Overview

overview

3

Static

static

1

sample.html

windows7-x64

3

sample.html

windows10-2004-x64

3

Analysis

  • max time kernel
    136s
  • max time network
    118s
  • platform
    windows7_x64
  • resource
    win7-20240708-en
  • resource tags

    arch:x64arch:x86image:win7-20240708-enlocale:en-usos:windows7-x64system
  • submitted
    25/09/2024, 07:23

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    sample.html

  • Size

    218KB

  • MD5

    797602fdab8a4184f25430ae68ae8c04

  • SHA1

    f1631f7326e6a8f5f4cc902bfd055f1d0ab06be6

  • SHA256

    bf91313af6a14ad18583dd6c548f263ddfb1e36e02789aa0b37faf4e519d55cc

  • SHA512

    d45c55e8466328354fe6003fe224e6cd52fc6b4ed5a786f06dc1bfdceeacb3050cfa56c8f0ce6a604e6a6b079e56b9f5a46d5a40663553589d0349f831a3f958

  • SSDEEP

    3072:Sjete8V3Oo/Y4yfkMY+BES09JXAnyrZalI+YQ:SjetFV3Oj1sMYod+X3oI+YQ

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 41 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\sample.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2848
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2848 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2732

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          03a636d92fff4603bc95eadf3201f728

          SHA1

          d9e2a81dd1497d50e523aa77838003694b5bf86d

          SHA256

          a293de47ba8e9a0c80b77d0e08d043860155e35259652cf6374a58ece4fa3196

          SHA512

          23ed08d1c98c0930c8d7b25a4fcbe4672538c3780c8ad879fd8b0e247610ddf4cd55b028092997a42f33d91bdd6cce9a2f26aa1becb52c6c8dd98004cc66a2e4

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          1de3bcad4411d053ec57a82f71f646f2

          SHA1

          45c2eb594ca4e189ec722fb02afb5f539150c6df

          SHA256

          143aa1ec10fc728e44fabcad3bd051adb6cf1c4f0e3e8ebb5c83b0ebf02aaa0b

          SHA512

          15a75f3e138ddec25e53fa260cac010a202119fab8e3cbd31b0e819edaf3feb8b3bf0fe6e354e7957d81dce856793c536fdf357f12cc347e044b4d6ccb9943f3

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          30605decbeacb71ad854a9ec66bef6dc

          SHA1

          4f974fc0dfd3b14d77529a029a8c591ce1f99f36

          SHA256

          9adb64fc57fc4e57e824b0cd68876214a54bb36db8752606c6473207773e18e0

          SHA512

          ca0fdb7a29000eb075326bd6b478178be54a3901eb37989c97ed9662f719051d8421450f88c4bbe74451e2d2fc3ba0f6ee8d5de1ed2584e27d2b3810a16f21a7

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          f1ec51a3c14cf3b228dc05899a214751

          SHA1

          93cc8020878ac80f389853e2044f42e1698f6457

          SHA256

          d82260f4f8efe2bcf0488eddc0386cdfa2281af75edfaaa6fa86fd34b9d2e8d6

          SHA512

          a2cfcdb8c27160d6f198c507d22af38fafa35bb656257430f7d17b7e998def0c7c64f48e91902c9cf640c31614c5f8890a2d409ba3858463b74225b249cb5c97

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          b9687c30657c1b06c6388553f00745cc

          SHA1

          9f527ab596529ce41742f48c4aacc0d29d64c885

          SHA256

          b79aa3a957c53e66822822156c0f0c980567f4c869daae134b587fd96f73ba5f

          SHA512

          3f0b61e11dfe0d5bc5da8c54b0b018c8c57621c133d9a20afa9959e7e68a7f37de579fa03787c899b61582855033d25a6e8344e96ffbac15785649fa06e8c9da

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          ee74d3d7a2c1e9781ae200e7ee96127f

          SHA1

          ee2beb0ccea31bbf270dc072a950fe51e9329e6c

          SHA256

          eb61ba80eba39358afb37694f7e3e468f17a6f836ee7c71bc755865ecfb995e5

          SHA512

          199044a7ff565aeeba0512a32c57461bd1b268ee66667e85e62360d3e4eed8367f67046ab95fbcb66e8566fc82e83e7ccca18f2a188eedec46bcbe11df2d176c

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          dfc43f181b54feb60b118a51a6c5e7b3

          SHA1

          ac7ebdcd18b9efeec0ab516515addf90503b0dbc

          SHA256

          616aca43b2ed9083e65b5e3bf9fefcc09436b0f6998859c3e53df699a4209c9f

          SHA512

          6f878ca7438b1b138fb4e669cf6b6a01d0831a7b70627d0e4b5985448c2a7236db916e220bf31c9a73777800a7f30189e46f1d8e4da655e79a09e736f5ecf5d6

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          fdd73d44c9dd6712c7aba4d6b02e8b10

          SHA1

          628888a1df38e6d1069a38553ed0c12c0ceaba8f

          SHA256

          e02eeadbdb7bec5553a13cb24df59bb2ac9bed96a28d599dfa7ca038911a5b18

          SHA512

          28b8186695806cbe3587ea9c71ac97be67cd7b1165fbfe3c82b6ada194ddd6650f871df180c52541c1621cf81564b58f396e3564c0182c95a63188094f9ca1f6

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          138797c98070db1bbb72d936456c72e8

          SHA1

          e25ca1ad4ad0881ae2933f4d8622d142365d6df1

          SHA256

          6dd103c68b82ed23dd0a044012a9387671c28547d4be6a650707ad53d1abe01e

          SHA512

          ce5f8eb842e01488fac16d596d8c68d054ddf58ab8b673070006a56269ddca664bab9641355fdc10cc44649a59d94806ae94e925b7cd98b17f2f7585626755c7

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          1e30e80d9bbb82366814ae77baff7a5a

          SHA1

          8df3e90d804162df5b3ab30be8288d86b4092ca9

          SHA256

          d8e1faa94420220935fa73ae032ff72de6df76db16448c16ce06781c294018bc

          SHA512

          66d9355de9208561c48bfbe713ea20c88d81143fb524ba69ae4724cc99b498e36c4fde173c93f558819ef19b0d4e10a284028f6dd22f12f20531a8c58b38995f

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          ef250bea945887001f9b338b34233106

          SHA1

          1bdcf13377c26919cb1f5604dade86774e9ae7b8

          SHA256

          e097e0acae2698141cc1a927cc0125b559d76e1dfa657df5f9aad6a74672d271

          SHA512

          ebc43e16604e4d901a8f241889a60b1f58df0d0d0fe9b2b0a98e1545afd0d51076e55fcd576302e2389460c3ebd4cc04d8529f0eb138625c95a2e548105d99cf

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          6acc574e43b3104b5c72c2f13fc4d4cb

          SHA1

          114b3b010e7f1e1c8bbaf8fcda0c60e0547056b3

          SHA256

          cfb7d6ef676c3ab10ad8eac89a9265acc6643457dde9098e8395b1ff7e3ffddf

          SHA512

          5636c6a89bdf212a9657c7ea110eaa285a81962940e51681fcd6c1396b19ec62200352916eba7a3cb2a8642c742f29558273921fe7b4bb36fe3d548b78da0c91

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          efcd5c004dcec0a6a9e782ef50a8a80a

          SHA1

          431c45ddd71421fd9f83e2e6db74ed8954664f39

          SHA256

          cce88ebaf35ee3ef4e1dc502d52c88e192da8e730cc9393c3cfe62630ba8fbbe

          SHA512

          e4f9fb528b7f4740099153927eb1bb04cf84db2ddbf866f9f4f8f6961b94a94e410b96e61ef9d3c96ac67f4c59da57d3bf9ce0d1eb4182fa780931cda26dceaa

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          320eee5dd91505a050c2b0e83dc816ef

          SHA1

          e98b2345abd6a8bb85b28f709711b8861fbec57e

          SHA256

          681af0d5ce120e8369f40f38761f6d8cba893f1dd17f94fb4fbe9287c47ee26a

          SHA512

          460690acd3b3096429b2a551b8d194cd2f702bde26c48100c084d28865a40a20ba30bae0e469be8dd355b45d4880b1882ac5b6cb7f1215dc5c333d093f20cbbb

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          4bfa85ac96bcd64464a1bac7444678f1

          SHA1

          37db4d7daeec6e98977bdbbe12fa5f38d1b2a8b9

          SHA256

          74378a0701acaab2c9a78dd1da80ee3702f7e1c812733838fc98c45dd5013058

          SHA512

          552975baf68b758961c0bfd2664d4a4c7b21c97d0760d51316b1c81a3d95cee4b202d36a899d83cc3e7ed080c4104a5c7b4c22084e7f3bb467c1066ddfcc9096

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          8b0bb40edc0bcb490e8a2372a7e60cfb

          SHA1

          ba37bacaa5c47bb40f398560925f7d04824fd7a7

          SHA256

          945e33b76ceaf64f9925dda76e9acce8aad1caa6c74aa60c310fd3a09df66ada

          SHA512

          b9988a5ff8a903245930e0860e629172a3e1ed26620d6de278f33bbeb8df60fcc3400a3a17f34623ede068d471554f82b5a3185cf8c3f882caa1f266639f24f3

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          68385c19a8b0459cb06de959e934b210

          SHA1

          290da2e9dfb5f1e23f482fbca01ed040f98934e2

          SHA256

          5baf2e843195c9e6755614b0791bf14507791dd81a941dff130cac6407e044a4

          SHA512

          3b339366e660ccb067eb29b17afbe7c23c60ad81ac70705bc49c65f805d605660dc59fc8f09942380ec02fcff5cd6bd13ab5a98f3aa155cbc97c960308a83954

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          9a881529936e171d199c2e71d72d72d9

          SHA1

          35ca44f85a9545d5eeece950e5bd8d5c8b99b998

          SHA256

          6ee7fc661c50f6f31f6e7c07b408fe1a3f0bef48725384f653e1286c52a14306

          SHA512

          179f349c8b1d79bcc337ec6489fa00304c5d22ffdf4d0d0a4466b3fe75f82a0826a10819a170841265351565a761eb5db4652f79fd4e65a9e81ce8c7ae5811b9

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          4a9bc00b073e8bf35d10ab2f7cb1395d

          SHA1

          42ce1d753e99addaedd2d6610c4424acf7953657

          SHA256

          5f0b0895545d09ffcb0e0e474c2197a65bdc7ac4d53c5b722f2bc6f095f3d2e9

          SHA512

          c5cda502262b3fe9047ff908bf1c57cceb30371347fe0e96a060770898fc116b9e58aea7cf7f36099147554156325bc353ab73b171321014a76450a54d843ffa

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\Cab65F4.tmp
          Filesize

          70KB

          MD5

          49aebf8cbd62d92ac215b2923fb1b9f5

          SHA1

          1723be06719828dda65ad804298d0431f6aff976

          SHA256

          b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

          SHA512

          bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\Tar6697.tmp
          Filesize

          181KB

          MD5

          4ea6026cf93ec6338144661bf1202cd1

          SHA1

          a1dec9044f750ad887935a01430bf49322fbdcb7

          SHA256

          8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

          SHA512

          6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

          Download Submit