Overview

overview

1

Static

static

1

URLScan

urlscan

1

https://protect.docu...

windows7-x64

1

https://protect.docu...

windows10-2004-x64

1

Analysis

  • max time kernel
    138s
  • max time network
    131s
  • platform
    windows7_x64
  • resource
    win7-20231129-en
  • resource tags

    arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
  • submitted
    12/01/2024, 20:25

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    https://protect.docusign.net/report-abuse?e=AUtomjpFak9GlbPL0zFFi138T-84JY_r-UMPAci4yD0fu2t6ggagnDZchlE-S5r_NS7m5JATn7HIxJk04dDAAxMnOd_Z4xk7WwUD44hreVuBjRCphOzgkPWsleavz-3tMBFjf7H-wS3J_C8SjUJRpU4JK_-ueCYutO6tL-zmeNVsEL98tdtWMH9yruFAYkmHSkTCWopNHnaUj3eYU_XSOTUSUZNqz2MuddE_LlB6ztEP1nDnVAg7BmdeRJgutn-DCaXI23L56OT6AFZmJ7oIzpQjrrDpEmS73M6KGsKmlkL6hbrI9nDuhq_UZjLFtegTdTpI_QmgNr1DB69n2FVDaKEhl_zvR9gEP1fs5wp0IahJfRS-47NT2QxWF-eYBt_L9Y_0FYTLceZlEQYSpml-xJMISir7KNzRnPbyPv5c2GyPNxwxiA7KcnNl-uA476jjOT4LOgObYxMcLBPbYCqBcMw&lang=en

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" https://protect.docusign.net/report-abuse?e=AUtomjpFak9GlbPL0zFFi138T-84JY_r-UMPAci4yD0fu2t6ggagnDZchlE-S5r_NS7m5JATn7HIxJk04dDAAxMnOd_Z4xk7WwUD44hreVuBjRCphOzgkPWsleavz-3tMBFjf7H-wS3J_C8SjUJRpU4JK_-ueCYutO6tL-zmeNVsEL98tdtWMH9yruFAYkmHSkTCWopNHnaUj3eYU_XSOTUSUZNqz2MuddE_LlB6ztEP1nDnVAg7BmdeRJgutn-DCaXI23L56OT6AFZmJ7oIzpQjrrDpEmS73M6KGsKmlkL6hbrI9nDuhq_UZjLFtegTdTpI_QmgNr1DB69n2FVDaKEhl_zvR9gEP1fs5wp0IahJfRS-47NT2QxWF-eYBt_L9Y_0FYTLceZlEQYSpml-xJMISir7KNzRnPbyPv5c2GyPNxwxiA7KcnNl-uA476jjOT4LOgObYxMcLBPbYCqBcMw&lang=en
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2896
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2896 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2040

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\3C428B1A3E5F57D887EC4B864FAC5DCC
          Filesize

          914B

          MD5

          e4a68ac854ac5242460afd72481b2a44

          SHA1

          df3c24f9bfd666761b268073fe06d1cc8d4f82a4

          SHA256

          cb3ccbb76031e5e0138f8dd39a23f9de47ffc35e43c1144cea27d46a5ab1cb5f

          SHA512

          5622207e1ba285f172756f6019af92ac808ed63286e24dfecc1e79873fb5d140f1ceb7133f2476e89a5f75f711f9813a9fbb8fd5287f64adfdcc53b864f9bdc5

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015
          Filesize

          65KB

          MD5

          ac05d27423a85adc1622c714f2cb6184

          SHA1

          b0fe2b1abddb97837ea0195be70ab2ff14d43198

          SHA256

          c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

          SHA512

          6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\F0ACCF77CDCBFF39F6191887F6D2D357
          Filesize

          1KB

          MD5

          a266bb7dcc38a562631361bbf61dd11b

          SHA1

          3b1efd3a66ea28b16697394703a72ca340a05bd5

          SHA256

          df545bf919a2439c36983b54cdfc903dfa4f37d3996d8d84b4c31eec6f3c163e

          SHA512

          0da8ef4f8f6ed3d16d2bc8eb816b9e6e1345dfe2d91160196c47e6149a1d6aedaafadcefd66acdea7f72dcf0832770192ceac15b0c559c4ccc2c0e5581d5aefc

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\3C428B1A3E5F57D887EC4B864FAC5DCC
          Filesize

          252B

          MD5

          6b7917442bea2b1ff4be1c3bff3bca0e

          SHA1

          78da65efca06168b05b9059505e86a7e6d0e1c47

          SHA256

          a273bae4eb20a32e8c026ce1e8b2838d9236c80f95ccb3d2e509e4a4cc948577

          SHA512

          18579ddf831571ae40e7011dfb22868443d7b9144057c1e4cd53e2f75513ec271779f183d6a295686476787a2d55902099fb68eb6ec1f54797c4bd837b409fff

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          58d072dabefb29d07cb9dd1f142cfbef

          SHA1

          20e0ce5256518938430649cf3fff113e3e56cb17

          SHA256

          c1db874d24e2a21b6146226f9d9793ab39ba5e61fbd873fb23684bd4c3874dc4

          SHA512

          7de754ddb26d99aada6c02f23de0a41b52edd763218039ffedc827b158f69f11e6af231d13d94be5d0e7de48fc23d5594df3b862c2beda8e2c6a09670533cea9

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          f19a7886d3d25cc9e580d853ab4f1ad1

          SHA1

          09c769af68eda4215eee120d30a0416a7b360761

          SHA256

          fa41cf1de49ff313798248aa10f2dbfce26efe0b437ee847a1011ba33de06dca

          SHA512

          ca27b58d2d959edc6a033311d32476b16a5f1f4346fdae10250cfb7d11a7d9b8f0c4317f5754a49ca364cc6279073e34f51b2d9c0769f96345838140a7f45bf3

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          9ac6517a6d391f629800ab3dbcb128af

          SHA1

          d9799e83b9190d102e9525970dd5a2d3d5244016

          SHA256

          236dafc5af628d99d6d08b73d25d0218a8c2ce129e6670cbff65ad47d09b980d

          SHA512

          9371df4fca6130bf1abac94babc71210ffc1ca496ee756f4eb4869a944e5c1b1c00eadc4035c2323523347ded82aa284ad30bade69281bc1569414d472b0e27f

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          684369be337d48e437d5f544dbc03f61

          SHA1

          0c69d701aa1bdc1d1d0a361c802ab992023d6da9

          SHA256

          2345a459a2b10eae0232a235f8be8b014d2cfb1cf2f974d22e38cbc55596f85f

          SHA512

          5f1a04575091958fd9070d9aae3157654b07114c583c01302b10a03f12dac23daed54db12beb80c7dda1be4c97f9c89cc6bd18bb806767501574458421b44adc

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          8a1ac55f0516a5ed5c9927c70d0cf051

          SHA1

          24242a14994ebe58e3d0eca99bba102997b96333

          SHA256

          a06b3336a56216310057097f7d771a8e4cd984f419ae3adc7837ba4cc0178d0c

          SHA512

          8f7f0d858a7121bc2e6dca0c3cab1834a2c4d073b431aa49b7a0df226761757aacd00645262473902cfa6bce37afdb11b10edc9035dd0f5256a6f2a59cd35110

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          b7ac570882a4a5c2383daf33545f136c

          SHA1

          681ecfee39704670220b2cebe69649aee2b8e675

          SHA256

          3477b25d17e9caf3f0898f8a93f4cecd0e81aa2a23e022912a3c6bf0e19e52e3

          SHA512

          b439e5d9cea0c62817078e9bd874601a10535b85556bcd6fbf8286524eda3010fd5206cd334ece32e0a7e38c6a2ce0e570ff6e5143bcd5313b531bbf438456ca

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          d5e9f992aca767defcd47a96342ed36f

          SHA1

          d68fc0df4a092b96a002e20dbe34cce77febb924

          SHA256

          de735fd5f001f7fa2624fac055b9fa4bb8b571089edec6836a21c8a6e49b7e44

          SHA512

          c42effcac91bc7c29a03327e789fbdb5dd2eb60de3d5fcb43f1bcfa7d3c4775195bed5fc22ad05a46ea79d6707e3b548c333fc10cd2d6c9bb3acfedd2bee794d

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          57d834b8bbebde3aace018e7594a5d95

          SHA1

          90767127016984af1a24bee9f921e05d6a7454bd

          SHA256

          dc39945c297f00cad903065ec0c0e85d23214cbfb421ce58ad6ea1c649181fa9

          SHA512

          6fcf94c2b053e3fd708453e9b16defc19b27fc1ef3a88497e873b068e2296b84e49f0895b59c7b5eff2879a25a7bf21ea3473b6b80d543a24fe0f348de1ba633

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          564309afcd35e8a5e87093f7b8732154

          SHA1

          746182ea6dd04608be33b350ed9cff6cbc30663b

          SHA256

          95c242918b1503be5137570461cfe3f9daa7fa9f2635ad58ef9f45f66922528c

          SHA512

          4c7822029f7735726a7099a984ffc5f2fe6b29719dd17f436098b68e12ac1364de8d7423d7803139df998c5e2e0a80a5197e4b74ed1f7cbeb14c72471c7a7de4

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          3ae754a0069db4d0fb35397eb16dabf6

          SHA1

          357014a58f794411478ca2653204764cc643c0ac

          SHA256

          c0471ea36e0d4ad9c9cd30ff75dd5c5359d5c6d0636bf7e93c6935c57d0f6b41

          SHA512

          afc969d95e7a928b3b6ec26c906c92b82d42423fb868c070fffcccd33195990387d8b219f407a4ceb112267bbe0243cb1c6dd88d79baffe5a4fb8ac276b0e99b

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          c49082e1d18eaa0e40d865f15189f0fd

          SHA1

          3f30d2137b38e610e6b9c770bd4397c064804166

          SHA256

          07d71184af4feb34c768620722e10adef0c2db180fe2bbbe048ee5f88b69d193

          SHA512

          bdbf8a81f7696d690c2dce4c001aaf4d52e7d49ebbfb0814bb9f48eaed377aa7932384327dd37d77e2ba421271255413978b2c4450fcfb6ba34ebeee98868a6b

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          efa533b2e83a7ba2baa8c8bdb402c3e7

          SHA1

          62b235a66bdc40045993e6f147bb34f21412f9a1

          SHA256

          e59ab495f60c6a45f7948d1447649ccf6d8090df66b13e442a44b8ef358eb6eb

          SHA512

          3817dcde4f9267127862764eab77960a6dd90db9775cdfa8ebf0462b6a21206a9b28bb96a100098b895f66a02736fa2070040fd5058d81de53d474440b752e4a

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F0ACCF77CDCBFF39F6191887F6D2D357
          Filesize

          242B

          MD5

          07a359a84a26a1877e3c65a4958521f8

          SHA1

          ca14b2394d2dd955ad950fe81c29b1fbb4474912

          SHA256

          4bd9aceb345e498408724f8ffc65ef5fd2390bfb54adbade6cdac32eb8abc1c2

          SHA512

          284ce6074168193eb7753c15d8b0f81d77404f2fa0003c231028b65c7d031b22495b9706ccf98bf1bd1f85ab750810e2a5434e5bfb5681e8afcc14830dacb768

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\Internet Explorer\Services\search_{0633EE93-D776-472f-A0FF-E1416B8B2E3A}.ico
          Filesize

          4KB

          MD5

          da597791be3b6e732f0bc8b20e38ee62

          SHA1

          1125c45d285c360542027d7554a5c442288974de

          SHA256

          5b2c34b3c4e8dd898b664dba6c3786e2ff9869eff55d673aa48361f11325ed07

          SHA512

          d8dc8358727590a1ed74dc70356aedc0499552c2dc0cd4f7a01853dd85ceb3aead5fbdc7c75d7da36db6af2448ce5abdff64cebdca3533ecad953c061a9b338e

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\Tar28AB.tmp
          Filesize

          171KB

          MD5

          9c0c641c06238516f27941aa1166d427

          SHA1

          64cd549fb8cf014fcd9312aa7a5b023847b6c977

          SHA256

          4276af3669a141a59388bc56a87f6614d9a9bdddf560636c264219a7eb11256f

          SHA512

          936ed0c0b0a7ff8e606b1cc4175a1f9b3699748ccbba1c3aff96203033d2e9edabf090e5148370df42fbfc4e31d7229493706ff24f19ff42ff7bef74a6baad06

          Download Submit