9d21c3df6

    SHA256

    81a7e7b3d0c444169d2d5968d29010eb6fc50dde376a9ac2fbde2bf347be8d2c

    SHA512

    7d160c64224cf26b52908fdfa7d04426132630857bff536afccbb738940e5b5b191a00b5f11146c177b1611ba57c5a0fc6de7980e178f16aca9b18bf855d78d4

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    1a6781e105eda13b80eb52a8c191eb27

    SHA1

    ed3a275433582499eba4bb2875b692e1e753e94e

    SHA256

    b20c29e499a3986238c79421c9d5e21a8bb381b4d19e3c0d97d10aaa4508b767

    SHA512

    ea1a2502bcd639ae656043691c767fc13d2a52fbfff981068848623a2aedb54c3d9b248a48093624ca919e30ac692d665aaabdf6dac00296ec558f75da030033

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    0489b4d14c3f0c23d1552f3efaae0bdd

    SHA1

    7c43c3a38e2532d721aceb9de018bc410505b2de

    SHA256

    2dd4ea31515c62fbdd16fb51ae43d6d73ff9eae7236dec765dee2e10f8f0e647

    SHA512

    6177c850a37f1e85060818e604bf178b31a55b9659cde3aab5fe9d7237c369fa356623f60cccdc2da0af1fc66916a8a9f26037496eab8add67971937ecc36fde

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    88e757de9bb9a08a40c88e1806429f26

    SHA1

    8fa7abc4c093a9f3d73dd483bb8fba30c992f176

    SHA256

    8a85aa1ac28a3926b68a3fae1d5ff9b47aad1e4b69ecbe3fb205da15e5d66185

    SHA512

    c590e8a5eb4a34e0c27ab285485c06a5f6b186c007ad27e320df61330f1a693eeed2d470fcf63c202b0c2d0790510ff8dbde43ec8466269a170893c8bf92102a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    a2a199c632ebf3584a066ba68553827c

    SHA1

    47e077983c138725243dce1a03e8e4448488cdfd

    SHA256

    f16307d80048c999511b0280d124cfab4d08e38b298443452bca534845b57c3a

    SHA512

    a422c8537134e07429665d9e2583e83eadc2e73037efc88eb9dff89fd818bee8faf002f78fd28e0ce81ecc611cd6f0cd3a32856cc485d2ca2e44d11b9d9898d7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    d90979d0fd15090bf7535c66acce4128

    SHA1

    e4792b67072e4b100f722607b94616dad5c82f1d

    SHA256

    01333042755abe0cba498786e3fbf5a3b4ef23ed6ac7b848887e71c16c16acd5

    SHA512

    c9ff54fbb651130935859ea358d6f54fca5f43f0d52e67ff2110b37d15655ff73a14660fe4991d5e0aa34e5be81d61563b266218204898826d80a1c363596d78

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    6631404cfe8546874ecbd3c695e5d00a

    SHA1

    b1ccf0dfe1b4d0cd14c3c03520620800c23ba5ae

    SHA256

    8f5f1e8ca99a7e18d41e0acd38e40572709402f6c24a373ce84d3e477e131afa

    SHA512

    aac581cafea067cf4051ee02f54812b7ab5771d579af180196e921fda0ec9784565b3fd6297158965c863c88e2324d6c12c69a3ee35e1a5b09b82b336914fa7b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    8efbe6969d0d249302922e6aac2204de

    SHA1

    9a10c0495d058ad9d0a1c3220ad10abab48c7c93

    SHA256

    0c457a54d0f5714397f291c0199afa9f9cb9888e2f8644647f0e3efeecc3e54e

    SHA512

    b5f0abd83425cc6ef9adcfab25cf20a9005240c4b20f2faebc6028e6e4da59c197bd94b07581a850ad801e301103e4c60f96df719afa66ab0a799b256cdc5d4a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    c5550641052c6cfb7d1cd934d1c5e0ba

    SHA1

    b7def7066982ff684da106c2933136b400db0eb1

    SHA256

    16ff2f06cbb24a3efb2efc77eb2d67c20a3736f8496afee563f0585c92c5cf08

    SHA512

    d0e6b86ad68117619975e390e6f58740be5ca4ffd0884f74c9184c33d4000144c44294a36dde5ec5aade18fb909c5a444cae1d9e6c94d690b7442abaad1a3983

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    a54b29355ec5a651614e0305b4e13a5c

    SHA1

    3a3285305918e6acb463705451797b84a1ac9ed3

    SHA256

    9ec043f0d04ae9a775306c9a0bbf1e14e7700a05e5eaf4816b3f17554ab4824f

    SHA512

    a4b9766058c4c4adf05971888cd9580788077310c8221c324e2029b60df1215d4a576db7b1e29008086f2765aa62b37edfbbf5769d37f56155a903f4e8268536

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    0ef2002a3ced236990f39fcb4d70f532

    SHA1

    53a1034b13f00276d89595c126428f7f0d43cc59

    SHA256

    fde4a3c1d092082a62712267547e0fb865d64bd64bfc1614a53f60313fe81a9e

    SHA512

    3f5c4a79991986ddd3115538521f8148e1f2f9c33765d373d07dae9a15fb622a32f3989e6fa5471684c455f0a5d6b78d33ecc22b4a81a3295f63caf04275c191

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    ce6e89d1f2fdf01534dcb864436764cb

    SHA1

    2180242129e027c0254a3b53bc15b001552ffc0b

    SHA256

    8c3594ffd9b981a45b55cd40e9285394c4220c4b3d3f4c054781f92b9cd889b8

    SHA512

    737e3d151e759462d6b33659c939112a93c1529ea61e7c60c499a9581d4dee25cc2575b85b0560d6c793cc3603a9afde246b06f8a834dea8cdfa99287671043f

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\K224YIDM\platform_gapi.iframes.style.common[1].js
    Filesize

    54KB

    MD5

    ea9dd251399dd23cfaaa58cd75d83802

    SHA1

    fc80615d89aced96d1c7d9e4226b1b39986be9a9

    SHA256

    e924fdde63edcafd0ae3c3f223cd2ac30c8cd2f71fc6da9267566a6a3a285ec3

    SHA512

    1d0640ba21d600a7a7f6d1eca0d7c7d22aff87d074c97bb9f3ab44ee9f6dafc0db075a2a39ff04c0e721b2f046aadb8ce1e860a73e9f0b1123d70e6fb59246f4

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\LF4IFORF\cb=gapi[1].js
    Filesize

    132KB

    MD5

    c23494121f5468488a8e79a6268f4648

    SHA1

    1fc2646c75df1b8528667487997ab1f5b308133b

    SHA256

    100700c4795780ff97f999795e8477954da09fcb92a1131cd17216203914c425

    SHA512

    956f396bef9df5a542ae410256686e2259e1ae67402615f937c2f2c004ff2f3de5f5767200661c0ce204fed9b32b1a8707c26a566da1d3aa120d428901c39769

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabCC46.tmp
    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarD800.tmp
    Filesize

    175KB

    MD5

    dd73cead4b93366cf3465c8cd32e2796

    SHA1

    74546226dfe9ceb8184651e920d1dbfb432b314e

    SHA256

    a6752b7851b591550e4625b832a393aabcc428de18d83e8593cd540f7d7cae22

    SHA512

    ce1bdd595065c94fa528badf4a6a8777893807d6789267612755df818ba6ffe55e4df429710aea29526ee4aa8ef20e25f2f05341da53992157d21ae032c0fb63

    Download Submit