Overview

overview

8

Static

static

1

URLScan

urlscan

1

https://app.e-mudhra...

windows7-x64

1

https://app.e-mudhra...

windows10-2004-x64

8

Resubmissions

09/01/2024, 12:48

240109-p15lfaaghm 8

09/01/2024, 12:40

240109-pwd8pacah4 1

Analysis

  • max time kernel
    118s
  • max time network
    141s
  • platform
    windows7_x64
  • resource
    win7-20231129-en
  • resource tags

    arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
  • submitted
    09/01/2024, 12:48

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    https://app.e-mudhra.com/RedirectApp?redirectParam=windows

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" https://app.e-mudhra.com/RedirectApp?redirectParam=windows
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2348
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2348 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2836

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\3C428B1A3E5F57D887EC4B864FAC5DCC
    Filesize

    914B

    MD5

    e4a68ac854ac5242460afd72481b2a44

    SHA1

    df3c24f9bfd666761b268073fe06d1cc8d4f82a4

    SHA256

    cb3ccbb76031e5e0138f8dd39a23f9de47ffc35e43c1144cea27d46a5ab1cb5f

    SHA512

    5622207e1ba285f172756f6019af92ac808ed63286e24dfecc1e79873fb5d140f1ceb7133f2476e89a5f75f711f9813a9fbb8fd5287f64adfdcc53b864f9bdc5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015
    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\F0ACCF77CDCBFF39F6191887F6D2D357
    Filesize

    1KB

    MD5

    a266bb7dcc38a562631361bbf61dd11b

    SHA1

    3b1efd3a66ea28b16697394703a72ca340a05bd5

    SHA256

    df545bf919a2439c36983b54cdfc903dfa4f37d3996d8d84b4c31eec6f3c163e

    SHA512

    0da8ef4f8f6ed3d16d2bc8eb816b9e6e1345dfe2d91160196c47e6149a1d6aedaafadcefd66acdea7f72dcf0832770192ceac15b0c559c4ccc2c0e5581d5aefc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\3C428B1A3E5F57D887EC4B864FAC5DCC
    Filesize

    252B

    MD5

    34583e9cb18779b8ecbf7f913b54d978

    SHA1

    ac67b83a8aaba5c0576713c275df7ab4dd1802ce

    SHA256

    e884fe4f9fe1ed6baa0a8221581653fe2257e03170315609476e5bc62fe2a9de

    SHA512

    5f8b7a272b9542c4f4eb60f88c978f27ccedaff7cb8b86d6b8ad10ec4c2a1eedbd5b6bbe95e18d6060642c684c36f8260f614aa4b8920341bcba42e16c05d4f2

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    b8360cfa5b47a89ba6daa06343d98c45

    SHA1

    9d817dba535053c69c37f465ce19c28fbe5b87c5

    SHA256

    7e01adc68cc417d6dd7c5e9d645e4c225d5fc11c1bf5659a811bd8839bc67f79

    SHA512

    5067f44135cee8d646f675bcfe9ba77f4b6775b968798c4cca2192c94d263fc0c44701b2b0bcec5a69cfbd9253a4fe635f0b5c43e34703b4ea0ba3520c292ea7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    cf2b94409f63571ae75dd4e4358f7bed

    SHA1

    4d3a5e1accf423595781cbebaaa0e622ebfc87c5

    SHA256

    53d7733c840dbdf607b14698eb9f83e8c769a95e354047ce2b99631e06a56920

    SHA512

    93409bcfb8c6a7ea04932f13ec69e354a058339c37c26e839f22e770d403bacd09ea218a4b3f98cb015c790b51b236809a8d8c5562200fbe8fc541c7c66cf0cc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    e6f4775f47c012699cb36d51e613e68f

    SHA1

    3471ee6a4e9e7b2f0a1fe378ac39853642cba593

    SHA256

    d37808742828a3ef7c47ce70f57f129ae4ba55f9f7796bd59c388a368bdd2e7e

    SHA512

    b1ffaa4ad485352d59b2fb421a86c2283b99e6a9734f4fbf91af7db4c8d0352ae2525b84394c26baa9c63beb7aec53a26f699bd5024e703074bbbf80e25eb114

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    dcb6c2cca283d437179951416fcc7ac1

    SHA1

    abe861575d20be2605858479d37a1e9ea1268851

    SHA256

    b626ce3b94f2cb9200c38d4a7052f43537be404f72fbabdb033f382a308add2a

    SHA512

    53c13f8e8812b604dfe8281917397c75e9edb023df2f59b3117412ad755c4f83113d845c8f7be5b350b72e2cf6cd66513912a2c5bea3c75e3b125a32d3ddcfd4

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    727b0eff4fa8e6aac1335212935c4d53

    SHA1

    730347de9c84c06bbb3aacefcff6ca783e838652

    SHA256

    8989dffe05dac085c5515554abcf3e28136d0f8145ce26e287c4d52654698524

    SHA512

    4914e89b4ff87d34e0c343de2b156e4da1c526aea724ba7ec47126065db197f0b90813599cc7e4210e424682e6b7eb7eff63172f11164386afbe0cae29de75f1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    3f95e8a949b0ed9adacac557cd2572a1

    SHA1

    205d5432d223d122a3ce7e5691fe2483f575dda7

    SHA256

    7322d15edd6e6e5862cfc86543e43d56688a29eb32cbc3d776d2a48e9b209fe7

    SHA512

    92187438e241c3c37d8a9fb5b72faf2ac9587ac5a929dd4522d215a4e9222309523e920a275e5e1faf6297561ce3fb6f0e6862306d7e7bca634ffd1acc81519f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    8c1a3de75f7f7f713a7d58781ac1e96d

    SHA1

    cce7a75aee69b7ac457e01fc2ef9c0b93c646d15

    SHA256

    47cd5011261457120dac3309a26e46361dfb71f3f9dd091c7027a1c68104b951

    SHA512

    cc8626d4408912a97e41d868b79139e0894c484025a4ba1adfcec35b5fee0cd69ae12a13305ef916b751ee6792c45824f6dd292132b78662760adb8d7f6a1cd6

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    058c8a28fffa2a759170bc700697b2bd

    SHA1

    bc1895bea4ab69ea9b82330eeb947077a13e8eb2

    SHA256

    3a27af403fd54669ab8a847fc0f0231a9ffe32fe17256de08158e7f6e41a948d

    SHA512

    c5ccb0e8b0b0733d90be28f90ba63b452012a05315ad8970028dc96053cc8a232f63b70da94ecec5657aca3032c16f67595d15f6ec190f58a4f60f2648579675

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    53bee72896264734dd0c3a0ff6a5c493

    SHA1

    cd1a4f994a818bbcb2f6d49c59ac9f9fdf8b1bef

    SHA256

    be3b9c03d305a26e69eb2659ab44847f0406fbb7bfb63119059b992fed7b9e63

    SHA512

    5eed3ab5a201dc036567b075d151741b886d4f59ad2921d62af6bc4d0f8580da6a439ff0ed94bc985d1ddbe5f64b05e46628122ab43414ebc0fdc19fa87c934b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    fa0b0838182d8eace2f80864fe67da36

    SHA1

    45224506be6a41b6935352bd94ab755480ca5a3c

    SHA256

    645dbb2a313b24529d03fdd20e3e2b1ab72e024164853d133d3640d340db4d4b

    SHA512

    9f847863e5791a77a5b250d08e1fd99ecf2b0d13757f21079616fa5cf8d925b77c1a274fae4443a39bce2038e4a3d27631695ae717549d43a6f2cb4fa62326dd

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    251d10f00168dc1adb764e5b1132e1b0

    SHA1

    04c6f809a3782ed0e2cae5a8396c55c15676b5bf

    SHA256

    aea7e7c2605a84acc294a67c0c994d79dcd4b5f7802ce8390c86fcd6e9704066

    SHA512

    1902cc20f47cb0ae8276820d860acda3a9fa41e04743c7e54d0048ffc392c9b59688cefd3a70258b8c9832a71023f029735263597c9b60f67c1d36addcdfdbcb

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    2f8efea08b8b761e1296d2901ba3b62b

    SHA1

    18088e81feb93efc528cb52bde190ccc7b2824e0

    SHA256

    9cb77c8aa67177bfa33d51d8b2aff5194cfb144d040c920d776235812314cc98

    SHA512

    0e2fcfc0e8ef9b4304eaba008dc42afacca862117a40dd193651bb09a6a6c4a2a1c5e9e5f9cd5dcb988ae04c07894295eeeb673dd0ec8b7e3fc6578feaa0da56

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    ab41a093b42d685b363a6bc25e6c03cf

    SHA1

    838b4831f40dd9019b835188ec66ddaa5f1aee27

    SHA256

    1532b314f8665a2802f746d0aaeabfb4030d51e098b1ff30a7260c6af667a477

    SHA512

    b58f01a3e0810713803b5754cbecc4acc1d99845b049ec7d3c566e7f524a0f9dbda8d383c8fa71b6947cfd99b536456d3525c0dd9fbf0c22ce4dd7a3ba73b2d0

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F0ACCF77CDCBFF39F6191887F6D2D357
    Filesize

    242B

    MD5

    1042a8f4278017331ad5289ec036331c

    SHA1

    bf001ad5587b191dcfd264a48d32227f8f4f3e7a

    SHA256

    504c73b8ea9cf11da52759a90c02dac640f4c21b8144b6094448a9f846d20e9a

    SHA512

    5144336bf5819c2b71a4c9ea425ee10b0ef0aa712645f2c42d4358fb54df8adf2852442eaa435b597d892c789902166da473789df57de85549d01e2444de1fd1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\Internet Explorer\Services\search_{0633EE93-D776-472f-A0FF-E1416B8B2E3A}.ico
    Filesize

    4KB

    MD5

    da597791be3b6e732f0bc8b20e38ee62

    SHA1

    1125c45d285c360542027d7554a5c442288974de

    SHA256

    5b2c34b3c4e8dd898b664dba6c3786e2ff9869eff55d673aa48361f11325ed07

    SHA512

    d8dc8358727590a1ed74dc70356aedc0499552c2dc0cd4f7a01853dd85ceb3aead5fbdc7c75d7da36db6af2448ce5abdff64cebdca3533ecad953c061a9b338e

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar1827.tmp
    Filesize

    171KB

    MD5

    9c0c641c06238516f27941aa1166d427

    SHA1

    64cd549fb8cf014fcd9312aa7a5b023847b6c977

    SHA256

    4276af3669a141a59388bc56a87f6614d9a9bdddf560636c264219a7eb11256f

    SHA512

    936ed0c0b0a7ff8e606b1cc4175a1f9b3699748ccbba1c3aff96203033d2e9edabf090e5148370df42fbfc4e31d7229493706ff24f19ff42ff7bef74a6baad06

    Download Submit