Overview
overview
7Static
static
7MiniIE/CN_...ch.htm
windows7-x64
1MiniIE/CN_...ch.htm
windows10-2004-x64
1MiniIE/CN_...ch.htm
windows7-x64
1MiniIE/CN_...ch.htm
windows10-2004-x64
1MiniIE/CN_...ge.htm
windows7-x64
1MiniIE/CN_...ge.htm
windows10-2004-x64
1MiniIE/CN_...ot.htm
windows7-x64
1MiniIE/CN_...ot.htm
windows10-2004-x64
1MiniIE/CN_...op.htm
windows7-x64
1MiniIE/CN_...op.htm
windows10-2004-x64
1MiniIE/COMCTL32.dll
windows7-x64
1MiniIE/COMCTL32.dll
windows10-2004-x64
1MiniIE/COMDLG32.dll
windows7-x64
1MiniIE/COMDLG32.dll
windows10-2004-x64
1MiniIE/MSINET.dll
windows7-x64
1MiniIE/MSINET.dll
windows10-2004-x64
1MiniIE/Min...re.exe
windows7-x64
1MiniIE/Min...re.exe
windows10-2004-x64
1MiniIE/MiniIE.exe
windows7-x64
3MiniIE/MiniIE.exe
windows10-2004-x64
1MiniIE/MiniIE_2.exe
windows7-x64
1MiniIE/MiniIE_2.exe
windows10-2004-x64
1MiniIE/Min...ox.exe
windows7-x64
1MiniIE/Min...ox.exe
windows10-2004-x64
1MiniIE/Min...fo.exe
windows7-x64
1MiniIE/Min...fo.exe
windows10-2004-x64
1MiniIE/MiniIE_SDD.dll
windows7-x64
1MiniIE/MiniIE_SDD.dll
windows10-2004-x64
1MiniIE/Update.exe
windows7-x64
1MiniIE/Update.exe
windows10-2004-x64
1MiniIE/新...��.url
windows7-x64
1MiniIE/新...��.url
windows10-2004-x64
1Analysis
-
max time kernel
146s -
max time network
154s -
platform
windows10-2004_x64 -
resource
win10v2004-20240226-en -
resource tags
arch:x64arch:x86image:win10v2004-20240226-enlocale:en-usos:windows10-2004-x64system -
submitted
05/03/2024, 04:58
Behavioral task
behavioral1
Sample
MiniIE/CN_MiniIE_ErrorPage_Search.htm
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
MiniIE/CN_MiniIE_ErrorPage_Search.htm
Resource
win10v2004-20240226-en
Behavioral task
behavioral3
Sample
MiniIE/CN_MiniIE_Search.htm
Resource
win7-20240221-en
Behavioral task
behavioral4
Sample
MiniIE/CN_MiniIE_Search.htm
Resource
win10v2004-20240226-en
Behavioral task
behavioral5
Sample
MiniIE/CN_MiniIE_StartPage.htm
Resource
win7-20240221-en
Behavioral task
behavioral6
Sample
MiniIE/CN_MiniIE_StartPage.htm
Resource
win10v2004-20240226-en
Behavioral task
behavioral7
Sample
MiniIE/CN_MiniIE_StartPage_Bot.htm
Resource
win7-20240221-en
Behavioral task
behavioral8
Sample
MiniIE/CN_MiniIE_StartPage_Bot.htm
Resource
win10v2004-20240226-en
Behavioral task
behavioral9
Sample
MiniIE/CN_MiniIE_StartPage_Top.htm
Resource
win7-20240221-en
Behavioral task
behavioral10
Sample
MiniIE/CN_MiniIE_StartPage_Top.htm
Resource
win10v2004-20240226-en
Behavioral task
behavioral11
Sample
MiniIE/COMCTL32.dll
Resource
win7-20240215-en
Behavioral task
behavioral12
Sample
MiniIE/COMCTL32.dll
Resource
win10v2004-20240226-en
Behavioral task
behavioral13
Sample
MiniIE/COMDLG32.dll
Resource
win7-20240220-en
Behavioral task
behavioral14
Sample
MiniIE/COMDLG32.dll
Resource
win10v2004-20240226-en
Behavioral task
behavioral15
Sample
MiniIE/MSINET.dll
Resource
win7-20240221-en
Behavioral task
behavioral16
Sample
MiniIE/MSINET.dll
Resource
win10v2004-20240226-en
Behavioral task
behavioral17
Sample
MiniIE/MiniIE-Capture.exe
Resource
win7-20240221-en
Behavioral task
behavioral18
Sample
MiniIE/MiniIE-Capture.exe
Resource
win10v2004-20240226-en
Behavioral task
behavioral19
Sample
MiniIE/MiniIE.exe
Resource
win7-20240220-en
Behavioral task
behavioral20
Sample
MiniIE/MiniIE.exe
Resource
win10v2004-20240226-en
Behavioral task
behavioral21
Sample
MiniIE/MiniIE_2.exe
Resource
win7-20240221-en
Behavioral task
behavioral22
Sample
MiniIE/MiniIE_2.exe
Resource
win10v2004-20240226-en
Behavioral task
behavioral23
Sample
MiniIE/MiniIE_FavoriteBox.exe
Resource
win7-20240221-en
Behavioral task
behavioral24
Sample
MiniIE/MiniIE_FavoriteBox.exe
Resource
win10v2004-20240226-en
Behavioral task
behavioral25
Sample
MiniIE/MiniIE_Info.exe
Resource
win7-20240221-en
Behavioral task
behavioral26
Sample
MiniIE/MiniIE_Info.exe
Resource
win10v2004-20240226-en
Behavioral task
behavioral27
Sample
MiniIE/MiniIE_SDD.dll
Resource
win7-20240221-en
Behavioral task
behavioral28
Sample
MiniIE/MiniIE_SDD.dll
Resource
win10v2004-20240226-en
Behavioral task
behavioral29
Sample
MiniIE/Update.exe
Resource
win7-20240221-en
Behavioral task
behavioral30
Sample
MiniIE/Update.exe
Resource
win10v2004-20240226-en
Behavioral task
behavioral31
Sample
MiniIE/新云软件.url
Resource
win7-20240220-en
Behavioral task
behavioral32
Sample
MiniIE/新云软件.url
Resource
win10v2004-20240226-en
General
-
Target
MiniIE/MiniIE_FavoriteBox.exe
-
Size
32KB
-
MD5
c9565717549aa511c6d016e010cebc30
-
SHA1
d09877e41b37a5b87296c093cee57cb2d04a4b96
-
SHA256
6a3e41ff8e0c347e856c1b7ae1c144190c356ff8b0ad30348d49e3bff5ba7fe0
-
SHA512
c1a1257c327de842c403f0c873c82ad3245744d611c113665c191e7e456a5740b59391609aed105e3de7385994bd35e2de22762c2091d46491347a0bd25e259b
-
SSDEEP
768:OBK2u9iPNbsFqMGPItYpznh9Tf3e8xfha5+s:OM2u1qMGQtwnhBf3pbs
Malware Config
Signatures
-
Modifies registry class 64 IoCs
description ioc Process Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{58DA8D8B-9D6A-101B-AFC0-4210102A8DA7}\TypeLib\Version = "1.3" MiniIE_FavoriteBox.exe Key deleted \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\CLSID\{612A8624-0FB3-11CE-8747-524153480004}\Implemented Categories\{7DD95801-9882-11CF-9FA9-00AA006C42C4} MiniIE_FavoriteBox.exe Key created \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\CLSID\{B66834C6-2E60-11CE-8748-524153480004} MiniIE_FavoriteBox.exe Key created \REGISTRY\MACHINE\SOFTWARE\Classes\COMCTL.Slider MiniIE_FavoriteBox.exe Key created \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\Interface\{7791BA50-E020-11CF-8E74-00A0C90F26F8} MiniIE_FavoriteBox.exe Key created \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{E6E17E82-DF38-11CF-8E74-00A0C90F26F8}\ProxyStubClsid32 MiniIE_FavoriteBox.exe Key created \REGISTRY\MACHINE\SOFTWARE\Classes\COMCTL.ProgCtrl\CurVer MiniIE_FavoriteBox.exe Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\Interface\{0713E8D1-850A-101B-AFC0-4210102A8DA7}\ProxyStubClsid32\ = "{00020420-0000-0000-C000-000000000046}" MiniIE_FavoriteBox.exe Key created \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{BF877890-E026-11CF-8E74-00A0C90F26F8}\ProxyStubClsid32 MiniIE_FavoriteBox.exe Key created \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\Interface\{2C787A50-E01C-11CF-8E74-00A0C90F26F8}\ProxyStubClsid32 MiniIE_FavoriteBox.exe Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\Interface\{58DA8D8C-9D6A-101B-AFC0-4210102A8DA7}\TypeLib\Version = "1.3" MiniIE_FavoriteBox.exe Key created \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\CLSID\{0713E8A2-850A-101B-AFC0-4210102A8DA7}\Programmable MiniIE_FavoriteBox.exe Key created \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\CLSID\{9ED94440-E5E8-101B-B9B5-444553540000}\TypeLib MiniIE_FavoriteBox.exe Key created \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{612A8626-0FB3-11CE-8747-524153480004}\ProxyStubClsid32 MiniIE_FavoriteBox.exe Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\CLSID\{58DA8D8A-9D6A-101B-AFC0-4210102A8DA7}\ToolboxBitmap32\ = "C:\\Users\\Admin\\AppData\\Local\\Temp\\MiniIE\\comctl32.ocx, 4" MiniIE_FavoriteBox.exe Key created \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{7791BA52-E020-11CF-8E74-00A0C90F26F8}\ProxyStubClsid32 MiniIE_FavoriteBox.exe Key created \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\Interface\{0713E8A0-850A-101B-AFC0-4210102A8DA7} MiniIE_FavoriteBox.exe Key created \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{0713E8A7-850A-101B-AFC0-4210102A8DA7}\ProxyStubClsid32 MiniIE_FavoriteBox.exe Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\COMCTL.TabStrip\CurVer\ = "COMCTL.TabStrip.1" MiniIE_FavoriteBox.exe Key created \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\CLSID\{9ED94440-E5E8-101B-B9B5-444553540000}\Implemented Categories\{0DE86A52-2BAA-11CF-A229-00AA003D7352} MiniIE_FavoriteBox.exe Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\CLSID\{5ACBB958-5C57-11CF-8993-00AA00688B10}\ = "ListView Columns Property Page Object" MiniIE_FavoriteBox.exe Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{E6E17E86-DF38-11CF-8E74-00A0C90F26F8}\TypeLib\Version = "1.3" MiniIE_FavoriteBox.exe Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\Interface\{EC0AB1C0-6CAB-11CF-8998-00AA00688B10}\ = "IControls" MiniIE_FavoriteBox.exe Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\CLSID\{0713E8D2-850A-101B-AFC0-4210102A8DA7}\VersionIndependentProgID\ = "COMCTL.ProgCtrl" MiniIE_FavoriteBox.exe Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\Interface\{0713E8A5-850A-101B-AFC0-4210102A8DA7}\ = "INode10" MiniIE_FavoriteBox.exe Key created \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\Interface\{BF877896-E026-11CF-8E74-00A0C90F26F8}\TypeLib MiniIE_FavoriteBox.exe Key created \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{BF877894-E026-11CF-8E74-00A0C90F26F8}\TypeLib MiniIE_FavoriteBox.exe Key created \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\Interface\{58DA8D90-9D6A-101B-AFC0-4210102A8DA7} MiniIE_FavoriteBox.exe Key created \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{58DA8D90-9D6A-101B-AFC0-4210102A8DA7}\TypeLib MiniIE_FavoriteBox.exe Key created \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\CLSID\{9ED94440-E5E8-101B-B9B5-444553540000}\Implemented Categories MiniIE_FavoriteBox.exe Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\Interface\{7791BA42-E020-11CF-8E74-00A0C90F26F8}\ = "IButton" MiniIE_FavoriteBox.exe Key created \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\Interface\{0713E953-850A-101B-AFC0-4210102A8DA7}\ProxyStubClsid32 MiniIE_FavoriteBox.exe Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\Interface\{0713E8B1-850A-101B-AFC0-4210102A8DA7}\TypeLib\ = "{6B7E6392-850A-101B-AFC0-4210102A8DA7}" MiniIE_FavoriteBox.exe Key created \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\CLSID\{612A8624-0FB3-11CE-8747-524153480004}\Implemented Categories\{40FC6ED5-2438-11CF-A3DB-080036F12502} MiniIE_FavoriteBox.exe Key created \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{0713E791-850A-101B-AFC0-4210102A8DA7}\TypeLib MiniIE_FavoriteBox.exe Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\Interface\{F4D83602-895E-11D0-B0A6-000000000000}\TypeLib\ = "{6B7E6392-850A-101B-AFC0-4210102A8DA7}" MiniIE_FavoriteBox.exe Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\Interface\{F4D83601-895E-11D0-B0A6-000000000000}\TypeLib\ = "{6B7E6392-850A-101B-AFC0-4210102A8DA7}" MiniIE_FavoriteBox.exe Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{2334D2B1-713E-11CF-8AE5-00AA00C00905}\ = "IVBDataObject" MiniIE_FavoriteBox.exe Key created \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\Interface\{E6E17E88-DF38-11CF-8E74-00A0C90F26F8} MiniIE_FavoriteBox.exe Key created \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{0713E8A3-850A-101B-AFC0-4210102A8DA7}\ProxyStubClsid32 MiniIE_FavoriteBox.exe Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{7791BA62-E020-11CF-8E74-00A0C90F26F8}\ = "INode" MiniIE_FavoriteBox.exe Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\Interface\{F4D83601-895E-11D0-B0A6-000000000000}\ProxyStubClsid32\ = "{00020424-0000-0000-C000-000000000046}" MiniIE_FavoriteBox.exe Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{EC0AB1C0-6CAB-11CF-8998-00AA00688B10}\TypeLib\ = "{6B7E6392-850A-101B-AFC0-4210102A8DA7}" MiniIE_FavoriteBox.exe Key created \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\CLSID\{6B7E6393-850A-101B-AFC0-4210102A8DA7} MiniIE_FavoriteBox.exe Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\Interface\{E6E17E8A-DF38-11CF-8E74-00A0C90F26F8}\TypeLib\ = "{6B7E6392-850A-101B-AFC0-4210102A8DA7}" MiniIE_FavoriteBox.exe Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{0713E8A0-850A-101B-AFC0-4210102A8DA7}\ = "IPanels10" MiniIE_FavoriteBox.exe Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\Interface\{373FF7F2-EB8B-11CD-8820-08002B2F4F5A}\TypeLib\Version = "1.3" MiniIE_FavoriteBox.exe Key created \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\Interface\{373FF7F1-EB8B-11CD-8820-08002B2F4F5A} MiniIE_FavoriteBox.exe Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\CLSID\{0713E8D2-850A-101B-AFC0-4210102A8DA7}\ToolboxBitmap32\ = "C:\\Users\\Admin\\AppData\\Local\\Temp\\MiniIE\\comctl32.ocx, 17" MiniIE_FavoriteBox.exe Key created \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\Interface\{7791BA42-E020-11CF-8E74-00A0C90F26F8} MiniIE_FavoriteBox.exe Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\Interface\{58DA8D94-9D6A-101B-AFC0-4210102A8DA7}\ = "IImages10" MiniIE_FavoriteBox.exe Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{EC0AB1C0-6CAB-11CF-8998-00AA00688B10}\ = "IControls" MiniIE_FavoriteBox.exe Key created \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{6E1B5150-DB62-11D0-A0D8-0080C7E7B78D}\TypeLib MiniIE_FavoriteBox.exe Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\Interface\{E6E17E8E-DF38-11CF-8E74-00A0C90F26F8}\TypeLib\Version = "1.3" MiniIE_FavoriteBox.exe Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{58DA8D8C-9D6A-101B-AFC0-4210102A8DA7}\ = "ListViewEvents" MiniIE_FavoriteBox.exe Key created \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\Interface\{2334D2B3-713E-11CF-8AE5-00AA00C00905}\TypeLib MiniIE_FavoriteBox.exe Key created \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{0713E8A1-850A-101B-AFC0-4210102A8DA7} MiniIE_FavoriteBox.exe Key created \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\Interface\{0713E8A7-850A-101B-AFC0-4210102A8DA7} MiniIE_FavoriteBox.exe Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\Interface\{0713E8AF-850A-101B-AFC0-4210102A8DA7}\TypeLib\Version = "1.3" MiniIE_FavoriteBox.exe Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\COMCTL.ListViewCtrl.1\CLSID\ = "{58DA8D8A-9D6A-101B-AFC0-4210102A8DA7}" MiniIE_FavoriteBox.exe Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\COMCTL.Toolbar\CurVer\ = "COMCTL.Toolbar.1" MiniIE_FavoriteBox.exe Key created \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\CLSID\{6B7E638F-850A-101B-AFC0-4210102A8DA7}\Implemented Categories\{0DE86A53-2BAA-11CF-A229-00AA003D7352} MiniIE_FavoriteBox.exe Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\Interface\{6B7E6390-850A-101B-AFC0-4210102A8DA7}\ = "IStatusBar10" MiniIE_FavoriteBox.exe Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\CLSID\{58DA8D8A-9D6A-101B-AFC0-4210102A8DA7}\TypeLib\ = "{6B7E6392-850A-101B-AFC0-4210102A8DA7}" MiniIE_FavoriteBox.exe -
Suspicious use of SetWindowsHookEx 1 IoCs
pid Process 644 MiniIE_FavoriteBox.exe