Overview

overview

6

Static

static

1

Pending_In...s.html

windows7-x64

1

Pending_In...s.html

windows10-2004-x64

6

Resubmissions

01-05-2024 18:33

240501-w7fn8aff45 10

01-05-2024 18:30

240501-w5ts3adc6s 6

01-05-2024 18:18

240501-wxwbxsda71 6

Analysis

  • max time kernel
    119s
  • max time network
    135s
  • platform
    windows7_x64
  • resource
    win7-20240419-en
  • resource tags

    arch:x64arch:x86image:win7-20240419-enlocale:en-usos:windows7-x64system
  • submitted
    01-05-2024 18:18

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    Pending_Invoice_Bank_Details.html

  • Size

    10KB

  • MD5

    0def2826514ff6887d5a2a6cc7db4b5b

  • SHA1

    b6c964e67855f076e90fe5c339b02fa2fe423ddd

  • SHA256

    9eb2dc6ae95f6631e25eb8679a25eb330f1a7c463d3ccf31c53a6daa1346f007

  • SHA512

    cdfc1c5039bf03430d112109813915c89d6dd05592fc0b9a0e3d80e157ad7b404f55d0a1aaed2d1be1ffcdc1fb1c5513949ec713b9d22046cf9ca3de4f85d50a

  • SSDEEP

    192:/TO8OGVCARwH8izhrnV9fxRQdjSecSc6i0bKVC:/TBCARwcizhrnV9fxRQxSecStbKVC

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\Pending_Invoice_Bank_Details.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1632
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1632 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2620

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    f40b7960444e66d8b799fab82a31330e

    SHA1

    c8069fe51acd26e36153531985f7d72bc779ddb1

    SHA256

    b54a2f38285922a0273d200c32d2abcfe76f428e43f411b34cf328299979161c

    SHA512

    bff825b0836b7e6ba8d13dab6548902c49e759852a8483ba0a361aa04ab83b2ce5b2a05223059079bdffd655964f9fc79c41241a31a3d0848127d222161c73ee

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    eb7fe2784b7e0f7c3b96296956d65215

    SHA1

    c222c9a1765cac15ca22c4bb30335a098257c177

    SHA256

    3389f59738ff597f7de0365661a684caa6080ce723c93e44366fda38baf9b964

    SHA512

    719ceb5a221de2f4c0160fec4254e921b1b23565edd280ac393feb318ebd5c8048b470d177da2d22c3c2e45d2dc0f6464e94697b54d62ca4207968333f0046e8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    1356a79d8f9d70a757e9cbd454847b30

    SHA1

    b055f9cb1c40d3ad96df5f23bac69f56769bd4aa

    SHA256

    a733e5bcb023794f3b6229d14a49115a1c12900b34300b112be55d8220094c37

    SHA512

    91bf3fe2c5346d9bfcdaf481836f6da3df23aaeb222ab2796ed24c07a20b708b081769a0cfa9e9207fd1814c9ee913abefca988b7212f8b68136f88300c576f9

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    9d2a3c93152d79631829d5207fc3eff0

    SHA1

    eb0e66b77bedbe442652cb7b41183c81750d19c1

    SHA256

    862ce536f849fd9381398e910d9ce17964c6c02b5c6a0f9d0a53997a584a001e

    SHA512

    55ae5452003a9528a9e09726fd58cf487015fc42c7799a5c8d27741a44d6202fc4ab6b502c4f83ca8977b7ba66c1c4225a68cf4752ff7e1aefcd66289086b5e2

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab2168.tmp
    Filesize

    68KB

    MD5

    29f65ba8e88c063813cc50a4ea544e93

    SHA1

    05a7040d5c127e68c25d81cc51271ffb8bef3568

    SHA256

    1ed81fa8dfb6999a9fedc6e779138ffd99568992e22d300acd181a6d2c8de184

    SHA512

    e29b2e92c496245bed3372578074407e8ef8882906ce10c35b3c8deebfefe01b5fd7f3030acaa693e175f4b7aca6cd7d8d10ae1c731b09c5fa19035e005de3aa

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar5C0A.tmp
    Filesize

    177KB

    MD5

    435a9ac180383f9fa094131b173a2f7b

    SHA1

    76944ea657a9db94f9a4bef38f88c46ed4166983

    SHA256

    67dc37ed50b8e63272b49a254a6039ee225974f1d767bb83eb1fd80e759a7c34

    SHA512

    1a6b277611959720a9c71114957620517ad94541302f164eb872bd322292a952409bafb8bc2ac793b16ad5f25d83f8594ccff2b7834e3c2b2b941e6fc84c009a

    Download Submit