Overview

overview

1

Static

static

1

URLScan

urlscan

1

http://0-2.gb-uk-lin...

windows10-1703-x64

1

Analysis

  • max time kernel
    123s
  • max time network
    148s
  • platform
    windows10-1703_x64
  • resource
    win10-20230703-en
  • resource tags

    arch:x64arch:x86image:win10-20230703-enlocale:en-usos:windows10-1703-x64system
  • submitted
    04-07-2023 11:22

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    http://0-2.gb-uk-link.com

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 50 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 3 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" http://0-2.gb-uk-link.com
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:664
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:664 CREDAT:82945 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:3256

Network

MITRE ATT&CK Enterprise v6

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\7423F88C7F265F0DEFC08EA88C3BDE45_AA1E8580D4EBC816148CE81268683776
    Filesize

    471B

    MD5

    1f89e83823a7054dbb660c66bf41b311

    SHA1

    ad6877efc78cfda9dc0fe11549b78deb23382f1f

    SHA256

    d58114ac0a6829add4d17e19d87e504b1360a7319a727ace672db140b1ec25e5

    SHA512

    76204ec61acb9ad619138b1aa5182cda2b18a6fa492ce01228fa8beaecd5482c3965fd7395a5c1fee319f71d483b5142b93e9d1006666ebae120a2178485f36c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\7423F88C7F265F0DEFC08EA88C3BDE45_AA1E8580D4EBC816148CE81268683776
    Filesize

    404B

    MD5

    e95ac835a6bfa1edaa6dafb09e3eb15f

    SHA1

    27d69fbdb6435fedb1505210de77defdec9866f9

    SHA256

    aee81cd76fc39fa6b60abbb636c88ea93be6b7d0cf3673cee501d2665cc28e10

    SHA512

    77138a3d263ef1a0499fb04f95818183be39332b9208bfbfb5b111cdce84f8b1a9f7b3cd0b1832ae2184965a6bf4ed531e6b3714a2f4762d02602de0d8809379

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\VersionManager\ver12B8.tmp
    Filesize

    15KB

    MD5

    1a545d0052b581fbb2ab4c52133846bc

    SHA1

    62f3266a9b9925cd6d98658b92adec673cbe3dd3

    SHA256

    557472aeaebf4c1c800b9df14c190f66d62cbabb011300dbedde2dcddd27a6c1

    SHA512

    bd326d111589d87cd6d019378ec725ac9ac7ad4c36f22453941f7d52f90b747ede4783a83dfff6cae1b3bb46690ad49cffa77f2afda019b22863ac485b406e8d

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\INetCache\IE\NUAQS3XK\suggestions[1].en-US
    Filesize

    17KB

    MD5

    5a34cb996293fde2cb7a4ac89587393a

    SHA1

    3c96c993500690d1a77873cd62bc639b3a10653f

    SHA256

    c6a5377cbc07eece33790cfc70572e12c7a48ad8296be25c0cc805a1f384dbad

    SHA512

    e1b7d0107733f81937415104e70f68b1be6fd0ca65dccf4ff72637943d44278d3a77f704aedff59d2dbc0d56a609b2590c8ec0dd6bc48ab30f1dad0c07a0a3ee

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\INetCookies\6GIMRU2H.cookie
    Filesize

    608B

    MD5

    b21a3c79d4de6f605d2d42c3cb218a20

    SHA1

    a4d3875156e1255a93c0bf4761e9b160f481f96f

    SHA256

    0671d70c729822a721e4dbcbdb32bd0b68881da2162c34ad66f6d63b418a3517

    SHA512

    77288d465054c05677fe5cf8673d0bad0d643353cb82c35886e5486762347015b1199b19e3747ebfed04c6579bc1acbdbb5bc7053cd5fef8a794400cd994fde1

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\INetCookies\8YHPTMJQ.cookie
    Filesize

    607B

    MD5

    b20f01a35580fa7ab8c5ddcc3819408d

    SHA1

    42641ba685f2e6a76c5e7281952df99e56f748c1

    SHA256

    3779a76825e06a7d3855e6880ebf6f3020e0a59cd286b8ef2c0ab8235fb304cf

    SHA512

    724045caa235d1ac1e8a07d9b4bcbe1f89cff246a3460406a5937fbbefc024eac920cede6b6083af9a333ce68c8e1f32b7dedb4496d2c0b584a4f7848ae4cdc2

    Download Submit