Overview

overview

1

Static

static

1

URLScan

urlscan

1

http://lkalzzop.onli...

windows10-1703-x64

1

Analysis

  • max time kernel
    300s
  • max time network
    300s
  • platform
    windows10-1703_x64
  • resource
    win10-20230703-en
  • resource tags

    arch:x64arch:x86image:win10-20230703-enlocale:en-usos:windows10-1703-x64system
  • submitted
    19/07/2023, 11:04

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    http://lkalzzop.online

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 52 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 3 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" http://lkalzzop.online
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:3688
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:3688 CREDAT:82945 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:3828

Network

        MITRE ATT&CK Enterprise v6

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\7423F88C7F265F0DEFC08EA88C3BDE45_AA1E8580D4EBC816148CE81268683776
          Filesize

          471B

          MD5

          a45c3b3d88fc98223dc61edc80461d54

          SHA1

          da994ba4342fa9b562ac5e861ccd9f774f516eba

          SHA256

          2e58a39a9d299f44a2938ccc95697b9d63a8994bf786dd848d7a9a7864dccd8a

          SHA512

          3938dfa1e3a0431818435a433f3aab8c1b69b081692f598dda378cf772385b99cd909bd44ae3cb5717f560d65f2ce854b8cd0f259c27f411a6e19efc4c488bef

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\7423F88C7F265F0DEFC08EA88C3BDE45_AA1E8580D4EBC816148CE81268683776
          Filesize

          404B

          MD5

          2f6889193187cb01cd3293b256885578

          SHA1

          fc227ebe63ac808e1f0289d5bc8c4d4469bb83dc

          SHA256

          6481084a869628f0c2003daf43f90a3f96dd3f8bc66bcbf3a1785d54d973c2f5

          SHA512

          b979049f265b0d73c879265665dc98a1c36e48c5d6827336144c0c7f9601706061b9815657240db3af6ed6230ab01125211b2515f0e69f4335bbf54238e1929d

          Download Submit

        • C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\VersionManager\ver19EC.tmp
          Filesize

          15KB

          MD5

          1a545d0052b581fbb2ab4c52133846bc

          SHA1

          62f3266a9b9925cd6d98658b92adec673cbe3dd3

          SHA256

          557472aeaebf4c1c800b9df14c190f66d62cbabb011300dbedde2dcddd27a6c1

          SHA512

          bd326d111589d87cd6d019378ec725ac9ac7ad4c36f22453941f7d52f90b747ede4783a83dfff6cae1b3bb46690ad49cffa77f2afda019b22863ac485b406e8d

          Download Submit

        • C:\Users\Admin\AppData\Local\Microsoft\Windows\INetCache\IE\RNB8B7MM\suggestions[1].en-US
          Filesize

          17KB

          MD5

          5a34cb996293fde2cb7a4ac89587393a

          SHA1

          3c96c993500690d1a77873cd62bc639b3a10653f

          SHA256

          c6a5377cbc07eece33790cfc70572e12c7a48ad8296be25c0cc805a1f384dbad

          SHA512

          e1b7d0107733f81937415104e70f68b1be6fd0ca65dccf4ff72637943d44278d3a77f704aedff59d2dbc0d56a609b2590c8ec0dd6bc48ab30f1dad0c07a0a3ee

          Download Submit

        • C:\Users\Admin\AppData\Local\Microsoft\Windows\INetCookies\L1D21QUQ.cookie
          Filesize

          610B

          MD5

          00e2a1936847b358c6c846213db47397

          SHA1

          26a396f651cbfb4160e698214f1a664b20fc6410

          SHA256

          a866db0f97a9bc5cd6d0dca5b6bec883f6f71dcd8d94055c37b31aeee10873de

          SHA512

          2c1980c31aa3f861b19be35fb5ef6bdaf58e4d2a76a70a48d96ee4c7920b8c19af64e60ca68b40b0e9503b2e925935c3d1b09e0fbd61faaf2ef9fa4ce58a91ee

          Download Submit

        • C:\Users\Admin\AppData\Local\Microsoft\Windows\INetCookies\TW8GC02I.cookie
          Filesize

          645B

          MD5

          430fcd6ff4cfe1b958192bdd8dda32b0

          SHA1

          d074053f01afacab60e1d9866bdbd6ea4e387c4c

          SHA256

          63c65e5b2a82ba8c07149e7b4d7240ef0a12050308167c58aa0f4e0fb579237a

          SHA512

          f399b79d7853b75e1df79fc9bbae63de5d33b48f4a3c83c833623850f55d6729183af2e1cc11a2d8a2621f86686c02e1d451319a654685dd43dec0d5bf5636a7

          Download Submit