Overview

overview

3

Static

static

1

Heylone-On...x.html

windows7-x64

3

Heylone-On...x.html

windows10-2004-x64

3

Heylone-On...6.4.js

windows7-x64

3

Heylone-On...6.4.js

windows10-2004-x64

3

Heylone-On...ing.js

windows7-x64

3

Heylone-On...ing.js

windows10-2004-x64

3

Heylone-On...min.js

windows7-x64

3

Heylone-On...min.js

windows10-2004-x64

3

Heylone-On...ipt.js

windows7-x64

3

Heylone-On...ipt.js

windows10-2004-x64

3

Heylone-On...Css.js

windows7-x64

3

Heylone-On...Css.js

windows10-2004-x64

3

Heylone-On...Xml.js

windows7-x64

3

Heylone-On...Xml.js

windows10-2004-x64

3

Heylone-On...ore.js

windows7-x64

3

Heylone-On...ore.js

windows10-2004-x64

3

heylone-te...t.html

windows7-x64

3

heylone-te...t.html

windows10-2004-x64

3

heylone-te...g.html

windows7-x64

3

heylone-te...g.html

windows10-2004-x64

3

heylone-te...s.html

windows7-x64

3

heylone-te...s.html

windows10-2004-x64

3

heylone-te...r.html

windows7-x64

3

heylone-te...r.html

windows10-2004-x64

3

heylone-te...o.html

windows7-x64

3

heylone-te...o.html

windows10-2004-x64

3

heylone-te...x.html

windows7-x64

3

heylone-te...x.html

windows10-2004-x64

3

heylone-te...rap.js

windows7-x64

3

heylone-te...rap.js

windows10-2004-x64

3

heylone-te...ins.js

windows7-x64

3

heylone-te...ins.js

windows10-2004-x64

3

Analysis

  • max time kernel
    118s
  • max time network
    128s
  • platform
    windows7_x64
  • resource
    win7-20241023-en
  • resource tags

    arch:x64arch:x86image:win7-20241023-enlocale:en-usos:windows7-x64system
  • submitted
    02-11-2024 23:40

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    heylone-template/blog-post.html

  • Size

    14KB

  • MD5

    f8b45c226409bbc65070f403375d65f0

  • SHA1

    4a352f11be414e5e1936cb224f709d8e707bac64

  • SHA256

    796c36378e610d75442203630a0d0a001fd034bd5f88b83bb183776de020faaa

  • SHA512

    2d3e533dbeac29e7dedd2ca5f0abb4379cd82e202451c7606256f6667a3b846d667c5fc4c17473e5bcaeb354e393d1d6cafde9f52778e2d3f0e4cb8c67422be0

  • SSDEEP

    192:TB7LJ7xkWqrTFMUNNBcTUcTUcTUcTUcTUcTvcTUcT8cTUcTakQ1gm1KET+Tq08eM:17lt0SONOpKEpexwIG

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\heylone-template\blog-post.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:3068
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:3068 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2440

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    efad2cefc1c11f885df9ee460c156b55

    SHA1

    10611faed00b83aa3ac2319bca76a8fbbeb935a8

    SHA256

    fb8d511003ecc8eb441c9abfddf0820de0988327811e4c9f8fa1d007776aa3d6

    SHA512

    ae88693a27a294c1e20e5d41b48b3632936c111ef4301677626f19adf63cffe1d2ef5c04f20c8daca287698dbfe91909bec6207ab3e38cdbec7e6128d0e1abb0

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    6a641334ffc9f095e71ab2c0f5912680

    SHA1

    5e250b92cf96779636bf3839b4bdb963ad74fa3e

    SHA256

    13642c45f6e2a815d94e0db333bdd8a8e1507143c122ec02511cd2852af2ff5a

    SHA512

    825c3970e8a5ae2af3681a1d30d4d742c61912716bd5d6bdac13a1cee4809638c7847ec1ecfc8822ad23b7ad30423638acd294ffd829791a5602845b47565dd7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    c037b444a16b88c7244de63b19c9c6c7

    SHA1

    987665912682230c898b7b727bf97d6e39d97665

    SHA256

    90947bbaea71bb552c8ad3ceb92b40386549c627d49a7b75b8d683f5fda3556e

    SHA512

    25ad42467a437b5309dcf317634c938752bd81bb1488e4cc3653cfe6d086a6e8fb363eb01164f16342aac3a5696446d4292ae6f1855d7d10a9dbe44da43389e4

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    b5e7ec1aa406ffc68a33ea2677eec94c

    SHA1

    d6b77c3f784aa9465b57cfb907168a79ec78c7c1

    SHA256

    53478422becbcb4cf4942a11536d89d163336e6a78125f48e70ae577216ce922

    SHA512

    58e2ecee248fe1748efaaec64101668e19f58f5ba7c3e6d05d6d80fc29af2185ad4b826b48c507d60be99d2f29eea4df438e51d5cb992d2cf1991a08319fa815

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    b7edaa021a5eb46f7250b43204338eae

    SHA1

    531afcae7afcaa02b9a5bfb85af3296ade150092

    SHA256

    76fcec266c1f9a2309610a78f17c4d7c5e5bb9b71aedb691a98fca5f8a3a3106

    SHA512

    339ffc0e7e93d12ce35cdd7d31e34d76d1b3bff4c8be501674379184feb8ea7824b713e0ed091dcfbc9b64539cb4cb71ca67fbeb3ad826ed1f2c16a6c93f97fd

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    b29eab447ddedc775e35b424be714a35

    SHA1

    3f97133ee67352f5c9fccc5ebbb6e897ecd1a7c5

    SHA256

    fc927a6597253f9085e555301abe262973946705f062c39c42fe44eb497a31e3

    SHA512

    479fe4513e84ad0c07b35ea0e61eded4ead96576355f5ec63887426f9864ff3d5b13023226e23059b5bc5d4580c99d514e2abbf50bb8e423e5ac17c0372a9e84

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    814a5d17ec76b106274664b8496d711e

    SHA1

    1aa592165ac997ea433672fe15c45703a2ae5cad

    SHA256

    ec5e883fd6b14e6c40557eab1aa447dfae13335237f2d6d5a2522b7143c1b813

    SHA512

    05df010e4522747dab6ed23caff894a6230cecf061c0b0c6d3aa7bcd91b4522c70b079b91c5d553124d0ea0843052d211db1b30c4ede0705d432604a0fa8c07e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    c5b798cc1805fc4ff03b0743f9a4d51e

    SHA1

    9f65250001081169eb24b551e8177abf7fdd6698

    SHA256

    688af5e152006810ab848e53baccb90ca46536847f1d8e6ca8748affe85448bd

    SHA512

    4ced0eefe16c9d49ed0a37a7796caabc736962fbba76b80b7cd35f0f4b402687597e7f9ff8c1d92934aa270ce4b4b4f2b031aa8ad0d614077a4ce7c5764df707

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    afd1e7e1b8c1d87a7b56fdb05a116809

    SHA1

    27a773f2eec913eaa103208f9336bf961c2b5c1c

    SHA256

    f9d5b83c7b66a5ded9e7d8801428de3c58b0294ee91b6b41c040d96ea91d110d

    SHA512

    38c5e606fc30b2ce22dc2425b20954fb5624260a7de857d6bbffc3b257caa045a3392e85124fe8e17d8c150218d2838f6db3208ed8d8e9bc7be95da72b3e6c84

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    bfa6488459f1f9b2d806ba3ba7841c3d

    SHA1

    fbdeb9940e2daa6268336564de3ae4bbd48086de

    SHA256

    b8daa5a4848b035febdef4a4886493a9d1845f70d752301a5f41abb48a20bf2c

    SHA512

    bd1f16395e3d3cd0a568bb52404b725e25557681526a8e116a9c71171b41a2b1f74167bf43365997f566df8da29eaacedcf8b300f5b8f130cc6e4173475a9c4e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    0e6818def75dff2050a57601385e275d

    SHA1

    44d7f77c464a43ea9579f6b609ba619d70d96501

    SHA256

    2dc584f9bb031fbe1f02a19171bb6af295e6c4208bcbc59fb1a83bf4e6826944

    SHA512

    bbeabd7621af1a58933bdec1b93846fe2338d5bd7b76397031de9b03b01319df314836f1b881aae50a146933223fc19258282032d490a0ddd6228cbb6256f3d2

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    4f6e2fcdf926b130ebf85778eef86755

    SHA1

    5535734c69efe3499d1048b15652627dfce8de11

    SHA256

    d20fc884dc22f0e627d1d55b21a45015d85a03cf9d125101fc10ac87d46bc4f1

    SHA512

    c7ea55dc9d0b8e2c17604d51430770bb351bf64b8f18fd64069d66481e231b2edd8378b2a14c8c121562814e543abf7b3dafd344f749816e31892f08784f72b1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    ab5c6bc7e2fd1f8c3b248e0c43cdbd6e

    SHA1

    8962a39bcbd0be5d2577c9f56d829159c8d9c5a4

    SHA256

    f0a8267b6977bcd2ffd576896a871a0ecc6ae781dd4f7c63c54066e694e57421

    SHA512

    d8936adea68a2ee0f456a472f2c0c86095d6977401acad9aadc28109847732a01edf376f255e3270ef9a24ca9d8999306d7526ba05c37cafcf815fc6af999c5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabDD18.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarDDC8.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit