Overview

overview

3

Static

static

1

sample.html

windows7-x64

3

sample.html

windows10-2004-x64

3

Analysis

  • max time kernel
    141s
  • max time network
    118s
  • platform
    windows7_x64
  • resource
    win7-20240903-en
  • resource tags

    arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
  • submitted
    19-09-2024 05:46

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    sample.html

  • Size

    41KB

  • MD5

    5ae4453f82d97ac0fcd7b5bd503f8f76

  • SHA1

    761f9d3529466bbf6746db9534027c4bfa2e9a42

  • SHA256

    35c9a888496bb4ac5586f8574d689270ecf0142abff978ef6f24dab973478a64

  • SHA512

    956489cc7a3f560b45e182dd768f0db6be9444d1a8443527124b171b2e78fbe02cc55ed2e272f235d43049fa7aa432b0dfd3ac5bb86003944b02dcf35543bd8c

  • SSDEEP

    768:Sbmh0OG0m+2XKS2wMJcm2ZyBc3Z8vfy4+MYsm8JJ+LOcQHFh+GOAEf/j+Onya9Lh:SbmSyWKS2TJcm2sBc3Z8vfy4+MYsm8J4

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 41 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\sample.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2088
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2088 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:1800

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    9cde461547bdddfd9637486b8b3d656e

    SHA1

    231f29266f0ac434ef19481b485e124bd429c614

    SHA256

    8502582d1005e4a22ab89f30ccfa4c0d0fb0a01bc9d5cf66fb13eaa8f7fe3f1c

    SHA512

    dcb06f387967096e825a797b6b002e71c9701c689fc283107a3818893992f893dc40226b517a4fc8fde35ac6b2d19a8da4fbe96b78666151e358ae6a1d18c75e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    900fd2130b609e390c59884ec0dfdc12

    SHA1

    ef50ac19adae8e0db692cbe59d7b6d1386422202

    SHA256

    48db1d39efd20bb2ebcc405ff0e4927692807b60cd13fb151147ea75824b1899

    SHA512

    c8548f0eaf89dd550f68510c6d6e849a51a779c4bc70530f78b7837d80ce1e22d76dd3fa0d919a780e172053d2066000ea51d13800f6a9bd229630dcadcffeda

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    2a6efaeaa6be5ffb8f79bbdbf0da2615

    SHA1

    d7b1792b8aa0d3f8fbb0611a096539de0548b257

    SHA256

    d3a53d1078d172bb2806136f3ea3e045e8080bf89a3f520b634c50b1a34b4fc2

    SHA512

    ab396e7e4ecb19299e7919a653e73e8638a532809db7eface65087d9e2a05ac6408ab6ba5b3af000972579f3ef02592cc330cc90a6b0b7487c55166e5c5f79e0

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    9b4f6289e144222db95892091cb0ff6f

    SHA1

    11bc151ce553e43ded67ce03a615661e1586ab24

    SHA256

    a1567a7d926eab451adcdd540c377ba6bdb235aafb657e5a19771111fe21241d

    SHA512

    92332f27141129228fcc24742d06291730ee7627967ffb950ca0b80850f6832949dc33c10f0538b79b1c1e00fb5f4d21bddd0ebaf17933315b34f1ea5d1c8e56

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    6397ecdec63f82df5033dc2614456493

    SHA1

    f230a56037163e954f6708947039db4734533f7b

    SHA256

    2d59fb94d73870f3ea3cd2c43f7e75b2b30d5c4a43088e8aae72b92e84c5fe22

    SHA512

    1d70ee4c3479d858b084a8ba6debc80cd99534ff1417289aaf7687cbd7051c3ceb8dc6f728d311f14f0fdb66d635d232ce2ecc65c97d7b5547100194be250ab0

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    61c2d7ae9dee8c9357ea77801c23167a

    SHA1

    4d03dfce21c4bad34374f2d03be45cf39dcc2444

    SHA256

    c8bc62488d7015ac899bd59e607dfc20565fe3cca91e3433f3f9010d7cf42b3d

    SHA512

    5f9dcc94d294b9c98479cb218d7dd3ddf9bc3a109eb1220bb10ba008121a4fd7006e26892bfc395446690a20c14b0e96674b1bc2c3302d789266394c115fab38

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    fc5f39e683d02d6a8ebdf69dab08dcd2

    SHA1

    ae92bd8e86108883340c3c1c15eb42db28b261b9

    SHA256

    25af40dc1ce76fb0b0ddd64f2f42b19245073d62ecfa70626553a389f08684ed

    SHA512

    fbdeec10868e6031b69e292a2b48c1f7a90dba51dea254e72d4907495f2cbf7d185bb03c7726770225e86696d168bce028ed176e0bf718a021c9a05f47a2166c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    7816c24e5039925c791cb7304b18874e

    SHA1

    d83ad3f0bf365221619a2d614bc0d6479e5a4c3f

    SHA256

    a6d17ec98c202d1c428f27a515a3945874fe464800b310e05f13c23d3fef77a4

    SHA512

    ab66ae9a50dbc969e27e8e9634c5b94e7052a5541a66bbcd413a76553b99c39e0a86d417a0d6788fb372786599290b2ba66e1cb736bbb8d25b02e7658968fcd1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    aa0ce2d1936cdd03a33fdcec5f0fd74e

    SHA1

    e13f63fc7239e5bdc5882a969939fb675a753cf5

    SHA256

    9c5528bc2f881d54ba4c9d9674b5bfe1fab2edc258fdd9f2aacd857071be81dd

    SHA512

    fe8f2d3240a2cd75c9cf9f5e321cc2eaba32c4aa3047274b04461a16319bab68c756aaf5ad2c93d841cb8547194408e43f7f5ae9c39ddb872ac4b8125e708126

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    1c1f413493864fd36ba17be84c63ebd1

    SHA1

    dad240ccb7172c69ea081d93612ba61a28319381

    SHA256

    847c80fff7310431ebe576d22bae95e37b54f15fbbaaaffb7b36a101c8e775c3

    SHA512

    205eb3ec8bb74081f85709d6b8ecce3e081d5e0f86c171af92509f62d09b25abd0d00c3c5f259d9aa131cc61dcbc650e747de656175f6a95d74e8047cb1426e8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    5d59cc0f282fc1f7ceab58ba55e87a34

    SHA1

    787cbd3268fe8c298e3165c183546d9ac9724def

    SHA256

    901fce7fc6971ebb0cb70769348fa11d6a4f3d80599362bf7c330945220afb12

    SHA512

    c9887345ce780dd04a5ba3d27f5fdcb9139e06ea276c5d3e53f446aa17b7fb94abf0d82113cdb5d9f73a879645d44dc4bbacb56c5fb5c36d071c3d40b849737a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    90c08106d319f0a4d661d92a650e6558

    SHA1

    723abca7c9ee39a29eb1933e8ba02c05ac101772

    SHA256

    a49f59244f8bf6606332c5e3c3d8ed3e093a57a6da1b772c1a898bfd95f51ce8

    SHA512

    a8f0922ee2e72f199fbb98bb595c3e871b75006d4819f17cfd0d5e5a63413e2c83781b36d17fbe4c9b208b26bf4ae091d210e8f0ff7c2e88ae3dd396840335af

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    1b1411bb354b81a5fdc314c70427e987

    SHA1

    eff5e8d23b1f6a9cc94512c750bfd0158ee6963b

    SHA256

    e4e224ef5daaba070e7ab4d8ceb00b5e1c349b28457e98b712359c81f0a4deb5

    SHA512

    dd67c09b40df8c00b0d86b4f08a4797f524e3701e190439a972b25e69aee8bb482da1061982366af0f91ab61c2a0ca2621ec8acff6124c67ab14cdb8f326154b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    3aad80f3523bd115678e98ce08150e1e

    SHA1

    520e2c270523c6123833d3e147cc696058ee7441

    SHA256

    050ce9e45751c0fa533cfe36e639d3c93dd1ed76d0e1d528d9ae4cfaa178a3b0

    SHA512

    eb448b5de4e340b5ff230713f8fa5479637ef91580830ad58586ae70739d1c55dc0cc390b89b0b43a599cc133fe64a3e586258ffcfbf48e93e1b8d316575c677

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    fcd181c635054f961228c79bfa09066c

    SHA1

    3a9b951803421ace8e968e40dd208cba95a30ab9

    SHA256

    45c962d7c53f518715a74f3beab554864fe7d2bd61b778fa8fc4fd527dca4073

    SHA512

    b0483fd99b64ec32653ebf172bbd65202a91f86a59cf6dff6d07abe7490f37257ae1676b14be75113125784f568a2db31a3ed5b62355aff110fec0bae5687114

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    917790510bbd73e9beca7a4ca9c0ccff

    SHA1

    dd068b00d35921b69529db49289c4c06206fd3e8

    SHA256

    6d18374bedb1088d284c77de5ecd58fb17f88c1e12992d3ef196ccc1a90d2244

    SHA512

    9d004616ddd7d1ee468276a6f77af7d1ae73d017cba6f22224f99a31c0e34c09f844082a5ae452bf4636028d0bc767c915181283bfe0c0eb064f01b0e16e9821

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    9ae65fdbc780ad7e7c70f6865beb688e

    SHA1

    a07379ab467a1f4dc9ec805c3d9fddfea702e017

    SHA256

    6cb529387a7e9db02655f9d7cfc5f56277fbab402ba4d827de8c0e1517d5a3cf

    SHA512

    0c6e8c5861b90ab79306da6839a9cfee5de627de31715fa4816c166b05b8e14cff0e2af04453ce113b905041a74f6bc97cfb40fc77a6f2b9f01636cc88b5b5a2

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    1afb7f93b591ea71a04edee21b794244

    SHA1

    83c4a72fc381386f74e060b74170e6a923925ed7

    SHA256

    a53b41c528d7b183bf31bd612276a149499a0293dac87c05b7e724f97bc68536

    SHA512

    c059dcaeb1e8dda59cc68aefbd53a2d8f020ed5b9ed578da45ea32c01be679f01e70391782eae92f48a65afe9e279d94e961035ba02fba4eaf9378dff07875ba

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    f77448c43a4ba97d9fc9d3fa0925d9ad

    SHA1

    547ef3b65d82e428bad5db2305d2cbad12b2b3b5

    SHA256

    da043d6907308e14fcff235bfb87938a5e83fb21c9dea284a502aa078a5aa234

    SHA512

    8d9016b03e246156d2d0fb8cff7bbdbbaa820bf472956e4b06ae05ba60185b0fca0bdbf511355dc7bc0786972eaaa0f912f8fb2d632586ad2210fec39c7f3c21

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabC9B7.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarCA27.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit