Overview

overview

1

Static

static

1

documentsh...x.html

windows7-x64

1

documentsh...x.html

windows10-2004-x64

1

documentsh...x.html

windows7-x64

1

documentsh...x.html

windows10-2004-x64

1

documentsh...r.html

windows7-x64

1

documentsh...r.html

windows10-2004-x64

1

documentsh...x.html

windows7-x64

1

documentsh...x.html

windows10-2004-x64

1

documentsh...x.html

windows7-x64

1

documentsh...x.html

windows10-2004-x64

1

documentsh...x.html

windows7-x64

1

documentsh...x.html

windows10-2004-x64

1

documentsh...x.html

windows7-x64

1

documentsh...x.html

windows10-2004-x64

1

Analysis

  • max time kernel
    134s
  • max time network
    133s
  • platform
    windows7_x64
  • resource
    win7-20240611-en
  • resource tags

    arch:x64arch:x86image:win7-20240611-enlocale:en-usos:windows7-x64system
  • submitted
    16-06-2024 13:14

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    documentsharepdffile/google/index.html

  • Size

    9KB

  • MD5

    c395396a109c9b01c7f6dafdca06370f

  • SHA1

    0aafc7fa8ce7521fbb8e13d09aafb8d2b8c1e536

  • SHA256

    f179528fe54ef8986edee108122f8deea53a3128679ac2c2a9ad0914ecbe44c5

  • SHA512

    94e5a0a331b344c572f87f954d3c8cfbd72108342dc42b5333f46915454117b2202b3f5195d536f176259d395f555998dda61d1a07e85bd87bfe69b58c1e67b7

  • SSDEEP

    96:HmjEjJTztvLE9gcrK6TpwE8CacnbMYlJM1aUiCsE5dv9vCnmDoYEAS2QjH+uEoBZ:HFztvQ9yPuQyIa0dVv8H2A5EoBZ

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\documentsharepdffile\google\index.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2344
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2344 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:1372

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    773c5653462dc7f8e70cd3f57f784f81

    SHA1

    1f368873a19215ef31891d5e1effca0f1c14d820

    SHA256

    3fdeb2b491e0e33a430d464f221c2667b6d57c3f1619d7eda43ebf751ca82690

    SHA512

    9ef8a0e7ebd9b8ee853037b8629fcff9b68974010ee0c4816ef5e4e45882f656f83e5add4b211fd85716bb2d114a89e59192094af8dbcb1d2ddba130205aa93c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    964f9a44add8c884103d8a1cdabc57b7

    SHA1

    67e05bc27ad5493cb9bd05da1ae2c60ee95d7e8f

    SHA256

    d7a8245f18386e97d56d69f35ab8d6d0a3e180c9839aefd7913c5f5d489d2d3d

    SHA512

    12e211ea34b8aa46550b582a4bd4426c5d86ccb91f85ec96cccf5041c8153a6b3eb55e12605e178545c66d1722cabf92a7c385a0e877e7592edfb474248e520d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    3c0cf118802bf1e082e9047366f84527

    SHA1

    aece75534e117c4702eb23c25eef14c35105a7c8

    SHA256

    56b1c29afb17c602af1463ada6449efdf28e4ccde0a16ea4fd37fadc94e092ab

    SHA512

    a0c438af6cb742d52693a9ae8efb79c92e372cf9d36c50f7447c131e9cc0acfb9146dedb2506744355bb63c119e22e44454dcaa8398706112929645817858a9e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    7b383c225681009d5a712ac4b8c5bbd7

    SHA1

    d5e3a06435ebac0b35ef32a76124ac82f38bde27

    SHA256

    eb0fa0e71f56dde415046dbcc9de12198c435b0ea8733239d097448cc1398fad

    SHA512

    da6ce1e867b6790dacd592b45a54b35a9f1fb171452c4ed5a88b795084bdfcd022bb1402d17ac9cc9fa6bf15d7e54c734eeb2aa25c5aa527194a9dc356325a4d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    82e2fbf9363e9706a824ccf20ce44049

    SHA1

    91086c282ed3b00bd30d4bdd8cf56cc8d5d2eed8

    SHA256

    d2ccf1f06200b67ad8e18b7041f01881c5253024f21308a52d4029c5079f0f12

    SHA512

    82d1cc41dd8c9f944cbceae9a58ca10e60e42d65ab24fc65153e37c4d2ec0c7e185c513afb2a9c79937710702e2ee9855096e51a7361ae1ea2c22bf734e55a5b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    7d7ed98c293ace333f213d7aa621e9c9

    SHA1

    279f7a7438234fe552b6c2d0c1b13b76af0b50e8

    SHA256

    995c571535ca957db576ee6066a9586c5bcc3fe69da0e155c993cd72e17a0414

    SHA512

    fd81b32487ad40a62dbb7472251aa091e698d69bc3ee3d7c125cf4cdfe0b57940da9e5c070d8e231621497fc2e6099fb9e7119fa3c4f88afa5b5a4412c4a67a1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    383f4bd65c0481e47ade42bda1a25818

    SHA1

    129b35331f60e05a22f9cb9a311b39ab8304cc2e

    SHA256

    fa837897a7ab6d278e97ae1de2289902484095ffecfd61b03cc65ca7bed21559

    SHA512

    eb3f0687114fece05a829adbc9f107a20a9c0624f07f89ab3964a46712bc3d15072c0ee4109946882b767801098627caa1d0e2507607ea2045fa6d0cfee01757

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    481481ee6ab9da3f73551ea48dc8a12b

    SHA1

    505c87bb0f8f28f07eff6442834eab7e715b31d4

    SHA256

    2cc74635af66270326a181f4a962340bad5e33080f9e42e45aa67900f47f4b9a

    SHA512

    f5248f29ea91d86498ed0ae335fc68f00433ce50f24d0ca6843d49bd3328f78fdbf9bd327a93697b94c7161869f473bc8e2f1d689b1b523db58a6213953a223c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    a00430cc341517630af3f9c0c64c5ab4

    SHA1

    260e11bed4686c44bdf2f90fc81a6a6cb2440f7b

    SHA256

    49c702d2dbac326bf0c410c767528ff2b9784194c83c2e4e1594ab841c81e418

    SHA512

    f4679f4e0cec31496c0808dd17fc50412b4e719760b178b687f628b7c08a5db1cb67945e0f5109fddc0e8d8c808ff232519f666e5cf2fbecb834de0168f3fff0

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    50c8aadcdde80147418ca7460079fc91

    SHA1

    049799495b1d43dc75a51357d0c0dd103ac6960d

    SHA256

    5531cdabbb3ba59a0c7d2ac367c41b016e5fd9b89ec9539dc8dc96eb6c6996be

    SHA512

    d54cd55eff303fcaa57f485476e2de48f332131d099a1682a83cfdb46bb08b0bbecfb3db9b237441cdcbeb7692469ee0965cced19149e027298c1df4bd624d47

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    9be6406f1a470079f5e822d358504af7

    SHA1

    8dbb0e0dc494a651336e073eb638d6e1a8587f37

    SHA256

    01e0a1d35a8dd015a5675c9e46afea6acdcb98661bb09adaf8fc4d044a164d32

    SHA512

    f6b6b84374f6b733b205ecdee343abfe367a9cda94687af42e2945d38b06286f5a52167a229c31cac7f6f714ccfcb7836f0a6d1105952772e83d07ba02d8e566

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    c80a031d2d3f7a044f9c73dc59379909

    SHA1

    704a6556718f51023404ab36fd1149aedf243c3c

    SHA256

    9f5f08017492ddb151cceb524fdb247566b28ebc6bc41fc3cc194894bbeee441

    SHA512

    46bfc8d6ffe603c657d17efaaa315fef7d798597fba9b398761bffdfe3fd1bece217e1968622e986c4613d8f925c7a8821b52a674c1f6f7920ab7c4711272b50

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    38c4f345079ba112c031d5d1e679c719

    SHA1

    bb21bebacc66a3d19f61d2b46595ce43d6bef348

    SHA256

    1204cf8c63a6075da7093a99a1a7a7886e8eda6f6e588333250456565b53ad80

    SHA512

    288f3c8f5a88ecd5ead1ac0ed0eab83a8e6cc266ada339f98a29a7882a60640186ef9c687541f591deaacf1ff15636a1c138d74808e112acc4447af52472810c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    0efdbbd733c4fc9e3f1de68d1d2af5f1

    SHA1

    80a359d06bbfbe7751a99e2bb9a0d77feb2a084c

    SHA256

    0b9ff9b2ae1aea41d533bafcd85348e24f2150269814b6d9ef753e6ce7138485

    SHA512

    5fd10f70b424f4969302d4a5072a591fb251247c6427034423ac403821f31578d112590c0f7f3c5416bc597a5a45c5abd41d763c09e6afee7459a5983de1d31c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    553f1202e0179bd936a8d6c0f06cebb9

    SHA1

    6d8c61b7a29db9e25448b680a77d26db96026cc7

    SHA256

    d94a2f5e038b01298d82f079129fcf3de6d5213ae8e86834d20559d73459df2f

    SHA512

    14143cbc0f5b1deb4a7d8e03bf2cac17ef2ae733a8e255903b86c09a35127f098d2c3a9309e401280b51f14a504983745513d75194ab4b16930ebfc0ef791c92

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    475f71e90d16d52007f661043b383b25

    SHA1

    144e36c05906ea750a6e08b7ba8b198a46666cec

    SHA256

    1e7c3277b45b926a2f6b6bc1cb6ec87cd4c8281363fc45297bbbec9af7f619f2

    SHA512

    982d0477693c735205d35b6655c38d1ca47753190440fe2162ecc6a671aa105651ec0e6eb1723cef5225dbfcd4b2f1941f96c901ac131d034c4f1541f391fb98

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    bdbf9ac9aa8804604eda3fcca68dc7c1

    SHA1

    60d7abfd8e8e6e9f927dc65d67feb8f05466cab9

    SHA256

    89522812466963026576dcdd91404be40734505779cf372567702cecebe77e1f

    SHA512

    220f54fa6d81b233f53ecd35d7d672cf0199000c32ca8984ea8abd4f58e055b2d86ba2ab5a929b1a2771dd3b1dfc6ca4628754e5523a66855c7b5cb7adffbd3b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    8cbbda84e87a17593a4dc4c9e13b47e7

    SHA1

    0d6d54163cdeacc9255d467acb118450d1521c1d

    SHA256

    2b7cfd62c9b4c8cf157329f07fcfae2b796197c123f14dfdd93b03b76621f231

    SHA512

    5766826f9922449e0396f4d74fe041864ed64b0e5b25eb215ae79b90ec6fdedc87d94ccbecb316ae159a24f2d6af97d3cc0822caffc70d3add9a3d1863e237e0

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    ee2f26659e35702bac18b03e519ec2ae

    SHA1

    b6a6e528016780627043e78a969f69cc5c20d2fe

    SHA256

    ce3356d52c75957f675ffe4dba557dab37a31bc200ec7ecc04b4a0fae637b045

    SHA512

    199fe15cb9b15376c9f2d8cbcffa76511675fd831a9740018ca0be589d40f0236115d4d3621806a286877a1ac4d8f1227997333f28a76b0909b76dd823942ec6

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab3298.tmp
    Filesize

    67KB

    MD5

    2d3dcf90f6c99f47e7593ea250c9e749

    SHA1

    51be82be4a272669983313565b4940d4b1385237

    SHA256

    8714e7be9f9b6de26673d9d09bd4c9f41b1b27ae10b1d56a7ad83abd7430ebd4

    SHA512

    9c11dd7d448ffebe2167acde37be77d42175edacf5aaf6fb31d3bdfe6bb1f63f5fdbc9a0a2125ed9d5ce0529b6b548818c8021532e1ea6b324717cc9bec0aaa5

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar335A.tmp
    Filesize

    160KB

    MD5

    7186ad693b8ad9444401bd9bcd2217c2

    SHA1

    5c28ca10a650f6026b0df4737078fa4197f3bac1

    SHA256

    9a71fa0cb44aa51412b16a0bf83a275977ba4e807d022f78364338b99b3a3eed

    SHA512

    135be0e6370fd057762c56149526f46bf6a62fb65ef5b3b26ae01fa07b4c4e37188e203bd3812f31e260ec5cccff5924633dd55ab17e9fa106479783c2fb212b

    Download Submit