Overview

overview

1

Static

static

1

URLScan

urlscan

1

https://www.windrive...

windows7-x64

1

https://www.windrive...

windows10-2004-x64

1

Analysis

  • max time kernel
    122s
  • max time network
    127s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    18/01/2024, 21:29

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    https://www.windriver.com/products/linux?gad_source=1&gclid=EAIaIQobChMIwLyO7_DngwMVDmVHAR0yFwiTEAAYASAAEgKeqPD_BwE&utm_source=google&utm_medium=sem&utm_campaign=vp-dg-amer-vhs-sem-linux-phrase-nonbrand-10012021

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 34 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" https://www.windriver.com/products/linux?gad_source=1&gclid=EAIaIQobChMIwLyO7_DngwMVDmVHAR0yFwiTEAAYASAAEgKeqPD_BwE&utm_source=google&utm_medium=sem&utm_campaign=vp-dg-amer-vhs-sem-linux-phrase-nonbrand-10012021
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1248
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1248 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2372

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    7e5fa497c5f19d17a9fbbe348533f31f

    SHA1

    4fb23257fce9456653995211889ccdffddcd38bd

    SHA256

    42992ef0eda8c8ace81c3270f9895cddd3de6facc959c81577a5bfb98777d945

    SHA512

    d0fa7ae21644c10fa88b63b9f5480546b8eccc7fbf2a8fae0c0b12a5dd8cbcda613db0a0061667e3280c2ae78337bb370ceb89172f5f67cef5e1824c730aba37

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    2b54f351da07d7127d937af1bfc35d6e

    SHA1

    349f041b45571fc5750a8f34feeb6ebff2323782

    SHA256

    a53b7b8c56edd95f37eeb709348fd5376ae00fed021248665de6cc6f45f208f0

    SHA512

    7be1d4ae31f90b337f25dfd0c9b43da917eb2987e3e1b4cb83ca51878518e0bc77a6a134b19b0efdb1e5bf6d5d18e1d0f9275760969ec5148fdb59865fb0d3b6

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    f53cf3baf9f5cddec4f6d1b40a877209

    SHA1

    70fba89afd16353ea69422a9585d9d02c2047865

    SHA256

    155ab615456cb4927db6d3097180bf7c0de6dbf9f6e91ffb9f78b19b6c7cc52b

    SHA512

    0a12888645cf0e6d32c18dc3b7e6aa2aada4c8a757bed2ec6701582a58e7f2a8efa640459b2c2e5734d6595e6d18bf789eb64283f71e8fbf8bdbd5aa4da76b96

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    8e4106d6c3f4ae8cea6023e4f8c247e3

    SHA1

    3e9536b004c6f07c32e2d0e92b1d291992cab88b

    SHA256

    1764f44787be0e63be702eaf53469d2b91ea9afdc2acee3e625ec0ead7f34e9e

    SHA512

    983ec7842b0a0114029c1fd0f212bfde904cdf265413b740f960bbbb7c8c29834584515fa3bf911925ae8342a35ebd0c86f16623008277bc0b13e1f1b6a96eed

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    7a1513df2e81fe5a05459855582a5487

    SHA1

    3d0a0dc049a59b50985a2a2e83a2ee930a9a3d82

    SHA256

    f8319f01b28f92b070a918469e6a1c6bada1e177c7829cd0e4a32407953c76af

    SHA512

    aee658385d5125e089371fccc1a4b16170d097aec2ce34e6aad6155b2cfd946428b5e1ff31704c03623ae8faeb1cb022357106e39d6f50dab0351582e7c50434

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    7c550c9d1f829b9728c11ad3572c1fe9

    SHA1

    a81288d25ddb0d47b039ff7f8ca108aa42fa6a94

    SHA256

    a4db3392d6b1aa87ad442d0fa415b39957a79969123caa4974f6a4a2ae672ef4

    SHA512

    2ffe3d1c568ebc18ab3b6ab531d5b9c444f13bfef1f42f1eeea8c1c96240e465a2812149dcaab9a04ead0d6f8dcf20065ccadaac6904007262b86aae16ccb2ba

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    90b92d1347033b4945bea20af4b82870

    SHA1

    e7fc8bda4c98566147f4e8786fb651c96f2e7b79

    SHA256

    0fab90e5364603cd094ce76b86e6d0f06dda203982050037d6468b8bb64eeca3

    SHA512

    04703a880bc7087359d62c07ccd568ea602223d1f1cac1b52ff2fab2048a3651a89195ecf8399309ae1fac16f8e003fb1c129dae6a453f6024be30c8521904c7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    ad729465303d1a1874c2eeee01a9124d

    SHA1

    b6149f2e68733b89214a956d1240a1b718b8907c

    SHA256

    7b9b3f752c319b11b474babff9de6bdd0f75bd2fcbe43e0744e1a4c59064cf79

    SHA512

    52ce51459bf06a23d4199aa8eac485152b4d984e58a79f0e6317be1110b2365f1a534b4ed3c7e4ebc193e33ac84d362e8776989bb30779cc190eab7bb05a3943

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    82654a45c62c24b3e82cce5dcd70e159

    SHA1

    5e92a2d576116388742819896e462779f7b7a96b

    SHA256

    1c515b7378c5347debc1ce686047984eb9d5aa1f20fa626d4bba65fe3789a734

    SHA512

    afc3ec299699d5d0c8fd19bd41bcb3145cbccaafb3573b965c8487f2a623bafa1d02cd949800e9bf7058483374383dd43517089c9712f347f0cef1c18f8764a1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    4a6baac2820dc155da177816d20df118

    SHA1

    b09d1c60181c98700338442c9633027e4de2c9cc

    SHA256

    0427e78f741d3cc193e3e5057a930b2f3b5523a1f823e50dc0cfe0f68fdfd4b0

    SHA512

    91f99a5d6e96819162aaff26d77ea2170dc0e8d4b4ee49d915a61b9777097713a320ca51a3cb449254b58213e34f11768de8fe6ebae7a90e3212742a798e4f94

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    ad05e0e34c910ce52969fec95f4cc851

    SHA1

    6cea5bc0ea81a8018dc7ac0fe390cb1fb8c646ed

    SHA256

    4c35f404c1cef25ac118096d834ddc8126f7ecc14b5e77b826191beebf3b4655

    SHA512

    02cef81d6117d19c4b817177043df6155a24bf8acd21e13461d5ee59d154f217c995afadcaa40781084d72f7fee67859e8707d042581fe39923e31b3d70c27e9

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    a16094cd4312e3ca37ce29a607fbb919

    SHA1

    32d39f3206f00c5181f495cdbde0293c88daa7c3

    SHA256

    2a53ec3550adbf30e75493ed2344644982a54f88558ebc3dce03a481ea889b23

    SHA512

    7884238711c7d67acb201cd167e8f3f40eb2f3489b199543cb6b673de034da11b354f6fb8929e97ef07b962bd32e783892e0198836166660553ad5a7b6f352fc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    158831d5698a270863943eab454039d2

    SHA1

    0d74c8334111ab3121fcb6c7425773abca120f8b

    SHA256

    fd41711a9b08636196eb3fbc96a40a96a614d1422c99c28520d87e76f7663a9e

    SHA512

    445e65a758c5de8cbdf2100771ae05c497092a0562eafb37126825a4a2dc72a9537675d22c039052c916cab36ff216d4f476c717750c1e5097d36e481553f176

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    5a9bd1327ea09aa0a6fceba1279a4008

    SHA1

    5eabc709d1554e6b78646195b3b1558d577944a1

    SHA256

    37a8611315473f63d171bf844dece4611b7ad8ab75ea5890b6c218056bbfd441

    SHA512

    73f404f910806b839dd8fea5b1fb44a2a141d296102e0fd5ea7de35c0f4ae37a8bb0db86f8617c38779eaa2f2488853d398a503cda43b07df42dea64614ee972

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    fc6157258952bcd22515572fadc319f4

    SHA1

    2cf9e0b4888fda38d72327a70b54ce8d1d433c8e

    SHA256

    63136dcb38e0528aabc505ccf97d8a6c2586a8af5bde5c8989a20b579721c488

    SHA512

    d02675f19d20bcbb32e3dd743af7eb934db3258ffe0ba8ab00b9b5aa7f6751e1f42f46c30f3065c7d2bf136c5e2615609fc9f29683fb04fe44d2d7981fb87e5c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    79215ab90dd4a7b57c015cf2bc6e5c8d

    SHA1

    a62cc19271d3d023ed4576af912b3a78eef382ff

    SHA256

    17db8f2429af94bcb3b18af79509bd2511575661ed27cb41fc88f0a2f0f889f3

    SHA512

    e02606a3df6d748b12191c393e27c6486a7d424fa327960239fd19ab018cd37eab7d7c635795f40a366cacaae3646005557a6286233103eeff8e042ed9e6bd71

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    36e59ea4ed5fad25b56cd86298f197c9

    SHA1

    7011ab14061316f36f30222e86dff0beaf8f8f57

    SHA256

    551effc3f84f7e61edcc7d52e9eef308164792f63de49e7da22dd111fbb6762e

    SHA512

    2600b5e6387b0171724dfa880b59c3abce96210180b6b41a38680339a24a3a3b75bef730df838d7ec647c6ca40d6a1e6ce8047755475fb5ee2b064f023b3014e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    86c8010b9e485c66cf29461ab9150095

    SHA1

    349eb6b09af5eaab51aabdd79a914c2998e03528

    SHA256

    e2fc43df5c5d3c3c4504b325865ad953a8455978e7621af772f03b7baa16ba1a

    SHA512

    e3913a75afa27318c1f310ac6ff83cfde11762eb82c5cb29ec7c3ff4048d5c3d86b83153c871dc328aeffe41867ebe2c68ed31a65eec846b813f9930f606eccd

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    8f6b548bb10606f60cde7121d7e0867b

    SHA1

    adda2e117a00bcd3323fc4a0891a698f94aa90b3

    SHA256

    f3f876fa4ed01f659d88d452399ac6ab68e58d89139c5dada53cd04d03f93c6b

    SHA512

    652c794347b8f8b37c67c6ef6faf1d6c64d42c8fe99937e49b5b551099773567b4a25bd36f076b4377094dd8ae9571fe03ede7dc61eeb43c24556c9e33b83675

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab338F.tmp
    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar3421.tmp
    Filesize

    171KB

    MD5

    9c0c641c06238516f27941aa1166d427

    SHA1

    64cd549fb8cf014fcd9312aa7a5b023847b6c977

    SHA256

    4276af3669a141a59388bc56a87f6614d9a9bdddf560636c264219a7eb11256f

    SHA512

    936ed0c0b0a7ff8e606b1cc4175a1f9b3699748ccbba1c3aff96203033d2e9edabf090e5148370df42fbfc4e31d7229493706ff24f19ff42ff7bef74a6baad06

    Download Submit