Analysis

  • max time kernel
    121s
  • max time network
    122s
  • platform
    windows7_x64
  • resource
    win7-20240215-en
  • resource tags

    arch:x64arch:x86image:win7-20240215-enlocale:en-usos:windows7-x64system
  • submitted
    02/06/2024, 01:05

General

  • Target

    d-audioconversion.html

  • Size

    6KB

  • MD5

    0150c5752a587c70b858a792e47be726

  • SHA1

    40980419ead39609a3dfd93a085ae44c8a984909

  • SHA256

    66f6eb989a00e72ff1a37796a43b03b4f4155c22c55ce59177317ea22c892149

  • SHA512

    33ba9602cb53bb7c698470d8e0d1343f2299b64293aa698238ac7c5a48a558c63205fd8a4adb2de104486f5185912fd5a8accca30230adc9babf3696a4afdb5d

  • SSDEEP

    192:WHf8aE1njCV6DJ+jC1wjCBvV2hALjCeAdFQS:W/qAmzvvghA/AXb

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\d-audioconversion.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:3020
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:3020 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:1304

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          5b8448f8ba3ecd43ad13b99370771961

          SHA1

          0c8a91db90a2e30e0b9d83da03b93b6d63d38cd7

          SHA256

          56bb2a4c91cb44bf7cef4a43e76f7c1e9dc75614d266ecd74914016df8055bdc

          SHA512

          8d2bfc1d0ce1e5326eeac9615e6a7c2a3e8911f83f33e66c3033d1a18389a2b03e14e490dfa1f2dee4c7d08e2cf06c654d86544333ccdafcb4d4f6e664038e13

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          7fb7f8c3c33f2007b8e11b730bb92f40

          SHA1

          f4727b6d82eac98720670ebf1fa6f89d4583b69c

          SHA256

          6ec90a55b213fe36d4ddb143d1adbbb816461f4d6f2fba42cee72f1a67e752c5

          SHA512

          092c71d07b11287605a3a36c5802afb4fa2196014fff4d98fce49b2d62d1310ede9f7a9d19694b852801cab8532d1d057ff0609d42f480254a730e1df3660b39

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          090234f68f882188c0d720efd539a7bd

          SHA1

          df106003a1fec26531dbdf56d2aed127c803b5e7

          SHA256

          b5200a5736bdcfe8f52798917007398a50562debc60ad1fdd85c6893aa6af642

          SHA512

          acd7e97227bdd5c718c505607ac3654c9b56d4ad3c4bd33ec1a994b06cfdffe01e999a7827887b6b9ae3cfcbfc26ea94360365044f4e1a867f27e3cf54525312

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          7a05b05eacd2eee74defa5d4a0336b8c

          SHA1

          0e1655526750e04b7174c73b9cd0458d0786142d

          SHA256

          58e1509dd674e990dde27615c4f25a8bdea4d6d1bb64e05cb6b721fa58928a1d

          SHA512

          5158158c14afb79bbbe672f405c0c6a5dadb5e2e8e86cc71abade6c60956e3754d4c2007fe4fbf80409c2108dd25fa4618d1ca9a03ec1792f1fa31011d23702a

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          03a3074eaa4cd27265cc62a9c3289714

          SHA1

          cb8db4d4e1cc6a6eec3accb9df9baa3fa0003dc2

          SHA256

          47d64ed990789814dbb34cadd123570e82e2d108e4ed870580e3837b96b19927

          SHA512

          aceac25d1cd20273a25cb438387e91bb60570ec0003dbd04ad67c87e7d95c848d75774da8c7b9ba0359038d8744dbe13f534d9fa652d4f30f6d1410c112f34a2

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          584c7a3332cb48389438590765a9252e

          SHA1

          d6716577aafa9e00123d0f02aad738acba8a9b75

          SHA256

          6a93f20fb679811021fd4cceb86bcddd146fed889280083aed44fc10720e7fe4

          SHA512

          3106e594e499ee009fc7c146f8f627baf6ec771e1b170be1ae27fd45139254b72e7959d8188d2b5e7b778b171c10edfec607f6f33319eff933ec8ae8ae4751e5

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          ac715fee60c35de5f918ceac6343fedc

          SHA1

          899fc9e19451d3e6869e27c2037ca99565401a87

          SHA256

          29441a27308ac7ec72ad76ab4251b1e3251b4069452dc34d54d60d43ca478613

          SHA512

          f81f5829fa6341a0158661fcd4226caf449f23398967d9b3e5d726fde2435463e8d4bd9d33f8c7e79bd3a1bd884ce271492db2eafa27e2daac4dfd34a5d73306

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          2e3eea49c09ff6e11abc209bebf0df8b

          SHA1

          fa65b1c6d9c38e75d75a4d91278e00736433b99d

          SHA256

          6c91ebc0aec089f9b77dda7ef187435e95f32d571226a43c2ba1c4089cafa41c

          SHA512

          f48ad198b023fd1fa48b20052071fcf77b805f14304e0e7b62d8b64d309933f75dfb421c91850a90c8dc80c3afa114dfee45797dc87fc3adcfb285ba3e3c5b52

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          4c121b0b802db0b72bbe9548b89993b9

          SHA1

          d740b918aa0dfa5baa9fa0c0e074b7cf88d03582

          SHA256

          b8da03f8002a27c7307d22be491cb662478e095e13cb446e030f3ff14403415c

          SHA512

          602e854569bf8865ebd574df51bcb9f0c8afe9144029730cb71b2a3d7c08d5a0a571039d13b6995a7f2a74fadb7ba72242c03cfab529b7caffe9ccf0fb9c6c67

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          7b11a3946e6497127062aeced2f2b7d4

          SHA1

          3a4cc282f9b6ad95a29b7cbf119670dc9fb897c8

          SHA256

          866769069f9eee0a685ff87f171011a10e3fdfbbd718de4e256ce5e15e0dba93

          SHA512

          83f8d533aaffee4b20770b5ccd83f24116d47f303b19dc17f9c63e19ee5b180d9314312560b5ebfc9ca13f55ec30d99b37aa758d414d61fc2f2d373430a4425b

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          e2502fb99ea5699ddb97a4cdfee51195

          SHA1

          ba27b9ceefddd2f9e5db0642f943a1866094ddc7

          SHA256

          1a8e0fdd71c19e68fc315758ed31881ce17d4eb3855c2dc3a505b089127cba86

          SHA512

          2dc2a5b2c300a1e9adf68f913bb89e40337ba6b27b981352f7d37a6bf695017540fdc7dfdd1c56af34b7c26bb25552591b2882c4d77708c51497aa8a31fd9cb5

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          7df817e14ea96010efa4293596852f94

          SHA1

          8986586abe1d10045dcfd874e906d2a9a0cea97e

          SHA256

          f7fab206d2b0e7160e9669c1a2ba32c0ec34f4ee605caefbe5580844e0c478c1

          SHA512

          180de4349694c08313e52b454c0007992c25fe370ddc4af618670fc6fbb5f9b28c3236b6b16d7d974a5e367c44233fec73cb49ccd69abd86817aed088ac91926

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          e5178413bdce635954f6f62d2aca4623

          SHA1

          92899f780a0ca1510a5468ee1536bd354c63a309

          SHA256

          6727ce08c92db82b227cd2a489f3de79ce1a8a54dcdb53ae265270678d0a8ea3

          SHA512

          167a2bb158c7178473670930c1d318e8296c07c248ec11b05b5091a7ccfac1a3f9602c61bb3e9e034669056aa101246fed25f4d1bc6457ec043b83020d7aae03

        • C:\Users\Admin\AppData\Local\Temp\Cab3102.tmp

          Filesize

          65KB

          MD5

          ac05d27423a85adc1622c714f2cb6184

          SHA1

          b0fe2b1abddb97837ea0195be70ab2ff14d43198

          SHA256

          c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

          SHA512

          6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

        • C:\Users\Admin\AppData\Local\Temp\Cab31DF.tmp

          Filesize

          70KB

          MD5

          49aebf8cbd62d92ac215b2923fb1b9f5

          SHA1

          1723be06719828dda65ad804298d0431f6aff976

          SHA256

          b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

          SHA512

          bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

        • C:\Users\Admin\AppData\Local\Temp\Tar31E4.tmp

          Filesize

          181KB

          MD5

          4ea6026cf93ec6338144661bf1202cd1

          SHA1

          a1dec9044f750ad887935a01430bf49322fbdcb7

          SHA256

          8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

          SHA512

          6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b