Overview

overview

1

Static

static

1

URLScan

urlscan

1

http://0080176b00c04...

windows10-2004-x64

1

Analysis

  • max time kernel
    135s
  • max time network
    155s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20230220-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20230220-enlocale:en-usos:windows10-2004-x64system
  • submitted
    03-04-2023 21:35

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    http://0080176b00c0442083c77b3e49439372.fp.measure.office.com

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 29 IoCs
    adwarespyware
  • Modifies registry class 1 IoCs
  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 3 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" http://0080176b00c0442083c77b3e49439372.fp.measure.office.com
    1⤵
    • Modifies Internet Explorer settings
    • Modifies registry class
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:444
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:444 CREDAT:17410 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:1148

Network

MITRE ATT&CK Enterprise v6

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\82CB34DD3343FE727DF8890D352E0D8F
    Filesize

    7KB

    MD5

    dd50a5d6139e6d8b6992797ccd04818a

    SHA1

    7350c9c059d598c83af220ca6d30f1b13540cfa0

    SHA256

    b117851f48442b165516bc5b29d58ba0efac8b73ea78bfa676d43be87d9d5df3

    SHA512

    273265d2df03adf0284203a021f2f1f1d13d7b3e3154a7837d8112a27db591bda198f074ce9d2ca743c400a2c90b180b4f0be03fb950c8d342624a7590aab976

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\82CB34DD3343FE727DF8890D352E0D8F
    Filesize

    232B

    MD5

    52746ab6932e06883a1019a0e4a3814f

    SHA1

    a73627b067c9be4e0d839fd84f435cd634a8a172

    SHA256

    97e2f8c285a1a46b46a8c215c166ea40d2a71450a1a8ea55e7067de2f079696c

    SHA512

    b2efa5b3310b56a8d7b417060f477d9c42271c51755525e24c506e86e50efde693d166917f93797839bb2ceab7a2186e8fbacaf20927790149ccd0d9a4317ede

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\imagestore\osplltc\imagestore.dat
    Filesize

    16KB

    MD5

    812494da0bede2f6c0bacd1e8827e224

    SHA1

    b79f20daa9132f4a85537ab1601bcf0f3ce67b8e

    SHA256

    f638b7150f76833a59b9c9dbe368afe33736d350e769315ba75711f16742f0e6

    SHA512

    6de29a3c88f131abf9ac7a9641802102b1a0f0590782fb393afdb3f4a832f5d25e0e334957c8fa217853826812e71ae661c30a22cba90bf35e467cd457f32dad

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\imagestore\osplltc\imagestore.dat
    Filesize

    18KB

    MD5

    3c7a5309c965fefa1c05dda8fb03c7ad

    SHA1

    86fb83475a6806e2a236b60a95c541c8dbaa792e

    SHA256

    845140bfcf5855d1bfa6d834d1e64ec38a69936e92cd986aa615467452c2059e

    SHA512

    3ca74a11cdca7a658694d85b7e5d6a0528ee621154410fca8cc1eb6f6c5ca1746b971f28b2a4427341c7b214bd1b80157c3982ccb5855392f7688994cc0d285b

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\INetCache\IE\1IYUAPIF\suggestions[1].en-US
    Filesize

    17KB

    MD5

    5a34cb996293fde2cb7a4ac89587393a

    SHA1

    3c96c993500690d1a77873cd62bc639b3a10653f

    SHA256

    c6a5377cbc07eece33790cfc70572e12c7a48ad8296be25c0cc805a1f384dbad

    SHA512

    e1b7d0107733f81937415104e70f68b1be6fd0ca65dccf4ff72637943d44278d3a77f704aedff59d2dbc0d56a609b2590c8ec0dd6bc48ab30f1dad0c07a0a3ee

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\INetCache\IE\YYL8D8JJ\favicon_a_eupayfgghqiai7k9sol6lg2[1].ico
    Filesize

    16KB

    MD5

    12e3dac858061d088023b2bd48e2fa96

    SHA1

    e08ce1a144eceae0c3c2ea7a9d6fbc5658f24ce5

    SHA256

    90cdaf487716184e4034000935c605d1633926d348116d198f355a98b8c6cd21

    SHA512

    c5030c55a855e7a9e20e22f4c70bf1e0f3c558a9b7d501cfab6992ac2656ae5e41b050ccac541efa55f9603e0d349b247eb4912ee169d44044271789c719cd01

    Download Submit