Overview

overview

1

Static

static

1

sample.html

windows7-x64

1

sample.html

windows10-2004-x64

1

Analysis

  • max time kernel
    138s
  • max time network
    123s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    20/05/2024, 09:05

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    sample.html

  • Size

    40KB

  • MD5

    3632a65739547e51ce75859e2e892af1

  • SHA1

    3c98d26c8557498e111a380ad0f87d4b2974a6a3

  • SHA256

    d762b964d3d16d2a9a33e2e63793cf4855ceb0fd761fad5434d8858aba74c42c

  • SHA512

    25556a3dc422036edb734ba3f54c9e29af26b7836198640df361e68b170798b1814faad9389d126d0309646a1d1005fce30d30ab2724c280fed4b7bab5bcc29a

  • SSDEEP

    768:Ssmh0OEZ6BxOg0p62c34/Bc3Z8vfd3+NUvo1L1iJ+PewM7vd+pewlxpj+nL1rdBY:SsmShZ6BIg0pw3EBc3Z8vfd3+NUvo1L9

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 41 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\sample.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2224
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2224 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2900

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015
    Filesize

    68KB

    MD5

    29f65ba8e88c063813cc50a4ea544e93

    SHA1

    05a7040d5c127e68c25d81cc51271ffb8bef3568

    SHA256

    1ed81fa8dfb6999a9fedc6e779138ffd99568992e22d300acd181a6d2c8de184

    SHA512

    e29b2e92c496245bed3372578074407e8ef8882906ce10c35b3c8deebfefe01b5fd7f3030acaa693e175f4b7aca6cd7d8d10ae1c731b09c5fa19035e005de3aa

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    fa128ce9f07481b2a32793cde13a4afc

    SHA1

    d9463e06ba052e7815e6cd3cef59903974d8e446

    SHA256

    dcf61fc2e7872d0c1da8c6ab58c1edea035f2bd01c6d27bb1bd2036aebb98a08

    SHA512

    e08f59f2dc5c5e23f13096557d02a359a01b6e3607de1c5f84cc5bca40b10e1da43fda7a69e5b2be198077637d40e59490f42edb2a00ca8d4625f85881c66439

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    2d57262aab0ccce6f28c7a723d12c8f5

    SHA1

    9491ad210554b4eec5e2bdd8dccd5dc899885b8d

    SHA256

    2828e6084a2c3cfbcb19c0d7b7f0b0ee43da32dcf9eeeaceefac3f7c5390dbc2

    SHA512

    beb00c9af8dd6cbca5139a5eecb1dfd922e14c9058b15227bc66fb3844014277e892e49b026f35b270cd2b21152cb1a5e0e454832198e1da98e16626a326877f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    fe6ed83e5b9dc2c6281a95e7ba2f0041

    SHA1

    8df302ae8ce6ec5dd4177369e2cd9bfff5400465

    SHA256

    35016b5c8aa939af03ac33444995998c00463b5d846cc5417fd8b6b621f4d409

    SHA512

    5016ceb74d3f8317d997cd0973e5680af2a1ac6a7132214bf9c45bf61bfddde8a1574522d917aaaf1099d6a8054b0ea2901171c8e49a4ac8d9b9bd98cfbb35b5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    f89ddc5b81e34ab0ac46e57647f2f3de

    SHA1

    048bf41a041de85d557cefffda5b3ceea490e78c

    SHA256

    049d483cebe027e43d71e41d97f3ef98cf852853e14230d10134521429e574f9

    SHA512

    11dcbd2bfb1565064c7be8a1bc475201043e106a01722b27cc1b460b351f59b41fda5ce644a17bf3016b9adbb823d7126d73bd7b03f4a45a24246619c0a5370b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    deaeb341dfbe2348c9896af98e774252

    SHA1

    61b300349d0322e983b5c2dd69b7cd9972e99171

    SHA256

    a3c5c021c06d68a69358746df2d8696b0ec1858d1bfa18705f1190f8b52c7129

    SHA512

    93fc8fa42c37776c89b69579926f994f9046b70220fbc1e24615ca4509e063c3ba4d1594368869f21d96a283e96bc73167a7a4fab9b5a8197c2d3bac4434a588

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    7f365afb3458a58321ee820d0c809132

    SHA1

    ff3e4362dd4cf2a8404e3b1ca2a0db5c42c04646

    SHA256

    657854f7df6c77a0b7f317d8e763d8a66bfc04ec7867794b6afb4843aaa6bd1e

    SHA512

    a0d7fdad0d653e0bc4a11ad8a79e1fc87ba9cf9b22c367230e2b3c2f42870b662e32c97f6b71eb80d7cbee66af07a809ff3711a44c00b74d15014a8fdf9b1c01

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    10bfed887dee966c6fc46c0aab5ee4c4

    SHA1

    2ccf254b8f3c0763e6f3f130f596e64d02708fcd

    SHA256

    da72adbc4cdfd5b3d3f204d2bd5ecae3a4aeb7ab718cf2e4fbb81358af343f02

    SHA512

    b59a43c40c645615b8338976a4cbbca93b5eb8f24df54ecf31e36a99ee6c8de5d5ebec01d3fbba45e680e8761c0837013834bc89d5ba070548a843a05be99f44

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabA286.tmp
    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarA463.tmp
    Filesize

    177KB

    MD5

    435a9ac180383f9fa094131b173a2f7b

    SHA1

    76944ea657a9db94f9a4bef38f88c46ed4166983

    SHA256

    67dc37ed50b8e63272b49a254a6039ee225974f1d767bb83eb1fd80e759a7c34

    SHA512

    1a6b277611959720a9c71114957620517ad94541302f164eb872bd322292a952409bafb8bc2ac793b16ad5f25d83f8594ccff2b7834e3c2b2b941e6fc84c009a

    Download Submit