Overview

overview

5

Static

static

3

phish_aler...9).eml

windows7-x64

5

phish_aler...9).eml

windows10-2004-x64

3

assetinsur...04.pdf

windows7-x64

3

assetinsur...04.pdf

windows10-2004-x64

4

email-html-2.html

windows7-x64

3

email-html-2.html

windows10-2004-x64

4

email-plain-1.txt

windows7-x64

1

email-plain-1.txt

windows10-2004-x64

1

Analysis

  • max time kernel
    121s
  • max time network
    127s
  • platform
    windows7_x64
  • resource
    win7-20240903-en
  • resource tags

    arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
  • submitted
    27/03/2025, 11:14

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    email-html-2.html

  • Size

    11KB

  • MD5

    179549c57081ae02dc13e95baed8e240

  • SHA1

    e9bee85dfb278ebe6277b0d161b0ec70b5c961b6

  • SHA256

    e7c2c423299fba777115a64107c9b5d7fd77e29cd1706429e86d180cd859c8d0

  • SHA512

    cff8d2a777176bf779f73967c4633aca12f7a40352b905270851c4e3d3b46d6dcb16fcebaaf7751238d5bde4de0dc796c497932f8fd120a8562bcb736efbff6e

  • SSDEEP

    96:9gP1snL+00NvW5u+CRoQbKzNHKKJBsNnuQyoIVXpzJkuFzN9jT59OxJ1snL+00NW:zx2PUx2Sx2Bx23Bx2QGx29OBx27v

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 41 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\email-html-2.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2376
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2376 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2348

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015
    Filesize

    71KB

    MD5

    83142242e97b8953c386f988aa694e4a

    SHA1

    833ed12fc15b356136dcdd27c61a50f59c5c7d50

    SHA256

    d72761e1a334a754ce8250e3af7ea4bf25301040929fd88cf9e50b4a9197d755

    SHA512

    bb6da177bd16d163f377d9b4c63f6d535804137887684c113cc2f643ceab4f34338c06b5a29213c23d375e95d22ef417eac928822dfb3688ce9e2de9d5242d10

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    a8cb3d1e1ce1e8394706fbf409e733d3

    SHA1

    1f40c261ce5053b5e61ee1e8f99560a6da2e0f89

    SHA256

    fe3f91d0e798094f0b12d2e5a2369749b24b6794b84c54714a4039700627faa8

    SHA512

    adb00b63193ec09326cf7dc343a786216cbb993dc3a80415bbf2080e98edd71f5ccc2f78a984197080ca777ae3b3f4c63d6788607312ea144320f556253ed53e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    e257f7f872408a1a69df0d90ac17669e

    SHA1

    c5638264950c9cdae6fd8ed0581bed091935d8cc

    SHA256

    51ff0b3d949ea094f967f4206552e481b04084a4e04ee98234b3dd2a8ff3ff8f

    SHA512

    6e383cce0f36c59f622fc7c86d2c9106946bb819f633027193b65afe721fa72013c9475dc4a20526c162f3f11b20d4aa54507208d4819e7880d885c6a371f8d1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    e9d6d0eb911ae42d2ca46cd36366ee37

    SHA1

    0611db83b669235214aa813f57fada58bfa36cc4

    SHA256

    af47110af76ed7286f2b74102d19ce446c6a1c8cf54fcf7741ac97f85220a92e

    SHA512

    fd1ffde3f958684aa04c72e52501dc191e383ba155a5ef70160cfcb78dfc043df64abe7046747bf72cf32582bde62ed8cc9e30b1964a1b677c4b462e71ea5539

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    0b4674afdf33e463f5aedfeace2f7231

    SHA1

    8fc59572f51b2da4307d14e040712d62c4de0f52

    SHA256

    1437db8f112ede17e6b29de6ce46f0b570c375a30843b70c721b6c8931b28702

    SHA512

    c78a49686fd1750a56d6d9d9a94667357b2e36f6f3a2b4ab597b21de95bd1fd7dd845119da16957c9abddba0bc0120206489ce8fe18bb72e97f63f4bbf17d45f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    354c0b9fdf90e3a025d5c4ad3d617b98

    SHA1

    d1e6c73342b156b629d87bae08b8ac205b40115d

    SHA256

    0b8103f73da8f1de6160cee3d6b12623424bd9b30dd42cbf1e6fede36c70cc4a

    SHA512

    c1fd3607753ef0350137eddd888921c8ce1fd7ad33f9c42c8c8ce81d6daec57f9bbe809e9ef45706ecd05840be5dd175179835223a57c97a7f962958a7189666

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    dbbf592f39dfff6c695d4babf88da770

    SHA1

    2063b85a8aa46b022f0861ffa6d05a3debfa6312

    SHA256

    2bba4022ac3972bfefc52fa56cda1bfc822c57c90e9a1a96ccd20384a4e38780

    SHA512

    16e03e8c939cbb81ef3285e0dd1069daac672d3fde59f0429ea7fadef1fce407501809431eb3aac92a1988971909a577ab7f2b6be21d507bf30762156b8beb27

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    6c546038cde7ce648664387d3dbe8298

    SHA1

    ed46fa2c04c6bc60760c340f3dfe95bd8b5b745d

    SHA256

    a81fa38b0c7a570d9017f3ebb37d47472676274d1b74f6d73c7a4211d282045d

    SHA512

    adc151f48c6d25562ce02257b7341f8744529e8ac55d6ff2f14e1af2374eb9f2cc5a5b8559969ef4d566eb8863aae4ddabbd80468f9c660a70377432388cb873

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    071f32f0d1d54e18bd378ebc308c3e26

    SHA1

    dd2979dafba68d1d15512df94822cbbea3763559

    SHA256

    369b635d423ff0ae347b355d62fdfccb0ac8fb10494dfb4a02a22df80b751e2e

    SHA512

    6b5a148e621caee7ad59f57f8b9fa687adc58d8bb8326f94121d661e9987429205d46853f8a638a654ea9a477cc332a72c683626d13cab08cee3f87abfd0b52f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    3b375c025764be3d2f53385b62f8fdd7

    SHA1

    22210c7c8a604895d1819b14b7f1cdeb0b453628

    SHA256

    020ea2368e285a1678c9d84cb387b3a5260a4313747b5011ec6eef101dbace13

    SHA512

    6a3c09474d940c9f3e8b6073daff9a4cdf6b217887aa1dd66edba98392f4499f69978ee8f14e48680dc80ccb98a31c78dcd136ab42d4665ac2d07505f8a54bef

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    dd110ad96c934d8acd6caa5a83a8baf5

    SHA1

    8b2998550d10bc8e5f01520743278855c846822c

    SHA256

    0a2e1245c14728d738638d39b8b11ba10ce542421ce43f23f6f025b3e76ddcdd

    SHA512

    cb45f0f981a28b8ef6bab860bb0fa8540657f1436f6cf356e7945fce2c59d42c9ec9620b2e143444818b99721a95862e12e43b1bf669a13517978599baa247b8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    1e3a40926837a2337eda4042f8a83bc8

    SHA1

    5b60cfe800fe441fd22b2eea5f977b729951fca5

    SHA256

    2c7476c0e4f732dc5dce19a246009299984cfc856709393924e9d3d68ae27dd4

    SHA512

    621f178806a5c85792d41d762d7c81887d5426a8daceaf917c23f5d6f03942e8349e1100da642ddae5406a2e900e7aef5174a567326536b37eb75475854cadfa

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    6e812d0309c4765ce98c43991f8cfcfb

    SHA1

    759e3337320a79c65f91faf06e1aaa5900b137fb

    SHA256

    3f675c2179114b72977dd0e42dfc98a91abeb41eac21b4f9aa555021cdac094d

    SHA512

    0b1c9a2b0de003096c43c744005c31f7afc78e2eb8f12dd15b254df1e0af6b8485ce8e970aaa4d74fe21d4b75c0bdc049e18c1cf795cc2bd63539014d4a6f392

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    a656725280949277b163e2faf032e837

    SHA1

    9cede9883e2871d6953f4b3087a34bcb51b68521

    SHA256

    00c0dcab50d253e25c286a9001c159ca61c2ace135dd89b1686ca9ee1ddfc8c2

    SHA512

    74d25a59ed62560d5fd702db1b78695cebebef4887b7ee07a5a9167cb8ec7a11b1322b30e24bc7284f0f5e9b539a7bd0015681e83386523ed40838a0b7e3dd88

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    062a3a1bf025482c5dee973056f39c6c

    SHA1

    e055e123d93a2c9897464347eba7eb8cf33faf90

    SHA256

    aecf7a064941d3686c8d539b0923e0a751ec34bfad321d496ad65abe325fedd1

    SHA512

    7954901c0a8d94e02675fe5c3de6c4b7c65d8dd2b1895c2d1f2574011c644c3ce487b0e871c5b50bc2bce0ba37800160b643971c20d8fb2c40f9e39418f949b9

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    118165fbc349b96f5c742360a696ac58

    SHA1

    6e499c57a8840e7b1993202d485c35eb8ac1c2e9

    SHA256

    819b0aec250ebfca99d41a06638aba1a0d5921a167641373bc6e15765fedf50d

    SHA512

    58665453a686f0811b0cddb490036874210732b3dd0b22475bf4ab321689e46478cb63072dc86749ccb8b51145e0f3f7fa97d41d6b97958c6306337f1112dccd

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    4bbbbe7dbb0d5c581efce8747b3364cd

    SHA1

    f3591fab4094078ed6f267bf062b9b0c91d308ef

    SHA256

    a2bf3888a72e8145306e27468eff7adf1bb651e59d6f31b82d2a7a6fe5dc68d1

    SHA512

    cc9e17f763cc78760494aaa80906a767a6e8af28888a49c705abf33fa585f85d091e62e7858dd5784696876baad1b3f6180b5febdc683266049250133ced4cf6

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    176397e5dd41bd7c77fb878d91f6ef51

    SHA1

    80c2fbede1d2c951becffdd2520921d02a9b37fa

    SHA256

    32bb7448b7f44e335225fb784518c5a968ae899b7ca37d2b43054b2930205117

    SHA512

    2e2e569d8b0bb88b5b26c487bd5395707f8ba79b20b2b91bec46cf2d99e97ef74c2ee098b85856242c7595fed295addac020f1abcf37d25409ea8280ad3e5383

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    ea2b1bbecbc172b226c4fdbc667241e3

    SHA1

    8a2c162e8eacc21c736ffd7dd93299addd8049b4

    SHA256

    bec454bc916a8b2cf2d740832bb4e75ed75491c1250f5ecceb682a6f9eac4807

    SHA512

    5683bf31f422fab04b3423010e0e88940e05517b55b9885ee07309127cf51033788cf1f1672e84f892b935eb5c2d2a78d2243b42ab8ff3da37a1d639a0e12382

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabF193.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarF264.tmp
    Filesize

    183KB

    MD5

    109cab5505f5e065b63d01361467a83b

    SHA1

    4ed78955b9272a9ed689b51bf2bf4a86a25e53fc

    SHA256

    ea6b7f51e85835c09259d9475a7d246c3e764ad67c449673f9dc97172c351673

    SHA512

    753a6da5d6889dd52f40208e37f2b8c185805ef81148682b269fff5aa84a46d710fe0ebfe05bce625da2e801e1c26745998a41266fa36bf47bc088a224d730cc

    Download Submit