Overview

overview

1

Static

static

1

URLScan

urlscan

https://go.plusgrade...

windows7-x64

1

https://go.plusgrade...

windows10-2004-x64

1

Analysis

  • max time kernel
    120s
  • max time network
    128s
  • platform
    windows7_x64
  • resource
    win7-20231129-en
  • resource tags

    arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
  • submitted
    18/01/2024, 07:33

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    https://go.plusgrade.com/ss/c/6w4rgQHT8JB7aavSXkc3pTkgVdVUlSjBbVS0xLQNUQ_dquCkcKdTEIy9k6u9apVPfrQsx1-uFcP-h1IRMwF82DC77Lkd4vZlc5dGnFuYlTR-Gq_dUtnUGAIDLQDJXT74JxPT4Q3qm-yuRAvAGEtyp26igynni0PCI7LHG1j-O9SiCMAeX2vtmZqrDI2bIpZa/42t/VHW77HgWTJG2q61I4oXhrQ/h8/cbbp-flfz_zqf8GshEiQKKrNoiXLyVF77inPPSP2Jv4

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" https://go.plusgrade.com/ss/c/6w4rgQHT8JB7aavSXkc3pTkgVdVUlSjBbVS0xLQNUQ_dquCkcKdTEIy9k6u9apVPfrQsx1-uFcP-h1IRMwF82DC77Lkd4vZlc5dGnFuYlTR-Gq_dUtnUGAIDLQDJXT74JxPT4Q3qm-yuRAvAGEtyp26igynni0PCI7LHG1j-O9SiCMAeX2vtmZqrDI2bIpZa/42t/VHW77HgWTJG2q61I4oXhrQ/h8/cbbp-flfz_zqf8GshEiQKKrNoiXLyVF77inPPSP2Jv4
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:952
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:952 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:3016

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\3C428B1A3E5F57D887EC4B864FAC5DCC
          Filesize

          914B

          MD5

          e4a68ac854ac5242460afd72481b2a44

          SHA1

          df3c24f9bfd666761b268073fe06d1cc8d4f82a4

          SHA256

          cb3ccbb76031e5e0138f8dd39a23f9de47ffc35e43c1144cea27d46a5ab1cb5f

          SHA512

          5622207e1ba285f172756f6019af92ac808ed63286e24dfecc1e79873fb5d140f1ceb7133f2476e89a5f75f711f9813a9fbb8fd5287f64adfdcc53b864f9bdc5

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\F0ACCF77CDCBFF39F6191887F6D2D357
          Filesize

          1KB

          MD5

          a266bb7dcc38a562631361bbf61dd11b

          SHA1

          3b1efd3a66ea28b16697394703a72ca340a05bd5

          SHA256

          df545bf919a2439c36983b54cdfc903dfa4f37d3996d8d84b4c31eec6f3c163e

          SHA512

          0da8ef4f8f6ed3d16d2bc8eb816b9e6e1345dfe2d91160196c47e6149a1d6aedaafadcefd66acdea7f72dcf0832770192ceac15b0c559c4ccc2c0e5581d5aefc

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\3C428B1A3E5F57D887EC4B864FAC5DCC
          Filesize

          252B

          MD5

          0d6b62d58d3f64ca9db88d8b7bfc4109

          SHA1

          f2980526d25518b6b9b0ba624898082b15b814cc

          SHA256

          f483c17d5c1c6ed16a4ef47d11a4a40c2654745d73b707652e2a59be8b9c936d

          SHA512

          dadd6b66aafcaeee5d2f022019bca480f521be4b294b0968e43656dfc4b4fd2232f0fd3b793230d86098ad363c2b69273f004f9eb2ffa108bd8e6f0936f3d18f

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          6551444382228ada7062d23c091a020d

          SHA1

          c211a57f9dc95c9e4ab7566677053798726d8518

          SHA256

          7fe63c500e0c3d2b0fefe7934d35b76cf7f6a82b3778442c1a77fddf5e317c18

          SHA512

          fdb0ef15e2323306a653b07284a8b1a70ddfd5d42dbdbd45c15400a8599c70a3b31df3d0ac5cc236a965f6b23269ecc8d929cd2bfea8be6e45c40eca0ee52a7d

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          494f9751f83a2a3167d973ade6ec83f9

          SHA1

          c9bc36e699e93a31ea0563e3caa375aa35752c71

          SHA256

          61ab7a6b132bf88e2513aa857bdcf770d9f7ccdc37b529ad57dbaf518ecf97c3

          SHA512

          8c131ed58acaf5b9ca3effeda1a9db2ef0dc7c47e35ace0c3edd0be2e520911c16704105ed75bde408dc7ca66f4132c1b125c6b9266756c46fc34d87b04939f8

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          7b9faefc914c7b4f07fb258107ec0f94

          SHA1

          996180b003ace8f7d0af6c0d9fffa0c0271c74b7

          SHA256

          b5ecdc5b18e6382e527e0c68f2f0de12e6d887e48e79e59a39be42632918d654

          SHA512

          98da2f80447fe93d8696bffaadf68831cfd892cddfc516c5bc6bd97e3199f789cc7d43bef555590a398998bd6bb87c562e3b0eb74546c3c37440f0ff0beaa5bf

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          7917a5a7c49e7fc43761e70fe3f6de7a

          SHA1

          144e415d7779cd46a7a9df32788dcac522423c36

          SHA256

          f4561e9ef7d21fefa5e902b0051b7b90c4dec9b729e04fb2b8e8b57dec66faa7

          SHA512

          f7bff2952a7bde90c0cf530c9c53a9b7fc82462476aa339de5616d7dcf9d7f2cf83c704a8834d320a0c09e7b51e171b72e2310ce5a8ef716fc6d1b9d1e332d50

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          f6862223257fc3bf5f9c51123c9c2089

          SHA1

          82a8a5e7bfc064225102a7cd32c9212a114e598f

          SHA256

          29662eea0784de93f9e3a68700f986c37f2f8874b1c92e044e5e03f299b881d8

          SHA512

          05899b8c9399509b8c95ef64e53486ec538b645a0fbf99c1e69e57a6a728bd18ea362d18e76d50c32b7254e81ddb0b4409324e08ef8f6a2381e538d5899c5a8a

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          9bb8fd9d38f1dc5c390e155f55b7ed30

          SHA1

          3e15a70106d514f14b746ed4b392f6a1a86a85ba

          SHA256

          5a8cff1936539e10385992882832e13e92cd1ba29b94dc9e6794476a524a11f8

          SHA512

          c79df5d5be6b0e249148e78407e41e35ad413ceea35a3b543664afa46dabae445fe28c1534b6bab4b7ed6eea5dfdf932c946eaba9f56eda757c043fdea855c9d

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          720fa0d3602ce534abf8c826792a68f2

          SHA1

          554269c00ede9bfa8f17d12c5a3bf70fe9a08060

          SHA256

          983aa0f1d406dde99ef8f52f0388002d42b387aaa92701edbdde9c9acedd94f9

          SHA512

          21863645f74112c4a2d7ba5e138da3d6a6f2b17dcf89f43f5d1a4a39069089618704c3ab43a4257e118aff010c5b6589360a99a13015c2b09183d325e315598c

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          3f8c211db2bc4ff12de8ca3b12a799d5

          SHA1

          ab5018d1eb778ac5179d57ac7ac124555574f91f

          SHA256

          79412bd0a388a8fd63e9479a5f41ad44487696c91292bf77eb488ed1edf8a3fb

          SHA512

          8d82e579283456e8888c2e88377d16430cb694ce9245e41d588090fd2e4b4f09a6dd2bac4f4900f548dde9e2d119385281643ae931a71029b8b4f3d6740234c6

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          cad6742e2cf166d3153135b06cc07747

          SHA1

          71b65f90b8e9b038f7efe7b81f1e3072de9b786f

          SHA256

          a0d350f6d90ae1b0708c0f39f101af0482bc01c3a962448e53a1905ffb6f7795

          SHA512

          85b71cefc0deb28ce7243cb08ab74a90b2fae0aea5c7f3d5c561c13c9941a38c293fb332af2909f6110ce08d0b9a747fa45517ac91c3371a3745d0db823bfe62

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          5df772b03e03c9a1070735f1b883227e

          SHA1

          83e24b06aae00b15c69d5339aa69de0c3cc0db6f

          SHA256

          0ea255c5b51e4aece79890df95da04cdf85cae5dab74c0c60841fd29f279d783

          SHA512

          12ea572c803fa5d0994b03d3d3513cf0f55df76ed567985f096fc1361df652fbc38b895a8390be69212a115dc8df63826badf0c8dd6883790e219af03fb6ddad

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          64ef087f31bc5c22063ffc4dc8d875ef

          SHA1

          27f58d02be9edfc7a2036fa351b1d45a7dda5169

          SHA256

          69980af1718bcfb3d03effe61ed7106ef3d1d9fb01de376fc403a50262d9508e

          SHA512

          f271b37ef138d95c26b0f38d2a6e1df55aab58667bb36d559a6f2d1d43551ba15feeaa6910209fbe6a92cf34d52c126608befe94b704a2535b00effee083dd6c

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          48e58fec4d4179c1904361101613935f

          SHA1

          875d2eafb8a3fc1b3cb5e5afb02542296421b760

          SHA256

          646c2272d4038006f56f95c915b1d444975b6027d6abfa49805e4e0c7665a865

          SHA512

          981c3453fe61fcd8c84c6e4014551e22dc68fe83b3bf7a5d329330b37284c8d42e39612b035896df4204be75d118c6e4cb694eba9cee22f69faa4407b8ada544

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          f150460ec3af3121335551a7bd06e4a9

          SHA1

          0401595292d8c68d4b601a2258db99a4001db5fe

          SHA256

          eda7091e6e00e636063e8989f0efc996d6ddeeb55f51c380f58417119e2481a7

          SHA512

          9f19b205011840c65802c38f7f130d9ab8329357e5923114bd865f0edc2759272543912f78d5138b8ba446c634a5f1b67efd88c6884d78426c8a383340cd9529

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          c047cb1d58db625a9d40eb41b94e6e3f

          SHA1

          d1d1402264e6b534f1196d59874a08c8397eb820

          SHA256

          a88a32b3aa0d2e934786c27cdb32a82c72b34affa0d4cddc351e58e4007376b0

          SHA512

          e3cff04dcf8f5df3b17ec3826f3df24f1a4966a2c7e4529a2968c8ca11305cfda018693ad7ae9f641c77dcc338eaf7ed016629c69b9858af27d0aad27f051472

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          512e99de40422411d45227ee1f364631

          SHA1

          1c54f53dfabf85d5ede0c0fab904d20eda679ee0

          SHA256

          5c93ac5a9c82350c662197c580590cc5e03f8eb4d2ca65e74ac82adaba898c0f

          SHA512

          a9ca1fad590bce610668f01cbb5ab4756ac0d8b988f47cef4503d31ded032a7890c5ab52a9d935e547c2ee8c3d73350d83fb3451cd208429a2743dc618becbe7

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          9e68be1588d124dde15100c555479d61

          SHA1

          38290a9eecea9ad33b08ccdcaab3872c1d809dfe

          SHA256

          20ce2867567a07ed7f9919c752005ebee5e478ed470c1723ab4259360d37f3d5

          SHA512

          82ac86135c8580b62a94d6a063124588dfdb9ff4dfb715f68119d502d4afb35c01b3141fdafb6bca7e02a92cc9a75c8159d461f59c024c4c90d8c26d12f17f98

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          84402d7408fa61dcc5d68c4354359e0f

          SHA1

          db7d83f453f8dc8c449b24f0eafba76e3994c80a

          SHA256

          111b2cdae20b7ea3e52e4840d94eba982add1f60a628a7d198054761f848eaa5

          SHA512

          52df636525cefa7163203df6103694ae7923aae9c934345949f3ea8710dcdbda816f1997fa9e5056e7fee693152ba6d981492a4a806abb10acb80648d3f624dc

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          8476956a7aff08704c87b845668d0e81

          SHA1

          9e28bff0f29213cd1814ee298db6e4a5d58157ae

          SHA256

          42a2ec6d60bd7a1b2719be01ea3531b59668f7616b10b24a6a6e9e800b4317e0

          SHA512

          a87484ef9d61ff23819ccb7cc48d7962efe0c65703b308abb9b192c51ffa0784a1e82ee4ced900979618d94f02f4171e215cf3e924b5be0eccf1e88bc961303a

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F0ACCF77CDCBFF39F6191887F6D2D357
          Filesize

          242B

          MD5

          7b1e98531bd5204214cadd42d1fee75e

          SHA1

          b861ebf7afa8085c666ef9e91f81f95d019adadf

          SHA256

          436b35539b91c3e2435ac430fae52f1648cb9ddc4b8b7c8a9c0fed47b5f1185a

          SHA512

          cdf7fc475606818922a343a98706011ee1276a1a11dbb292513f16556eb1458366320ed917b5d45f7a68abce44640ac071a29bf53e883175526cbeea9271b6ea

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\Internet Explorer\Services\search_{0633EE93-D776-472f-A0FF-E1416B8B2E3A}.ico
          Filesize

          4KB

          MD5

          da597791be3b6e732f0bc8b20e38ee62

          SHA1

          1125c45d285c360542027d7554a5c442288974de

          SHA256

          5b2c34b3c4e8dd898b664dba6c3786e2ff9869eff55d673aa48361f11325ed07

          SHA512

          d8dc8358727590a1ed74dc70356aedc0499552c2dc0cd4f7a01853dd85ceb3aead5fbdc7c75d7da36db6af2448ce5abdff64cebdca3533ecad953c061a9b338e

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\Cab1FC1.tmp
          Filesize

          65KB

          MD5

          ac05d27423a85adc1622c714f2cb6184

          SHA1

          b0fe2b1abddb97837ea0195be70ab2ff14d43198

          SHA256

          c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

          SHA512

          6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\Tar2110.tmp
          Filesize

          171KB

          MD5

          9c0c641c06238516f27941aa1166d427

          SHA1

          64cd549fb8cf014fcd9312aa7a5b023847b6c977

          SHA256

          4276af3669a141a59388bc56a87f6614d9a9bdddf560636c264219a7eb11256f

          SHA512

          936ed0c0b0a7ff8e606b1cc4175a1f9b3699748ccbba1c3aff96203033d2e9edabf090e5148370df42fbfc4e31d7229493706ff24f19ff42ff7bef74a6baad06

          Download Submit