Overview
overview
7Static
static
7MiniIE/CN_...ch.htm
windows7-x64
1MiniIE/CN_...ch.htm
windows10-2004-x64
1MiniIE/CN_...ch.htm
windows7-x64
1MiniIE/CN_...ch.htm
windows10-2004-x64
1MiniIE/CN_...ge.htm
windows7-x64
1MiniIE/CN_...ge.htm
windows10-2004-x64
1MiniIE/CN_...ot.htm
windows7-x64
1MiniIE/CN_...ot.htm
windows10-2004-x64
1MiniIE/CN_...op.htm
windows7-x64
1MiniIE/CN_...op.htm
windows10-2004-x64
1MiniIE/COMCTL32.dll
windows7-x64
1MiniIE/COMCTL32.dll
windows10-2004-x64
1MiniIE/COMDLG32.dll
windows7-x64
1MiniIE/COMDLG32.dll
windows10-2004-x64
1MiniIE/MSINET.dll
windows7-x64
1MiniIE/MSINET.dll
windows10-2004-x64
1MiniIE/Min...re.exe
windows7-x64
1MiniIE/Min...re.exe
windows10-2004-x64
1MiniIE/MiniIE.exe
windows7-x64
3MiniIE/MiniIE.exe
windows10-2004-x64
1MiniIE/MiniIE_2.exe
windows7-x64
1MiniIE/MiniIE_2.exe
windows10-2004-x64
1MiniIE/Min...ox.exe
windows7-x64
1MiniIE/Min...ox.exe
windows10-2004-x64
1MiniIE/Min...fo.exe
windows7-x64
1MiniIE/Min...fo.exe
windows10-2004-x64
1MiniIE/MiniIE_SDD.dll
windows7-x64
1MiniIE/MiniIE_SDD.dll
windows10-2004-x64
1MiniIE/Update.exe
windows7-x64
1MiniIE/Update.exe
windows10-2004-x64
1MiniIE/新...��.url
windows7-x64
1MiniIE/新...��.url
windows10-2004-x64
1Analysis
-
max time kernel
121s -
max time network
124s -
platform
windows7_x64 -
resource
win7-20240221-en -
resource tags
arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system -
submitted
05/03/2024, 04:58
Behavioral task
behavioral1
Sample
MiniIE/CN_MiniIE_ErrorPage_Search.htm
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
MiniIE/CN_MiniIE_ErrorPage_Search.htm
Resource
win10v2004-20240226-en
Behavioral task
behavioral3
Sample
MiniIE/CN_MiniIE_Search.htm
Resource
win7-20240221-en
Behavioral task
behavioral4
Sample
MiniIE/CN_MiniIE_Search.htm
Resource
win10v2004-20240226-en
Behavioral task
behavioral5
Sample
MiniIE/CN_MiniIE_StartPage.htm
Resource
win7-20240221-en
Behavioral task
behavioral6
Sample
MiniIE/CN_MiniIE_StartPage.htm
Resource
win10v2004-20240226-en
Behavioral task
behavioral7
Sample
MiniIE/CN_MiniIE_StartPage_Bot.htm
Resource
win7-20240221-en
Behavioral task
behavioral8
Sample
MiniIE/CN_MiniIE_StartPage_Bot.htm
Resource
win10v2004-20240226-en
Behavioral task
behavioral9
Sample
MiniIE/CN_MiniIE_StartPage_Top.htm
Resource
win7-20240221-en
Behavioral task
behavioral10
Sample
MiniIE/CN_MiniIE_StartPage_Top.htm
Resource
win10v2004-20240226-en
Behavioral task
behavioral11
Sample
MiniIE/COMCTL32.dll
Resource
win7-20240215-en
Behavioral task
behavioral12
Sample
MiniIE/COMCTL32.dll
Resource
win10v2004-20240226-en
Behavioral task
behavioral13
Sample
MiniIE/COMDLG32.dll
Resource
win7-20240220-en
Behavioral task
behavioral14
Sample
MiniIE/COMDLG32.dll
Resource
win10v2004-20240226-en
Behavioral task
behavioral15
Sample
MiniIE/MSINET.dll
Resource
win7-20240221-en
Behavioral task
behavioral16
Sample
MiniIE/MSINET.dll
Resource
win10v2004-20240226-en
Behavioral task
behavioral17
Sample
MiniIE/MiniIE-Capture.exe
Resource
win7-20240221-en
Behavioral task
behavioral18
Sample
MiniIE/MiniIE-Capture.exe
Resource
win10v2004-20240226-en
Behavioral task
behavioral19
Sample
MiniIE/MiniIE.exe
Resource
win7-20240220-en
Behavioral task
behavioral20
Sample
MiniIE/MiniIE.exe
Resource
win10v2004-20240226-en
Behavioral task
behavioral21
Sample
MiniIE/MiniIE_2.exe
Resource
win7-20240221-en
Behavioral task
behavioral22
Sample
MiniIE/MiniIE_2.exe
Resource
win10v2004-20240226-en
Behavioral task
behavioral23
Sample
MiniIE/MiniIE_FavoriteBox.exe
Resource
win7-20240221-en
Behavioral task
behavioral24
Sample
MiniIE/MiniIE_FavoriteBox.exe
Resource
win10v2004-20240226-en
Behavioral task
behavioral25
Sample
MiniIE/MiniIE_Info.exe
Resource
win7-20240221-en
Behavioral task
behavioral26
Sample
MiniIE/MiniIE_Info.exe
Resource
win10v2004-20240226-en
Behavioral task
behavioral27
Sample
MiniIE/MiniIE_SDD.dll
Resource
win7-20240221-en
Behavioral task
behavioral28
Sample
MiniIE/MiniIE_SDD.dll
Resource
win10v2004-20240226-en
Behavioral task
behavioral29
Sample
MiniIE/Update.exe
Resource
win7-20240221-en
Behavioral task
behavioral30
Sample
MiniIE/Update.exe
Resource
win10v2004-20240226-en
Behavioral task
behavioral31
Sample
MiniIE/新云软件.url
Resource
win7-20240220-en
Behavioral task
behavioral32
Sample
MiniIE/新云软件.url
Resource
win10v2004-20240226-en
General
-
Target
MiniIE/MiniIE_FavoriteBox.exe
-
Size
32KB
-
MD5
c9565717549aa511c6d016e010cebc30
-
SHA1
d09877e41b37a5b87296c093cee57cb2d04a4b96
-
SHA256
6a3e41ff8e0c347e856c1b7ae1c144190c356ff8b0ad30348d49e3bff5ba7fe0
-
SHA512
c1a1257c327de842c403f0c873c82ad3245744d611c113665c191e7e456a5740b59391609aed105e3de7385994bd35e2de22762c2091d46491347a0bd25e259b
-
SSDEEP
768:OBK2u9iPNbsFqMGPItYpznh9Tf3e8xfha5+s:OM2u1qMGQtwnhBf3pbs
Malware Config
Signatures
-
Modifies registry class 64 IoCs
description ioc Process Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\COMCTL.TabStrip\CurVer\ = "COMCTL.TabStrip.1" MiniIE_FavoriteBox.exe Key created \REGISTRY\MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{58DA8D8F-9D6A-101B-AFC0-4210102A8DA7}\Implemented Categories\{0DE86A53-2BAA-11CF-A229-00AA003D7352} MiniIE_FavoriteBox.exe Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\COMCTL.SBarCtrl.1\CLSID\ = "{6B7E638F-850A-101B-AFC0-4210102A8DA7}" MiniIE_FavoriteBox.exe Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{7791BA52-E020-11CF-8E74-00A0C90F26F8}\TypeLib\Version = "1.3" MiniIE_FavoriteBox.exe Key created \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{BF877890-E026-11CF-8E74-00A0C90F26F8}\ProxyStubClsid32 MiniIE_FavoriteBox.exe Key created \REGISTRY\MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{58DA8D90-9D6A-101B-AFC0-4210102A8DA7} MiniIE_FavoriteBox.exe Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{58DA8D8A-9D6A-101B-AFC0-4210102A8DA7}\TypeLib\ = "{6B7E6392-850A-101B-AFC0-4210102A8DA7}" MiniIE_FavoriteBox.exe Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{0713E8A2-850A-101B-AFC0-4210102A8DA7}\VersionIndependentProgID\ = "COMCTL.TreeCtrl" MiniIE_FavoriteBox.exe Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{E6E17E8A-DF38-11CF-8E74-00A0C90F26F8}\TypeLib\ = "{6B7E6392-850A-101B-AFC0-4210102A8DA7}" MiniIE_FavoriteBox.exe Key created \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{9ED94441-E5E8-101B-B9B5-444553540000} MiniIE_FavoriteBox.exe Key created \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{0713E8A3-850A-101B-AFC0-4210102A8DA7} MiniIE_FavoriteBox.exe Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{8556BCD2-E01E-11CF-8E74-00A0C90F26F8}\ = "IImage" MiniIE_FavoriteBox.exe Key created \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{58DA8D95-9D6A-101B-AFC0-4210102A8DA7}\TypeLib MiniIE_FavoriteBox.exe Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{5ACBB958-5C57-11CF-8993-00AA00688B10}\ = "ListView Columns Property Page Object" MiniIE_FavoriteBox.exe Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6E1B5150-DB62-11D0-A0D8-0080C7E7B78D}\ProxyStubClsid32\ = "{00020424-0000-0000-C000-000000000046}" MiniIE_FavoriteBox.exe Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{0713E8A1-850A-101B-AFC0-4210102A8DA7}\TypeLib\Version = "1.3" MiniIE_FavoriteBox.exe Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{0713E8D0-850A-101B-AFC0-4210102A8DA7}\ = "IProgressBar10" MiniIE_FavoriteBox.exe Key created \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{7791BA60-E020-11CF-8E74-00A0C90F26F8}\ProxyStubClsid32 MiniIE_FavoriteBox.exe Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{0713E8AE-850A-101B-AFC0-4210102A8DA7}\TypeLib\ = "{6B7E6392-850A-101B-AFC0-4210102A8DA7}" MiniIE_FavoriteBox.exe Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E6E17E82-DF38-11CF-8E74-00A0C90F26F8}\ = "IListView11" MiniIE_FavoriteBox.exe Key created \REGISTRY\MACHINE\SOFTWARE\Classes\COMCTL.TabStrip\CLSID MiniIE_FavoriteBox.exe Key created \REGISTRY\MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{B66834C6-2E60-11CE-8748-524153480004}\InprocServer32 MiniIE_FavoriteBox.exe Key created \REGISTRY\MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{612A8624-0FB3-11CE-8747-524153480004}\Implemented Categories\{40FC6ED5-2438-11CF-A3DB-080036F12502} MiniIE_FavoriteBox.exe Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{9ED94441-E5E8-101B-B9B5-444553540000}\ProxyStubClsid32\ = "{00020420-0000-0000-C000-000000000046}" MiniIE_FavoriteBox.exe Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{0713E8D1-850A-101B-AFC0-4210102A8DA7}\ProxyStubClsid32\ = "{00020420-0000-0000-C000-000000000046}" MiniIE_FavoriteBox.exe Key created \REGISTRY\MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{F4D83602-895E-11D0-B0A6-000000000000}\TypeLib MiniIE_FavoriteBox.exe Key created \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{BF877894-E026-11CF-8E74-00A0C90F26F8}\TypeLib MiniIE_FavoriteBox.exe Key created \REGISTRY\MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{612A8624-0FB3-11CE-8747-524153480004}\MiscStatus\1 MiniIE_FavoriteBox.exe Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{612A8628-0FB3-11CE-8747-524153480004}\InprocServer32\ = "C:\\Users\\Admin\\AppData\\Local\\Temp\\MiniIE\\comctl32.ocx" MiniIE_FavoriteBox.exe Key created \REGISTRY\MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{58DA8D8F-9D6A-101B-AFC0-4210102A8DA7}\VersionIndependentProgID MiniIE_FavoriteBox.exe Key created \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{7791BA50-E020-11CF-8E74-00A0C90F26F8}\ProxyStubClsid32 MiniIE_FavoriteBox.exe Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{58DA8D8C-9D6A-101B-AFC0-4210102A8DA7}\ = "ListViewEvents" MiniIE_FavoriteBox.exe Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{E6E17E86-DF38-11CF-8E74-00A0C90F26F8}\ProxyStubClsid32\ = "{00020424-0000-0000-C000-000000000046}" MiniIE_FavoriteBox.exe Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{E6E17E86-DF38-11CF-8E74-00A0C90F26F8}\TypeLib\ = "{6B7E6392-850A-101B-AFC0-4210102A8DA7}" MiniIE_FavoriteBox.exe Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{9ED94444-E5E8-101B-B9B5-444553540000}\ = "TabStrip General Property Page Object" MiniIE_FavoriteBox.exe Key created \REGISTRY\MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{612A8624-0FB3-11CE-8747-524153480004}\Implemented Categories\{0DE86A53-2BAA-11CF-A229-00AA003D7352} MiniIE_FavoriteBox.exe Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{7791BA52-E020-11CF-8E74-00A0C90F26F8}\ = "ITab" MiniIE_FavoriteBox.exe Key created \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{E6E17E88-DF38-11CF-8E74-00A0C90F26F8} MiniIE_FavoriteBox.exe Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{0713E8AE-850A-101B-AFC0-4210102A8DA7}\ProxyStubClsid32\ = "{00020420-0000-0000-C000-000000000046}" MiniIE_FavoriteBox.exe Key created \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{0713E8B1-850A-101B-AFC0-4210102A8DA7} MiniIE_FavoriteBox.exe Key created \REGISTRY\MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{58DA8D90-9D6A-101B-AFC0-4210102A8DA7}\ProxyStubClsid32 MiniIE_FavoriteBox.exe Key created \REGISTRY\MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{58DA8D8A-9D6A-101B-AFC0-4210102A8DA7}\MiscStatus\1 MiniIE_FavoriteBox.exe Key created \REGISTRY\MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{612A8624-0FB3-11CE-8747-524153480004}\Implemented Categories\{0DE86A57-2BAA-11CF-A229-00AA003D7352} MiniIE_FavoriteBox.exe Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{373FF7F2-EB8B-11CD-8820-08002B2F4F5A}\TypeLib\ = "{6B7E6392-850A-101B-AFC0-4210102A8DA7}" MiniIE_FavoriteBox.exe Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{612A8624-0FB3-11CE-8747-524153480004}\MiscStatus\1\ = "237969" MiniIE_FavoriteBox.exe Key created \REGISTRY\MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{0713E8A4-850A-101B-AFC0-4210102A8DA7} MiniIE_FavoriteBox.exe Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{F4D83604-895E-11D0-B0A6-000000000000}\ProxyStubClsid32\ = "{00020424-0000-0000-C000-000000000046}" MiniIE_FavoriteBox.exe Key created \REGISTRY\MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{7791BA42-E020-11CF-8E74-00A0C90F26F8}\TypeLib MiniIE_FavoriteBox.exe Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{58DA8D8A-9D6A-101B-AFC0-4210102A8DA7}\InprocServer32\ThreadingModel = "Apartment" MiniIE_FavoriteBox.exe Key created \REGISTRY\MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{58DA8D8F-9D6A-101B-AFC0-4210102A8DA7}\TypeLib MiniIE_FavoriteBox.exe Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{58DA8D93-9D6A-101B-AFC0-4210102A8DA7}\ = "ImageList General Property Page Object" MiniIE_FavoriteBox.exe Key created \REGISTRY\MACHINE\SOFTWARE\Classes\COMCTL.SBarCtrl\CurVer MiniIE_FavoriteBox.exe Key created \REGISTRY\MACHINE\SOFTWARE\Classes\COMCTL.ProgCtrl\CLSID MiniIE_FavoriteBox.exe Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\TypeLib\{6B7E6392-850A-101B-AFC0-4210102A8DA7}\1.3\0\win32\ = "C:\\Users\\Admin\\AppData\\Local\\Temp\\MiniIE\\comctl32.ocx" MiniIE_FavoriteBox.exe Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{9ED94441-E5E8-101B-B9B5-444553540000}\ProxyStubClsid32\ = "{00020420-0000-0000-C000-000000000046}" MiniIE_FavoriteBox.exe Key created \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{0713E953-850A-101B-AFC0-4210102A8DA7}\ProxyStubClsid32 MiniIE_FavoriteBox.exe Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{6B7E6390-850A-101B-AFC0-4210102A8DA7}\ = "IStatusBar10" MiniIE_FavoriteBox.exe Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{58DA8D95-9D6A-101B-AFC0-4210102A8DA7}\TypeLib\Version = "1.3" MiniIE_FavoriteBox.exe Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{EC0AB1C0-6CAB-11CF-8998-00AA00688B10}\TypeLib\Version = "1.3" MiniIE_FavoriteBox.exe Key created \REGISTRY\MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{0713E953-850A-101B-AFC0-4210102A8DA7}\TypeLib MiniIE_FavoriteBox.exe Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{2C787A50-E01C-11CF-8E74-00A0C90F26F8}\TypeLib\Version = "1.3" MiniIE_FavoriteBox.exe Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{7791BA60-E020-11CF-8E74-00A0C90F26F8}\TypeLib\Version = "1.3" MiniIE_FavoriteBox.exe Key created \REGISTRY\MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{58DA8D8C-9D6A-101B-AFC0-4210102A8DA7} MiniIE_FavoriteBox.exe Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{8556BCD2-E01E-11CF-8E74-00A0C90F26F8}\ = "IImage" MiniIE_FavoriteBox.exe -
Suspicious use of SetWindowsHookEx 1 IoCs
pid Process 2060 MiniIE_FavoriteBox.exe