Overview

overview

6

Static

static

3

PDF2Word.url

windows7-x64

6

PDF2Word.url

windows10-2004-x64

3

help.html

windows7-x64

1

help.html

windows10-2004-x64

1

pdf2html.htm

windows7-x64

1

pdf2html.htm

windows10-2004-x64

1

pdf2rtf.exe

windows7-x64

3

pdf2rtf.exe

windows10-2004-x64

3

rtflib.exe

windows7-x64

1

rtflib.exe

windows10-2004-x64

3

Analysis

  • max time kernel
    119s
  • max time network
    133s
  • platform
    windows7_x64
  • resource
    win7-20240708-en
  • resource tags

    arch:x64arch:x86image:win7-20240708-enlocale:en-usos:windows7-x64system
  • submitted
    08/07/2024, 22:37

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    pdf2html.htm

  • Size

    397B

  • MD5

    d7675a1013383379d68992ff7c8e44cc

  • SHA1

    f2e400fd78e2aa620d98bb2d138f05aa264aebfd

  • SHA256

    59801f5c0ca1e9baa5eaa7bad508f86575870005b8f308e02849f5f9dbded46b

  • SHA512

    fb22f2dd6ca782a2f5bfd0b531d17cfab35a99bb3457939edbc800d9fb08ddb5c67db534617b8ee079c83d0a622465c1a2b04b0f95244b57007937439cc8ab32

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\pdf2html.htm
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2508
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2508 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2476

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    ae34b33350d9751d79cde582b3ba4773

    SHA1

    4e0cda3eef728a9e9434fdd507577974e6856b0b

    SHA256

    4d4a497d37bc1fd9e76e628866c35190ca48f8745604924c90cf54194a25348f

    SHA512

    19648eb07ea39146f0abdf56dc5a751a9d918703c98b157463219f8d88fea1b3511d9a7746ef5bcad6f9d040d957a606ca621a2c7ac02c246bc2c69525321be8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    a9e8faf24292f1f8fc7c36b51dbdc006

    SHA1

    be77c4ce5263ae37b9f944b16e2fb99f0038f84d

    SHA256

    e2b1e87fb2db0609fb41b08973f3751845abf209ac63299a09ea641542926606

    SHA512

    730ab133d8ee1844ed101edd602d85b13af9a8bf55665061deebcb3d6ee17111319a279fd661a8b69065f19e06913d36e8ad282678491a4506ad2c0713b5536b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    3540539582740856e9019692f7c83e7c

    SHA1

    97f81300b0dc7fdabba3e6d1f7ef70a4bb10ec8d

    SHA256

    f6358a692cd4d86fb272c70d462dff95bc01a1cc9454e22cbf049f387ba8338e

    SHA512

    86d62e05bbc7045bcd01df462da179119b12b31c3a48a0fdf5c80cba0df5cb1d73827521a5f20d1d227cc2135eef3e8e32235755a2d8021e9e65982d756f15f1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    d52894299a34188c84173de94ed64a22

    SHA1

    b3cdc257ccf810858cf7b78207cbbc843c0da3d6

    SHA256

    ccb056d2f5b2b14521bbc24818bb4d31e31df1003f56de7bec4b96bd3a38cafb

    SHA512

    c65e1c165bc4fe0b06710c6cb22df6fdf881062381f6321a5ca4acc17f3d70800a857228eb64f5c1b4910d6cfbca56738d9563d00f2dcf87b97d8b00322d4527

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    e3f0e7d059a3cd8e649a577b853324ae

    SHA1

    09b6e89c7157441072c650605675eed7cc61cafb

    SHA256

    8411edf02c7b00449e2c554ed328f296a848ccb71f6695618b6ec34b0f631219

    SHA512

    1d66d7e18d739d77c2bc0de862a5ada9887a11c2a4e9aebccab412cbad4988afa585a4d2460722da0847f157b7a76da552f4fd4b26d1bb25db5cddb9466011c6

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    54409249d116ede7a0028078425ef4b3

    SHA1

    5d24e0569831a17efa1e10dbe507038125b22ad1

    SHA256

    db622d505227ee2ea7c4e6957e7669b5740c996274c3b6fbe4a806b914e3712d

    SHA512

    d1b9cce43f9b92b6ad3b945862c838507961f5b7149289c5e714538ae1fe22f52edac9f8f5d3bd4e3c5402c1f06f1ed6614595191b59211aa5570b3648b3323a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    e2e5ea97be3071d82f1585c1e21cf5b9

    SHA1

    a8f6ea1a1ced364295ee192bb242eca11435c18c

    SHA256

    8c45b4c9e79c777bfcb2268dae412a808f01fa66b13e186205bc725d31727c60

    SHA512

    bb73556c3326d1222e1826b020392012d3e54956d27cd2aa65a8c7111b243fdd61b8db16b41fb42eff75e56d2e35c08c23bd5acd8b2a2acc1c83716fca17e18c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    b64b4adf3fe52ec8474e08c74e6c5d42

    SHA1

    d04f0b4d48a0f32921bd4f429dd4553803cd1cc4

    SHA256

    472eb4d86726a6a928e52f476d6f9183cf363f3fdeceafd472919947558cfc71

    SHA512

    3cf7a74cd7f8c3881085234b63937f2d9a8a497633d9f28fd373c5080abf966c95d7909e42777a7f68f4d0ff0db1840afb01838530127b11a4157e31c692317d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    f1a8bebfdd0cb5abeb5cff83ab8cbb5a

    SHA1

    93c2b798b4d52994fa45b7f91072de6516aa40fa

    SHA256

    8c54a4ced7b86b5058684df7cc64514467ef5e9cbef6bcfad598b9b66181fb2e

    SHA512

    1aa8e626a5373a8dee8e3f68d8bd2c3290759b4d8e6e307e0b848c163ea1c88eff785efa6125aecfd843df5cc73d2e4f26f4ea00c40c55914a3b41d0e01db10a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    49e0992caa3ceed1d77345a9686f9c18

    SHA1

    4db1f12e1bd84e8d0afa3e38b337f6328b380dfc

    SHA256

    a536297661dfbec5913c56be362a3993a70adf9c296e8073f89f6d3024506a2c

    SHA512

    e4745f0dfadc4d874ae5c221533ae6727cd60f9a31c4538c590226de524c8a03f859ae4ea61f8b3207ace1671452e6794ecfeb5478f42e9e83e09b3c595a3f53

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    59d9e4751706b3502ed169ffb7754905

    SHA1

    fe09ca3ccaf5e2f31a2e470a91808e4dc69dbac9

    SHA256

    69bcebcb5766c69cb886ade23ab30afc074f412000aa46d45f1ca98370483477

    SHA512

    3c7d433eb6a0c5aa79245e5703c638dc8f2c2ca277eb7477b0e7282c6fa76c0268e11bc944f306faabc7791ba0329db2a5fe3085753d09ae79e4f7ce72111a9f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    3024b7e808af8bc2339a01216440951a

    SHA1

    88d9497f1ec251a68fc71a413b49bd090218df55

    SHA256

    d32e2a1c8722ff6841b6a212e603d7b12152f6a569f36b2680af1331e159133f

    SHA512

    6047efb9411f268448487157b5d8f340816ec44acc83686c6e55ef4c4959f60ed04cd6f4d9428aab90eb84aed18fe1265c95e21bcd762c0af7efced31c301362

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    dec5fe9f206a3a99dccd32ec3b9ccd4b

    SHA1

    89a912ad27a3356dffb2573ece7dd91c3d45ed33

    SHA256

    5942bc594a4b1806c55b29cc93fdfccd2add46345d8ac6312527fa73a91c9ce9

    SHA512

    d8dc2379f73d8199524c23abd30e17aa3a55ce072484038117f2e66d63ebd2a42dfa1fa3a88cc51a6db5da1e430def48aa824246cf8445f7749f1f811c059cdd

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    b36a56a4d89700a54ce65500cd0ba5f0

    SHA1

    23e187dfa35b9cabbfb282688f102cd0d61ac263

    SHA256

    43e6dde6ad34cb96aa3f16bc9d6ab49d7ae6a1ca7c1aa04d81f064f4a208b1f2

    SHA512

    c05110b49b22e3f986c67e584ece851dab3e0e000a693c5c29057220b1a0dcc89ad323d0175164c1c53a35d7e10dd8eda94b78c4a45a336b1fd697635ccf06cb

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    f68ade0c69101c1d7d2097017f7b2ce4

    SHA1

    4d4ed0026a36e4c73df05f3bfcbcc82fa1be4e0b

    SHA256

    e7544a6cc00f47397d9a23ef239876dc6859d4aac7797eab65389d06f934cd7d

    SHA512

    a2c585a0b64b2a4e8fd6b0390a04c9d04699cf9457186cf0cffe142be405ecf45c52f14bab826207f20233876f86849df78c9f89af99d3600a41f85ce0b68177

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    919c1fe82ddfdc9a062e7d71461005f8

    SHA1

    defce50a0a7a7a5eb9dcd1ab0ac6e9849e6a39a7

    SHA256

    3c9e48d23ec99be4225e44a64182569c4326ffc7f8de995bd2f447269701394b

    SHA512

    11cbfb64cdd29600ee16b2b0e708e8de8fdbe13f5a4ffe4150a1128dbb904801f0821723b7a212e8de5ecdcd11bdf2fb9e4f6573f2ff1ca0776f3dbd3117674f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    39c2221d9577b067692828c5d006559a

    SHA1

    0c6b380d2a94912d295ac63ce41115ea2c345e94

    SHA256

    913b180cf092ea7d879a98345ba81efcf80d6faa86a5acae8f67632e5b094c77

    SHA512

    86ace736f51d9df417525d7386c0a6f8df7b11c7ecfd2d0bb9d3e21d6a947619c92967609b391daebd11c15eba13526d3b7c08f9aaa6d39efdcfaa89afe94e80

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    d9b2790973b305308799bdd2be6da1a2

    SHA1

    4bb3a7d84faecc2a06189adacf4c85d1192816d6

    SHA256

    0db5f4acd7d9297d2c5517054d3584e9ed1fbe5722ba49e5d2a5606443b99e79

    SHA512

    ec082fd7f4166508c7f9397034c35371df839b08bf4647c0319c7466402474d9c8e48b5e1de828144549ec0af71fb2ee08f2eba00f714282444216ec05903f0e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    b1fd5f8827bbd71100a179add3485500

    SHA1

    bfef226827c194f435ca4dc7a4498beef619788e

    SHA256

    2f891e9d6b53a3da0b67969188fc3a47f4769dc38c90ec70cc2b7ad99cf2fa23

    SHA512

    262e0fb1c430ffa7cefb2b65b7522dbe0a0aa857ad35c6e8a8afa477009b843278e26153480696b168bdb4ad51e1e2bcdae3f62fdc72ee4b73bb39d64f35a43c

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabE3BD.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarE47C.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit