Overview

overview

3

Static

static

1

AWB # - 11...6.html

windows7-x64

3

AWB # - 11...6.html

windows10-2004-x64

3

Analysis

  • max time kernel
    107s
  • max time network
    69s
  • platform
    windows7_x64
  • resource
    win7-20240708-en
  • resource tags

    arch:x64arch:x86image:win7-20240708-enlocale:en-usos:windows7-x64system
  • submitted
    03-09-2024 06:15

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    AWB # - 113756567-INV-756.html

  • Size

    12KB

  • MD5

    6f699b03dc415c58e54f6b5e1eabb719

  • SHA1

    1493ee30b25a52a43d1697e6bffa706bcfd7cb05

  • SHA256

    70335f0898630cbdfc144596883dc191cbb41bcb6c89a0478924389d6f7d4979

  • SHA512

    3bf597c855ebfdc9819496933d0f73bdfef38344e3d857b9966031e9a884eedd15d85a93cd761ca2830665c59baf5e5b6ec0d6187cb8977f37aa892c5e17a030

  • SSDEEP

    192:t8S+mCXRHbWKaUUXQ7pX9EzMvFP5lYJhSddTxPnfui5qwPvZCYJV:t8S+DHMoVQ0N5JvZCw

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 38 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" "C:\Users\Admin\AppData\Local\Temp\AWB # - 113756567-INV-756.html"
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2308
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2308 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2948

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    6c627d2929ce52b09ba4c8196a0098df

    SHA1

    a36a6b2cb9dfa668e5e3fa0eae5929fc5cf41309

    SHA256

    0a04017cf763b572c0339567a2704b4a68537302b1493dab0191963601720764

    SHA512

    d4ac846b2f2ffb7b1788f3d5f932c70a03aefcef41d2895c5eeb7ea1638aa0c4db97650665aece25412a38ca6ef47803a57113a804ddf81384e03bc98f4a0ab4

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    35bb0118a028ce81208198cb15646a61

    SHA1

    82cece7659975a46a790366d383ceb83fc2018c2

    SHA256

    a71ee62f8153ce90fb8a6276f3ae1200a3e9d0af3e3ce278496b704060292dd2

    SHA512

    4e16ac83de25ecab23e4c7a271d587d814b613b1b3e0aad8e77977075b4c47ba169a5b7a75bd7195dc2e081665e2a66fed5cb3641a798f3e58c0f0e2160cf6fd

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    14dc93a97eed8ddc3d0220315e7b2599

    SHA1

    67642daedb75961a7e696005f3982611a2c78e5f

    SHA256

    5cab7094b2b0fb2b870914605fba8bb68d23060c7d16854476532b49c87640f5

    SHA512

    3fe53fe44407a420af11723e96c0d1f0662b9d9a798b4479fc2ddfc07c5096cec752365858887050900e103995374d119a17646d15847019e0d02c49757f2ce2

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    e2fb03a16f119ff6a3219f45d89df45b

    SHA1

    3a15a69d069b616fef82a2fa33a5f48fcd665450

    SHA256

    64fbbf1a41338ac9e2abdc284c48586c15e3a793c15861dec0bf663a4c938be1

    SHA512

    72fbc38b695c732d774a0373952a9f47b681af1be4d8afc53e5e4dd253c739056636ce4f3e31e382dc23b9ebf86140dc021ad9c11a8ccfb46d7641a442259ce8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    19527469464e3f8bce156522977eca3e

    SHA1

    900bb756239c63a4aa6559b41a755c6fbc8fb8a4

    SHA256

    09828e90ec20d3508397af6eb1d82978b798f5ec14837215a43ec95f7014a8f6

    SHA512

    62035f63e4ed9120be514cd2f59ce48ac588b1df25ff45ab1e83cf177ee0f36d4cc2146a887ce0c9c37005aec5f21bf2a5ded036592effe8b7ef4274acdf5586

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    1dbb62e48db97ffeeb707424ae19ac95

    SHA1

    6bf2a9d759391dd976f15d7ae96c01bea8ea76af

    SHA256

    8483aca2368127c1a5530476e3851841e968d1b2c2c3fcbb109b8e1f25b0d1f2

    SHA512

    999e14ce4e44d7bb5d8843d0198c3eb236d7bff91f29c2776bd067960bc2e3397d8f495ad3ad941cb33b23e09bb0b2ac9938e2e0cdcd02fd5db2904f9cfbf81e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    ecafef67944ca967f38a9f95b3822f66

    SHA1

    60042e1ad2a034062b42fa5926b39a7504acee57

    SHA256

    2c613f1925169939955a6aa9b97eec5387ca2a63fe02e7dbf2b5b9bf135471f6

    SHA512

    52f74510c05f6bbff44ffbd697242fc6fa4f9710b4a51e55a62370b0de9f3ffa66d465206f58008ed7c09791423376107eee14df21d2029822e25fc381ce076a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    5feeabf4a0c36a4fc4dc57380b9a69ce

    SHA1

    de2b888ad5eb4574f2bccf3c760a9458c026f9e8

    SHA256

    5b1b36b83df04e09baf686676743662250ea1807664f4a379519b95b212cdeaf

    SHA512

    9975e464a1935da8b0c71bde0fae9226afa7f6faa4eb9af0456d01dcfd31d859bbbd3f36ede464aa027ddc2a11fc6e48d33bf5c88d2e18491a32e085ac22fbde

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    3dcdf105804e48c991ccedb594bd5f64

    SHA1

    ab5fe0f266fa907265bf23915943618eac6fe41e

    SHA256

    821687df5a3fc171d358c30deb931b0d4648c11026e8e14ec8fcd0f56438b541

    SHA512

    320576416151d2f77591b8468001acad06c1215b62b74448e537766442ccf5e719396d98a32151fa4373d5a35defafca56a97fa2e57db51394c32a470fb426f8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    03bfbab51bc45163313749948b45d982

    SHA1

    afb3dca2757c6f6274f142bbfb403ca0ca739715

    SHA256

    4dbe2c82f45d9e1f894ad087817ecc6219afd4ba3add151406c0ca0b8512905d

    SHA512

    8bfab86d3dc688648c08ce6c58f27177e419b5425da52257555935b0b058decd6c04f0977396db8de48436fc166c3d8b785f71252be58d939f9434a6d7deb7c2

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    94f64bb4c4109ddbd2645559b2e04bbc

    SHA1

    03d906091ee27175cb703293de928be0c72a8a01

    SHA256

    5586b742933daf0ed0019c3007cde65952c1982354306462242ce5327183a01e

    SHA512

    4521682ae753f2510ca199459d178ec5361f212b9fd78e47343a73a7f3d92814c0bac93814bec46f7151d48d81419c9653a1ab0bcddb9c42b18c47bda1b98e94

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    dd5407014b978b053bef4a9070ca4c55

    SHA1

    4a583ffd3b4dbaada4f5f9708e7a759599972a6b

    SHA256

    f79d0af5dbbfb1cbea14cf689711d71b3eaeb1d27b427297f83f68d21fc60018

    SHA512

    2b6232cf39593dd1d440ef6eb7c14177402a1d7965f275ec865a4e9dd1aa51f404485b9a11950aa849fb8ca196c8e7ba87968a308c3fd17885af0923fd3e63be

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    8b2154cff03af3882f6a55cbc2ed43c1

    SHA1

    cf63dbef30b90c4975ba2ad703d565bd74ff0ae8

    SHA256

    f7995870e54b3e5329622856cd78981a0121175c52528c4aaaab5f6c3125fe21

    SHA512

    58bd443e9c42f5af4b4e2d7d921b7632605c9b8f0482bd83a2bac0255d91c06a465d39ef51ac90f813d540ad8eeebf47a3a8b9fa0af34f736740b9f1172ded89

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    36fce70e6ba5e2e236be4f4144ec8859

    SHA1

    a9fcb2f001ef1a8dc7a09cc1b662a33e676ad711

    SHA256

    eec91601a6b1d0fcedd0c885b72e1dbc76bfce4aafe451d81d68a1c79ccec0be

    SHA512

    33d290777dd40d549872683eae606018349cc214fc4ee7646ae2dfbb96ee88e3e39e64c21119db5f9a538ba0168d20ef4385435ea908b90c419aee7b97e6c130

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    050bc7f01b32f6b04e3aef084cbf44c3

    SHA1

    04c1194b389fe866e3cfa02ac09de462fd529a6d

    SHA256

    86f412de4a68d96a54efe244ed0ec602ead703636289ede11e5b3c1711ac2b2c

    SHA512

    060cf246acee7633cca471bc722e7be03748a85982fb030916f81765e2c1f5ee0af301c874fc131cdae8b6d595e2437a29e20ac7a1692881f8a18a1780f944aa

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    00328023b46f4145e2d5820c3da49d12

    SHA1

    62f232abe9601163f3e64628c4b9a98a1aefc3aa

    SHA256

    520a719971a1a12e92fead8c0b468776d3ec99213c122d91b8e0f69a924d819d

    SHA512

    e7675938091e20b91a536a73410cfe96e80dc08a40ff0af0fecb1b70ecc712afb323b86f173ee4edda2e63e0f33e519d5514cca3b404abf0d7303199b5f10808

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    dd2d677fdfad1ba361788fe44c1d85ba

    SHA1

    4890536287561baed5a2ff55e1191ccb9a659813

    SHA256

    821b7ed73bf40feeb50fe56e9416bf4b085b3efe79c3190b69859030608b7ca6

    SHA512

    77d813e6471926110a69c3b88d05254697d4ee20a2bb05ff9a0c45536858bb3f9d48e5242ef27b39aaa51309fa27d9b405d0ebc8ce1c1e798aa2fdfe430e2e6d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    f5518e037cb1f8e7aa2993c4498e2744

    SHA1

    7bb5b592fdcb53b174015876d7993f91acdd2e73

    SHA256

    abdcd5fdb12f06cef15ef3155547081c3e3977917861e6ad0b864bd70f4542d4

    SHA512

    8058f0caf54529c360f241ecdb4ee1ab6431b6737e082f8871557f20a5a3e9766581038d929dcbd4c8954e601529d17dea95de2ec714d8e014a7e1ef7f4d40da

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    cfff64ef10bc4bcb68aec167c5184e60

    SHA1

    42634a4586951f11c8ded0f766ace106e1e99a58

    SHA256

    7d5f1f526cfdff56314602914627c4ba5377898fec0562a727dc6b9da4dc8a15

    SHA512

    c75c8ba6d4cca9663a6aeefa07e3fdfdd2421acf8e695daf3ca870bbe89bd32efe9e29944aa8adb191d3e1f38be93992167b25c3d9133832a47be05abca26723

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    4917adb7c19f1b81eaebd88cc07e5927

    SHA1

    6ecc22f8be2e5f0c0f932c0533e44605c4a1989b

    SHA256

    1cd40697e75284e54fb48ea4001fbe5ee40bc45b1961b47bdaa3545b5e2b837f

    SHA512

    e517153d1565e6bda758d944c836e1687f2dc86b295384b44436a7fb019089ca322007533e078b350b3cc559f6573a84ec7369ffee26949d50a2ddf44e593fb8

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabD5F8.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarD668.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit