Overview

overview

3

Static

static

1

sample.html

windows7-x64

3

sample.html

windows10-2004-x64

3

Analysis

  • max time kernel
    141s
  • max time network
    124s
  • platform
    windows7_x64
  • resource
    win7-20240903-en
  • resource tags

    arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
  • submitted
    27-09-2024 15:03

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    sample.html

  • Size

    40KB

  • MD5

    7d3baf8163ad0ba5b30db8142cbb44a3

  • SHA1

    471e8d661bc99a01c97340c7899faf2fda81b680

  • SHA256

    bb399263efa15a9ecb09a85c92e6567b7c6448a5f40ddfd603cb73b1c2de01a3

  • SHA512

    bafca413c77366b61475ebd79eac1a63fe4e75fd7d48eb6a0ab3bb5b1c9b4b786ee4e569269924c52319eb0231bd8732ae90c3bed12dae4dd0623a8bd62f01fd

  • SSDEEP

    768:Sumh0OG0m+lrQzFxf3VBfGshBc3Z8vfx1+1z3IOvJ+4cLiAFO+vqEE60j+44w1pQ:SumSy3QzffFZGABc3Z8vfx1+1z3IOvJG

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 41 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\sample.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2532
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2532 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2128

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    7ea370d623afb7f38e16bc7f5e0078bb

    SHA1

    1c0fa5f53bee0edb521467e82c752c3c903a9166

    SHA256

    80d9dd5a3a5f20cbdac5cfc7ec517171ef05298154d2ad6fffedef635c91092d

    SHA512

    c8fba8b0cbbc2e856d4680b4aafac19d558c82dddc9d3777ca58dc8535962c1f797368e65f5647c2ea4e2b5263cf29bb8b54abef4eb3f129a0737339b75d3bb3

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    12d02c13e91295230d712bcabbd71020

    SHA1

    940e122468e2e27874c797b56426f03e2e167dd9

    SHA256

    d06abd89b79f658dc9f81328f3abfc3800809cb65a9f7e66010d2ce894ccd288

    SHA512

    a627d4720b10c700c4e76d6d1b658b9e3c60562eb76d0ce5fa60c69ae664e408fd9da5f7eb682c7e824eccb037880b7be6428bc5fb8ebd458648e6d5e91b0582

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    af386d211308f94e618297fbb521dd99

    SHA1

    631c5031358f74d8d4f9b18e99269a8d1bdbe22c

    SHA256

    66f18f7f7d012b3fd3058cfdd1890ed87150ea90e0ca3d12c298a318884ec082

    SHA512

    5283090faf11819af20a3c661eefef929925aa29aab0db2fd1c853a339766165f243d668927252722195b6b0c188e081271de6dbb2dcfdca62895bab0d183080

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    d14f17f2240a1a155b1a1d240bd0b32b

    SHA1

    c684ab7ebbfc861cadea57632cf4ee1720e768cf

    SHA256

    4ea302d7e4bbdc02a7def370ef085b3d957ddead545a8a078934c2ce9b8bdd73

    SHA512

    2d8a73df81afee25a32a9d98abd6209fe64681f790c75a5732fb67b8221896eee4330bb93a3451b25130164ace5e2163d91a020a897d93fdbe1205b1829fc4c7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    1405924d4a3868a1466f9ae3d5c33c68

    SHA1

    e32b8d91df563069517bf5aab7e6c1c55048e677

    SHA256

    7068e001a3a7737d3d9a7f31c813230cc378147c66420afaed8d2d9c6848a7c9

    SHA512

    09ae296bcba2ef84adf25fca6d1092991f671fe73fb498e5fa93ae363ba838f1aaf615b3255b2f22e83627fdadb2e5baa2c6683a14854bf03e93641737c8c57b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    0c9ac6fad638e38481f1ca24df701f22

    SHA1

    09cb2ff4e4ac6f89d2091692dc359fff0519965b

    SHA256

    326d71c624179ba3450df8b9de87cbf8d6c43b41f32ec4f1957ca2f24489f823

    SHA512

    c2cea394108f82126f49096940e63d40488eabf0ada29ec48265984e2801456d26cb50e8fdaa7d8f1afe3c0147dd96d8d18719d35e2bd2ef314291aa3952d0a6

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    2b4524685c50f07038e0ad88d496fc8f

    SHA1

    a9ecacd41a38ac7ddc49b041af304fe26cd76edf

    SHA256

    d41bd631712307a431f790ab57c43eedc9c7b47283df54b5fcb4c0a66f09b006

    SHA512

    170b12333ddf2630a5746a1f07e744e52133fa60d7df887a37bbb73c03360681de008560a46855bda2f6388e72032642be85c187bff399b82d959a397ddc48c3

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    06740a53f812225fec86bbb684b35f42

    SHA1

    eacdacb2b904887195813ff6b083a7054703997f

    SHA256

    cbbdb400952c3d9215e042f52b9614b55bb1354fe4be6154e8f993a0cdaceec2

    SHA512

    4aaa70d77735873a4e965262f9f4c2edc79d3238a150f299501b1c3bac125a32ae30883c1ffd64e0a685d396f4ed2146bc5adcaf39772bd1d089986b43996036

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    119b077e80a9c045230d5345103a51d8

    SHA1

    c2b1645d679fcce3e975500354bba2d8d1228203

    SHA256

    be656b94c3f7961b0a105456c44229d022e5116ecb504d30d5c9dbbcd1c318fe

    SHA512

    8852cd67b920122dd9733ff5ea8f4bd5a1ab50cab398c6c660cc9d74ab3daf7afe6d615e8a9c70c3fdcc7997fc45cbb7d8039aad930fc23a87a433e6bca3a5f3

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    3b663a3770bff32087af87d70848cf23

    SHA1

    3bf7878f53453b9ec0edcb3d7c7a99fa9e6cd6f2

    SHA256

    e5a25966366ab768fbc0a259938ddf480f36125adc22bdce9b136130d985ddf9

    SHA512

    f289171ea2032cb300974e9480f4e409ede403aadac5455a0048f72659e1943b657f175ff63e6a522c037fd4d33a05a6c66ba61e7035501863b88b4debd69f78

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    1fabf06bfc9090a5b66ae7000f9c0645

    SHA1

    ed24dcccd88e2d63ce1a1efc9f8fae6935b10d48

    SHA256

    795e3a8166ce6949838994393db3fd7b30f947a17d9af5310d6a6d002cb49b8a

    SHA512

    24fcf5ac611a1546005bcb2bfeef5f53ab0a4c3fb70092c78a2c9c3c6216867d1787684229d3ee2a84d36b5eb82168d00a2e1d7936fc7bb07911904111dab167

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    67de0377558af98c41d3b23cc52e1de7

    SHA1

    f47e47d189c0acc6a234602f3b15b25fb9ed5ccc

    SHA256

    8d0fd6029defc74056ef902905803f726b3d42e6574e54004504fd2fb6e388fe

    SHA512

    d7a8f1ca2a13bfcc916efa0884078a22b6cb3d49610c4bf85509fd5f684b1f261a1cd4fc31721fd901b3816d87a10c6832d1c3dd31f1efc870720d4f7fb39333

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    971e080641b28618d3cd429f9a7a5e38

    SHA1

    ea4786be351f69de85087a7b0a4e9441ef488040

    SHA256

    d958ed1f6df06880fe35db108d2887dc64f7a39f6f5572e44227b4f74d5845b9

    SHA512

    1f8d5f6bde39369b84d2866db9c756e60d93cae8b8754f664d0771da3bec83b68b07bb4d02f9f0c6aa7d97f99a36e6570758fa6c33b0bd2a30e3677bc39582f1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    da1339bd40f493ad38257b4ae80e8b80

    SHA1

    e228c116c2288e000c7a518d2228055c35e0d4e9

    SHA256

    55319425496a8f6539f90b9d62bf29c36865f5bf6298f4070b2dc2a761e92c8f

    SHA512

    a0cfbd2b101fc4358ff9c60c89465884e5f98635722fecc9ac85def9f937a9013d70d81ee9f39c9bdf36b54174d43222163ed4c0e7e5f5079ee65101e113b2b6

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    aec5ab25a062a6927ba9b6b0088281f1

    SHA1

    5049717d67de24191d2b9ab454e1d7adc6ad842f

    SHA256

    43a4be228b96d0e201b25d920a94b18f4aa1284d0e6f5a00aa97d09367ae3f1d

    SHA512

    59ee5e53f23904fcb7ceb6a7451936becd4e8b9f9aa526e09c4f7f44452676f97d3c2159d0a88a1db09c256594bf5d5abc8553d379a1ea798fe64fdd91a1133a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    14f713c9932a53c3cda995536215f982

    SHA1

    7a798f49f42f5ad6c46166ca191c0637c2f7d8e7

    SHA256

    ba083336bf57184842b1c595592fdb7d65485a2cfcde1e35b65c296e8b3b8032

    SHA512

    6fd3413be108f08628558c90878d8c9ee23735f73b2b3a0b610d4a0986f7ff429582504ca12ea30ebda5ba1cb6c27a0ec99a65108245f7aef01ff4de677896fe

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    ee4f8064016ddfb50f8f154459cecb72

    SHA1

    2ee1d70e0791910e0dfbc9738c56ab5fcc3cc582

    SHA256

    a6721a13f89c9c7467ec6cbf177e6882e3c7ca2ec641a55c0ed73a8f3aa19c86

    SHA512

    31ed04d8cfced3d3eac8c22d5955930838e9260a9a583b6341db0cc2ae10ffa6b7ca6d787ce66e293d80dd298b1d8871e8cd1dfd1ed656e1889143bace95c182

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    1cceb2170ff9ce6d0586cbc3b942eb2f

    SHA1

    869eb259b4dbcc244d85120ead1ba23cd2c06194

    SHA256

    e1dfb7a502bea3eda57a44ea519278e456929e4b72a84068be03b529e1a2fe33

    SHA512

    629b9d8f534a04dbfe02f8d466d6f445b007ca3e34777fba887c82f7480c6e9ed107a4613fecf5a506e02a2ae7bc9edee466dd3b4254114094a0686c1adeb699

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    d0d4e743ffd241440cc805f25a1bd304

    SHA1

    1c0b84136f903e73e08014c0fbf9246153632358

    SHA256

    79a8b3d3b1fe7f48c416cf15b7fcf14f8f32dad86e1ca15f590fa35aedf4b18a

    SHA512

    8af7962f239afd7847abde4e08040317f6e9e996df060b23f75fa09a4757dd4cccf807394231b9838eebbdfc2344193fc7d5f7eb0d044ee847a54f5a74409c0a

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabB56A.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarB60B.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit