Overview

overview

1

Static

static

1

download.html

windows7-x64

1

download.html

windows10-2004-x64

1

Analysis

  • max time kernel
    16s
  • max time network
    18s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    10/04/2024, 05:57

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    download.html

  • Size

    81KB

  • MD5

    a810c5aa16fece8fa119b39da8298bac

  • SHA1

    cd48aa339360e460696114b83ef28606675e2f96

  • SHA256

    f313b8b410a0b416d1b85cab5567d2911979797cc46a22d350899ee6f514f35c

  • SHA512

    1be3050a5e19e830f6a5431bfd201a018ccbd9f498b7924a7cfad7f157442484c3c8ef15cb85cddc624af7249186166cd1f7159a37a429abafcef562d901fe98

  • SSDEEP

    768:8ELjDXE76DSGP+mNO5Mu1GydJTtZ+Wtqbkjk+IOnhpWu:BBuGFK1GydfikB4u

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer Phishing Filter 1 TTPs 2 IoCs
  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\download.html
    1⤵
    • Modifies Internet Explorer Phishing Filter
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1740
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1740 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2768

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\103621DE9CD5414CC2538780B4B75751
          Filesize

          717B

          MD5

          822467b728b7a66b081c91795373789a

          SHA1

          d8f2f02e1eef62485a9feffd59ce837511749865

          SHA256

          af2343382b88335eea72251ad84949e244ff54b6995063e24459a7216e9576b9

          SHA512

          bacea07d92c32078ca6a0161549b4e18edab745dd44947e5f181d28cc24468e07769d6835816cdfb944fd3d0099bde5e21b48f4966824c5c16c1801712303eb6

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\24BD96D5497F70B3F510A6B53CD43F3E_3A89246FB90C5EE6620004F1AE0EB0EA
          Filesize

          1KB

          MD5

          063736d1569164c37bae852beae60487

          SHA1

          577a9c940013a63cbd820c113a124b5b67d30a6c

          SHA256

          efa1444be7c95125fd8a9439bfbaa9a131cb17c9105ff5e2ed92de6b52af2e2f

          SHA512

          dfabd502c67d2a20313169d459fd43257079023ebcf70704f1e919de95ae07fbaa9c430dfd4ae9d30c1cd9333ed280fc4544a9e2421768e5d629e5caf51f61df

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015
          Filesize

          68KB

          MD5

          29f65ba8e88c063813cc50a4ea544e93

          SHA1

          05a7040d5c127e68c25d81cc51271ffb8bef3568

          SHA256

          1ed81fa8dfb6999a9fedc6e779138ffd99568992e22d300acd181a6d2c8de184

          SHA512

          e29b2e92c496245bed3372578074407e8ef8882906ce10c35b3c8deebfefe01b5fd7f3030acaa693e175f4b7aca6cd7d8d10ae1c731b09c5fa19035e005de3aa

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\B40C36E5FD2696E9BD4DA6029E4B0BFF
          Filesize

          503B

          MD5

          bf6004611b868de8f3d007d0079aa90f

          SHA1

          99be4f3c8093467d219aae2dbda8f742f4f7cee9

          SHA256

          97968d2c9b6f503b22758030268c31973c6322a592eb2c4ea95f8034c9b54a3b

          SHA512

          efba1e13f60d6dfe928101ff68e57a535b5d2e23671c9546fe8ddf2d657cea63b72f27dcf95b1be0f6d2a469120ba8c2375bd65e075ec2d0df471a38cacb9260

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\CAF4703619713E3F18D8A9D5D88D6288_A7725538C46DE2D0088EE44974E2CEBA
          Filesize

          724B

          MD5

          ac89a852c2aaa3d389b2d2dd312ad367

          SHA1

          8f421dd6493c61dbda6b839e2debb7b50a20c930

          SHA256

          0b720e19270c672f9b6e0ec40b468ac49376807de08a814573fe038779534f45

          SHA512

          c6a88f33688cc0c287f04005e07d5b5e4a8721d204aa429f93ade2a56aeb86e05d89a8f7a44c1e93359a185a4c5f418240c6cdbc5a21314226681c744cf37f36

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\103621DE9CD5414CC2538780B4B75751
          Filesize

          192B

          MD5

          4fa509bf1823a58d920e26fb0338ea5d

          SHA1

          d45bda7f4ad7dd786dbb4833c6c558f00b88a3c7

          SHA256

          0d6ed1ad93d5d9af4df6202b7f2f2e7eac7a1a157a1e4bf24b8d80d75606b644

          SHA512

          85ecdcae64136325dc2ab485f84c23c6baeb06b7cdaeee7d8be14f578248730350bde81eec155301e24922271cabb864b146f01fea38ccc2fab157fce69997bd

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\24BD96D5497F70B3F510A6B53CD43F3E_3A89246FB90C5EE6620004F1AE0EB0EA
          Filesize

          410B

          MD5

          1769d603e93aea4eb9ed8df3a9097652

          SHA1

          d5367e30b2e2c90beea19f3a0501333b8fcc2b56

          SHA256

          fa36ca92a700db9800d70c1b86eaf05e97a9700bd68295a79175ae3537ae24f7

          SHA512

          5a198a880d089aba4de6c8c081d811e57333059f514e23ade9aef55756ab1e192f0c11d28579409cba3ba214062d02b0a103259ea3ec1da8dc28505e2a487833

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          24ff9ea540b402362eeee20e37ccb4d5

          SHA1

          68e6ce516c43784b3c137ef781a5a9aa475f10aa

          SHA256

          9940bb04ba2eba42af87f0261a19a435bcad3b4ee6f9fc1fcfdc4e89ba1a87ca

          SHA512

          5663481d1fff00ccc4278f03aa068797c469ab70eeabb910b664fb924be784ee3fdd2553c1a01e3dd47c1f4ae112e02460f928ff7dbc876f15acb722c919cb62

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          9e32f4f83cb56c7fbedf314830a5af54

          SHA1

          5cac2414373f0d5c97cdadbefe59586c0f9e3bab

          SHA256

          6cc5f0104cd641679b99a2b1d5edf798122bb7637ae95808f017e3046a4b8aaf

          SHA512

          3d09170ffc0685a393b2b22291f62d9749915b23d2012bf15fa6d002836b7a5a5f44d1f105ef3f6274ee91664765970f166343dbe94f82afb02dd0dcd7c1eaf8

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          072c153ebe0e16ff93e31d483831a841

          SHA1

          0d086b567894262587afee0700b6ac19472d63ac

          SHA256

          a3fe0f2848b99887dc59690b3dc4d81f27b92ff1bb510e9e6859f65323f73a4a

          SHA512

          aeac5e7c79b1ee23527d8a782917b4441577807e3d4173de46063160a75b74fab21b03559cc9e1cd994addb42295f1b0a3c3ad387401229139803c017c7bf957

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          fc2cc630a478840ce7d2e3e810b020f9

          SHA1

          a93fffb35781106d6c98cc70db1887f2892236b4

          SHA256

          23acbd25691459e7f1154deec6db24301013b1676bbb0ce664ab1b3142a401be

          SHA512

          9fe38143b19f4ed0599fc31f988ac9ff927681dd31d06d644d04faf62e1360523df863c271d5c0044f48849f4842434e17616a829a8fe9f83bd91c8a2368ddd0

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          7fe38f4bd76db08b4e8b063376004ba7

          SHA1

          67f782ac1be358285bec5905fee6bb2b5c2c2c51

          SHA256

          efdb1219c47a5ba622d38e1fc36871308bcca04de6077442ea6e83ac54ac50ad

          SHA512

          66a377445dd36f79d3ad926a7d3a47cd0af5a9cafe9509278af3fecc138ba82059d729e57addb454567b4e11ae7bbc0dbf171a372548fa0e2a060d170e1c6e36

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          be2f8d33a0be0d0e8c04cbd390610c2b

          SHA1

          83419ec5e21bebeefbaefe87d4f9d6bd73dd2298

          SHA256

          cc17769126b03b87464664c71a86625c0e81a5e7be8dee2f3df83f452fd796b3

          SHA512

          154b1cbbf76f773bb6937e237e753ac215ea825f7785198e833466529f08317420a5e6b086883e712fa6df3041c9357f7a0cc8dfe3e1e55851e920edf201f408

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          603563c72b2818698f63705baf59c36f

          SHA1

          d14b0a0ef17414e2830622d6456e631089c95f59

          SHA256

          cfd9b8287f4d99991b9854b8fa9f2521c20860f31f1e836fa1a907cf7e5ba086

          SHA512

          44ae51fa86550065986d53f8b668f9a92337a6b38f3b2b343cf7300cd97e81887cd5aab86a728bb4c842f2373a49006e3b9bb9e7d95d9c67e030e39ef62b2e17

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          6f1269bd8cb876bc9a14342b8397054a

          SHA1

          521d2a753824694a1042769d3a356c3f98f6b2e3

          SHA256

          1038f85b6c1b8836318832dfedf838d73d377d929ddbb97529740516b66e7876

          SHA512

          1445da7e783f44c2ca5fc8fa6df37acdeb56d0b13378d2f88f058e9355056056ebbb342717f06433fc6c99eb9b10f8707c5f8402cbab2132fee20be9b5bf0635

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          e392b7fdbddff40007ca208c286fccbf

          SHA1

          6a21305260b5fabfb07b80d0d7b0325d10808859

          SHA256

          3c448c860b3ff326d3db4bfdb4ce16ab083ef19d4409dc9222c185a50caf0ff1

          SHA512

          f59712bd626959698c5be95a37ce9a10e878390f5cf55489262afd4c183ba08fcc7d381dbc3df4218e1318c838a272e14c1cd6a63e7cd8a763dba1d60a42bd38

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          75ddddecdaef0229ae43d375a8fc56c2

          SHA1

          fe70b045cf7d6ac57f5e3340fb372ffff6184e6e

          SHA256

          8ef8fd0c585cc26c4b021d4a91526ec7328486b9274764d5251ba6a21606cdbd

          SHA512

          01b21fb6517438992dde679831d1127711058ec21b16aa0e0a6ab23d3c4019ca8a75e0ca22c2efe20a63100f3546ac07b8cbb6f2079e07ea4ef34323fb77eee0

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          eb82bc0e613356f241f20963ee36d92e

          SHA1

          9c844903d16edd153dcaa9a76bd8e6b4de9bd35f

          SHA256

          7b80f75fdb8b35eb7a9f7dd9eb700b4a442142cf88455510f300feea7d611c8b

          SHA512

          68e98a52e6c96fd52a66b92abac5d6ad6b993cf9245352e3cdf0fe6b863223820a1e250dee0a6fdfcafed1c5d4f7035b3e69484858bbd9980b8400d809503b6e

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\A16C6C16D94F76E0808C087DFC657D99_C0E9A060DFB4E460CC3576DA89FF9A7C
          Filesize

          406B

          MD5

          1e4a2a9b0864aba48950f1718049bf63

          SHA1

          0fb57f41cba9b3b795bfed38342e30d319e7023f

          SHA256

          be4cad1ee5672e78bd235768366519a265f2c4955ea124a8a2bad9cfa43e63ae

          SHA512

          d6f833c75f63d52d83dc2cfb6ac9138f3a2a7e7a29406d0598dc8613ca5471d00efddef612d63c353123a04160c114793d8556bdf2eefa6fb970a62620b03462

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\CAF4703619713E3F18D8A9D5D88D6288_A7725538C46DE2D0088EE44974E2CEBA
          Filesize

          392B

          MD5

          142221ab74c128d79dbe19c0eba6bec4

          SHA1

          192455bc33f9844a14d17ec65894338df6e961da

          SHA256

          e3c3e56cf80a148986a0c39a6691b29f6a0efa86917a205d9dd2e629292bb83c

          SHA512

          91f844ce057dcbb46c68582f69741e5d730800fb32d8a0c72a6172bc252a7fb8ec130edcfc5a00ad3fe5652f214fda972e57ef80ec0cf74328e7ab07329ddefc

          Download Submit

        • C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\BG10UTTW\www.google[1].xml
          Filesize

          92B

          MD5

          04a35f5edfcefa3e7cbbded2a932a949

          SHA1

          5307a94aa3d4baa0ff5daa99e73a69321647f75c

          SHA256

          355f04f10d2cfb5cebd655b8546543410c72b8997ab2aab65037557198a3b48e

          SHA512

          97341cdfb6334cec82712c9becd5f0d781b0c3559f97e32c43a63c853326cd534d5f358d8e3c182cf549d1c44a31c74114f9e34bae99ed3b3f92085b2eb9dde5

          Download Submit

        • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\EDQW9R5V\f[1].txt
          Filesize

          174KB

          MD5

          b7762ec787aeaa6e81b4c5ff0555dd48

          SHA1

          d3ccda7aef0403162d91c2df165388bd61c0c5cc

          SHA256

          eb82712a03630cc5ca19e34068fba437a3838e775b21d678a32ab2f4544e7115

          SHA512

          58ed845e5951665f48e10eff714236290bc918885e226386fb6d4cd2b96edeb9da714c9e29b1829c74ba67531183024ab22f6733af224a98998beb5a78d0ca9e

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\Cab145F.tmp
          Filesize

          65KB

          MD5

          ac05d27423a85adc1622c714f2cb6184

          SHA1

          b0fe2b1abddb97837ea0195be70ab2ff14d43198

          SHA256

          c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

          SHA512

          6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\Tar145C.tmp
          Filesize

          171KB

          MD5

          9c0c641c06238516f27941aa1166d427

          SHA1

          64cd549fb8cf014fcd9312aa7a5b023847b6c977

          SHA256

          4276af3669a141a59388bc56a87f6614d9a9bdddf560636c264219a7eb11256f

          SHA512

          936ed0c0b0a7ff8e606b1cc4175a1f9b3699748ccbba1c3aff96203033d2e9edabf090e5148370df42fbfc4e31d7229493706ff24f19ff42ff7bef74a6baad06

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\Tar1571.tmp
          Filesize

          177KB

          MD5

          435a9ac180383f9fa094131b173a2f7b

          SHA1

          76944ea657a9db94f9a4bef38f88c46ed4166983

          SHA256

          67dc37ed50b8e63272b49a254a6039ee225974f1d767bb83eb1fd80e759a7c34

          SHA512

          1a6b277611959720a9c71114957620517ad94541302f164eb872bd322292a952409bafb8bc2ac793b16ad5f25d83f8594ccff2b7834e3c2b2b941e6fc84c009a

          Download Submit