Analysis

  • max time kernel
    117s
  • max time network
    127s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    26/05/2024, 09:55

General

  • Target

    CCProxy/web/accinfo.htm

  • Size

    73B

  • MD5

    f74dc14e0359298defc845a1f24b865e

  • SHA1

    eb2e1ed740e86703fbe0103f067ceb1d3f4bbcae

  • SHA256

    5919d6e8242e9ce7262bcd92a306ef261177bd94faf19789fcefba2a77072af2

  • SHA512

    fa6c613c5e11a583c545fd6078cd51d03ad88e8d4ca6878a686483df6a360add9d806557f11fd5e7792ed81257b17a98225ad9650c7fcce8adb8506383e5635e

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\CCProxy\web\accinfo.htm
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2016
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2016 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2176

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015

          Filesize

          68KB

          MD5

          29f65ba8e88c063813cc50a4ea544e93

          SHA1

          05a7040d5c127e68c25d81cc51271ffb8bef3568

          SHA256

          1ed81fa8dfb6999a9fedc6e779138ffd99568992e22d300acd181a6d2c8de184

          SHA512

          e29b2e92c496245bed3372578074407e8ef8882906ce10c35b3c8deebfefe01b5fd7f3030acaa693e175f4b7aca6cd7d8d10ae1c731b09c5fa19035e005de3aa

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          2f9d75cc27e26f719a41a250c1679e98

          SHA1

          635a6a20616b492637f0fd397304049933bc3531

          SHA256

          f9c71329408149ed68008afcb7fd327130fd6aefece9b1062a6f26141260ff76

          SHA512

          1754cd9f743606ea5ee00624b8957d11eb9b24470f5af744e7d81e6dfd25621b2a16a4a6e10912f697d1eb86def39145aef244df3e699c17e33a85150423dd1f

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          243e6bfcc1a48ae3905226070c2c7ee4

          SHA1

          823bd69057771299daf1eb9cf5339656e1c05931

          SHA256

          6358332c0d152ce3a891919571500e2202b5d898c1e069e2ba3f22e44658eadf

          SHA512

          f3f9942fa54e15aaf5be9ca43c00d3827dec719eee16b5137d4f29913be6c9c650761ef03e880f6d2cd592380806940e83d7cdcaf711b78b7209aede8a53fad3

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          531b3e535a753ba718dce7d966f947bf

          SHA1

          3b861195a3dfd2fa88412a3eb1473f6cc7e5ffa4

          SHA256

          5321139f2ec56ca4a6feafc9f922455afabd146b765fadde9da682081fe365b8

          SHA512

          850a1bd34a983d0f92fbd14b69380297d983011b2abd4406969b110112ab106762cd2d9aeda6a7067e6bd40df3ae949cb5b49ede3f5fb603587937fb088c5eb0

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          95e404e123a50770cd92610147ba184f

          SHA1

          c7f0368594053e754c6c4d2e4b589fc623e7bae2

          SHA256

          719f01ec9226f54a0458de7f23661c4c57ecce2bc7cc3df87c662ebc7f521c1c

          SHA512

          440ba28b060eaf4125111d12b5814f65f700e6f1a455e1044c17780a011c32bb356f2a628ccdf2c9df803fbee083ce37ac320af194095b922fa4e20758322a2d

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          2cd2d3848091a33658a334f90a0f3bd2

          SHA1

          0af705d1a86f814cf9e99b9613d8a0ed0fbaea46

          SHA256

          add74d828e5434e6e61af394ff4e4ae030e1b7d31839a8433c4a97c90760f2dd

          SHA512

          08087257ec943e7381d68ae24c89fb020ce432d7b67642c5d4d9ac8c7b3e81f09fd9e1501687cc24060c1d54182a22b5858561a2cd89ee75181ca981b9a91cb1

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          44329849dd7b79053767c41c4d45d265

          SHA1

          e498347703626d8cacc59c3efa80237b39fda359

          SHA256

          6e3b1704f9cf0567d37a695dd94c1b53ab7a8722cef5a1326814dea2e575c941

          SHA512

          4caa97ccc90dcb37e08e6ff35af29bd0f916f575f8e764cc00e30879c9501749317befb7c20b0e819f0fb1da7cb248ee29e2f75d74d30ce223ff7b11f9ab3ad0

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          9537c21449c4b78306b01d6379732bf1

          SHA1

          543bec1b8dd4e57e286940d2532e8ee5f76cbac9

          SHA256

          9fb3753bff6adf5e6b91a7e83852f5226158cc75d152a81a0cd4bb2ff0493703

          SHA512

          e19f161f2b1f7be9284ff0119172680cf5c5b7f9dcf3301dd4913249c0fcddd013cf95283505c3f8322217c19421f750272f2316dfce631923af97efc9a46f1f

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          a55ae962e2d6747431f3881b262ac5a5

          SHA1

          a2dbd47a922f4287c8e923af607a998e2803eecc

          SHA256

          5884a672d81fdcdecd38662dd5a570d0173f1d1cc98b51777e278e8193ca2194

          SHA512

          4353beb0976bf7f8bf861fd0733687e50a784abd5e6a23dda7b7aa4522dad0d038f7318ddfc9569fb76476ebad22e43198ba1cf7c52fa5aeddc0ffa0fbb4d825

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          c354b2ed2ed4eb922c4e84c881395152

          SHA1

          31cec67353695674e943dd5f6a7fc9fa6cae1e91

          SHA256

          5320831c9f650dad0dcfcdeffdbb7888da1b320b12b518deabe0a93091537ac6

          SHA512

          150ca9b2aea703f659cbc2470d73f66d2f28cb6c2e5ece6941054906e147a5e1fa8ff7d817eed19a4c2f84b129d691cd0867b7ae86132d38f38223aeffb4c130

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          3946ff756943f516ec34da01cb38bde2

          SHA1

          3bbfb89edc93354d7e3848a21b19fef538850de5

          SHA256

          712717a296dfbd2de84a3b013e58a25d5ba52ff66ffee778190ed5c2795ab74f

          SHA512

          685a0db45984f1f9e9e9c8199763c2a1b8a7ad807df7b30fdb5782eb97e0019bad6b261980ef47f0d625db281df8215033c02f0d6879029ac0bf74974374c037

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          d53dbf4108ef3c65d100bbe84e88d270

          SHA1

          48a9003e17b7c820a79fbc1cd7af384e47bc0a8e

          SHA256

          fd4dfafb2beeaf0b3e4413b3d0b2ba0b1d59ba6fa1aecb8a97f57d2bf580c037

          SHA512

          d1f370810ee0702e212ffdadd7561345f7a7e3354f83d4aff1c75a1f9aa21f23356baee3d5ba4a1bef779fe36c6a43677cceea200326f4bd269b5382d0eb5c01

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          82e4bcaec7fc2a651903c28b5af4ce35

          SHA1

          2356f02ee9cbee540bdee2f8670d8b62fe3ea7f9

          SHA256

          6792d178fc2c57940693e790bc3aadfb1823b68894e79e99c76f6c375a62769f

          SHA512

          5aa56ee491bdec1b7cb71f499bcaf0cbc631f609651aa24589a8e1b08d7e5834fc7664b02c8ec021705f3ee14f783b8a7ee78a6ac9213609c2e96bd6f28acf39

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          d1ddea5a40126f5215ccc46d47a12b7e

          SHA1

          25a7d198348fbfe9fea7532ee32025029cfb69b7

          SHA256

          90518fc23b2e3254cd984d9053abb299557b606fa33b21da8e827bb1ebcbc7b9

          SHA512

          1113e2dc422bc92c4d51d0fd4bb02bb6194ac21e67efcfdfad3327ac91b22bbc25390561c500899b3daf9a10ef5ee8d2f3c8387553d1f3217b58707a35e03736

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          6be21b752c577c292d0f1f8d4db7bbe6

          SHA1

          9219301c408014d74f1be8ad0243fee4fc8d23db

          SHA256

          d7da3cf15cb9d91c99a02570fe5fb519247bfd8bef522288df8bcbaf443a56a1

          SHA512

          5bbe66c5670e1a31465827e931fb9eea8c1751305542380938ff7d9bd4ead4b0f95767c5da08a904d77d55b73a6d73b7ff707ae80ab9a569906d84a6e578be94

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          d0771a826ab4d577d50cea6c81813e49

          SHA1

          023169fbf3770c4c0cafc30d41a88efa37959c36

          SHA256

          2407936bc5f6869c5301ead489197e7e15eaba3e10bd6412b176eb9062fa2398

          SHA512

          fa8d1a3dc120fe94eac7ab89e09348ca6916a9ac9733a980d7c8aa641717047a53b45e820a5adee0f193fa1484510e8b5016c4b93e630d58a1f72a272fa0e8c3

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          c7485511c8a2f2a956de2e84dc2db0a1

          SHA1

          e38f26c110893c1d58098d790c5630f93a443a93

          SHA256

          3bb3456308de6c17099a21f2e83ea0e416c536233d3f78bca805f025b75ba88d

          SHA512

          e2adc7319ca4680854a30af57daba8dc9120ed4d934953112ebdd9bf353b83af9b1fe768b9df1d31ea62fdaec23427e3ed822253cd3a13917526a2b21f0b610f

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          9c5daca3b0ff5cc8d33a093130d2ff9b

          SHA1

          15f7b1e5a74d3ce4f998f2e14959dc0492cf2adb

          SHA256

          1f605e5030e122d169786878786a2f96002d54c8f107da7d7db8ae8b04e61386

          SHA512

          0b252460b968e17de5c0dfcd628c2a158c81789abec54373b1ad60613628d0cf22f5b63775fd6ea2bdc7d3e39a7b205f1e709618396b10cf9bf0c8233b41328d

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          8cc3e44736c83e2426f9aef106972645

          SHA1

          b031c98b6c62a7e60779b2cb9654312a77908a35

          SHA256

          05b31dff5705a9b9e4f57274b65d10e3d91baacb4a998664476b438547f67563

          SHA512

          0ce04b6ac39ae61222370b08794c9fe69fa1de9d3ad0d7385400ab4cabcc392c09613ac8c781269d74fd02258c68584d297d48a38483389a0905c44edea599c9

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          a382b96b21c46d666056f3e4abec98a6

          SHA1

          a3a340dd7097e5dfa05fc70e24a8a439286b9691

          SHA256

          5a645af9a93faf96fbca5bce43caea5d4d834244b3581ee41ea7a978d458a44d

          SHA512

          c97b5cd2dcc6e492e3710b6d3cb980e97173a562b19917904aa83f39ca36637a24bfcd4992b0769fee0131af821f66e7299a0cfff799e7b30ee7bf9cd3bd9c6a

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          9b0d50580c50b9d7bfc974bc7aa0149c

          SHA1

          c31f683cda70de07d37df444665feba76931c0f7

          SHA256

          cd9bde0c4d026c633454559ccfc2f0745c6081505e90edca685e078165de38b8

          SHA512

          e910dfb3b482dbfcb1bd51dbb80742a2b1268c1465f7a97bc59e0deca1a72008341c5b2dcb1f647b840c58b5679db272da878bb80d32f8a10470efdf1befeae7

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          344B

          MD5

          4810314a8e48af94f1cb0fd5d73ea1b8

          SHA1

          bf1c88f01b63c45fe4e17b030a20c6be3c5b045c

          SHA256

          617aab13f16930aaf1df19ddc5277f59639579e70588171331f16bd0855a20aa

          SHA512

          211c52d3ce021be2665c78ab3ed989890e2b9215664343fea5dbdc7d750223e795b87a3fe61f504871214960e6361a239468dbcee2564f7ad3f5d85f1c199880

        • C:\Users\Admin\AppData\Local\Temp\Cab37D5.tmp

          Filesize

          65KB

          MD5

          ac05d27423a85adc1622c714f2cb6184

          SHA1

          b0fe2b1abddb97837ea0195be70ab2ff14d43198

          SHA256

          c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

          SHA512

          6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

        • C:\Users\Admin\AppData\Local\Temp\Tar38B7.tmp

          Filesize

          177KB

          MD5

          435a9ac180383f9fa094131b173a2f7b

          SHA1

          76944ea657a9db94f9a4bef38f88c46ed4166983

          SHA256

          67dc37ed50b8e63272b49a254a6039ee225974f1d767bb83eb1fd80e759a7c34

          SHA512

          1a6b277611959720a9c71114957620517ad94541302f164eb872bd322292a952409bafb8bc2ac793b16ad5f25d83f8594ccff2b7834e3c2b2b941e6fc84c009a