Overview

overview

8

Static

static

1

URLScan

urlscan

1

https://simpleunlock...

windows7-x64

1

https://simpleunlock...

windows10-2004-x64

8

Analysis

  • max time kernel
    136s
  • max time network
    132s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    03-02-2024 07:38

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    https://simpleunlocker.ds1nc.ru/

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 64 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" https://simpleunlocker.ds1nc.ru/
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1488
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1488 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2624

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\3C428B1A3E5F57D887EC4B864FAC5DCC
    Filesize

    914B

    MD5

    e4a68ac854ac5242460afd72481b2a44

    SHA1

    df3c24f9bfd666761b268073fe06d1cc8d4f82a4

    SHA256

    cb3ccbb76031e5e0138f8dd39a23f9de47ffc35e43c1144cea27d46a5ab1cb5f

    SHA512

    5622207e1ba285f172756f6019af92ac808ed63286e24dfecc1e79873fb5d140f1ceb7133f2476e89a5f75f711f9813a9fbb8fd5287f64adfdcc53b864f9bdc5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\F0ACCF77CDCBFF39F6191887F6D2D357
    Filesize

    1KB

    MD5

    a266bb7dcc38a562631361bbf61dd11b

    SHA1

    3b1efd3a66ea28b16697394703a72ca340a05bd5

    SHA256

    df545bf919a2439c36983b54cdfc903dfa4f37d3996d8d84b4c31eec6f3c163e

    SHA512

    0da8ef4f8f6ed3d16d2bc8eb816b9e6e1345dfe2d91160196c47e6149a1d6aedaafadcefd66acdea7f72dcf0832770192ceac15b0c559c4ccc2c0e5581d5aefc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\3C428B1A3E5F57D887EC4B864FAC5DCC
    Filesize

    252B

    MD5

    c6de9ec2cdff43d7590dc9bff1f8cd17

    SHA1

    59c00d664b5b5c6ad2042de0b0533d621dc451e3

    SHA256

    56108531e881b2dee8272caa75edac0cc7804a3997517f98ae2d1deb2f308412

    SHA512

    01957e2da13442ebcf07389a00bbaf71992767059cef3924030bc6550cf6501558d22c2bcfb9e13c53550a79f60d11755d247da0effbe3cd8dd17e8dcd86ded7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    c62b34e932e692659e0ccc7c6db5061a

    SHA1

    41de198fe51a245b0139fd20325ef1940652480a

    SHA256

    1b1b11307d00b23b46fc2dfed8f7f78069a7592598fa46651f6de002d02f8e44

    SHA512

    7f8d1f88d851c43e4b18a66fc2e9356cc5929ced6da336eb8ae9455847a3c2b036bede44ee09255f385e0282a0287154e48aa90adfe439a4becdbe42d3117cae

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    727d2400da1ce94349b035736fb2ee32

    SHA1

    44a79d184503def033ff03c6ef28e9eb0c54a605

    SHA256

    298d74d4fb78af7518bf73c0dddaf5ed48803866218a34ef8412d67a33a139be

    SHA512

    fb41a6f80e459199f445847635df0f07426bd55359eccbbba35274b4e3a8f20f92bb732a6058ef3e4944ba10f27b5d572edf48c80a197ddc6da6e53f61e0f3b1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    dee34ee035e07b533e1316c25ff9e065

    SHA1

    af88ca226e119818acbb4fc4f818e991c7f5d876

    SHA256

    02c962dc20d4e6b3915c932369b1351bd790eb23a40bec9fc6f8081ade0d7222

    SHA512

    6ff87c2cfff4923dc9fa21607cef6d8eeb7c8eb2903cb4005a308cb3b297f37a7e4223956c9b486ef9165ae8a846b8c13a9ab4dff693045052f1eb200a9200ea

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    5136d36691a33f9e94e6c3bc4d48cdaa

    SHA1

    1a0df42336addf9f67154e720fda51eca8e10405

    SHA256

    259ac043141c44dffad8bafda61b952d2f9208266d141b4d93600019ccc4ee12

    SHA512

    d42df1c998b4aa7a95107d51c570f8fb8abc3841d222fbb672c43a4dac40227585fbfbb34901c46741953a00edfeb178f63c322e26e735f1d3188ef4970fc8e6

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    1a5cda75d9daac38fe231bf695f1685c

    SHA1

    1ed0eba17c1c02765d491b7b202431be24f7d881

    SHA256

    1b1effdd16d12e104fe4c44a2ee14aee36bb6767a8296c1c4c178617ac51936b

    SHA512

    ce19f023585d6e93c4b21685d947ba57ab5db8f8f9bd9673986bcb16fdb1f9a6d87db795b79aeeddef044e7f0ee7c269df394a4431d6f860129ed35678808a79

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    1bb236681298b5e698d5d6620f888f7e

    SHA1

    d98cc172556c97483de16cb09cdd9025601c9950

    SHA256

    f3593da43c889f5176f1a38ef3f3bb996276c4f9dc149d28f348dde3079da162

    SHA512

    b80d686287c835bfab959d81db2b5cc6f46c3fd73c362dc49420d0da509e13980f6a552f6887a855c3ed105b5d07bbfbf4b2001393af5e5a50fbb915f33d6328

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    e1a559904df889cf69c852e4cfe9b5ff

    SHA1

    e6e67e8bad157aac809f0ec742f1bb831c0f9689

    SHA256

    ec9b0a287b3cbdab4a1d11f0e10f92c20a2d9f87a9316896ed5d23dc6426c067

    SHA512

    c28e7f18b558ec0c6f7dd125a71d8ee9230b531cf39c825ed2600619b61566b06a9321275a3711b281f92de6d915ef63a62c6245acdbfcf7ec0108ac55f9068d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    84904f3e4b551847b3e3bf1d019146ab

    SHA1

    ce6301cc0198d709c8d63391463f6cb8edc529fa

    SHA256

    da1dd1b91936390c2d062c51bb448449ba063c77bb9fd61c3f7158eceeada615

    SHA512

    e2a1ee55d41fa27bb21c76fda4468ea6282403fd459c76d2bf32a365a75eb4319d2fe8afab7e17a8cab0752bb53f7a9426dfb8fbbd6b87ab8c4a30529a486007

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    e2a6d7e3c6af67fcee58a5fbbcf833e5

    SHA1

    56fab169bf678c5652a9fe5ba8942f6a448e718c

    SHA256

    e39b1e3624ece018e909215e3ec3a02016e093aa247f3cc74302595735af0bf9

    SHA512

    69b63e5c91ed98b88efa3d3213da08d944748da2c9416dc7a2911513c94d793bf4baeeb666a4e94eeb65786de8655c25672aa48facb4695dac3187867b04b345

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    2d248a2c992b04bacfd69246a79a6703

    SHA1

    a4c242faa145360ffc7c8e4886c9b0efa3d54b39

    SHA256

    b6c9ed130180616a00698efb79ee913fb02ed21aad11c4169540f2bf7d29ea0c

    SHA512

    97546eed520f778fd530a011687407c091bcc7d718e906d6141ef1317b4dbe193e0117d770a90ea9960bf96755edba174364b8d24e4d703b06bcfa613c756652

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    c02274130f6ac8cdfd21642cb9f26506

    SHA1

    6fb404f80b09844d38dae03726829445fd93edae

    SHA256

    224de592b6738e586996083400f7ce9979a6e06ae3ab8807c7a488bd9648acd4

    SHA512

    d827bc0a32e5620cff353f699e0ef5c3f95eff9eeabe323c86a39d980d1edb47c207ad74eba3aeeb41c848bcf01f8f4379c5f96a6e0fc0f7f93d345498cb8ff5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    073b9d84962b8f08b620cc3d0cde6f99

    SHA1

    3550cbc5db4ebed803ea694bdc7da33e36daeec2

    SHA256

    098fbb5a602ded22e235844b83cfe3f26a51cbf63b5716e27a9766b94ffe6d51

    SHA512

    1003dcc925d3fc9a8c5859660f072158bfce13323d95938356dbd969f35116d00c73a4b6c84745cc4660eba3484bd1a707143f20ece81a4b3d117360cd632a3c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    82bce155b36c164bc6fad9b6d2b4936e

    SHA1

    6e5b7d4ddcf1c3630d176fce2ac81ba70eae7dde

    SHA256

    9c7d2ba282a53d699f4648ee18fd43b06bb9c6634836b565b816a98a7bf6033b

    SHA512

    8cecd8a46634a4c8365ab72385594ecb3ab76609d149c8ac99e535b37877789188193f5de09eea45168a502b6187a1f02c7df7033e2b16f7a10a7863c37aa4e4

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    369d9595d613160ede2e439dada6e6e6

    SHA1

    6c8aa4765acb0240765347f11720069d60154fcc

    SHA256

    2d543b550dcd424c122d7ed926bb3945176ba72439254db4aaf09bf6c9c475cd

    SHA512

    a573178c3e943ce0d7ddfcf6d4807bdbe5cbef47e57d4c58a8e8be73fe444986a11bdfd3994413b263eca16316344194d5e015da284cff6480564b7d0c1d585e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    cadcb4e5a7050441db16b14758e3cd5f

    SHA1

    26db4aed868487c683c9b924eacf49ec61ecab76

    SHA256

    1230e786930991960fc39673e18995bce562cbc769c105d2314ecaf74d56feef

    SHA512

    ead07c68d0251e0a99ec56c92b597d7ecd19ca4521cceaec79340ab1e3467bc4064481e02a81714c5f5901334bc39d2bcfbc881aea3704102c27f1327708cea1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    362bae905059ad7b4d8bdaf16e97b944

    SHA1

    9b4a70ec59a4092686faf44a4b6d92574ad7bcfd

    SHA256

    08010b005c39cb59619362d6991bd430ee8143cfbe3bfb4ff98e13ee55c6ca74

    SHA512

    52af787685613b357e0e927fd1040e92c1977e1e947ab78f47f7f0ab30c908ac9c2d63ecb8ae3019cb94e8e94f1514571f2c836705eb8b9100581571e0564403

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    31cf292cb6e042b8716699849bdb1638

    SHA1

    5a8d717a6eef467f4612efb3003b3a7c5ba5e8ee

    SHA256

    195a1a8c660ccdb0bcb688db5951a00e3200aa149e1f0261cd4d08e1a21dd010

    SHA512

    b361113a8227000db90186d57f69059d5e44ebdbf48cefc3d46ab169ae16c5bf45513ee59aa6fb7d8f08f59a64c00a1f075c6bae41f4cae882762af40a1b62d2

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    d01eff373e057808b67f5abfc1127cbe

    SHA1

    71b0880365ddf5f9d05479a1ab0efff634eae9fb

    SHA256

    281f46ff4c5b8aa12af6b0bb621253abc98ad2c5dfd040095bd235fd8c37c7ad

    SHA512

    0ec17b9987e1aaffe64de0133f4981a5c6310a629c89d5eaa0c1cac11772378a55955f6ab20fc739c3c0aa1ca2fd7c56bc241937ace7f7236a17dbf8380e651c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F0ACCF77CDCBFF39F6191887F6D2D357
    Filesize

    242B

    MD5

    2ed0a36aa592cd5ce0c685aa0f25b689

    SHA1

    1a85739de6c72ca150be97e462f7880a01f30e0e

    SHA256

    d2e7f730e7c59fa22723865bd24569dda817adefb5480f8107564aee495606a7

    SHA512

    1a14e9e5735ec490a600c505856fc0e71de63aacad5f8bb7fe640139b8db944d28280f9c324b9ee7242d06d4f3fb52a2abeba1a8c9f605aeb2f7a11481d3969c

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\75U297EK\simpleunlocker.ds1nc[1].xml
    Filesize

    13B

    MD5

    c1ddea3ef6bbef3e7060a1a9ad89e4c5

    SHA1

    35e3224fcbd3e1af306f2b6a2c6bbea9b0867966

    SHA256

    b71e4d17274636b97179ba2d97c742735b6510eb54f22893d3a2daff2ceb28db

    SHA512

    6be8cec7c862afae5b37aa32dc5bb45912881a3276606da41bf808a4ef92c318b355e616bf45a257b995520d72b7c08752c0be445dceade5cf79f73480910fed

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\75U297EK\simpleunlocker.ds1nc[1].xml
    Filesize

    175B

    MD5

    39772db97cc45c1429a1740cb10082f6

    SHA1

    06eaed1c8f763ad952016643356c4522894cf102

    SHA256

    a7adcf902ca99a14eb354fab5eb6b6829c56447cc677d9a55745559d5ceee93c

    SHA512

    5303405c0d2abcffb548d7ac342e4791f7824c69d792ef7b3bb3bccd14fc1c1eb1cf7938d3ecb5159d065d3c171a849e0fb6590545cee5d80a4de6be11d67f9f

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\75U297EK\simpleunlocker.ds1nc[1].xml
    Filesize

    356B

    MD5

    fea462deddceb6a0ee26bfccec0ff593

    SHA1

    912e81454381ca67844abe9d8ac530c1e8ffe882

    SHA256

    44b6eeec9a6d25a7a4db356bf72fb0460ff88117a79a39deacd25b15d2b171cc

    SHA512

    fe2e905d34db4d28250b7a3724c84034acf60fbed8bbedf0ecd12a10b880473040c87006f07bf6be23f797f0bc77a0c1f0ad31d7ceeb1a4e7c2721fffad1b086

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\75U297EK\simpleunlocker.ds1nc[1].xml
    Filesize

    1KB

    MD5

    cde4af21e54087b36f9bdc84902e50a4

    SHA1

    98585bca238bc89bf2cefada1449305c14308097

    SHA256

    edf4e2aaf87750623d442be2c458102a9c64e5d34d704b731ca317503d77dbc4

    SHA512

    0f2497ea2be81e19df0dafe8688a3be76341fc21a9e9c8940a1a86f3c36b27cd60645adec976a7eb8eacfc9d971e81f3ee2ae7d606d0174ea0a4d29a170d34ab

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\75U297EK\simpleunlocker.ds1nc[1].xml
    Filesize

    2KB

    MD5

    f4d511480c1908befab498f208ba55dc

    SHA1

    94babb813b41c1c5aa246bc604ead946755bc089

    SHA256

    0507f3d5552da9f108788e5e35749bf31481978b5a4e0207c1d156df3f9f755e

    SHA512

    35e74fc2efc0a6b8dfcac68a240379a3357998c6a89a7013a84c75e04b529e0345962c1054b45297cbc883a2a44604b3fc79c1baf0f2e527fbe0cd9f04f40793

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab60D6.tmp
    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar8124.tmp
    Filesize

    171KB

    MD5

    9c0c641c06238516f27941aa1166d427

    SHA1

    64cd549fb8cf014fcd9312aa7a5b023847b6c977

    SHA256

    4276af3669a141a59388bc56a87f6614d9a9bdddf560636c264219a7eb11256f

    SHA512

    936ed0c0b0a7ff8e606b1cc4175a1f9b3699748ccbba1c3aff96203033d2e9edabf090e5148370df42fbfc4e31d7229493706ff24f19ff42ff7bef74a6baad06

    Download Submit