Overview

overview

1

Static

static

1

URLScan

urlscan

https://kirsten1gg1g...

windows7-x64

1

https://kirsten1gg1g...

windows10-1703-x64

1

https://kirsten1gg1g...

windows10-2004-x64

1

https://kirsten1gg1g...

windows11-21h2-x64

1

Analysis

  • max time kernel
    16s
  • max time network
    27s
  • platform
    windows7_x64
  • resource
    win7-20231129-en
  • resource tags

    arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
  • submitted
    02-06-2024 20:47

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    https://kirsten1gg1g.de/invite/i=16503

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 33 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" https://kirsten1gg1g.de/invite/i=16503
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2380
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2380 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:940

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\3C428B1A3E5F57D887EC4B864FAC5DCC
    Filesize

    914B

    MD5

    e4a68ac854ac5242460afd72481b2a44

    SHA1

    df3c24f9bfd666761b268073fe06d1cc8d4f82a4

    SHA256

    cb3ccbb76031e5e0138f8dd39a23f9de47ffc35e43c1144cea27d46a5ab1cb5f

    SHA512

    5622207e1ba285f172756f6019af92ac808ed63286e24dfecc1e79873fb5d140f1ceb7133f2476e89a5f75f711f9813a9fbb8fd5287f64adfdcc53b864f9bdc5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\F0ACCF77CDCBFF39F6191887F6D2D357
    Filesize

    1KB

    MD5

    a266bb7dcc38a562631361bbf61dd11b

    SHA1

    3b1efd3a66ea28b16697394703a72ca340a05bd5

    SHA256

    df545bf919a2439c36983b54cdfc903dfa4f37d3996d8d84b4c31eec6f3c163e

    SHA512

    0da8ef4f8f6ed3d16d2bc8eb816b9e6e1345dfe2d91160196c47e6149a1d6aedaafadcefd66acdea7f72dcf0832770192ceac15b0c559c4ccc2c0e5581d5aefc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\3C428B1A3E5F57D887EC4B864FAC5DCC
    Filesize

    252B

    MD5

    0df653c8c47939121dc723288eececfd

    SHA1

    8cd902e85ceef10fba2caa30daf84d2bfe9c152d

    SHA256

    e4633ad6e94851e4b5adc8c9d9acb79af389077dbf9ba2dedb15e86047f1b86f

    SHA512

    83c1fbda839ac26bdb829cba9a71784d1167cc9de4d571d68e6e242d66d7dc172bae18b97fa8c8a1e48396c00da488cfe163d965c09d7aaf2e03f19252283e06

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    eee4d131fcf780fc17707070344c268e

    SHA1

    007306157250cdb9c68984e913ab61880cb9586b

    SHA256

    c674d0a5388be78629ca02d5c0d8f16e8b6abec7bbdacf19d273f1a77b60b680

    SHA512

    25dff822f14eef3263eb42c02dbad527f61c6b023a215d34b5779e4d4382dbe786ffb9588ae38e56e1de326b9f273330e51513af9edfd29b05f59489d37431d6

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    8019911fddf955417490d23735d1d438

    SHA1

    4aa87a9c01189078233d9def54afc50f348f1b49

    SHA256

    35b3e53c4da514fc1f2dd98c013ac940211fd921c5c5338a8102e54ee3df9417

    SHA512

    4a7e9b0f970ff6294e4de710bfea021d192496c9880b3b2fdb0d3b2eefe7ed9ae00afe756f0cb1c80bed732030755c9bf4e322c157c65fb75345ec2201a535d5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    8e8a08ffe1f240c4eb22fa99a7725c85

    SHA1

    43959a145695bea5b0d9a4967a8fdc071a072e90

    SHA256

    8d48b930b8ac969f84f0b4e74b593f0b645243dd52bf2bd3c722010df4d6d9ba

    SHA512

    1947463b24a05042c3047753f7e5305dea56ea30490632944c79d79d714f0c12d88fcb34285b2b8a6fe2c42455837d414ab1a635c62553fad1d7c007efdb743b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    1803fbcf06620f732e1b6188e55e80fe

    SHA1

    e6c9b6e7253d291fc45837584b32dcab3ed61409

    SHA256

    6f461e3262c136749d2416b2665264730ae08a7c573ba3a3403896efcd85dd93

    SHA512

    15fc25d33bf8facc1aa85bd72b353d3654ae6c81d9ac65434f429c51c3e989c69b9e1cc50c17d465290c6df8bf7213f552baf9876bf139080ae27bd7de459723

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    c8c7ead07e9bf22ab6729155514c2a8c

    SHA1

    d66e0b0a0cc9e7685ff21436bb74ead3715f7b90

    SHA256

    0fbf1719d3cb485c88469e97d079dbc63a936f7882776e8ee46df73caa4be5a4

    SHA512

    2d5b983e4c20d4df010c417a5af1c981def4b7b3d78b28f12b43d8991458e796b8d94d5da45377783d42ba42585ef51f251587aaf994e4eae9414cdae9359b9c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    7e68eef95e272700cc480f41a432c415

    SHA1

    f8621ac870276be48c2902790ab6adb5d122bcb4

    SHA256

    52352a25b6ad09ffdccf5641dd0e574933787b2c40fe700b2774b857db372523

    SHA512

    51fb3242d4368c7467d462c7d80bf8b286bd994d0597d67ea09bdc92eacaef429f2562458348fb4544377430b0b78e77620b469f51a1c11424433acba26826f8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    e3e4fcb302f4a6bdac142b4bef3839db

    SHA1

    2caaaf473474f607502b3947d83b62d6f6377bbd

    SHA256

    3c87e52a3f3b2ee2839c116741a7138964424ac686ea6b891d652efde6c29466

    SHA512

    777a79158b3541994bcced086f42be799c380fa722a4e004b760f8d96ac793a19839e58c54e933a756ea61c2a2b85c7fd63c804a989f6421fab09a4198971bef

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    17e07d102c467b6c9fa6b8446dc86bc9

    SHA1

    35f3c7e1a093a5e2a688283f2fee6569d57ce644

    SHA256

    12e694c85df075d9f1c9142e9c4cacc7a2dfb31804f5e933306249fcde04a50f

    SHA512

    87ec57eaf4b3a4cc65de11a56ec6481ab718b38cfb41024b334bc69128600f588bb0d4931e8101f4c6dbd9c06f43e8b26d470d2c209e4a95879843a5feaf5474

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    6f8dd08b238a92f8929cdf4c784f9b46

    SHA1

    dd84d18926dd7d19c8443015dfc795f0f21b5de3

    SHA256

    8560d2fe1165ddcf74f7a4634f2ff9b1e802dea3a1edcbe83020525e30336449

    SHA512

    7bcfabc626e6ddf29f448271ab5920328ce4752c00cd71d6db6b8f6580a01a6ad11368a149ed1afbceba6025b794a5cbd4c623599997a92088039f28804d6272

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    763c3c7e281628a0f3b2e735e7d79f4b

    SHA1

    96f3c95d9dead2bdc4883f9fb27895a98885d2ef

    SHA256

    55e6aed15a21615d839001dd6a39bc34fbd0f95bbc37f185e123b5e1b4907a25

    SHA512

    9f0da5deba20ffac890a6b3516d76918debd88b169b020cbe8412ed7b664d8601a41b9f36bda2a1129827f42696d2a75527fbc95d0a34ae57136151ed56e9d0f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    c3ec6750b17a3bc2783ad6787f7ea683

    SHA1

    a73e5dfed51de9d8deb9da6dddea2c5f5436b29c

    SHA256

    ba4cd75158afb7c592c224229f96e27c86daea3e2be80d6479e979198edac1ac

    SHA512

    9e8f1f1b0b71f7362613a7ab5070341d7cc97610fd09601ba339a1b0bef8283587997eba68b8efd59c298d9a6d4c80bc1567a47e9a89d1bdd0e7720aeed5c732

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    13079aeab3b2f13774eab0b5a15409e5

    SHA1

    c84caea320b18d9d2a4a58c6a6ce4d9a878089d0

    SHA256

    fe33aece4ee119fd0accfdf9b52dcf9f86b5b58017bfd15cb67b5daef08f61c9

    SHA512

    1dd871c58a851c12758e6f069ef2cceda677823d55975c6acfd83264dba49b75d17c7a048e46c42fedcb96d3b4035653226caaefaca0c507140c5f1b8a9f9548

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    3dfa550b4234b9a32bf8b05cbfc174d3

    SHA1

    91f8e00ef6dd354dbb7b34a64d4b1a6d8d311dd4

    SHA256

    33e0e282ddcac3f17efc874baa7079034a058f2fdca4c1fa0e63ba143dbbb029

    SHA512

    b536b64543fbbe737fe4b361477ae40715ea8dd650cf9c99c1805883b0743125a3bf7512d73be07dadd51ecc5325ff46cd781e7f105c3924bf87b63daae085ac

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    8a66e321ec13ad2d1eccbfd727a21f41

    SHA1

    84558319260c8cc50b1fe6be90456e319efe5ee6

    SHA256

    b3bfabd4555f040acc25eb88b51d00481a489962adedce36e58003f4c93cf002

    SHA512

    dcc233b2ed27a217d2bab750c027d55060ddd1cdcb1842bc4608c3e8b47b73bd5a8365de2f9b1602e7313723c15d249ecdf14ca42267c012c2c3a86810058e40

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    8debdb7dde436293b662eac2b09c3cd9

    SHA1

    8150820d8041b810e03414b7c845ef94f4753ca6

    SHA256

    b5aa06bf0468b3cb9c91bd18563e45badb9c430af3b6d924223c010fd28f39f6

    SHA512

    442b1c3bb4503ee367211b10f15cdf98b9dc624c9bd651a80c1d9a3ca6bda9c0370cc86ff540a93f65e4ba3d49018929504d765e0b6539db1cac398491bc7106

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    aa58337e94238df0045a2417f864d0af

    SHA1

    67b58aeb26e8346378c6b230f62e9fcbc890e8d0

    SHA256

    aa150cb20520f9d9ab660e923ff9faab6257c4c2bbebdf1d148240799bda3e3b

    SHA512

    60a3e93bf8f7a8f84d120b33d29bbe1a644f1f921d2be01e534a655e616a4ac1ae7340446b333c2924f0d0966bf0e98a4ee8bd43c1a1b8e0b393dc9e7f7ac4ec

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    15e81d19ad7735c9402fcb212610444e

    SHA1

    9d37e3aed0d496b0e1328eaae3acf26e0bcc5298

    SHA256

    0ba7723cf498a8082677cdfc40ea1eaa0b226a7c7e3a6168c45bba6ed4d2f23b

    SHA512

    d90c5b7e5e2730f3e522e4344a7bf3f4ee09ed8b373892d0fcf4524cb2659728572292c0896d3478eb69674f2181188825826d5bf0dc6913e31018b1455954f2

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    32c57d9d12bb9b354ed58f6f57e012f7

    SHA1

    629016ac8c8e5545853b4f7877a5ff4ee5a075fb

    SHA256

    a8306afdc77fb5cdcd0247cefbe599e951fa1895c22b123cb6a240b48d097d6b

    SHA512

    a64610c8af7b0cd300cc0e2ee34cf37f6bc273676b694f48f5a73183e06a6fca311215ce02c5e6861901c2cca8810423c8b9e28dc4d67ed4070e0690cb6d6d34

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    742d3bfc671075ac64e99a356fd1caed

    SHA1

    69fb28860d474551c63d5495cd278ed18c0a18e6

    SHA256

    bd0bff59c7b5a3055e794a186d15c0d75cae74cfa56622b5d159297d1f721b33

    SHA512

    60c12f92a72e2cb32808df22d91a1c0f769d90463a6ba580a6f2a12b0aace97700109e671221acad7c5d841a0aa44a5e557fee40aacd95467e221e500ff30aa6

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F0ACCF77CDCBFF39F6191887F6D2D357
    Filesize

    242B

    MD5

    b2321238cfe10661d2df21a600de1da1

    SHA1

    ec543b9bb26e2bba42df9ed19b081ab8a39ad379

    SHA256

    0bdd2d7224600f140290254a643aa389f428a3d4fbeb82721ff526920151a1f7

    SHA512

    a6323e638334b9e2bdb63c6c91dc2d826c305602ca773a7a67ca005bb758a30278fd80d2444d74e21248c50b7f21633911104977afc904c524b8387726fb4f45

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\Internet Explorer\Services\search_{0633EE93-D776-472f-A0FF-E1416B8B2E3A}.ico
    Filesize

    4KB

    MD5

    da597791be3b6e732f0bc8b20e38ee62

    SHA1

    1125c45d285c360542027d7554a5c442288974de

    SHA256

    5b2c34b3c4e8dd898b664dba6c3786e2ff9869eff55d673aa48361f11325ed07

    SHA512

    d8dc8358727590a1ed74dc70356aedc0499552c2dc0cd4f7a01853dd85ceb3aead5fbdc7c75d7da36db6af2448ce5abdff64cebdca3533ecad953c061a9b338e

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\imagestore\s8rbov0\imagestore.dat
    Filesize

    1KB

    MD5

    19bbcd0daf1bb2ea4a5a04edbb107b1b

    SHA1

    81c968fdd76734edd42554bfecee3f65e14bbd97

    SHA256

    46c059b6103554f5092d5e942eb90b079cf4ed38b4e455be65dacf8627dfd66f

    SHA512

    9623cf54a7f0768b76b4236aa5c5888105336a9646379b4d9fa402d8b6055e7b37fd0ee81c7acaa8d2f8f5e466a810169209ee90a2054a3297cd007ea956b41a

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\3D0OBDZY\favicon[1].htm
    Filesize

    2KB

    MD5

    38a4272015850e878030e85af5a36077

    SHA1

    22596c3e696ed0dd85916c84b871cf6f85623ac2

    SHA256

    4db5b10b8cf91768b9294588507c0e6c425fd207548e382428f423ded9a21bdb

    SHA512

    8f5a76d7c0db2865c05b341e34cdcd1edeca02b02ba34b48d212df54d08e1abdf26aac026c60c5be2ff96ab9bf274dffc5e76fb192935c7fb21c4fc9745307cf

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\FA58CL7I\favicon-32x32[1].png
    Filesize

    1KB

    MD5

    98b614336d9a12cb3f7bedb001da6fca

    SHA1

    80e6b1159707dd27cccd335831483617a77c9e1b

    SHA256

    02f64bb479a7bd0d7ad052123fcce9c7daf6200f9fb4dccdf5337dbe6968b2a8

    SHA512

    f7dda16b2f1d6b27ba52e4694153a1230a176cdd1e1084a1575d9227c433713b47cdc58c5ea94b04d10e8a3515ff9a2e84beae757271974e1c66be7ee8acd1ae

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab1352.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar14BE.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit