Overview

overview

3

Static

static

1

sample.html

windows7-x64

3

sample.html

windows10-2004-x64

3

Analysis

  • max time kernel
    136s
  • max time network
    123s
  • platform
    windows7_x64
  • resource
    win7-20240903-en
  • resource tags

    arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
  • submitted
    08/09/2024, 21:54

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    sample.html

  • Size

    41KB

  • MD5

    ae8a9ca5de6b85006c3ba887cfff379b

  • SHA1

    b4e70f61acb38c61e09af82e16ce2a96454d502c

  • SHA256

    ea7707faa126404266dad62db3f16bf9743dbc1ebbe0db10e5c951290a078222

  • SHA512

    6e53f06b7a996e4908a469a0b9b1b590e4144a2fea15024e8d246911c4a20fdb1bba0aec8da081bd5f69b6c4cb46321441cf047db8c0e582a4124ca19427e940

  • SSDEEP

    768:S/mh0O6I8klaJd5HxvBc3Z8vfWp++1N2HtJJ+VyoP7I8+bpfUldj+sMmLIuu+zy/:S/mSxIz0Jd5lBc3Z8vfWp++1N2HtJJ+I

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 41 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\sample.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2148
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2148 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2832

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          2ef9764ae5766473178d4bd727af14c0

          SHA1

          c975819435293fb7025b3cc31afae913bd81b860

          SHA256

          f00f2575b161fcdb502b3cc37ed09912f6b2de5a6600c680012f7f1f0c7a565e

          SHA512

          12ca4aebf65fa07b66d77e4a92fda8f26fe8619b6cdc16b8af3521dc3f8b77ea8e0c8358030ac71406a26782b91ee9d465d4165110b3d938a25cc61c61e9759a

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          51476c741f80a68b86ccaafbe0bd4197

          SHA1

          788fa98be0d2fb8d7a6a56e833dd29b01a3b1a05

          SHA256

          5601101b28365f6f28592d779b781cc62a053fc05b2871789810d47ac8ef2c35

          SHA512

          7c989f08b61cb4a219ef6e0a3e7de39039bdb30d859ab1a6a18a379bf277b78e9d29a22eed310b7630f129ad11b8d407ef83006764a10b34689e35448475d805

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          71a24e551cb3e3eb5b3842d655875729

          SHA1

          4bf0cd2878f562c5a18123ad62926eafa0cb0717

          SHA256

          d2e009a2c047140ae8071790cb1b761df4d66049ae6417a6f3f1a73b3af83516

          SHA512

          c8337f1023033c9495337ee19809fd8449f4a8239de3fa6fe080ddca60c475e8185b5b19b78ce76614166e95f9ddd6f9c747197934d5fb01420d65f302be871e

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          b4abbbda1271ae57cf3ed21d6872f72f

          SHA1

          b96665dd51973a90ea376bb29e83679cab9968fa

          SHA256

          0abdaea6ba5e7c6a376be5156cc54df9355788ad46785ad8404f31185f4da580

          SHA512

          78479fd4ef4d150977af00fc72c62fa92a802ce9ca221d7c50a0f47d357732adbc6e20f17174f6e2174e05b56ff5ce3794a5ea9bd53d966374b6a3416b7b9faa

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          8161737ffb53cdb9ac1eae287ac7005b

          SHA1

          2edc089fd0078aeaab63c1b8557097313967b04d

          SHA256

          18b00d933f515a9dca6d644cc1a886b3ec233b61ef7b756cdcaa8aa6cd7b3a91

          SHA512

          89b804bd6c2a342469e1df0a4c14ce750b12da42e3b634517171ba8e2081c274636bdaeeff57e97b8325717177eaebba208d98c78631fd9e60c2a1f659651721

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          482d5a81990fef6074b22ee50b5d4dc4

          SHA1

          e5d96922ad000f06afa3fa94f286e9afb6926e1b

          SHA256

          c84358de0d780e8a5f39e92c6b6c1cd435f53bf4ce94b0d3f636ef331eac692e

          SHA512

          d8b4fe9a65a797f998b3e344429caa0edb74d62cd79e42bf90e3002b368a44463465e4e39e36585c454af3b9d8cbfa5e98fdc7c51831dd0c0c6f20cfd8d9c5af

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          a0b63fb0b3603e33e9fd7c0877b4e38b

          SHA1

          67c2e76a05bc0d49036f7f97d434f0273ff52d72

          SHA256

          75aa0b6596d3c9e0bf2e663d4d433fdd775be317138ce0e7f11e54e1f7118761

          SHA512

          25468c3f16ad3385583ed819659331e035865346ee401fd3f8c9cd15ca3302473f58e8363cd7582394173b39eb63ec5685537ff8d95b5f87023067d90b24aea4

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          ef84a9f0ff0c701fb253291c79308b4b

          SHA1

          bb198003823f5e7c2bd7d097de5e025fbc982938

          SHA256

          34b8f7f07e6d194a9d4539cd085a39c527f01be41f760ec3c44bbb7125fd9435

          SHA512

          14932e612b593c43f1b811d3db74dc32a99fefa98950aaa9dc2b76c35fdecab0c0f950fddfbc2f467983e2dc06e7ab14d553bdc151d63e1cfbbf03f6b0378d68

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          8cde045852c13718ed161099763265c2

          SHA1

          3f3fa0ae6a346746ae9a82066afe6a0a87a35e8f

          SHA256

          2b32e744a0ca720c652d3efabec68c9b0c684f86819a073ad0a3d2ca6d1ad22c

          SHA512

          583a6291b70d3e8db98465d801449b3b81c6766ea0c9fae02b8e2e22eddee09c6e042a3c9b720fed9c014082bf5d3af59fb0de47279d988b483035a090f507e4

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          3ea7a4e8a08cf332befcd670c5d72917

          SHA1

          55d3ad99586966cf92da8d8f491929f019be98b1

          SHA256

          8547ada9a0dc9bcc9f79b22cc181e3347fa129b1bd09e07f07fba436221a7d1e

          SHA512

          f4b22369b27aa791595b512043733520b58004c5d3f482e19b3bffe87beb1d7a87806c0e7bdf0ab5ba84d1a3198bea37113c1783e5af680527b535d8fa82c17d

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          aecb86f66dcc6b362e9565c0586e3cb8

          SHA1

          2b6445e9e1b4f754652a30da12b1cbfeba1ad2e0

          SHA256

          8f82ce2effb406e6b11286a46039ada954e6f6005ec37bf72a7167e6300c16c9

          SHA512

          2825b974de58f5731026b46544d84f12378a24c5cb3f354ad3c5b456c72c6ea8babc241e145bddea7b133780a04c7a0d6331697904a9bc3d4245c1b3f8d03b7c

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          dcc4d07ed697c2b9b69ab7e1fc9242a3

          SHA1

          55e5b31a6df88dda08e65075dacdb21b94acdf32

          SHA256

          c325f7a718f240219b1e0d3a51cba7ee66cf23444421b571dce578fcc289cbfb

          SHA512

          c610bb06af342729f383d25d4f11b5ff5b0746048cf9c082fa41512b09258918f23f0b726941dd82622580aaf341fdb5a522baa8b420729c6635b19a21d6901a

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          31886ed7e502b65b7d7c41999d634a4e

          SHA1

          49cbb43553a19bb70cc86dbed9c76e64dd0e9e3f

          SHA256

          b8acae3794db3dc9053cb4e96af0ceddc1fe0009735f35d6c34152f687f50917

          SHA512

          bf39bf4049f07837f471750709918e383bad587011ada5ce6962b229ff70613afc522ae0ffaf16c3a814573d9f7e801b4254f04ee059d722958ad2afd09d4ddb

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          851c0922e76a9773bfdbfcbc1833e03d

          SHA1

          d03e48e584657587c29a193ba7f86c8893322279

          SHA256

          72ce775731de1710afda28cab2dbd5d48c4bd22351e6e085537518396116588e

          SHA512

          bbdb47e9d35d9921383a546ce1482c2cc8af470efaf4fea65290fe3374f57b8ac5c85177a730e4b017dfee788eb2a049329008f45c698353561793b00ae3c75d

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          3bc6ce4df2e537d9626d11d256d82b4b

          SHA1

          09f717430ceda0087f442b7a14fce1b5c9db449a

          SHA256

          b981b6dc1b718367b9438460d7da35b70e37f07483f6d943e6b674e50681bad7

          SHA512

          c0431d2db4fbee6ec4a2ca477cfb3501a16952a943adabac80eb76bcb84744278fc8f15e6386ce55519c797c64bb17ed214b0a5ef8f4a6e2e7f48c5448cbf70b

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          364914a4e027ba0a696d7580c7d19a5f

          SHA1

          1d92d414d52dc9e4f32eb4cd635b98f78de97314

          SHA256

          65345d2729f399bf58fa91c1aceb5d03b14baffa141c8a7c5d3623f58e6d87d3

          SHA512

          e3ef695024632260bb02b817bfcfcf9f02a35ad3439aab1fd3cf2e4045629c8b93c5546821829c3cab45165646b9e54a0cf9823aea66917a44f438e5b1c04d95

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          5cc14c8a9643aa708b8b798d257d4c75

          SHA1

          f8d0a3611d95e70148f6b7b72c597bc5786d2788

          SHA256

          b0c5f2fbcdd5d414274fe1faedec2a49a6e4d341d2be6a860ab194e435075844

          SHA512

          34206131eacf13281b8ec5fd07daac1d18495c9a2fb530637278527cf8ccdd2e801e307ba0430fac7e37c55da807e1ef1fbc61e30f391473adc037ad4ea2d2dd

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          da1c09b3ce524d421b417353ed217033

          SHA1

          d24e2159f445290a8be49764896bc3b4adbe3f2c

          SHA256

          57c9e31c26979077d68add7a27d792095329d9cdc2cf464e1f5c20145cde81a5

          SHA512

          2be7931fa89cc39bd743602fd3e10f66e671f11b84cdd1ee9f3c2f0bbb14cdb3abc63460b1871bd9494958e9a238cd6640e9e69d5f749efcdc8aacd93bba66bc

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          b6f39286c5d0dd3545abb2ab9dcbd118

          SHA1

          035cd03ef488ef1041d6b440b77a1a1ac59a5e98

          SHA256

          3a2648a65b109b965a082f988658594306bb2d458b86d50f7ef8be3778023697

          SHA512

          4a57151e4099b66c964d645350a78be760a2097a9c446226a04a3f99852723b6f263e5d816d9c6d0df844d5cb01a830da87783b5172e2214b8529b80158e850e

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\CabE5BD.tmp
          Filesize

          70KB

          MD5

          49aebf8cbd62d92ac215b2923fb1b9f5

          SHA1

          1723be06719828dda65ad804298d0431f6aff976

          SHA256

          b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

          SHA512

          bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\TarE66E.tmp
          Filesize

          181KB

          MD5

          4ea6026cf93ec6338144661bf1202cd1

          SHA1

          a1dec9044f750ad887935a01430bf49322fbdcb7

          SHA256

          8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

          SHA512

          6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

          Download Submit