Overview

overview

1

Static

static

1

URLScan

urlscan

https://urlshortener...

windows7-x64

1

https://urlshortener...

windows10-2004-x64

1

Analysis

  • max time kernel
    145s
  • max time network
    152s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    14-01-2024 02:29

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    https://urlshortener.teams.microsoft.com/8DC13B7CF0B74A1-3-8

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 64 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" https://urlshortener.teams.microsoft.com/8DC13B7CF0B74A1-3-8
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1060
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1060 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2296

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\3C428B1A3E5F57D887EC4B864FAC5DCC
    Filesize

    914B

    MD5

    e4a68ac854ac5242460afd72481b2a44

    SHA1

    df3c24f9bfd666761b268073fe06d1cc8d4f82a4

    SHA256

    cb3ccbb76031e5e0138f8dd39a23f9de47ffc35e43c1144cea27d46a5ab1cb5f

    SHA512

    5622207e1ba285f172756f6019af92ac808ed63286e24dfecc1e79873fb5d140f1ceb7133f2476e89a5f75f711f9813a9fbb8fd5287f64adfdcc53b864f9bdc5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\F0ACCF77CDCBFF39F6191887F6D2D357
    Filesize

    1KB

    MD5

    a266bb7dcc38a562631361bbf61dd11b

    SHA1

    3b1efd3a66ea28b16697394703a72ca340a05bd5

    SHA256

    df545bf919a2439c36983b54cdfc903dfa4f37d3996d8d84b4c31eec6f3c163e

    SHA512

    0da8ef4f8f6ed3d16d2bc8eb816b9e6e1345dfe2d91160196c47e6149a1d6aedaafadcefd66acdea7f72dcf0832770192ceac15b0c559c4ccc2c0e5581d5aefc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\3C428B1A3E5F57D887EC4B864FAC5DCC
    Filesize

    252B

    MD5

    49f9ba72093b616692f6ebfb4c59f8dd

    SHA1

    75a833d0e0b36cb361c6ca7ae462f6d87a63a81f

    SHA256

    d49768076ce7bb50b2ad3e2ff492366b1a2d013afca70daa07bfc402352fd7de

    SHA512

    c9184d3fe8c98102e702a65b8806e28a068e471fe39db234e6fd3470008939e1871ba0a6d34222ddfa48b36d1df322581a6fd7a183ae275e9143dbeb1d9e75e0

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    767432dcaa5c27839c88851198ca5f92

    SHA1

    9e41e35fd3e1703bce4b5f27d68e3f30bb849f5d

    SHA256

    c0c6e34fe660c27a736d86be57ed2bc954b25113f2107f030aefa8635b18b749

    SHA512

    ac86595a623d1fec24cd3d54fc8bf70b979155074ba4741b24ce696bea7111d0f778f811f080fd2330d5a26e991bf9bdb569747608b4dc42fc3e9c2bc730a35d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    fd6ac4d60d230c2ac183016e719145c9

    SHA1

    83a6512488c21f6056b4bb36c62106291e6bda9e

    SHA256

    d88408b61fbc4b9e1fa5bd236147c0310458798e7114dc1da515f11e6342bdd7

    SHA512

    2da9e6a653b6572f4435f188af2580cb1e7f98c909ab7a097e0ce4aa116df5b3c4348e1069390f4490f5666ccadbb981add862f99ed4f2dc3d6b196f3867671e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    0b804c00a12ead60fb4fe1976804c1a8

    SHA1

    fb56beec4d959a3565a00bc596b41b5cae752663

    SHA256

    6293a51f18ecbc663e45861576f26348fc5f2aad89a2eb46eef0d49003daaf1e

    SHA512

    7e10221e045f0b670de624418d66491b8917303f2c3412457ae8d9a09ee24d5ab9008338071902cc31ad305a81978cd1706493ad6ff5182452488494f43b6f97

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    8b20b2640e0d5be6e55c6875fd45f61b

    SHA1

    379ca7b1a240865d9c048476b28f0d40ddee563c

    SHA256

    73d0164254594fb5aee2f85ed329f82588a858faed6d606189c6f9d4f2c3387e

    SHA512

    8c2a9f13a47a347d21a37dd4ecc57b87e657d2e37c42b816e15faf4e2d1a1cfb8ca5eed544460aadb6b29127c14fd4863a8e8be60a39e06d39fc68d9cf7e39f6

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    ba45bce2ec2637a6998ced8e052cee3b

    SHA1

    2462b45ac3c2286a996588e52eceda6ff849730f

    SHA256

    1f9f20e1ddffb21f1f6f31a98a814b4bf4cad04716322dfe904e390e80590589

    SHA512

    d8093e5127e40ac950b15bb334ab79042e7354069e9e04784ddc0bfb3e68b4ff985e4a9d5de52d2c82386f2b18c6c03ac98eaa06b2a1c3ed4f56b81b5f105e0b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    03b6a3bbd2544c1171dc7ccffd836e5f

    SHA1

    e409b1add3bf88d7e5abf7eb2bdffcc71a401dda

    SHA256

    3f48a05c4135d97042b53790804b993b742921fbe037fd3d0b10c47554e0a3fd

    SHA512

    49e725f9ff60795d2562cc5ad566a98c95470489589be6d4d9fe03a1b2ea63e3233fc33f32e9c715a7a8a574f6937d48f64b86e0ff8ffce15b9ee954742807a3

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    ab04073ebb633fcc1da70a03f20ddec8

    SHA1

    eec37964326a568c4508497288135f881b80cccb

    SHA256

    4796f617262abffb72368552c640e285213281c9d94c53c1634b974262ec5ff2

    SHA512

    667505ce6d05d3f277cfa2db4e065013c89ccb794d13c3be8ca44fa6a241b5d826949a1f7b02701e4b5469dc5751f75c03d6c3209bf4f940ca42722055bae4da

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    5662833d680d7bc614499c6d853ac862

    SHA1

    7442be3fb069d3430831bd8979064c53b63d3469

    SHA256

    08f7a7f46b1e7f4f9427878ad634c93a247bf531f227a532dd7f7913611eb195

    SHA512

    cb115ee87f51d5c6b852e7f4d71d1051037e0e524bcb1e8a8a6c5e9982f47d94f7b6fb6404d26a40621bfe1d037568343d9f9d624683ec6dabfe528f1d81915b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    50d91581fe4ae2442c6d1d22a649b844

    SHA1

    94515785081cd82cd64ccb0a1a60d131c7b4c7d3

    SHA256

    997fc3b282e763f50d6d841d0a8ad257a1f7bff4bfb0e61873a949c34b9a97f0

    SHA512

    a4658e44059f53871f1c687afc02e557e22e24747a35dcfc4c45d2b5828c233d2d236d163b74d1a5abc5d3c2f9623e6b3eb97971f930f7fc6335ac9a32d750bd

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    c865970990761fb42254bcdbc9189b94

    SHA1

    84a90bf93e2fec66eef636c476872ee8e8553d84

    SHA256

    3e6e1aa5d66a3a3a1d5d149d0d7eacecf667db04744c1abd91e7be936f6effd8

    SHA512

    a858bcadb63576ac8e1d08667a18248ee2771030689022be1b819490ca4ccf432989fab9fac2813edb9c17fb3fe368559677074410ffc9906fe7f1249b9a9c3b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\A16C6C16D94F76E0808C087DFC657D99_FF001B1B6EE28E808119C7534C41D35F
    Filesize

    406B

    MD5

    8c0ec31102fc25dd8ddc672f808b6792

    SHA1

    07c1e780c25bf7b37647f002c031828e5c7058d2

    SHA256

    7bb3af46f8f2dd6c85ce04bb28321811d9093e1c9c05092e5465deba850333bd

    SHA512

    f4b92fb00a19f8085ee1e1bca899b8989629946732821b4e1e87b5f6b0ad25a95bace25023293f04af53419fc75451aea66635444325953907aabaa864adf97d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F0ACCF77CDCBFF39F6191887F6D2D357
    Filesize

    242B

    MD5

    e8dff8a3412f84a1adfae3b9e1eeee9f

    SHA1

    83754a8451d5207b142862e89fc45da37ff89181

    SHA256

    a21d1777200389d36260367feac7940c048e46d0f886894bb9bc88e4127b59a6

    SHA512

    2ab532bf71dc229a5bf296bc5f876bd88d24cc344df34669cdebdcb100d53ed2ede65c4b669c39dab1d7c9b8cefad6bb8e2dbbbdc1223b2e296d16c7640e225d

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\G7KZHS5N\play.google[1].xml
    Filesize

    13B

    MD5

    c1ddea3ef6bbef3e7060a1a9ad89e4c5

    SHA1

    35e3224fcbd3e1af306f2b6a2c6bbea9b0867966

    SHA256

    b71e4d17274636b97179ba2d97c742735b6510eb54f22893d3a2daff2ceb28db

    SHA512

    6be8cec7c862afae5b37aa32dc5bb45912881a3276606da41bf808a4ef92c318b355e616bf45a257b995520d72b7c08752c0be445dceade5cf79f73480910fed

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\PDXSMT2B\www.google[1].xml
    Filesize

    99B

    MD5

    cca88e5c83375eef51654fb88d785fbc

    SHA1

    c7bfd5dd04e759cd6719467635ed6a95fc58947c

    SHA256

    fb4aa0e077fd9759fa8e8c87e6d45043ef0329b5f59aae5045de0a6a288143c9

    SHA512

    68bb0d0b2a3e4fd80d53183ea96231f2da649ae88b131470e78f334b5d7731060bc20da44ca2ddb4aa3bbae3b2445e82342b8e54ca28615c68a4835e4c9fef12

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\PDXSMT2B\www.google[1].xml
    Filesize

    679B

    MD5

    41c75079bf191f12de8c8d822d156b62

    SHA1

    1f077974ac0d2876a79c2e73f4d2ba7ace6f409c

    SHA256

    457dde67679afc31493281df403de16b60fbccb95e56937e28d2c7a301b716c7

    SHA512

    a30595599ada8a8edb323d2219fa9b62ee36020f66e52b285e90e91ffa65add932665065a58e5bd10292469667b711a62ce165ba29d3c62a2eb62adb6e516d33

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\PDXSMT2B\www.google[1].xml
    Filesize

    238B

    MD5

    6d0212506ca5183cda237a9df54d6859

    SHA1

    ac888af651e84267bffc113927fbf8f4f5c0c063

    SHA256

    dd0a8a75e8b10b0cbc425790dca52f343cc0cf64096e81e1cf0c15f9f29068c3

    SHA512

    43fdd7754c6671d75d86c507795459bbdd10e86012cc6ed2928712eee798cbe0648a487b95513b98ec9d8fd6c1a87aea30abcd3c27626a465f251f9dbea22ad2

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\imagestore\2tj7qpw\imagestore.dat
    Filesize

    4KB

    MD5

    b419d363a0ed94595b4107d4953e0c31

    SHA1

    a56d5c281e7c97c42bd0ef830678a694f16a860c

    SHA256

    4f9f9e80249ba0cde4d3777257ffa996c96f408498f19a937e29639616b8a6be

    SHA512

    36fc0ff7b2a6dfc75da863661df7686cd9ecdb5b4d692a59fe33cbc14753aa00bb14b9f09534b7f60e1a15738046d1cee3ad611862bc95573a5a09c89b9c993e

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\D0I6KXNQ\favicon_v3[1].ico
    Filesize

    4KB

    MD5

    a217f758efdfff14053678dbe58fa4d0

    SHA1

    6e0eb512c2f386d645712d7ecbe339ea85cfca68

    SHA256

    f343b3015d0545a7d5b719a434135bcae2ac766ed459aeea671e3688b79d1875

    SHA512

    9bcf90fed875ffaf3170ef3425949642eb23b4e750cd42ba546d30e1a58c4fee1a14ccdbd31455a6a442d09372ccb3873bd7477a59853608bc87660fb578119f

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\LAJVCBJI\recaptcha__en[1].js
    Filesize

    502KB

    MD5

    37c6af40dd48a63fcc1be84eaaf44f05

    SHA1

    1d708ace806d9e78a21f2a5f89424372e249f718

    SHA256

    daf20b4dbc2ee9cc700e99c7be570105ecaf649d9c044adb62a2098cf4662d24

    SHA512

    a159bf35fc7f6efdbe911b2f24019dca5907db8cf9ba516bf18e3a228009055bcd9b26a3486823d56eacc391a3e0cc4ae917607bd95a3ad2f02676430de03e07

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab475D.tmp
    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar4C22.tmp
    Filesize

    171KB

    MD5

    9c0c641c06238516f27941aa1166d427

    SHA1

    64cd549fb8cf014fcd9312aa7a5b023847b6c977

    SHA256

    4276af3669a141a59388bc56a87f6614d9a9bdddf560636c264219a7eb11256f

    SHA512

    936ed0c0b0a7ff8e606b1cc4175a1f9b3699748ccbba1c3aff96203033d2e9edabf090e5148370df42fbfc4e31d7229493706ff24f19ff42ff7bef74a6baad06

    Download Submit