Overview

overview

1

Static

static

1

sample.html

windows7-x64

1

sample.html

windows10-2004-x64

1

Analysis

  • max time kernel
    143s
  • max time network
    126s
  • platform
    windows7_x64
  • resource
    win7-20240220-en
  • resource tags

    arch:x64arch:x86image:win7-20240220-enlocale:en-usos:windows7-x64system
  • submitted
    22-05-2024 07:26

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    sample.html

  • Size

    218KB

  • MD5

    551c64d92cf6feb09a92b119483146af

  • SHA1

    900e57c743805b95f3020a68773a536d0a203dca

  • SHA256

    9b3590968d7f6b1725be7a183b604f146dc35ea8994c32247063771a997c3140

  • SHA512

    a7b0177e0254fdbb28c5bc1cd6b0da69058c3e9d05dc7dcf3fece5bab5851b0bca2e2a359708bf5bd703733528c61661d0529c1d5f7e925dd14df6990e85f27f

  • SSDEEP

    3072:SfO6HUsjPXtpyBWArOqeXyfkMY+BES09JXAnyrZalI+YQ:Sm+U61pyBWArOFisMYod+X3oI+YQ

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 41 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\sample.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2088
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2088 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2880

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015
    Filesize

    68KB

    MD5

    29f65ba8e88c063813cc50a4ea544e93

    SHA1

    05a7040d5c127e68c25d81cc51271ffb8bef3568

    SHA256

    1ed81fa8dfb6999a9fedc6e779138ffd99568992e22d300acd181a6d2c8de184

    SHA512

    e29b2e92c496245bed3372578074407e8ef8882906ce10c35b3c8deebfefe01b5fd7f3030acaa693e175f4b7aca6cd7d8d10ae1c731b09c5fa19035e005de3aa

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    21b68a66cf73382f0106c077a037533e

    SHA1

    8c50ac358c789eb232c225f9c20485e658c23bb1

    SHA256

    95c56d376f4bab3b8568b97bcebb6b2e3721f15994b8b2168dad9ef880c5b1af

    SHA512

    8c66ab55c72203f455f343dae277259aee1ebc117e025981f3a9710f21b2db6aa14aa6faffcab54fe93d97102f13e63f92b3007afcbb0437cf635497c41c2770

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    68fcc25e5e5337dfd492e7161dea2ee5

    SHA1

    3c4faf7b56e56859a8245eef240f1cb31d868c94

    SHA256

    a866bb6b7e49db66e8b33fad7c9ec7636c250036452b64840cd3201e1843af28

    SHA512

    005164c16c0b741903670c4970715936c33826a1b1f3f2d7664cf7080673577d89cc03a5b8346b7b2ecc9715ee8c5f98536595c6f30f5da1fd9436c6c9bcd33d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    e1d9dde34f77b312e04fff51be93b53d

    SHA1

    0ae51a659856411cd0a3189423fa568bf5c2bb90

    SHA256

    b66c493dd4b5668b9306ea16b36f546bebe1c299ddfde38ae753bd8475c82388

    SHA512

    f140b71cacd66bb78f0fd2a572e742b86769421a6ec57195c8def1df601d73f6d5669f856e9546392433d633236b27cfc6290812ede3d9aabbecd26376f61933

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    5e7683eb717d92a500340dfa9274f35a

    SHA1

    32b49089a69bbb9eb49adff18c9dbba06f1f0860

    SHA256

    eb6226362a5501889313390f9270bebc57c5494b93cdc52967944bbf18e2042d

    SHA512

    d9de3003a81d45110a91962be158b17cb4fc6ee7e632f9349d6fe40b6ea856fc48ee5e47ed30c6ecf9ddc1d00142576758b870d64d6d4f27760c46d5f1cc02d2

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    66df2b9488d8eef23b6a8a58322e820a

    SHA1

    6ff77528e1a1ef896b5ec513718e2e32d50fe3cf

    SHA256

    d18d608e65210d5784ef61d0f8fd47e7d1f43f0824851534dee5d1b7d9a704f6

    SHA512

    def9368abd6ed196e0d103a5b4fdc3e9f7e0b3a4823c2d2d20496acb3061314ac98469e72af8e9f7989da2f2e5b1b5b6d4dc6e7f723d470c78784b5ed826cb70

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    fb90552f5303e148ec628733ba55bb6e

    SHA1

    c3804ed02ad8d57b5357e10649c9a8898dda8ccb

    SHA256

    d960ea609838753b9d9872b16676c51f4dddea1b23c3064c110799b2d05d71d5

    SHA512

    7c2b01a87279aae94f40c84db721d8534bc13f9c63a31bf1ba39a0313bb0b0a614ed46ec033c2afd30f823f5ab375d366b8323d1be29dd07f1ce5a7a779c1629

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    fec02907f355e10f22d8d83c2a497b8a

    SHA1

    9fca0ab82292f3d1fe21a6aab3d0b5a6e51d56fd

    SHA256

    0ecd17b85d552bc8e3e8258808f4bc71c9cfc0a2c0fd4c4df80282dd1df38c68

    SHA512

    a4a44cc0489ff7e551747859e3a05d1fd5faf2698f7e7f40ca2b05555f4568b881cc6e089e9ccd33bbc5251b0dd056b26e243c2e0eb014bb87a45bc3a016a818

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    720ae543e69ef8d97ccef7fc9d211673

    SHA1

    e4eb47fa15b388fcdb1d937d7fa234f7c0069cf0

    SHA256

    ec0f56f4200b7341415a219a522257dfd7d73b9953e0b3881372771c225c28a3

    SHA512

    3f9ea76181a2cae66dcbfb8004f82b8cd56aa81bef9d91625ffb904a9c334d99d6d5676bbe5d2e8ce767e315b4aa06c3a9aedd87470c88fbb152d9712215f108

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    1651765284d0e77052fc9140d39d5e5d

    SHA1

    034422cb12cc18342e69bd1c21b5dcb54ff29b69

    SHA256

    269ab77eabb36b713b2ce6c3bede73ced3b1c5a0106d0b746a7690484146d246

    SHA512

    ca538bc356e01b249c0ecf94bd24dce7c3355a2b96e83658dddb2c9fef98282169c033aababdb77ddf46f09f68e5871a60a08567a763c631c6ce527f824a21a3

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab2213.tmp
    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar248A.tmp
    Filesize

    177KB

    MD5

    435a9ac180383f9fa094131b173a2f7b

    SHA1

    76944ea657a9db94f9a4bef38f88c46ed4166983

    SHA256

    67dc37ed50b8e63272b49a254a6039ee225974f1d767bb83eb1fd80e759a7c34

    SHA512

    1a6b277611959720a9c71114957620517ad94541302f164eb872bd322292a952409bafb8bc2ac793b16ad5f25d83f8594ccff2b7834e3c2b2b941e6fc84c009a

    Download Submit