Overview

overview

10

Static

static

1

URLScan

urlscan

https://www.youtube....

windows10-1703-x64

1

https://www.youtube....

windows7-x64

1

https://www.youtube....

windows10-2004-x64

10

Analysis

  • max time kernel
    69s
  • max time network
    74s
  • platform
    windows10-1703_x64
  • resource
    win10-20230220-en
  • resource tags

    arch:x64arch:x86image:win10-20230220-enlocale:en-usos:windows10-1703-x64system
  • submitted
    31-05-2023 11:32

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    https://www.youtube.com/watch?v=PK3AIb0LMcA

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 64 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 3 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" https://www.youtube.com/watch?v=PK3AIb0LMcA
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:4208
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:4208 CREDAT:82945 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:3664

Network

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

1
T1112

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\24BD96D5497F70B3F510A6B53CD43F3E_3A89246FB90C5EE6620004F1AE0EB0EA
    Filesize

    1KB

    MD5

    7c4abe45d6ac999438e4fc68a6f01a4c

    SHA1

    28883a97014817c90c7ac9af63074aaec6ac5359

    SHA256

    23b92a6bfeaa9c1650704b636aedd7fb86dbec83d3c1f7a86d56d95ec7eb62d1

    SHA512

    fe533fd9011b826528cbc25fce9a8cbe750b68c2f361285e90a633239d29aed8fc06ffabd2603f2fcc1bdc1f89b9563b01c37f76268354698a2ab29fb69d0085

    Download Submit
  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\7423F88C7F265F0DEFC08EA88C3BDE45_AA1E8580D4EBC816148CE81268683776
    Filesize

    471B

    MD5

    080320bb3fe7e7f860019942e6f77f9c

    SHA1

    2d6f3813b1ed7972c01df6330eb3b0c30339eda9

    SHA256

    9eb11d5a62c35054e50d193211638a08c9b94d5b360f943df4124e28ab793a6f

    SHA512

    9def7fa57fc58af72dc374f0ca010107585a355ffcb3c1d3b99064a455acf3fe8ed7d42052234fe2d042b5ccda8af4ba16a8b2dd882b01f0be7edb8cf7aa8944

    Download Submit
  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\CAF4703619713E3F18D8A9D5D88D6288_A7725538C46DE2D0088EE44974E2CEBA
    Filesize

    724B

    MD5

    aa62f8ce77e072c8160c71b5df3099b0

    SHA1

    06b8c07db93694a3fe73a4276283fabb0e20ac38

    SHA256

    3eb4927c4d9097dc924fcde21b56d01d5d1ef61b7d22bfb6786e3b546b33e176

    SHA512

    71724e837286c5f0eb2ee4ad01ac0304d4c7597bb2d46169c342821b0da04d8597491bd27ef80e817bc77031cd29d2182ccc82ef8ea3860696875f89427c8e0a

    Download Submit
  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\F2DDCD2B5F37625B82E81F4976CEE400_6D21C8B8ED39419A572C55FF9F5E1619
    Filesize

    471B

    MD5

    ae04971c528c0cd1388ac3e69999c24e

    SHA1

    4536731637389de6ab5cb7391f4fa155db18993e

    SHA256

    3efde8f665ec12eac8757ad23019ad9ef498ff18690921b94f8e6cde7d020c07

    SHA512

    e34b2a60f1065383948e5aaa8d7f435e9d7d8926f08a0c720544a253a39b772a51d414db04378817086688296358fa3878c7b7d0a8709beb15b23d7d7d8f13ab

    Download Submit
  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\24BD96D5497F70B3F510A6B53CD43F3E_3A89246FB90C5EE6620004F1AE0EB0EA
    Filesize

    410B

    MD5

    abd106af5cf5a16798425466535bd215

    SHA1

    9381f4f4c7a6b9d49dabcd10f6173aa6ee8e08c6

    SHA256

    978fd757530f6a682fa4eeb951dc370528dde74343b29c8e3c8beed1dc5069fb

    SHA512

    88c08e7ab2d9c202b56f765e964717a5a63450878f23b74dcf50d775896382739758b957fef266a4d4fb9d3b3f93d4c03e909c4513cd962dcbd06e9efd5827f0

    Download Submit
  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\7423F88C7F265F0DEFC08EA88C3BDE45_AA1E8580D4EBC816148CE81268683776
    Filesize

    404B

    MD5

    34e4a5dbe26a86a06a45727cbe2d303d

    SHA1

    e93366a303a8af3aad4c2a1060197a15f9ce7f07

    SHA256

    f0d92d6acbc09f8d30e14a5a7fc547785e096df02aa1e0f762f0594271c41861

    SHA512

    3a5e37c4a636523a922d8e89e12f111a4bd3e750f412d6c732af48b42510972b1b5aa31d2a84803e494008af133f924954c73b92c3b5639b9cec045bbc842b20

    Download Submit
  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\CAF4703619713E3F18D8A9D5D88D6288_A7725538C46DE2D0088EE44974E2CEBA
    Filesize

    392B

    MD5

    a16a3c1db7d16e78e47f0483a308aca6

    SHA1

    3a724fe788ca461b086e5f61b903927cc8185e67

    SHA256

    af46d5de457b5dde323b15f071553e1964e192a364c3a8f314fa8a1004127631

    SHA512

    d687c83163b6ac824db609e30a966dab65f49fd384d1b87df368fd5fa0723aa63492d54a11eead0d6e13616bf1073e9fdcf4989b768a5ca4f0f26586ebaa5e52

    Download Submit
  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F2DDCD2B5F37625B82E81F4976CEE400_6D21C8B8ED39419A572C55FF9F5E1619
    Filesize

    406B

    MD5

    3d98446141c74c83c4bc04fc04a12ca7

    SHA1

    ee9d1e0a57fc01ac280590024e1ab863d2682be0

    SHA256

    4f17ce828a6ef4c5be86d289b68066dd82d223ee6f63b4f8bb33b6f6b5abf6b3

    SHA512

    c5fb398cbe275f7402bbfa463fa057208f16e7bc936aadb6e13e59a4d72ab9fce50d1917622a1e1d891060407f3569aa4602082ffa2a69f9d6c1517502dd5dc1

    Download Submit
  • C:\Users\Admin\AppData\LocalLow\Microsoft\Internet Explorer\Services\search_{0633EE93-D776-472f-A0FF-E1416B8B2E3A}.ico
    Filesize

    4KB

    MD5

    da597791be3b6e732f0bc8b20e38ee62

    SHA1

    1125c45d285c360542027d7554a5c442288974de

    SHA256

    5b2c34b3c4e8dd898b664dba6c3786e2ff9869eff55d673aa48361f11325ed07

    SHA512

    d8dc8358727590a1ed74dc70356aedc0499552c2dc0cd4f7a01853dd85ceb3aead5fbdc7c75d7da36db6af2448ce5abdff64cebdca3533ecad953c061a9b338e

    Download Submit
  • C:\Users\Admin\AppData\Local\Microsoft\Windows\INetCache\IE\6RO0PN6W\favicon[1].ico
    Filesize

    1KB

    MD5

    f2a495d85735b9a0ac65deb19c129985

    SHA1

    f2e22853e5da3e1017d5e1e319eeefe4f622e8c8

    SHA256

    8bb1d0fa43a17436d59dd546f6f74c76dc44735def7522c22d8031166db8911d

    SHA512

    6ca6a89de3fa98ca1efcf0b19b8a80420e023f38ed00f4496dc0f821cea23d24fb0992cee58c6d089f093fdefca42b60bb3a0a0b16c97b9862d75b269ae8463b

    Download Submit
  • C:\Users\Admin\AppData\Local\Microsoft\Windows\INetCache\IE\6RO0PN6W\suggestions[1].en-US
    Filesize

    17KB

    MD5

    5a34cb996293fde2cb7a4ac89587393a

    SHA1

    3c96c993500690d1a77873cd62bc639b3a10653f

    SHA256

    c6a5377cbc07eece33790cfc70572e12c7a48ad8296be25c0cc805a1f384dbad

    SHA512

    e1b7d0107733f81937415104e70f68b1be6fd0ca65dccf4ff72637943d44278d3a77f704aedff59d2dbc0d56a609b2590c8ec0dd6bc48ab30f1dad0c07a0a3ee

    Download Submit
  • C:\Users\Admin\AppData\Local\Microsoft\Windows\INetCookies\12EECS2Z.cookie
    Filesize

    615B

    MD5

    20458b4ce8449e4c8df6a59e07e5a772

    SHA1

    45f21cce235ff9ed5812b204261fbb3e9f605809

    SHA256

    e0c1f50156f488b7977b9249ea6945a58973482bdf781b557c22c8eb9b1e2378

    SHA512

    dfc430b0eb569db228d762e31a575ae14df84ab4056fe9e16f2054ac9dbcb735f7ef6912cde1f4ded35df953e5a1aa8df911063d3cbea8c49ff30b130630687f

    Download Submit
  • C:\Users\Admin\AppData\Local\Microsoft\Windows\INetCookies\91FT6TLD.cookie
    Filesize

    244B

    MD5

    1c1a8a613bf927ef5274687bd2a67950

    SHA1

    36fc5b62d17c0141b2396c4a6b4616ac9186f922

    SHA256

    52d39083ae4ed9d522c4116aee51c39629fcd1727ff61e23181deb6cbc0a2693

    SHA512

    af60ca4985152c11f1232e4237cc5611ffa4093e4624797c0647110ab10ca28c8b0e2c73a781f842fa3e817befd15b09ed141185ad3b6b25750b6b12d620025d

    Download Submit
  • C:\Users\Admin\AppData\Local\Microsoft\Windows\INetCookies\OQQVDY0D.cookie
    Filesize

    180B

    MD5

    5ca153cdc3ab18deb63dc8f526e8863a

    SHA1

    6c359c736049913f8d4496b37b85a0a9d4a5922e

    SHA256

    7ccedb170875c6b7b70a16ae7423747421d06947ed91bd43b2b5f235caf9d2b8

    SHA512

    60cd7f12c5d3991dd5c0a578e2f91895b069c1c61b27846291afbe21bf048f93fa8e6a56928d6bb0f19217eab849336ed8a26f2d4e49602933a6e54f427b10f6

    Download Submit
  • C:\Users\Admin\AppData\Local\Temp\Kno9F04.tmp
    Filesize

    88KB

    MD5

    002d5646771d31d1e7c57990cc020150

    SHA1

    a28ec731f9106c252f313cca349a68ef94ee3de9

    SHA256

    1e2e25bf730ff20c89d57aa38f7f34be7690820e8279b20127d0014dd27b743f

    SHA512

    689e90e7d83eef054a168b98ba2b8d05ab6ff8564e199d4089215ad3fe33440908e687aa9ad7d94468f9f57a4cc19842d53a9cd2f17758bdadf0503df63629c6

    Download Submit