Overview

overview

5

Static

static

1

Machines _ Triage.eml

windows7-x64

5

Machines _ Triage.eml

windows10-2004-x64

3

attachment-10

windows7-x64

1

attachment-10

windows10-2004-x64

1

attachment-11

windows7-x64

1

attachment-11

windows10-2004-x64

1

attachment-12

windows7-x64

1

attachment-12

windows10-2004-x64

1

attachment-13

windows7-x64

1

attachment-13

windows10-2004-x64

1

attachment-14

windows7-x64

1

attachment-14

windows10-2004-x64

1

attachment-15

windows7-x64

1

attachment-15

windows10-2004-x64

1

attachment-2

windows7-x64

1

attachment-2

windows10-2004-x64

1

attachment-3

windows7-x64

1

attachment-3

windows10-2004-x64

1

attachment-4

windows7-x64

1

attachment-4

windows10-2004-x64

1

attachment-5

windows7-x64

1

attachment-5

windows10-2004-x64

1

attachment-6

windows7-x64

1

attachment-6

windows10-2004-x64

1

attachment-7

windows7-x64

1

attachment-7

windows10-2004-x64

1

attachment-8

windows7-x64

1

attachment-8

windows10-2004-x64

1

attachment-9

windows7-x64

1

attachment-9

windows10-2004-x64

1

email-html-1.html

windows7-x64

1

email-html-1.html

windows10-2004-x64

1

Resubmissions

01/05/2024, 06:06

240501-gty63sbg66 5

01/05/2024, 06:01

240501-grbb8shf2x 5

Analysis

  • max time kernel
    119s
  • max time network
    127s
  • platform
    windows7_x64
  • resource
    win7-20240419-en
  • resource tags

    arch:x64arch:x86image:win7-20240419-enlocale:en-usos:windows7-x64system
  • submitted
    01/05/2024, 06:01

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    email-html-1.html

  • Size

    86KB

  • MD5

    f56d5f5552463305dd7c15739cd2fd65

  • SHA1

    de3e445c1dbb4622ac0dc081fb451549ead47c88

  • SHA256

    eb3cf66f75629f8f992f26ec5f3e6a5bbd9369879dc1b3575468e8a392f16375

  • SHA512

    bd8a7438c41e98d9e8a6637280e621798930cc62dd7ea2848dd22aadbe389372ff26a9eec29a05b36153162f10e4b4bb7662db12cdcb06872fdd32b9d6e29462

  • SSDEEP

    1536:sg8M5cJUZZf3UWUCBvmXvmivmpSmPSmLW:F5ZUWUCB+X+i+pfPfK

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\email-html-1.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1720
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1720 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:3056

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    cd0bcb6ec95cb04b05998223bc10fbac

    SHA1

    7af60397c9b6f44696100528b990e47a213ea8ff

    SHA256

    0a88a97f1231f85d0264b0c692a35f986ef2f4a6771fbfd6db35762659bc2963

    SHA512

    beb746fa4671c88d33bc4785671fcec0c424136a543f4ad322b89fbef447625875c182c99bb5955a096f4568c2d917e9f0f2ba656d001e5faacc437db0e63638

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    b7d0f75dba3a5bfc614b53f4f61bad3a

    SHA1

    620c16c550d768971ca699e6e06a275b68c19223

    SHA256

    f31199e9a91b1897d3a8c76862d58e8672152cbc7d27dad1ef8b416dc918840d

    SHA512

    6854d3509ac25d62535f682d5a45b5a1385580b2c9be040900f3fc483da6a9f7e6b100d84be30e117e8d9cac903e66b5ae16424332156209459da591bd98bcad

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    6a0b1d385e0b6abe09d084bb41160966

    SHA1

    96ae0aaefe50e076a642ac1ffeafe099836bcd92

    SHA256

    f4c30de3caf9da90d085bffa9284c8265227aebcb8274f6cf2d6ecd562d400f8

    SHA512

    b1eb51299f4d8cf54b614353a6576dc3689fd763ce7661537a9bb4c8cc57842e860b86c58a4587b9c3231ad2f2e72dee71591260e128ca7ad1d9f02f99792ad0

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    d318b72c431cae20ca960fbe05e0186e

    SHA1

    9ca7b275e80e0cf83a8a667030387490927a4555

    SHA256

    aba1aee71181fdc18902e5fb407d830e6b6d06f823528bd5ad3172d1f786601b

    SHA512

    f18ed165222b3ef2a470acf9463707ec6678bf3cd697acf052f73c1735db4ebd9f992659a88a3080c35fd4bc6a7ca33d20e6f279108190216160ef2c935e587d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    bf028649db7f601dec8918bd1dc17f9c

    SHA1

    f8664f6dde48c0c44f7ec028d8cdffe6dfc018ec

    SHA256

    3fb7ae40a1e70bbca3eaa3a19c755592feb0b3381e1edf867eddf105a47c365d

    SHA512

    c259f5314f4da0e7b173543a5ef331fb84e19389504f186da71308583d18edf570875afa50fd79158a2263e5dc2a9bbc47ff4ae634869896ccecb47bfa51fcf5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    1388f806a195bbbdf9c163c55925aa10

    SHA1

    52d673b92e88db2cc56ecf1acb5972fc581a22b0

    SHA256

    14ba36a7676ca83a2514b2306bfa7b607fd0f414fb74a8b61cb779d70c601a13

    SHA512

    f8de305e67c6c04a5b0ed9fc955503d52885316e3818c06c93bd9b43f709da852808f1466694a4aaad29bf561f9b070daf3cd3383248e547d89fcf74ce452bbb

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    36653e2cce2885e4372253893799e0df

    SHA1

    c6cc42eabfd41d665cb674fa17e884920da0354f

    SHA256

    ef440e3315de478a285cea8b29b930517c5247bb192ff69158efc0d3cc1a6868

    SHA512

    0b27c058ee8a209cdbe7e1dc21b5ebf94e40d804870395fa7eb265b175c8c355e26f6ac795caccd1d4ee85994df3a0b9e80f99a0c12c71d61931dee2ea712ab0

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    ca36f212978243969cbc07cce27490f6

    SHA1

    4bad55f0a9bd6b564b481ffb97ae7ee4df768a6b

    SHA256

    f1168307e598672573cfbe0e0636e7d0efc7461a4643088553b814388bb04951

    SHA512

    cb2c4ba246ea32bb16c834df51fca8278fe9e2f56e91b8065ca6e92e69ef870b507a598bec41c521c1cf7ad9dbb47cef88cd11fdfbed604beb149e3d6039c6b3

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    3e9369e0a926194d4eb93db594436164

    SHA1

    64f727107ed2e2c47e3e1cf8e7072ce13f302699

    SHA256

    24f49ccb27d3541769fa4fe91b47583542944298c646a9712859b74ee48f15e7

    SHA512

    be3a9105f51b7dfd7b272ccbd2d0ec9feafa1dc9330c874492ded72851e6589822439f2bbe341fbff62ef60667f321e5233f130d967c02d4fe00b54f29174b57

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    1b316398468871ab3f1abccc4f1fc981

    SHA1

    c677ce8b14fe29eb3550b650978bd36ec893a760

    SHA256

    b91fb8d3144397b4e4fa4fbced5fc7966b3bca3010b19120bfc0c639d8275c69

    SHA512

    bf8352cdbe5e5a1c4bd88d48da21a7c50394f83b0fb985014a6f15722d036626e1792147d65457e800e959392611330172e6fbecdddafd63f10571789b65d179

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    9f2ebe8f3248d1df19c3499c5e378689

    SHA1

    91bcbe85c5d96c5dd4ea42cbf1ce89f492f0089c

    SHA256

    b8462963c1b1331f952e0f8b4b4ac9d48e930cbabe6860854465a9bc86636a52

    SHA512

    ba6a6afac9625bed119715dce8449239fdf306eb0b9e19a6eaac97c783d4722dfaa5c7257932b904aa7b3a17606bcde6db78eb7edc98fe9eb3b7d00578904109

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    edd09c3b3961cf210e3583017f0d51dc

    SHA1

    ca3bc125c096cb9b8476868c09db33a2a77cf440

    SHA256

    d30e206c531157646fbcfcfc0e47d50109e20d7fe030ec4dd0fb3fa354c6e01a

    SHA512

    c5ff982b8771eee0afd807f93409446eaf9951aa7b5fd5d3eef24cb704d4bc7879ff564b05d50a8ccd14a514de14b29395279a413500bbc2e08da2d1764ea0b8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    2a8fff469c7ecbca8ffde63836f224f3

    SHA1

    3ca85d0ecb63860e28118d134afdb7e26a081b32

    SHA256

    aa6716047ed882832f7587d77d6ae9894ae3a8a47ebaac9b01f8d3e1bb99a54a

    SHA512

    7199265cf7b7fdc4a6af71c85517d57d4a5e62091a58f1daf39a0c52ad68cbef5a2b65f82ba97aed607ad54c5b7229a0b7a66affea32eb029fb03ba592ecb9d4

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    b8cf30b469324025b0e560e590aa0e8d

    SHA1

    31126372fbe8e5897cd13c28dcaf1b81a216be66

    SHA256

    92dc74feb519dd44f50865bcc226a0b80b62bbf4929fe7059d0fa6cce0005492

    SHA512

    6d69d6025c7046b04fbf9a2998afdfa7c54fb705f5552f0e567ee88ece34e6048b01d169d7bf3aac532c1090daf3db036d6414e9a3de41b29e6fa63cd9ebccdd

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    d93a97f59714cf1913e534e3a7a7e46a

    SHA1

    3cf9d8abea53c048f19a7e9693bda5d458b81c2c

    SHA256

    434054e49f688a3fef29a40e045f429b9e77ce9dc622f0a87876e6f36c22f704

    SHA512

    273b5580d8e32567c83d75f527b8dac696d93e109b250f49caefba055b94073a02f640cd7b7e6605297385830db308446b67d42e1e505dec054653d43cae1e00

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    d194c09899bc4aa70175be60966838aa

    SHA1

    6adb73e61217143a6014fb862bac3b2859e7205c

    SHA256

    d9d34962858b0a3c805f0123efd9c0d1af4f8c0e7531d551cc72682efcdb6565

    SHA512

    d923cd0f733c4816201116bc602dced90b3d3a8519a9c463660ca456b7804aeabd4b5c22ba1a82a5c444828b78590cac97e486d72ce14f0765d0b83e81d03466

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    3c71f4df8ac44a1388c4888414c2842c

    SHA1

    be84975e09e0893e043e7b666041fd8cedfd4e79

    SHA256

    312baefba54dfc0a35cc7368ea703c71eedd7f712488067dd268eec67fca36eb

    SHA512

    2925a877f41a3aea43c51a26ba73caada6b0344e0dd69dea660ebfa3e9472c2c3f5c5fb6ff8caa7a6bb11787779487a6d27c8462abb5c6149081ae19e2159b64

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    13186ea0569b0617b2f7c5d6f882ac35

    SHA1

    59fd812e4985650b1cba6989de16be2fcaa39866

    SHA256

    647d629c8f729451f990304bc77a6e54ac4fec7d1b94c53ff30e3cd43ceed0c0

    SHA512

    a329d2109b573b03c1741d5cf7e77eab97d8214ab656d2518768db4b68d77c2c9b09f33b4ba8010d1c252b206b6bf6aeab860095898f5e07794462a19a655344

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab2E25.tmp
    Filesize

    68KB

    MD5

    29f65ba8e88c063813cc50a4ea544e93

    SHA1

    05a7040d5c127e68c25d81cc51271ffb8bef3568

    SHA256

    1ed81fa8dfb6999a9fedc6e779138ffd99568992e22d300acd181a6d2c8de184

    SHA512

    e29b2e92c496245bed3372578074407e8ef8882906ce10c35b3c8deebfefe01b5fd7f3030acaa693e175f4b7aca6cd7d8d10ae1c731b09c5fa19035e005de3aa

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar2E76.tmp
    Filesize

    177KB

    MD5

    435a9ac180383f9fa094131b173a2f7b

    SHA1

    76944ea657a9db94f9a4bef38f88c46ed4166983

    SHA256

    67dc37ed50b8e63272b49a254a6039ee225974f1d767bb83eb1fd80e759a7c34

    SHA512

    1a6b277611959720a9c71114957620517ad94541302f164eb872bd322292a952409bafb8bc2ac793b16ad5f25d83f8594ccff2b7834e3c2b2b941e6fc84c009a

    Download Submit