Overview

overview

3

Static

static

1

sample.html

windows7-x64

3

sample.html

windows10-2004-x64

3

Analysis

  • max time kernel
    138s
  • max time network
    126s
  • platform
    windows7_x64
  • resource
    win7-20240903-en
  • resource tags

    arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
  • submitted
    25/09/2024, 16:27

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    sample.html

  • Size

    177KB

  • MD5

    647e8be91abc9f046771b5f8f358f43f

  • SHA1

    69b312338fd4f8508f7ef6945ff8a8a357519512

  • SHA256

    60c10940b7fb591eb8797b3ac409e6e82c70878884631815a379cab32843629d

  • SHA512

    2b73814342121c3844bb8cd3cca6c912bec673b1aaf52e246a0236344c728dbf365db352fe2cb7bd50466d2d9544cbad2fadf67bcbc2f083f6c27d4fda7af4d3

  • SSDEEP

    1536:CBxHKjmvxdAOXJzd1mm+Wgkc30+RowVoXasflx6YxxiQDOOTLL:SxHKjMxKOrpgNYeUv

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 41 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\sample.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2428
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2428 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2432

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    c51a84d7c4e4a8b00c92b313389bf847

    SHA1

    d7a8bfbdbf74b600b78b58eefd6278fa2b5e0fa4

    SHA256

    0a89c0c9a86844543fea2023ad6c4679019515a097d58c20ffe345e182ff7c65

    SHA512

    6c1e19369e96a2323b4edf666bd192f41b271d0fccac6f2db63542300573664d6ac51cdbb700088f8e1017627949ca1a987d39642dc9f1da1a298346d2068de2

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    8f255ef4df49bf0ac7476bca609ffc6f

    SHA1

    bfd08379e95ec1b59fa9d0e1c81663183324e0bf

    SHA256

    f245b56093854e7cda9f3e75f4a07856f188ebc8fedd713bef8af80e0a7e3e9e

    SHA512

    f9e6d3165fdb55f0971d35ac588a3517fd2ffbecca7e9fffc78da479a9de97404171f73f793786f7326cca30e030a053e3312d9b4fb4cdc2437f1fd435d80802

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    ffb6aed6e053c0bf00483554bc0889a7

    SHA1

    09d6cbc4c8bbb6d7f4210b42c288c10734d3f983

    SHA256

    e5cfe2f8b413b7309e93e1dffb25a8f0d2af4ecf74340e24e86f7d9ff2c202b3

    SHA512

    95fb56271ed7189c8187fcfc93a3ca19d8c9e552e25f4ecffd94080114234e9bc009209f1b0d8bd19036f9533f1d358a2f8fec090444f0c7106362eb69b1f117

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    2dd517cd0bfe6a4d74dd1cb121b8873a

    SHA1

    407631424456ede6bf2d6c9707843cd6453345bd

    SHA256

    b57e8d6266b5940a3fb97381407a249e810d756c7814577426ca66fd1602fde4

    SHA512

    befeb5e786fc81311e48fb325f9627deb2457c1764afbcdec5da31a43f974fb96576a61bb004a93d3809bb941bd616048f34bd95324d67519dd188e1a01a8b1e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    da4d4fdbd2d4aac9540a0db21424b5cd

    SHA1

    68052c026b7e45a6fd0fcd08c409f08fd195db64

    SHA256

    2da00051b7ff5caa21b1457109b02a767bf9daa8f465a67eb9d7821596ecde3e

    SHA512

    328299f3fc78fd5b87177e4f4d460b1831f53ad2680963362a6b63af020e929f69458ff82197de9d7d22b96263d46a0690e5737c4dbf455751b9fe7e2b7c5b6b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    0e069d452e1fe75f708a0b8648d8cb8c

    SHA1

    3261d02acc63cf6f727860c9a8190e621033e21c

    SHA256

    a568eae69f99e41cfbd5503dc00f60195d73d6734d1728901ebb6432b3164dd1

    SHA512

    ce706187816e8d0a6643879d39abd4a297bd50db8bdcff81a10a35dad27e05a4ff8b9d9da3954a953e9f5adfa9b8f6b4e4668e485c5ffee3713914c9f4cfaa05

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    f86a7e11b7471d3adff851d5a43a1e06

    SHA1

    7c3e08f636f30d2a58c886f38a21ae7c51c364eb

    SHA256

    b80af326993ee9af0107b4ced2da1e9abc3671fc1995f7bf3f56002d76079a58

    SHA512

    7528d446ef0094f9117d8177d5e12cb5a0695d84053a30ba5a85c9ecb762c8a105eac7752f4f61fc7d77ec71bea1fdaad79a4060cf74922483dba3c617d0ac4a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    2950e72d9832a5ee9e42885ae6830d8e

    SHA1

    31726d7dec673d445d5ec7447da84e2f555cd05a

    SHA256

    a7d5a9263e56a8d1dee691713c66e0472face19277b6358ab9a7fb0b8b06b8e5

    SHA512

    59896fb0d13ddb9b84f7b73aaf57a2d3016168d8aa02ebfe873e89c73acda316d2c3962b631f32d39eb1a298153a031a798bcaf2e199be522f0b4cbcdf91c10f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    389a5828833ce4ccdabbb7c35102b666

    SHA1

    ee86a5e0ae6a8f0a5745fa2e455b68cca1f37caa

    SHA256

    91a7acae7b889ad9c8764ef48ccec450b445cca4e9e3dda1afb7da14f15a3ad0

    SHA512

    c65936cc1f516e268d000bbc96e541179b4e4424c1bbecf2e831b10723a4d2e3aa4268e586b05d3ca168df5b9e8615e57e3480a0f6d702ce79fae958855e804e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    b833e4ca9529c135840a21c6a9fe3f4a

    SHA1

    7e8e1d806915d8ac6b2d6232a06eff54b824b66a

    SHA256

    98ff91c9bd347ff014e9a3e5f76e75d5b60b627212a16fc9ab48e7df7c0a4404

    SHA512

    597b50e24b6ea59d48f38cc9515c108238ea81a307eb97bb9adb0cebc7030556cac0566ee4a9a254d6f768272e8e57da6071510ff5176fa3732172329d3e2236

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    6a9f310a58b33730a7c5ae07ecead3be

    SHA1

    77d0b7281aa8be165b210ee0a1476df48321a255

    SHA256

    61f2cf2f0762ced8d23cea9caf30e9edc80e2039a2ee8be0f093e72e8b6b345b

    SHA512

    f891c890163ea5ca0f8fea8830c68b54d1956b836c7a85b4957aff6b4fb1abef4ff800d549c592e4a58448b9259288520f8fff1d9fc4fb3f8cfb23e4b37debcd

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    ee6971c44861a531e8329f19ae8794e0

    SHA1

    7ad9b2b42f68851300fee2362b1ecfa4cac04335

    SHA256

    b054cae81279dcbe012e03a37da45a5b00b80b68c5d30e7d1acc9745e0a4e9af

    SHA512

    ca898bcae9052a76287c3104cb060ae4406235a1e15f18d4deb693d96961c65899860db8e9ddc8d4a2bad437d27765876f0c628bf2e5779c749aec6ad4012467

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    3d3a131255523a18e045af0dea1021bd

    SHA1

    cff3cd32aebbd1ef08467c917616ae023acb39c4

    SHA256

    ac528a02bdd6e8f5df878d18c75b7e97c62f323a8769416cf2b654159645a630

    SHA512

    8764edd022104295b68e456b653b1a258759e2e8213262e406490ef69ba15fa52546c904d25749d668a9909a09cc33a02e9dc491b812d6844d50fefdb66518a5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    3c38e1cd46eec686aac0c30bc6964c6a

    SHA1

    6793d8fa06277cd8f9777bbe114bee44094d5e8e

    SHA256

    2e795d022756b096e819b10ba6f42e5087bc7e3e9c47c9e41a8bcdd16d008f07

    SHA512

    f5dcaf88f902ce5df7b18b9e68103688f33f1f5a8a3b1539ebc7b5e3c8e7c59f19aea67d49a5d19c35aa9cc6b18d39223cf1c316df88bff7c0d934ac70f4b0bb

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    7e200741cef6c11f7b4dbcc2c20c534c

    SHA1

    4a7ec9957037b14322cea810f75d408b86b576fd

    SHA256

    acb89b5d3886aa0164bcb4b0e534e8f031d6744c22c4f5c6b9ad320b6cf1f85f

    SHA512

    5df3e6111f9573b0624bc6c58af6a1d5e38f4118e18e775c27d80f26156fe8a1650d30b9eb16947cda72f508ebd06cb5b69c9aa21f3257d976112d642a07334d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    2f5ec213f8582bb792fe1829c38af5f1

    SHA1

    43f60ad5f59bae29e8e2d4d0271ccc6f69b9bbc6

    SHA256

    14994319133ebca51b43283f8430717bcb6c6d5c0f84fc60e6ae5700008626ff

    SHA512

    bb8a1dcc605c4e10414d6e24b2450fdf07c00ca854820cf405ad2a256c77d9bfb5648cdfa960c1824d72a83c45a12986f87d55409b61e7cbe048d7fb5bcc40f6

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab6F85.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar7036.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit