Analysis

  • max time kernel
    137s
  • max time network
    134s
  • platform
    windows7_x64
  • resource
    win7-20240611-en
  • resource tags

    arch:x64arch:x86image:win7-20240611-enlocale:en-usos:windows7-x64system
  • submitted
    13-06-2024 18:18

General

  • Target

    .html

  • Size

    14KB

  • MD5

    dc32246898c9b1c6cf000d0699d91656

  • SHA1

    17ee4135b40e5748bc9e8dd5808d9678084ee01c

  • SHA256

    a29954a0eebaaaae33399a5327e4fbcd1b2b0ebb8a1cbb6f2600981af1c3dc81

  • SHA512

    de0651413c21c25792f74c0279722fada8f89ef70c78c69744d3d35e8e40c2eeee24095239bd40d7815b38c5f279c897d7c8013bb325146f96b0ad824a505ae6

  • SSDEEP

    384:tEGRNprwiD5F1yqRZdldjiQi6K84RZdldjiQi6K8EYGPA06y:OGRNprwiD5KWbeGKrbeGKHYGPA0R

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2968
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2968 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2768

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    d2439e3bff0cb91cf6fbceb8e36eab26

    SHA1

    dfd79bc4f97b37f534087f7011fbdaf083ebe74f

    SHA256

    60aff17697fa3c44f92d32851ea3dadd273400df6dc7a053bf107dd1d087bebe

    SHA512

    78db36634ac1a8d2ce1a3cb6961c3d84de890c340cf66393c196038c3ee59a9b010d5061fadb54ec2b6df5e694d9716495c6b242274036cb1c2c57726388dc65

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    af9608a37042a9b79f906b59aa72459e

    SHA1

    c59d98fdc18b29d5ee1bcecc43b20acfc0460345

    SHA256

    91e2ad0c28931ca44768422d60c588a403025153c495149eb78a9d0b2f041d9c

    SHA512

    37f0fedd0a6577d5ec5d301aa834ddb207f7fb760a772c409e36b4d0a9eb24dbb1bae072ab4cace604d83b489cadc7f49628d5a015b382781b4b70fbaa1e600a

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    96c96933694ba35bc566408500034557

    SHA1

    776b59d3316f901e6356991df809e4a9979e101a

    SHA256

    efb30b6882b361fca1f0dcb1a1b9763063a30a1ee542fa183d570bf24ee79ca5

    SHA512

    80eeef233f77a6669900b51f7782d0fe4b32adab85933497c7117b8ea98fe1bd81a6c90ab981e69ef5bc82d2a8f87915eaca1731b01421ac3f7346098f322ad8

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    b567c27b3676440aa0fb99baa1153c4c

    SHA1

    0e1bfad3aae59fe770f4cd722fd497302417827a

    SHA256

    243c368902c0323590f722b4ec4ed7da586b898734fd8a05e851440f32e2c716

    SHA512

    9ccb77f1453c23fe4b957f4565de2e07974215327197dde9baab07a6a95cdb76c1922140b024d03fbcbcbbc9c0cceed606c2009fdc6dbb901d37c62f77aeba31

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    41dc7bb75f10bdaf4a67c8d2dc12a6d5

    SHA1

    bbb6ef5d5550b45c87a5081bcfb8d9d036663c02

    SHA256

    6ef06daf49d2230fe3a2c26a55b30afb3fdd62f1accff16e2fcc4013a9984abb

    SHA512

    220cb90583693bcc979b94aaa664d491d350c01c292ee8d85256bad83da0b154e96d326b5b0d68e571a817a7bc43b39e4c27daf2c83a27fda5f33eb0f071501e

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    0d0c7bb3f512af19c3d18791b879afde

    SHA1

    61e31f4080c21668a59746156e2a1c419e061f96

    SHA256

    25098eea493c996a8a8b070d7fd2c062c71bbe10e45eff06ae03a68a8f70301e

    SHA512

    8835babe2c6721663571f3e4b41a3a422874fd2fe498ea6751c3f64d689f38b976db305d5f76b36b4aa6a22a3859d3c02d64936eaa47b2ba2f746e69ce28230a

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    4b4525c74e7c546ebf20267d1271cc84

    SHA1

    b888ea5c087c1f8a898980892e34de18e63136ae

    SHA256

    a6ba01ea8d55b05e32f4b31dd719afe2b9771edfed73daca9d3d9445200ad581

    SHA512

    f826c79e039c80cd11800ab0928b08cf3a39ccb6e3213d155174e86d4c9942c5a9c7200eb0f4a15e2089da2e017e4d2bf67e027c2a712327bb41a357d41d1415

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    0f246dfb34f6d80058572dfad1de92d0

    SHA1

    50f53d05609856990e940f0ad82522a7bc0ab6d7

    SHA256

    278d601b360f1b050f19468851bc8e77a4d91ca8d82886acd0d3d9606b311684

    SHA512

    df08b8eb3dae6331b2e04f5b5f90e176031c63af180377f5a541b5c0f7efde8e38a019f46c293cc27a1243e960727c110bfb8423911f83d09f8a35c47524b78a

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    dc3bcf67e2c831d118fc28d3cb1115f2

    SHA1

    a78cc0caddaac80e86a9ebc899600f40babab763

    SHA256

    037fd246787a746e2b2c1da2f2414f7f8a261fb4745602f93589f7436bb870e8

    SHA512

    62739dc0357ce9856b43e24329190539c49f706aba5c8bed80d0516b80cd13654dbe86bd3e8ad6fb50a453f5c565b309e736c76a3fc8898092a864b27e61e6aa

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    b21dc57b08144809c7b521b32b480eed

    SHA1

    afea2d98e8310024d0c070cce1bbce9200e74cb3

    SHA256

    1c9061613e938e2e8ca36f1b5f7c31849bbc6625a1cad47625fe28e4535af8a6

    SHA512

    9f9f729c3c70e220ee8a4829d4e572cd20eb2037609a6f1d489166d9545a33281376fe5a513c13590794fd2d4be77bca80f0a0823d6abd2d737af9398df0e7d4

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    20aa2140aaefba0eab23b79e80069377

    SHA1

    aabc9cf1c084266cefd25a8b6385fea53a8d0c6d

    SHA256

    240842efb885c6372ad1b18501b2da9cd9c35c8fabf226fcd0695ea58c2ebc05

    SHA512

    de19c560949f3db124ca49d2693047de8d7dd9518143a180fbf07fdfc9e9f1701c1c1ae34ab427be07d94404214b360cd95958a834f5fe22380f5fcf1b0c6d9e

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    de42a2a4213b0d24666aa15fd3cc982b

    SHA1

    0c2cae121d7ee0d49efbb33969a1d0f7e2fa75ce

    SHA256

    79cb0a0e0c6d3c0cad6c9dc67f09cdf596cdf3458425788cf7421d66b6bf6197

    SHA512

    470ad409d4f12097e1a8fcc1cf05f4db3db9e9ad421ad77df7fd8d989ea871b7c3bb74ae03655f326c13b4f3feca236209ef610f66369bc99fd2c2c9d747012e

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    80f479273ed570e97b68a1c5c97bb2f3

    SHA1

    b65ca56f9d1a80a2611a7e684bab2619640fafb6

    SHA256

    735d7af35d643f093d220fdbd459c0143dc6a00107262f482796ffc0383828a8

    SHA512

    974252b4af5168fc85c0d7d05c29653df6dd6de7342e92d3843f75971ed2a5c11010799f1e83687831b18de7cbb915551f236f82cbeed594eb1a7c30256a68ae

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    ee95767759c1d3bd8670211e85db79b9

    SHA1

    06904a0ade1e2da70e3b109d5d4ee6f6f13ae947

    SHA256

    032cc03732f087bd6b0d416554dd1a6bfa8e5e3c5b359b2506698abebcc75e77

    SHA512

    381ba63daf55ce55c352039ba363ab33a68b0a53a7689ff506cffeaa7f21c74297160220f0737a6c6c986e3627d6960a1f16e2a3f2d6614a530e7e6faec7e7a7

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    94a16fa43ea5c8bdcdcb00dfebc4c20f

    SHA1

    6ca521fb5f88cf17958a01cae7d8cbc6cfa8d459

    SHA256

    af07c1bd3ca7eb01063b2134e8e85dac9a2f11240ec56eb911c75d53f01b5156

    SHA512

    6e44653ca41800b715cc04288b5fa532463b4a6c82619b2e6b840568e196106a4ac040788357d80aee535f9bb06e843b32060c30a7ace04b424f077a4d24466d

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    6dc437ab7843dec9e5e79058861bfce5

    SHA1

    ecbf4750823fa00d04d0b26609260c120e0edc9f

    SHA256

    7d3b5c21c92afa63438eba99f210441573265a677fab8f8c269432036a7b5b77

    SHA512

    7b3925d67e7b5beeeef4f828e068af0afa95f7552fb9f8fb1012e6a2d887d0593692347817d685395d50cbb4b9aa16e153b37181eec424fe372e80499645406e

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    1a0c9188b444dd8844dc1d541dc84ab3

    SHA1

    a883bbb403aeba46898a44f256c8ae41a7fbad3d

    SHA256

    68bde24620af5d056c6132d326449170a1b743d327e6025e7c7d3505da55b6e1

    SHA512

    bf965381559fd812eba9a55a5a6c14d0e218c25c53f44badb3beb4a3587435b796b70da29bc17ae6a97046edc1c853cfbce4a9dd8efff4024f7418712845b3c1

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    d2d5daae0e3693cf142212d29d63acb2

    SHA1

    d50cb8314329da7033eb1e425c9069dd33b5d735

    SHA256

    cbb32b600cf426ba67b668f70add9c0e91df4d19cb92372cf5694fb96696fb51

    SHA512

    c5488b772ab677f5985a917a1ce68d99b847bf43945829fa10024f88f73826757569cd4eb77e0ceaeeb7916b46a27103ed05ccaa0146efd37dfcc6e0038c06bc

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    92de45db0e2fa13dd13ba1b99e4185a1

    SHA1

    a68769398d2f46fbcf183e334c5bab437784199c

    SHA256

    d217bb0f7cb5f73fe954f1f8228b7268c117d534cd78f710c4d20c8f5cddedd9

    SHA512

    e685bb8d43b08d7da80361d7891f7c13c283063585ea7aec6a2c01dde1f5c56b07ece55b48b46f0614ec3a4a3929980376a879163100efdce150aa9c491d5725

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    789ea39e1a9dc54daa692ae66203e50c

    SHA1

    9e8a552f5a754d2e590ec0fd3b02aeb1ca0d2b65

    SHA256

    8a4ea835590715841cd071029a003d1c5b4dbd01197d62849ec9bd8cc0b9d8c8

    SHA512

    f01dbc1881d6400c4305e71f121cee828d8d4d9b1d6c645d769111abeca39cbeca31a3bd67a27d746584746e7e99d3a6f675f59d6e0d645687130fdc358c9f8f

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    47543f00f2715515296d65ba1ccee3a7

    SHA1

    c00a07ed67b344fb3ea85f1c23f99c2b89b3e99b

    SHA256

    b4e51b9015029a2e66a474ea9b862a100de5c7b5f1ffcf50c7770081ab193294

    SHA512

    1f57fef39f26fe819415c721c295faa2b528a768d5739be12bd04af03ff15cb913ede93c8f47d8f67f5f85d1bce30b5b6f376c96839167ff601809b318a474d2

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    616fca1e434d196387b38648fcfe2aed

    SHA1

    66bff5b2c1bb79a6db301fae55209dae1b84744b

    SHA256

    2bfa84af19545cb663126e808fc12935121b46c32c7370d77df60b4ae2e44caa

    SHA512

    d334b3dc446a5dfc2cf40c2f26ff1dd9687f90c53724a7e65485b90aab0c88962e524dbe82fc4555d10feba2cb91082c8b78d9f8d9314c5e20129775c49985aa

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    d4f67c38ace53b5eac3d2a1849f4f6bb

    SHA1

    dd967b27c585c0ab3f2074ffe60727189b5bc231

    SHA256

    f99e415d8f39969897f35a29936e1b6eb4ea151993d5159bc759ac21ad42089e

    SHA512

    b1fe548154fa648a8cc5c0437324b15a4c5ac1bd078717a6b247c45ffaf14eee4099c2e515b93978f6ea397628905aa0a09818ba05c9e67c6ec18551db56ffe4

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    8729f4ad1a8c41e670e1037145dcc2f7

    SHA1

    3850990d800d9e66f4bfe78db8839ba4f6f2d359

    SHA256

    0a15d1c5c954731051b878d76435d14d8d9366068fc929b6ee4b27f4cacf8b0c

    SHA512

    14e818fca4bdbc899d08fb4d04185371100a69d86254b58103a11b741f697fced650510218ddfa10ccaa1aea9d135e453684787d224b1656b4e4973e16a8ac0c

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    e0f1916a503d19f06fc78db56165d5a8

    SHA1

    2b40df95aab8a6738083984c3fa295f58e0e7dc2

    SHA256

    21cff4ccd16a125cf9d1835a9f26809f51cd0754d01cca104642476cdaae64d2

    SHA512

    317181966a4dfaec8756a1d500db5e7cc89874296dabe8b9de7a11a0a4ab9398ec923aecf1795e5191205bad301d369a65f6e1ae5426e733d86d5b4050eaa061

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    df18f259bf46a53e86905b5a88baf416

    SHA1

    fae5c139d374d1699a49ff397634caf87d1aff17

    SHA256

    4a308fde2c44b16f59951bfba997009946a3222e8fdae02238781063a8020d13

    SHA512

    5c3cfedb1d3d01657be7dd5091977b0ab1a9719f687d4f449a79458b62274c05006b3072f0011f23b647998919fc7495e92d82a2a6507260de47fcf2f859a5c0

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    74d9cf41164f5f2d5e6cdc1426ad775e

    SHA1

    9467589f6930ff1e141a563d06a3d0d0cde0bf1d

    SHA256

    0407c645e601ba949790e2223fca1f3cda2747114e45f97a22088900456c3cb8

    SHA512

    145ce8b261cf5b07b03653df8e2480d213f5b54f2691184121b8531d842fc9afae5e7e7498d0c83461fbbd540a3f6c7417980d3d60f847fcf530cb851ddcfaf1

  • C:\Users\Admin\AppData\Local\Temp\Cab6FB6.tmp

    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

  • C:\Users\Admin\AppData\Local\Temp\Tar6FDA.tmp

    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b