Overview

overview

3

Static

static

1

coolz.html

windows7-x64

3

coolz.html

windows10-2004-x64

3

Analysis

  • max time kernel
    133s
  • max time network
    127s
  • platform
    windows7_x64
  • resource
    win7-20240903-en
  • resource tags

    arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
  • submitted
    01/10/2024, 07:01

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    coolz.html

  • Size

    4KB

  • MD5

    d6cf62cd5bcc5648859e27fb2606016d

  • SHA1

    c4a80be146a60113c8b46e6737620304deda83b6

  • SHA256

    8013d5880cf4d224957fbdf914f414db4afa9b03dfcc4fa60a886e2fc9b93770

  • SHA512

    489167cedef5bc4474aa96d8ba355ec2cf8b04e6e058f1387967b928a133cbf2e2d71164c645c3c115aa799634a55c55ac27ddff6080057936f0c98ca987b69c

  • SSDEEP

    96:1j9jwIjYjUDK/D5DMF+BOisHA2ZLimRrR+9PaQxJbGD:1j9jhjYjIK/Vo+tsJZOmRrw9ieJGD

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\coolz.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1696
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1696 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:3056

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          eb8e2c6b90a51c428ebf7e10bd7a9c4e

          SHA1

          ddd8c01f4a65c924aca1285964836cdc4b7d192f

          SHA256

          80384891ff68810a1ec599358a451b3495302cfde128e5f18657fda4f0ded914

          SHA512

          a2612d540856f10c562d21238522516d25a2d781114819eadb757333e77a1b7c3bacc3a99d975a6b0d076d8eae7d2f62fd41cdb9f9175768092f36ba0380994e

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          e1831dc7bc6afe8f439ab0b9fb35a480

          SHA1

          0edc70d96474e0d01211837cf39f95e763f33f05

          SHA256

          9ebae4e0a60b088679abcdaef60ce5e8604f15941fe3d263386d8e59ee650661

          SHA512

          84447ec4a8b615112a6e65348ffd7139c328724b2fa0d1915f38be99497484bdeecf8919749988e3d5644886d02509025831416da350dcbc6039a6a998ce51c1

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          6bf1c2a899aa9e11aaaf301afe6efdee

          SHA1

          db4b50469fddf32d3f4eb903dae29123b7b398fb

          SHA256

          87fd1d317b47f2e886d1d7e5dc4142212005bc0ec3031ec30b88a9a033b5f6e6

          SHA512

          d38dee9a3e58750c7a4ea0d5d16c412bbf4afaa1b8c97c7a4aa240c443bbe77fc239f3edf526ebd40390dab42a72b4ecff43187acf4ed30f13dafb6a5811e31d

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          abfecec7a5b453300c2f298a2880e001

          SHA1

          2ae6061d77e987f34f228ef1e2bf9786e99cdb04

          SHA256

          90791ec17465a42ec4fd9cb0dcd5971cf1a71766950b9f24e0e9b6a7ac0cbd84

          SHA512

          835f86e4dd2e0564b50e1861f600b28092cdb201fa00a269686abbbb7a8a53037e6308535bdef97623df6ad73a63f1c462708d5987ed9062ea20cd4bc75d36f2

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          e770ec41b0493e2c581e15e98b3122f8

          SHA1

          01894af12abdbeacf111b1c634bf63d30abc1321

          SHA256

          9cab432c4d472239653b3f65a5ee9cb834ef2f3b5e723cfa4a4d56421e4987fd

          SHA512

          a648eb5fa8a041dca318a87cb6b9797aaecb9fe8dad79b39441ce97990f27caa1c65ab9076b1d77120ad63219d7bb741c561f7b0c7040f349e5502b0f7560125

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          d45549ec06b5f5194e0c4671f91216e0

          SHA1

          30f1ce08cad7067023bb0e2c8335c601174bc5a6

          SHA256

          cebc3e362de3d5dfe2be5b54534a22ebd41607682d38eada996d17569dc41e53

          SHA512

          7f243239e1e12f15dd34dfaf74b84f03e3ca9cabd2b634c0c2fa8820f024dd0d23e7ad65b61e8aaf003434e32dfcc7ad5ee6b4da70a8ba8a1b32a6a7b0f01e43

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          ecdd2a62516514351b6d66649c4e434b

          SHA1

          b0aa1ee6eb7ebe807c074e847b11fc834fb960ee

          SHA256

          9505ba1376a559e9afc37ed4f6505546db6f4cd6820959b892a399a76f6180fb

          SHA512

          44fd0b6d6c11ac3286b69fbe7fc38dbf5edb05c84cf311095d313a5304bd87f9b5dadca8b24c237fd94a048207a88727e1a3104ab20626e81d05ad351370dc64

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          5da064010f2dd6959a8fdb97b63aed54

          SHA1

          158ea7c2d4a9fcf86a5335b1e8785b699b723ba2

          SHA256

          49cfce8068f626338640359fa8b36c2ca63404ce875d65376e14f4b4ed97a52c

          SHA512

          81c7de81849d39c958df6e371e43affd44b421fe9c47af6eb914d10d846a23e770f48686f1c3d15a3f62023b33caa58d2b2eceaba80812964378e32eb184d62b

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          64238508232373fa6e734d21d9ae1119

          SHA1

          3bc2e50a5f5fd6d2064fcc7fb27f6ee9541e5953

          SHA256

          cd07a480ce6d410bc880b0e83927933229575467464fd9de8f0c15e393d0d268

          SHA512

          cc967d1f34a3f05d34cdee1e31dbde4ffb1934b5653f8423a7f960f4262924abc65cb4d9d51f9250b5538fbfa1f0bc2ce9e153c5f5f6ca7c299ffe4d97ab6f5e

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          d49f97fba6f0a842c5e3bcbf2fb54911

          SHA1

          75085c1dccfd1fb6781368d1d9ae04504b3dd0dc

          SHA256

          c0b1c511053e6b6449627881e8ba217cc16ca6ade0e75fc92a13b74cc18cdb18

          SHA512

          d7918c3e69af96e1d8e7cd6bb3aa059af411b81010a1564f366ae9f6269088116a9e109b6ff0146c41fa2a1e5ce99dd0e150fff3465c97f243119a52a1ecb27c

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          a2d2724afd726b354b80d84ef226ac55

          SHA1

          a9a4e7ebf7101baee251510ed74c1eb9472880a8

          SHA256

          f52da10c1fba94cfb8d41b333b7018f9a5919bb90ea1e3fc6c914e4fa9b860bc

          SHA512

          14c0bb55d4666ecd9e76273fab5e8264ed4971c930a2d88ad2958acc7b17dcc6d51382a4b84384e973385578fed73a7ea0a221cb72530f7e5000b7af33725063

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\CabE67B.tmp
          Filesize

          70KB

          MD5

          49aebf8cbd62d92ac215b2923fb1b9f5

          SHA1

          1723be06719828dda65ad804298d0431f6aff976

          SHA256

          b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

          SHA512

          bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\TarE6BD.tmp
          Filesize

          181KB

          MD5

          4ea6026cf93ec6338144661bf1202cd1

          SHA1

          a1dec9044f750ad887935a01430bf49322fbdcb7

          SHA256

          8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

          SHA512

          6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

          Download Submit