Overview

overview

7

Static

static

3

Kiwi X.rar

windows7-x64

3

Kiwi X.rar

windows10-2004-x64

3

Kiwi X/Kiw...config

windows7-x64

3

Kiwi X/Kiw...config

windows10-2004-x64

3

Kiwi X/Kiw...config

windows7-x64

3

Kiwi X/Kiw...config

windows10-2004-x64

3

Kiwi X/Mon...se.txt

windows7-x64

1

Kiwi X/Mon...se.txt

windows10-2004-x64

1

Kiwi X/Mon...nc.txt

windows7-x64

1

Kiwi X/Mon...nc.txt

windows10-2004-x64

1

Kiwi X/Mon...lf.txt

windows7-x64

1

Kiwi X/Mon...lf.txt

windows10-2004-x64

1

Kiwi X/Mon...ns.txt

windows7-x64

1

Kiwi X/Mon...ns.txt

windows10-2004-x64

1

Kiwi X/Mon...lv.txt

windows7-x64

1

Kiwi X/Mon...lv.txt

windows10-2004-x64

1

Kiwi X/Mon...6x.svg

windows7-x64

1

Kiwi X/Mon...6x.svg

windows10-2004-x64

1

Kiwi X/Mon...6x.svg

windows7-x64

1

Kiwi X/Mon...6x.svg

windows10-2004-x64

1

Kiwi X/Mon...in.css

windows7-x64

3

Kiwi X/Mon...in.css

windows10-2004-x64

7

Kiwi X/Mon...te.svg

windows7-x64

1

Kiwi X/Mon...te.svg

windows10-2004-x64

1

Kiwi X/WRD...F.json

windows7-x64

3

Kiwi X/WRD...F.json

windows10-2004-x64

3

Kiwi X/bin/settings

windows7-x64

1

Kiwi X/bin/settings

windows10-2004-x64

1

Kiwi X/bin/ver.txt

windows7-x64

1

Kiwi X/bin/ver.txt

windows10-2004-x64

1

Kiwi X/bin...rs.txt

windows7-x64

1

Kiwi X/bin...rs.txt

windows10-2004-x64

1

Analysis

  • max time kernel
    134s
  • max time network
    128s
  • platform
    windows7_x64
  • resource
    win7-20240220-en
  • resource tags

    arch:x64arch:x86image:win7-20240220-enlocale:en-usos:windows7-x64system
  • submitted
    15-05-2024 02:04

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    Kiwi X/Monaco/vs/editor/contrib/suggest/media/String_16x.svg

  • Size

    4KB

  • MD5

    48e754cb54c78a85dcc9aaea9a27847e

  • SHA1

    8d79b23037deb6586e4954305dcb4caee14afbd2

  • SHA256

    d1aa361f33564e8f9d527a01a66c7ce35d73f23417432e80ddf51f562770ee79

  • SHA512

    f6d902b5c73b59636cb71d4019ff45cb77532bf22aab28a8314697e24a62163a94140c97495ad5ce421c09c26e4bcbfe5a815eae27e945c51ccd80c2ba9c3a77

  • SSDEEP

    48:CnN6wkEX+c9Vlt4AFCj93Z0hDC7hSBnukNyhDFtrJGuG2XvS+yZCahDC7hSBnhKm:zJWFCMcfkCFGE6+yZCacJImkArbbqrAm

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" "C:\Users\Admin\AppData\Local\Temp\Kiwi X\Monaco\vs\editor\contrib\suggest\media\String_16x.svg"
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2244
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2244 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:3052

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015
    Filesize

    68KB

    MD5

    29f65ba8e88c063813cc50a4ea544e93

    SHA1

    05a7040d5c127e68c25d81cc51271ffb8bef3568

    SHA256

    1ed81fa8dfb6999a9fedc6e779138ffd99568992e22d300acd181a6d2c8de184

    SHA512

    e29b2e92c496245bed3372578074407e8ef8882906ce10c35b3c8deebfefe01b5fd7f3030acaa693e175f4b7aca6cd7d8d10ae1c731b09c5fa19035e005de3aa

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    e419d7d5f58e4a76065ed55c86ce23c5

    SHA1

    e9b8f63ef268bb95e84829fbae6248f5abf43bb4

    SHA256

    202da9b758f034c09ab56fb3cf741f7f221e9a9a4d8352cd1f673968077b403b

    SHA512

    0e40cd299fabb0d82df6074ceae65bd81d229ec888f4b054758597ca63eff74a3b87cea8e53bfef220b24e2f28dbaf0ac65a14788f1962a98b107bca25c68f96

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    1de4563304bd46b16d399c2e132f3207

    SHA1

    f560063c85d91942f560213effe05f37c6be82eb

    SHA256

    1af02ed21d873c6039ba4d8dd2697b303d81e6aa976cf5d004144d774bcb539a

    SHA512

    2ba7a2af024a642ddc3d21eabfa8d228f0f62735b77b53516774579bc6457b2e6cac8c6bedb3670ec04adfdffe9458bc0eb42f5585c308f7e14d3b4b46b3ab86

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    95c5a6df190a59a457246be2a68acf46

    SHA1

    4b39202159a3005ac25022480411b25fc186014e

    SHA256

    fa3e2297c007ec7190b96f16c879e86afe38861d6b6144130e2e42732d156507

    SHA512

    87f7e5a9d16aa13eee98511e07af9db93378dcdde73bb767c45fb3e9c852283352ea9c830f62caac6798a79b4cef058ce53a93bdd593da12a934c7a396dd1624

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    ce29d909019a6b510ebbc1e13419832f

    SHA1

    2b1b26c36e60776ebca0d40a057386f1d8f2c212

    SHA256

    a960038ca5279876f8b172a74f9b8fe3242920d2b9a3ed257af147aa40bbf50f

    SHA512

    dcfd5d3a32922228c7d8ae9fbed843ed33f52a79f645adfee30b682c030eeb582ee1e937d0666eeadde42cea7d1a3dd4372be49a4552cd36cbf4f071bbb83fd2

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    33179f181535987d634abc9055f605f6

    SHA1

    965fddd7477c6e62243818d85bb8cfcec3b49e99

    SHA256

    cedf9b69a5dee5de7304d34a754f160a49e80ad93a0f865729e4f758ed19f43d

    SHA512

    a16e895c07dbc5cfd9cec0b876e22060b1db6e1e8f7976bfed790e1d4723c7509f44e5137c0b35509fec2e4f71c7e18567af11858b18cbb841a24463c852ff06

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    1ca0319e5f6dbe58ef31210ab0cbbee1

    SHA1

    8a9dd36853816064b2ef599349b3a670574002ec

    SHA256

    8b3e1094de9d4393ebab42d9d6cec24596f3258c8144dc6b2083cddadfb00464

    SHA512

    8a2b90555dd7c29c0818d984c51f63926ba6dc7fe3429ab0fa28499ab3091a7ec8650fac4347a4a218921ffbca71568b9fcbb67a7dabc89e74d25580db637e52

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    6d4f1fb1e3766b10d158946c6dc23f2e

    SHA1

    c5df42873904e7ba8c5ee3aa3679064b112fe81b

    SHA256

    3763379cbbfbc7ee3ac79b7834b70b48f5ca8cec09f0964493b7cca70f403a8a

    SHA512

    5b8b53ccc7816e826961c830f105b827fe7d9fbfcde460cc05afb5d838488d38444d8e66937541b3a803d5f1a7a49b247f6e314b4cfd223fe7a5b221a41f61c1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    8a85854f98052c3de488589d64f3e42d

    SHA1

    7937c7717aca8141fc381af5fc6db06cd879cd82

    SHA256

    2a91c11ffe4a2812d46bf14633d588c53b7a1897cdd7be439a29b2699daa780e

    SHA512

    3065bcb493e4f10815144967bb816c6d146ae1a09a2087e5bbcc4f88f1f2bda0f289db1bb732edf011d93cf10f0522d2a8514489cb0a2287f64af45d5787bf9c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    dac6e79c76327f65c1fefee2fe9e6dd8

    SHA1

    8f869c78ba28d6bc6f89bc895b865f84c467f505

    SHA256

    d6f3d8a6b3c2ff4efd9cf6ca2cb7265b363ff7fcb6c13734978892039b14155e

    SHA512

    d5c47597684aef3b3d093a9a9c461934ffb625105fd67199da10d4e27e61b21bb1ae1b3cc0c14b5e4e44078b1bac2a47fdaf8bf94ae1d7f96a4b61eb9cf38b55

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    0e43b90bec528b26f68e4fc2a97daccd

    SHA1

    6ec23d8502f4308023f1173f74d659ccec9a6d00

    SHA256

    adf161e545120ccd05a9779dfcebb2bb9da82b3443907ee4be00c896cec6250f

    SHA512

    c35db6ee90f59538f1da3e837ed27669dfee2c18b51a7e21e0688329c67d9e23d816123c44b4efffc3fa2a2cd9b7ee7ec8c6db30562cffcb21e4f561ed4f1290

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    5504fc4389d0f53c033ab9e7b41f8f2b

    SHA1

    663331122cea9801528ba593511c7577e9b487a0

    SHA256

    014e3fdb15f1349ab5eaacae6daedd500f1b6a1565449fa8a037522d7acf1e9b

    SHA512

    af8ab09373e37db01360fca712cdf7ddf145f02f84ccfb1311c66f890510ecf42a49b555860c6de2100030a06088ce9002ca506631ec354908b851f435d8910d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    8d1322b066e99093e2caaef2be66007d

    SHA1

    5a89b1e745ed78b7d83b70fc2a98f8646910f104

    SHA256

    946f396a53db8443b6b901a90bb3ed59832f924d7f5e0f68b3d422280e684dba

    SHA512

    76d0e1c833cdb5d047eb70628124d50c2bd13fd4b5367e3f0d422eb9e9a2fc64e8fa5b8aabf6d2de5e0f33eb05133ff07d3d71339a29adcbdab0184afb3346a1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    5aaab3602cfa33baa69aa353f0d742e9

    SHA1

    4b03b8e2947425eb43d1d26c86e5f9452cdf8d3c

    SHA256

    5df5f182b4437a2a1efb44b56efa6fad85256bbc6a8078628c402ea030e374b0

    SHA512

    a18742dbacdaef369a309be10dfa1e55c0248b88ac2a091f045ff5ee12b3707d5a786e81b950524546847ddf3b5dbf80cb50a42d9e8b26cb319eaf3327c0dfa7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    5f7f8fb4b1cfd034418b1f60efbc3bbb

    SHA1

    464eb6d6b93c0ffec165c7f33de135f9df69eb86

    SHA256

    f5ceb7c1f3647db3b751ba8c79af9d9efdbb489762da1c58769bd8ba0aa7ec78

    SHA512

    d65b89a9ecf0130755c0f8ebcae3a07494478ba615e0867983d04cb7b7d943d7e9111322a1c39a6f7ac164ad563687d78ca0fd7202bb8bd48d1098a5357b00ae

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    b6396900a1841e6193c8686ae149becc

    SHA1

    4a75e9329e86b57f2bf86c827c19a35599ffe1c9

    SHA256

    3be8c3588f7343598fe6df20bbffb1cd819263892e615d346ba5e51fb8de3415

    SHA512

    fa231e38665edaa183ae20f847bec8a5e14e9006cc46e808464961c69b999b1d1d06f05afe1bd92845250594b6b7e0d322a271c669b0f83c1f61b9b24a098865

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    284e7fccc7c6217b228ced42854e6aea

    SHA1

    dc8f6716956abe0226d0135dced0348963427285

    SHA256

    e84f1dd73879d569070e9a51b0691437a1f4edbe2f404ba5d2a54933d734b443

    SHA512

    476d4c121750076b43256e683d6bd4cd8c3ac1a735b6596486711d8572c6bb6e3adc9820558977992f9228d1009e304feea72b4d7431a2eb545d4d5d25bac926

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    cff1d0d2667ac8c776185c919c4635d2

    SHA1

    c371da75f74957c9f6a3a750e31735877624277f

    SHA256

    c2a782afff1906d32e9d7b8b4c08279ab5059fd5d781300c837f8179b6b8e6ff

    SHA512

    680f67b838cd95cc582a63e3acd331c5378c2166ffa747797e5ae3806758ba32c0d7ac361915e56cffecf66b2604a56bb67ded4990c5a8ea930ed7605a318cb8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    b66a203841c7b50d0da7e3f43912a27a

    SHA1

    877539e73a6ec0d6243ad1416c97716312f7d20a

    SHA256

    0f57ec76390d564f7a5fa0238e71277e2c2b96aae61d6c024f2fbff8fe069e52

    SHA512

    f4c26cf7883782e1b70a48864a12112e58f10d7d962ee98aad6fe0b4d25a270b4291c61fae71d3014d5ab8a716b74ff34e0cbba4654cc405a81c1f9ad0cd358e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    ff50db3fb56b5bd104a25d5af5e794f7

    SHA1

    145191207ff814923b668d32058a11cffa43baec

    SHA256

    f89a497fb2930fa80a7bfa29ad1dd8738f7fde887ce435366e951e4f59372f71

    SHA512

    7047fc7380528d5072de02531d0c1cededa2a7056259814cc4700ee497e7ec6b990fd758d2e6e3dc19722034e3be584fa6aa3ea43580c3f7ef38adb83ef6a877

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab2A5D.tmp
    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar2B30.tmp
    Filesize

    177KB

    MD5

    435a9ac180383f9fa094131b173a2f7b

    SHA1

    76944ea657a9db94f9a4bef38f88c46ed4166983

    SHA256

    67dc37ed50b8e63272b49a254a6039ee225974f1d767bb83eb1fd80e759a7c34

    SHA512

    1a6b277611959720a9c71114957620517ad94541302f164eb872bd322292a952409bafb8bc2ac793b16ad5f25d83f8594ccff2b7834e3c2b2b941e6fc84c009a

    Download Submit