Overview

overview

1

Static

static

1

mrs.html

windows7-x64

1

mrs.html

windows10-2004-x64

1

Analysis

  • max time kernel
    118s
  • max time network
    127s
  • platform
    windows7_x64
  • resource
    win7-20240508-en
  • resource tags

    arch:x64arch:x86image:win7-20240508-enlocale:en-usos:windows7-x64system
  • submitted
    08-05-2024 19:51

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    mrs.html

  • Size

    3KB

  • MD5

    b5c9444c417b1f75310e60e609149b5c

  • SHA1

    56b63e691cd1088f1264192adf755262ca2c06cf

  • SHA256

    862a803e708ec8d65392e9838456f12450ead55df36612d24ac207e5d3ded1ef

  • SHA512

    7c9fee82963e4839b52e5db571cd520c11ce30dbe851df71e364d781040d18cbda68658ca9a442291c1bd9078ca2973582f12aa5822678ce6d1048c453d46c16

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Modifies registry class 33 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 7 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\mrs.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2056
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2056 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Modifies registry class
      • Suspicious use of SetWindowsHookEx
      PID:2960

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\CAF4703619713E3F18D8A9D5D88D6288_F2DAF19C1F776537105D08FC8D978464
    Filesize

    724B

    MD5

    8202a1cd02e7d69597995cabbe881a12

    SHA1

    8858d9d934b7aa9330ee73de6c476acf19929ff6

    SHA256

    58f381c3a0a0ace6321da22e40bd44a597bd98b9c9390ab9258426b5cf75a7a5

    SHA512

    97ba9fceab995d4bef706f8deef99e06862999734ebe6a05832c710104479c6337cbf0a76e1c1e0f91566a61334dc100d837dfd049e20da765fe49def684f9c9

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    2ccd122395c2a158666b41aa80cba855

    SHA1

    b060178b3c9f18f1fe80d4170aac05c11e3eeeca

    SHA256

    6742c7bad6f12709e3c2e1d0b3b40bc1b96350a9bea2fd1d238670a2e19a9ea9

    SHA512

    27a366760e7f3fcbc5e55da6b589dd0ba5f76b4953c897c5809cfafb5f5316f614f2ff66c01a8cda3e4587ee1512b9545b5f591003149f0859169a96097778b6

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    ddefccf12340893ad1e0da79861c48ca

    SHA1

    41a9d2ebd367e026f369065bf9be117daf7c4e21

    SHA256

    fdcd2ce16e0802d9aeff8e2642e27e47b026a5f67f070a0624e99b8daa827556

    SHA512

    4f15da0ae728d27b1086644d971fd1c81d3acfe6b52f7f98e5b2725d27d5890ae9f326ff1355b1f3223d0e1f0e97c1b8de49d35808a6da5974abdb2167864768

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    fece54163bf588077846f6a3e59c3e1e

    SHA1

    7874088323d7824d51bf40e0d3330b8926a65b23

    SHA256

    6e24b3c9cacf63511f55bea94fd5269bc3096f77a5956580209830e30c907d0c

    SHA512

    68930e27aee0368b83e2ea898fd29399bdfc29580ced4e5932c711aeff5451b302871c3708c825ac5e992630a44131e1e49909ff5c0bee2a640e17c63740dfd5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    0fe29e80b55b129327b74e7b66ac3078

    SHA1

    00cf2db6a9ba5e22a63f3c3feaba9870c3998c1f

    SHA256

    328ce31087e2a4fe32551215f360026fe7a5ef75f3ec21722762b0feba7bb607

    SHA512

    16e2e77fee2d497f2da7eae1dc8730e01947f44068be4b90f5a9717ca63e644ab8b4d10d9ed2594fb76c3569941d4ba5dc386644566459a3c8410dcd8a9bb16b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    bf1da972ab338da8d660947394fad7c2

    SHA1

    3311bf11a78abb3accb1f973532c589a70c39f72

    SHA256

    2f7b47a57a51831b1d8606feb12db7f704e60a058f8be4f4ab3d1a097839ead7

    SHA512

    cfd97fbecb1ad7a0c93d18c5092f3ef7c39515bacaf77ccc9dd19437eb88ff377a21bcd0218d5cb0ab0aada11c2cec2ebd4523d69a4cb443e0df49b7e824fb91

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    19af18c971e99b80381c1228366842d9

    SHA1

    9c2f809961889d1ab6492605d0930698a7af3340

    SHA256

    9f82355f5baa732f58b9212399ad4064dfc23c8c75313bae034b8f2313a87ece

    SHA512

    3463cbbfddd67f0333f77e7d927508a5779f4dd6f88c7f1bec8f214aca1a1cff6215a956493025616d63e032421475d98a8593a2455d50ce00267c4d775743b3

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    96d200b34db3787ff3c644efb175ad9d

    SHA1

    9ee113c9002bb8bcf7ff60b7cdaed748f6e59272

    SHA256

    6e30ce977156480324ee09b1c7d5f53bf1cc5e168aa5e5b61c3db669faad0fc7

    SHA512

    0589e6f2576fe4ade6f3cb305eda53fbffa2080cb6fe83d25e7801a1032df8a4437ffe38be724bd13654403787c5b559ecfd719d66b5453fc6141526f278987c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    d20a0e2c375475f789afb97587bbbd6c

    SHA1

    f5382392919db6e451847ea54d97d346c57c865c

    SHA256

    28aed484d56e09c5082da8a3affc2cc3476b027422b22704ced742781fc5f407

    SHA512

    e1ddff27833bf1ca1458adcfc89997f07af2f05547fe348be884c8ba7e176419881fd3f24537fe0971785598d5cac196cebd5cbabd1ef0f83d9d6046ac8c817a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    82e8e923ffcdf661c553ff931ed4be31

    SHA1

    6fc673c57a65f275f65acf86f3f71e7ff3234e37

    SHA256

    b4bd52b62c14274fd44d640963283645490521ca82146a791b8a4a11004e1ea7

    SHA512

    9b6cf180248927607bc4fc5166530bf08e61b6f5b9be9824993b051cb869c3b09cd5072db263f7a07190c1bfd763809c5790b850cc1384136332e24ee0ce2b0b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    5475ff0683df84ca19b0c454ad36ccb9

    SHA1

    0d35abaae15c505d287b2d606f009d20287a3a11

    SHA256

    f447a05d909ef62b3f789d5ef6bcb50ff75d1a4f75885527acd07fd998f1a7f0

    SHA512

    f9ad4b69fc98a056785a84e78b9b537e7c6bd55b09607fac329b811e41f59228a9e8905510f4d828f9f1643e5a92fd8bf9df4c508237d35d73703d6a52c20453

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    491a209f50dddc9531f4a7e9bd889a9d

    SHA1

    4393f625c156c0e4e1bf740376cc9866417a743f

    SHA256

    0c4d921ea2dd39ac314d0b033d5bab3fad8df0a761387f1f848b58f270fa0e28

    SHA512

    d737d481793d6ee171e8439806fa9afcd52f007f61a4fb9caa4bda033c5fc0508846d08dec8cc4e9c7c818691cfaca3f8c33226f336dedb6f88b5fabf3310fbe

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    d2d3017e60a5ce6dc40b9d615513cd03

    SHA1

    e65264d017624df66d425772f84fc8329b0308a4

    SHA256

    e01bfdaa8e4871f9832974f0fdce5852209788bd1c8b7f4915d57914f397f628

    SHA512

    804c0f1788cd74cbba1d34953edf061e8c9df30ff451b35107a8d7fad4e92bded3b00e00aac83d0d79c260e2c26efe3d8c6b63e2ee81245c61bdc8ffc28cb33e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    50aef25c41ea02364ccc190b74b047ba

    SHA1

    e9a74045a17b6bf1a04d68ca0663020fc91c96cf

    SHA256

    7b8a48e048b54f702372553c918019f999c5f450afa3b9fdcbdd437de89c8b78

    SHA512

    9cb789d2987bed461301ff912c20a568f03d2d6dc63d96b2104bfeccfb10b625d82a31005c740e3b15d3c4ebfdbf64581b141ff40418aa39b17ac119873477af

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    c1fe2cd29e0180478825722057964475

    SHA1

    c40879fd5d07bcd25d17aee0207d78b9866c29d9

    SHA256

    b87d29307934870e160dc51fd7d196fd43ead9b0f8b7da26f1016fa114edc00f

    SHA512

    bab8b2b63a820d39433cdaefd6d5e93bac8c9f2c0275091bd1a24d9be09213327a0cb57cbbdfdee206ad9fde12670cd5635e7926a3aa9f84d21c83f6474d1c34

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    04e6227abaad1bfccfc43651f7e7dd11

    SHA1

    a1929a95da15d0fbf62b7ba2c02e84140dd4dc6c

    SHA256

    396ab1833ac377c597d8aabaef69bbb5a2f0c043dbbeb96c183cf913e41eac88

    SHA512

    782ea7ccadda7343c5124b377236981a117bc6b5fe785de52586c0a22813d2aa2ac912baaa5e2947dc2cb99d51aeb056d756822c9a1e97c585c673a6918bfbf4

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\imagestore\6y0a2v0\imagestore.dat
    Filesize

    304B

    MD5

    e7856bbc5c44573afbdfa879643fb527

    SHA1

    fbf657ab72ff7ff6efe47f2d46f54b2bf7813346

    SHA256

    daf733fcb201b2573abd1e4ab2636c91e9eac3c89f7ccb522de2b9afb94db15d

    SHA512

    a0daebd4544207fcacac7fb3f3d1fc4cceba7a3fee7b1dafb02b167edce092cc018ef714621d0265ec2d5f1c113773654240fc360f8fbc98247df080bb57e64c

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\IW68H88T\favicon[2].ico
    Filesize

    198B

    MD5

    c6acedaff906029fc5455d9ec52c7f42

    SHA1

    92cbd806ca421aa2c9ff5e1ff76bbc20913a2f81

    SHA256

    9deb629637088856fe61dc868bf40a7d21ed942e4117659f3d6c3408f59b906b

    SHA512

    7a8d002ca6b607e38860ad4485493e109cb7d3bef241b0e5bf2a65c2e316e6185ded8ec74e3fcbd78745ab302c6d876657abc178ee028d1b8b9a5572f429d972

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab4A5B.tmp
    Filesize

    68KB

    MD5

    29f65ba8e88c063813cc50a4ea544e93

    SHA1

    05a7040d5c127e68c25d81cc51271ffb8bef3568

    SHA256

    1ed81fa8dfb6999a9fedc6e779138ffd99568992e22d300acd181a6d2c8de184

    SHA512

    e29b2e92c496245bed3372578074407e8ef8882906ce10c35b3c8deebfefe01b5fd7f3030acaa693e175f4b7aca6cd7d8d10ae1c731b09c5fa19035e005de3aa

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar4A5D.tmp
    Filesize

    177KB

    MD5

    435a9ac180383f9fa094131b173a2f7b

    SHA1

    76944ea657a9db94f9a4bef38f88c46ed4166983

    SHA256

    67dc37ed50b8e63272b49a254a6039ee225974f1d767bb83eb1fd80e759a7c34

    SHA512

    1a6b277611959720a9c71114957620517ad94541302f164eb872bd322292a952409bafb8bc2ac793b16ad5f25d83f8594ccff2b7834e3c2b2b941e6fc84c009a

    Download Submit