Overview

overview

1

Static

static

1

URLScan

urlscan

1

https://warriorplus....

windows10-2004-x64

1

Analysis

  • max time kernel
    129s
  • max time network
    151s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20230220-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20230220-enlocale:en-usos:windows10-2004-x64system
  • submitted
    07/03/2023, 20:25

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    https://warriorplus.com/o2/a/sxsdkz/0

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 43 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 3 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" https://warriorplus.com/o2/a/sxsdkz/0
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:3104
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:3104 CREDAT:17410 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:1452

Network

        MITRE ATT&CK Enterprise v6

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\7423F88C7F265F0DEFC08EA88C3BDE45_AA1E8580D4EBC816148CE81268683776
          Filesize

          471B

          MD5

          90884e2bd142d691c86f7ceb558b3271

          SHA1

          c8a2c0c342259c59840dd9a5803da7be527cbea4

          SHA256

          d3f2acb4126c4b345cd17f15fad6b0d4bcd23e87c03e1527d655ae54382acbe6

          SHA512

          9cb3c77a77180a525dc5bad372e73a0383ba8b02cef54ba04fcdf5d4eba0156badf42f960525f4bbafc44aad952df48de1de2462f3023f5b38d58940473640ff

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\7423F88C7F265F0DEFC08EA88C3BDE45_AA1E8580D4EBC816148CE81268683776
          Filesize

          434B

          MD5

          28f321d38292ba61e4abfe0515f6a5b9

          SHA1

          d0407132a6037f635a2801ab426e9dabef74d061

          SHA256

          a426e2eb2e3aa81901dacc6dadbb798050f6037b3319b76c84809f7576b5363f

          SHA512

          1e53e09def415096f55435b9e2c620eed516f9675176698f61fff65e356b5feac0177c3ac1d0bf79bf851d91c968b03f5cc9fc9987a2dc6595e5077bc64fb58c

          Download Submit

        • C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\imagestore\q7s3h6i\imagestore.dat
          Filesize

          1KB

          MD5

          14e044a1723cde1209a821829bd8357e

          SHA1

          99496c78e8bbd281c3f4d6614a02c7cd4a1e5694

          SHA256

          c825d9e6dc00602d23ed20d466985eccbc533e1a2aeb5563a762ffed0ab63e7d

          SHA512

          49b793ca4b7a051ea51cd3c6b8c00933b84ae365190fb778528e02578184644225e6ac2cac171a1c10da91a2f4efe6266147fb59da9709848c77c2bba88f02eb

          Download Submit

        • C:\Users\Admin\AppData\Local\Microsoft\Windows\INetCache\IE\K941J8ND\355970218[1].gif
          Filesize

          42B

          MD5

          d89746888da2d9510b64a9f031eaecd5

          SHA1

          d5fceb6532643d0d84ffe09c40c481ecdf59e15a

          SHA256

          ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629

          SHA512

          d5da26b5d496edb0221df1a4057a8b0285d15592a8f8dc7016a294df37ed335f3fde6a2252962e0df38b62847f8b771463a0124ef3f84299f262ed9d9d3cee4c

          Download Submit

        • C:\Users\Admin\AppData\Local\Microsoft\Windows\INetCache\IE\K941J8ND\suggestions[1].en-US
          Filesize

          17KB

          MD5

          5a34cb996293fde2cb7a4ac89587393a

          SHA1

          3c96c993500690d1a77873cd62bc639b3a10653f

          SHA256

          c6a5377cbc07eece33790cfc70572e12c7a48ad8296be25c0cc805a1f384dbad

          SHA512

          e1b7d0107733f81937415104e70f68b1be6fd0ca65dccf4ff72637943d44278d3a77f704aedff59d2dbc0d56a609b2590c8ec0dd6bc48ab30f1dad0c07a0a3ee

          Download Submit

        • C:\Users\Admin\AppData\Local\Microsoft\Windows\INetCache\IE\K941J8ND\vaafb692b2aea4879b33c060e79fe94621666317369993[1].js
          Filesize

          16KB

          MD5

          33100f2355611b2375f05486299abf05

          SHA1

          0b2d1b75f6695e67b884bee2eb72165d6e881a26

          SHA256

          0f48c5678ce459a596423b0e55344e7ad8eb3d3b1b27c54cd76a9d4cee7dd6c3

          SHA512

          d1a843625f3ae943212ae61c5b4efc49c31a957aad1498209bb4e6954b69d14943e1e424d08c5f9e6e729172af1893458cb328a2bb5db1e4dfb114fca027e018

          Download Submit

        • C:\Users\Admin\AppData\Local\Microsoft\Windows\INetCache\IE\Y624AVVJ\favicon[2].ico
          Filesize

          1KB

          MD5

          ce8b13a6057ff087ab9fc06ec82841b3

          SHA1

          2b81cadd76818c8d90d5fb548103df8f699d740f

          SHA256

          7a47b9b72cdad316e8db13ce521f1860b4d31f12dd75a455ddad0fb4da5f0421

          SHA512

          58aa4b8e4b94ec262218cfe94a6cf3a4720512a24c0cef32ef6e446b18d064fa8a75f2711c50cdff80d2404961191794ca0bdafa78698e4833c3331e4d759581

          Download Submit

        • C:\Users\Admin\AppData\Local\Microsoft\Windows\INetCache\IE\Y624AVVJ\favicon[2].ico
          Filesize

          1KB

          MD5

          ce8b13a6057ff087ab9fc06ec82841b3

          SHA1

          2b81cadd76818c8d90d5fb548103df8f699d740f

          SHA256

          7a47b9b72cdad316e8db13ce521f1860b4d31f12dd75a455ddad0fb4da5f0421

          SHA512

          58aa4b8e4b94ec262218cfe94a6cf3a4720512a24c0cef32ef6e446b18d064fa8a75f2711c50cdff80d2404961191794ca0bdafa78698e4833c3331e4d759581

          Download Submit