hxxps://nawa-store[.]com/shopinside

General

Target

https://nawa-store.com/shopinside
Sample

210908-3r4jnsadgn

Score

1^/10

Malware Config

Signatures

Modifies Internet Explorer settings 1 TTPs 45 IoCs

adware spyware

Modify Registry

T1112

Processes:

iexplore.exeIEXPLORE.EXEIEXPLORE.EXEIEXPLORE.EXEIEXPLORE.EXEIEXPLORE.EXE

description	ioc	process
Key created	\REGISTRY\USER\S-1-5-21-1669990088-476967504-438132596-1000\Software\Microsoft\Internet Explorer\Zoom	iexplore.exe
Set value (data)	\REGISTRY\USER\S-1-5-21-1669990088-476967504-438132596-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing\NewTabPage\MFV = 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	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-1669990088-476967504-438132596-1000\Software\Microsoft\Internet Explorer\Main	IEXPLORE.EXE
Key created	\REGISTRY\USER\S-1-5-21-1669990088-476967504-438132596-1000\Software\Microsoft\Internet Explorer\DomainSuggestion	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-1669990088-476967504-438132596-1000\Software\Microsoft\Internet Explorer\DomainSuggestion\FileNames	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-1669990088-476967504-438132596-1000\Software\Microsoft\Internet Explorer\LowRegistry	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-1669990088-476967504-438132596-1000\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-1669990088-476967504-438132596-1000\Software\Microsoft\Internet Explorer\Main\WindowsSearch	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-1669990088-476967504-438132596-1000\Software\Microsoft\Internet Explorer\Recovery\PendingRecovery\AdminActive = "0"	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-1669990088-476967504-438132596-1000\Software\Microsoft\Internet Explorer\LowRegistry\DontShowMeThisDialogAgain	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-1669990088-476967504-438132596-1000\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-1669990088-476967504-438132596-1000\Software\Microsoft\Internet Explorer\PageSetup	iexplore.exe
Set value (data)	\REGISTRY\USER\S-1-5-21-1669990088-476967504-438132596-1000\Software\Microsoft\Internet Explorer\Main\Window_Placement = 2c0000000200000003000000ffffffffffffffffffffffffffffffff2400000024000000aa04000089020000	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-1669990088-476967504-438132596-1000\Software\Microsoft\Internet Explorer\Main	IEXPLORE.EXE
Key created	\REGISTRY\USER\S-1-5-21-1669990088-476967504-438132596-1000\Software\Microsoft\Internet Explorer\BrowserEmulation\LowMic	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-1669990088-476967504-438132596-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing\NTPFirstRun = "1"	iexplore.exe
Set value (data)	\REGISTRY\USER\S-1-5-21-1669990088-476967504-438132596-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing\NewTabPage\MFV = 01000000d08c9ddf0115d1118c7a00c04fc297eb010000000d327e8bcedb2d4b986abc323ea826ca00000000020000000000106600000001000020000000d751cc3499a48187c82491fb27b18c1eeebd60eb537c115ef2fad7a84f42452f000000000e8000000002000020000000c6b4f4aae39c96102b468e03af50548f52b8d785b250a7cb2c43d9fbe8ad131690000000bb789f0c9d92fbed65f96bedf3bf887b6fef4d2a53e2cebf373fdb97fb84ed5f94e5703c9f221041e3e6c376c728d0c4107ffa01b581bc7a14880e41288ea3db219845902cb64320e66a0ee9e761ff754acd10e63fd2039f15243d2808d40cca74e9e1ccd083ebd82ed76564953d2de4f19f5157c94fbcd2fc25480aca023e4adafc5af78c92315922f448bcd4e9f7234000000056f0813147b9c0c019d4ac2ae0216ac3bc3f2445031e0d7ab4ac1017e917148ee3456ed9f7b0be0953b01f644fe080176d726e4b0ee78fdb2506c9042aa801fa	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-1669990088-476967504-438132596-1000\Software\Microsoft\Internet Explorer\Main	IEXPLORE.EXE
Key created	\REGISTRY\USER\S-1-5-21-1669990088-476967504-438132596-1000\Software\Microsoft\Internet Explorer\Recovery\PendingRecovery	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-1669990088-476967504-438132596-1000\Software\Microsoft\Internet Explorer\GPU	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-1669990088-476967504-438132596-1000\Software\Microsoft\Internet Explorer\InternetRegistry	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-1669990088-476967504-438132596-1000\Software\Microsoft\Internet Explorer\Toolbar	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-1669990088-476967504-438132596-1000\Software\Microsoft\Internet Explorer\Recovery\AdminActive	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-1669990088-476967504-438132596-1000\Software\Microsoft\Internet Explorer\Main\WindowsSearch	IEXPLORE.EXE
Set value (str)	\REGISTRY\USER\S-1-5-21-1669990088-476967504-438132596-1000\Software\Microsoft\Internet Explorer\Main\WindowsSearch\Version = "WS not running"	IEXPLORE.EXE
Set value (str)	\REGISTRY\USER\S-1-5-21-1669990088-476967504-438132596-1000\Software\Microsoft\Internet Explorer\Main\WindowsSearch\Version = "WS not running"	IEXPLORE.EXE
Key created	\REGISTRY\USER\S-1-5-21-1669990088-476967504-438132596-1000\Software\Microsoft\Internet Explorer\Main	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-1669990088-476967504-438132596-1000\Software\Microsoft\Internet Explorer\DomainSuggestion\NextUpdateDate = "337909514"	iexplore.exe
Set value (data)	\REGISTRY\USER\S-1-5-21-1669990088-476967504-438132596-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing\NewTabPage\DecayDateQueue = 01000000d08c9ddf0115d1118c7a00c04fc297eb010000000d327e8bcedb2d4b986abc323ea826ca000000000200000000001066000000010000200000002340a6a5604e59d21a8e9162e9482ba080d38f274cbee05e4dbfb71aa831d63e000000000e800000000200002000000097674ff665bc99896c58bce526a2017557a100b1f3241439401a81d54f17efb6200000003c10788e8a294ee03be2c2c73b14d4465a078bfa8975bd1a7930b863092bba454000000011a23fcd83addef2d28daba4b39583ff5525a3d7760af2a1b6d1b9b8966260e47290911515c713cf45c13097dfd3fb99f375cc110f146f56b4962cda13421f2b	iexplore.exe
Set value (data)	\REGISTRY\USER\S-1-5-21-1669990088-476967504-438132596-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing\NewTabPage\LastProcessed = 201704360ba5d701	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-1669990088-476967504-438132596-1000\Software\Microsoft\Internet Explorer\Main\WindowsSearch	IEXPLORE.EXE
Key created	\REGISTRY\USER\S-1-5-21-1669990088-476967504-438132596-1000\Software\Microsoft\Internet Explorer\Main	IEXPLORE.EXE
Key created	\REGISTRY\USER\S-1-5-21-1669990088-476967504-438132596-1000\Software\Microsoft\Internet Explorer\Main\WindowsSearch	IEXPLORE.EXE
Key created	\REGISTRY\USER\S-1-5-21-1669990088-476967504-438132596-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-1669990088-476967504-438132596-1000\Software\Microsoft\Internet Explorer\Recovery\AdminActive\{67F5D031-10FE-11EC-BBAD-FE4AFC315D7E} = "0"	iexplore.exe
Set value (str)	\REGISTRY\USER\S-1-5-21-1669990088-476967504-438132596-1000\Software\Microsoft\Internet Explorer\Main\WindowsSearch\Version = "WS not running"	iexplore.exe
Set value (str)	\REGISTRY\USER\S-1-5-21-1669990088-476967504-438132596-1000\Software\Microsoft\Internet Explorer\Main\WindowsSearch\Version = "WS not running"	IEXPLORE.EXE
Key created	\REGISTRY\USER\S-1-5-21-1669990088-476967504-438132596-1000\Software\Microsoft\Internet Explorer\IETld\LowMic	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-1669990088-476967504-438132596-1000\Software\Microsoft\Internet Explorer\Main\CompatibilityFlags = "0"	iexplore.exe
Set value (str)	\REGISTRY\USER\S-1-5-21-1669990088-476967504-438132596-1000\Software\Microsoft\Internet Explorer\Main\FullScreen = "no"	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-1669990088-476967504-438132596-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing\NewTabPage	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-1669990088-476967504-438132596-1000\Software\Microsoft\Internet Explorer\Main	IEXPLORE.EXE
Key created	\REGISTRY\USER\S-1-5-21-1669990088-476967504-438132596-1000\Software\Microsoft\Internet Explorer\DomainSuggestion\FileNames\	iexplore.exe
Set value (str)	\REGISTRY\USER\S-1-5-21-1669990088-476967504-438132596-1000\Software\Microsoft\Internet Explorer\DomainSuggestion\FileNames\ja-JP = "ja-JP.1"	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-1669990088-476967504-438132596-1000\Software\Microsoft\Internet Explorer\IntelliForms	iexplore.exe

Suspicious use of FindShellTrayWindow 1 IoCs

Processes:

iexplore.exe

pid process

1996 iexplore.exe

Suspicious use of SetWindowsHookEx 20 IoCs

Processes:

iexplore.exeIEXPLORE.EXEIEXPLORE.EXEIEXPLORE.EXEIEXPLORE.EXEIEXPLORE.EXE

pid	process
1996	iexplore.exe
1996	iexplore.exe
1872	IEXPLORE.EXE
1872	IEXPLORE.EXE
1872	IEXPLORE.EXE
1872	IEXPLORE.EXE
1316	IEXPLORE.EXE
1316	IEXPLORE.EXE
1316	IEXPLORE.EXE
1316	IEXPLORE.EXE
604	IEXPLORE.EXE
604	IEXPLORE.EXE
604	IEXPLORE.EXE
604	IEXPLORE.EXE
548	IEXPLORE.EXE
548	IEXPLORE.EXE
1564	IEXPLORE.EXE
1564	IEXPLORE.EXE
1564	IEXPLORE.EXE
1564	IEXPLORE.EXE

Suspicious use of WriteProcessMemory 20 IoCs

Processes:

iexplore.exe

description	pid	process	target process
PID 1996 wrote to memory of 1872	1996	iexplore.exe	IEXPLORE.EXE
PID 1996 wrote to memory of 1872	1996	iexplore.exe	IEXPLORE.EXE
PID 1996 wrote to memory of 1872	1996	iexplore.exe	IEXPLORE.EXE
PID 1996 wrote to memory of 1872	1996	iexplore.exe	IEXPLORE.EXE
PID 1996 wrote to memory of 1316	1996	iexplore.exe	IEXPLORE.EXE
PID 1996 wrote to memory of 1316	1996	iexplore.exe	IEXPLORE.EXE
PID 1996 wrote to memory of 1316	1996	iexplore.exe	IEXPLORE.EXE
PID 1996 wrote to memory of 1316	1996	iexplore.exe	IEXPLORE.EXE
PID 1996 wrote to memory of 604	1996	iexplore.exe	IEXPLORE.EXE
PID 1996 wrote to memory of 604	1996	iexplore.exe	IEXPLORE.EXE
PID 1996 wrote to memory of 604	1996	iexplore.exe	IEXPLORE.EXE
PID 1996 wrote to memory of 604	1996	iexplore.exe	IEXPLORE.EXE
PID 1996 wrote to memory of 548	1996	iexplore.exe	IEXPLORE.EXE
PID 1996 wrote to memory of 548	1996	iexplore.exe	IEXPLORE.EXE
PID 1996 wrote to memory of 548	1996	iexplore.exe	IEXPLORE.EXE
PID 1996 wrote to memory of 548	1996	iexplore.exe	IEXPLORE.EXE
PID 1996 wrote to memory of 1564	1996	iexplore.exe	IEXPLORE.EXE
PID 1996 wrote to memory of 1564	1996	iexplore.exe	IEXPLORE.EXE
PID 1996 wrote to memory of 1564	1996	iexplore.exe	IEXPLORE.EXE
PID 1996 wrote to memory of 1564	1996	iexplore.exe	IEXPLORE.EXE

C:\Program Files\Internet Explorer\iexplore.exe
"C:\Program Files\Internet Explorer\iexplore.exe" https://nawa-store.com/shopinside
1⤵
- Modifies Internet Explorer settings
- Suspicious use of FindShellTrayWindow
- Suspicious use of SetWindowsHookEx
- Suspicious use of WriteProcessMemory
PID:1996

C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
"C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1996 CREDAT:275457 /prefetch:2
2⤵
- Modifies Internet Explorer settings
- Suspicious use of SetWindowsHookEx
PID:1872

C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
"C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1996 CREDAT:340994 /prefetch:2
2⤵
- Modifies Internet Explorer settings
- Suspicious use of SetWindowsHookEx
PID:1316

C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
"C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1996 CREDAT:1520652 /prefetch:2
2⤵
- Modifies Internet Explorer settings
- Suspicious use of SetWindowsHookEx
PID:604

C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
"C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1996 CREDAT:406561 /prefetch:2
2⤵
- Modifies Internet Explorer settings
- Suspicious use of SetWindowsHookEx
PID:548

C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
"C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1996 CREDAT:1520667 /prefetch:2
2⤵
- Modifies Internet Explorer settings
- Suspicious use of SetWindowsHookEx
PID:1564

Network

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

1

T1112

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
MD5
85e8d1e212db0f5acd09328ffbb8978b

SHA1
9884e99bcb9379fdd100c02d2e55c32d73c1e892

SHA256
dcd5e80deaecd80be32d15288ee344ee54b8c44a86d68cf73a1414173a8395e0

SHA512
6fd88011d9fd2026b396142b670add5b5dcdfba02061a325d68ca534316c076ba0635a0963acd942de07e32da51c235adaf38fcf8673a8b5e131771b3c3f338b

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\6V0SSI7A\13TC2UX9.htm
MD5
ce6937d6985389879059d42a08f5c218

SHA1
ecba9968864632044ed2abb22afe2c2c8d40054f

SHA256
bf2e29b7cfa5b0833557e43e7d4f8858c38abc40615b729e8b575b81a8747671

SHA512
ba3ebc93be92feeac29dc8e59e6939095c59e4493a42a6cca2eed1f42bfe28225f58265d5ba91d5fedc37995920bca242d546411156617333c6178ff751c01ef

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\6V0SSI7A\AO7H4NRY.htm
MD5
7a62b9bbb0eec86439ac366f5b79c1d0

SHA1
686e71333ec937126561efae0aded936024794fa

SHA256
bc041ba1ffd500b6c85e3be4b7fc5888bdd60818161ac37e5183084a66763427

SHA512
c64a35c1abb4565f888b13ce124a6355f8bbd73a12a3b71c4688c3d8344dc6fc69a06ca36e2fc7172107b33755e80a33f2d9fa3feb5d7275ffa2ec05d6ad8d32

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\LX9K6CVY\CY6XQVNM.htm
MD5
562e7dd34e9b778dc25f82f55a1f7bd1

SHA1
dda9c1e209367b9c091ffbb8640bc2ec51819fb1

SHA256
d7a892131eb33450b9a4b47a5d06471f02a59144aa145360e0a615bd1bd8a5e0

SHA512
030b5228d70effe3fe1c9bc53f6feac27237daf158a45269091060de2cc80220c93c1ebe1751d2a71a6aa5c736ac380d16d83d9047d2c42967c718f3c54e4f1b

Download Submit
C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Cookies\T6H2YU56.txt
MD5
d451a1e3985f68ee8cfcb0f7ef2b9106

SHA1
494d205be786a55ff26eb71466c02bd6d43e34ee

SHA256
f8e1f5a1b97e1b713b3e16c64a52d37e78bd6c895d2574efaddf57c6e073bfc9

SHA512
db8dc9274d037cf5568074ac56c9063e9bb256f5b1bcb7786ad8589e713e01edba6e1a0beadf392a2318e40916d8d1ea3945df50f468cf71a54c30774f874a5b

Download Submit
memory/548-60-0x0000000000000000-mapping.dmp

Download
memory/604-58-0x0000000000000000-mapping.dmp

Download
memory/1316-55-0x0000000000000000-mapping.dmp

Download
memory/1316-56-0x00000000767D1000-0x00000000767D3000-memory.dmp

Filesize
8KB

Download
memory/1564-62-0x0000000000000000-mapping.dmp

Download
memory/1872-54-0x0000000000000000-mapping.dmp

Download
memory/1996-53-0x000007FEFC121000-0x000007FEFC123000-memory.dmp

Filesize
8KB

Download

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix ATT&CK v6

Replay Monitor

Loading Replay Monitor...

Downloads