Analysis

  • max time kernel
    119s
  • max time network
    131s
  • platform
    windows7_x64
  • resource
    win7-20231020-en
  • resource tags

    arch:x64arch:x86image:win7-20231020-enlocale:en-usos:windows7-x64system
  • submitted
    12-12-2023 09:33

General

  • Target

    https://www.bankmilleniium.pl/

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 34 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" https://www.bankmilleniium.pl/
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2064
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2064 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:1588

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\3C428B1A3E5F57D887EC4B864FAC5DCC

    Filesize

    914B

    MD5

    e4a68ac854ac5242460afd72481b2a44

    SHA1

    df3c24f9bfd666761b268073fe06d1cc8d4f82a4

    SHA256

    cb3ccbb76031e5e0138f8dd39a23f9de47ffc35e43c1144cea27d46a5ab1cb5f

    SHA512

    5622207e1ba285f172756f6019af92ac808ed63286e24dfecc1e79873fb5d140f1ceb7133f2476e89a5f75f711f9813a9fbb8fd5287f64adfdcc53b864f9bdc5

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015

    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\F0ACCF77CDCBFF39F6191887F6D2D357

    Filesize

    1KB

    MD5

    a266bb7dcc38a562631361bbf61dd11b

    SHA1

    3b1efd3a66ea28b16697394703a72ca340a05bd5

    SHA256

    df545bf919a2439c36983b54cdfc903dfa4f37d3996d8d84b4c31eec6f3c163e

    SHA512

    0da8ef4f8f6ed3d16d2bc8eb816b9e6e1345dfe2d91160196c47e6149a1d6aedaafadcefd66acdea7f72dcf0832770192ceac15b0c559c4ccc2c0e5581d5aefc

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\3C428B1A3E5F57D887EC4B864FAC5DCC

    Filesize

    252B

    MD5

    3c34ee0e0b12c6fadcb7ed378fe156fd

    SHA1

    12c7493a37ac7327a9b6892d6afa521d0f5aed15

    SHA256

    38fba30ae0a3d93702042228ada292d5a53adf65407e161f2233e6ab5468723f

    SHA512

    6a5d4ade2555f71a19ac1b542ba17e6e1de4292e825e8474d5b79be576fcc586c0625415b992f2fa96e30511890416ec2ade4ca61b62eb8c297968292acdec55

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    1b5056c48f398b6147b65e43cfaa566e

    SHA1

    e95e29542e0eda7eee826d2e9ee017aff5f79442

    SHA256

    86e96d643c3499d8b10ff1595be7194281e95f0c2ab3aef4a8662a0fd7d3c566

    SHA512

    556ff329c9a023109634579f018871d55de80d2ec4d330ae732aaa6998cc35c6efdcd17e272a8ec0b77f1c4795ee45d3aed111dc0e9b710c8963df7e09408b69

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    aacec02cecb4ecb4bd815eedb67a15ec

    SHA1

    56fd1f9835895787339c39bd80a930bcbd65ee3b

    SHA256

    5a6639c377ab3557350f72587bf4039acb8b15a5b3bf5c0922325120010712e7

    SHA512

    cdbaf7d7914ef0996b52d1655f9ccc005a870697eb59fdaf9e96adf67efa9060fd7687750b5a17634b0344b4df8592a1bc2638bdcbaf0e32701fda60e46a1cb7

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    8dc96661a2fcdc4d3f5cd9446186b9ed

    SHA1

    3938a69a64abf0ec85301a48025dd16afb9c1484

    SHA256

    531cbc2757fe3df413597a8a76c54d1208fb0714cc24692dccbea4e560daa1d9

    SHA512

    43028fc44a8e52ca988765aff0391f23daa518f97c90958a1e8ee20b40e2c54100371ebdebd97adeda948798ba343ed12dfa47c4ff21bab250e91fe11f3c909a

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    fc37e195199ce43adfd97aab50d65467

    SHA1

    26fe705590e1bdb01ff26668e066fad49524cc0f

    SHA256

    ac5b94cdcac427f8c4721b0fb34a15355e5654bbf1cf39562b964355957b15e4

    SHA512

    9e6ae48c0681b16ecc8f8e0c021e03da502acb6ed49faaa6541842d792502f563b6a8d92d89f04dc128135e9aee3dce1e1f6555193e4e218f6ea924acb9aa36a

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    283e750b89a6c31cac98582b78637aba

    SHA1

    36b0305f25971c5b9f0871377a8a3c1d0f6af3f8

    SHA256

    b47261603b8cd2eb55c4af3263065581d58044e0743e3f061781d3ab197013a9

    SHA512

    23a7e5241439c5e39d897b33f36df9e78629e0cf75ef4812699971c706b516d8d26758cb53dd5b31a0e776678fdbcfe3635f672a7e0f3c6d57479f2421fa1a2d

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    825975d97571766298f0ddc87591860e

    SHA1

    45279c1cea6411d26e7350f3ff4f43bcfa6d5f3d

    SHA256

    6027eb585b8f7c3b9e93606a9fc3a60025f48d479b17809da0c6ad3be3006b02

    SHA512

    ff3eacec10279283e9902cd5c9e075bf933e7d63b163bd156f91df27615b0055ab9c1e5f59542e962967cefefe78adc77eb9c903df998eb92bc438ce4c2299cb

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    900af4307f8d06c2c399171c1a6325a5

    SHA1

    10d1b0e3a3046a535bfed91c3453c8d2ffe3f16e

    SHA256

    40db2c6b4227db66242e9cd1a7c80b3d34bde93cdb0b152bd137d26be7ee85d7

    SHA512

    11eac1a1cba45a44596ad572fb8ec8df9d2e75da3ed2973215a5b2f53ea9d0848aae76fd585441a6870641075f1d459323bd0b96bcd8173dfba8bf845d34242a

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    bb0efef2101fc9ac131f37c8268f4a8b

    SHA1

    f9a9c732d278514d7605b46a3947dbf7736135e5

    SHA256

    71d7842c561dca16a60f8483bb71d4ccf3528e7f9e74f3c0d4e3ebff1f568249

    SHA512

    5deccea64f5d2e4e84f4dbd91c1489c93efe6458312d3976d12ce7332e258e5d126d34969b40998a4b42d27aae1a930c8922b9e6c1c4353d533a1c4b9c9e8895

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    5dee998f74605cfb7f472dd73faefcee

    SHA1

    ec312427fe091b481a19e65d4778b2bfb736df9d

    SHA256

    b50d1fd2b9519cebdcf3391991924d5ad1ee271ce423b7f3a0fcfca3dc444818

    SHA512

    e34ae260ec60e41bb0f01590db33f4f38d1c4e089c1bc15c8e21973cd3f6ea8680bfb4f1fd8597087799d54aef6f70b66a4c4c1c4b1d06aa6c70895af453539a

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    82d406d64de797de9e2306c0d3e0d2d4

    SHA1

    267fba751d24538e4466d99fc0db4aac239a328b

    SHA256

    1fcdd5c64f5832a8d87dd2ce44fb981e5278e8feca1a3e18f83210e323b3ce5d

    SHA512

    521cc7a43d49dab9b1674af7053c30ce58a379f9e8a3620e174fdcaca3a48986b015c0e46fe7dcb6b569c39b99aab629500035b1642622f5b92c38ed5f8897bd

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    77c0e5e9fbb009538b75ad7b0d03c48c

    SHA1

    3cb63e4af16481f62bc14433732338c254ca95c8

    SHA256

    464b9c14ffa396d8a7c34dd0f8774e10bae6b241324330f85568510c977d2711

    SHA512

    1365488057be81fd1b083f67bee6e5c1c6b76ad74b8c9860e5cda519b7c7c49d062e81eeeba550f704565fb57945ea05aa1c3e4a25d436a221fbe7bf9b66f104

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    19923e8a5a52a859cc13ebb9cd465a70

    SHA1

    c110908163e724b2487633a78125242419a45354

    SHA256

    3268eeb66d2cda312c0e3477cf4b5dc971c5f2613a5325452b9398cb34d8eec6

    SHA512

    a837bcb730d75200d76c56b42289cc8ec2f8fdd9fe35f9e08f05fc82c5323dfb2b1b442243de01ce2f9320b697961d74bbb62f98db43b1709b583a289854295a

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    3394154e1fa1c1c097c792983ef0a652

    SHA1

    4d319053c8ee809970043a675d372fee1c193380

    SHA256

    7ef8fd36fe218341f766567eb7af2e764c629f3c92496f574368878a2b3eb121

    SHA512

    5602549ff9aa39807e9a663dd615c0fc7bda9ebfb401c4cb42f069dd08b06773b43884be7a6e27d79469d92298b62f35aac3aab202fef5c16ab37d85c94c0ab3

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    7615700eaabe8cec97a4c1262f681e1d

    SHA1

    c53ddfed55e5a68b67ab88176f74792b91bf9cdb

    SHA256

    8f41d3ff1f4dc7fe70187693376d1c20ca96b47531460e806c413e36df641d9e

    SHA512

    3ab8d63d786b6cd3a1c09681c0c2347182f2081679287652eff27eff3c3f99a878f3e568d6b8840fd9524d803f197473ef9159a33728c2366e8a3241fa642381

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    11a93b378843e24d42944ddc1c0462f8

    SHA1

    34c0286fda65c8821a1dfbfea960560cbf9684ef

    SHA256

    3983a6911986ce39c66211ad01c18a4ba22b4b0675bd89fa985d185b8049257a

    SHA512

    7dcd94b1d4c55903f09219e8a5c7b962e5c7e8938aa72e8bc18df463483dc2e706e182532897f6ccf417be4e5559eb15a70284d8ecb16e28844e1315611c375e

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    6629c67928ba163e0ff8c07f2e4e50bd

    SHA1

    ea409997c792f2c908df4a27948918ec435555cd

    SHA256

    bbaa561e79535d36abb32cc07185beda5442db0d672c0fa93ef140854d739968

    SHA512

    1a08f7dbe425df96a2bb5d072698291051e25d5c7e669fe223a9aa26b963ec95af10840f2c8fa6dea46229f553380a623ded5e9c35c71a93fbf5c5421f9dd465

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    9427b95b7c8be929ae9776786db53610

    SHA1

    25ac026ad93d7c7d069683ac4a5fbfbf4d00a5d3

    SHA256

    3302308b504d536c7ef5c13f4ce5a7942925e2e3f7786a5773fcda3149f927c9

    SHA512

    5eb2722e6e8771baa068979bce87af687f260a0009a6e495f7aa54ff1660ca1712f596ee9b36a866fabc11907c03aef9b81f21d20634ed120694315b99202cbf

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    534dc8ad4ed95651be48f40504fd820d

    SHA1

    847585033f49994912700e3031f6a7990f4810ca

    SHA256

    9b3b0abc4d03ea9cc35efdc94f2a5622b7ecc7ed2a391126b4f1d7cec0570e06

    SHA512

    2bd31723a188b6933b40e0c1aaaf9efabf0c7c3c3d25f793bff88415d8c80c65b059a887228be1b5f490c45dc4f1490842108a42b79b23cb82083a08091e46ab

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    96330040333c4493e87ecc85b4d57101

    SHA1

    ff3250ade29d4dd21f16b672c72a07776a9728b1

    SHA256

    e1810cc69220215cf033a28407eafbcf6e2c48c3f4d6745e12d57c91f02f74dc

    SHA512

    8a582120ee428e4f79687d69b1a9f18e35abfe95751aee38249d7aa6dee722c26e9e8119db23a311c69332135eeaacf83765aa353890c0f021bbb6a0835bf6fd

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    4463a5f90512dbed777fd4f2711383f3

    SHA1

    e5672eb38db5fa0968035dac842eab1f87fad6c7

    SHA256

    f7667e6ebede28883f1b2d921d922cb276a66aca5f8c36dc07b5d7888f376c21

    SHA512

    719a64b3592bc2be7c9fff2dadfbc0b17759bc58511a745a0b616f56067a0fff0aa150183e6923e3855767418d6ef25678351219824891e7414d1f8b67966685

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    c0c50b801f8ca6ec9687c45bc637f5fa

    SHA1

    16c7a04ef2def88cd7f9e2136dd81236c00f890b

    SHA256

    9733af1eff6e58b54e8fe592ac5cccae60a48b20a20da3bf0027a4266a70e47a

    SHA512

    ef49d996b373567157d1e9003145044582a8b98eb2723fdd5b460bbd3b9c925150e7c1b8d7fb1521cf52977aef9e76569770a0cae3ec5e01d6c63c2431b64db4

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    7a2143e400f67c3e8670597a1e992784

    SHA1

    7010a0ab0a411720514f0a4cb1afa350feb92a23

    SHA256

    90fd503bb1d3b2e5256bf335dde0ea074e55cc61b54a6aa896849aa0b43e4c92

    SHA512

    d447549244c16eb228f79e44deea2a8775788f2aa72c01348d3421d5851bd50a946637b99a283fda4e7d01eb9823192083a294c4fda2b37ed9d00afccca58d5f

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F0ACCF77CDCBFF39F6191887F6D2D357

    Filesize

    242B

    MD5

    d2f5576197043f9fa6be4766867cc408

    SHA1

    69e2117e106e3d91e19291da498084a6f55b94fe

    SHA256

    1fe196bf14945f509b303354ea7bff403cfedd4f0f3b11e688a143c6c585bd70

    SHA512

    4a05f6a58c767359d29bac26ed85e9799285a919cee88a34f672e6e5601d8fca9114c9096cc668c0b7cc51b01a65b4127a4b1b626e5e988cb2ca97562763bc6b

  • C:\Users\Admin\AppData\Local\Temp\Cab6CB8.tmp

    Filesize

    61KB

    MD5

    f3441b8572aae8801c04f3060b550443

    SHA1

    4ef0a35436125d6821831ef36c28ffaf196cda15

    SHA256

    6720349e7d82ee0a8e73920d3c2b7cb2912d9fcf2edb6fd98f2f12820158b0bf

    SHA512

    5ba01ba421b50030e380ae6bbcd2f681f2a91947fe7fedb3c8e6b5f24dce9517abf57b1cf26cc6078d4bb53bde6fcfb2561591337c841f8f2cb121a3d71661b9

  • C:\Users\Admin\AppData\Local\Temp\Tar7078.tmp

    Filesize

    171KB

    MD5

    9c0c641c06238516f27941aa1166d427

    SHA1

    64cd549fb8cf014fcd9312aa7a5b023847b6c977

    SHA256

    4276af3669a141a59388bc56a87f6614d9a9bdddf560636c264219a7eb11256f

    SHA512

    936ed0c0b0a7ff8e606b1cc4175a1f9b3699748ccbba1c3aff96203033d2e9edabf090e5148370df42fbfc4e31d7229493706ff24f19ff42ff7bef74a6baad06