Overview

overview

1

Static

static

1

URLScan

urlscan

1

http://www.bodykitsk...

windows7-x64

1

http://www.bodykitsk...

windows10-2004-x64

1

Analysis

  • max time kernel
    145s
  • max time network
    149s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20220812-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20220812-enlocale:en-usos:windows10-2004-x64system
  • submitted
    14-02-2023 20:27

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    http://www.bodykitskingdom.co.uk/magento/js/log.php

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 64 IoCs
    adwarespyware
  • Modifies registry class 1 IoCs
  • Suspicious behavior: EnumeratesProcesses 2 IoCs
  • Suspicious use of AdjustPrivilegeToken 6 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 14 IoCs
  • Suspicious use of WriteProcessMemory 6 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" http://www.bodykitskingdom.co.uk/magento/js/log.php
    1⤵
    • Suspicious behavior: EnumeratesProcesses
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1584
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1584 CREDAT:17410 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:5108
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1584 CREDAT:82958 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Modifies registry class
      • Suspicious use of AdjustPrivilegeToken
      • Suspicious use of SetWindowsHookEx
      PID:2788

Network

MITRE ATT&CK Enterprise v6

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\24BD96D5497F70B3F510A6B53CD43F3E_3A89246FB90C5EE6620004F1AE0EB0EA
    Filesize

    1KB

    MD5

    0c60783d37ebd37b1ebf089a4fd49708

    SHA1

    935de5fa574ac31110b081d3cc7b4f3fd69dcaa6

    SHA256

    b9738f4da05f9f8c53a450fa87d89867af93dbdc9c4861f35fb11d815b4542c2

    SHA512

    44618b74b334f6e711358e36162ac0a0acbb33163b2997e5f5393b62e4602d7f375306b67e3fe7edc26442eea452f8adfb48619601d06ab241dcd0b75e374787

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\265C0DEB29181DD1891051371C5F863A_1694189887CF06662249C56FB9CAA600
    Filesize

    472B

    MD5

    bb1e4db11a6d0206c68a9274210d2120

    SHA1

    ce389f25bc611015de3ea733b5a6c08ad13af6ae

    SHA256

    1b78c7ffc08566a5bdd8638c50f92e8f5d77d5d398e938ff82b5e5bf7f08cb1f

    SHA512

    877028c98191f6d2400dd6d8f7abc0793af41530c3142e5697f555f2bdef8ef01fb2a4aab43f6256d593b5c23f3c0cbf5492eebb194cc55e51060a5785c9dbfb

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\265C0DEB29181DD1891051371C5F863A_FF545F2447E4E88A054577540CB20F3F
    Filesize

    471B

    MD5

    1221c272ad651cf835eda3d2e3d92c3f

    SHA1

    f8c208fa196981c24910ce746fa6694ba773a05a

    SHA256

    e6ae3a2e4d15b094a85fe199501c6420fbd0e6edfad49d1c4d1a1c2165b0125c

    SHA512

    140f5a88eca81f425960cb979a8507cec9b6c703b820e71002a53bd24440e9f7328951e908f527ffbe0346a69e5db9895c6b3a5b4c388bb4de7719da2607f157

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\6BADA8974A10C4BD62CC921D13E43B18_1DC6D7385EA816C957BA2B715AC5C442
    Filesize

    1KB

    MD5

    5e9c41263499c8c20d5fe386b6ac3cb3

    SHA1

    4d8760919e1b3b8723871d14f38fc25d5591c11c

    SHA256

    708d5b31a19309c9dc66e2e5cd25ea28b5c21e2ee2842b1feb7034b4aca03fdb

    SHA512

    cd29f9cca85cd38c629676fdf8e7a16273d0fc61ce4e0d05db5d7c3df5a88121e185fb7b300949197482f6d5d1121b10b472a17984ac5535bde72fe5e76b19f3

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\6BADA8974A10C4BD62CC921D13E43B18_28DEA62A0AE77228DD387E155AD0BA27
    Filesize

    1KB

    MD5

    bf133cf10dcffd1263bf9c5da60dab0a

    SHA1

    d7aa9ebeaea8fac10983a4a9716dc72207d7007a

    SHA256

    ea0e6600c739bc8e3daafcfe6cccc973954f5ae6c3e6dd5fa2174eeb8839eace

    SHA512

    ae311e8d1c4d6f306c10beac84225eb71d4428af8a2d3d3ec3d0d471b228705b052f0bbf23e3d6aa394010edf690dfdfe61e1b2b1b3de32f5ce5b082ca39c258

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\7423F88C7F265F0DEFC08EA88C3BDE45_AA1E8580D4EBC816148CE81268683776
    Filesize

    471B

    MD5

    dd3762c0e3e884c5b1810e000d348bae

    SHA1

    a5c25fc58e5f1ab11c2eae9fb8fd640b35ea6e1f

    SHA256

    513f96d78d0b4e87981ab4764943bc623fbb5bd28afc86fa8c259c590aa42514

    SHA512

    df20a18964229e3101d4769cd8696e92cb9246e91538d6b0ecf66363e55f1466370613074cb98a28c00b478087d594f247591e1988ccbb25f5d331b4157cb245

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\CAF4703619713E3F18D8A9D5D88D6288_A7725538C46DE2D0088EE44974E2CEBA
    Filesize

    724B

    MD5

    f569e1d183b84e8078dc456192127536

    SHA1

    30c537463eed902925300dd07a87d820a713753f

    SHA256

    287bc80237497eb8681dbf136a56cc3870dd5bd12d48051525a280ae62aab413

    SHA512

    49553b65a8e3fc0bf98c1bc02bae5b22188618d8edf8e88e4e25932105796956ae8301c63c487e0afe368ea39a4a2af07935a808f5fb53287ef9287bc73e1012

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\F07644E38ED7C9F37D11EEC6D4335E02_81782FA44A40DE105399E9D74979FFF7
    Filesize

    472B

    MD5

    81a861ad34eebfde7b0fb8be89ae9a80

    SHA1

    4e36dac83150fac2efa4cada5b72ae50fe7aa95c

    SHA256

    f9dca744ee31eaffa8710d2e1863ce4ee0e0a206b0288b82a6631f4e424c561d

    SHA512

    1dae1e3f3c6e626718c0e90329bf79fcf2f779aa957ee256285ea6f62680a307b2351a763961787ddc955e04f8596b6e779dfc75847ded998af7a29c0176010b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\24BD96D5497F70B3F510A6B53CD43F3E_3A89246FB90C5EE6620004F1AE0EB0EA
    Filesize

    410B

    MD5

    424d0638eee44fc0edc0bbd56f556d47

    SHA1

    ea424addfbd90c2d0e9dfeb77d6092ca6f685837

    SHA256

    19c26f9443b9c018cd251abdb7a98d7b7d772603b7fe7fb4f78c2554e6ed8bd1

    SHA512

    90ae977e98ae8677df03cb362ee44aadac7946ea93c48d1ec828d4d57f6fcdf34a481a55fbba2a7ee45e9016eb54cbc35558caf7c21ba026f2579438599ff3b7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\265C0DEB29181DD1891051371C5F863A_1694189887CF06662249C56FB9CAA600
    Filesize

    402B

    MD5

    aa58752e9544225fab13054f239df392

    SHA1

    e5eac7a319f574b8ef33781226c1b1ba51203152

    SHA256

    b47c3696a93a82ce9a3bbb797c442fda1e58575ce0d72c3fe1c515ef2a74b462

    SHA512

    be9890358fc2b0c65d43a8caa27b92056682202801ee6740441feca0aa72ae4c6682f6f167006998b94ea3d1d81d426bab43d37fc734bd59ee9c45dd756beed3

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\265C0DEB29181DD1891051371C5F863A_FF545F2447E4E88A054577540CB20F3F
    Filesize

    410B

    MD5

    4b0f60b59d6bf2a0ed840b926a74dde3

    SHA1

    961464eff1acbd80286b0e5c69c1b9d5f1609cbc

    SHA256

    04fb949feba4bef5075043c3ff5dc921e4a05c3dbd9a138bb13f08a1d99705d4

    SHA512

    745da5425a56714cdf70c354eec47050b91042692464eef62f87b5c053771e73a3bb154825856e625783aae720c84c21de5ba23efad841e6ce33ee8894285795

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\6BADA8974A10C4BD62CC921D13E43B18_1DC6D7385EA816C957BA2B715AC5C442
    Filesize

    416B

    MD5

    3cf5ddcb7e676fdee13d68e0551ba8b5

    SHA1

    136ff7434829db2ba49882cf1080a2e4a7a1480f

    SHA256

    f1b1c1181d0888d44641976fffd03358e678805d694f45447eea2e022795fc6a

    SHA512

    9e30dc5afa024e1053046ed2e8890d9cdb619f7c6e21d9df7000d42994d47360750a610a870575ca1b1cc31876d34b3fbc18dd42ebe18e4a4b2c3a3ceba54ff9

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\6BADA8974A10C4BD62CC921D13E43B18_28DEA62A0AE77228DD387E155AD0BA27
    Filesize

    438B

    MD5

    6887e5eef3bea805ff67766986ddebb1

    SHA1

    133e15af8804cbc570684081c17d9bd1dc0dc5ec

    SHA256

    daac2d6bc786484338c3409987e3fe5a288ead08856c903c1e2ff4754d991a0e

    SHA512

    8c3df83cabe85ac0d21690dce96d84548d219d1bb803a2d62643411f105c2e808656b3981139327af3feea1c304318556beb6a2b5b80048f4637fdc24cda0700

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\7423F88C7F265F0DEFC08EA88C3BDE45_AA1E8580D4EBC816148CE81268683776
    Filesize

    434B

    MD5

    2ae82d15aca2613186006af0ac41cb17

    SHA1

    2ce114d1f13584674b12ae5b1e4db50e8771e276

    SHA256

    0969209d5d178dff12d847997d487403dacb9f8f959a80a895ba12ecea5f3eaf

    SHA512

    9a0c9214b8e4f7c084f80e5c568e2831ab8ccaae3c8bfdca99e38bf7526fca16dfd103a938c66186cbf7383adcf0b594b93f6a457da9e1a5f69908da33e278b7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\CAF4703619713E3F18D8A9D5D88D6288_A7725538C46DE2D0088EE44974E2CEBA
    Filesize

    392B

    MD5

    d6cf5d74bccdab13c6317dbe3dbb1607

    SHA1

    0ef0bd2541355674ff8b68739bb1a9b0dcbe1c95

    SHA256

    d2367338659fa1d36031a495923990001bffadfc02e39617ee6a0436a04c6671

    SHA512

    8f326c24c6099b9bcbe90ea0fcd796fc6d36fb700b87b8e363a932bfb04e1bfb574fb9ab8556a049e335700a07095c1ed1305582bdf6dfebbccc8103e6645eb8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F07644E38ED7C9F37D11EEC6D4335E02_81782FA44A40DE105399E9D74979FFF7
    Filesize

    410B

    MD5

    a6583836c6ade84da0bcca2ce127c46f

    SHA1

    7479d7f2ff40a2c9153ba41cdeb63c694f02984f

    SHA256

    29e689c5a67ace515d37ec6f020d3b07e67c8ec66b2fcd623ad8659440243d7d

    SHA512

    345029e55734e5f46e939450e673de41c5fc62adf0d95da0161ef35cebe1564fc2b8c7384bdbe4c4568d18dc11ad3f0186034e588fc19dca4bb474cbb1361da1

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\imagestore\dqptnfu\imagestore.dat
    Filesize

    1KB

    MD5

    9a001b8902223bd558029263fe7abb58

    SHA1

    522bd2a201523bf5e91c0d98489d5a8c200054a9

    SHA256

    786f3cd0e653e6fa1ba2784fda02fd47b050c480c240a8b87e8a1024ace32552

    SHA512

    5727b9526fec41bc573df0cec25eb14d9d83ba354fc79b04da6077f17cc5e990d17895d948cab8038f2efbfb878f077c13e0cfaae651467349a20a7ca11d7c7b

    Download Submit