Overview

overview

1

Static

static

1

URLScan

urlscan

1

https://click.smarts...

windows7-x64

1

https://click.smarts...

windows10-2004-x64

1

Analysis

  • max time kernel
    117s
  • max time network
    140s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    03/01/2024, 02:33

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    https://click.smartsheet.com/f/a/hP6DDMs6x1Ib4SBhNTnrYQ~~/AARF7wA~/RgRnZgBGP0UIZG93bmxvYWREVmh0dHBzOi8vYXBwLnNtYXJ0c2hlZXQuY29tL2IvZG93bmxvYWQvYXR0LzEvMjU5MDc0NDk1MDQxNDEyLzNucX

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 34 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" https://click.smartsheet.com/f/a/hP6DDMs6x1Ib4SBhNTnrYQ~~/AARF7wA~/RgRnZgBGP0UIZG93bmxvYWREVmh0dHBzOi8vYXBwLnNtYXJ0c2hlZXQuY29tL2IvZG93bmxvYWQvYXR0LzEvMjU5MDc0NDk1MDQxNDEyLzNucX
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2512
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2512 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2256

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    8e990e135a0a1fc4c1212e6eb9f0721e

    SHA1

    7f8f7c8a92e200d9130be5cea741804eaf09bb2c

    SHA256

    3ff7a28f57899a32ad41ecc09a8ab4f977d0932e433e18dfc2cb73292ac53146

    SHA512

    50a5fa557c1b01a0cdd05c618b4cf7a330fd83ec56cb5d7e695188edf92311baa3c96b84cb651be10885b50a5d39b285a383345dd53f65ab22eac6a83aa3f242

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    09465f79615d25efebafd5bf60a07288

    SHA1

    668f445fe3c6bf7cf9d9d19364abc223c5f01c6a

    SHA256

    a39759ac6382b5950b1f1a7d0e9fb014e8f9ed31e72a5c57ab941a41abb34741

    SHA512

    321a79a9452fbea4684a09f42633e866c57a85e1cb10071f0171f79d21fc5041defd08df9890b02e84637cc70586915d852da1297b90f10de96a07c4f5c2c947

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    276883f04ccc92baf7346d22ae64eb14

    SHA1

    6cdb5db6eb795927c07a3fbbf6b41ee23f917242

    SHA256

    f8f3c7945dcc7f683d3ff5a1e9c19e70ce559071a08925474957d97c804d685f

    SHA512

    d7fed4c68e7dcea1e029c88074a335d0b8249feb20aead70c8525632c6700d41335881b6e0de0988f917e6e484147fca877f3188ab6716b91cd011fc1b21e57f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    e533f4d137fe34d67913c930dee637b4

    SHA1

    61d75bb8ac590ab9e9f1a79f76cd44a5b83d3949

    SHA256

    f6fd4ea112e29132308f291c0573e5fde0483ae791414d08c496573f4e83cf7f

    SHA512

    2ca82302c5f744cad0e1bc5b5fb453ff2985ff2db1c737ffbddcfc7823305fb9ba66ace371fcf0bcc0589ac7974984d122e2ffb5f66875b7bcfd85d2344b7358

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    5d23a422d27ffdaf674373bce662623c

    SHA1

    dcbf833b00a84758504ea3912553f07a27443c6d

    SHA256

    b45b4175126efd96274855344d84489ea1aa5be3401d81106959036dec9adf9e

    SHA512

    fb1797b4dcc8138f38d831e671cefb9301d579c0560959a2911408999e7410dda348b15f682fc58f41d03c851179eefaa6965fc9dbaf1138c1568ec0d19ebde6

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    a24ce0d1087965064003033191eedcfa

    SHA1

    b096da58a827f99b94bf5970a0efbb019e931531

    SHA256

    61ce2775b833f6740f78d8dc71e44f8cc2676d078cda6f7792c14405892a89c5

    SHA512

    017a9bb30470d084c4aec2c67e3a32e62b8881fdfccefecb8e983554353788dea404c800e141476ff5cf750144cab29ce42b709a0c26a71a6225370c7df7d8a3

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    082ffe94f9b67a2b5163acbc9f33988b

    SHA1

    20ac2f686a79c69b3dbf2c2429954ad7c3d08f59

    SHA256

    9a70d87494aae9227e349f32a5affca355dfa416c31654ceba83e1d7b8bd7576

    SHA512

    158c524a261ded14858b35074b1bd311b3457ba3b95272e941d80393bed1cedff4a23817f2b2e5702a78d3f545f1a993f5e9854aa8d04edbc428323cf46d78e9

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    f07765ddb5a5bc293e85d2bf93375850

    SHA1

    34102521fd2d80f6bf188ac02101f49ed319de0c

    SHA256

    7a9d0a13b91f47d48034b009cdd0f93a08e3be67cc242b8d80681439f1f43928

    SHA512

    75911dc2c0bd6eb88511a173c89728d5e85617760385e458d876d64b8aed22f49f955e3d67b26c01520a1ae6582f20b9ff2996b56d8507f3e56a702ab6fdf530

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    b0274b16db46ae6b868df6f78b2b690a

    SHA1

    68c8fa763c416f13b00d14426e051687216db376

    SHA256

    8edda3e9a3e89d1b77aeb184abc2890558a2d664eaf73623716e3e0cc849d109

    SHA512

    1623013c2ea20a383abc5d38fcc1c084a7d5b9c221349961b124892ccade7fa581fa64796ecdf22489f6a9204601ef9b01bf911f3f704b9d157979aaa0eb77e8

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab432A.tmp
    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar43CA.tmp
    Filesize

    171KB

    MD5

    9c0c641c06238516f27941aa1166d427

    SHA1

    64cd549fb8cf014fcd9312aa7a5b023847b6c977

    SHA256

    4276af3669a141a59388bc56a87f6614d9a9bdddf560636c264219a7eb11256f

    SHA512

    936ed0c0b0a7ff8e606b1cc4175a1f9b3699748ccbba1c3aff96203033d2e9edabf090e5148370df42fbfc4e31d7229493706ff24f19ff42ff7bef74a6baad06

    Download Submit