Overview

overview

1

Static

static

1

URLScan

urlscan

1

https://tinyurl.com/...

windows10-2004-x64

1

Analysis

  • max time kernel
    149s
  • max time network
    144s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20230220-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20230220-enlocale:en-usos:windows10-2004-x64system
  • submitted
    19/04/2023, 14:24

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    https://tinyurl.com/ybrehaxh

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 64 IoCs
    adwarespyware
  • Modifies registry class 2 IoCs
  • Suspicious use of AdjustPrivilegeToken 30 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 3 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" https://tinyurl.com/ybrehaxh
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1312
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1312 CREDAT:17410 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Modifies registry class
      • Suspicious use of AdjustPrivilegeToken
      • Suspicious use of SetWindowsHookEx
      PID:564
  • C:\Windows\system32\AUDIODG.EXE
    C:\Windows\system32\AUDIODG.EXE 0x524 0x52c
    1⤵
    • Suspicious use of AdjustPrivilegeToken
    PID:1396

Network

        MITRE ATT&CK Enterprise v6

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\7423F88C7F265F0DEFC08EA88C3BDE45_AA1E8580D4EBC816148CE81268683776
          Filesize

          471B

          MD5

          2a7fc714134ae90293fce5a1d9697e16

          SHA1

          c29dab1a5e37def81a3406813587a32001925f97

          SHA256

          0145704170fb3888d08d35dcfe2941c6ead410baab0e3552d78a9a402f682aad

          SHA512

          f41495e458a8b7eac03ad9def5278553784ebe35e05a984892a0a078775c472c03a80cb9c00104da9fd18f8f7bf04dd1c1da119514923cde5a4fcb696082f2bf

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\7423F88C7F265F0DEFC08EA88C3BDE45_AA1E8580D4EBC816148CE81268683776
          Filesize

          434B

          MD5

          f63d670a9d0cdebde1a89428353144f8

          SHA1

          2decf19c77a2e4b29a308860a15751925faa12db

          SHA256

          007ee407203fad41fb30d3691098977cf924789a63e5149c7d4c7cf46a005f18

          SHA512

          c3f87b86bce9d16d20b8b2b0384f7603ecacb28d3f3c71ad26462d98b589ad67113b12080daef1ed2d2daf50c96b6207599c6bfed5a6174204eb1f10a33ba05f

          Download Submit

        • C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\WS513I26\xello[1].xml
          Filesize

          1KB

          MD5

          bccc4ad679ce9c8dd73003d8cbd9f08e

          SHA1

          e8eb612b030ad315e02ca96155a901043ffa51b4

          SHA256

          b1084e4fb141e7893d6a321f85795da5f9c5254f365f841ebcb3885ab92756d3

          SHA512

          f1e13f898b598c665f72af846c36bab30d1804c9a8b10797e4422d054bd36dfaf25f11143ca83fcbd1d816579862ca0cd1fc6880792a2b96064df2bb71a43d3d

          Download Submit

        • C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\WS513I26\xello[1].xml
          Filesize

          1KB

          MD5

          96a025cf5b0b6e8f0f0f83217da74201

          SHA1

          7c7e833e2094cd8a02fb5d1f312233c5b8c54304

          SHA256

          c32211e19689557fadfb5e66c6199bc134a8099719f50db8177f84e4a5a1371f

          SHA512

          d6d3321022900c74fc765d6eac5430563ed8f3c2ca257c8d89dda94c4f1b129830c0d561928e02c9eba208d34266abd9ede31aed3987f1dcfb885989cbbaea5c

          Download Submit

        • C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\WS513I26\xello[1].xml
          Filesize

          1KB

          MD5

          73f1f2af7852bf2b8f0c42152ac87c8c

          SHA1

          89252f071bd7452885fb6bbbf3e3ad0e4df09825

          SHA256

          4d97acbb359acd410ff5d87ee3f12deac2e9c627940ccc5ce52a881b015356f0

          SHA512

          addc2ba263db1e4024ce5a5ac68146916d3d709fd909880e5ab6a13d0af594fc425692a588f8d9c477269963131c9aacb12f8bf3f58080ec9a078a9d5d02c716

          Download Submit

        • C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\WS513I26\xello[1].xml
          Filesize

          1KB

          MD5

          53179213c90a7245858a4e24ea46f43c

          SHA1

          50954d35d6889fec0c57fd608aa44af1e4312ef8

          SHA256

          c74140ecf068a8b299523e0031d713126dc54e1af48aad5de68865379f54358d

          SHA512

          0422bb49ffe401b6c05e8f2737ea3bc7593c6160f9b5d45862463056247799e1f3b8fa9b0d687d7ad2b80c0ee75f82d6ab91f3db43a730aa3392cbb259f51e2a

          Download Submit

        • C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\WS513I26\xello[1].xml
          Filesize

          1KB

          MD5

          cb8ba7bc585cdf520fac6857db83f65d

          SHA1

          99180ff2d86668037fbc3882ba8651ab1186cab4

          SHA256

          d296d6220f790d6a1ac770a3333f4420446911190154a16d800caf43fc3a9583

          SHA512

          9bfc246a6d4709325b7efffd67b991207e60e49b17ffa98027dce15407f17c501243108fb9ec04e215848335fea740081e6541c76f4aee63477075ffadc7f5ca

          Download Submit

        • C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\WS513I26\xello[1].xml
          Filesize

          1KB

          MD5

          e2361fdc8ffa07db3b1517aba97f6536

          SHA1

          fd551303cb6d8a31bd4c2dde905c402dab9afdac

          SHA256

          5cb7e06726e09d12ea62085703b42cf2901eda22d60703034cdddd63a70c6640

          SHA512

          78577920833cbd802882fa32b70965039463365d592ba8fe859e9f140ee7e991fbe540d68319beb8afb22107ae8e41c2f08d5e2ddd58b5b99597c8bf0b214a78

          Download Submit

        • C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\WS513I26\xello[1].xml
          Filesize

          87B

          MD5

          502688daaa2b6768557ad6fd8eb8d6a8

          SHA1

          21244ec75ff7146248e636e608b05e44d9590676

          SHA256

          805c522215d7c95ee4d5d380ecbf8c60ed92c24ce41103559f685fb86a5e1a4e

          SHA512

          70429b4d7b63be29e2c1953265d9a2bcf40b4b11261a0a06f458e255658f86b243cc62590764082a94551cf0f3df87ccdf92a1f2b31a0a635301e25df4054903

          Download Submit

        • C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\WS513I26\xello[1].xml
          Filesize

          484B

          MD5

          147878356a9f9b06407d7ee94fdabbc9

          SHA1

          da138390440a99a5e3abc7be7c9af4df1d0dc0be

          SHA256

          c179f03841f870e168b897abd3b3b069380f891f64b4b30f766c9c3528c1618c

          SHA512

          64e567e035d718103a3b5e98e59cc57d41dd669fc043825cd358bd678a58c43cccf9cc11ea4693ebdd1b6354d871a734fe649f7941094c077a46ee75f7607395

          Download Submit

        • C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\WS513I26\xello[1].xml
          Filesize

          1KB

          MD5

          4f8ec73dab47a1d3251e3b8550816b96

          SHA1

          eaf2c60a4c5e4fd2dd3f9b6ccf43d4287aa84ba6

          SHA256

          d2fbb72829ee410a7ba9193bf6f45c2a0b570d4cd9cd71ed228b8f6971eade8e

          SHA512

          7f4423cdd44a3e4c89d80102f1a5476f3d4b450b1dd5ef7ba8396c1efd01dbddd0bccdaafc1a542c631d35ef562144db46fcb7daaeb1a8d1d5f5dcda3b1c8986

          Download Submit

        • C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\WS513I26\xello[1].xml
          Filesize

          1KB

          MD5

          a0bc3d3ff27d10352991d9f2c578b5ea

          SHA1

          17dd625cc2784fcd0c85ab5c6ccbd26d43b4cf12

          SHA256

          b3dfd848fb90533c3b8483951843c8af81df60663291aa5354b223e2009df33d

          SHA512

          8d5d3f8562a866f7c1c3701455b5f646826d32e0f18e94e673d445c9e7deda67cc724bffe13c1d2f45bf462c7ae7ca5cf4c2463c06d82837d57d6276aac45bd1

          Download Submit

        • C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\WS513I26\xello[1].xml
          Filesize

          1KB

          MD5

          e550297c74d1a00748b727c2a3c967f8

          SHA1

          ec972e14c1272f1665d74459ee698e45fce702ce

          SHA256

          ca8316e1d2fd88cbde48aa7393bd83d37c3a6a3e1af2ab9ffbfaab5af50bbedf

          SHA512

          48747d64ad1a1608860a22828c8c266cabbe433d585ad98ef38c67738b2064332f3ec762c8259dd3f875c4e902d4968be333212edf82a3bff71bcb691889a975

          Download Submit

        • C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\WS513I26\xello[1].xml
          Filesize

          1KB

          MD5

          bbdc68fe9fbf97e46bc7b678a63ec7d1

          SHA1

          e84943e38c91add2ed5c79176be8d871e2615aff

          SHA256

          a4b0b6601d0f812edaac24704a1615c97d2673176808113871ef49218c5983c2

          SHA512

          c8088c25e8446d8185c2ceb02f72071d2d14dd9348f642df03dbc162c3664a9ef158460b2e59f37cce425ad4dfa8b36cfd3f11d628531e0a540d0208f3f142d9

          Download Submit

        • C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\WS513I26\xello[1].xml
          Filesize

          1KB

          MD5

          53d2c8e87d47d957edf71f5c7276c0b5

          SHA1

          c52ce6e1c48b280b6ff15413d3eba00fb116cfaf

          SHA256

          1e92236dc5778d29c735b22b932af552a7858a26b2ff6e543ab80fcd97b265c1

          SHA512

          21b966442771820e9b613a4fea3c105b4eb6824f962dcc965daaf87536f3bbe470b2765ef1e221a1a44b13e48268104dd3fc20da256c2638f876b500ff10a067

          Download Submit

        • C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\WS513I26\xello[1].xml
          Filesize

          1KB

          MD5

          eb0fbd6e004de9cb5fc5a1c40312f327

          SHA1

          e1e4f0c6a22239e6e260696aad25b1cc3362e88f

          SHA256

          fef4b67f8ffbd351964ff87f4b1fe7b5fc87239afa2d0e84eab3831ef1fc6418

          SHA512

          43e785a351c7709f2dd39aaaffdc3226e8723a41dfd181018b0ef4a47535d369057a971cdb52b840ebb3fc05ba39fd0f0c46e0364ff73b9e1c50d6b3cfcbf28c

          Download Submit

        • C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\WS513I26\xello[1].xml
          Filesize

          1KB

          MD5

          1b8c4a09fbb5c60ef674a4e25033f172

          SHA1

          657bb68e6a0dd19fb8b95093976d3590742ee0af

          SHA256

          e3a85ab90de3474f1bc6f0ede5563a8d4f206a907a43947b0eea5d55719164fe

          SHA512

          5c6e304adca35892ac513cf938f5231ccb990d5966e7ed24236ec8434a6913dea5345e16a5edb59640d33a397851f380ebaa0ee6378ba33f69a493bf81bebf64

          Download Submit

        • C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\WS513I26\xello[1].xml
          Filesize

          1KB

          MD5

          964c4a851877b2f707a0fa383590b267

          SHA1

          68aeadae35450130accdfe7959eb3d2aac0b778c

          SHA256

          7239f85ecc05e687bac1fe6d8e008f4daca6a891a14df5be4ab2834138a9fcf8

          SHA512

          238d29b6bce6e18f5a5eb334fa9a16acbbdf0c9f9dcb61c702b625ee98a5737cdd9556735665ee25e459d67535391256ad8e3c57f4da240f71c3a7abc9e316b7

          Download Submit

        • C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\imagestore\dcpq11e\imagestore.dat
          Filesize

          738B

          MD5

          21c33991641765be4d38fb0f5474d7a5

          SHA1

          32130eb856831ca60aff034676f2d7bd3951fed3

          SHA256

          aa06b292d5e52bc26d7da130e3f364fda8a6efb16e258f269922626050d3e6b4

          SHA512

          ea231a35ef1cfd3c9a627af201c484f9c70ea3f5f38dd6126ea57b68e850bfb289144b46dbf2b706668a8044fd791940896ce428125149dcb583de2c97bc6af6

          Download Submit

        • C:\Users\Admin\AppData\Local\Microsoft\Windows\INetCache\IE\4HAJQ22Y\favicon-32x32_2487ceec[1].png
          Filesize

          520B

          MD5

          d2bffa673833cf311259ebdee3713c55

          SHA1

          6c996996b7b2b8004327bfb891095ed493eab139

          SHA256

          172f92dd572fe11c2b20375084166799d672450bdd35252bb560687bc49faea3

          SHA512

          144ea358698ccec2222cd266f510fbd4dff5a151af96f341f5a31e90485a1760d99945066fc362f641d75e667de758512f02fdf2a7572ef5c3fd059cda5bd774

          Download Submit

        • C:\Users\Admin\AppData\Local\Microsoft\Windows\INetCache\IE\S64KWKX9\E-v1[1].js
          Filesize

          610KB

          MD5

          b91d380c8800260a5914924d21031ee3

          SHA1

          c3069e5f0263f4f4d3415776e0ee7054988a7151

          SHA256

          0d781c827bbd499c2b4cfa940a137c01746d171bdc58b5f53d3ec35390172810

          SHA512

          c2a0747943a66498b0d28fd460582ab297b1d0a21965596abc563920777564108184ddf395b9653932fdb573ae027e7c90888f5872605a6719aa06ad6c9eb0ae

          Download Submit

        • C:\Users\Admin\AppData\Local\Microsoft\Windows\INetCache\IE\S64KWKX9\suggestions[1].en-US
          Filesize

          17KB

          MD5

          5a34cb996293fde2cb7a4ac89587393a

          SHA1

          3c96c993500690d1a77873cd62bc639b3a10653f

          SHA256

          c6a5377cbc07eece33790cfc70572e12c7a48ad8296be25c0cc805a1f384dbad

          SHA512

          e1b7d0107733f81937415104e70f68b1be6fd0ca65dccf4ff72637943d44278d3a77f704aedff59d2dbc0d56a609b2590c8ec0dd6bc48ab30f1dad0c07a0a3ee

          Download Submit