Overview

overview

1

Static

static

1

e203f5c428...3.html

windows7-x64

1

e203f5c428...3.html

windows10-2004-x64

1

Analysis

  • max time kernel
    122s
  • max time network
    146s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    27/03/2024, 15:36

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    e203f5c42897c82d9f5827ed88c48ce3.html

  • Size

    432B

  • MD5

    e203f5c42897c82d9f5827ed88c48ce3

  • SHA1

    95cbaba1e7906e84a77bb3202e3200cc5d746e6e

  • SHA256

    1b818044079271465be8bc7da5696f324fce40d51dcffab4173e3907e84e7e20

  • SHA512

    855ce9dc3fc058f65946bc2f0bb0fb5968b160830f9f55b11435a5e14fd9aa66cb03cd04294bb67697184222828cfee6066c5f0872643b8614af357d84f5722f

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 46 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\e203f5c42897c82d9f5827ed88c48ce3.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2456
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2456 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2956

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\3C428B1A3E5F57D887EC4B864FAC5DCC
    Filesize

    914B

    MD5

    e4a68ac854ac5242460afd72481b2a44

    SHA1

    df3c24f9bfd666761b268073fe06d1cc8d4f82a4

    SHA256

    cb3ccbb76031e5e0138f8dd39a23f9de47ffc35e43c1144cea27d46a5ab1cb5f

    SHA512

    5622207e1ba285f172756f6019af92ac808ed63286e24dfecc1e79873fb5d140f1ceb7133f2476e89a5f75f711f9813a9fbb8fd5287f64adfdcc53b864f9bdc5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015
    Filesize

    68KB

    MD5

    29f65ba8e88c063813cc50a4ea544e93

    SHA1

    05a7040d5c127e68c25d81cc51271ffb8bef3568

    SHA256

    1ed81fa8dfb6999a9fedc6e779138ffd99568992e22d300acd181a6d2c8de184

    SHA512

    e29b2e92c496245bed3372578074407e8ef8882906ce10c35b3c8deebfefe01b5fd7f3030acaa693e175f4b7aca6cd7d8d10ae1c731b09c5fa19035e005de3aa

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\F0ACCF77CDCBFF39F6191887F6D2D357
    Filesize

    1KB

    MD5

    a266bb7dcc38a562631361bbf61dd11b

    SHA1

    3b1efd3a66ea28b16697394703a72ca340a05bd5

    SHA256

    df545bf919a2439c36983b54cdfc903dfa4f37d3996d8d84b4c31eec6f3c163e

    SHA512

    0da8ef4f8f6ed3d16d2bc8eb816b9e6e1345dfe2d91160196c47e6149a1d6aedaafadcefd66acdea7f72dcf0832770192ceac15b0c559c4ccc2c0e5581d5aefc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\3C428B1A3E5F57D887EC4B864FAC5DCC
    Filesize

    252B

    MD5

    715288b198926455d90b84a95a252b23

    SHA1

    aa4358c92e86f5948dba496f268071847e2323e9

    SHA256

    6ac26fdafe63e8c237754f10180330a1bcdc85ebd5dffe2f2de53510488917e7

    SHA512

    ff116cde19ea0fb6d5b52a784ddbe3820cb98e679d0a2aec4efc24c1a459688aee3a877d170518f151e0e7105a2c87b35a21eae09990d750e5e07304bfa80ad6

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    778a8a8ebb5208bd7bb64afce680007b

    SHA1

    503c03f988a41c85ab8470b576297e6182ecfd72

    SHA256

    73b59f7f30539759b49394885eb172502463528b93e83a396aec144f0d5e6d2d

    SHA512

    d1f9a4f177529f03a19cea3a5e67c063923a7038050d255cdbac851b15bf2a52b3136019bd99b12f2653939ce5cd980a65a58fa81fdd61988d6c9b3e12fddb79

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    174f3563832afbf8bdab1e706233a2be

    SHA1

    d5d82e9fc308869605bdab5a2129fb39e8375eb9

    SHA256

    5e6fb40bd6429556b514ef4a5bcb3deb47a1e891695bac417e56b95a696d781a

    SHA512

    3f604f4cbbfc34948e86f6bb9080a3e6a2a036dc8c026252bf3c4ac9000e4d0f3f7ea8ede0da1641c1fdd0cff8050e5c9f39613663077bd8611b554b2276d47f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    65062531783dce9fc466a9f6f6854c3a

    SHA1

    27c00a5bac1b47c5581a0143fc97b7a276094073

    SHA256

    79653fa7a3803e27c3fbf1fa1a97f88ec4e0589d0e832b149d0516bad5529b3a

    SHA512

    cbf79b4345ccfe62e30ae77da12ec28cb068fe9f934a20421104b1eb6d84198dfa06b877507c7f54c6425f77cd93387a95eabdb64e70723844fa8dbd2bd2c460

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    a49e292683c76bbb00760e4761afc78e

    SHA1

    87568c2a51f89ac03c773628f35310a6bc17858e

    SHA256

    89466bf81c892b36643ffc082525e657eadf3c8f88a2cb4e49ca82d9c352372e

    SHA512

    cb5fbe576035aec32a44c72ec5e0ff15fe9175f551f32f2c2060f5649230cdc1ebebd64cf45aab821fa895acd3e0a9c69a3f12c64b1db8fc9d5cdac0d66733df

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    137c945f09a45c53c1b31ec66ad7caf8

    SHA1

    7184e7f380fd674c721cab2be3ee26902728217f

    SHA256

    81db04d6502b3822fbb5b053cf9d4defa795bc26f15a188707bfc743f45d70fe

    SHA512

    452a6212fb079c7f10502d631c16e12df870868a06fe018a2731beba5e7560f690ef57400fa9f1600296d907ceb0da979a3d9cb88782afd548ff90f2baff26ca

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    d47605f4b21cc14a24d73fd98c85a1b7

    SHA1

    565dd09725c13091dae167f8a4830c54e25ce9f1

    SHA256

    84e93908dd4fc0f0edc86870550104d2e24be4fe08450dd9524cc5e6c7e3650d

    SHA512

    1c347f4cf50b278dfe02986445a6c33a96899b9121a1d9f83418999ba120f4d6e1b482fd4f676fd1f0e2936cacd6a7f8086cd750ec2425cb894459b06e4ecb13

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    3bfd227df4d77c1cb381d7d9299ada54

    SHA1

    59879b120ad462b5135cca7efc371bddf5c63105

    SHA256

    2ced652a70641d7c19a73c74f9ccea042c1f3589fe24d42aa12a51856781f17e

    SHA512

    27d2fcd3e197ae4c932e94663dc3cc911f274ce1e3f201524e6707596f8086c13fa9d65228d8cf368f54c62250fa42ebaecc7e66147ae33253686f31a94dcea1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    c775da4f0206b40bb41b5690b52e48c6

    SHA1

    2168b69eb9e7312edaa656b17f7453ba76d1ed93

    SHA256

    84987ddfd7be0ff2dc337fa3b3f40c5bc028c08d470a97a8de7c713f93d23004

    SHA512

    caa85a5b329f3b21c5fa65085e59c7205ceeb4cff377fdc6fcbd2a9fc7ba6dad5f4bd201ee810734eb2f6412268643d0651d9051e713e7ce5ba6a2a4a7fc0fdb

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F0ACCF77CDCBFF39F6191887F6D2D357
    Filesize

    242B

    MD5

    82d52067b0517da202788ab37af14224

    SHA1

    08d01ba48f0b1539598bb2250ccbeeb982069ad9

    SHA256

    231b836548f27b16056c07102f375c4419958d55f690ec53ef362ac6e1f97b44

    SHA512

    bf96f7fac4807224bb496e0a794af406ef3cf1ea4518cdabfda46c4f1f419a493ac2d459606ed4e044052206f0872f7df52bd391eca4239da15843b274e253af

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\WOO7GJ5N\zabedreb[1].xml
    Filesize

    13B

    MD5

    c1ddea3ef6bbef3e7060a1a9ad89e4c5

    SHA1

    35e3224fcbd3e1af306f2b6a2c6bbea9b0867966

    SHA256

    b71e4d17274636b97179ba2d97c742735b6510eb54f22893d3a2daff2ceb28db

    SHA512

    6be8cec7c862afae5b37aa32dc5bb45912881a3276606da41bf808a4ef92c318b355e616bf45a257b995520d72b7c08752c0be445dceade5cf79f73480910fed

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\imagestore\q905y6j\imagestore.dat
    Filesize

    1KB

    MD5

    d768b4cfac26f5ac439f8bc0b31f4ed4

    SHA1

    668843f71ac719c6d53c6d9d43d669ae598b5c5c

    SHA256

    b174d7e5649af81ef20bdad5b5a85869d539d9e94fbe08e63adec3ec2ad27488

    SHA512

    dc5755a63a05d4c533a8ee15ca2669285f9144ab40801cae1952c9786ed1059180e3affa1ab03b2286fb1ae74a34dec084c55139e6a06d9877db8da23c0f0b13

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\imagestore\q905y6j\imagestore.dat
    Filesize

    2KB

    MD5

    644ce4b42b55bdf02db12ea9e6a3ab30

    SHA1

    20482b8e0826aff50f966b0e8e871457d335c39b

    SHA256

    2d89cb1ba47c3b05655cd904804f23d2363630ed66781266048f67bee6138af5

    SHA512

    a60737bdda401a97499c56f24df48242c702e54c31777ecc21f62472ef276b27996e18a283fb6c590758be605d6e9742f8b7dadc549addce4bd3d69dc55c4596

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\L9PN2QMY\favicon[1].ico
    Filesize

    1KB

    MD5

    91abe01116ab422c598e9c8af72cf4da

    SHA1

    0f2815fe8e067d48537ad168225ab4674271fa27

    SHA256

    b1d7aef06456fe7431124129a28f0138bb5fccfa4f4161e3087de23c005e5edc

    SHA512

    a4d5b20c3014153b6b382c43404917bd2cb5bd2a59bb1e981f5a19eb7dbdec185ace288e9700428d24e5ac623e45d04905e706f0c45a1642b1aa6c091213c23c

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\U8A9A2DI\favicon[1].ico
    Filesize

    1KB

    MD5

    668ba1a9fa1890ba16cb8adc28d3dad8

    SHA1

    5e35223b2541265114eaf61b9da2556c812fea17

    SHA256

    7746cf1b553433822522f2dc432f55fe64eee1f1cf823ef6adfde02e58e1d7e2

    SHA512

    212aa3e6ea6a2dd1abc10d4a96b7be179e0e490da187641ae3be7b7c0c30b7272d8d5b37b1c6ca5c75732dfb35a8ee30fa97cdb35704b97eeee11a2163e53664

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabB916.tmp
    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarB917.tmp
    Filesize

    171KB

    MD5

    9c0c641c06238516f27941aa1166d427

    SHA1

    64cd549fb8cf014fcd9312aa7a5b023847b6c977

    SHA256

    4276af3669a141a59388bc56a87f6614d9a9bdddf560636c264219a7eb11256f

    SHA512

    936ed0c0b0a7ff8e606b1cc4175a1f9b3699748ccbba1c3aff96203033d2e9edabf090e5148370df42fbfc4e31d7229493706ff24f19ff42ff7bef74a6baad06

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarBB30.tmp
    Filesize

    177KB

    MD5

    435a9ac180383f9fa094131b173a2f7b

    SHA1

    76944ea657a9db94f9a4bef38f88c46ed4166983

    SHA256

    67dc37ed50b8e63272b49a254a6039ee225974f1d767bb83eb1fd80e759a7c34

    SHA512

    1a6b277611959720a9c71114957620517ad94541302f164eb872bd322292a952409bafb8bc2ac793b16ad5f25d83f8594ccff2b7834e3c2b2b941e6fc84c009a

    Download Submit