Overview

overview

1

Static

static

1

secure-email.html

windows7-x64

1

secure-email.html

windows10-2004-x64

1

Analysis

  • max time kernel
    118s
  • max time network
    127s
  • platform
    windows7_x64
  • resource
    win7-20240419-en
  • resource tags

    arch:x64arch:x86image:win7-20240419-enlocale:en-usos:windows7-x64system
  • submitted
    28/05/2024, 13:11

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    secure-email.html

  • Size

    362KB

  • MD5

    fd1fdd7f6ead73faf6466953e44b78e6

  • SHA1

    f323cbe2cba8d2fff41b5c94dcec548d369478ba

  • SHA256

    9cbc1d70e5c48c84b419e60b41338a47bcdffc021bad92e596c16e134f90c71a

  • SHA512

    246a1c004898bae39f39e75d16a407c4e418dc207a0148774748dff1cd9dfdf98169fb6330cc1c4945cdef5e83d569838ea601cf5679dd02f69bb620f4ef3eaf

  • SSDEEP

    6144:ppVmBiD3lP8BcBO+bOSYnbRxbKLI2k7BukUgcvb0Eol6r4sxIzIdoM:RfD3V8BEbOv10cZ7B1UJHMzq

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\secure-email.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1008
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1008 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:3000

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          45278675ff5e5390284b692c90a5b798

          SHA1

          674c5a842b61ab82bf49521aee7e68b802ba6da3

          SHA256

          7b972ade6e7e167936d4ebc702bf8a6a459b66920a17803a3ba7b44026faa316

          SHA512

          238dd15a8f017e52793df643b933a0432c1de0c756516925a0f2e84cb9258786e0a43bbc434a7b59267a1f99b5b234ced5ed7dfd95d52c20f739bf9eb01806c8

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          40c93d24d2121e9a23d8c35ffe05bd8f

          SHA1

          233fc46f0c300428580e994939383b20d695576e

          SHA256

          03f514eae7f3a160f9127407bc436b3d13c3707c247d18062787fbaf9093e84e

          SHA512

          23bc3258230e7be7c82e1e3ec55a5929735d06dfe29bda5665b9b930d69f155b25480b5e69c2fd5f7d050f861864639ff84fea65ba3704c7026f4a78505d1c99

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          bb2ca6a178c5fe36cd5c41f51d7c56a8

          SHA1

          a30fa9a7064c1800630ce7a856768fc61164b5fe

          SHA256

          265da079070f83e4ee30752cdea1fc2491e5f5143c18eccf03f1d11a31d4cff8

          SHA512

          a5f8f8b738ea2a4d8d7fdee1bda354cd800ebb688f12f3e472986e65e857637f95f9aaf64a3d7002a66f57dad88e9aec9055a0a614348ae4de55f7737e89fd8b

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          e0cd35c24d8f93c1d7bd53aa8d9ea621

          SHA1

          70f62813975a2596ac1d786d3bbf8deac390c0b6

          SHA256

          8c217b912840b944e35fb4ac5cefa512392ac7fdbaf3beefc7975d6f47b0ce85

          SHA512

          f11bf69a56a40e53b476f76b1f36367835cb0d746b481daee1b6510ebca266e9ed9f87bbe08fc0426f8dcbc5eb39c2bbf5a7917d70891671d3ed32f830cd02a7

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          3e7c57ab0a43d46b4ecc87ab596ec81e

          SHA1

          3f2020b9a518ad683b79d11ec288728fc64b0692

          SHA256

          38e19f4816ad9ad2a85d308278d7de71fe5d0c6c23cdd7f7b4e124581241be69

          SHA512

          c2bf36fdb7dc85391f59caf8ff7354001a113446700fd4d92b61d98e19f77651b4aa13ef35968759c7a7ac425df524712b8efc8be609e550bd07978a51641d05

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          48026396a75eddd2a9fd745993c3d017

          SHA1

          8c1db7dc8bbab6a0f290bcd9673792fcc5cff9e3

          SHA256

          8708370f29442d9a5d5ed2b22d88c9d2d11a61105adcde13364b87da4fff4582

          SHA512

          5c8734c0177f105d277d991ea17e59c7a4928ae4e4b528206bba5e8067526364f3c654107c7e60b37b28ea939798a00ade0df85f3ad080627ebd55228b674c8b

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          b9f9da51039a59e1eae4e62b37604277

          SHA1

          ffdeccee4b9f2b2bc8bc6e53b47c1b64f5320d21

          SHA256

          ddf69c8a9a051805e82d1014ea35e973be4d521683e6a5508c889e3d0ec16ac8

          SHA512

          227445838c423e54ed16b7b57157a3a969828982186459b7678e3ea5a7005f91796563bee050270aaf177bf7dbcef6f711f6b829dfaf822153a83a422da388ec

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          e71be38b7889733ca0d22206f074f86b

          SHA1

          9a2e24dbe7f12d6103f80c1b8846bfccb9baa5da

          SHA256

          492c1cd69dcef541ecbf6e678d0532179ecf2ef40a6fc0dd7f04c08293cbd123

          SHA512

          3fe0027fb1da3cd11b259c7d333b13b9b801307166630c99409596be8376d20b6f3c9c50260b8b6fa0955ab3251fc1bd3c138c836c334321e570ed5664220184

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          f55f8f756619caadbf4318ef02420c0f

          SHA1

          75858ff52a2a37e4860ccdf4a7a3c57a03f39117

          SHA256

          4c107dfc11e3461ad59622728c00a48479a5696717cf21ab590ef31c54a18ccd

          SHA512

          4fcf376580f6f47eb27294ebafb095b2a57f86dff321031d22698ae293ed2247e7b76a8c763e4ee47274f29b7900afd68a1a418d9324951e033ed39523f43d10

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          2f298488b8fbfde4f401bb0451e735b4

          SHA1

          619aa6934d5c6c93d1b0e9525383dd06a67d44c6

          SHA256

          42af5437ce27befb1f8fad1c3a448612076e3434631cf42d9d76c16328c6d422

          SHA512

          f67c1b99b1a4f9031632ab9a9efcd9326bf199aec1569fbb5267e70e75157d021dcf33918c535f7cfd58b238a43593482abfc68103d228e9984f096e7ac1a483

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          c023d34a89be1219507b30a14c8e241e

          SHA1

          82ee1048606d617b23db763d47e8e6437b2784d3

          SHA256

          0c0da530f0ccbf2e79985831948b1d882a88b7ef73491ea01bba2a80c1850872

          SHA512

          79bce4b4c86d681a26d15aebc9b6ecd8428b69b20a7ea40c0b7321bc2745a013a9896263ac84a2cfdbb7df6f38edb65a77b304c62a7dc33eb51123c7e9c8fc1d

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          2ef4b9cf7dd631d567671da25604f541

          SHA1

          244aaaaaa9dc283f6966b62d0987792a18bf636a

          SHA256

          3dd65aad7854b6e117e831b2a58c7c4506b5a6fe8f819090b20a0935904d9800

          SHA512

          02313e29ce136380c6d63e1160d904e8c171b9dca9f2a1274772ef611dc35056457a4170c87e2fb3050277a96eb7549794a91a836141a3f1fd5198cbb6d66fdc

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          41854f4bd890d1f53e8e55767e8760ca

          SHA1

          203372e79ce62260d18bb9cea1d9587eee81c908

          SHA256

          63ef21a6f42ff90ee5b37c946a75d499b9e95a7d61b9b1e8e19a8878827edd59

          SHA512

          68af822accf9c932a0475252a29dac0c2f5f8defa2aafca5b1dfb06af99a82c690b41e136014fd9c0b14b3e036d19772506c6024497b629533fe23e36f26e742

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\Cab566D.tmp
          Filesize

          68KB

          MD5

          29f65ba8e88c063813cc50a4ea544e93

          SHA1

          05a7040d5c127e68c25d81cc51271ffb8bef3568

          SHA256

          1ed81fa8dfb6999a9fedc6e779138ffd99568992e22d300acd181a6d2c8de184

          SHA512

          e29b2e92c496245bed3372578074407e8ef8882906ce10c35b3c8deebfefe01b5fd7f3030acaa693e175f4b7aca6cd7d8d10ae1c731b09c5fa19035e005de3aa

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\Tar56CD.tmp
          Filesize

          177KB

          MD5

          435a9ac180383f9fa094131b173a2f7b

          SHA1

          76944ea657a9db94f9a4bef38f88c46ed4166983

          SHA256

          67dc37ed50b8e63272b49a254a6039ee225974f1d767bb83eb1fd80e759a7c34

          SHA512

          1a6b277611959720a9c71114957620517ad94541302f164eb872bd322292a952409bafb8bc2ac793b16ad5f25d83f8594ccff2b7834e3c2b2b941e6fc84c009a

          Download Submit