Overview

overview

1

Static

static

1

URLScan

urlscan

1

http://lkalzzop.onli...

windows10-1703-x64

1

Analysis

  • max time kernel
    300s
  • max time network
    300s
  • platform
    windows10-1703_x64
  • resource
    win10-20230703-en
  • resource tags

    arch:x64arch:x86image:win10-20230703-enlocale:en-usos:windows10-1703-x64system
  • submitted
    19/07/2023, 11:04

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    http://lkalzzop.online

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 52 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 3 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" http://lkalzzop.online
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:3688
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:3688 CREDAT:82945 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:3828

Network

MITRE ATT&CK Enterprise v6

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\7423F88C7F265F0DEFC08EA88C3BDE45_AA1E8580D4EBC816148CE81268683776
    Filesize

    471B

    MD5

    a45c3b3d88fc98223dc61edc80461d54

    SHA1

    da994ba4342fa9b562ac5e861ccd9f774f516eba

    SHA256

    2e58a39a9d299f44a2938ccc95697b9d63a8994bf786dd848d7a9a7864dccd8a

    SHA512

    3938dfa1e3a0431818435a433f3aab8c1b69b081692f598dda378cf772385b99cd909bd44ae3cb5717f560d65f2ce854b8cd0f259c27f411a6e19efc4c488bef

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\7423F88C7F265F0DEFC08EA88C3BDE45_AA1E8580D4EBC816148CE81268683776
    Filesize

    404B

    MD5

    2f6889193187cb01cd3293b256885578

    SHA1

    fc227ebe63ac808e1f0289d5bc8c4d4469bb83dc

    SHA256

    6481084a869628f0c2003daf43f90a3f96dd3f8bc66bcbf3a1785d54d973c2f5

    SHA512

    b979049f265b0d73c879265665dc98a1c36e48c5d6827336144c0c7f9601706061b9815657240db3af6ed6230ab01125211b2515f0e69f4335bbf54238e1929d

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\VersionManager\ver19EC.tmp
    Filesize

    15KB

    MD5

    1a545d0052b581fbb2ab4c52133846bc

    SHA1

    62f3266a9b9925cd6d98658b92adec673cbe3dd3

    SHA256

    557472aeaebf4c1c800b9df14c190f66d62cbabb011300dbedde2dcddd27a6c1

    SHA512

    bd326d111589d87cd6d019378ec725ac9ac7ad4c36f22453941f7d52f90b747ede4783a83dfff6cae1b3bb46690ad49cffa77f2afda019b22863ac485b406e8d

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\INetCache\IE\RNB8B7MM\suggestions[1].en-US
    Filesize

    17KB

    MD5

    5a34cb996293fde2cb7a4ac89587393a

    SHA1

    3c96c993500690d1a77873cd62bc639b3a10653f

    SHA256

    c6a5377cbc07eece33790cfc70572e12c7a48ad8296be25c0cc805a1f384dbad

    SHA512

    e1b7d0107733f81937415104e70f68b1be6fd0ca65dccf4ff72637943d44278d3a77f704aedff59d2dbc0d56a609b2590c8ec0dd6bc48ab30f1dad0c07a0a3ee

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\INetCookies\L1D21QUQ.cookie
    Filesize

    610B

    MD5

    00e2a1936847b358c6c846213db47397

    SHA1

    26a396f651cbfb4160e698214f1a664b20fc6410

    SHA256

    a866db0f97a9bc5cd6d0dca5b6bec883f6f71dcd8d94055c37b31aeee10873de

    SHA512

    2c1980c31aa3f861b19be35fb5ef6bdaf58e4d2a76a70a48d96ee4c7920b8c19af64e60ca68b40b0e9503b2e925935c3d1b09e0fbd61faaf2ef9fa4ce58a91ee

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\INetCookies\TW8GC02I.cookie
    Filesize

    645B

    MD5

    430fcd6ff4cfe1b958192bdd8dda32b0

    SHA1

    d074053f01afacab60e1d9866bdbd6ea4e387c4c

    SHA256

    63c65e5b2a82ba8c07149e7b4d7240ef0a12050308167c58aa0f4e0fb579237a

    SHA512

    f399b79d7853b75e1df79fc9bbae63de5d33b48f4a3c83c833623850f55d6729183af2e1cc11a2d8a2621f86686c02e1d451319a654685dd43dec0d5bf5636a7

    Download Submit