Analysis

  • max time kernel
    120s
  • max time network
    153s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    02/06/2024, 01:05

General

  • Target

    d-audiocompression.html

  • Size

    5KB

  • MD5

    42fc7f1f3036a7815ef8d8fa845055a3

  • SHA1

    85dc45d8ddf3a6d12bd20d0786a9072d5cb479ab

  • SHA256

    163a954379462d8b11e3a74f3bbd1613aff2167eee6fde7c916f5dfd02683f42

  • SHA512

    341de116d00e3b21e260881cc28ebcfd913c573a633472772997689b09c8859a7fe5b11ddd608a105ab8c61a58287c2ff8515b232cd49d1c5da67a9104616eb6

  • SSDEEP

    96:WMQfVsRapCot2f5+r9j14F6mXJNFrhwy6JcQN9j14PLRMlSel9j14jHl9j1485G5:WHfia0ajCNxhyJcQjCTRUjCPjC8G5

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\d-audiocompression.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2880
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2880 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:3056

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          ae7baa79f85dda9e1757b85fc2a32298

          SHA1

          060a99b21a5cb1ca78d598da05230d110861086e

          SHA256

          0ea878ae14a5ef11608c46e78a74f6350b937b07a5c30da7c1465a69888f1e1e

          SHA512

          3141fb555d25d7d42fe4d26d65d4af167e40c83c474f8b78b2ccc555fe4eb6b32f07f60d223d1b7a50b79f39e0bc55ffa1b1f772f008045476623fc0a2b0c7c3

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          572235ee7ad75d9ebfa848c3ab7dfd4b

          SHA1

          40f016a0079ca7fb3ccbf8ae476070bae67507b3

          SHA256

          91c0a9132317b6a060d39a1c2b3be503249550de1d5610c73d665f324939cb5a

          SHA512

          ac5419974ab8fc8f6b1d829fd147560b992c3c565e2a99cf6f6a60d0a3b0994f15a6ae20f6860819395ea9d1051ac3bb6ca48aab16334c211824a6558f66325b

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          3207d70a3cff00a4da80403153b2eb98

          SHA1

          5185386eeb3fb91911cee07b7a0dcff79470ae39

          SHA256

          7009efca82d5640f5b430b0034b8a189535260af141f01375c36233c9b799bdb

          SHA512

          ddd1d4096801daec2fde605df9ed7d411bdc3bd7f8f8b59c54b54af5d0906ee979a7b5a81a0e58f9829747ca95cf380c76fbd54596857e8e99ded4eaebc72495

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          94b43a1a7532bfaffe5a013e65b1e4c3

          SHA1

          e231c039781b57ee2b8620248b119b3349b94009

          SHA256

          dc0bdcfe16e5188d209ef8b6f0eb3d6360a84574787886d1e5f475ae1862834e

          SHA512

          47da6283e4395808404ef611d7af7eea8baf55af639da37e3bdf19e2c920ad6bb3088e0675616ef35323b003bbfaa235cbb51c5c10060642a627f47329734c87

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          a70cc076000f0b5315321abda1919ec5

          SHA1

          42491c66f51ba290bec00bf5061d1ef82b6d86a9

          SHA256

          67ead3ced04bad72ec08b10d49620fbf55b50e1563b1210599ea1d4f6abede32

          SHA512

          ab9b5c50a5f895f18d5b44229a83764e021469741f86bee9f26833862b53147771290d7b3f26ee706c254607d12418c262a59bedf84eaf41948619a4a249822b

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          b9a1d91cc2999e8cf74f1cb8c6404424

          SHA1

          cfcbe6b804342b1de9f1b9ece47efed13bfd41ad

          SHA256

          0f74319c2eed02ced630378202760a8cb1add96d0e9e3adf39073802b26c157b

          SHA512

          4799704fb6998ae3f17e4950670b63942272174154e8f7e1fb8da19df4ae649ce0bd91e87faba588a9097d8b6d6678fa6158f724d9221ea54ccbb53aa0994f15

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          c09f653e5ee775b72de9afbb45a0fb12

          SHA1

          fa35b8e385c9ee3cb08a2d389e9b780cb6feb7ae

          SHA256

          07fe53ea8ea8986b1a443eed68d96764f7b9e21bdd6297d4f8e438e2312defc1

          SHA512

          6162e66672ccdc7fef0577aa9796668f784f726ef081eef3dde3403e5bf09214698459860f11c9fe526eb6dcc203d98797b11ee7ccac9036df81179e61434dc6

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          5991b3adfcde7a5329738ae1c51e306b

          SHA1

          9de1b9f376ca9f980b4ade491f3f33a33b102930

          SHA256

          c0bff63f79e34a8f61be40cd5d1a956e5c89074b52f39bf5530c66bcbb26e42c

          SHA512

          889950ce81e858798fe03253239ea8a26dd906144bdd8ae8102690811b01234c6a101175e975ae221ad267a69a29f46e14dfc91fd90d2e00e815b5a561cdee95

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          24bbd4d076a2a4318b931e9de95620d9

          SHA1

          2f703ccb9ed5a066569518b26d9b02b8777023df

          SHA256

          6abf81ea6e71ea5226ed0e0ec5f08a4a2db5cdf15ad838c10f1f27673c2998fa

          SHA512

          6ae9a9094b4ac7563091cc92d4928ed62fee9b308d53e20761e7dada15cd4ccb36c845a82ad6d3b6946694eb31a5970a9e1b84ea76caf640a405be1fcaa9e557

        • C:\Users\Admin\AppData\Local\Temp\Cab2F7B.tmp

          Filesize

          65KB

          MD5

          ac05d27423a85adc1622c714f2cb6184

          SHA1

          b0fe2b1abddb97837ea0195be70ab2ff14d43198

          SHA256

          c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

          SHA512

          6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

        • C:\Users\Admin\AppData\Local\Temp\Cab31DF.tmp

          Filesize

          70KB

          MD5

          49aebf8cbd62d92ac215b2923fb1b9f5

          SHA1

          1723be06719828dda65ad804298d0431f6aff976

          SHA256

          b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

          SHA512

          bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

        • C:\Users\Admin\AppData\Local\Temp\Tar31F3.tmp

          Filesize

          181KB

          MD5

          4ea6026cf93ec6338144661bf1202cd1

          SHA1

          a1dec9044f750ad887935a01430bf49322fbdcb7

          SHA256

          8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

          SHA512

          6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b