Overview

overview

1

Static

static

1

URLScan

urlscan

1

https://app.communic...

windows10-2004-x64

1

Resubmissions

13/06/2023, 07:30

230613-jcas9sfd46 1

13/06/2023, 06:45

230613-hjbtgafg2w 1

Analysis

  • max time kernel
    243s
  • max time network
    238s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20230221-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20230221-enlocale:en-usos:windows10-2004-x64system
  • submitted
    13/06/2023, 06:45

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    https://app.communications.lseg.com/e/es?s=530566577&e=2506484&elqTrackId=34c8be5d271b46568f297d66fdf28191&elq=3dd7d7aa3c414851a31ad2f831d60f56&elqaid=115789&elqat=1

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 49 IoCs
    adwarespyware
  • Suspicious behavior: EnumeratesProcesses 2 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 14 IoCs
  • Suspicious use of WriteProcessMemory 6 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" https://app.communications.lseg.com/e/es?s=530566577&e=2506484&elqTrackId=34c8be5d271b46568f297d66fdf28191&elq=3dd7d7aa3c414851a31ad2f831d60f56&elqaid=115789&elqat=1
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious behavior: EnumeratesProcesses
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2676
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2676 CREDAT:17410 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:4456
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2676 CREDAT:17414 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:4184

Network

        MITRE ATT&CK Enterprise v6

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\5080DC7A65DB6A5960ECD874088F3328_2908F682DFC81A793BD240CF29711C77
          Filesize

          2KB

          MD5

          76d3a0b76973433c1a7ce5a5305a597e

          SHA1

          d45da370128101ab7e6d29850086fe086ebb3301

          SHA256

          6b5f430b931483e78ff5ff7c3ea1c34b714dc0f17793dea31984a926a3cf0aea

          SHA512

          ddade334981b63fe4be1f54d9fcafdbd373c480cd2a4ce77704100c9d19efe029d3b6fa9f1fbc21b36088cedb018f7b5f727cd5dbdc5bab8a175bffaa9a51c18

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\7423F88C7F265F0DEFC08EA88C3BDE45_AA1E8580D4EBC816148CE81268683776
          Filesize

          471B

          MD5

          f00c651bd023e439cef538cb61938602

          SHA1

          7e49f7ce3c00bde7692a5fd85497e1f60b1f616e

          SHA256

          ac671834dcc3d8ef96272da936597334cccd7c1106beeac5919e6cb308f9bb66

          SHA512

          91ddece9b7c3fe2ab0d9b4891fbe522f344b58fedf99b5eee0f06e573770dfb96d69c0727102b94a22d34a671fa28cd51d90e4fd35b28443b260195a9ce53de6

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\B2FAF7692FD9FFBD64EDE317E42334BA_2DBE917624E9880FE0C7C5570D56E691
          Filesize

          1KB

          MD5

          a2233d4ef072171ac8bc215f2876e163

          SHA1

          6ae9d3238da35d487f4dc0fbb6b0d28b447fedf2

          SHA256

          d58ca72f2a087fe3343bbcecd58e8f708394bc28957d5657489d88a54d991fe6

          SHA512

          ffd5188d5fe494b6ab738da409d2352a8cda7c69fb4b658ad53bd6792823a84a16a529299a485a65149c1319a7eff51a4b0978c8f30734454da5fa468a9de00a

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\B398B80134F72209547439DB21AB308D_A4CF52CCA82D7458083F7280801A3A04
          Filesize

          471B

          MD5

          4cfc54230e4b6209c376b87a17c4ec14

          SHA1

          01d17bf35c9f6a3eb86f9fa0fcb2328964c38741

          SHA256

          b73a1debea9ea5dba975e84e1dcc192faaeea0f66a12891d38cf418c57dd932d

          SHA512

          d793d4d2395bb08cbf4218b8baf41fc3b09dfe99df70abe0d6338adedcb76f84ba2992a9f684a5a4087e5a86c99eb3cda9559e0796adfef103a9f121e55e0c88

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\E573CDF4C6D731D56A665145182FD759_2B1176B182E30DA5506E5D7FBB23F057
          Filesize

          471B

          MD5

          f7b7520c3d021ed9070a1abeec41ac8a

          SHA1

          1aa2f329c5e532aae82951568182bf087de6572e

          SHA256

          b9a94c2271c756453296d59aba856b548af5a5d6bf3d60463f3a169894081caa

          SHA512

          703fb708e453ef1c232d8a2f697adf3b7fadedc133df85073d45543aaa692073840bd32e5f7ea87a895f141d0146d069553e4827d16de6c5c1e2da63b2372339

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\5080DC7A65DB6A5960ECD874088F3328_2908F682DFC81A793BD240CF29711C77
          Filesize

          490B

          MD5

          f43d9684100bd5e1967fa8960bd4c39b

          SHA1

          4de12d63ebbed8708008aaaba56f29c6c9acb656

          SHA256

          9c79e00d108ec408816af2a2582f55668a985bb893b80b5ec75dd32d095e17d6

          SHA512

          59f6cb1ae18b03b905a2089a7acc3fa62cd91ccedffb53a542dc30e01dedb2fab9373e707bbbbbe20e86c35af7049c4f3b9db196e3d18939247c0b07eeba0372

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\7423F88C7F265F0DEFC08EA88C3BDE45_AA1E8580D4EBC816148CE81268683776
          Filesize

          404B

          MD5

          36f16da2d6f6b331e5559a12e56b4940

          SHA1

          3e6be2fac3b0df04c8f3b3a5e76dcd3f6501b487

          SHA256

          de68bf7dab95da3b79375064e59918aff9f3a3b8d8890504a77872348d5580e9

          SHA512

          0f87209bc2ff275a7aeb0d677fdf81751a0862e7721a550fc0c2576626600e852c604187aa38d87b66515302362079655ed46b33f3aaf49799313eed9ff52b7e

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\B2FAF7692FD9FFBD64EDE317E42334BA_2DBE917624E9880FE0C7C5570D56E691
          Filesize

          486B

          MD5

          039f65c265d7fb087e182149ff7673fe

          SHA1

          4b73cac9efd61a2c614a7f004d1dbfe98d62ac7f

          SHA256

          2417f14da1024ae3fc7436986e4a40f45f27bedda2f25d7d2ede1b992435ad7d

          SHA512

          76e305a7855f9024857672cf0ed392e5f2ec351c6742cfe36396e1fb2e545997725ad7d4bc89c24a66cb54a20c72b6a1823b9640c03a1fdafaf1877ad89ebbeb

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\B398B80134F72209547439DB21AB308D_A4CF52CCA82D7458083F7280801A3A04
          Filesize

          400B

          MD5

          3e9fd0c25db9c9d2bc570bf0b141c989

          SHA1

          9c946892c4287206c41903a93162cd3488d6648d

          SHA256

          faac089e5d57bb599fb495baac63f8137a9261954073d5ff2d1b9a77d80ca53b

          SHA512

          258777508f326dab623931da42f5ea0303ba070023f1669f45f8a86d5d90b0bfde30252062be0e73a1beb59d3b5019585a91bb4c07a07ee0acb7301ffcc4fbd7

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\E573CDF4C6D731D56A665145182FD759_2B1176B182E30DA5506E5D7FBB23F057
          Filesize

          400B

          MD5

          8ccf3789de7cb29714d4ee84aeba0fec

          SHA1

          dc306d0744161bbb28e6ed4876ba42049dbbbacb

          SHA256

          a792bbf00ac417c2fe88d0bb5a94775f723c6b3658c71636d08d78f006884a40

          SHA512

          b91abb42d66c89a64b5cd4bb3af87b660c085ecb014b4a3120771751fc010832d5c560fc363872c00e747df09fa9f8ace2fe9c8aa866e1ef492acc99b0b1360a

          Download Submit

        • C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\imagestore\cz9baam\imagestore.dat
          Filesize

          1KB

          MD5

          03161d8e758e5172ffb7a6520b9d54a6

          SHA1

          da59ffc2103a399ced7a13e53ddb7da678a6d047

          SHA256

          600aba00fc6e4fdb1471d1315dbcdd3173bcfba95000ba73091f4a15721fee1a

          SHA512

          bb99cf967b004830c33adbcbd8fccbbbad261e367e4dcc10db0e77e7ada5abc3e3fb79d6168f741dd7bc63ba3c8c7cf64b35db99ce7ad4e831f9bba01fc18280

          Download Submit

        • C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\imagestore\cz9baam\imagestore.dat
          Filesize

          403KB

          MD5

          c6d91f8b5f72cb78ab17a5ba469610d4

          SHA1

          298c7640c3a8e7382c83d3601dc7f9ff3f8f830b

          SHA256

          fb4e09ba4dd0e1a21edcac5be7e8a005ba4b34ee3b9f3cf5a73e157909b94973

          SHA512

          c73f56fad214f9cf058b078dbd68eef98c992a0d1af8303eef22fcc112bb1cb71a462a3402a0244afd72f9c6ea2511cb631b94feaf4c018481da8f9389940d1b

          Download Submit

        • C:\Users\Admin\AppData\Local\Microsoft\Windows\INetCache\IE\GPVLIKPI\ref[1].ico
          Filesize

          894B

          MD5

          de11aa31e1bbe4d1f12d779a4469e8e3

          SHA1

          d7ecca0a261afcb199515228b13ef157d731df89

          SHA256

          fc7e21eccd823f8d75cb04881aebeb2e403e147f4068bbad4b0f90e8783157e2

          SHA512

          2d44618abb7c86cdfbc1fd5e32c2359a896d1bb8d21993151258310e896e62861427c7d0a7d44fc8540b945f812fc470c38071f646208f66f91a759817e15182

          Download Submit

        • C:\Users\Admin\AppData\Local\Microsoft\Windows\INetCache\IE\RUOQG7D6\suggestions[1].en-US
          Filesize

          17KB

          MD5

          5a34cb996293fde2cb7a4ac89587393a

          SHA1

          3c96c993500690d1a77873cd62bc639b3a10653f

          SHA256

          c6a5377cbc07eece33790cfc70572e12c7a48ad8296be25c0cc805a1f384dbad

          SHA512

          e1b7d0107733f81937415104e70f68b1be6fd0ca65dccf4ff72637943d44278d3a77f704aedff59d2dbc0d56a609b2590c8ec0dd6bc48ab30f1dad0c07a0a3ee

          Download Submit

        • C:\Users\Admin\AppData\Local\Microsoft\Windows\INetCache\IE\RUOQG7D6\{f69e25ec-b9ab-402d-9a25-80d0b6961f26}_lseg-fav-icon[1].png
          Filesize

          401KB

          MD5

          dc4010226aafec751c7793f63da73d35

          SHA1

          f46530ae3072d0423677b0442755de6a4ebb38b6

          SHA256

          705a4d3b53394ab90943d1165c0e29081fa59b57a9f78ea755060370535a2fba

          SHA512

          d52cad6fc62a297c307e51e054f431768a9e0bc91ae151f9dd3e0e4b60058bbc84995df27c311176878c799908eb5386293c956ba653db1f80b097a2c928f853

          Download Submit