Overview

overview

1

Static

static

1

sample.html

windows7-x64

1

sample.html

windows10-2004-x64

1

Analysis

  • max time kernel
    138s
  • max time network
    134s
  • platform
    windows7_x64
  • resource
    win7-20231129-en
  • resource tags

    arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
  • submitted
    22/05/2024, 16:53

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    sample.html

  • Size

    40KB

  • MD5

    5cc8948de6571e991f7074ce2de4048c

  • SHA1

    de8ab8779f07cebc776907d8160c472a9bf71d7f

  • SHA256

    04af748f2998d3aae7b7e419398cfaf0106927404354629b06bc7dc827d9f284

  • SHA512

    fef4f0a43f1ae8d6b78bf92bc3586f5e66228a76e5f900c11ef81d7e3409a305a481e6d23c4ae15ae2a5c9e650fbb2f77ff9e3f2b5abffefbc597d34579cf78b

  • SSDEEP

    768:Ssmh0OEZ6BmLSfxoI/Bc3Z8vf8V+EC1HEYJ+m9mWkOh+m0YW2pj+1Gtf17Nx+Ghm:SsmShZ6BCSfxBBc3Z8vf8V+EC1HEYJ+V

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 43 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\sample.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2344
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2344 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:3052

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\3C428B1A3E5F57D887EC4B864FAC5DCC
    Filesize

    914B

    MD5

    e4a68ac854ac5242460afd72481b2a44

    SHA1

    df3c24f9bfd666761b268073fe06d1cc8d4f82a4

    SHA256

    cb3ccbb76031e5e0138f8dd39a23f9de47ffc35e43c1144cea27d46a5ab1cb5f

    SHA512

    5622207e1ba285f172756f6019af92ac808ed63286e24dfecc1e79873fb5d140f1ceb7133f2476e89a5f75f711f9813a9fbb8fd5287f64adfdcc53b864f9bdc5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015
    Filesize

    68KB

    MD5

    29f65ba8e88c063813cc50a4ea544e93

    SHA1

    05a7040d5c127e68c25d81cc51271ffb8bef3568

    SHA256

    1ed81fa8dfb6999a9fedc6e779138ffd99568992e22d300acd181a6d2c8de184

    SHA512

    e29b2e92c496245bed3372578074407e8ef8882906ce10c35b3c8deebfefe01b5fd7f3030acaa693e175f4b7aca6cd7d8d10ae1c731b09c5fa19035e005de3aa

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\F0ACCF77CDCBFF39F6191887F6D2D357
    Filesize

    1KB

    MD5

    a266bb7dcc38a562631361bbf61dd11b

    SHA1

    3b1efd3a66ea28b16697394703a72ca340a05bd5

    SHA256

    df545bf919a2439c36983b54cdfc903dfa4f37d3996d8d84b4c31eec6f3c163e

    SHA512

    0da8ef4f8f6ed3d16d2bc8eb816b9e6e1345dfe2d91160196c47e6149a1d6aedaafadcefd66acdea7f72dcf0832770192ceac15b0c559c4ccc2c0e5581d5aefc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\3C428B1A3E5F57D887EC4B864FAC5DCC
    Filesize

    252B

    MD5

    a97c0b3cd4883cc41b78b408e0d05007

    SHA1

    0343087a0cafdcd7f615628fc8bc1d68b00a5156

    SHA256

    24ba80950c410fd3f1b5be49c46aad939f5d3b87163dd7f98a7ac2c929a4ff89

    SHA512

    3063e635f48e999a1996035512c01bccac8a1a6052f018d23568a8f1b4f1d4aa53f5987584fadbd9a22fbbdce4dc587f2538d1e911effc480382c969fb275b2f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    24f73ecafce561610bf343cbad524c6c

    SHA1

    8ec47d881f5fcc79aba24abda2dc28a2fb6857b0

    SHA256

    944d9fcb47ac1b3edb3f0c53953e2826ae5ac7b1f15cd8723e2b5e5994667a3f

    SHA512

    f6515788bbfd62a9ababdfc43cd8621ad0633465b130d0bacac80ae74c9221e22cd8d40155c38ce096adae883cb5ca6fd29ec68cfc4cdfc3479b8d559ad84da3

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    45c96abe348decd1addec99ca43fd4d8

    SHA1

    2551d506afa452906e83af24443b9faa8b3ba52a

    SHA256

    985347e2f08c96c4eb59f60b300a2c03cd941ee2abf0799852c55bf2fce1af06

    SHA512

    11dcfde8485b90303eedb46c077d199486d52c0701c29868822e24616c089b545440dd8ba1e9b767af3d4ff5d77443f6fa22b45c099b01c1479db8a04026f5ab

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    a6cb1dc2c23aaa5cbde29a3b20483a24

    SHA1

    c863ac8cf69f5e2887d7b8180ac6d60729657ed7

    SHA256

    5b9b85d69c02a63115fa291ab8453f8a77c2b7e840123d0c85f5f3d5abf31ace

    SHA512

    fc4340c1647a09ab196e3253b153236a41347b5ae90b91ff67c0fb9cfbae40391e4734c4e3ccc7f6afa4b83637b3c6affb7aa87573ea9b725700c0ca72b0414c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    c7d009b9d639fce3fd37359f07d4c997

    SHA1

    fe386f0f5889739ffb45f2ea6b77b9dfd25e189d

    SHA256

    1ed5df1de2c1e9beb7cb9e7b8accfd5ddcc5444541e6a3c5d89ca710bbf8cffb

    SHA512

    6d0f64d8bfb9d4f6402e60520700d71ca6ff7e089765fe8f21929f7a51262d6caa562ee49be3d5fde274e8317063a24bd227dd5520fcda1594cf28dce541c4dd

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    b3ac4a87d29d2c2615bfa3277fc9de65

    SHA1

    c6bf33325116598f1cbe96420c2ad3d01e476623

    SHA256

    cda2cca1afe364dfc10a421e0ebca6831f58bbcae9cb54eb326c9018c2fd2e9e

    SHA512

    864f84bb9ced21bd2e1cd21b02acd1c18f289320de35c1983d1ec3f9a45cd43cb0d5b3bd77b9ae5c7944179f223a45298b095f536d56b7db263d0c6abeade4d8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    87ad4ef4a4705a9705b1451c13286835

    SHA1

    5dbc7736034624c2f0646b618b24ea52b6c7fcb7

    SHA256

    86358c79d12c6976f9974e07be42aedbd1047ec391e10950c330ea7d31f6a4c3

    SHA512

    c01e50e4ade2745a2fe6629eaf8e57dcfe611f6bafae6dd8126c2162b4308b5788d9e62cc70c75dfed9c24a0f610f6ea768d7f01112afc0e4acb130de2cc90af

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    0113022e3e2202b3b2e64c791a1ae01f

    SHA1

    907c1dffaa255b0c541b9f1c486b418a52f8f72d

    SHA256

    5fa69b0436468108d13d6b8e7275ddfc03714dd16656e627016c83c7426094ac

    SHA512

    42945ae0c461e7e8c9d03d07f477974a33494cff787f80c752b0f9776d3edd2476b456da3e6dee69bf1292e1e158f87231ea82571ff29102acb59bd147c94d53

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    9e70f7410764766801aa2f4f4cc50f41

    SHA1

    61f51482d380b70b4c4b480dc6d8c3151b5f4edc

    SHA256

    04b33f9274ea509835dc32d6001b011ccf43b75e64a23c4e0c91cbc5ddad5d2c

    SHA512

    5a50a771fdabb32faceb32f0af206c2bd412321e6144fc91b9726b83c6d715ad973826070cb9c889dd9272792eab524976586bf458d7b2c64f82bb140ea9dcee

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    29b42bacbc64f3671dc9816371f9ad8d

    SHA1

    c37a5255650993c10c540d1439973de47c9dac8c

    SHA256

    1e28bf31efb1c67139af4e55c13496becc99cd8a0f17929970ff2dbaa512bb2f

    SHA512

    d0c25c8d56527fbc7939ac56ed1192c84b9da0471345551bb440d9511a12e31b239f08728dc3b4f0f6242ad21ea532303a10e1fc1f5b8a07c90515a4cf0fe3fb

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    7b2e64b964f051215b8ce67819536c74

    SHA1

    64ec1ee35e5f60ceb446b2a3736f2e7216c40117

    SHA256

    8f638c56cc89d59a399523a196e524fdb8bf0a270d5bb722f531053e2bda30bf

    SHA512

    23cc3a91b8dfd799cebf6d1f8ffc105f29691dd2f41be8682ae16c0a5604ada3693ba11345d1c7b974ec2b7f7eae78ee38e4217ac82edee16bcf90f04b2dd8ac

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    bfa54aaf18f0ec85856cf248464d1640

    SHA1

    67b2f08d1ba72bb15741c87fdf70e759250a59b5

    SHA256

    3719994572b3408a69453874f42a5724f7d829617cc7d31d62e233e55adcca11

    SHA512

    7fc34a7b3e21df538f641b3262a40e5b118f32fbfa15b50001444da991135f67d842b02549993965e719b7e9d022c3aa8d8f1b0f43ba6d4ae34a2fd5b73bd5dd

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    c2f6ec2fda54b8a2ba153342c43d34b4

    SHA1

    6b04d916b7b79cba9d6f2a9535401d2830b825cd

    SHA256

    545c2927633598a79cceb7191f3b56821914abfdcc3fc62fa51a25a0954ff9fd

    SHA512

    849ca772c0ba9cb829d0e90cd1b0743a671f7f26ac89923ea2b808717411a949aae7946c4211d6419600f3aa0f9a1929bd02095730e472b889bbeafd0d997561

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    566f9f15bc41d841f96abe2e9c06e8fc

    SHA1

    b2e70755f9be80e9797950ea0e42840e77988906

    SHA256

    98f8cc72a1ea0addaab2c2e42b8e23f9b7ce1ab0f4673914d69c0e8f52f9c8ac

    SHA512

    adfaa15ab2a656c581b76c963f74de9d3ffa12c5caafbc774f42be070605b1983d37617beca9db2ae5a8345f3ac05383bc56b2c0a9f63e8c75e23cd3734d0f4c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F0ACCF77CDCBFF39F6191887F6D2D357
    Filesize

    242B

    MD5

    6745aef50b761a9a4573128b48aa65ca

    SHA1

    2671c3a84225242802340c62581d9296e5f0344e

    SHA256

    0782ae93bd32ee7588071354fd62920dca5abe75a5d79ba50430aaca246c99ac

    SHA512

    20179f90ffb24256a3856ceb5174844a1b1eca5007f945d5fb02344bb783d9ead3057a406ca4873995a72502b2c9e8825bd0cb057a21bc15e9fd6f620858db1f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\Internet Explorer\Services\search_{0633EE93-D776-472f-A0FF-E1416B8B2E3A}.ico
    Filesize

    4KB

    MD5

    da597791be3b6e732f0bc8b20e38ee62

    SHA1

    1125c45d285c360542027d7554a5c442288974de

    SHA256

    5b2c34b3c4e8dd898b664dba6c3786e2ff9869eff55d673aa48361f11325ed07

    SHA512

    d8dc8358727590a1ed74dc70356aedc0499552c2dc0cd4f7a01853dd85ceb3aead5fbdc7c75d7da36db6af2448ce5abdff64cebdca3533ecad953c061a9b338e

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar1E20.tmp
    Filesize

    177KB

    MD5

    435a9ac180383f9fa094131b173a2f7b

    SHA1

    76944ea657a9db94f9a4bef38f88c46ed4166983

    SHA256

    67dc37ed50b8e63272b49a254a6039ee225974f1d767bb83eb1fd80e759a7c34

    SHA512

    1a6b277611959720a9c71114957620517ad94541302f164eb872bd322292a952409bafb8bc2ac793b16ad5f25d83f8594ccff2b7834e3c2b2b941e6fc84c009a

    Download Submit