Overview

overview

1

Static

static

1

URLScan

urlscan

1

https://gemini.googl...

windows7-x64

1

Analysis

  • max time kernel
    108s
  • max time network
    76s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    07-03-2024 13:11

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    https://gemini.google.com/app/9405ebeeed73ae5d

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" https://gemini.google.com/app/9405ebeeed73ae5d
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:3040
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:3040 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2124

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015
    Filesize

    67KB

    MD5

    753df6889fd7410a2e9fe333da83a429

    SHA1

    3c425f16e8267186061dd48ac1c77c122962456e

    SHA256

    b42dc237e44cbc9a43400e7d3f9cbd406dbdefd62bfe87328f8663897d69df78

    SHA512

    9d56f79410ad0cf852c74c3ef9454e7ae86e80bdd6ff67773994b48ccac71142bcf5c90635da6a056e1406e81e64674db9584928e867c55b77b59e2851cf6444

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    1d025f69ae7dba6008c072a1ebbf878e

    SHA1

    73dba367a8950b42b57e2025304d7ea3946f91c3

    SHA256

    b1dda2db1b46913ab267b36b8e1790b98e558f32ce8e431ff821a6f1cf610e6e

    SHA512

    32c702582531c12b75bde048ca7f3d0db1ecc014c232cb58c26a7d7b09cb4fa3c94a5f936c139e838befcdf0f8558d740ca5a3c0a41a72f9ac5e5f70f2fdff86

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    6b67f09480680f32d41e14c43f36d770

    SHA1

    c398a2b0c0ddbf2db8982b3948995416a02def38

    SHA256

    16fa393eaf9cb5a48717e0ea5a63819beaca3f9f0d59fdca0ac5afa31835e877

    SHA512

    658fe46e272ed347eed372ac904e107efc80486cd4219267f64db68c9cc8c842b3fe3ae285303d50d963c1795072c558b9b95df0bdf6053ac702477fa51436f8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    4c39ac59e9501132996f2386469e9eba

    SHA1

    9cc6f26767c965c37bdd5736116420c42772c24c

    SHA256

    09d87cd709072be7e2f20798f466703b21f13b46689e5cbd07283943fd31f467

    SHA512

    7ecf2955fc4ee2b5deb484fee74145a8a82cff0c83174ddc27a0c97183789412d4b35dc198e2297fc642f9de25f50a08917f0c89a26440d9f2d9251748c5e752

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    4f5ce4f3adbafa205dd86fbda63aa9d2

    SHA1

    245f00b812721c94e96926e4517d8b1bf9e52b08

    SHA256

    7d781f1ad1da37ef4661cb564a5e47e3d3da8d2f29fd300897276617db557752

    SHA512

    e0eacd93c913bed7742624aef3feb08926baef6bcf53aa0f25cfc9c2c6a95000e102dea48e41f2b8525ac151c1ad642f1ecba52f8a140a6a86843b610128f7d2

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    f2aedc213a2ead23b4d3ded7444314b0

    SHA1

    aca4410db3ea09f23630cb7ec8350f74a7e3f332

    SHA256

    958fa9285b59f959b57aa1d98cce3524b86b8a6efeff99f3767fa5d4eeffc50c

    SHA512

    fd796e603930ab539b6b3005c98a5bed98ca3146e51231d81dd414c098943604c9438a81d1a8f8925011484dc91ebc9b3cd7d8f171bbdc959a90c6da0e361f4e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    7288e16ec5180037d9da3da98c40d188

    SHA1

    a712bc75445af23a6af459fbf321ed12cd643adc

    SHA256

    2d00fdcfbee69317cdbff5e110633803ac33f7f07f081b61dce66a00f15f16b7

    SHA512

    116129aafdd86116a4a8024e9d8afa758eb5a6f83fe055cba5fd52368f3f5787944cc5829b008df0baa03865e0e44cc1ec5851247899cc0389a3559da5458268

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    96af3952e9a377ac19995bd46b9a8a42

    SHA1

    61a1b6e64602fa88a5ac8d2ced3243531931212d

    SHA256

    868a83848966d8e6330a3507f0727077ff7a626325f5f0b3370a17ecd52b5df5

    SHA512

    102af434f8cc97db767e276c061be680cde21ec75b1c2cfd0033f13d305d9acea42d816403476daebd1bbef210fc61aa7858d493f9fd5e70ce13417dec3fd153

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    1172300e3fbce5c17815038baa4cec6f

    SHA1

    0dbb47467fc727dc893e0f3c3ae97f3814b7c6dc

    SHA256

    8c849b2541e42435ca51d76a921a4e03efe7821b2b47919aed7db2b8bc1b05d5

    SHA512

    3682d3f701ba5f80998dfc2f8c494adf003a33802b912b217427701ed8ba0f3779b3637a1345e51233643e8885879a1e4be24cb2f53726a785530c2424728f23

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    531cf8a84537b419c0810e3a727a1c74

    SHA1

    93027e2323d8e910a7dec69aa7f6d8c2ceb5e76a

    SHA256

    54f1dfc114ae8256732dc6bf12f630e494f893024333a60504f58d51b18d485d

    SHA512

    493b25bad1a93932f836754eceacf4fe7d723f1c8ae09f2ed2b0924b23e88ac8b03363a196e3f2ad70cf5b6d1e8be59248e0797ad48d226f1af2b92342ba75f0

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    38d24f97776f25b39a49d87f13625697

    SHA1

    5bf5ede6e6c0a44d80e7cfb87f373dfaf6e79076

    SHA256

    e043f97f2b77ed637593b8bedd72c451dc6ccf702f6ac9708d7009046f7c51ce

    SHA512

    4ca618285132681bde5f255daa856e25d21de1b0e6e336ce6ecf90f95bd66d782a60130a15df1f055b8f39a247b77d8bed53770851b8f8589546a704a7ef7acd

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    f5f9932edbbe05abb7fec1d82d6f572f

    SHA1

    304218a338a224d6d86fa5dc8d04df0f2ba3d122

    SHA256

    7e72bc79874cac6322df9fca7b0692189cc75ab82648405c56a193b87f20ff66

    SHA512

    429fd02d4967cf9014a93b286e456d8136202948895559c4b30467d78608ddfcfa5ca67deb47fe03b337aa3e60d5bd37162424beb92c0f1aa757fd682044c7c9

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    313883599b0c2d94e5973820ed0fa1af

    SHA1

    ea2a8be4b8cb51cc453b68b699a819770a07f8f3

    SHA256

    ed3a471d876cfa0bc454c0a160f3792b39bd5d8e5ddcc9036b4a565dc27cb49e

    SHA512

    63fbc6fb5ada17e24698e2343c761ad79b0921d2efe8b076735466d6858fa31723b4a33508af3176a296f2a25f957ef0765d094fb882c86946f8bdb4b81d5e61

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    490c9e05863cbd036cab2b037d6575a0

    SHA1

    45125e7b95298be8acce467bfbf68f85a4e8dcd5

    SHA256

    c58caa6c8e0ab5dc6b6ebdfac62ca4b5ecc01798c33756270afb2a7ed20c59fd

    SHA512

    baa37647f42bdf9cba3b8849be8d16f702187028fbfdcc23a34d4d1fa1b4cfd2bb4fbad1c86dbc05fdec045dce5b5a3ddb16e0a63f7d1574f523a2b88e648c8f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    f80f8f2f9b05ca3d55f7d6cd404cc9b0

    SHA1

    8114f9c332cbafbdb0ef0b5e3bb306c7b60f3900

    SHA256

    563d50d5ed5579b442e67dfe52105fa24e4d813569d98d81212a6dcc57a7c06a

    SHA512

    680380da8c769bfbb4ff18871a9c3327968752fac3c7c9b150ae0ebac806da47cae7cebc4028156abcd69f99003dbca25dc20d2406da76c02224a944e02a2ead

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    0653f7cd18de9a4fb2a64a3485e85a53

    SHA1

    83181ddd80e7cd9d430c699ca117ea6a2a04b693

    SHA256

    f3ea120ab20d51ac8b3bab9546812b6f523eca8d71cd5d0fb1809a5488f18971

    SHA512

    955b85d584635488b2ff59e6cec75cade88e4cf034da08bc633bfa49f6df32e705f1ecbfbe6bce03b93b290fd24ed834fd62f9a2262efe23c5ffc57cdad94b7c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    e9105168e8fa66203a70cb5654b12cb0

    SHA1

    40de8ec527c3776c921d3885d68f7c7526a963a5

    SHA256

    7b54191b719040421202e33eac95645a64e0f714b064434e1092a4c303db4f16

    SHA512

    c0910b13404d23e251401c2830a651c8ab6ece71b6d12d6a33be815d10e5e70f50e2d0554201f2a225433daa9264c5599280b1b59e4b12fc124847e83953e13e

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\imagestore\5dcsbzd\imagestore.dat
    Filesize

    5KB

    MD5

    fb418aad61106241f8ea857778f3170d

    SHA1

    76fec61e891fbc0bf9396b184c1b7a8d1d94c280

    SHA256

    e4c977f111cce8e20fbec2017d45e26b958bbca8fd00fbc1533a9bd7fbd11827

    SHA512

    5ac0afd1c933d21c9cb485c0815cc7c1bcfc6bbc3ad5a4ba581942710fe450f15f3574e637cda44d059077307a0fdf86378970c1dc3471ddf2f244d439384bd0

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\XNQNAXHS\favicon[1].ico
    Filesize

    5KB

    MD5

    f3418a443e7d841097c714d69ec4bcb8

    SHA1

    49263695f6b0cdd72f45cf1b775e660fdc36c606

    SHA256

    6da5620880159634213e197fafca1dde0272153be3e4590818533fab8d040770

    SHA512

    82d017c4b7ec8e0c46e8b75da0ca6a52fd8bce7fcf4e556cbdf16b49fc81be9953fe7e25a05f63ecd41c7272e8bb0a9fd9aedf0ac06cb6032330b096b3702563

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab83A3.tmp
    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar83A5.tmp
    Filesize

    171KB

    MD5

    9c0c641c06238516f27941aa1166d427

    SHA1

    64cd549fb8cf014fcd9312aa7a5b023847b6c977

    SHA256

    4276af3669a141a59388bc56a87f6614d9a9bdddf560636c264219a7eb11256f

    SHA512

    936ed0c0b0a7ff8e606b1cc4175a1f9b3699748ccbba1c3aff96203033d2e9edabf090e5148370df42fbfc4e31d7229493706ff24f19ff42ff7bef74a6baad06

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar9161.tmp
    Filesize

    175KB

    MD5

    dd73cead4b93366cf3465c8cd32e2796

    SHA1

    74546226dfe9ceb8184651e920d1dbfb432b314e

    SHA256

    a6752b7851b591550e4625b832a393aabcc428de18d83e8593cd540f7d7cae22

    SHA512

    ce1bdd595065c94fa528badf4a6a8777893807d6789267612755df818ba6ffe55e4df429710aea29526ee4aa8ef20e25f2f05341da53992157d21ae032c0fb63

    Download Submit