Analysis

  • max time kernel
    93s
  • max time network
    124s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20240426-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20240426-enlocale:en-usos:windows10-2004-x64system
  • submitted
    09/06/2024, 07:32

General

  • Target

    http://Gigabite.com

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 55 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 3 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" http://Gigabite.com
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:4036
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:4036 CREDAT:17410 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2652

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\7423F88C7F265F0DEFC08EA88C3BDE45_AA1E8580D4EBC816148CE81268683776

    Filesize

    471B

    MD5

    2e4c622928c87b27dbe1fce59908903e

    SHA1

    d9523243f087a1977c8688e4809a7afe4ce602e0

    SHA256

    1bfff9beefb632ccbcd61cc1db292cdbcdd5c58a7dba56856958b3a3ab4cc04e

    SHA512

    b8abf9937082e8157e3bb6819d9896391f909851dfd2ab46abd6c53f9c29a2c4336ed7103e58f4c7a9de5401fd77375853f3301e1935a201170370daba18f334

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\7423F88C7F265F0DEFC08EA88C3BDE45_AA1E8580D4EBC816148CE81268683776

    Filesize

    404B

    MD5

    498e4d0b0da1d6537035b902950eeab7

    SHA1

    202545de5c6a8eea4027905bf50c683c0215c8ee

    SHA256

    99219a8e09b0fb3a1cbdabef9df8167e7a174bc62d301d8a11705b87caa6d454

    SHA512

    b6fae096ffb5af89f3a867bd24dc69057b4b23f2f87164ddc28d8419536d05e72cdc3de3215a722de85be8543c96a872e8c6bd1323a7038b592a3eb1b48af63d

  • C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\VersionManager\verA3B2.tmp

    Filesize

    15KB

    MD5

    1a545d0052b581fbb2ab4c52133846bc

    SHA1

    62f3266a9b9925cd6d98658b92adec673cbe3dd3

    SHA256

    557472aeaebf4c1c800b9df14c190f66d62cbabb011300dbedde2dcddd27a6c1

    SHA512

    bd326d111589d87cd6d019378ec725ac9ac7ad4c36f22453941f7d52f90b747ede4783a83dfff6cae1b3bb46690ad49cffa77f2afda019b22863ac485b406e8d

  • C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\imagestore\zm934n9\imagestore.dat

    Filesize

    15KB

    MD5

    28bbd79490dd4cc1c9e6e002a7699390

    SHA1

    a6e605119cf588c064740ae1953bbdb3c157a2d8

    SHA256

    76e9982baf3c80dd05cddd45dfcceb3a30e38f11ea24273ef01dd551127828df

    SHA512

    c3e23cafe48b16d35c4a451549bc1a3131532a2d999afeaca42f23268effc8dd83a7e58d233d82d030c8daad2411f5755acb2f6644dfeff0f181166112642429

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\INetCache\IE\79ZXHV21\favicon[1].ico

    Filesize

    14KB

    MD5

    6ee390115e67276c67e99640e898138d

    SHA1

    8f39db90efab0777ea39d0a95ed95cd5ad1f3bb6

    SHA256

    de476d20bbfd56a817bef1ff073d9317bf8cdd7ea58f8e60619d82bd4788887d

    SHA512

    8eba31c1cfa44d098ce78f5c7a7dc8c5b24244c54f1e6f8c53c3248c32c6e85e64c6c6d7abf56cdadb87fd6b50992dc8b8d31f04496e1e8d686822997af94698

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\INetCache\IE\9HVBWIRO\android-chrome-192x192[1].webp

    Filesize

    7KB

    MD5

    11ff6cf169375f00270ae2cfb5e4d2ad

    SHA1

    346f38d6b580c84d9e666003a94bed388535b6a6

    SHA256

    1dae3b741120aa7a1872b1187d032114937341a41ac4f2b5dfbc06864a5caad6

    SHA512

    f0a9c48165d895b60ab49d90c01865dff2aaa26301f9b28f206de0f5bebc34e6ed07f49339b93ba7c02aeb1dffe3976da104d3c0093803f5ec7ecb9e131920aa

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\INetCache\IE\9HVBWIRO\suggestions[1].en-US

    Filesize

    17KB

    MD5

    5a34cb996293fde2cb7a4ac89587393a

    SHA1

    3c96c993500690d1a77873cd62bc639b3a10653f

    SHA256

    c6a5377cbc07eece33790cfc70572e12c7a48ad8296be25c0cc805a1f384dbad

    SHA512

    e1b7d0107733f81937415104e70f68b1be6fd0ca65dccf4ff72637943d44278d3a77f704aedff59d2dbc0d56a609b2590c8ec0dd6bc48ab30f1dad0c07a0a3ee