Overview

overview

3

Static

static

1

sample.html

windows7-x64

3

sample.html

windows10-2004-x64

3

Analysis

  • max time kernel
    141s
  • max time network
    123s
  • platform
    windows7_x64
  • resource
    win7-20240903-en
  • resource tags

    arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
  • submitted
    12/09/2024, 17:38

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    sample.html

  • Size

    41KB

  • MD5

    c885db9cd39667225cf36a0c76b1838a

  • SHA1

    5306f4b58047854f77e035fcea0aa8f363b299a9

  • SHA256

    1f9b4cdc66144b0b56523605a57aee82bc4ef4959a0f8a10e4756a5047b9b418

  • SHA512

    c7d0873a508e17c049cffe1cc54973cd4cc557858fb5868dccecaf562a349d9d304ea40aee150bfd32c2275b84fbf0ee0c037d226763c67b9b4070850ac63018

  • SSDEEP

    768:S9mh0OdBcM8K+Amb/DJHW1kWzOkv2Bc3Z8vfTt+QrApPiJ+rmrR1GnN+X+YbwxjE:S9mSyj8tX/DJ21tS7Bc3Z8vfTt+QrAps

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 41 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\sample.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2440
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2440 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2016

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          769f7dfd6af7fe75ce105a896bc4c769

          SHA1

          60e456e4cf3aae864803d0b2825a54fc996226db

          SHA256

          b45fc3f05e644e2d871235cb175d8ad975fd38e73fc834193862c2b0c4dc197e

          SHA512

          a2075abab8e2841663e7c28fc6ab4c4b8a0658947d1fc4560d3d7aa12d8c25f7cf7c9f541f714117d3b0c0dccd48e2dd954a8d656a8034a1194483f2fb346490

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          6b765286ac0073650ee9e771241a653a

          SHA1

          13e80d3f01328cd2839e0fb235dfa5591ce81eb3

          SHA256

          1f772378726a6e774ceeb63d38fde7f494b53cdbe86b8f5a72499ed4dc1f1720

          SHA512

          af0ab8c7b365b40fc0f9a297977197ec40ff86679d493b6775fd998453f7d7ba9fcacecbf60bbb45d5fd60969d596efb04bd70cc249f8e87a224bc08d1704cfb

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          6559067d17d9340780baee207751abe9

          SHA1

          aa4bb7447f1a43939325a69deb049a3a1265765c

          SHA256

          4e8a6dd09feb9a3826c3477821bd5af72fb5d9ecbda3eee44937e96dd4a8625d

          SHA512

          85aa57e6d171ee206d980a1c66ba3051eabaded19282a301e0d41e6a5af8e8c8894dc4412edf0e22e34aa080de8072638f0ff26fcacd1f32ff633417f77439a8

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          61a05dff21548b1b87de7e2fc55b8d87

          SHA1

          500726cd18df45dceba032b970ad5b0abab979ef

          SHA256

          ac88afec399d45a3db0756420c104f7479488241cd23ea19f57f02ebe7d72328

          SHA512

          2f55d50a81fa753e6c7f408c321c0810fe67d9895fd54794cc60aa6443ad1007ce8a2805898c6806addfd68cacb6b38089c0ebb86a37de7ee727877fad9c58ae

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          bd30eb0e0b3a88d7cd15be6e1a046beb

          SHA1

          b4fcfb56fa05aa4c61b50670225de8be32d83810

          SHA256

          6318abb53a99ff5bed2fa46edbb81fcd9a6caab3058664ae803a0723a771035c

          SHA512

          5392431dd4db07d56c0059eaeca19879432c66ee904fc067ddfc4c166cf664ea1c95f98e14176ca58831f9b109060e463d7153cb836ba37bf014cbba340452be

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          28cbd7401777364333123e14d63c8f40

          SHA1

          d5d0aec26f54076a19b6d255777344b8dfe68e8d

          SHA256

          976d0120479267eedb212953ad507662fdd7ee80f88d8ce2edcdbba81c952ec0

          SHA512

          cc2acbfcc53b9d7447d9b27ea41604567ccea540790e1d762bf783ad9ea894893827e0bebbe1f870768c187006eee5a148567ae922645377685a089bac0d20e3

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          82585fc11970474f7a22a4a8348d0240

          SHA1

          f6193cc43d97324b73da3f51b5fd6ee89fe951e4

          SHA256

          04e6a154a7cd66cf3f95d2172f1752b0eb6ecfea773a907a1cdb25901af11fad

          SHA512

          7cb93c8ca7c85e1ae807241bce4fd7622b3d0b1987c1be08d4cd7709eeb978df8a335ce50e9f7211a7c2f6c9a50aee9b00137b72a566c6a53da93f928968d0cd

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          28f531c2a0f09035456508c34515a11a

          SHA1

          bfc212e3fe58ce1b912cd697b1f6c4e47e9eb824

          SHA256

          c8c408e2e1592602a02335984b713be40ff10e99fc0058c1639c1e8db471d76c

          SHA512

          96c792d21ae35cee15830514ad96d751dbf4a4e5d11597ef19b0ea887282de1319afd72e32ed5021500bc11c73b854bd037c40dbe7f3f1c6980fc9d914c7f9a1

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          13b95aafbb9b05068e4c66d4e9d0be48

          SHA1

          7558774a310053562845e1f415d5040963844281

          SHA256

          ff290b2d308b7add0121d7bc4781eac2bcc1df146d27ba37064fdcbd5fb499f8

          SHA512

          f4d6b0e1e630dc42f7b10bb486abdb775d351e592db770499966dbcf94a55fcb185fa39b248f25fceb56fbafcac45705780b6ad6609e4912a7dcb3b4d2aee5b5

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          e366f106af3446e040c2c35128e08533

          SHA1

          969beb8be0b217dfb164cbc841cc75817ee0158d

          SHA256

          6b837a0aaf9aa1af93d8c42b4525de102a59ffa15ae55833d4e8cd62a86a6db4

          SHA512

          24d8661f4bbbefbaed64ac71a91d3b3a34a4be1fd7fd67829d60e04841bb2efcb618c3a65c99f49af324fa6b754d3000d6e2638b09ecfc6fc7d7fc373a7df86e

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          8a45e0be74657a967fe90d12cb61010b

          SHA1

          f0abb930da4920df060aa7c9857c45f61c77d277

          SHA256

          701aa8666506e3210e696564ff702e633e6ce8be098e99ed98cb5bf9d0cfa26f

          SHA512

          4c586c27a967d603e6be2d925fe94021458307c58239720ff592220e5f27f9e0d14ab99ed72ade6dcb9efe2ff5ffa8a48b75b707456eb8feb4249dd54b65e0f9

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          0a619622f536648952b25ff05ae3d7e2

          SHA1

          edde47510195f6a34f8e73fac4a6565204456539

          SHA256

          f6086e3e3b83a6cc0b9a35e673591eb378a313b6129c2883d4c54cfbe167f94f

          SHA512

          42dc11b6a4888219b51292d7df0c4fcb27199959fe6286961845a1a45c00e4c296a3c437ae12cdde14fede43fb6c971b795befbeb220f9ad62fe771bac2871bd

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          7477563edba64a53d978b76388f0470c

          SHA1

          95901dca602c2bbeb6b1f1f6f96b75aa8ed90304

          SHA256

          bfd0c1c0022836397ca6ce462a1ffaee9a8466d72e3bbbefacce61105a99474c

          SHA512

          fff86b7f6f040bb48a6009b558236e42c452d9962b794d78acdd359508c85a36fa492e5afac6aa76ac57670978932b2703a1ab44693e0d364b570ba4eda33cbd

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          f1b99cd5146ea70335ddc8d24b847e1b

          SHA1

          ef48a115008e566726e8bcbb12303649a5f78a50

          SHA256

          c222d926b792ce0210eebd762140a05db2b79eb0383ae4b3470ad09ed7154eac

          SHA512

          5824e12236dea822ee06bf95d9e38ed617649ffa172e8bc9457ede4d3141df52e296421578fed115576213ee6174df48a49c38a56e2e4ea6010c9d0041656054

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          f55f28d242e6b644ced2bdf8e4864f2c

          SHA1

          59cac8f936972806ffccb05090ba5007ecadb86b

          SHA256

          e06fc26da088da9b695d4a578f58847602476993e89890678bcb3c85096b5b11

          SHA512

          49ee7879097dc2cb8caa617a6fb1b9a77b720ef56bf04cf4f8d0a7d9997ce211c115b9f2006a207cccfa2eff94d10285a095f8ab92f0c3b357944f3ee880574d

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          68398b590baa7b67098fae7bc4769a79

          SHA1

          782b349080f7407826e21755ba6a3d744a367a53

          SHA256

          530b9575dce2497fc0962e527117751b3a9ac617ff4c300951013b6c5fc4696f

          SHA512

          b501c3c11e7d46e0c56885d142ccb8eab2f088d68bf2d5a58301f56f2546f95bbc87a54e0c36857e2ca15024d7f037591d26687cb08c2bb9f29e65edb5f39d08

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          709d0da70c4b36361aad1f2be24e3656

          SHA1

          1bfd192b6953b91c3b69b1a8c0e09429d85a3576

          SHA256

          db0b2f173e7bd1e73a4b7e119587db98d3b90ed118d94f419b22ccc77016b2f1

          SHA512

          528e033e8ab9967b0c568af97e66be822941c6f046a154c795edb02f120dcb858a914f945d53c208010e0addf431fd222ada4c26433fe9526be4eb879c24f97e

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          58606a12cd5b815c49981b214f2c516e

          SHA1

          67f67cb4cc6b86814ce96f53da2dfd345c4aeb4f

          SHA256

          b511d7ab3e27bff3e7af2f12bd856fbe84f4bee2d02a316dcb8b754e47e0ecf6

          SHA512

          38ba30adc5ed335d25d586716363fcbcf77b0547bf156cdb9e63b78530e2d16b908ce9b993d325fbe6a8cc61b1933a90df613d8f4d16a0c942edebf4e3db11fd

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          13f176be648d1e3e3a9fb96a975fa808

          SHA1

          e5945cc9cb1e139c9ce4f164e6dcaf773e52b490

          SHA256

          ed78be42a83088b1d2b43c7e42db4ff1834abea72e67061ca40dbdaf1f27064a

          SHA512

          d93fc51f2457a5a2c2d6f297a3f5eb7ee95581decfe8efb3119e4cfaaa0a00e8a115b7d2f41c14b4b97d3d1d5a7e1d9c555f369181d9206d11876405ec8125c1

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\Cab875B.tmp
          Filesize

          70KB

          MD5

          49aebf8cbd62d92ac215b2923fb1b9f5

          SHA1

          1723be06719828dda65ad804298d0431f6aff976

          SHA256

          b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

          SHA512

          bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\Tar87DA.tmp
          Filesize

          181KB

          MD5

          4ea6026cf93ec6338144661bf1202cd1

          SHA1

          a1dec9044f750ad887935a01430bf49322fbdcb7

          SHA256

          8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

          SHA512

          6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

          Download Submit