Overview

overview

1

Static

static

1

URLScan

urlscan

1

http://strausaustria...

windows10-1703-x64

1

Analysis

  • max time kernel
    67s
  • max time network
    143s
  • platform
    windows10-1703_x64
  • resource
    win10-20230220-en
  • resource tags

    arch:x64arch:x86image:win10-20230220-enlocale:en-usos:windows10-1703-x64system
  • submitted
    24-04-2023 18:36

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    http://strausaustria.hu/mustang-star-mts1998-benzinmotoros-fukasza-japan-karburatorral-24267

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 49 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 3 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" http://strausaustria.hu/mustang-star-mts1998-benzinmotoros-fukasza-japan-karburatorral-24267
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2476
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2476 CREDAT:82945 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2516

Network

MITRE ATT&CK Enterprise v6

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\7423F88C7F265F0DEFC08EA88C3BDE45_AA1E8580D4EBC816148CE81268683776
    Filesize

    471B

    MD5

    d6b67afeb31f0d9bfe232166e8b300c5

    SHA1

    6ba1a534d40fea9302591aaee8fb6969bfa28e4b

    SHA256

    ab4f8d3ad2a02ad67059703fcb9c7ecd397d9abfce4b4cacdf7ecc11b4e37520

    SHA512

    62c9fc6797c263bf33c8f52d5d41ce276b3df2aaed6433d582987a607ae508f5389f86d5d8a63cc5715964623f5be08d5741ddd70a0fe18f0140eb314815c272

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\ACF244F1A10D4DBED0D88EBA0C43A9B5_BA1AB6C2BDFDF57799E8116E4002D001
    Filesize

    1KB

    MD5

    3189a7ec36b971efa78ea81a2da762cc

    SHA1

    6fcf9654dcd3eddaa2ec434e91d2957c349593cc

    SHA256

    c487b9e851b7955e52a923651e64766a6e808d5dbf362ae2452aa9e616b0b298

    SHA512

    d05d5faecbd8ae4d3c4c3c58bea79b79716e05fc75e96a23f735a6326b3a93d0172cb97ba4aac73a7fae27f59898d3ad3d599e9bde75a546a72bb48f73657cdd

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\7423F88C7F265F0DEFC08EA88C3BDE45_AA1E8580D4EBC816148CE81268683776
    Filesize

    434B

    MD5

    c8ac5dfa69d2d88de70737afa2745834

    SHA1

    563888c1c10717b8671fe31043196a66972bd795

    SHA256

    077dc1f030e8c47b7f779adb81143fc5198b132cea42e07a9b6dc33a2215e0ee

    SHA512

    281a3f52d20fde2d6c8e4ecc42c80056fb25d7ce64614fb8669a80939fbc8a89d194473d93c619d519d086046fb7de30822547bc7fc164253fcf96d89176b244

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\ACF244F1A10D4DBED0D88EBA0C43A9B5_BA1AB6C2BDFDF57799E8116E4002D001
    Filesize

    492B

    MD5

    cae12e5c295c2717ae3d4c264bca026a

    SHA1

    fb727c7f12e818cf3fa00565d8bbe675f149228c

    SHA256

    985a5b9a964e9b312757e13158bfe587a7b4b57751c48c8a7125b83be4dffbe0

    SHA512

    f28ebbd1886b583b1861f0bdc5742287b85ed411d907efaafcdd783ec71a1255c94eef076e1172e11c0c42476d5e7eaf84c636a2cf71cbb91b794c75a9061b9f

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\INetCache\IE\F0WVC1MM\2[1].jpg
    Filesize

    22KB

    MD5

    da63a5929d6e44afc81477dbf3b98183

    SHA1

    e842a2c444b27c8334348e9a93484891d14e2b9c

    SHA256

    b725e27fd37e6c41aa0aef713c8ae7805cb971b1d454ead37e861530811971a2

    SHA512

    3be35f1bdec8c9b140e1ae0ce5050d66a69352036ea1c2df4a37d2c3142fa00f0c31f6069d831dd4506b8ad5a8c23a4d750b46f46a07c3a8bbb595dbcf0a1eec

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\INetCache\IE\TTLFUYWG\analytics[1].js
    Filesize

    49KB

    MD5

    54e51056211dda674100cc5b323a58ad

    SHA1

    26dc5034cb6c7f3bbe061edd37c7fc6006cb835b

    SHA256

    5971b095cff574a66d35ada016d4c077c86e2dea62e9c0f14cf7c94b258619de

    SHA512

    e305d190287c28ca0cc2e45b909a304194175bb08351ad3f22825b1d632b1a217fb4b90dfd395637932307a8e0cc01da2f47831fa4eda91a18e49efe6685b74b

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\INetCache\IE\TTLFUYWG\js[1].js
    Filesize

    113KB

    MD5

    0ba6db66d9767b2c167d56d29652a315

    SHA1

    073f3134daec2d2859be8ca1b1244f6a715c426b

    SHA256

    e0073b84dd9728dc599236cfb6a6cc3dc28e188239cc185a195c0d3dc4d3d0a8

    SHA512

    7fd613d53ff9d88cff2d8a0a130d2c8878bb48722119bfbb20376f7852a018181ace2416b6dfe56ba152b98a6cc25ca39cefd85bda7b292f72508dd1ad65f615

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\INetCache\IE\TTLFUYWG\suggestions[1].en-US
    Filesize

    17KB

    MD5

    5a34cb996293fde2cb7a4ac89587393a

    SHA1

    3c96c993500690d1a77873cd62bc639b3a10653f

    SHA256

    c6a5377cbc07eece33790cfc70572e12c7a48ad8296be25c0cc805a1f384dbad

    SHA512

    e1b7d0107733f81937415104e70f68b1be6fd0ca65dccf4ff72637943d44278d3a77f704aedff59d2dbc0d56a609b2590c8ec0dd6bc48ab30f1dad0c07a0a3ee

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\INetCookies\Y9U640VC.cookie
    Filesize

    613B

    MD5

    e3c8bad51f342f70c21bdf132b7826a9

    SHA1

    88875228fb08898db3958e6e499fcccd01bf9e41

    SHA256

    fc02601a325f9372cd04558e3fb8dca718697300b60fbc0cd82ef7af623fb491

    SHA512

    05557195870f1e8a00be8e2312a594ff9ebeac5b41dd659852b5d00cc13894b36d2f36b37ae2eac1f2083e024411582deaf2de9e9190c4abdbfd1814e92b9279

    Download Submit