Overview

overview

5

Static

static

3

404995b3-4...e4.eml

windows7-x64

5

404995b3-4...e4.eml

windows10-2004-x64

=?UTF-8?Q?...?=.eml

windows7-x64

5

=?UTF-8?Q?...?=.eml

windows10-2004-x64

1

email-html-1.html

windows7-x64

3

email-html-1.html

windows10-2004-x64

3

=?UTF-8?Q?...?=.pdf

windows7-x64

3

=?UTF-8?Q?...?=.pdf

windows10-2004-x64

3

Cert_'agos...vo.pdf

windows7-x64

3

Cert_'agos...vo.pdf

windows10-2004-x64

3

Contrato d...to.pdf

windows7-x64

3

Contrato d...to.pdf

windows10-2004-x64

3

Des_'20240816'.pdf

windows7-x64

3

Des_'20240816'.pdf

windows10-2004-x64

3

IMG_20240823_0001.jpg

windows7-x64

3

IMG_20240823_0001.jpg

windows10-2004-x64

3

Informacio...la.pdf

windows7-x64

3

Informacio...la.pdf

windows10-2004-x64

3

Recibo agua.pdf

windows7-x64

3

Recibo agua.pdf

windows10-2004-x64

3

Recibo luz.pdf

windows7-x64

3

Recibo luz.pdf

windows10-2004-x64

3

b0cbaab0-9...c0.jpg

windows7-x64

3

b0cbaab0-9...c0.jpg

windows10-2004-x64

3

cedula Adr...la.pdf

windows7-x64

3

cedula Adr...la.pdf

windows10-2004-x64

3

cedula Fah...do.pdf

windows7-x64

3

cedula Fah...do.pdf

windows10-2004-x64

3

email-html-2.txt

windows7-x64

1

email-html-2.txt

windows10-2004-x64

1

email-plain-1.txt

windows7-x64

1

email-plain-1.txt

windows10-2004-x64

1

Resubmissions

23/08/2024, 17:42

240823-v91xhazelm 5

23/08/2024, 17:33

240823-v4v43azdlq 5

23/08/2024, 17:08

240823-vntw3axbjb 5

Analysis

  • max time kernel
    117s
  • max time network
    127s
  • platform
    windows7_x64
  • resource
    win7-20240704-en
  • resource tags

    arch:x64arch:x86image:win7-20240704-enlocale:en-usos:windows7-x64system
  • submitted
    23/08/2024, 17:33

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    email-html-1.html

  • Size

    34KB

  • MD5

    16cfa6796d36413a41e71d8ffc0e0f43

  • SHA1

    198d83ffa19ceb8d09e87055529ae4b7cb050149

  • SHA256

    e5781c5337130fb2eccfd8aec296bbb4ec4e72470d06e40277e097157ee0ef6a

  • SHA512

    e96c91f61ef802941dc9115eacb74e5779c16f5279c0d6e804840a2c7e6301b7ac6eeb1ea974e0e523bfd1b8c108f73735ce9d7307a81b30dac0e1466f8a514a

  • SSDEEP

    384:Vx4x2sqFCvLDWLLLLLLLk8H8861ktIA66lytxmiPgRYo7:M2FCvv861kc6l/kaYa

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\email-html-1.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2812
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2812 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2832

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          314353ef92653f72550a0e24dc46aef9

          SHA1

          2f9e3ca34f04e2fda4b951ea73abde25d16b94d3

          SHA256

          36eaacb92c9551a6d5d8a95d6a02631589a966dbe125a1a68b1036aa5b6d6e59

          SHA512

          cecc8aa618953722c2a5f052dd2216b7d3e20e6443a9cfd2669191d7feb1ccd4ebaaebb9d394ee17a0d3e3599cde960afcf920ab2dff6da44a7fb3fe71e51569

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          330a0a42ec71337431e936e38378b112

          SHA1

          c3e3964c9ef2ee440b916c88e083da89d8a0b915

          SHA256

          432863ab598e4910fc096c45d325465d1d428d1620f19982cbd7e33b82be3072

          SHA512

          eeb408c645a82157c7e0decaf592be54c97171744a098dacbaac8e0aebc489da823f63c70192ab75a36752d475e1340b861ed610e721826d852e23e65d087892

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          d3e16503c9d656d035555cf0cca16f11

          SHA1

          a32a2c1d176db95f0113ba19a2b44cd52a6ad2cf

          SHA256

          d342a3222cf2401508eaeaccdcc43f65a945bdf8ea411366991a2567a794bff1

          SHA512

          e82df18072cff506b2b674d4847d097cac3a15eb5c17c2551c227174778a44848dc94bf6d79d13cb9c7f77be3a8f4fd5705774a3677d68339775250552e66b90

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          1a3c7664888bbfb1f7c54f48dcd79ce2

          SHA1

          ecc7a89b4072a56955d37c22c0b5f1db9c5aa2dd

          SHA256

          1be0ba99c3a1b74df60bcf5aa5de3e523efbebf58655a6ce62aea55d3856838d

          SHA512

          d04e6865ae4de38a6ed5494023a0c02e006b2080132c7cba1a64a8e6e2bbdd67aab46542a55846d128f2203b9a4f954ce07ea1c8280e965c85b5678b1653b4f2

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          0c0d38af83a8e5c2d0fed87f96261533

          SHA1

          73ec92f56ea78da810d1455a3a39a4209c7f570c

          SHA256

          7eb94cc4eeb2c476f59e4cca5589fd5eba441bd8fdea1ff03e77eab3daa71455

          SHA512

          3ba0ea33bf7cfe1e565759ffdc63d2e74cc37e1a11f07e957773d7a50ac10d0a159652bbbc66ccb059947ac3fe9987e59e5a424ed0305204c81a7beefe6ad01e

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          583188bbfa99b1e1e4c1f4b2bc60dadc

          SHA1

          afd1e05e50d49d589140d71bbd1be8fb0a4c27de

          SHA256

          7be0e65b9dc08b8b78f37696a556168932b37d8acdd65417db47c5f295036700

          SHA512

          b457a669224ec43afef300bcffe5b7e0f146dc3a652774c4b365013e2d518451e11f83793a623e92479a0df24aaa251cfabdc8fc684409c935c2c06eeb50947e

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          1f0f9343455bc1dae937694fe39490d9

          SHA1

          1a29dca2ed1e6de46d5e6bcec8680c234fdf13c6

          SHA256

          ba5f27f64349e1522105f2acecb51a0e1da80eb23d188212e88836c0539111a0

          SHA512

          4c7dfd973a1e324ea3d26fb9321bbc7f18e7a5cd0f35d706c030f1823c541ea073ffafeeae7817c46bc2a995cac47497fbf8b6113571c87325000add7c74b10b

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          ec139b699dd470e75ba10a3c481ffa46

          SHA1

          ba031e47020a101f79de76d065c534d98b529038

          SHA256

          b0a688ac7fdb5371d36d953dc81aedc47cf723957b154ebec6df46e3fe9e80ff

          SHA512

          0a06e7f06b5b1741ad5f50df928ced31e3f9bb254be4f88e4f2b86d5023d89d78d82bef0c3343130253c98eddac92915bdddbe3cd1191666a5276867f4c896cc

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          6baca2d042c125f5c5b5715049b9dbe9

          SHA1

          42e9544e5b3fa6121722c0847ebbac647a83d51f

          SHA256

          7db47cdf6fa80aa654b509b3070ec4ffc709d9c7c51625b072cc9bec38b35f74

          SHA512

          1386d379701e6b0c5c2dfa7d7cfb3e61a9935baa7465e84b0cbbc40525cc5a9cd462d967aea00b317cd12b1ed1c3031ebb87ecb7cf105d35088d9277c32a6d05

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          ee6d82c8baee7712fbb433b9bc7ccb87

          SHA1

          79a75236369d8b47196afca4d7a308a4c71f97b5

          SHA256

          b8f05ca5c87c3d69bb6990f9eda056102956c709c8ba45aea6534db1d1f11e4b

          SHA512

          7f072b7be9793fd3e1d3ff2a6071a2d5a94827823b839e5d99ddfedeec9b85d878a05224bd1ab860718f0a44f60645c2674c76675b39fea9102a2b4dc572ce43

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          f39b2a682a7528e72c609655e95550cd

          SHA1

          9d95c00270db7f4ad84c71c6f214009264b78d1b

          SHA256

          4755d5f0e8fdf07123e0349af155a984fc094e688fc64520a0e32f8c201dcd5a

          SHA512

          fdbbb65fb15d3ebc406e4fe11491f3e06d883cc2566a7bedc41515e86600e9669777b729b0d6a83fc971a4407bede26725c6f3792bf04f40632f9f81bd8c3aa5

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          98b726e033e04cb58dc422221ce1fee2

          SHA1

          b50394f2e47166d8e605851516cf2e582ba1f767

          SHA256

          65b38e8f7a9ab6a16c2df9e0a4bbc1ad35810809f45189add8d1989b877d9260

          SHA512

          421afa24c94502dbb92e4a49810e91f5f1e8c791e0f51d049578aa7445461c818438b5dd308c33a43331fd14d73b884b833babe9de2868af7b720d0b1fb949c1

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          b2101e492773f4e3afbaed1279bb7664

          SHA1

          ecbe61b8266658b1281336c8e61a3b4c553073c1

          SHA256

          f5705b3a0bf88c79461b360cb4885741541a6ab06cd66b403d996689fa58a9b8

          SHA512

          8cb04125005b8c8651c8301096f45395b6ed27e3c5262f32a35e0d27a314d75389d6bc1b36ea28502cc140198f606dd9bb2097c34bc64bfccdcde9be3fc2ed84

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          26cdad3f7d89bb5e2629b0ae257deebf

          SHA1

          5cf424e54942ebdac806ad46df0de4e68641c6ec

          SHA256

          0645b7c2ccbd0777daef072f671f35e39cd8bb33811dc17dbda0057ca6bd30a3

          SHA512

          6fca0b567fc8f2784187711826c2991aa8155d2150f63f399043c8e37495e7769aeee8ad11aa7951b1ff675347302762e8efeebae0c757c0b89a4d100f417f96

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          eed9cd4bb14302ec42f98692233bedd6

          SHA1

          9ab0d51232c1d4638273cffa07d33266b4b6e177

          SHA256

          e73bc8e53bd72aad67e2d84c159699285178868fba0a10f7004b3e09fc2e1556

          SHA512

          eddc51d46593e869dc1005a3e1eaf6140455aaae619b55bdd8ee64ca35eeb46faa94edbdad1763ec8b19d3182bc6c96d99714f606a3ada8e87603eb81b5ebda9

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          ab7d12bdbe6589acdde41700305b7f63

          SHA1

          0f816bd6f992ee62d67eda22ca01b7010ed60531

          SHA256

          1fd6c0a9c4774623623a814f5f6da8c40235ebd428e6d0a938c7942e7909779e

          SHA512

          b8f6a0cb70a963c250add16990cb0acee3d2fea67e5273ffdc6b978d3fa59f9fe983997dd83f7a299b6ff827116e46239511c5bdce9216eb5a9346eed567ce47

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          368ebc5d45acbd98bb549dcb0b3bc0b8

          SHA1

          58f14e46555851aabb54b4f5ed3824f43d81a54d

          SHA256

          7700a1f77c3a216de2c73148ac24d9733b9aa1b1b8c2a3217a190fc5771c7ba5

          SHA512

          bfcc09fdb469817696259e3cb7430234b6f6095dec041da9f2ac20c419f1f0fc13c1a10587e75b93a57f9bf2d0c81fde8a8e71577f976592ec6a63d4e9d60402

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          c5884f8afbd638b5f02e7ea23550010d

          SHA1

          b7b8635e7bf478005e6bc420dc4f0eb078ba8727

          SHA256

          5d7e8d4f4732ae230f0f2acab9c80cd3c3d68fb4931322d132ff9a0547c51fbf

          SHA512

          4df954505416d5d0776959008471f37d20eabe1f84ad5c3e59c576846f42f805e6240415893235a1675d49b8e7c41a312a68a2d16680db373b4405e277f82427

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          4d24679dc3a9b5a77f8c35bb98d61380

          SHA1

          4d201e2ffdbf4cd9ea23c83d8e5b734c4bf13308

          SHA256

          679e6447d1caacff08a7d9523c1972125a71cd26b0ecc3c5c1ea28b049faf6c9

          SHA512

          70e8267e57382faffeaff69a213458d2386d4ff6e831a1cdcd06705ed50b9cb9c043c19dc6c26baba04782c219757a8788bfe2667548a082aa8a67b99b0c47ab

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\Cab9BA6.tmp
          Filesize

          70KB

          MD5

          49aebf8cbd62d92ac215b2923fb1b9f5

          SHA1

          1723be06719828dda65ad804298d0431f6aff976

          SHA256

          b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

          SHA512

          bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\Tar9C17.tmp
          Filesize

          181KB

          MD5

          4ea6026cf93ec6338144661bf1202cd1

          SHA1

          a1dec9044f750ad887935a01430bf49322fbdcb7

          SHA256

          8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

          SHA512

          6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

          Download Submit