Overview

overview

1

Static

static

1

URLScan

urlscan

1

http://emiratisation...

windows7-x64

1

http://emiratisation...

windows10-2004-x64

1

Analysis

  • max time kernel
    118s
  • max time network
    151s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    30/12/2023, 07:54

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    http://emiratisation.ai

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 34 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" http://emiratisation.ai
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1732
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1732 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:1820

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          e8a13fe09dfa32a9ccb185ec1357cbe1

          SHA1

          1ce4d4e3df307df3158b25ffbacd7615cc4c4959

          SHA256

          e03c2fd3553536caff2be51895a483a004d288e0fd6ca686362336b4b93cd757

          SHA512

          671a8e6350e5cd54f26f94065dbf34f1332e24ede38fd57edd9b0e28b8b2f88cc127845863d476b5a225f4a85c7e4d949e6a9512b5074965636e4acc61a9c5c7

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          e3030c603b10f8c1f3d3bf6d9604dbca

          SHA1

          47050e15e15870e220869b77ed056943e0d7579c

          SHA256

          085ecf09e43af3ca19fcf638bb813c5398c476e92531359c91616584ad1d36c2

          SHA512

          2e6f82e3bc56c19fea782915a238333e0bde80fe664d6906db6147dd1df8130d177ad2784857d5c3a741e7b1ba64e08e3be043a7fa036f8451b16e40dd00d500

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          4bec514744693a589e40ddd987e2b63d

          SHA1

          f2ac35fd0f7fa9c96bec5252452e10417a879e73

          SHA256

          88b5577ea7c4b7e55dd6bd5900cf8aadcbc07eb019550e6170ed0acd3a42e898

          SHA512

          25dcded8e79e86f7dd513f7f21627a73202f1b768d652b6d312d639e4643d2322a78e94d1aa5d49df7aa122856099b84a37841fb83c05e82b8f6524fdd0e7825

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          d880d8ff29f241cc288a606eae5face4

          SHA1

          c27e2ade8a23fcc76ddbc04c8f260a0fe05da9e9

          SHA256

          0688bcafe3f1e0d4d0b278a921aba63ad7bb3d6ff4ef94c4e1e00269f934fdc0

          SHA512

          94ae964fe1a9e180867f18c90cb43271d495ed4bfa699795dcf68e2cf719e74b32d49b7d35821358b48ed0f30fc42b7af3da351047ec0165bdcdb05155c0e406

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          76d180c1acf76edd8410fb2d1ef0a412

          SHA1

          96e556064253bf3456f29e7a46302dd60e287811

          SHA256

          35131b6c48e613aca6e1a237db9b6362fce6ebec12ce880e49ca3598b97fc052

          SHA512

          cb14a27cdb0dbbd89d310d0de137327be8f791f7dec7ec13b8a2aeb5ebc3c87248c256481eed930f5bd308cf2c2c4e5d0104d44327c35f4594c2d05f4833c7fe

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          e20c10a9d65f38af2b1d0af730b88166

          SHA1

          cb0b85534e4ae26f34d9c3108108f78d75ba6303

          SHA256

          899005cbd0b20946fd7046ebc9143a2aa764165582ad3d72065237c34c295594

          SHA512

          0448d184c91c5114b54e4f877a7c21bb7a3df6b72a125e6d9c7870655e852c27ce21f91f62166ccf11e481d5ed91d192d9a616eb05a4ec6ac5209109606a9605

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          e548e46e2cf99072cdae0ee58856e2ca

          SHA1

          a57d94f867dcc98f25a59a18d33133b2f83dac68

          SHA256

          c7e4a5cf753bd300716485056d68635cfba978ca4745ece1753d11e6c88ba83e

          SHA512

          85353484cb18cd5c3c2b6883dbf3edcd991ba2069073c7a3ba949722da5f62557f162ea5b04c618cbe15afc896300fa0b91b0308a87ef5678c5fa4fd35f5b79b

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          8044060cf6ec066f1efaa081ae5557df

          SHA1

          f04d90ac77feca7add7b0e5319a51bb7afa6faa2

          SHA256

          b07876259e1217db1ac3910b8c74d5f1017a206ade777e010d1f3ad7aabd3ea9

          SHA512

          2ccf077f30ecb98935016500e47062210617f21ac8f74bbcec419db2830db6b2066edf9f052d8ccaa4fce2e71932f2aecbaebc81d91f55788609622f94e029ef

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\Cab44A0.tmp
          Filesize

          65KB

          MD5

          ac05d27423a85adc1622c714f2cb6184

          SHA1

          b0fe2b1abddb97837ea0195be70ab2ff14d43198

          SHA256

          c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

          SHA512

          6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\Tar4520.tmp
          Filesize

          171KB

          MD5

          9c0c641c06238516f27941aa1166d427

          SHA1

          64cd549fb8cf014fcd9312aa7a5b023847b6c977

          SHA256

          4276af3669a141a59388bc56a87f6614d9a9bdddf560636c264219a7eb11256f

          SHA512

          936ed0c0b0a7ff8e606b1cc4175a1f9b3699748ccbba1c3aff96203033d2e9edabf090e5148370df42fbfc4e31d7229493706ff24f19ff42ff7bef74a6baad06

          Download Submit