Overview

overview

8

Static

static

8

URLScan

urlscan

1

https://www.bing.com...

windows10-2004-x64

1

Analysis

  • max time kernel
    67s
  • max time network
    144s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20230220-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20230220-enlocale:en-usos:windows10-2004-x64system
  • submitted
    24/04/2023, 21:24

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    https://www.bing.com/ck/a?!&&p=00435e4f86629147JmltdHM9MTY4MjAzNTIwMCZpZ3VpZD0zOTFhN2VlMS02ZWI2LTYzYzMtM2I2NS02YzE5NmY0YjYyNDUmaW5zaWQ9NTEzNA&ptn=3&hsh=3&fclid=391a7ee1-6eb6-63c3-3b65-6c196f4b6245&psq=site%3a0011336.com&u=a1aHR0cHM6Ly8wMDExMzM2LmNvbS9sdWFubHVuL3AxLmh0bWw#%61%6D%61%6E%64%61%2E%62%61%62%63%6F%63%6B%40%77%67%75%2E%65%64%75

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 41 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 3 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" https://www.bing.com/ck/a?!&&p=00435e4f86629147JmltdHM9MTY4MjAzNTIwMCZpZ3VpZD0zOTFhN2VlMS02ZWI2LTYzYzMtM2I2NS02YzE5NmY0YjYyNDUmaW5zaWQ9NTEzNA&ptn=3&hsh=3&fclid=391a7ee1-6eb6-63c3-3b65-6c196f4b6245&psq=site%3a0011336.com&u=a1aHR0cHM6Ly8wMDExMzM2LmNvbS9sdWFubHVuL3AxLmh0bWw#%61%6D%61%6E%64%61%2E%62%61%62%63%6F%63%6B%40%77%67%75%2E%65%64%75
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2088
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2088 CREDAT:17410 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:4128

Network

MITRE ATT&CK Enterprise v6

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\6BADA8974A10C4BD62CC921D13E43B18_1DC6D7385EA816C957BA2B715AC5C442
    Filesize

    1KB

    MD5

    957378a6d7a5c14f452ad7e35aec3d51

    SHA1

    09694187ce3041ba93ba7300932e22cc56d9aad0

    SHA256

    8cbe3f76f948cad844480cce2daf256a23f8b7b94ce3972584c15fea1ee3d63c

    SHA512

    6b0b5e0ee560c13ea78c9d561da1339960174efc904441c49e377dbe642de286b36172446a3b4a451294b2b4a7aa289be3bb942688366682750dcc8f7204d259

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\7423F88C7F265F0DEFC08EA88C3BDE45_AA1E8580D4EBC816148CE81268683776
    Filesize

    471B

    MD5

    d6b67afeb31f0d9bfe232166e8b300c5

    SHA1

    6ba1a534d40fea9302591aaee8fb6969bfa28e4b

    SHA256

    ab4f8d3ad2a02ad67059703fcb9c7ecd397d9abfce4b4cacdf7ecc11b4e37520

    SHA512

    62c9fc6797c263bf33c8f52d5d41ce276b3df2aaed6433d582987a607ae508f5389f86d5d8a63cc5715964623f5be08d5741ddd70a0fe18f0140eb314815c272

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\6BADA8974A10C4BD62CC921D13E43B18_1DC6D7385EA816C957BA2B715AC5C442
    Filesize

    416B

    MD5

    56cebd6ba870a9ed62240ba1250f4f1e

    SHA1

    23e39dc1335482252fdf4716949159630a1c05a3

    SHA256

    6da76092846a50f9ff6705187caa53dbb5d928f4c34d6e58a5ddead04848ef7a

    SHA512

    0274424540741314feafe114881dc209fae63d7b61b303394643cfb4385e273f4ffe74a0ba34013f5812027559654ba72b4a82d271b07bc49c8e7c45918a9583

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\7423F88C7F265F0DEFC08EA88C3BDE45_AA1E8580D4EBC816148CE81268683776
    Filesize

    404B

    MD5

    f05781dcadfafdc2e8e0bd8a20bd90fe

    SHA1

    228acc124d4629fdbf636631a6c42842c25d7ec9

    SHA256

    578cc3a7f6dfb0aa920bd3ad44360f0bd2ffefcbd8bcc756614c1b8e6add05c2

    SHA512

    047a8eb651764099e9decd2498b227db572fafdb1890c06beec87ad6e7dea0f8d0a1c6f285b4905ca01267549b88b05cec6d9dac3b379f28eea3eeba789250e3

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\imagestore\osplltc\imagestore.dat
    Filesize

    1KB

    MD5

    b53575954600bf1d30ec10f7140a3d9e

    SHA1

    8b351a7ba6a4688f13b15b52c931151bf57420cd

    SHA256

    b04c0dca31b5c30ace131155d45b71e5b2eb50a4289ce755923352aec8ca5fef

    SHA512

    086120cca621f7022fb8b137d56d9cec1aba181617690c3daf1f9965f80b4cc1896e1447b5b7b92a2b5309ea392e22229880700d27db6f6c7abe0a06052e858e

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\INetCache\IE\S1Q31HZS\suggestions[1].en-US
    Filesize

    17KB

    MD5

    5a34cb996293fde2cb7a4ac89587393a

    SHA1

    3c96c993500690d1a77873cd62bc639b3a10653f

    SHA256

    c6a5377cbc07eece33790cfc70572e12c7a48ad8296be25c0cc805a1f384dbad

    SHA512

    e1b7d0107733f81937415104e70f68b1be6fd0ca65dccf4ff72637943d44278d3a77f704aedff59d2dbc0d56a609b2590c8ec0dd6bc48ab30f1dad0c07a0a3ee

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\INetCache\IE\YYL8D8JJ\favicon[1].ico
    Filesize

    1KB

    MD5

    1ab820bde50ae3d841a6482dacbe6195

    SHA1

    36a07d11e027b24589bec5305f29a30c3de770a3

    SHA256

    e35587d16ac419f1d3dc16217fdf4d2e42232564f9136356a07ab01f88d4face

    SHA512

    a51a09dada0c4f14f2ec36d1b6e0cc39ffb459cae7b79d3cfca81f363c88334aeb9a2555c725f050bbcaacb7e5b3aa2ca9362e83eea45e520e5f850357aba505

    Download Submit