Overview

overview

10

Static

static

3

963469fc2a...18.exe

windows7-x64

10

963469fc2a...18.exe

windows10-2004-x64

7

$1/$OUTDIR...er.exe

windows7-x64

7

$1/$OUTDIR...er.exe

windows10-2004-x64

7

$PLUGINSDI...ns.dll

windows7-x64

3

$PLUGINSDI...ns.dll

windows10-2004-x64

3

$PLUGINSDI...em.dll

windows7-x64

3

$PLUGINSDI...em.dll

windows10-2004-x64

3

2611067143.html

windows7-x64

1

2611067143.html

windows10-2004-x64

1

contact-do...g.html

windows7-x64

1

contact-do...g.html

windows10-2004-x64

1

home.js

windows7-x64

3

home.js

windows10-2004-x64

3

home1099482986.html

windows7-x64

1

home1099482986.html

windows10-2004-x64

1

home1259317828.html

windows7-x64

1

home1259317828.html

windows10-2004-x64

1

index1449123078.html

windows7-x64

1

index1449123078.html

windows10-2004-x64

1

Analysis

  • max time kernel
    134s
  • max time network
    129s
  • platform
    windows7_x64
  • resource
    win7-20231129-en
  • resource tags

    arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
  • submitted
    04/06/2024, 20:48

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    2611067143.html

  • Size

    4KB

  • MD5

    250d3404348dcab3d26c3f5d945b2817

  • SHA1

    abe992ff2636ae70367a893cb289ef741b9850fb

  • SHA256

    4faba6277b74fc4f8c3fb5810621d0efc7262435b0b737cb685c8a0db17d32ae

  • SHA512

    2e17e8f2f1fedb4f7583275d15bdb777a6e0b7900ef3f5d665b2e10696f021a3df9df1a2ad6df99c8c35c0639ba6604657cc07ff6977dfe53639694f88579795

  • SSDEEP

    96:UQLHgGzwHhGoPxnxMLHkNLMcbtDALLPTBD:UQTgyXoZnxMTkdbqLLPVD

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 43 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\2611067143.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2868
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2868 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2592

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\3C428B1A3E5F57D887EC4B864FAC5DCC
    Filesize

    914B

    MD5

    e4a68ac854ac5242460afd72481b2a44

    SHA1

    df3c24f9bfd666761b268073fe06d1cc8d4f82a4

    SHA256

    cb3ccbb76031e5e0138f8dd39a23f9de47ffc35e43c1144cea27d46a5ab1cb5f

    SHA512

    5622207e1ba285f172756f6019af92ac808ed63286e24dfecc1e79873fb5d140f1ceb7133f2476e89a5f75f711f9813a9fbb8fd5287f64adfdcc53b864f9bdc5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\F0ACCF77CDCBFF39F6191887F6D2D357
    Filesize

    1KB

    MD5

    a266bb7dcc38a562631361bbf61dd11b

    SHA1

    3b1efd3a66ea28b16697394703a72ca340a05bd5

    SHA256

    df545bf919a2439c36983b54cdfc903dfa4f37d3996d8d84b4c31eec6f3c163e

    SHA512

    0da8ef4f8f6ed3d16d2bc8eb816b9e6e1345dfe2d91160196c47e6149a1d6aedaafadcefd66acdea7f72dcf0832770192ceac15b0c559c4ccc2c0e5581d5aefc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\3C428B1A3E5F57D887EC4B864FAC5DCC
    Filesize

    252B

    MD5

    a0c6244a7d6e451b9be8c10d3f354082

    SHA1

    fa3c4daa8da1c00b932c92f1f469404f392eea2a

    SHA256

    5bcbcc1d8325f9faf228fc90780f96a1b43eb5a1eee8a85e91a87357ca1b4822

    SHA512

    186807ca554abf54ef27e02e7bb0b62a9b68f027381a128a68c99b6f18493ebe640424aaee38d047a3134d3d41a8870fd05616a5e76af01ff0ebe2519b35fb3a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    cf80f6176faa7c03793f7a8b9992544a

    SHA1

    9c4e9152882a8c1600b389b467586af042e8b6b1

    SHA256

    d2e600b26d79efaf309c178221254c1826499d7139995541780e2b6e46e9afc9

    SHA512

    01d4450196dded6b7bff5c15ab04996af43ac2adfecb12ea0d0f6de02fc22b08951c78c7c3f0c44dc9d597cbd52848f0f4c5f0013a3932bafb5f7e29e53fb20b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    7c986512897c1fa052d60dbdd5217c2b

    SHA1

    42fcd3af0369b0c0b391ef4b4e1a72c65b33eca1

    SHA256

    ef99db40aae4b2858c51648b1802c3aae54b308b5a50e26470c371fa3f19150e

    SHA512

    2515f70a5b987ed1733615f50812c9ad7230a3e657373f2cbbec8e5ff1c8a68714822091e56270c27109580208734af5a68a6b9661678fa3b72435507116af9a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    187e21157a0ac57ef5e9a9e38dfdbae0

    SHA1

    6bdeaeaeb1da60e591047b064224202a7e9bbb82

    SHA256

    b786ff0d2db15950f148011260d78d159c793d7dcb71efe4a663865cccc28074

    SHA512

    0fd8ae6a4ec145930c251dbdb5d7992cb0d2225f3e77b86e6c1336d6a08d981314fa8e67fb0b7fc72dffb46407bbe6a1f3d1a1aad72da6ed014852c4b7bc1fc8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    1779f5d31144dcf7ae495b479c530c00

    SHA1

    a905d70f7bc51abba395dda39c2ec392d8f62b50

    SHA256

    9e72d3a227267c3ad6756d4033c1c8f9cdc5e0d2d291d55312d2997fff4c8e18

    SHA512

    25a15587f5ec879245969945fbe9307c27bc13097f78d58b0376b79abb36cd6526a72a049a68f075942f5b4cd8f1e682bebdd8e6c1679bb188b00b5f003b6484

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    8e47083962ef2baed01411362ec186e7

    SHA1

    bd592c58c8e08e8c4d7d3b2c1d00b08d6d2ce112

    SHA256

    243302c010a49d258231c80787c650a936988407f306fb5da75e40eb60d4e744

    SHA512

    0414d44b21299e5e36ae552a8511dcc02a222f64c42c38af1061e6b8e9b6b2df96f199ff58fb1bcca5d100020ca51889606370814d9c24a9421a543a83acec74

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    fa761e240e09caee654b41d823e6fe46

    SHA1

    e9ec90dafc835414afd3574859779b0cedaf5c04

    SHA256

    5cba25c66d594c092bb4be79a875de6b452e047f74879d4105bab197291a0340

    SHA512

    7e3564cf9a9e0fd456758da0fba3033eb4ce6f9352d21331cc1b1abe056721e29c86f71cb71a955826035f5a2c8324470937e3939fc8d442ed0b353d7f393ac1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    3967952e1435c4723c27106923e892d9

    SHA1

    cb06556305bf29fbc75e89f160a2b557ddac55e6

    SHA256

    ab693d650d87388c3ea8b8ba1b9638511ebb42b1bf76d98b903bd9f159b8a785

    SHA512

    f0497b763d02357ab4ea6cbfcc82c96ebcb72fc536df7e78061dc99fbc7aa6eea4d7255ed7b5f6d2c7a890492d62c99b0ec6b858c89e7c4dc0929e71dc719098

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    49194f816a08ea113f30e50b731493ca

    SHA1

    86c76c81c42ecb3e327808434baf5e54c8d1367d

    SHA256

    735f31bd0e5ae8c89750bd444b838ff7b6e601b77c15d345e0d7a08f87a68381

    SHA512

    c4af092e8882de6fce6dafec2bfdbb4ae7f3eb58b99f0727a3013855aa85c0bb80cc97f506bec20af23a087ffa312ec27949deac40766c9c4a9d334deda16d61

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    f59a9379d3b0623036eb9b720742a26c

    SHA1

    e0557c705cbd994776b9699b1cf13a7128cee864

    SHA256

    34c100725bf674fb34d5c610b9b3b203da60f2542fa1221dd9881931e0e5dce5

    SHA512

    d921a07cdc85caba4f7eb0c67501feaba2df8e76e1aa58fe2bc9d88190559dd908dd26cbe6b06fd3f744caac926bbd3b4b2350eef50ce841a305d75cbefa71fe

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    28acfda044450e005e3a8df7c55dc9e1

    SHA1

    2747122a834a7575067939b2a9ceef181706a6e9

    SHA256

    a7517ed9d4b55f1d0b76566a3e01d61606041e10a0c8fa1807ce126a66196d8a

    SHA512

    5bda22012f929071b796bf9fd88e13eeb424baae286087e78353fc1754126339e674076574549f492547c72aa1f5c640cd5dc61d4e1d3451618abd177871a17b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    5cdce0b7c24226559915ffe379e7878b

    SHA1

    315d46c97403aa3c043717fa2a4215b74a5537cb

    SHA256

    54d43b3f373f3a9dc8302f5a8647b26f5fe200ab2906544495707145c5e928e0

    SHA512

    8336bcb34a6ac240e39c0071507d3395de3ce6a15115f8d716d8daf872eb161cc35f8fcb1229a52a550e28f38e08fada316f540f13787625ce26a0551babd7c7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    533748ab8f095a41dc3a27d1b2dac35f

    SHA1

    c622d6410ca989da9864b9dfe8640ce8f3a57a28

    SHA256

    af804d1f1be588bca1efc202c590869e3510b97e5386d3e1a6bde193129b0a7e

    SHA512

    169e14686271757e79544bb4ad6d68649676fcc9494f16848136e443f8ff95dc08746a3300f494ba0bf9909f4abc2a5bb65564b0dce92270608c2eb89bab1a48

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    7d34e55adc38fe2c93c5339c108bed88

    SHA1

    9ab9928f82fec202e3fd42f60600269cf1e4af41

    SHA256

    a553209de769fff1fb4d35554831e64215dfb85cb874790759fed927ad2e630f

    SHA512

    147ccc06191b21f66a7f8f1c598ee443e3b640531b273d305841ccd4b7c56e11e3040ea10acc56c0664f2f89e4e2e96bb58a3ecdd44211fd61efbc00b7e26d64

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    637a6f9da87ed2ff5c4e4c3e110f0470

    SHA1

    b83bb007c12c2d216195db9edf408493be012027

    SHA256

    3a980c11012e970dce1f16656cea4cafb4c06e291915ac346dc1470b8a6ae5d1

    SHA512

    c1b21f59c5a1e72de98fa0622378d4409b035f58919eb77ba901a2bbe1988272e30037f349b96625b3abb6dabfa02aeeec637e2214277be3ba9a8ecd86bde16d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    0d14fc10d5302877ca49a5250e068176

    SHA1

    03043fed920634d05b684025f46a078688dfdfec

    SHA256

    768a158ab01479566f786f92bf2aecb645bb5873a2e3d6d62b47384c23bce3de

    SHA512

    41dc42007686f420129d9c139b4aa678fdea9a25fc346e61faf59afa3e726bb198d50802d05c091f2894f46daed2bc47a8389fecb1e4ccc627b6cd6a9fe5d21d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    b10c4a6f2d650c0f97cf1c95317816c4

    SHA1

    745056f73be1e5b2a5e772e75735cb49b4d96465

    SHA256

    b7d963e6efa15072b8c31970f294f52a09a16e9612c1c096756672a7784de34a

    SHA512

    d5893428c620792d8d37cae7ed2e3416d6da21880ce5da5872d450f5d150a74dd99ca10019a208688621730f6e31c851af66ec326563af7940f592a8e58574d8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    4da2fc4f7c7af7d0fcd6f2371b128a52

    SHA1

    d829768ace4b09020577aba06a12ec30e54640a3

    SHA256

    a2b3ff428fa2c42a84b8caa94d1bad45a606fed8a5a89e90f56b1632145c2d47

    SHA512

    e1d60304a21ed7e61c5b2c155342dbe466c57c039a8755d0242c52f668e5c33982b00fce0e513d68b49e3e5b392f8bc6ca4b59034423b11f4253e6592ee745ac

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    aa13e3cb2fc5afc797f9c3ac77631269

    SHA1

    d4087dfe921f20b392dce68717db8267d0f725a5

    SHA256

    c7597b8c80877d8886935e4003b430a9c97d32f9309db9e12b33b75a54c26377

    SHA512

    47cb94325d8f8b577004201ec9c546cf20b264dfeb1a3de1cf4d5e30b59c8d85876f50c89ffbf0e0aa5ceea7fbc1cb5b068f9801823b3c5aa2d442944c3c446e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F0ACCF77CDCBFF39F6191887F6D2D357
    Filesize

    242B

    MD5

    0d32aa6eb1c19c9d648fb3ca54ae0218

    SHA1

    89f048afc68be25cb3707eb0e3949d6708a1c649

    SHA256

    b1a7ab3b880bd2b5427a15559bd34292d597fcdd6e9938e0f677c727df5069f4

    SHA512

    ba461e0bdaa65b95c2d576fbf643d1b0d8d0edf0757a1f570ad54a8ca061f33c35ee85027ecca04559c47eb075dab1d847740237fee2c16638b97aa2d0a94c30

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\Internet Explorer\Services\search_{0633EE93-D776-472f-A0FF-E1416B8B2E3A}.ico
    Filesize

    4KB

    MD5

    da597791be3b6e732f0bc8b20e38ee62

    SHA1

    1125c45d285c360542027d7554a5c442288974de

    SHA256

    5b2c34b3c4e8dd898b664dba6c3786e2ff9869eff55d673aa48361f11325ed07

    SHA512

    d8dc8358727590a1ed74dc70356aedc0499552c2dc0cd4f7a01853dd85ceb3aead5fbdc7c75d7da36db6af2448ce5abdff64cebdca3533ecad953c061a9b338e

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar2FAE.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit