Overview

overview

3

Static

static

1

funneltraining.html

windows7-x64

3

funneltraining.html

windows10-2004-x64

3

funneltraining_e.html

windows7-x64

3

funneltraining_e.html

windows10-2004-x64

3

funneltraining_f.html

windows7-x64

3

funneltraining_f.html

windows10-2004-x64

3

tailtraining.html

windows7-x64

3

tailtraining.html

windows10-2004-x64

3

tailtraining_e.html

windows7-x64

3

tailtraining_e.html

windows10-2004-x64

3

tailtraining_f.html

windows7-x64

3

tailtraining_f.html

windows10-2004-x64

3

Analysis

  • max time kernel
    118s
  • max time network
    128s
  • platform
    windows7_x64
  • resource
    win7-20240903-en
  • resource tags

    arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
  • submitted
    04/10/2024, 15:42

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    funneltraining_f.html

  • Size

    1KB

  • MD5

    519b1b34e6747e59e3938ccba986e39f

  • SHA1

    060801813e59d18ad412f2505f00b19b1f1623f8

  • SHA256

    3dbffba7cda9ad0bcaa85bd40ce6fa6b401ba8c7dd9a394e1c26925d8cc8b37f

  • SHA512

    3adee403bcd246bf5f4228b7af18d9e17b2911b68595fd6cb0a5da6ee78e647aa3c001b9a15b839b8e3ff6f6cd60d1db800b1da93e522372ee091bd4a3c84e31

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 41 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\funneltraining_f.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2136
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2136 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2956

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          e9bced8c1720e25094314e003c1c5ca2

          SHA1

          07a2ca1fcf515502a2bb3aa042d73751d6484174

          SHA256

          b700a31fc36f78ff253a74b4bcae8b516722f3354b5fe535ee4a9f274495a141

          SHA512

          d70272c8150fbe851f3197be43e315d9e3f3579f3015ad2661db38e16a7b3e85f3987ce7baee4331798ead501da0982736556e71bedc4cb3ba7dfb22776c0fab

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          df0394cabc283f380cc6c5836fbfd33d

          SHA1

          b737458f38b61779ad04204439ab0ce50ea7b546

          SHA256

          02ba620f30a576b3795bc4f3ef28b94c886ca02bd98d272d0e4eaf171dfea72d

          SHA512

          c5126359b95732454d48497dff3da7e5453f2234757e281b6bcc7d59e9c9679a8471befa2c135eebe31b21eb981388921a5ad5423248c18c13712fec013e3203

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          5567b883f05b52635920b68b5655b1b6

          SHA1

          2fd9801dfaa0973f50fa28ee9562e78abfc2177b

          SHA256

          21752fe1131ecb6e1d1152ccdee2d95dff167df1a5f865ac5fca2b8bfcef1625

          SHA512

          4161d3b997e4991a8e93353d9b9c114f208582508795a43bb45687d0a7b1684f8b19a11a3299c178696f22b838a6609607417a4ac84dac471d7e68fdc5475551

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          9d378741b29c6e3bad3306d7349b9945

          SHA1

          26b29961a48953ceb50337cd39e5af87c9d767a9

          SHA256

          502e05a90f1270572e941a23895101a1ff374b73343f83335aa491ce60699676

          SHA512

          43d22bb6d6a025887456e5aa60797e012ade18dc100ad5beed32e02fbb1daab0f137e63588e578a8280fe2d31fbc70e85684d65739beee661ae0c517f08dfcb2

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          e75245ce5dec1f97ed60dc88496c8551

          SHA1

          9d76a07383e8eee0a4a0908bbb9e3caf4eb7a6a0

          SHA256

          8d2c37351f6be683d30fa7651992b8e798423da69176a58b0bc9b879a947c1dd

          SHA512

          f2aca8efc021c59a115831cfc44644a5b5dd6a902f9b7404e658c0efcfd7b7b603f304d8a15ec90b65d3f796807cf518ca4416b29b9620f2d945049dd4c99047

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          ab33623a6aa3c25c9fe16ec36a6588e3

          SHA1

          4f2407f03358ebc212d21b3359472a5e5a61bf8f

          SHA256

          7aaabb7cab1b3c0f2b6787339689a300046809174024770b3b78892c884c6344

          SHA512

          724a5433cf7df3fb7286b7546a2de438b5d0b2796cbbb0852289fabea77e0f590129fb9888ab3c7962b45b89016c1eb0992ea30c77807a5f6ec5bc5b6c79230d

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          6f98322887e26386ef3f0d6779820746

          SHA1

          cdc68072b71f342296fdb8e25b9cad10f112d5b1

          SHA256

          daac5431222dc6a0fdd4b354836eca21573df22ecbd81ee24b7455c32deb58c7

          SHA512

          b8caefb1193c93b015e365c36371eeb443f9d1f60af711d19440fd957971faf47cb7d274f1cf5f5a5c7b3dba3b8e5995cf8a32d30b65e00457007cac389a6d29

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          47b81adebdfc0654e1bef74edaf599b8

          SHA1

          2c5c5ac535fd615a6958027cf495b4070a2f8e93

          SHA256

          d645b90ce5c489e49d43da6ad1c73566c771e9b2bfcf44da5a24843943fac7e8

          SHA512

          4513a58fcccb31f6feb7c45039fe7444ce06e7450333032bceb3c3d768c35ea7b378b19546a072a666810640499557488e7a410f541d24817e74ad716006a323

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          3a30f86b204c7da33e346eedbabfa956

          SHA1

          e743c39f6d25f3f51d18cdee95b701e34a383683

          SHA256

          23da13a51ed2fdfd76a68aaa270725d812b1793da455a7b8f86794149a5ebf63

          SHA512

          5e46fb7209988abe7d6ddcd8bf6fa31f144a9d41d022491309fe7c3574638a9ec873f60fdf310109f638214ac225d9b30721794a33057acb2de1dafa9051887d

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          b74b66981b3283d7ec539287ba3ddd53

          SHA1

          912a18651b44c17998049ffa070ec03e4e94ae7e

          SHA256

          e847f73fa3383ab0425795c94c701fe63a1e1b640e9d63b73e52b88ef7bd4d59

          SHA512

          886481a6bb14d2ecdabcea823093e9bd6a6b8e24fa7ab755bcf5d0a003a90b22df90986a42f52cd84b4615bfe23c7e452559892067fb83590790dea5519cf8f7

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          f4f8553a9fe1e109462bc8d6dd47259d

          SHA1

          19f7a6fb80da922a92e7157f1e2fbacde6610597

          SHA256

          4fc6a384c86ae1f930b45ac9953810383662dced70a2b2c5f2b9149a13987334

          SHA512

          ca27eec70f3fe93eecc4fb016f2cbaf018b535fcf2a00fad9e27efe84425d7203c1224b7d7a095d684c23c053a67edf9f69b8ae1a782a13d8a4948e2004d7841

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          1d67923b994b07086c9e8024846d02c1

          SHA1

          266c8be2f690b1081eaf3467a4225dff2aea1e15

          SHA256

          608ac22120102e5a554277ba88db0f6200239a4145f088617bca9eedb6e6c84f

          SHA512

          58f577d85d3d3c1c2182265d22a2fbe19c23e556698db3609edd6c57c2edc442ee6637fb7d36afcd880f3de94817ff3dc0e42131afb467958e27208757ab9b28

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          d3eec9cf919235e4581a0695180d7245

          SHA1

          96c74459a051f1ab0c61ba48e6c7bb280e22f387

          SHA256

          d2b0cc34556a60d73166a03722950d13f4c66eb978c7560d6e3b0624b721c3ae

          SHA512

          cba111fc498faa44d324b2d22cc086729e440f69391e62df5174490297baa2e03320ae4b6b1069a864016bb8e09b4ad71226fcb8cc70059818b2aca50113e2c1

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          54af543acbeff39334972c7f5dcf9960

          SHA1

          293844287cb17103b9e8811ef37d1145afedb7e8

          SHA256

          81f6df36ba8d09e01586b552eba804e1fb9e5820586df167e0eb39f440bc8920

          SHA512

          32d0bc9e818ecefc85f3ce6258af2e4e78bae6f3e628e50cd55a09b04ff550cf0f663c747329ebbf45585593defd1876b61cd9bebf945644a3732db1f9edd9ce

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          bae4a4b8e59ff4f1f51823576b9418a3

          SHA1

          34b1e4eb395379e01c1c638ae32335643699f6d4

          SHA256

          4ed1827c3110d766c7ad30a71c08e1a1b239f335995d95ba49ad82f0610641bb

          SHA512

          a570b82941d0ba34cf269c735cb5a567223d394af3841d6719ba89670be61d1f757adbddf954f4fe94bf6de3752262da07441d624086ba07a798d0492a9a35e0

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          a0e7b07b2fd5752fe0e349e5807aa54b

          SHA1

          e5ca2b77c347fb6978f357e99824e40d97f17fe1

          SHA256

          7383203c689d4c96443d4b886c43505e48daf397accd8ea0b09cb4cb7a69a2a6

          SHA512

          c0ccedba046fe6fc9810ccef70bfbf5fd736d7e581d9ec4d82aa8f28c76162f93a669cafe1c44b45a3ff095b90fc929ba148baa99d86efacd5d10af996e68368

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          e8dc2c514b86b56e9b1c2488ffe56307

          SHA1

          68ddf9bbf74b468e5abc9cf643de0446f3d26140

          SHA256

          d0e7b1a855e69845e46d481d2f4dd2d62c56614e033b783b2c1a93008b59dd34

          SHA512

          558bafd0f1917f89504bc3234791cb4d14f0d405328a9293568fc420f5434996cecaaeec518f37efcfd1a756479a885ece246d570969f554e0ef036e30547758

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          a0e6aafa7908badec9d6de723cecad9e

          SHA1

          864e43955716b367e84c569b6c82ba1a8d41a8b2

          SHA256

          d54c4a764a0a627c08cd5c7c0aaf31516658b67a7da0867e2e6bd2b604c80e8e

          SHA512

          7e20b4ecd1dc8a424031edc43dd0bdcd1036ee9cefe49523e36ce388ba7047bac422384963321eb0df723efe67567b194ea0a915a34a72f63fc13a18f61fad84

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          cc225d5ef0cba293925036698a2e64b1

          SHA1

          9f4e2c5c04f7cb60788da4b1034ed21fa7255271

          SHA256

          8caf1f5a8167695c66580d2b7069e2cd20723fb163b5c740ce04d530b47ec53b

          SHA512

          277e73ff3d895757d28242e3d9a44a7acd88481319a5f67ea795cc7a313adfb22c5b60f40711e3e1f553df5cb0f688c34935b0408560305a0c0dd03ded208cd1

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\CabFC0E.tmp
          Filesize

          70KB

          MD5

          49aebf8cbd62d92ac215b2923fb1b9f5

          SHA1

          1723be06719828dda65ad804298d0431f6aff976

          SHA256

          b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

          SHA512

          bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\TarFCAD.tmp
          Filesize

          181KB

          MD5

          4ea6026cf93ec6338144661bf1202cd1

          SHA1

          a1dec9044f750ad887935a01430bf49322fbdcb7

          SHA256

          8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

          SHA512

          6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

          Download Submit