Overview

overview

1

Static

static

1

hk.html

windows7-x64

1

hk.html

windows10-2004-x64

1

Analysis

  • max time kernel
    15s
  • max time network
    19s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    14-05-2024 08:38

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    hk.html

  • Size

    38B

  • MD5

    85bc66cb6bb2ad18d55c005732808147

  • SHA1

    312ad4eb903d9973bf114a1b844409894a1cec15

  • SHA256

    15bc35f63affd385d023faa9af2b93cc2e3b546c8a593ec5de79856f28c85846

  • SHA512

    fd231c1187ae3f0f98be241440a7887fc0c1c3bf3c899cb99310efe6434da0e9ba15b3dcc0d2d90e5c4e5700a91dc487275586cbf35bbe180bd188ab20f5e707

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 28 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\hk.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1252
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1252 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:1740

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    d144435c0be47416b951a540a2267358

    SHA1

    9af3abd4cc39a6b083539d62898d3e0dc07ca061

    SHA256

    3e7566f78b0e868bed92ffaf6d440f64798e1da2ada218d3c8e76fabd1644ccb

    SHA512

    3b593a9add787b65cc4c2fc652227941629e01751615976dece16e8a94d38f4750045b74dbd092fadb94b33cd57df77bd34425a56c0cfa11c9a7060dc7fb18d3

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    885d0ff6f53916af73a1addb3936eeaa

    SHA1

    74a63f89c8d5aca5431e96ed383dda99c687e47f

    SHA256

    c947a02cdf872dfaeb0c226aa6b2ddb2ebd280e11e378ca2726a4d5d82d1efcc

    SHA512

    43ef052934c4b433ccdd870146f42d5921042c5dd9817bb654546ac4b8a900beda4282da897a14713aa3fa6f958084629e39524e4a8934c7ec2f22cd83f0ac8b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    840e51d8ded428dfadde6041d3548ab4

    SHA1

    1fcdf71108f0c37d3740be71a8d931d26c3287ab

    SHA256

    410b7914127317293ec40352dfb35798317679b4954c6204d13a5a91d0e9f436

    SHA512

    6c940c81c9044d37de41a4d37489a701659c6d6631b03819f66e5453f2ed637d1dfedb0989afe1f06c973943e28a65a81a71da422a4598ad717b7225f564ae3a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    028bbde54d0e1b3609da040926856d51

    SHA1

    e81852b64f8437f1a6ff27e8d9c841354fae27dd

    SHA256

    b66272a377df2b33486c346c2f74116f8a1c0dfc85d8cb03487d0b3b05af85ba

    SHA512

    393d768868d6ee506804d9ca56d9cbcbca7b93bac7c21bd5cdf1ad97f86a18d3ccbc3e969ec56757483f94d460ffde0d5ab2bc6a05281ab2cea8a5e00fea035f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    c2552670b500bc3879aeaa4a05b85412

    SHA1

    3d0a03bbb633f15a11ffbcb35c0a1e4067ee67be

    SHA256

    ed45aff2bf323e2269027d5b0c18b0a41425578f6e2bdf9b1787ebb3cb35ab4d

    SHA512

    25056787e5966398386c6b5746582ec698c61fc1a1bd11a8d77d8bb761921c7cb845bb280bdb643b7d111b11897dc260de584f17962162fa3c41f9a9ad0445da

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    a993a970a42ba31257ece3e17b3b0e8b

    SHA1

    331bc3b04489f96febabb0486dab7e9264ce5f2b

    SHA256

    9113e2dd8070f3947ce893de7210e947075b902fc7679bfb3f3bc77a8f439d7c

    SHA512

    5c9feac3198d075b9a896d33d37a7b62b0a5ee3266d4459a187c8d5905567e1f7648a35f9c511ecc4a7b8a4db69437f0cb08dbe77e624b5cd1e6042604ebbbda

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    8842691e8297b87f5358ce0d367ef741

    SHA1

    c76d5e762423ab5760a43b56147e0f9bcbe6e852

    SHA256

    215eccd497461324bd43c9d495f04dfcb09c70fbf4a43aa568b59a61d7e8b808

    SHA512

    2dbc0758b63ba78dea825e428ee99f60f039b0c6937c021e70141a22fc772fa7fd9a3379254dc521c46d695a2aa2a4b7a250eee51b9d6c3957911f8810cef412

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    2e95b07a49ebba21f70708b995a7f0a2

    SHA1

    1c625a5f5395653ddffc9c08b7ea9a51e1bce7d6

    SHA256

    e94b7acf118a132f03de004e511c627955f593a600ff6283a9074b6a7ebf8c65

    SHA512

    b7814c61affb36a2ab4b56ec5305dc53d2f71cf502288d2e68aca24edc156bba33340660f9227d25721e545f60f90a12d11a4425d51386519c580213d5cfc0c5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    51bf81c73dcbb63df71b2c2e660f99b3

    SHA1

    e939ed51230f0b17c19f23ec4b8139261cd5b2ab

    SHA256

    a7c4055edccf976fafa4c93ed62b6eb6e48513a6f1d6f5b1ac77b7095b86fdb1

    SHA512

    5f12053d124e78e78a9829f82d24af141bf6f4a5b03962f548a1a48a6e791c3a74e80b998e7b3bb7738cb5c493a7cf8a8d55bf71bdd3b85975e49e73de3f59e3

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab8C0D.tmp
    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab8CE9.tmp
    Filesize

    68KB

    MD5

    29f65ba8e88c063813cc50a4ea544e93

    SHA1

    05a7040d5c127e68c25d81cc51271ffb8bef3568

    SHA256

    1ed81fa8dfb6999a9fedc6e779138ffd99568992e22d300acd181a6d2c8de184

    SHA512

    e29b2e92c496245bed3372578074407e8ef8882906ce10c35b3c8deebfefe01b5fd7f3030acaa693e175f4b7aca6cd7d8d10ae1c731b09c5fa19035e005de3aa

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar8D6B.tmp
    Filesize

    177KB

    MD5

    435a9ac180383f9fa094131b173a2f7b

    SHA1

    76944ea657a9db94f9a4bef38f88c46ed4166983

    SHA256

    67dc37ed50b8e63272b49a254a6039ee225974f1d767bb83eb1fd80e759a7c34

    SHA512

    1a6b277611959720a9c71114957620517ad94541302f164eb872bd322292a952409bafb8bc2ac793b16ad5f25d83f8594ccff2b7834e3c2b2b941e6fc84c009a

    Download Submit