Overview

overview

3

Static

static

3

ProxyHunte...er.exe

windows7-x64

1

ProxyHunte...er.exe

windows10-2004-x64

1

ProxyHunte...r1.htm

windows7-x64

1

ProxyHunte...r1.htm

windows10-2004-x64

1

ProxyHunte...r2.htm

windows7-x64

1

ProxyHunte...r2.htm

windows10-2004-x64

1

ProxyHunte...r3.htm

windows7-x64

1

ProxyHunte...r3.htm

windows10-2004-x64

1

ProxyHunte...tp.dll

windows7-x64

1

ProxyHunte...tp.dll

windows10-2004-x64

1

ProxyHunte...et.dll

windows7-x64

1

ProxyHunte...et.dll

windows10-2004-x64

1

ProxyHunte...r1.htm

windows7-x64

1

ProxyHunte...r1.htm

windows10-2004-x64

1

ProxyHunte...r2.htm

windows7-x64

1

ProxyHunte...r2.htm

windows10-2004-x64

1

ProxyHunte...r3.htm

windows7-x64

1

ProxyHunte...r3.htm

windows10-2004-x64

1

Analysis

  • max time kernel
    121s
  • max time network
    129s
  • platform
    windows7_x64
  • resource
    win7-20240220-en
  • resource tags

    arch:x64arch:x86image:win7-20240220-enlocale:en-usos:windows7-x64system
  • submitted
    20/06/2024, 17:53

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    ProxyHunter/etext/error1.htm

  • Size

    166B

  • MD5

    ff6f5d031695e8a3b3748000893941bb

  • SHA1

    2b62b6ffd101c0c60a02aeecc7fb54428956e801

  • SHA256

    197d6403fc82d2cbf28213b3fe3b68a0af1a688146a5622a93971383b901a128

  • SHA512

    9654f933e3e2e385c57d40fad3748b437e25b682abe7a851e8c2a71172dcf3b3d8002f74a5669b89583862dde792952f5911eb7064796ef9338b4b7bae0f707e

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\ProxyHunter\etext\error1.htm
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2220
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2220 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2176

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    4d87672481024c8c130602b007e61ce6

    SHA1

    2ec96d58f9268ecc27d37e0d3224857851f53a9b

    SHA256

    15954f81b2f8b753bdd6b78088df04b67a491c9eeae6204d4d3e2240d5b91f1f

    SHA512

    0947d98e513fc1eb3df09ca47322b621d7a7c076bdd0fc2d3398721e66059928ff2cece82778dec69f179ee41241e4f2f6cb63896213536aa5db315fad8621a3

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    05a0f06e8238c37fed952cc44d34ea46

    SHA1

    f22cb1e96bf544420d41ee8c2b917f090765951a

    SHA256

    29f741d5528f9008556225ff6351f2b19cd21e7f9ac884c28d82d62ea4d16c1c

    SHA512

    b774b1fd856ebdd041f89f7f2649ae14bfb80418063a9396d05bcd8704cfd274ed1ecbe75d8bb4fc4260e2a5191cada42cedacf9c83ed39cf76e273b59706b27

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    2f71525537776a0bdc73155fb683a3a0

    SHA1

    9a87da6eb2a9f6af0323919b1453d3097d6c05c0

    SHA256

    4e4754ce2d7147d29cdffcdb9753e2cba1a6c4a67fbe65c3fa6540f4c5a64e8d

    SHA512

    6f438d442cf299ee7ce868830b736b415d6bb256d43230e37b75280d66776333dbacdca103e9da33b0b4c9b00b43b08b08c977c2c9f9285a42180859c1274394

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    b96d00bfb02d619a7f2d5fac35171709

    SHA1

    25573638404e12b14e9f06a8b4525a164fd6c39c

    SHA256

    323678c05bca0a2debe7bf51780949c25246271131753b879886e9537a945471

    SHA512

    dfc895a0305d577a36f7250a8565f02d23c2e8457ee984df4659fa0b2f387b6a975de77a58c616f3b0486595563c4ce90057c954c96fc58ee4524e8ce8345de2

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    18498dce59ec20cc793ac6239727cee1

    SHA1

    301e368edb3a310fc151d6e0f5903e71a31d4a9c

    SHA256

    7e17f7d6e3c2e8ecd99fb3bb128f20523c0882526742725a1d13df197847a092

    SHA512

    98cc35db42f204ed8bd1e3cd50fa6b7ab5164c1b17e2fd8eb56de4d4ae3929bebfc1b69e2a876f91107bb98810f83082d2a28fd970b6cd55d48ebb66b909dc59

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    8e0c4ede9ded2443c874a5caa03c6528

    SHA1

    76e536310fa0b8c40f7c70298aa52ee21eababd0

    SHA256

    899c3f565fbcfcc7c7443b5d76405a8b72592837631f33dab72cd32010ed7d85

    SHA512

    b56f4258e7386b02f9ce4cd92e8905a7ced982f6e4b7231390611f2950b62b14d0cfc7f4031a354678639653e5d26ca1f05a0b4105c51691d6384eec4460a214

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    1c78857fbd064ab6e878faea4a1a5a7d

    SHA1

    6b84ce764c8f5f757904b2f3a266872da7dbecde

    SHA256

    706c86d0264bff50338d23245b0f1356d85d45046cc359c4dbc593fe76f71136

    SHA512

    b9e2610275c901a3f7ea5320166e9021eb89d8dbf390dc6a8e24ebd522e06fcb6558980018e236b56140acc5e05cb4a4161481f7bed8821741b9528530b17477

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    2dcf0baa40e7539cab8571a9d519f091

    SHA1

    cfdfde52f392ddfdf7d242ffd0c7dc638007d007

    SHA256

    abc4f7336f68d7b5baaf5005f818939d07600d04d6693cf2873cf658a6168205

    SHA512

    515b66cdd1377a3f522ed3c929f7c49715ea1b628aeb80638b858b3336043a6463e3fb59fafd3034ea59d5376df25c6ba331d93477edc7e053754b9b88b7be8c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    971a26add7587ce63f7d4c555a4144d7

    SHA1

    5f8f790a5562d4666604771a7bdf09b08c8e5ac4

    SHA256

    93d50fbf2a07434134e350327ebada5181bf6f5d6a2cb53abfc593248cd9847b

    SHA512

    fd45409ebda64d4bd0792d9e812af6c07281da955c69d33296c3b052c2c983b4b7518b0c25077b057b25f03739bb034bd8a0fba63dbc56569675645fcb45c362

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    2ff61f46cb1363a8a6583109ead31b09

    SHA1

    adb5e3ac6ee56c5b2a50858766fb3346be4a7711

    SHA256

    15962b5a8fccf79f01a8d4fc77df9e9248efc0dd5e90f0d4384dbdf1ce935524

    SHA512

    b13cef33fbdfd7bf64c44af32252cba224bfae9c9613541735c9f4fd570403d1c7dd3af6d2878bc4a21cd22f9e526a8a179a053c7f88127e0ce9bf532bded0e4

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    77fa099736d414fa661b5b37a6496e8b

    SHA1

    907fba7cacc962708cfe75360945c84a1180bb38

    SHA256

    81f35a937225db8d8b59024e4cce65e5a11ae80c0ff5ff8a9a2758eb18fecc0d

    SHA512

    407cb90665a1deeeefa5e10168c2a876b33caaff0c8043c5f28a37e5b2a9638f6faaf69442ebbc0f12d835905f843792b301afbf94629b15694267f7838a6ad1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    c00aa8f43b26dda9a5731e815282af25

    SHA1

    c97ee69532e4ff8f27fa4160ac077d423750228c

    SHA256

    065ba4c09cfb25f14f45652ea956d4f75d30e31560ea780ff29b21e8a6a18b3f

    SHA512

    ac9e9c9992669c570e2bc8ecc2c10ee38fb399cc529201c73d68bf81d70dd294a08d20d46bbe59a39bf56f5d7d806402009e0149d06939574f811901e2847f7a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    f60e018e1c6554d8ed6cbddb9a1e2a47

    SHA1

    0b65579e8a2b437046f1fddfa55c17221d2566df

    SHA256

    d3037240d1810189f26c94d75150dbd700af9ac21bb5dea4f261abc1a6d1a805

    SHA512

    70a66d4adab57f8c8998314ea0b15f41309f2d75f967d7b4570eae321dd3c87755aee2ca5d43e4dce5dba25d5d01834a90f04fd3e1956e56fdf34027027027a1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    90dba2a7c365df641af9251b9f698ba8

    SHA1

    1707ad1f1399e054da89234b91e967c1da8b35bf

    SHA256

    0bf405db4d7449413ad1c590e2d4ff528a9587e6146fbe46482ef334a3aa22cf

    SHA512

    bb05280b298443f6e2b031a3b9185ed28d0a555abcd07bc53081f2b65ea97ab9bcd4246ab32062ac04be5a5293fb2c17f0feb89b35d7f9c21da6d8bcfd6eae07

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    101ba8e2606c1096986aac0ba6136702

    SHA1

    83fc75dd8567a6adc3f84fd3c635669a41443a0b

    SHA256

    0af7d507cf4dab7673bd88b90d8070cef2fe55eff3ba6c7496546b24dbecad90

    SHA512

    d11261bd7fa2ed42b14a1191ff32ce279dfacf3a53ca39c6c33a889eb5b5c0549b7f084c26428aa59b98d4b9abd8732d8df21ad96a4ef93566cc15ac3bf3cbd7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    2526d3b3b3d5ecd1298809be41e1551b

    SHA1

    be9853f5689774f43dc6bbabf9950a0d88f168ec

    SHA256

    9f3028d9515e90ddbdd07447a782f68789d8c4cf9abd3465f1894c702dd6c683

    SHA512

    f7ac87eeeefdb70a4c35ad8227006b19888ecdec6535aa5d2042ec8bbd54654cd5b1e37e7eda41ea1a28751126a17998c2b6081999a3b1426f23314ab4ba6da5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    a87d332a4e7c75dd8e20c5849eb28548

    SHA1

    2a329a0bc0d14ecabfed7e44ac47952bf7aedb9d

    SHA256

    ac851cb943968c6f2086c9f0e076f001cd112c90e7e7e0b4136f5b5a2b9c2a40

    SHA512

    88613dd028e4293b07a233dfa855935097b4d806d14b88ac7f7064a59fbcaee87fa6d119c3bc8b2f90e703a905f04538ca4ed154503b28d52934def5359a9d93

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab21A6.tmp
    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar2298.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit