Overview

overview

1

Static

static

1

ddef2c11e6...5.html

windows7-x64

1

ddef2c11e6...5.html

windows10-2004-x64

1

Analysis

  • max time kernel
    143s
  • max time network
    146s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    25-03-2024 11:47

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    ddef2c11e6f16760fe455c24ddba31b5.html

  • Size

    87KB

  • MD5

    ddef2c11e6f16760fe455c24ddba31b5

  • SHA1

    214c645a4321790ca0a2b3c7c3cb0b6b7af4b1a7

  • SHA256

    9978fb93311690664680dd38ed3393652f9942d60a06fb1fb3aa5038d250b75d

  • SHA512

    35fbcf2d3442d23c0b811f5f0f9f737192b5e7fa2f1f505a1b02e42b50eab3d728886b4282111db4c0256b0883fac0db7fc8660f7aa7e5518bf5e97454a58c30

  • SSDEEP

    768:WfW4PEXsEdio56SWdhEqV2JnVwaeKfGOPCNCBuesH8AhT98MXVJb3VEU9cFK:4W4PEXsEJ+21t1CNCBueuR9cFK

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 44 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\ddef2c11e6f16760fe455c24ddba31b5.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2020
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2020 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2176

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\3C428B1A3E5F57D887EC4B864FAC5DCC
    Filesize

    914B

    MD5

    e4a68ac854ac5242460afd72481b2a44

    SHA1

    df3c24f9bfd666761b268073fe06d1cc8d4f82a4

    SHA256

    cb3ccbb76031e5e0138f8dd39a23f9de47ffc35e43c1144cea27d46a5ab1cb5f

    SHA512

    5622207e1ba285f172756f6019af92ac808ed63286e24dfecc1e79873fb5d140f1ceb7133f2476e89a5f75f711f9813a9fbb8fd5287f64adfdcc53b864f9bdc5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015
    Filesize

    67KB

    MD5

    753df6889fd7410a2e9fe333da83a429

    SHA1

    3c425f16e8267186061dd48ac1c77c122962456e

    SHA256

    b42dc237e44cbc9a43400e7d3f9cbd406dbdefd62bfe87328f8663897d69df78

    SHA512

    9d56f79410ad0cf852c74c3ef9454e7ae86e80bdd6ff67773994b48ccac71142bcf5c90635da6a056e1406e81e64674db9584928e867c55b77b59e2851cf6444

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\F0ACCF77CDCBFF39F6191887F6D2D357
    Filesize

    1KB

    MD5

    a266bb7dcc38a562631361bbf61dd11b

    SHA1

    3b1efd3a66ea28b16697394703a72ca340a05bd5

    SHA256

    df545bf919a2439c36983b54cdfc903dfa4f37d3996d8d84b4c31eec6f3c163e

    SHA512

    0da8ef4f8f6ed3d16d2bc8eb816b9e6e1345dfe2d91160196c47e6149a1d6aedaafadcefd66acdea7f72dcf0832770192ceac15b0c559c4ccc2c0e5581d5aefc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\3C428B1A3E5F57D887EC4B864FAC5DCC
    Filesize

    252B

    MD5

    d13d36289447c3588c5e7fccb9449408

    SHA1

    2e3b406f4fdc4b7045f9739092011467b7be2dbd

    SHA256

    0e8e51a156a8e74d6f54356a076a8caa2eca3bfbc0dd7cbcd7c7c30db3a30d4f

    SHA512

    b1f4d39e7ed7be6483290a91b0598387df949ec66ea46ed86f12301887591493f3cd62b81d3893404509200198b0a60bc0c86dfa8c2da992f376eb45d2693474

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    e6db14383f01a2df72b5e2350ebd3c50

    SHA1

    49318e38d0295403e671ae7c12cf9bf03b3bff5d

    SHA256

    6cc8aa230bb30912394927af8e110f95290ccaaaf3e3dbe3c8c2b6ac9d92b70a

    SHA512

    f622b4edd755e81ec4beed0f2cdd85f90e6670927d1596a2a5ceb0034a30902a0179f8a0f1b03c3b8cf9d7dbef230c9334d1fd9ba8815a9474c2892dd90521fa

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    3fa84ad91a55b0eae971d27bbd20bb8f

    SHA1

    71c2a5c08a901404ccdd025ba4b6bbfe71a2b585

    SHA256

    d2cb7f7d38ed935d20a9688c6f327ddb9d454aeb342b6054c525857594a66bb7

    SHA512

    2d4fb4ba0e5fdea2b427dbbf6f6134071e3e6c4554afc2e1b962746078215057a5fc048d899c7f6d0e1fcb577d23d9b293fcf7a762ea5733e5ccdd7b9ce861a9

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    f9d35ba2113df56c155ac10b3949388a

    SHA1

    b79f58debbe8dafdc5e7e1339f3f716abebeb70c

    SHA256

    98e9370398f96da0ad722f49bdfd5c5fed5598f782aeaa3fbdafc5efd77610f6

    SHA512

    77b8aa12053323e9056a22eb455e64262c6754e7f0d27d81f01e024decd1f6633b1852dcaff44acfc07e208172522dc1c6c1829eeff9f3eee63201aa49b75ed1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    38fddffda70ef850d2bedfc81a61ce23

    SHA1

    9e40d4ecb9cc8b607c5238b5cabbf6038f047690

    SHA256

    2cdd1198ee5e25ec039a99fc44894162a53762ada302adb95b516c5b9b3445a6

    SHA512

    3df1787843b4bd264caffec645bf385af9ebee8a83736bf70c3d3ea20facb73881237b9419721401db0f28d3a5e2c376a76add7655733f6fef9eb09cab1fe2ca

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    2f757e776bce52b3456c9a6cd69c2b71

    SHA1

    b765c66bebc18eaa086efa92a27e547b8c841a6f

    SHA256

    daaadcc89ce77f674a438dd49a749d9fa972d7f6fd4e1980453bebe316acbb4f

    SHA512

    7f63647685f7ac19a887e1c41681dee813ab204f69a43f07a037bc773639d71653cf0a8028116e77f33cf747ea2954f3f2f776206b9b996d72f29a56d011a30b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    ff8f1281d8fb3784d4b9ec1dd568b714

    SHA1

    388e9b59076d69b092c45cc86e13d09f2c8aab64

    SHA256

    a91b98f1081bac605cf9abb97ecd22e177d586ed8c7ea2fd2133a5370decda2c

    SHA512

    917bb80e9d74757ca7d76f22cdb2605e0b53b44519a0a020d1a1ff8e1f30da006887ec97bac2727fcfd9b2965ef938a7e4ea19ae01168e40fd94406d1312b62c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    54df8b9cda29b3d341c6773f6a06de48

    SHA1

    837ad64e4045935af426ce7264ba11d840feb41f

    SHA256

    473499c498a4ea8c8bd5e51c3d50bb3b0484999786ab02ce0fc6eb583ba44504

    SHA512

    eef040cb5d8b7002502126e0d04a211693d7e706e4486a249f25dc5af7e489d69fc6a98f5c570befe49523182d4c94e8711304fac9dd13431290029225195e30

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    a0d47654fa7b63f9f2dcc9f314d28206

    SHA1

    c0ca7d3ddc5d98a2191b09a66ec0b2f6ba3b26e5

    SHA256

    2103fa560e625c228a7a3b86e18a7a2c41373f721f6bb3e00ddf3f69b852021e

    SHA512

    7f323738e30986712d738eed272d56458caa940d12c04c19d17f01df2195ac90a5922fcba54244a5774eec5e7025caf318a45d115d137a22fe54361119710629

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    bd6f521a4a1d0e3704711be6a63b5187

    SHA1

    fdb3f97d013333a534c3eb6f63f51619e1c9b4e1

    SHA256

    e36681391729581e548da50524e402788ab05e980bdc63abf551fc8cbfa4034a

    SHA512

    f15b648cc0d1e4309caa4dbf154a576f7867eb92fd8f1df1acc4329c73aaa6d3790fa6f8958bd50068a7fffc99c01bb8860f47521d078d24077e1698e7df113b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    ad74182c226e421db9802736d7e77c3a

    SHA1

    38d16cb4de312f34af0cadcb184e00c1a37e3eaf

    SHA256

    ae28cc0e53ae1e25d3c2022730c0d15d4f36b820f562bc735d71bc248462e59e

    SHA512

    850193a1a0aa80d3c052654e1aae57e4364cc31ed86b6ef3c8535f0cb41ff12de3d76b1b9cd774bd126814871686b73fa7aceddfd64280a563f19049092da982

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    2273b4325e3e29e99a7884992a55e750

    SHA1

    158a34bb865bd883aa2f5306b9e460f7ef300636

    SHA256

    9865c42ff197e10f886a34244ac9958ea756db4e6c411c1bc3a5241f02198c5e

    SHA512

    5a2c31ccbadee192db5cc3fb4f5ca1f6368538cf0bd19f3a6ceee0e872bad6302bafa8b37c8ad110e3b5c98f9feacf5106a8a30a617f5deabfbecaa06e2e9f77

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F0ACCF77CDCBFF39F6191887F6D2D357
    Filesize

    242B

    MD5

    e08d3356afa52c1efe542241bf42e061

    SHA1

    0b939f5e3a96733acc02984b958d8ad37b8d4ab2

    SHA256

    954e504dc3781e3f990f0c78de0e4b0888b13de5bd9f2d496fe98bf36ace74e2

    SHA512

    34c4b8f83aabf7881a140f433d58dd821a56d9e048a5136bb2796a2be790fa9effd80feef371520531be10563df98bcb490ebc60d8a377ab598be6ebcb99d764

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\HQQVSTWU\f[1].txt
    Filesize

    173KB

    MD5

    1064bf06b5ff80b0c35fc67f44deb0e7

    SHA1

    ad64c73da37514d3154915054098b38300c0f186

    SHA256

    f9b9f949bcfec532d8d79bc363e34368a1a9ce7c6ce3a0b6ad93b21875bd9325

    SHA512

    ea14feb269089564c9c7e7c1c93fbafc2f98bdc4621cd51e87dc60aefcc38e69e95202791102bfda81d86451a15cd9356c698df2701ae7a8f255238ba1e4815b

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\HQQVSTWU\jquery[1].htm
    Filesize

    274B

    MD5

    dde72ae232dc63298465861482d7bb93

    SHA1

    557c5dbebc35bc82280e2a744a03ce5e78b3e6fb

    SHA256

    0032588b8d93a807cf0f48a806ccf125677503a6fabe4105a6dc69e81ace6091

    SHA512

    389eb8f7b18fcdd1a6f275ff8acad211a10445ff412221796cd645c9a6458719cced553561e2b4d438783459d02e494d5140c0d85f2b3df617b7b2e031d234b2

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab651A.tmp
    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar6607.tmp
    Filesize

    171KB

    MD5

    9c0c641c06238516f27941aa1166d427

    SHA1

    64cd549fb8cf014fcd9312aa7a5b023847b6c977

    SHA256

    4276af3669a141a59388bc56a87f6614d9a9bdddf560636c264219a7eb11256f

    SHA512

    936ed0c0b0a7ff8e606b1cc4175a1f9b3699748ccbba1c3aff96203033d2e9edabf090e5148370df42fbfc4e31d7229493706ff24f19ff42ff7bef74a6baad06

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar683F.tmp
    Filesize

    175KB

    MD5

    dd73cead4b93366cf3465c8cd32e2796

    SHA1

    74546226dfe9ceb8184651e920d1dbfb432b314e

    SHA256

    a6752b7851b591550e4625b832a393aabcc428de18d83e8593cd540f7d7cae22

    SHA512

    ce1bdd595065c94fa528badf4a6a8777893807d6789267612755df818ba6ffe55e4df429710aea29526ee4aa8ef20e25f2f05341da53992157d21ae032c0fb63

    Download Submit