Overview

overview

3

Static

static

1

4TRM5t.html

windows7-x64

3

4TRM5t.html

windows10-2004-x64

3

Analysis

  • max time kernel
    122s
  • max time network
    127s
  • platform
    windows7_x64
  • resource
    win7-20240704-en
  • resource tags

    arch:x64arch:x86image:win7-20240704-enlocale:en-usos:windows7-x64system
  • submitted
    07/08/2024, 06:22

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    4TRM5t.html

  • Size

    566B

  • MD5

    0da22e202ea0127df814014e51c83bc4

  • SHA1

    2a9b04733bcebf22a0ab80b687b7d613b72f401a

  • SHA256

    330e7b1dd6986a90b811c46604fd07687591dffdbe1cf013ca0651c6bebe61b9

  • SHA512

    89c1ee2fa40a4fbb4e20740a7b6ed1b5245d874ff6450310b19e0642a3377a64c2049abc05f4af3621bd9f7f76992e416411cc13009c5ffd970c7469fbc9dc30

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 50 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 7 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\4TRM5t.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2112
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2112 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2680

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          3293622211709ebdca98685ad565dabf

          SHA1

          59d336e09f546f89f95d0268c8a702f3156fe04a

          SHA256

          2aee4ae88defeb9f876e17c5030c9f98510395d959ba9eb22c3255bc97abedd8

          SHA512

          c06b0dd8df0736832449dfefb4149297371af042f849384b9f1d4993eb39a2c10bac20bdd2fcd4c1a2a590dedaaa9339edb0077c36eda5350ae2b7311955babd

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          d8addb7eb58786382e9d852d2446c17b

          SHA1

          be8ec5ce3b2e18c5e219b0abb0e1913317ccd72e

          SHA256

          5e14d7b5394180864dd1ccf6c28e5430633915d2e575d91d9fccdf4ec75dfca4

          SHA512

          ffcc6694e95247bf48da2c4e8047fd75d8bd1a5ed83344b61ebad7327ea19189063304ac5faf6122a9bd5c379b7f366fd3f9649298df0166ab38b2cbe42cac65

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          3d25224a99c51694fd0c8ba59012174c

          SHA1

          a9f8d2889af94453d73e80e7f1fdf708c82efe71

          SHA256

          125422eeed23fb8b3adf07542b3a820f9b9f1f6fbbe268aaf9a15e318f4677d2

          SHA512

          40c68cf5df6d91f3b0ffea78086c3b2fbe36a6171cd89065e2f2da35167485900bdbee4f67d82f1cd69014661c35bd14d2e3914735eda7bf31bcfc35c02c7940

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          b62cd828478f418b869383d511f7fc1c

          SHA1

          16514d296eeb76ee95e0478f3f95677c32928fea

          SHA256

          127452342091931d23ab492b412940196f81c13f99f8eb127251d2681396a881

          SHA512

          649c469a57108c6d41a8ccd2665bead2b42855b6426a1f049d663e7247ba13824ef9334d4a049f87992cabee7132356000071ad9a49e627f688c6a5d16c4bdc2

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          0483ea94fffb65d3aa86f54671a6837b

          SHA1

          83e57cbb9b4a4be214d3ba0dad05388042ce2fdc

          SHA256

          d5cb9541c699d56b9b28dd807c95a2bf36c2875937d2f2f66c1d775e4bf62b2c

          SHA512

          b9a7c77301e2e382a1862e95db46467ee339e49e04cee46b198a51c21906e00f79f63cf672556f361c8f9f8f69ee8bbd0376e8a71c293c3b620ac43abaae6010

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          0e8392e1f2dea26e27ad8799e1a7b04f

          SHA1

          83775c44d318fc215690f655c6a14539bb97f894

          SHA256

          45c67669e1aacd705c47bbb5528efb999a3d54fa3773ccc6fffa9c757042728a

          SHA512

          385604f03d52ace4834e516dbaef6661e8e231a273a781630ac446e684c662a07049495be6680a4b0f17bc387e528fd8efc40842db2458b1183577b7bd233ba0

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          a909199911190366b1d7e42c87466868

          SHA1

          b111dc272f3496ded5675dee41f259867f581b26

          SHA256

          4a7350c04d4808922e69c11e6419042ae98a66f7bd1c7f2f2abbfe6631ecb9cd

          SHA512

          9a271cb5a31bb8b0bb2c61d9fe57f1bc12d37a2535eb75db40bd6b0ae0b5a7948d4b1216abd93cb6fe4a5300b57d0966025d9e0dc0e165a4f64cb8437abd3a74

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          45e052159c4d8b643a34e320b58880d3

          SHA1

          f8c0a24155607087a5177562ea44fabee3c31ef7

          SHA256

          c08d4cd5f1af4d55684af94345d243a2e4dab49cc424fd46ccc19aec3b149ba9

          SHA512

          94f0567c6f177c49d27d5569a3355901b9a4eff97107d36cde72527d232ddccf344816a592cffc7a6fe5c4f04c507f72c95bbbe6a94e8251a7fae0e6a1d26637

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          79415e1f1d905b41e1546d09995a5c41

          SHA1

          921b717b609b92175186d94054df354b6706be25

          SHA256

          823c7596b0fc67629d7d4e3f7a93202353d74fb449e654af045ab0a606a55774

          SHA512

          ada94534c6e100e6f50aa2e8708010505d3558c4a6ab5e00de9c16a3e398329617209b9a7f4317897f45d964609c7bc29d2ba9a8d4ed2b362c5698227c85ef41

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          1ae8ebb7ec841ba4fcea89ae36a89d5b

          SHA1

          aefd0db10fc261bf7bd19a68547d589ef6ad1b4c

          SHA256

          064e24d33b2501a16d50379735931ba1802c6bed65b738ced536bec42801e772

          SHA512

          f90a933d555507f526c3ea336545e1bceebed2bd64a578603b8fa9c247c9cbabb943fbf0e74ea6317c93b3f3335ee855d464c59932bb8877a68b18dd82bcebde

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          89e4305304dbb9d82a1cf7a7649530b9

          SHA1

          262e52b530a28ab5eff3fe57936ec987cb644d1c

          SHA256

          a85daa178b562ba9a27c1b762d2ebfec90483012b9f3f001925a66108db22620

          SHA512

          10b5d015c925241a0d23007445065662bab8b487c86f37d12ce2f2ad00604e528b34546d96e6d6a389d8a33ec57081808c03cb60421c373af1f24c6aa0105133

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          d90760a20d1dc030d28feace5ae2bbb5

          SHA1

          f932a4aa957d1b49181a3a46d0c07a7ab20338e5

          SHA256

          2dae5530fea8bc058aa5548e66cad709dbfeb2e79c8449cbe54c669ba33e87fa

          SHA512

          2e9372076d7820bebd4056d1f6cb8b93a8a9062150f44e76c26e2f181bb5322ca6d1018ddb9c9cccc5763eaa51fa86e20a83fac4b23a464f8af1fb8a7f8c7abc

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          67c89804f253804d81b374f3e3ac39fa

          SHA1

          deef03a1b41e12b16376228aa8ac410aabe45c08

          SHA256

          41dd4f8530297f5e9961b234728dc2ff9e8775c6083b6d2944261dd86ceb9493

          SHA512

          b2f9c72dbc2f9580cfcf766bf25d3d8e9b614ea55a24ab7b034a008549af2d2067ddf1f31db18d6e5b329976757fdd5727a5b60f3bc0413124add1676c076acc

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          ebb7175ca2c3accf37797de44f3e3479

          SHA1

          ab63c95b35a38194698555cb97891b66d318e189

          SHA256

          9665b21ff18f39b31773ff2df39297011813c2d3294d4ff240e465f090b2b538

          SHA512

          f38826a0a01c8f7da1806083316a98b4658a88170719eaf136ee7d97fd62383d07f43d6be2c4419670edabe08ec7e77a3ff4902ab253b1be20edc6f894de2977

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          8268b8ecae1d2a28390cbfdcc0283430

          SHA1

          4c26e7727de3d3ca13a1c8252725c30acd5c84b2

          SHA256

          827c2266ae17caa9356e43838cc841e91b8dde2582e01df03f9c882fd3202daf

          SHA512

          dad5202e3465aa2ff156982381b12ab6fdbf54ece4353f04ded3d9b934c086f9d80cfecaff8f614f67c7acf96cff8866c24eca62773d3b518a028ba3b6c8e891

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          120aff8917838c753658f01fd7f33456

          SHA1

          5d0dc0e73d528a74f34683e8cce4a4ccb40a547c

          SHA256

          1b18999976040d92f674fdc1e7e76e5dc030d1c69c77b76215ccf4f0955cea83

          SHA512

          4c883d7ce0344fd45242276a63720b1e0971c19b4251752f2f58d897c3f75b2e04948d4ab837847134eebcda6fa34ed54ca45aa60403c95565f752091b1835d3

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          8789c79e30a480f4c93a4f584a0134a8

          SHA1

          8af75885d34a7990018f4544bf9529aea07edea0

          SHA256

          673dab3e1eb1f1c483e197976caeaaeb3a172108d1996dc4ebba8758b1b18369

          SHA512

          170c233cf3ec8b27913beab3892d76bf678bedebbfa2de9e6e11468738eb141c10e02833910308b94ee23f7c406d592e45d47bb5c2dc9fd53d01f98232c8c736

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          5593de40adf75b73ce6bc56d2d367c3e

          SHA1

          dfce119aeb4ca04c5c98da6e60a7afc392360359

          SHA256

          e4e7098890d08220010bf95046655eda007656fd69074b4d1562a071f4508ef4

          SHA512

          5dc8dfc89031b32699c8487603749c177c86f302419bd81bc7622934bfb61d84c3ffc471bb09c486e07c3b32b0257fb7763b4254698f99acc579edda9f1d6f82

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          8c792f8bc5643d13fbe483fa44ca0b21

          SHA1

          5e685f20688fce812f48047451106c120552f208

          SHA256

          61bef1377be9f6436a6a065bfb7eb0f3046313ea5cffaa437320e70ea08192f7

          SHA512

          461a4d746d1998fd8e378bf6aced1229c33e3286a1b4e8e3da35d09568dcaa85335b280f03af688711f7e6e02bf5e4271fb83162a0808eef2dd2567d2d37c764

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          9c9eefb6bf6462f7890bab53409d6160

          SHA1

          47928eaf9d1ad4dbb7d7012c811535af1038f691

          SHA256

          b606f9f79cba7b8fcbed6ccc60f16e8976a4a4928af4af504211572dcc43b9e0

          SHA512

          03e421156319ea281bf0c62e0d31e725a108565a84d175496dabb0e7454d37b046479455b5c781413d54e2320f7295b909fdac27a90a690e130c5d32416cf7e4

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\Cab2D89.tmp
          Filesize

          70KB

          MD5

          49aebf8cbd62d92ac215b2923fb1b9f5

          SHA1

          1723be06719828dda65ad804298d0431f6aff976

          SHA256

          b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

          SHA512

          bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\Tar2DEA.tmp
          Filesize

          181KB

          MD5

          4ea6026cf93ec6338144661bf1202cd1

          SHA1

          a1dec9044f750ad887935a01430bf49322fbdcb7

          SHA256

          8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

          SHA512

          6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

          Download Submit