Analysis

  • max time kernel
    13s
  • max time network
    19s
  • platform
    windows7_x64
  • resource
    win7-20241010-en
  • resource tags

    arch:x64arch:x86image:win7-20241010-enlocale:en-usos:windows7-x64system
  • submitted
    07/11/2024, 22:38

General

  • Target

    synllc.github.io/synapse-x-documentation/index.html

  • Size

    27KB

  • MD5

    3b1ec86a9f625c07924c95f67f684d6e

  • SHA1

    c70a1746782fd71da0070f209a9bd6eda4c3ab5b

  • SHA256

    78ff2d4509c5c748c0e4d0d0c1c240d03807c41ba5dbad3146595ab172b3012e

  • SHA512

    0acb619efe1073be8a135c291f1807426a2b29c7fcd8e6421e600884832596f464fe70d6243acd5a682e30d1bd84045b4d52ec56d15126d3d1b6af0db0390ce1

  • SSDEEP

    384:DGHxfrhuhN++JdXVx4fyDisVaHMn1EIPSdjfOAAO/EUvc7D88SkjsOH3DwGrMRTM:DGp2/HTfnbma

Score
3/10

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

  • Modifies Internet Explorer settings 1 TTPs 28 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\synllc.github.io\synapse-x-documentation\index.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1852
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1852 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2028

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          182da9fcbadeb4d14f5626dc57add8ec

          SHA1

          36c147903e40de98d5e70d320ec2722aa6951ed2

          SHA256

          130011629536a0f85361b6cc35f2adca96225627d46b05ae911bd0d3912d3ad0

          SHA512

          8588b9bb8d741a7b398f5c99ff7171225ab4859cb9af0b01fcda7d2f9ffc765d54ff9fa7a19b79ecda06c54119492146c4c1c9de615fe0d25a9183a670ee6a48

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          aa658dbb6e83559e9a20fe80b271b62e

          SHA1

          8627f982c97f58171496197ef22918e0aad1c700

          SHA256

          69cd1914e1808c6b0034d7302575bf0659c85fb48d5b9088d9a6c21aeeac3b3a

          SHA512

          3ff1b560a3edaaf52b03d9dbaeea7d875df5c221dce25720271a450e55d57ac224473de686d13a19e1373e64c94f2f4501e7cdfc26679ad11894df25d73ae14a

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          7ae0dd159146cf94fa8aa9152dba7b9c

          SHA1

          d06b929b1d324dc510c1721a753ad2239a7fbe05

          SHA256

          8f750c179c5616e8a842c5bd1782fb1c79583409616025987b927d528ac68efe

          SHA512

          c1a9285ece36d5c1fc048eaed550453ea27abf18e5e75a59c9adfeb8608b03de81ea6b665973522653de9a6d5d6a38b024858139362416de5e46e67dca45d284

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          3557517eecccc4d2f2f3b0787a4cde14

          SHA1

          f8051a13b94064dbec2c1339f94de882e4b7f8d4

          SHA256

          4eecfddbfac3e6550d019e5032eae314cf62d9100f54952750b5547c6e314ae1

          SHA512

          cdaf9837b4056e7527fb72a1bcbb684babdb3680c3bc489f4fb6da8a03bd2822336c4612f109e2f8e369761f98f5f1a72f6d2b4a71e85437fa0d88884737d6b5

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          66c2cea9074f8aae16510889effd1efb

          SHA1

          d74dae67a25acdd3d25a04de6ccd431974ae6704

          SHA256

          95f5baa43d1ef30f4bf9dcc4233f25cb680a97847b95eacfb4e014e2b27dbae0

          SHA512

          8b4616db24cf0830b27d707e75089b32d19e8be444e51304d3df7f9340c0dbf6d24b51befa4ae386579b0c8706bbfac3cf10dafb93440af68045c4bda9be66c4

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          4cc35a69aba7bd37b0fb78ca36461d47

          SHA1

          89771d35d8ddb4fa29ac4bc6d21d8ed1a11cc8ce

          SHA256

          d781cadff425344e12b1b8f122327104c8fc09e1bccab0b62b1b2d162ad58c41

          SHA512

          557957faaf7c2fec6e0efebbe0671d511a2b82cc12b9f4a67216d9d5b21a97da64f1cb4bc1aa142cfedb9737ac471ffb3c7d88b701b2aa752cd0f15b29c00b96

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          8830b461388f29adf1b05627918a57c7

          SHA1

          37a5a8afe954e79b0cb1d28034fd0834a055ee90

          SHA256

          c64860486808d3948f0eabdacd5a50d111f9f4b6e4ab299207fed23d73e9b0c9

          SHA512

          36315fbb8b25cb73ca15b10f12cb35c4434805ca34e317c7c7f920fff2bbf1e5068a2405ba592c904f980495a4827b4acb62e02ce2455a481592bfce616e8b35

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          14490117416db9fcffd23e8164495782

          SHA1

          5a9f3e8b858b30113a838596f170e134766e8d14

          SHA256

          4eb21ca0ae94a6bf1e2690ee9a169947eecc456745ba50e4b6152563c24937e9

          SHA512

          c008c2a960f3535ddae159361af83408d8a1c96a6cb3757b55455ccb354756235f2a5ddc8d6f8dcf60d9fc4e5897fc45b9259c412a12213a473dbbc9641acb45

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          557b8dc7ed5f0eb445f19dffb672e515

          SHA1

          89a5b08a01ce7203dea29bc3510deb34845a6790

          SHA256

          6d7680ef5d4a5d8d552e454573955032e5f30f1b4124cdb5f27e9f358fe3add5

          SHA512

          06bf2e5de7f774587ac55cfe5a87289ff881bc8a23bbba849a6c9756f01d8abc7a8225e95cc82effbbff775445e076cdd0efff64a5196030ff3e16ee1898628c

        • C:\Users\Admin\AppData\Local\Temp\Cab937C.tmp

          Filesize

          70KB

          MD5

          49aebf8cbd62d92ac215b2923fb1b9f5

          SHA1

          1723be06719828dda65ad804298d0431f6aff976

          SHA256

          b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

          SHA512

          bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

        • C:\Users\Admin\AppData\Local\Temp\Tar942B.tmp

          Filesize

          181KB

          MD5

          4ea6026cf93ec6338144661bf1202cd1

          SHA1

          a1dec9044f750ad887935a01430bf49322fbdcb7

          SHA256

          8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

          SHA512

          6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b