Overview

overview

3

Static

static

1

VNANR.html

windows7-x64

3

VNANR.html

windows10-2004-x64

3

Analysis

  • max time kernel
    71s
  • max time network
    132s
  • platform
    windows7_x64
  • resource
    win7-20240705-en
  • resource tags

    arch:x64arch:x86image:win7-20240705-enlocale:en-usos:windows7-x64system
  • submitted
    06/08/2024, 21:12

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    VNANR.html

  • Size

    2KB

  • MD5

    840ca221a836c6706a3cec539845e6f7

  • SHA1

    41f6ae880cab506252fe35db17b1ebd5f36b52e0

  • SHA256

    d86958474009b31b63f91842f09a1e8caedae1b9f9bac05f774108efea26c4c5

  • SHA512

    fabf8a6b330577019fcfbf28c4921d96e43f6df1b52b7e86bf7ea157801ac6e3d9186f90d27bfec0a4ce34a6f4d0a18d8655191f88e9a03f155ef8b1d6942152

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 38 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\VNANR.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1984
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1984 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2768

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\3C428B1A3E5F57D887EC4B864FAC5DCC
    Filesize

    914B

    MD5

    e4a68ac854ac5242460afd72481b2a44

    SHA1

    df3c24f9bfd666761b268073fe06d1cc8d4f82a4

    SHA256

    cb3ccbb76031e5e0138f8dd39a23f9de47ffc35e43c1144cea27d46a5ab1cb5f

    SHA512

    5622207e1ba285f172756f6019af92ac808ed63286e24dfecc1e79873fb5d140f1ceb7133f2476e89a5f75f711f9813a9fbb8fd5287f64adfdcc53b864f9bdc5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\F0ACCF77CDCBFF39F6191887F6D2D357
    Filesize

    1KB

    MD5

    a266bb7dcc38a562631361bbf61dd11b

    SHA1

    3b1efd3a66ea28b16697394703a72ca340a05bd5

    SHA256

    df545bf919a2439c36983b54cdfc903dfa4f37d3996d8d84b4c31eec6f3c163e

    SHA512

    0da8ef4f8f6ed3d16d2bc8eb816b9e6e1345dfe2d91160196c47e6149a1d6aedaafadcefd66acdea7f72dcf0832770192ceac15b0c559c4ccc2c0e5581d5aefc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\3C428B1A3E5F57D887EC4B864FAC5DCC
    Filesize

    252B

    MD5

    9450dbaeedd1a405be777f39d2083675

    SHA1

    6e3b507f2de0432218ca3dd4c60934811e635ec7

    SHA256

    36abf4ce1762d8473a121c689e917ced3f783c4a132faa4b446490e618014735

    SHA512

    b78003438c678a961a4407a745416433ca4e5d303d3ec9c4f701bf3289d4ae6d1a78b8ddb750b6abd3efd31608aa87744b5d69a7897761ed89a0c3f95e909bba

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    0f5e9f7af6aca42887aec190c8b3d209

    SHA1

    4947e18cbf0cad06ffe264a5cf30ae97f5ddc3dd

    SHA256

    c1dd389e0eede990dae4ff9480bde08a0b87fd6b6a04ce148916bd446948a35b

    SHA512

    554ed8cd1e945123151a065d1261aa59c07bfab36264fe65dec1fb801d4504a011a55ad304464815ca021de5c58fac48a6ff2cbbb58d02c36ace56bbfd709266

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    c8a59ad826d6992939a3b858c2f7a7d6

    SHA1

    efeefc82367e999d84c16c1720b6ae83c31e1cb7

    SHA256

    bc2aac37a5d62c865a9413b7795509a6e12cd96b94fe2392e4f2b225cfa72b80

    SHA512

    84950976a7f9bcd16081f3bcf8003a9cf80d1e314651b401a5fe885693b27f520b7a12037cb94e6535fed9279cfa142526b0a6c0c8f90c311f02d69a2ed84411

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    69b6316f3e4ec35d5fb84268599dda18

    SHA1

    f02794894051397ca330c124eefcf8b828e87720

    SHA256

    843c1a1f53cccf5e05c8307f1e62e322860a80e82b17eae805f72a8c1314962e

    SHA512

    6b7caf88e8a63604f73fca0a5c2433937bf2dcf951c585605b035df0f9c077a3f2bfa30a840eedfb5ecff7958790cae7d75c88a08f426ad980fda9e5de548761

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    5b9bad80a1c55679e6cf343297a779fc

    SHA1

    8a4fff8b641136c61a36f5f4db97142522174750

    SHA256

    54c9fcee44d4b65768fd085fe7f4f97d1db0212f06739df099c41a03ca9e34c4

    SHA512

    c81bd8003cabf4d492d043a11c997d040f25269d6f591f0519ff64bdc82738441f529fbe0ffa8c336a5c25343243f7b3e3174ea690f42f7428585ff5ee5b0615

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    a3779566b2a71b69b22c5d911dbac543

    SHA1

    ec7db94c0687900ca04101d7b365bbb542d11540

    SHA256

    b6137dad258efa695700ceb03d8afec7d1004c535f975753f4c0e4fe9e81d332

    SHA512

    c27201d365f544027f83f85ac2a7310bcf820e9f4275db80c46be52892fb78edba3535c9154a53b95f6f59f0a6688ab5e0000d7d70a3a2ac4deb4e100c10efe7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    2b7a8c33ea3a5bd99aed77d52fcf983a

    SHA1

    fcd9f2267e44485005e569cdbbc6bb255a414ea5

    SHA256

    ca2386f4f4b301f4beef667f650892750344804766e78c043e4bb4c33703195f

    SHA512

    601d260f1bfe1b93e7b0b7d4a3d93cd3737bf2dfba48f1e38ef4071b98baf167d7b5100ebd8ec06fb7b9974b5ae56bca65bf1dda574fbdeb725ee8f19a7f55ea

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    cab60cffdb7f8ed77c3cbdf52ceedd0f

    SHA1

    72f18f98927a0e9910b8f63cc1574849f0d6282e

    SHA256

    54e5feb925e20f5294bc40e054bb4a73e791b263c2214e946bcfd9e5e30d3dc5

    SHA512

    bc9174d628b0d3e1886aecae8493437dc1344a22d6ec05ab7d1214baf15e19771521606680dcfdb22ce05460e244c181d2d5b7ccf57cb5df846ed246e3cf2a32

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    f3f10d372062954867a98a72e4890e9a

    SHA1

    238cc8d7f5d4439be49c66ad23f5c4c84c88cbc9

    SHA256

    fb91f39facd628738508f02a0f321606c00ec6d2d40a5aebc34ede192a617779

    SHA512

    b09a665ad12c1d87d5f38656a09f43fc0a7907b94bdb185d82becf93637612effb50bcd5f0997a7c1a84fff198199af56a73dbfdd46c07e25e34755bef281533

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    dd1532b1e35fdb12d8d02396f71fb720

    SHA1

    e6e3ac2585dc4237bc8c1f8cf8ee42744048209e

    SHA256

    469a98e4365cf6d099e156cff282b9bb33c5af822f941c75c0388a9d8f4ea9a7

    SHA512

    31e7fb11c14d2110d70b17ff8dc7e502701fe2cfc4f0adc814104317d614b93f19ce4d65ce9f0a2bde5f98260ee4d2320d73191e5a83752639af45b176dce318

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    29bee2db9813b865c714c9509ae16389

    SHA1

    beb51b1d936d3b2d99a91f82e59ea755b850f98e

    SHA256

    97b1bac4d0fb00d61e2ea0d615cb1f289367a99b038b5afce68bf70c6711f59b

    SHA512

    7276ed65f7003429f6c584bc126a4a60dd53cbd8d1b5db662668d0ba489a5839a797cbaa767be8400d95f332dc1a5a0987f2b9c7c1c0eec12cc25ff6a9ddf3d8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    ae5ee9f5c855c045cd48b0c5c391d39c

    SHA1

    1836fc4a15c333c607ed5644e2bd99a9c7b2cc61

    SHA256

    b2d52362736bb002646ed5c5e1b921c5a9ac2ed5f45d93f9a09d392909c5a5a8

    SHA512

    8633a0ad77d8819732339c291caa9c52bf5281dda36c833406b82e2ab784aeacbb07ec4de6b927763b4f207c14f61ed0402c751c5af2ff021f65f3d19a84bf1a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    735d4d9055dc8f92073dc368dd7917ba

    SHA1

    7fefa1d8417a9e3a8a14fcf8cf4f0d82d5c6f48c

    SHA256

    1a6b2bfa6536e081da8039071087a5ab0564138185627cfe4708b770dd6654f8

    SHA512

    2c2a2264e8f34d86fdcc5099725b58363a184670a1141eb93feda7e230de791728e8609649d5d1cf54cca28b2c1eae5aef08b61a3d6fce7fd05750038e29aa68

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    ca69f2356dfe8b7223573033a5206806

    SHA1

    3c2690c5df925cee4b6cee12bcabb08cee80502a

    SHA256

    9098a85d362bfe87bff7145f02b690d107deeed75bf581877dcb3d18047e6e23

    SHA512

    944ef13747427f58c51b98b2e72efff2df7489cf322203e7c838309e341a1bb6d5f6ef13e9347d34c70502e2a5462e99ebb3d8be6c1cb3c67c8544eab09065e2

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    028fcc98aceda08e4e83d703cafe6862

    SHA1

    93ec2589a8279faaa73de126970d81b39a1fefbb

    SHA256

    4e6475de342ca643fd51009149d6c86ea980c8682d28d94166245ba1970e6355

    SHA512

    b83df93768ff7f2bae3e8be4a74b2c3a710b9bf03304308052501372738c1f9943b3a438502f1769dbd81813fa0730e04918a6a51e16e736f8f5a1c6f1923ca1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F0ACCF77CDCBFF39F6191887F6D2D357
    Filesize

    242B

    MD5

    2efed1e42a82b342f25c31945e6d69aa

    SHA1

    fbe72ca1b21f006ac02693232bd5e78cdc6b2395

    SHA256

    1763c9ec354e8e6f65c264a18e637ae99fea710cec00534d32638bd1a4ae7461

    SHA512

    c72b27dd6719b8178a91012a6492e5ecdcd553fab35196fe4146c8a3971a57801b587733491775ead5f1527feef4a61635f91f673658f4d9bcfeb041e4d2c3a5

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab986A.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar986C.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit