Overview

overview

10

Static

static

1

URLScan

urlscan

10

https://sncsolutions...

windows10-1703-x64

1

https://sncsolutions...

windows10-2004-x64

1

Analysis

  • max time kernel
    600s
  • max time network
    855s
  • platform
    windows10-1703_x64
  • resource
    win10-20230220-en
  • resource tags

    arch:x64arch:x86image:win10-20230220-enlocale:en-usos:windows10-1703-x64system
  • submitted
    20-03-2023 16:36

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    https://sncsolutions.com.au/Verificacion/Brou

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 46 IoCs
    adwarespyware
  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 3 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" https://sncsolutions.com.au/Verificacion/Brou
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:4148
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:4148 CREDAT:82945 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2256

Network

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

1
T1112

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\6BADA8974A10C4BD62CC921D13E43B18_28DEA62A0AE77228DD387E155AD0BA27
    Filesize

    1KB

    MD5

    b543a98158e6170384c8892c75fa918a

    SHA1

    b1e2df9a525aabf7d069e5f435c3feda182b62d1

    SHA256

    35db3bf9a66970043f170173602af30c6bb85e64e44fb35abf0f8ec33a0179cf

    SHA512

    df6036cbfd9a35d6a5b40c8a07d340fb4e3e97bd314b93b4e69269d27072cd707fe25d230173a6b859f1c028bc4560bac5f0d77407d136c8524eaca9da62d227

    Download Submit
  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\7423F88C7F265F0DEFC08EA88C3BDE45_AA1E8580D4EBC816148CE81268683776
    Filesize

    471B

    MD5

    a03e3db17abda2b8279c2f4f37ee6cbf

    SHA1

    7470b2553b06790447cec18717a4bc02a24478d6

    SHA256

    341afed6144ebf64136cff435d5654f8525faf997a72e2492fcbc522f3858942

    SHA512

    4c93121cdbf94cd152f6e0f602c9acd5256073536e4dad930a0e1fc7656c5a1132eef1dd53d19c16979329d46916eea454cc65e578667dc8572e38ec5c4c4d44

    Download Submit
  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\6BADA8974A10C4BD62CC921D13E43B18_28DEA62A0AE77228DD387E155AD0BA27
    Filesize

    438B

    MD5

    b453038b7b4b3a4da33a83f7a5f47b70

    SHA1

    41d3bfd293df0aff55cc0f420c1dda32cd5c98a5

    SHA256

    957986a2fff36a472dd8cd8b25b8f4638c63d120f6ee965fee109b1e2c83f2aa

    SHA512

    18418505f1bdce44174accbfe40d2166127afbf92b6626c74136915adc6b1e7d29dc46471f6ad9d11f59bc6aa898cd3ef23ba8e897e69c5725ddf6380bc97086

    Download Submit
  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\7423F88C7F265F0DEFC08EA88C3BDE45_AA1E8580D4EBC816148CE81268683776
    Filesize

    434B

    MD5

    b695f2f3a3d616ec767e787a2e0dd621

    SHA1

    76921588375c681fae08a8798be10f6ff3b9f070

    SHA256

    1ca6763e6c6e2ea80efc77952e9fabcbcd71bd492b9e3c88f9abdb85a2b2eaae

    SHA512

    888a8d451ba72ebef9ced696fcd5b180b91c5b367206318f3ca5e1de4d658b9d9731c091e7601d1677634021f4322b5d0c2ce3fc2ca1aef6b725cc4432641511

    Download Submit
  • C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\VersionManager\verE6AB.tmp
    Filesize

    15KB

    MD5

    1a545d0052b581fbb2ab4c52133846bc

    SHA1

    62f3266a9b9925cd6d98658b92adec673cbe3dd3

    SHA256

    557472aeaebf4c1c800b9df14c190f66d62cbabb011300dbedde2dcddd27a6c1

    SHA512

    bd326d111589d87cd6d019378ec725ac9ac7ad4c36f22453941f7d52f90b747ede4783a83dfff6cae1b3bb46690ad49cffa77f2afda019b22863ac485b406e8d

    Download Submit
  • C:\Users\Admin\AppData\Local\Microsoft\Windows\INetCache\IE\6FGHNCOX\suggestions[1].en-US
    Filesize

    17KB

    MD5

    5a34cb996293fde2cb7a4ac89587393a

    SHA1

    3c96c993500690d1a77873cd62bc639b3a10653f

    SHA256

    c6a5377cbc07eece33790cfc70572e12c7a48ad8296be25c0cc805a1f384dbad

    SHA512

    e1b7d0107733f81937415104e70f68b1be6fd0ca65dccf4ff72637943d44278d3a77f704aedff59d2dbc0d56a609b2590c8ec0dd6bc48ab30f1dad0c07a0a3ee

    Download Submit
  • C:\Users\Admin\AppData\Local\Microsoft\Windows\INetCache\IE\B1FTPK9F\cropped-icon-32x32[1].png
    Filesize

    3KB

    MD5

    a1ea6fbdee001de3962acc13ccc3051a

    SHA1

    91b20c6aede3f616451d3df4b772686c0bfc0ee8

    SHA256

    708900862e5b69ac1065fca0d84eb4d901015f934387bfe287a52ed9e009f666

    SHA512

    19ccc35fff76d4b70d64442a1cec7b4a0093d893ba73efe9ccebbfbd321db1b02dd452aa7bd708377c4ae740f1b43319924e2d050ba58f4e82e13dbf8b9b9f3b

    Download Submit
  • C:\Users\Admin\AppData\Local\Microsoft\Windows\INetCookies\47AOIOEP.cookie
    Filesize

    615B

    MD5

    26e1c5b8281476c67f7614acf4de63e7

    SHA1

    4013fada2ebc974231df55b2cd5f4223324cab50

    SHA256

    1d9656da69cdb534e10b1b9caac2684748e9871e4e28561e7ac255312f6f1dfc

    SHA512

    ec963b9c6e400ab8baf739a58c7721583003c8ebabf5f41ce2b921c9f156d0d42845f0fcffe28a258308b9c1c84ca746f210804c7f5ffb4d60acc99aad89ce32

    Download Submit