Overview

overview

1

Static

static

1

documentsh...x.html

windows7-x64

1

documentsh...x.html

windows10-2004-x64

1

documentsh...x.html

windows7-x64

1

documentsh...x.html

windows10-2004-x64

1

documentsh...r.html

windows7-x64

1

documentsh...r.html

windows10-2004-x64

1

documentsh...x.html

windows7-x64

1

documentsh...x.html

windows10-2004-x64

1

documentsh...x.html

windows7-x64

1

documentsh...x.html

windows10-2004-x64

1

documentsh...x.html

windows7-x64

1

documentsh...x.html

windows10-2004-x64

1

documentsh...x.html

windows7-x64

1

documentsh...x.html

windows10-2004-x64

1

Analysis

  • max time kernel
    118s
  • max time network
    135s
  • platform
    windows7_x64
  • resource
    win7-20240611-en
  • resource tags

    arch:x64arch:x86image:win7-20240611-enlocale:en-usos:windows7-x64system
  • submitted
    16-06-2024 13:14

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    documentsharepdffile/yahoo/index.html

  • Size

    9KB

  • MD5

    bfa3cf096cc3ee0c714235a57c4a3ac2

  • SHA1

    a2292db7979d5475e6f179eadc9bdcba5cea388d

  • SHA256

    5d81e581d102480f8c959d582c1cb4efb194fe43a7f2cc932318eceba2a40ad8

  • SHA512

    fe3d657e83825ecdab71e5f12041d97f2a5d37f0d5beee6aee37cf95b3ff044fc6ad03940e31763aa87158154faa6f4690ac86944358920887c6093eb2738816

  • SSDEEP

    192:HfzLHi82lyac7OGVF2dcem5mIBIZ0602o2KrxA62FR2toGfoBZ:/zTlwDmvofotnri

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\documentsharepdffile\yahoo\index.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2784
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2784 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2832

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    39a8c8de2c5035347d800037ee213bdc

    SHA1

    e8f20d9e080696f32f5ae692b2f00463dd103506

    SHA256

    084b40e4b7bfc7d15d76dc4383019f2480367a78a31513fe257864c715b75211

    SHA512

    606263f8e399ba36557d5de11ab1007bc43e1f0d8c01158ebdfd255a5ad2df577a68a25752be5ea432186e8a026b8a4aec08b7b4f734f1adc553ce49a2eec88e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    584edc90d0b95936e8bc9724d3365fcd

    SHA1

    89fa37340835ff965143d74c96c52969ccfd1f6d

    SHA256

    8068d05c3cf0f646198fefa22bf98b23ae7dc3497901eb016748aac1c6606862

    SHA512

    70f66ddf3d44108eb8255e8033c093a17244a8b6970c52024797b6c630613c9c8d35b2e3aa2fda63cb079bc63f342429ca56627279ec5538e833e44d5ef5e6fd

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    856b95bff41d93203fb788e1179ca5ad

    SHA1

    6f0913a2f767820e80c07ac35fa13975452636d5

    SHA256

    9174a4244cbd000dcd9d5dde249db00f9fae553203ab43d1dd4965bfb765acf8

    SHA512

    0f5520649ab4a8040a810dadc4010cba1e7db246d328010651e5411d47751fc15d156ca3250fbdfd4484acee31057ef18587d41bf3c75a3a573de385fe43d640

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    b3f3cca408ecc2cddda9699751384944

    SHA1

    715aaa0c9c4fe0321b8bebebd6e1c480af0163ee

    SHA256

    9a6bda6bb3d5bfef3006b736b2c10499c384466c9db3ce2a68b5daaece9eb7fb

    SHA512

    f14e17f968bbdd9a93141de453aaccd050556af3cb46fdc8aae94437f54dd963fc2002fbad0652051c7fdc284e22dfacd37bda4070fec70f49310ec24f92e6c1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    4fba4871a3438d7d480fb82dcc2222d1

    SHA1

    7161f0b7bdb808e627b29d06df9b4eb3029446b0

    SHA256

    36ce0605b7f253dc89a3f0121e8a607a42806ddb38364f455b2ee713580aaf0f

    SHA512

    eb4220b9371b75166511668ed499ec075ff6228878e8b71a2ae3a2dde86567a3c632e6535df09ad1b4435ed364177d92432ec592793c9c2a2d182d6125e6ac67

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    8d99557f6235326d7dd8aab8bcedc049

    SHA1

    95030f11de424e72c641ba1947d8a6de7c0046a8

    SHA256

    38626fa005373e38bf10599e6c351159f5582887e5fd4da480e135b2cb834310

    SHA512

    46acdb83e36e019d4e23fa7c8f340366440f71f6566ff6043ac3bcc59644c7f22563368829a0c5cc4f81f8a17d9dc80e86e314f9e62d0737499b90a3ffb36fa9

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    4d66316a82d25871c74ef56560afd7cd

    SHA1

    0811992dfeb47acead079c0af1cfe55e124d5b1d

    SHA256

    246f20a83d89cc491161b6fed089ef1ba99df244474766de63d259271e7ca6f2

    SHA512

    6f88cab4540a198252ae5763c1b217ef663b7859d0ae504385bfa302335b4eaf5a5ca2e7bbedbde671669a4f76c04f0b7e1597547e06e62bf58df46f6a9519bd

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    546c6c61b699c5f2277dc3aa76b1a7f2

    SHA1

    23683e70347bab0c5ca3578548b7d7edea4881c2

    SHA256

    20c99f5ad5c6bb3b3bfca057808ffc97f718a6206ba1247545f0c7113a6a39ea

    SHA512

    7d742bb4fce0637a76665bb71b0dd22c96e8c859bfa390e98399497398ae5dedf6f0e9c684077a6eb34ace1fa2df6e13dfce661f13c275bd7e1005ef24b5fb88

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    099289dbce8f2096c5d81a7c03fadeef

    SHA1

    e48efa6857e361731e3770dc9fd5a79394af8480

    SHA256

    b85f1fdd072784102eaac34af446d0ec6102872b9746c6daeb0e00885d6f4bfd

    SHA512

    6770ccfaf053da39bbc70b3d05a20511e893eda257b752cd27aa8a2725f972053bff84f9bfc85a2e39a0b5fdcebb047f4d1acefd13c68eb9408ace074e324089

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    967093cbd9c0088f51037a51df10663d

    SHA1

    0d5fc578607cf73d5e7426f12546dfad883c0fba

    SHA256

    97a727adeb6f4ac22f80e1424fadeda2fde7669c0d8bd7eff2cadaffc171d64d

    SHA512

    5055dfceccef42762cb0a93405e56fee08e3e2dca48d3181621268508c1340c5e9f646bf34291d50d5f08ebb88ca65805912ee6e7410338b812e06a8b3a5cbe8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    caa888bb205eb7788d4ebe3b6f8e71e4

    SHA1

    358b1a9c4d74bf9a87fd4510fc7d84bc7b93035b

    SHA256

    a9fc2784f56c5e92d02a24a1f78dcdf325c2aa4a70197f363478c8e17585d068

    SHA512

    874a0639488e53e8201c883b2129d36c1f69e22df989550b48c4a157beb64b7fb63cdd912b06e3db7e604a0d5114bd1a230e45066d2b57c34fcc9aae8539cfb6

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    e14cdfa397c867de5beb9baaef8856a9

    SHA1

    dedbc967e9516ed0839b7c0975c6bfad025265e4

    SHA256

    45d305796eed868f7c71ee48396799fe3d79c107f2211725b75030977a6ca4b0

    SHA512

    c13fc66aba4ea0f11fb7bc481d3a5608679bdaba76aeee7a740e0649d1f91dcb88fe29ce349e7d56b939b612bfe8501135908a96a73eb8c65f3fcded5b161a8a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    8d5cf5ed6fe7a036c806387b1e8a8946

    SHA1

    64ceabb1f83a68907dd888b926d0447ea951fd4e

    SHA256

    1402e2f1d47f40d13cf432ded14a2239cf093f59500ad5365d8c63eb3c0e33a2

    SHA512

    a41fb4407cfa1e59b7a1214667497c9b15004fdfd3e06d475458141207b23fd5c8d6b174a70f896aeba70685ce6321da0be2a7710eedd85510359f3665bf0baf

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    c59e9f51b3a0170e5d87527512b23c6d

    SHA1

    6a10f407ab22dbfeae2afe20aaa0dab49568acbf

    SHA256

    bc69c33c99fb028ec07306ef5fb431e45e3c9ae802d58e11275e6e6dc548e325

    SHA512

    c686b94ff2036f10901033bc5b3ff509370232109fbc413f690bfffa266a2ea1c21f0b872b9fdb16af73aac3cf2cf28b6b4870280b9a5f6ed3db2a0872b547f9

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    84fb69a2b80a659a1fd93c132a107d03

    SHA1

    827def4d5ca51e6c8f8b6141756ad016d8896674

    SHA256

    a990515afc53771b593c3207931e529879de60b777e0d18edec6ce1b6b898af5

    SHA512

    d1c6d0524984776b0ca37dde3855f557a03852719a0a5f0262c4addb3262b3f557e7b184ce69954c15a0e5f3abc2a8ea122a95a8b2f0d4478dd2a13ae04f0ff0

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    7d17a4b1a0c5adfd46106c5626a05ac1

    SHA1

    7180c38211b913689726bfad8dc13a570366a4a9

    SHA256

    9aac03d950434378a033f4b505f595af7300146867be724823654ed83eb7c1b4

    SHA512

    adbabe3ea0c4fc657082944126fe53c187cd6e2e8fbc66d996ab347bda49ed578a869dcf7780092c294240e67af6085a9a9a5111c165d0758d2721a03163e991

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    ee6d7f5ae54243856549ddbc5de1747a

    SHA1

    d22de1df6af0dc40cdf22bdfcca0c89695418c10

    SHA256

    db32e7a2ae54c48858b70be7cd3ea88d3e5682abc5b33d875b5c01d6b2196d3a

    SHA512

    60ca3af6763e7d86671a67f1e793ee5003cde3c9df319e295d7a5fbb42499dad0faa416cc080ea1476dfe29a42685896d1ed6217332f61444d09496723ca511b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    b9904276a0ccd37eaa52381bd5cc6ced

    SHA1

    e16b0152f6925fef8b18dc14c9e7154e05410898

    SHA256

    4a4351703b9ca4610b49af75a8f41e66c0d5e48b4ba917e1bcf3d3019bf15172

    SHA512

    f6ea006dbc5d24e88d1c07fb76912b191d343ca2fa0758574dae207239b55ec41f22d7dacecc2328cbab079236a31cdc1cac5e0485e8aad4a47a9634e149fed6

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab6EDA.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar6FBC.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit