Overview

overview

5

Static

static

1

_[EXTERNAL...er.eml

windows7-x64

5

_[EXTERNAL...er.eml

windows10-2004-x64

3

Outlook-e0rd12ym.png

windows7-x64

3

Outlook-e0rd12ym.png

windows10-2004-x64

3

email-html-2.html

windows7-x64

1

email-html-2.html

windows10-2004-x64

1

email-plain-1.txt

windows7-x64

1

email-plain-1.txt

windows10-2004-x64

1

Analysis

  • max time kernel
    133s
  • max time network
    127s
  • platform
    windows7_x64
  • resource
    win7-20240215-en
  • resource tags

    arch:x64arch:x86image:win7-20240215-enlocale:en-usos:windows7-x64system
  • submitted
    02-05-2024 10:12

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    email-html-2.html

  • Size

    17KB

  • MD5

    d6620dde6f645c73a3c80367289a2d14

  • SHA1

    e1615708e5aae3656d2e57ca671f493a1b550521

  • SHA256

    0fa1d354c76fab304ac3b6a1468f5bbc311f2527e772ab2998130ad7171acccf

  • SHA512

    41c3b9d0b757b34cf04e11e52f3b5738948301d0b9e59ed6fcc715d10c3974e5ec5164923f275595e3afdf7cd7286c27123e3d80803ddc0ef61d7bcca0142add

  • SSDEEP

    384:NOKRyN0Y7kYiRciwQX8Xbx+RE+iw4PciA4Vnl34Pnpo/2kzCpXTNKD0o77aooonH:AvXBr/2kzOXTC0o7WQnFp

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\email-html-2.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2876
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2876 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:3020

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015
    Filesize

    68KB

    MD5

    29f65ba8e88c063813cc50a4ea544e93

    SHA1

    05a7040d5c127e68c25d81cc51271ffb8bef3568

    SHA256

    1ed81fa8dfb6999a9fedc6e779138ffd99568992e22d300acd181a6d2c8de184

    SHA512

    e29b2e92c496245bed3372578074407e8ef8882906ce10c35b3c8deebfefe01b5fd7f3030acaa693e175f4b7aca6cd7d8d10ae1c731b09c5fa19035e005de3aa

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    7ae4f90208e19f685c0b6fb6dac801e3

    SHA1

    fd970bc23e1393b136657bbae96cd6e2f529020c

    SHA256

    a880aea3f7bd3565dd013d5fedbba71ca7e1f9257049d5009aac6988cd77e23c

    SHA512

    f8dfb6e7c8c229ce4eb0158301ae1adc2cc498cb722c263f9079673a109bea3e446486043513a81b212dea31e0f50761a346bfd942bb58e6dc2ee8cc8f145512

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    a966670513e6563b2a163ca6114a0e2a

    SHA1

    2c3bd2c16f05c8d718406578857e9a85d9474139

    SHA256

    f37e6d7b03ecf5d19626ccf43554ce257ed8172f1604e0cf08679ccb1a934c27

    SHA512

    2ed9c7f5cc8ce2a9abbee1ecff2ccdc4a7887ad6990a53be2041d6e551868ddb90d4bba2c6acb417ff475d62445578dc6fc7983110053789008f503a8f59796d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    a80a3f0bf0f123add97a3edc6c7ea956

    SHA1

    418dbcaa8b18092f89dac90c7f84d08d67e1839a

    SHA256

    945d0cf66a09177c924a2d9e8df25cefadbf9bac3fdd060c7dd7cf07f6080fcc

    SHA512

    ee9eb1ca7735f406840f02ca717f38266e8e697576ce3e446fa8ba44f6026ba551064db762cb8f046e5137145d2a13a7a9aa5fbb95be648b419290d292515ff5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    7595ba41d9c3ae22823e1059e998aceb

    SHA1

    e2d17a134869a6d46e305bb417d521c93fd42dcc

    SHA256

    fbca23a5c6011492affd459429c60b12d257efc929ec7721b2c4447b219c65f6

    SHA512

    a88c1af2efd8f41cd2b1a701c4f5c6d18b04c1d875dc72e3c641f68e882a404728775281e1c0448e2b78fbeb1e4f6dee668853334d86378c6f38e23501241f3e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    cf4a5736d91c5150bd65eef74be2874e

    SHA1

    0b500a881df287e5bdce3dd657d3861a8d071096

    SHA256

    19ec4d197eefdec7ac0f158d21a3e5b67a758efaad091d2d837b369ef989d4d3

    SHA512

    be67167484de8eb864b2ef9d337dc9e7eca80827815391d69fb7717c00b04dbf7f23a7b021d6c051519e06157413cb492f56d5bcb35a77bb80c42d1976a0d0b0

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    eebb0bbffbe7bb72981f96a4d746a16e

    SHA1

    4d406066e3256d1c77cabab30ccf66e19dd0e788

    SHA256

    7944bba6e2fc3764209e35bd58921344e02bf506be5b189fe4c0660cb10ec86c

    SHA512

    aef794c5a5d78778d8788126af1b27deb7696cd4141cdeb77e496251707d1c51f22c49a9c889c2d096589d8dfab1d9d212699b792db33b8d1ffd9cf69bfc82db

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    a612b8e01e0d20781464be748ccfccae

    SHA1

    b14cd3445c8c28afec3e45359c2073f59fbb1bc8

    SHA256

    c2bbe14cf779b5cab8eb88374796378c85102fc11c72aa709f7b945519d5f120

    SHA512

    b274396a730164399f339303482bbee48482516c295da9bced3debf120ed1122dfc264a4bddef57b3c206a51fe800b1014751cd23dc952e8b2156371082c80f5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    f2d713e50ae3c344d441710d9e1619aa

    SHA1

    2f49fe23a88dff13124108b97772147f6810eb2c

    SHA256

    0d55e7705782b20fe4d930b123338efe36fdaee34ffa275e5f4038f0c66bd7c1

    SHA512

    bba081f4016d6cc3ac8360cf8b2b36c74e65ccaf196bc27ac2fe9bf86280164f0317e787ef1b55f660af0661e148c61f940f7a757d6d1f1e0a353184b8d2e605

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    8c9a8d132925fa1972021852dc984589

    SHA1

    f17f20a029f74023c1172b1ca4c52782a9fe1748

    SHA256

    4a3b72ec34d1a46cf202fe5fdc9b40063734de1c45f65df9848d1ed553ed7a99

    SHA512

    2abfb86e15ef57d9bb3bd54d3c23c085e38086b6dd79e8d809fc6d4feee6937db45548fa3f2eca07d7fbefb51f3c1a3e27ceeecb15b9984ba4b0dabe301f8b0f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    9169f74afa0c891c3343ef1459231051

    SHA1

    165c372fb314925d3e276414042bb3f6bf96031a

    SHA256

    bb22fee53ef477ec5172b7a28ca5ff61844605d235e770a538ad49e0d5498438

    SHA512

    bbce84176c2a3ac6c2f50612794f94de7751ce38f42da98a4faa3379de1efe64cac0fc27237ecd4c57f183d66e511f2b32d4c2641d04b6b823da271802666276

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    debdafdc3079c63f8745d2590a7ac096

    SHA1

    2a33fc1cf846cc724b1d37109bb63cecefd67bbd

    SHA256

    98f45d3531be8008cb7b11e17d1f02a364451907405548e3a94d3f11688d8e33

    SHA512

    d8dfef193f2c28f26ce70947527e5d7a4d245bacd25c9e86a392ed18ee34472d8c44d90fc7f1a186831808c5249905de9a0ebcc531bb3b8d101b122243a2fa34

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    ac76a9f8728b90d4e1c34c58f468d66c

    SHA1

    3d57595949e2ffbafd4477822ba12f6474e236c6

    SHA256

    4fd01e2518a5a2959304380273ef674892b2baf62c1d768a4439503aa59c4c0f

    SHA512

    f0a3dad68e58afb5cf951d01578710c6395c6f67943590e47db712f53a517f594965eedfb68cc9b276c2aa87b55bfa0d284a7de281c5f59d5c62abdf512df664

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    7e61d4225bb4438795dd39cb03ac0510

    SHA1

    eb5cf6b550a7e486b0f0a621cd1a727aeb9b7f55

    SHA256

    cbe06d39a6d3d01d39fc92333ae9a9175a09f051a37240574cea8c68f9ba8b5d

    SHA512

    bf0f88a8e6b01d70dc59a9d767293ff62039ca3cc7b2a66c318705164e3eb53f47a77866b798cebcdd510c616e7d9a7c179f9c94406fb5f7cdad1741048a267e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    5a60f2848fad50f68cf893532e1a62b4

    SHA1

    00014f7bed8d0645d55980bd8aee6e9dcffddf9a

    SHA256

    61d7ece517a9031e3727141ef3dd33c5468e9a9f89f1576b1259bddfe2fa32cc

    SHA512

    9838782bc82bf1b6a2cc2accd8238296a8331c3194d19c3f533f2e220c34528cd40bd29f432850d7647eeaf2a3989cc7687911f2eb4179e2a236d3ff8034963e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    43357608bb14b8be1db8749b233deec3

    SHA1

    e01b9a4be2c5bc3bd29427392637ecdc1b2bec4f

    SHA256

    25de6df9a3bb5290cd8f60490ba496a1433b9c371da1b3e3ea4d5b34be8f4dc4

    SHA512

    5ff5ec0643ff388218e4d07c218866e240354742d938061d7ac241cad659957d06f8ff7a0bfe7243ccde0f81bc3c1fa22e21e7e0bbac5d6c5b7ef3eca3113170

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    2c2dba7f701d670f256e5dc22a4683a0

    SHA1

    707bdaeeb35083d48446962dfa713dcbc59413d9

    SHA256

    6c9057316099de02d178304bf2661efbca419ab458eb2c42f012cc77c027317c

    SHA512

    b2b933cd3bd48b17c1c699a999f223d705ac1c3e314f48c02610469ec8682ead91dc2fd0a0eae5e5d2d65f3a39b3775c1fa973cb3671d75cec953de1d54cc75f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    10a0be51fb99d5701c1e21cdf1d5499a

    SHA1

    bd20452b1fa516ac134b85c4d8b0543d7045a795

    SHA256

    43e10434ba97884e7b7fd9795e58fd7e92315d3b4eba3207a111366c51c2a961

    SHA512

    d9664fea58a5ef02771d884f8d5b74bf8530195a037e71c93faf6d87f68544fa4ba7faa8a407ba51533641852832433ecd6a144c45f8978df2fd154e32066eac

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    05c749ef40e7d1938e1dfa8bcc6161ed

    SHA1

    582e2efdd5a955c0b975d4b7046fcb73e0bfa532

    SHA256

    1355e05363103ef4ad810de3d3bfad47b8fe3d03588bcd0b3a2d9183f4028441

    SHA512

    99b005dfad0a85e00f6a53c3dae04af7dc1720ab957a3c9d7895048407eec68fcead7d0351e5194f4a2770049f80c21ec6b021ddefb901b87d5f4be722cbb8c9

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    69d8d874e12cc3f63cdafc63668942d1

    SHA1

    2d4b39e80b6b9c6f84710b9dc3b97e89ecd8eb4a

    SHA256

    e147dcc8925266216de7457d0a1c77a5ddd3ed11f3dd3ddab118e6415a6448f6

    SHA512

    83c76eea65c3bf2e55943765d1d3fe9a2206237b26136c306f13309513ea3689a4129355fab66585283e860aecfa1d534d280f84610792530825b91ae1957f97

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab147D.tmp
    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar155F.tmp
    Filesize

    177KB

    MD5

    435a9ac180383f9fa094131b173a2f7b

    SHA1

    76944ea657a9db94f9a4bef38f88c46ed4166983

    SHA256

    67dc37ed50b8e63272b49a254a6039ee225974f1d767bb83eb1fd80e759a7c34

    SHA512

    1a6b277611959720a9c71114957620517ad94541302f164eb872bd322292a952409bafb8bc2ac793b16ad5f25d83f8594ccff2b7834e3c2b2b941e6fc84c009a

    Download Submit