Overview

overview

1

Static

static

1

URLScan

urlscan

1

https://downloadlyne...

windows10-2004-x64

1

Analysis

  • max time kernel
    33s
  • max time network
    36s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20230220-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20230220-enlocale:en-usos:windows10-2004-x64system
  • submitted
    28/03/2023, 19:33

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    https://downloadlynet.ir/

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 25 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 3 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" https://downloadlynet.ir/
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:5032
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:5032 CREDAT:17410 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:3676

Network

MITRE ATT&CK Enterprise v6

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\7423F88C7F265F0DEFC08EA88C3BDE45_AA1E8580D4EBC816148CE81268683776
    Filesize

    471B

    MD5

    ec1a8bd1feddd633ab052e24541f94b5

    SHA1

    c7244380a737ba75df1093e7e5e8f7bc7d2ce59b

    SHA256

    422bcf49599facbf36bab286344c1b4e0e007665342b55d3c4eaec05e3cc2653

    SHA512

    86f9db12f706ace002fdd9936ec76e67f5d8660953fccf00d13072e49ac99047a1b7c93a53ea8fb9862ef74128e2fe988ef3b0511a510e942f35351ac313bc57

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\7423F88C7F265F0DEFC08EA88C3BDE45_AA1E8580D4EBC816148CE81268683776
    Filesize

    404B

    MD5

    6b4c788e0870acdedeadc777e0b70103

    SHA1

    1bbebd8f7c30e4ae6a866b56f8fee8cf05244eb0

    SHA256

    f6cb2b53e92d9a9e6e25455904beadbb8ab7298179c1f7b9d55ce111ea9bdcb9

    SHA512

    91a561d6a270dd3a0379bfbf558518456d1de6bb1735ba5a2b2c2db76a3b7b7f95ca04ca03f5e90539ed3d3f677f8ac5d0c365bf11bdb8875e7006e223b23abb

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\imagestore\osplltc\imagestore.dat
    Filesize

    2KB

    MD5

    5a949e2391c750dceb97f1ab7779273e

    SHA1

    67a00941f8b1dfd8792a8c708321de13c32ccd34

    SHA256

    fa277f911080e028c9cfc83865f40f5966b584ab25b10c670234cbc1dd627cd3

    SHA512

    0fc8dc278c64d3db58db481c91cafa2bcc379a53bbfa9e9540b2b59614583a37dcfb2b437b764f5d04dc9e16f7ab78ce03060dffe560255bb96a509c6df06eb7

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\INetCache\IE\S1Q31HZS\favicon[1].png
    Filesize

    1KB

    MD5

    c4f78f8468385de812385bdd7222cb76

    SHA1

    7d357e7c3e1fa72b485cdc6e6b9fc162fabefff1

    SHA256

    a3d2c0ddc90932cc24bc49c0af0f5fe9f63a19d9d20fe4e85bea65263bcced42

    SHA512

    1b4c61a5542723c66e98aaebc3b898345e52837e2f5bb17d92a551c857254f826b602aef8fbfb58298c004626778b8c14ae3a085c1ebfa12dd99c8be0f0b12c0

    Download Submit