Overview

overview

10

Static

static

10

Kalkulator...g.html

windows7-x64

3

Kalkulator...g.html

windows10-2004-x64

3

Kalkulator...ni.doc

windows7-x64

4

Kalkulator...ni.doc

windows10-2004-x64

1

Kalkulator...n.html

windows7-x64

3

Kalkulator...n.html

windows10-2004-x64

3

Kalkulator...1.html

windows7-x64

3

Kalkulator...1.html

windows10-2004-x64

3

Kalkulator...2.html

windows7-x64

3

Kalkulator...2.html

windows10-2004-x64

3

Kalkulator...or.exe

windows7-x64

10

Kalkulator...or.exe

windows10-2004-x64

10

Kalkulator...or.url

windows7-x64

6

Kalkulator...or.url

windows10-2004-x64

3

Kalkulator...ja.exe

windows7-x64

10

Kalkulator...ja.exe

windows10-2004-x64

10

Kalkulator...00.exe

windows7-x64

7

Kalkulator...00.exe

windows10-2004-x64

7

Analysis

  • max time kernel
    122s
  • max time network
    127s
  • platform
    windows7_x64
  • resource
    win7-20240705-en
  • resource tags

    arch:x64arch:x86image:win7-20240705-enlocale:en-usos:windows7-x64system
  • submitted
    02/09/2024, 16:05

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    Kalkulator/B-517/pr1.html

  • Size

    97B

  • MD5

    946dbfb7da138cde07c227a650dfcbf5

  • SHA1

    93d662dca61af230c67ac3acc86e871a7287d50b

  • SHA256

    aa1c855cf0d8335c482d520b81d7eb9b0307fab316d896b4fcdfa74a4012d892

  • SHA512

    cb5c0085f1cc3b8a7a2f029e4b84c176ea519a3b3322a0265fb75c0f4af89efdcdfa057e9ee80e3030900665782024f3535b53c061d3bf896a419d443cfb1444

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\Kalkulator\B-517\pr1.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2312
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2312 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:3064

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    8cb641e52ee65c741c13c43eb15be24c

    SHA1

    b92db4d30e78928ace93f4b7500e8683968624a9

    SHA256

    69035b028060799b8835856c5599381c09b2da1c4568d856ea364c412fc6c8b0

    SHA512

    6ba31ed737a7650f329e57137170cafb60d26493db2d1643ebea36e735931ab189b61a13ed13484843a554629ee6104acc83c073b7c24f5990ce7ece602e62e6

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    0fba691024e237a7be6a4c785ce6655e

    SHA1

    a786567e054c9e18745dc47ee1a70f7f6c6ed0b4

    SHA256

    dfa729797c194a3a055f4beb7635c42e836a357aa9044bcb6e1a581adad17198

    SHA512

    2e36e8874b5f96104996e1b750971ea647504af5f42cf69af5035f981ce358c0279960b6363d38a0c6bf0f00790f8c79c10635f49a5f7cddfcd89854421e9f9f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    7b2538fc49671863fc9486b606de86ed

    SHA1

    14e7b27d82175400dd1eb358c058a637618e436a

    SHA256

    3fc13247e2208f19763cf068758ac539c66db79d59b96b8e56b9ee25317d7858

    SHA512

    350402884d6bba4127637a6223615cfc417268bbdfbaf3edbabb746f5dcd189816937fe4752ed31973a02a22bfdbc4c7dc7b0ce6b45cfd9d6c7bff23d507f43e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    33b69d1df482145bd398f5981201dc63

    SHA1

    879d05111de44d072d9d683a10a588e8312041ed

    SHA256

    d078c1c3f0ae7d006dff51db2eee91f9f611500f39698a6b3ebed72a2689a082

    SHA512

    07a16460a39c244b6d4dfa060cf8fd7c38a7ab138533071f443704f387be24477ffe615e4586042c64d22172817c6991ce3e4401707d121e505a44bcc7fb103c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    c3bcc693383e56ab9dc611087d3f6393

    SHA1

    8a32f8fc53b5e4a52824e5a4066e1031c1873e83

    SHA256

    cfffc9d456d75dc37afbc70ab3cbf1eae1d29eff7452ece7b926e5307d6a9a3f

    SHA512

    db83c412166aaac82dced526e6f33aaa0ecaa2f4e0c724eb5129a8ef44d71cb5bd9bc1176c48b3deb4de06a737bdcb2138375c4fa97ce6be2f82de40991176a3

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    7c18329edce8e0be2f6ec52d445f4bbc

    SHA1

    6c6f7f5678ffe71e005b621164971468d9e6c9bd

    SHA256

    48d57a67cf273bc9aa69dd8e2e7c303b1b84f6942725a7e724da9482e5257f52

    SHA512

    7779dbfabfb10dd92946b317d0e06f8593a3e2f39fd55cac78f36d35bd006fd641df735b601e3ea20356e1d407e9191fa7c0f4da78f485368e1e30b0bc00cc8c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    46464036acf508cab5f05b4c729fd234

    SHA1

    6aca48458ac205d7acb16749c5acb9e148e92d12

    SHA256

    9bea35cd2bcb902d7e3d2639998b286b433fec9e7e76d7090e25318f04ccfa7c

    SHA512

    6cb4055a2c06e884b28b2eaf55c4865521987188ae7b4105d37e418eeac9e862fe3ad562262697bc74e28e5111cb02009f55386b23a9a0e82e8283a5665c1354

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    a5b18de0019a22759bc344adf7f63c8c

    SHA1

    2334975ee82ba6bf442dfce587c64d5cfa009238

    SHA256

    6996e050a03c11ca9ef7903bf9b002e7d4784d0a782cfa9989136e45833fc65a

    SHA512

    59c7b85f571149a60f686fcfaf5cd1772b6f35d3e9e6b4eb54e195346f31a917983887c40b80574fd0bb89d5b304b0ae30accf90a86d08e58db3ac790371ec04

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    b40c3e577d61cacab10801735887cbf9

    SHA1

    0ee689511315d51c1ebb5f119c0b15f04a0237ae

    SHA256

    bf0c3e5b74bb5fa539988a1f9652256054b7762d8c947c4adf0f7152064d9b4b

    SHA512

    c1751f3f25dabb22ac35417d4e045ac3710563959b23c18d6fff9e75b37a7b85534a3a7034008241db32ed42538ec6cbc1b48b0adccbd0eab933f8d606e5050d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    b2098576df08d4d81744952f07b4ceee

    SHA1

    502fb0dee23922e2d86098b2601f1bda1a9deeff

    SHA256

    aac0d3473a2cf53ed5964b6632c5f33025172388c2b5e86b8bc4801d33c75eae

    SHA512

    7b0e16529ce79f0d6d5dd228c81399090008dc5d401ea4f00e16a1be8c5e809cc493e3c4ac7d83ee60600ccd7588b9a9fb1dfb75859b0d0cd7b6e486187b3acf

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    55dd480462ad694e52eac31f67283791

    SHA1

    10c8a71ed3ad41d9b75e5ddafd159710993b55ae

    SHA256

    3a6179713cf0644ca981acc4cdbe9b4eab1d6d1ae50b277bc5d22df42bc080fa

    SHA512

    ea54ee46273b43d502e252bab48d78ebf910f2358f3f990575bd803f55e4541a6c517ddaf371568f6fea3d45451012538b1d744c9660f891c691d5ed7cf70336

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    4b785bcbc58e3a5d2a0c4cee51b8484b

    SHA1

    03abc9907fbcec42397e52f7aed79091d2fd6625

    SHA256

    97cef863913b5c6f4f0d4571ed5845806382af5510cdd76ac1b82b0677470e59

    SHA512

    5230c7255e5421395e400ab1d4822c2f11ae9278fdd5551823c9bd11a2312caad0ac196e8106b1dadc960f26197d0beed9bd9a502b6b171a89b03bbce6365c58

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    82ea656fc8cefb480a88fcb70147d6da

    SHA1

    e875f4e1fe59bbe65ea79f1e13b4769a5cb83931

    SHA256

    0b7100c5357d0de7485849eb60d454c01db2573efe85efa5ffe53bc675bea686

    SHA512

    97b174ad7e44c89eeec109b4b8036d96218feeb4172bd39ba6c1102cadfe836d37b39da94b9cc20953da8e28f031b613ee8649be7f5bb8352bc92dee220f6ed0

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    fffc4c3c5409e1c9474ab4eacefc3993

    SHA1

    65840226bdc47602a8b1f167c0d46d8ccc3d71cd

    SHA256

    c062c7ae599e5ca39c06382857c8431f22a6199f0f78755058148b7b5dc29092

    SHA512

    a5befec4a916e689765178299e687cf065d095fd769d707362d6a260107a1ddd7c955161f99f64dd115f59496cee52630cdfabe42b5040731bc54ae7cfa7dda2

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    5692ea18ac4c1dccc40806f4fa2b6daf

    SHA1

    fd895936aed3d9f6e8c18f6fd0340e0c44f266cd

    SHA256

    37abdb9ea72edfc89f106834d027e2257d28d1837072970edda4b8734b95c9aa

    SHA512

    4cbac2f0527cf163d4bf924e977bfa1db02d304af92f8d8968611a5694bd61b0522adc96d57ff49808cf91398a77cd8a18a1689768eeaefa15857cae512035c9

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    8e6c61244b33944d625a7ec356416644

    SHA1

    05f7b8e0fde44a8733e42acddc90715d5b258538

    SHA256

    b7c3218fb5b9e70b0fd7daa766341c632791577c7220b9a59866abf174fb5555

    SHA512

    5f477ef97687ce92db7b9c2763ca8d8a9ed04ccf55d33b8baa5dca05bddfbcf03a30df7705293fc37621bc83849d8e65672f74d3209f7f4ed0640a5bf4751cfb

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    c5830be1662afbb063c23841bae7f738

    SHA1

    047125215f042e0cf841f869d4c50901a66cb75d

    SHA256

    df30812eadf2beb9a1647e41eb7ab75646a071f35a659ba8f8af2fb3d77429dc

    SHA512

    b3b09dea71c9d2dd437c0b809a6e48a1b4a024c4e61097968fc8900a16f995e51b7ddb2f8103a2fe3c358a453ed35831818705479e92e4e8606ff614cef00a4a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    78bc5dce199214cbadf0719cd6ccec89

    SHA1

    1d1288655e68134229711c21199eeedae4f09a7e

    SHA256

    403cc30a2538f414fd4b23ee0d6fc24543f7241899037c4377664c0a5b6fb49b

    SHA512

    37ad5db8fbc20a4b541e3fde4e24871fefd985f7611d05329fe5d590f5d97d0f3162e18e634da71243f9d83494f219adfe6a46bac6768e240822e079f491d29e

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab1EBA.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar1F59.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit