aea1dcb3a92cb5d5841f7e03a88f6220829e2df1dae2d147e70aef69d16770fb | Triage

Submit
Reports

Overview

overview

Static

static

3

CareAbout.exe

windows7-x64

CareAbout.exe

windows10-2004-x64

HTCTL32.dll

windows7-x64

3

HTCTL32.dll

windows10-2004-x64

3

ExtExport.exe

windows7-x64

ExtExport.exe

windows10-2004-x64

1

iediagcmd.exe

windows7-x64

8

iediagcmd.exe

windows10-2004-x64

8

ieinstal.exe

windows7-x64

ieinstal.exe

windows10-2004-x64

1

ielowutil.exe

windows7-x64

ielowutil.exe

windows10-2004-x64

1

PCICHEK.dll

windows7-x64

1

PCICHEK.dll

windows10-2004-x64

1

PCICL32.dll

windows7-x64

1

PCICL32.dll

windows10-2004-x64

5

TCCTL32.dll

windows7-x64

1

TCCTL32.dll

windows10-2004-x64

1

msvcr100.dll

windows7-x64

3

msvcr100.dll

windows10-2004-x64

3

pcicapi.dll

windows7-x64

1

pcicapi.dll

windows10-2004-x64

1

remcmdstub.exe

windows7-x64

1

remcmdstub.exe

windows10-2004-x64

1

Analysis

max time kernel
139s
max time network
147s
platform
windows10-2004_x64
resource
win10v2004-20230831-en
resource tags

arch:x64arch:x86image:win10v2004-20230831-enlocale:en-usos:windows10-2004-x64system
submitted
13-09-2023 01:20

Sharing

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

CareAbout.exe

Resource

win7-20230831-en

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral2

Sample

CareAbout.exe

Resource

win10v2004-20230831-en

windows10-2004-x64

3 signatures

150 seconds

Behavioral task

behavioral3

Sample

HTCTL32.dll

Resource

win7-20230831-en

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral4

Sample

HTCTL32.dll

Resource

win10v2004-20230831-en

windows10-2004-x64

2 signatures

150 seconds

Behavioral task

behavioral5

Sample

ExtExport.exe

Resource

win7-20230831-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral6

Sample

ExtExport.exe

Resource

win10v2004-20230831-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral7

Sample

iediagcmd.exe

Resource

win7-20230831-en

windows7-x64

9 signatures

150 seconds

Behavioral task

behavioral8

Sample

iediagcmd.exe

Resource

win10v2004-20230831-en

evasion persistence

windows10-2004-x64

11 signatures

150 seconds

Behavioral task

behavioral9

Sample

ieinstal.exe

Resource

win7-20230831-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral10

Sample

ieinstal.exe

Resource

win10v2004-20230831-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral11

Sample

ielowutil.exe

Resource

win7-20230831-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral12

Sample

ielowutil.exe

Resource

win10v2004-20230831-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral13

Sample

PCICHEK.dll

Resource

win7-20230831-en

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral14

Sample

PCICHEK.dll

Resource

win10v2004-20230831-en

windows10-2004-x64

2 signatures

150 seconds

Behavioral task

behavioral15

Sample

PCICL32.dll

Resource

win7-20230831-en

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral16

Sample

PCICL32.dll

Resource

win10v2004-20230831-en

windows10-2004-x64

5 signatures

150 seconds

Behavioral task

behavioral17

Sample

TCCTL32.dll

Resource

win7-20230831-en

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral18

Sample

TCCTL32.dll

Resource

win10v2004-20230831-en

windows10-2004-x64

1 signatures

150 seconds

Behavioral task

behavioral19

Sample

msvcr100.dll

Resource

win7-20230831-en

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral20

Sample

msvcr100.dll

Resource

win10v2004-20230831-en

windows10-2004-x64

2 signatures

150 seconds

Behavioral task

behavioral21

Sample

pcicapi.dll

Resource

win7-20230831-en

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral22

Sample

pcicapi.dll

Resource

win10v2004-20230831-en

windows10-2004-x64

1 signatures

150 seconds

Behavioral task

behavioral23

Sample

remcmdstub.exe

Resource

win7-20230831-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral24

Sample

remcmdstub.exe

Resource

win10v2004-20230831-en

windows10-2004-x64

1 signatures

150 seconds

Report Analysis Logs

General

Target

ielowutil.exe
Size

219KB
MD5

d831180f7596e0d2bb87b2cc57ecfca2
SHA1

472a9d3f90a50222d4944c70422734f4955f15a1
SHA256

3099b6cf67191b1a7e4d8463576fe85835e8df2296dba3470b0cd42babd336c8
SHA512

879446f600f21135c6e0ed3df8991906f6213569f72f701cb97ce0acd52a1187e0a0faf484e50ed22ab8ea64d1217c65a2ff1b693aa06f5993532ca163f5a6b7
SSDEEP

3072:VstD7trOt9pfslMYO9mXn9H0LeinObM6gZy5ChoTic:Vw1rOt9pdYamXnrdbMKw

Score

1^/10

Malware Config

Signatures

Processes

C:\Users\Admin\AppData\Local\Temp\ielowutil.exe
"C:\Users\Admin\AppData\Local\Temp\ielowutil.exe"
1⤵
PID:2720

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

© 2018-2024

Terms | Privacy