Overview

overview

3

Static

static

1

sample.html

windows7-x64

3

sample.html

windows10-2004-x64

3

Analysis

  • max time kernel
    144s
  • max time network
    127s
  • platform
    windows7_x64
  • resource
    win7-20240903-en
  • resource tags

    arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
  • submitted
    28-09-2024 13:47

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    sample.html

  • Size

    217KB

  • MD5

    ea0c32045959394df0ceed996452e34e

  • SHA1

    c311c82e2c1c8607a94efbc2ee5572f72e8644bf

  • SHA256

    136b84d7b183f6872b8e6e37f20526269b37ece21e890de86624db4fe9404669

  • SHA512

    82e04d99e3ea7bff842d27e57376d9caedf024678ea2f9df85b3c416ce42aab727c04ef19b7d4ed753015d298b166cddefd7c56f86cc0b90b2d46eeca35249d2

  • SSDEEP

    3072:Sa9S+GvGHSLDDyfkMY+BES09JXAnyrZalI+YQ:Sa9S+QGimsMYod+X3oI+YQ

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 41 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\sample.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2984
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2984 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2056

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    6626c2ee899b9ddee0c806c85b1822b0

    SHA1

    79ede53b365e972d5433884b47730738b1e67a80

    SHA256

    75b34afc655c14f568911832db2657d56cf207c1d792f794cf4317d89423e725

    SHA512

    fa5303607d68ef63238064413a69de2c1c1d1fb1574f73a7e759548c9156076751f485225e0dc142d2f34ebd9b6862138444390930ef33c4ee285447e2a8a106

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    2159c8d82d2e8d3dc619234e8a8cd1e3

    SHA1

    68755482bc4b0231eb1c3574474150a8251593a4

    SHA256

    07d94026b00267b062855a583efdc065635418e3ca144a6e93f226955a844df3

    SHA512

    04e8c06ef23f416665ae8a5ed4793462a8abeec524011adec9ba058255cb4de96f420a751a0aef1b3a3d2c756c24c70c069f4e61fd40be6a0d16374509fe2002

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    7748c94324d5527b420ec25d082dd3a8

    SHA1

    35941b1fee34916cce3d7d9f60719b3b46bba9be

    SHA256

    286b6463d07a2c5d189fa2a04f62971317373dcd23dd441f6f64878c2dd4b7e0

    SHA512

    70c62c92f887beafaebb45d792c55842d0141472dbf340f37b951f661aa67016bcd37b875b6697dcb20c6570610101fa90742b557368fa5d9698e3eb12932521

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    7499340a278f7ca4f6dd37884202637d

    SHA1

    c043708707322d9332858f453e10307bfca33a41

    SHA256

    9453dd1123a0d6e4a45c93c89667351e87e2d35aead91e8187a5a716ddabb7ba

    SHA512

    5d2d8041e53fad4a70a51aef042bc46b3b564a3f4c155ff22cc9e606f647f269523a8e7720aac7ab9383bcd7f71aaa5b5dcafdd7ce4c5619338c7803f1d83f9a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    e8ba38a2f5780cfb7addcd9168dac160

    SHA1

    502d5ee873e4fa422de413217886fb22a952eb5f

    SHA256

    6029572aa9c8d7764894675d12f337630d4ee7197019a4e2cfd5922bd82eb6da

    SHA512

    8afc8515af84a85cb685a8f5905a6cff027ed69ac6e2dff7537eeb0e77cca869894f95ff74057d2943dea262fdaa2ed6dc20accb76760bd6265f282a2df1c5d7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    5acd897cbfc410178ea351bd8511b140

    SHA1

    541c5a27144a39a312476e4b766fda9062bb0814

    SHA256

    0c8b01a5505b01177a74f3bb2c5ab478b90c57c98ad19e8b69ac85c4f27914a8

    SHA512

    065ed2905bd6c40e167d481bd0bdd9f6c06f97d8130ff2964ced06c7970243e743449073766623ae90fb751483385686c8e6f59add133b0ada5f69fc4249db1d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    457a06d95274741e10717aa830170402

    SHA1

    50617d8ee9be2f9188e39f54d32bbc1354956d88

    SHA256

    9be96f5906623e61b017aa590167e4a1d7e2452cee1e9fe20f222a4ffdd8b4e9

    SHA512

    55627ba494c75246d6599164ea259236e9109dd77779d9edc75f28e86eb27b4112e08fb450e5abbfc23b2ec4744e511b412d504cbd08a259de667facec2f7309

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    cceffa3a4d51beb7686ad198f06492ec

    SHA1

    42f0db8e2eab851a927173ef8d6d83897b69e4d1

    SHA256

    5f3ef969e869360f0f27e76c6d8c630de59a8355194080283b8ebab77ca80ec5

    SHA512

    274ebb06081c2a6bf9e428bb09ada2f81f7fd4d68b011715089acd183312e374bff1e60a69f79825b8565b3f2fd918759fe07ca26dda7121738f1471758e0e18

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    23d1afc86ef7bc4cee2d6f66879bf246

    SHA1

    18e094d9727dd666274d32e0f0cd7985e7dda239

    SHA256

    300c932fcca598277cac9351936a38e8e14a77ab8e48d82db4a5dc4533753182

    SHA512

    c5c4aea523e8ea183616d86c62392dc512d2ea983344c217b8a737a9c368855374e5799001cf91d4ac0eb36ed74a72dbc031198306616e6cce49b753a348f64d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    9ff2a93f7551de40cbefb9e742dbe348

    SHA1

    9f569046bd6635f4679322a7882d67d1338fc8e3

    SHA256

    dc26f0fc0d270b72e45ee471dd29d282661ba6710f102522a78b66fa534c421c

    SHA512

    95e4996c89360b3224cb44cf443afbcef7a365e4f412e4feb64c3cc930055e2f9e3b22a8ec7fbfebe267cea15a9a7a0ecf894be554afa3943cd2e210a5f52423

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    ca5343844d58a417eeda0ee467515a22

    SHA1

    6a8979014a6398622229098b5ff2dbb351c6e169

    SHA256

    8f8027104382ae0a8b6274a9a1f88e78319d66c683fa87ce6bdc0fda8fcc973d

    SHA512

    59e9fcdd37e1c6e9a4056979ef2ce70a3518d5ecd5d7c85342deb052ee4b24ec4703903eaab1b03ca01dc1ee9001a289d2c5942d0bd246547478b2ca5be82bc8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    88d3733f6d90d59585298d20d9a3fcdb

    SHA1

    87c8d5bf98565b6d14fe61a7bfd9399f39d39460

    SHA256

    eee674e174fe3fe10c113b6023624fa4117cd5e53d325caac5ebd80c815813ca

    SHA512

    5cdfeb57748cc5cce5e0ab3b9c18161765e6db77206e52655cf0dcc1f6d5e4189c442d835f44c821f016942d17d5441245d57927982e31d953ef61bcb052f15f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    f6b5d20464c6a395f5d511b62a3c7ad5

    SHA1

    87fb8510a351b37dfde4fd41604c2d6deb39cab9

    SHA256

    a4c2b3b99c9bdba7822deda15106960cf7566f017894426f8c14e69482c04eda

    SHA512

    ad8391649b54f569095cf1b4f2a12e6a076e7494bffb9e0fb9620d8a3421496944b7991d8ab7dcaa9be1b154018b49c838fadd46807cda9cc2f6bbdba3266010

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    2e07915a8cb208d510a93c112f14ff1b

    SHA1

    f1b02c22d97debe5db01be1afe11bf2f4ad77cbe

    SHA256

    1fad2b70d272b66b4befcfb0dacb5728056a0d41a355f982a1f9446377f3260b

    SHA512

    6e1eb1daef2fda9b6da29f2e2cc982a70fb5832b90fc77a730fa394d95b95ae751c67d44ce94aa9227382572a039f52d64cfc3f4284222caaee105c709f73e87

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    3798114795c6aefc74adf1d922b38ca9

    SHA1

    2f05264a44578cd6e5091414590ccfb45a1052f7

    SHA256

    28899d9600e763a17caac065e147f3a8467832593738e5a7f4826cf001320f2d

    SHA512

    ee52e5bfd1102bd655b9538fc608145dc1dd0e21eeb3a1d862298ee6c7c55f6341a7b56f6c2449f2be18ad9c52850596d65894fbe216c783def93972d54cc211

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    be2a5d0903937d561558ae49b65f9274

    SHA1

    6a1c46080e5000268cd4ddbfd5bbeae9307c9cb3

    SHA256

    96a167c201eadc48bf186235ecec8934c78cbc182cdc333cb0a59d8040c27efa

    SHA512

    4762f0360f7f2e268fda2144675f9f7f9e3451a22c4d879646fe2de48bb1d0735cc574352107b5435d68005c32bdcdc543247a8d08872f7e0b5fca658e0f16c5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    0c04750048a93e7405a7ad94e12eb865

    SHA1

    8873eb6ef68a85a5747b745e574b5f9697e35ce7

    SHA256

    9f5acddcbd13139cf7e092b9b65c1454412a082699354aa77cf4e552c6735579

    SHA512

    23c88399a5e1c6943616d4aab8fa36f5a81d1d8d9d1c6cad5e1e362f92c2b7645d92efd9fbef5925cc8d7b358c99aa42f30d4f09d8be6b612e9bdbf4d2fbb048

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabCA44.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarCB31.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit