Analysis

  • max time kernel
    144s
  • max time network
    146s
  • platform
    windows7_x64
  • resource
    win7-20240220-en
  • resource tags

    arch:x64arch:x86image:win7-20240220-enlocale:en-usos:windows7-x64system
  • submitted
    29-05-2024 02:15

General

  • Target

    7aa10f5bf0adc8577766ed01b826bf14.html

  • Size

    83KB

  • MD5

    7aa10f5bf0adc8577766ed01b826bf14

  • SHA1

    04ca4710a52da484f9c2b0b7e7637abeb9893eaa

  • SHA256

    47be894799b804ff94528c9e926264260723dac9f23ae481ee17436f52289727

  • SHA512

    e1bc6262867935a924f1da55927d8f066eb60b192785e95b52ac2eb37a51440054a689126424af24eb886d30007d2a5e741574a34ab9278cac25ca02f7673edf

  • SSDEEP

    1536:OpvQjIg5WSL7XE26knLoE5EbEXEsiBtW1ESEFEzEDEdEc5My2mT/EOPEyBEXdEZd:evQPRxUWE1csdVFE1J

Score
4/10

Malware Config

Signatures

  • Detected phishing page
  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\7aa10f5bf0adc8577766ed01b826bf14.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1656
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1656 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2096

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\3C428B1A3E5F57D887EC4B864FAC5DCC

    Filesize

    914B

    MD5

    e4a68ac854ac5242460afd72481b2a44

    SHA1

    df3c24f9bfd666761b268073fe06d1cc8d4f82a4

    SHA256

    cb3ccbb76031e5e0138f8dd39a23f9de47ffc35e43c1144cea27d46a5ab1cb5f

    SHA512

    5622207e1ba285f172756f6019af92ac808ed63286e24dfecc1e79873fb5d140f1ceb7133f2476e89a5f75f711f9813a9fbb8fd5287f64adfdcc53b864f9bdc5

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\F0ACCF77CDCBFF39F6191887F6D2D357

    Filesize

    1KB

    MD5

    a266bb7dcc38a562631361bbf61dd11b

    SHA1

    3b1efd3a66ea28b16697394703a72ca340a05bd5

    SHA256

    df545bf919a2439c36983b54cdfc903dfa4f37d3996d8d84b4c31eec6f3c163e

    SHA512

    0da8ef4f8f6ed3d16d2bc8eb816b9e6e1345dfe2d91160196c47e6149a1d6aedaafadcefd66acdea7f72dcf0832770192ceac15b0c559c4ccc2c0e5581d5aefc

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\3C428B1A3E5F57D887EC4B864FAC5DCC

    Filesize

    252B

    MD5

    4962c97cc6640411c1c731733d6951b1

    SHA1

    c383df58c9012d222dab81f4b4f45b315c478f0f

    SHA256

    ceeeb9f8b988659c2abaf8ad7da4700c4a87d3325ebaea7f8f59e917bbf1f262

    SHA512

    cfdac1d446215ca447ded704f913849e0e90f741543e581d53389c65e0eb3643adfa33a1adb3bfa74e77882f79ef88acc961c893bb244d9862c6a56826ab9cf2

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    195bfe8bc0fd0979aa72444a985a9209

    SHA1

    83d822b3bceb891e6150a18133a9ac0ac59de888

    SHA256

    a6f827e9339dd33152e994f8a8e4cefe213d039e6a2896d14ac68bf6c0d1056b

    SHA512

    2e39f6c3b7a3bbf6a03ea2c87c3c28f01bae7f92326e2a3e4ce1b72dc378bb0ab0dca281cea65cc4f3dbb56d786d505ca7bf523d946df9e3787881fb4c015455

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    9b0efad19c6510d0067a4905351177b6

    SHA1

    4ee2fddfdd2136253362eb79c6612931ef93f956

    SHA256

    173f898c77baa989f2dcaadd2c7c31ea805aac6c808917e2576983923cbd66d9

    SHA512

    f76369a9d8ab98c7a5415ce811fb2f450d69538bba590a63245962b04329d5f6ff3eee41f59956469a75a7084a8e695c80734390d79634feab15ab113b3e11c2

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    4bcac9c2aeb2f35a4218cf5210991da5

    SHA1

    379c56914e61f166388dc81ef3d0fbaa1ddc836b

    SHA256

    9da4bb300a21c16d38c7f55c2d86307bd371234ca01507301fc2986afe90d23f

    SHA512

    61908b9e416e992bed92193d37c1249042a2b035c8826d36b78740379698b4c84cb058923e0bfbf6eaade7d4a302dd3058a646e53f966692466148d46895da7b

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    8733b79bde858869394ce1e260f0a9de

    SHA1

    35448d9b29dd90a4ab57cbf3941e97d9b3847043

    SHA256

    1fb813fb609d0cfda96f322476492612626182d0b75e11861f08e465e0146b34

    SHA512

    f6b1d92051d9bf7b3fa8fbbb96351915901ef8e00bf1dd54edf7c663acbac5ac9984fdcd3f93f39c5afab19e327b2a70bed2507be6a78fd71afc1b9c1ac2dcdf

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    a2e7e1c5bd2d6ee0aa9fe614b5150d16

    SHA1

    13cbdb8804e631d6f12b5f0ca970157fd4d1d0f4

    SHA256

    955d46a67c2bc0d28fa1ba5946c75f0d5902608747b828df433b93d321cc5789

    SHA512

    ac42b5f44edc5a2de65876b99050a6eae71a3f3e9fdefbf9006b298e31dc63c5478c71451c2ce6a4620c6365de040f4f437d0d3e4692cf9d9f7751c637b0bf9a

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    bcd15472ead4771b1178fc9970a1126b

    SHA1

    86a32645f61d4cecf7525d809313f3ff93614463

    SHA256

    8ceeeba03557bfcc59944b70fa39b42cd7a15ae41dbc6e546529ae7b63eea72a

    SHA512

    158427334b523fe7f28a45bd9e716559bc139c33bcf4528a396c13624ec9e47d8a58590b13b8d9a827af517f0370c2a15d45393257b03065ae4e93655dbf4906

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    5f5a59c8f5c799e904b36e0802b0e35a

    SHA1

    19c2e8aa82c453abe51bff83e9fc263e7ec18848

    SHA256

    4047db620aabda905d6e975d1640260a4cfb68f4b6876e989501227620053f93

    SHA512

    276231e60fbc48e50b4cd6b14a6cd11ba58b4e8ba02708051c8ec24a69771f2db311ef2b9777e29fe924826106d094fed126b2889304b9dd5aa15e5051bed4d2

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    960f0e88bd6fd2ed20bb60fca56f3169

    SHA1

    4558a98cf67ba3ba505e92567de222b7b60760c5

    SHA256

    c30364b7bf40256a5308d7e33a44c29eb07e148ec48e199cf258d327720f9b02

    SHA512

    937be75034dff71b5d45e245fd30733fe90f78447ff69e58da9e1d63391e1c7bc3313009c3072bd4adfe5824290ff1f4a01e8da742d968d9f9e3a69e6676115f

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    ae154fb9ee36d0ce4ff048df54b49166

    SHA1

    bd5c445fb0969af8c8346716288682dba5fb8d2f

    SHA256

    2c8a3c4cf93f7c3d8202a49c25472eebdfdb91a1196904f2dfd824b9e13cc962

    SHA512

    e078d398cc0050c5ff4881fdf58d5f988e3bbbc56bfe86f23841672e1f11a0fd124c880aa5c2b897b1e686e10a6e2b98dd29cbb2cb1452449798a2517f1b1987

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    ee86553f9b325053b5a99de758372d5a

    SHA1

    9d93c2cbd2d409c364ef1484f480d0c8cf3721f4

    SHA256

    c421326b90d215295b9b09c993dfcb63ab82bf4e75ad039affd82448e5b21a25

    SHA512

    5cf3919d6dccf2001971a375d2e7d9a36422b66dc47e360202e62db168ae740c292adbf891a8bf659ffd00044ae0d8b98cb6e68aaed786f08a11e567ecacb0e7

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    addab2bc2a0b9715d4a9718565ef78a7

    SHA1

    33e109b8dde0f1a6e02472a265a67279b5d7b2ba

    SHA256

    149226f81d7c65b9bb2f3dc4ee7ba562c73afa110d88b4f3a39c3c51880cb9c9

    SHA512

    64d2bb8ec994c61f0fb82bad36b03e181a2519961946cc83d9a942ae55b4ceefd69a5599af8bf35894e624d0b8ef20abadfe4e33ad6f94dd1478798c17d0d6a3

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    d39bb490c5927b3c6bc594ed0d5151d4

    SHA1

    fffec6186150bc8ae1ac70a40e630a1da58074d8

    SHA256

    4d73f884513d3c429e52c21d378303d6c4c68b160912bb88f965175f6fb58da0

    SHA512

    68009e34df32f6c0392e3584dbb33d6c0444d411685dbd944450c8d0b5f9ecf92ab746c2ca7183580b7f18a968626dfb8728b9294a247e4f03d873d2ba8db56e

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    cff6878a877232e72d5ad174c726226d

    SHA1

    8c24988d083050c08d73e3814dce0eae726a7a8f

    SHA256

    1a9db04d2b3a127de4c93e2575c480053e506e4571486649c630f3907260cca4

    SHA512

    93020da2d58a4d687df17c1658aba6b69be6d02341ddf19d9f99d1660ca5fdd748af17c364df81955b10e0f6952c7c120d4d6ddaedfe4a7ad71787d1a0b4fde1

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    610ba3128c473b9632b04bb4de316d79

    SHA1

    af02460e322a247308c625d15eb8d440df776ccb

    SHA256

    191e78d78fb45186a4ecbd70168e0159e4d2577182465cf9a1fdb4684893d81a

    SHA512

    b593de3d7031feb928882b9ecbd37f17b9bfe6762c30374e61fb9ef77babcc75c97de85effb29e52079dc5a04cef056ecd3b179b3ebfbee8e74884e5c8a6ae86

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    823b6ea362e5c8e9d4e548495692c683

    SHA1

    ddc11dc9e6f5d86238f2658df6c8bfe97aa3cffd

    SHA256

    11e74e5f6f2a31f82947dc61c5be9affb675dcf85c3646d7f4d2b2838dee8b1f

    SHA512

    1426a5b767bf88e3c76b96a768db82da7f8e53e94692261d4ee912829183a8058608357a36570e5969f135ead15281b7e54908805643ea1a97f2e6fb958fc867

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    fe8552a490dddab6696c523891050613

    SHA1

    7119f8c0337d664e67d972e82aa68cf208b8d2f9

    SHA256

    5d86fa4622dbdddba41291b772a8ca70cd8e4420f658111f77255d4bc03b394e

    SHA512

    613a6b98fdb216556426f0cf4c4eebdc805f1a099361c19e1a8078928336c027cc5eb244fbc4289330bc0fdfebe7efea091c36f6f9d215cb265d26c1e4b9cc6e

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    03ef9562811f4185164a5f68ad28bd44

    SHA1

    a6b224c51d62da0a760d8090c3f3bbbb26fad2bf

    SHA256

    43ecced8318e9695d34775fa8f096e2749e6716067585aadd74a6885a5fdd11a

    SHA512

    f89a9ab39069be4dfe04a283e83e7026da03098a9849289618eade4bf1af569e540613e77a0a48df49fa0ce8082801dbe274728470cf021f281c63bc53541488

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    18638d903b148e55c12a64cf72a022c9

    SHA1

    8ad2d34cc5bb4cc579b49742efde5153d10ae31a

    SHA256

    fc8bc5941989b04c6e4c7ab8955a63365e2de45de47da5f0d30163674b85cac7

    SHA512

    069b03becfe68b8835385e4196c3f82d6af851cfad9453638a48e9d5ae0330385f337c6259a575d29c60ade36aa36f8695b3ec1ffc41ab79ca13a326af7f9905

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    6cc18b92f590893682bd247f5a004ca4

    SHA1

    3c8c1f0d0076e2b678409c96e65c527b1c7f3e1a

    SHA256

    2ded05bfb65b5e3c2059955b08f950b7290537907d010b3d72a63fd99735993a

    SHA512

    6c71cbd87104d13a2af3a9a95459c639487233381fd0a1bb30685aae69a862763507ffd2fd7965cef94a35f9737fa9ae095b69d737ecc3570d03986977c199af

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F0ACCF77CDCBFF39F6191887F6D2D357

    Filesize

    242B

    MD5

    975539cee8d7904c6aec28fb1b08c8e0

    SHA1

    abf6e7934d109000ac61be671c7de3e9fc987fc5

    SHA256

    51597c47c5b8db023f20aae72edc81cbddd2a577d3d3d6cb24a21460d41c31e9

    SHA512

    dc6b4387c4b2d742c56fb4620da07c1655b3567722ea740f9b16f82bbcb0cff69ea00973a67a207501eae24b8465e1bddea19a0348fc3ce17303efd68b8ccb2e

  • C:\Users\Admin\AppData\Local\Temp\Cab314F.tmp

    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

  • C:\Users\Admin\AppData\Local\Temp\Cab322D.tmp

    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

  • C:\Users\Admin\AppData\Local\Temp\Tar3151.tmp

    Filesize

    171KB

    MD5

    9c0c641c06238516f27941aa1166d427

    SHA1

    64cd549fb8cf014fcd9312aa7a5b023847b6c977

    SHA256

    4276af3669a141a59388bc56a87f6614d9a9bdddf560636c264219a7eb11256f

    SHA512

    936ed0c0b0a7ff8e606b1cc4175a1f9b3699748ccbba1c3aff96203033d2e9edabf090e5148370df42fbfc4e31d7229493706ff24f19ff42ff7bef74a6baad06

  • C:\Users\Admin\AppData\Local\Temp\Tar3241.tmp

    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b