Overview

overview

7

Static

static

3

nokia s40/Micat.jad

windows7-x64

3

nokia s40/Micat.jad

windows10-2004-x64

3

nokia s40/Micat.jad

windows7-x64

3

nokia s40/Micat.jad

windows10-2004-x64

3

nokia s40/...��.url

windows7-x64

1

nokia s40/...��.url

windows10-2004-x64

1

000Micat.exe

windows7-x64

3

000Micat.exe

windows10-2004-x64

7

000Micat.exe

windows7-x64

3

000Micat.exe

windows10-2004-x64

7

咪客适�...��.xls

windows7-x64

1

咪客适�...��.xls

windows10-2004-x64

1

索爱k750...at.jad

windows7-x64

3

索爱k750...at.jad

windows10-2004-x64

3

索爱k750...at.jad

windows7-x64

3

索爱k750...at.jad

windows10-2004-x64

3

索爱k790...at.jad

windows7-x64

3

索爱k790...at.jad

windows10-2004-x64

3

索爱k790...at.jad

windows7-x64

3

索爱k790...at.jad

windows10-2004-x64

3

Analysis

  • max time kernel
    145s
  • max time network
    148s
  • platform
    windows7_x64
  • resource
    win7-20240611-en
  • resource tags

    arch:x64arch:x86image:win7-20240611-enlocale:en-usos:windows7-x64system
  • submitted
    20/06/2024, 14:37

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    000Micat.exe

  • Size

    211KB

  • MD5

    067add53b711819fef44da05888cdd31

  • SHA1

    34c5f69837c196153ff4002545b0e61731db558d

  • SHA256

    453c75f27cba6fa2fa71b1f43118de6497d1bfc0edf28099d8d4982113ff7301

  • SHA512

    46f951a31c116f55f625477c88a460147150ac8ecade4978d093da2eb8810523f0dbd355da06ac042fcd2d082e503fe574ac287b74fa64aef0546fd752a201c4

  • SSDEEP

    1536:TmkKw3bx6zamSZgxNJETRxwqVewx8a1ccijgc76gevnVlDwQcij6uumcijyhg0El:TmkLNrHANJexwbrgFHug0EOJrnXK

Score
3/10

Malware Config

Signatures

  • Enumerates physical storage devices 1 TTPs

    Attempts to interact with connected storage/optical drive(s).

  • Modifies Internet Explorer settings 1 TTPs 64 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 7 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\000Micat.exe
    "C:\Users\Admin\AppData\Local\Temp\000Micat.exe"
    1⤵
    • Suspicious use of WriteProcessMemory
    PID:2460
    • C:\Program Files\Internet Explorer\iexplore.exe
      "C:\Program Files\Internet Explorer\iexplore.exe" http://wap.micat.cn
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of FindShellTrayWindow
      • Suspicious use of SetWindowsHookEx
      • Suspicious use of WriteProcessMemory
      PID:2292
      • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
        "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2292 CREDAT:275457 /prefetch:2
        3⤵
        • Modifies Internet Explorer settings
        • Suspicious use of SetWindowsHookEx
        PID:2660

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\CF14D1855652602540DFCFECD21854DB_54588CF5E8C00DAFF481CACC7AEEF6DA
          Filesize

          1KB

          MD5

          9859f3006d6867b887556473f9832d4a

          SHA1

          0b5cf78bf9f18c0edc131944a456c52500146a25

          SHA256

          2726298c5825931d08c28eadd0557654c18c3bc30222463dfc886f862196d6f5

          SHA512

          12cbd592d3e2f75a8a8a34b46b43552c8b0791763911d66a16a5f7acb151a30f2fd417cbea26329c60e1365f95fa9ed3e13ed81fb162e4fc14b39c4bf0a1b8d1

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          8d70c0967972d9ee1bd5cf33b3ab4b44

          SHA1

          f874099c169c3aadafc4b96f11098caebbc5a498

          SHA256

          db48c390b7e23129a48cb9cffb5d8cf55d31cdef07a3d0f2f90782d4507a4038

          SHA512

          66e844d81f4d7d12fd353efd0934ba9030ce849bb71a272cc62cb5753f802c3af3ba741ab648e2f85d2d9a2937f7004cd24ab7fe2c1bd3f1166cd34d682bb994

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          658adeb073fc26810c0cb34365131bf9

          SHA1

          732c5fbfb4047799ecbb70bb177b31113a18aece

          SHA256

          1dd19e924b503b4568daa6c1d0122a8f2ef541f116c3ad9dd49523b44b769b22

          SHA512

          d9a93b77902cab492c42c2084f5c27805ccd418cbb75fb6d44d1ddab0b9b718b17ca94f6a7391ada7c922e6ecb40bc1cf1ee6b1db534393d34e63b4962b272cf

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          d3ce96365ace5356f03430eaab98b7d5

          SHA1

          f2e40a7bbba0281b3243a5a1d6643dfb65a292be

          SHA256

          15c313b5518b0b55b09ba3c6a07a61aefce8e183c643b43dc2d6e8580a142ac0

          SHA512

          f51d9ccad0ba06026ef07c14e522ab2c8747e3f324b732ee5b13864abe0d4649c9131cb70aee20a8eb4fd9e0c62527443c4fdbac8330248f73d9b58a008d099a

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          c7739583d772d3a22d4322960f65ef7d

          SHA1

          387204223ab685f0c5635bc2383da71cb83a78ce

          SHA256

          90e6629099e1015dab6cf29cebae6d927f7ac0ca0eacae52c931b4fa2731810f

          SHA512

          c6010c5f27d0d43eee4b8b211b8e4359d595790490273e1c585f0b415a1e59d8b18207dccb474f9b546c9c3c01257bbfba539d7ab9a7f49a5e3875fa9e40458c

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          45342361d9426c1a2f07b60cff9ab38d

          SHA1

          8fe515d9affa045be3bc929896ec52bc87b70da2

          SHA256

          504463abe793f4d904be2fdcaa106bcbc9e4666e2e2cd42a957aba154f7f32de

          SHA512

          3a5eabaec1299d453ad2531a3a7777a1558fbd80d989aaea6b0344fe93753410a9ade6d5c9ee92a0bbe391335815ed3f537f99a865a8f862ee28f3460255782f

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          8f549374369ee9d22f72a5b4472747f0

          SHA1

          2eb69a5a794144afd7a83abd6b134bb535d805b8

          SHA256

          0cbe21a8a95736fd8486b216118b2b452f5b4938b5d8feff66e6c4bd44618dd7

          SHA512

          9bd21a51caf6f8483ea37aefe0ba2ec94964503962219a7f0d08422ee0c9874b1dd4813f9d5383914321fcd73200175619ef4e1c838c242077f508c95b90d273

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          3ac09c6abfae103d96be39cf634bb060

          SHA1

          0acdf655621b520f465f288b595e0d4e37ac4519

          SHA256

          1515c7215b96454e48590b646db7369721d7f6f54c79b5d519c910c16bc0899e

          SHA512

          7b5e9fdf4ab3704c3029e73236df59b462dac9712199a1002c3c53b7865879d95a2c413af9b1b7c98022bcf671641a04646b06194de29326922da9c6dc8db96d

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          b1f106a38e91144b17705a388985fb5f

          SHA1

          f9323822bc6b92943ab4139605ffb5f27489e63a

          SHA256

          61396564d39c70deb3eca84294096cd4529785f7dbb85d6f6326225af5746bf7

          SHA512

          916065074146e44c8d0336cb876f4543ef497e27da41a4970eb406e863525b2826b2514689d1447ce87c62e7378c2275530abf7736d0fe31291aff336620827a

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          a71144c723b42a11311f13fcd6fd396d

          SHA1

          97746ee32af92a2031f018d0c3f0142961dfd630

          SHA256

          9a72ca6a21c600f5c3f40c73a6cd9b606f4e2481fba9486a19beccbc90305a25

          SHA512

          197b23e4f3cae6999d72098e26f6fa92361687597d218cc78521cd0d75f492165ce77966f4f6bce80e69c775656bbd8736b96ff6293914c5a0430c99707cc809

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          dc0166726a332550ce484b5d1e3e45e3

          SHA1

          d3ba47c3c9f0eadc69bcd0ea4368424eb47828b2

          SHA256

          5f3bc60e38c9b45149e3db153389b8793d9ee11f9cab4dca6230ac65043d16f7

          SHA512

          fea171fe0bb9ba291d434ea2093e28d89a93c18b5e7f9509ad9eb17660a9753648fc4824a268b38033d1c19cfcbaa9a01a86dc589485f49c695abf679168863d

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          9d3a750f1ab08f0f68c6696c5b153e2c

          SHA1

          f2ef590577f70698e07cac08f7fce4a5bc7b4001

          SHA256

          20dfe78eb17861fd3675cecf46be3c1418d8ebbe959409631bd7cedceb244b7a

          SHA512

          0ad67e03a7a11d32eee6b956b7114c2567595a6ac93ab936115e3f43be740c75ddb672c8655eae874758fc0a5df05fbe78b9d1cabfa8f8b31a192dd863498c56

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          cedb8274ba71f2542cef2b195eb70851

          SHA1

          ec985cccf8ae65dc740a1091b226f27902af31f2

          SHA256

          d37141f7e388b941f9ee1890fa482f12120036fb3c3fc9c15b0bec044abe50c0

          SHA512

          74d875311479d131832cd97fa784c6ea8b122c9384d926c9b4b8e772c19a11bd33527fe32bb762d83b5668a095b7e44ba78c0473d716bcaf77824b30809d0f9d

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          29a1855e8b4a697f4eb478e4393b0629

          SHA1

          966172eac62a59661001cad2d46d51750b11f96f

          SHA256

          d97267fa311294ee046e49a79e382981e504d8fda5ac141cd1e3d1afed1718ea

          SHA512

          1d1c30de7efa4b790976856731f48ba0c17a862d6e1d9b275af6b70c16e52ae6e553a81c63250f0432071e60fdea45dc99e66041d7c5ddd653f16e9b1787b0f7

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          7224ad7df874821dae3339e8d5d62f54

          SHA1

          333f1b99feb643bb69b0f9b4834fb6eaa4a583d1

          SHA256

          a3e3eef1adf0179ac9491e25378e781417ac0d21dd4f4634818338fd0afc50e8

          SHA512

          dc86786cb4b1e4031f1e882ec4d023270c5f1db26e2cec73dff00de27bb2961568fe3d3182c74f87294aa1eb19eb9b99e5a08ab9fe4568012d7e8861a4fe4dd2

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          219212b76e8bfee41199d209fe625f74

          SHA1

          8fc0ddb9b13153e445cfb4edc2da6e6a1e4718ff

          SHA256

          9201a7782203d11192ea87a5c294dc23cc96eacbd8efd9110f057006af105dd2

          SHA512

          780867ef10858878bdf0110a9868a8adb82408e6cbbaf57b74fe183f032d0f70d8a182bbf2dc2c7fc780c0fb8de506665e84978a72165572f216224810bae117

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          6d30ac7973031640ee6366d287b18d72

          SHA1

          a2a80e4a86076af03705b5595749a7af08a0b0e6

          SHA256

          824fb1de034ee6edd99134f16802dcf921f1bd01f3edc534aefb9170d217ae85

          SHA512

          a26c64777cbb0b50311e7d514e3107197ac1f57ca47579fef6810e5c8a6d3168f51efc3c6f3ff589f45d0f9f9c5493933203f3dfb698b699aed836f40ec9a1e9

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\CF14D1855652602540DFCFECD21854DB_54588CF5E8C00DAFF481CACC7AEEF6DA
          Filesize

          532B

          MD5

          a2a474859b3d80e2faf1fa910495851b

          SHA1

          022819f9d85b98d92358a0dad0cc12d5df7ad4cc

          SHA256

          8e862259ade4db7e5fe3d42d6ebfa4496cf8ac2bce9dad7f36276cbc4a9f79f7

          SHA512

          5db15410459320c7bb274c5948237f1a05efd5332b114a1216f957b42897cd39cc7c523ea3411a38e0962a2ac8ae66f597532e423602ddf44becb7d12b2aec6e

          Download Submit

        • C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\SQ0D0320\wanwang.aliyun[1].xml
          Filesize

          365B

          MD5

          750b468a1fd7a84c5e438fb30810247f

          SHA1

          06cabc94566e9a5fe6221af31eddde1a63f95311

          SHA256

          913cc12c1c8531944441749fc7fea3f58cd400f3ef2393503fd3629cf0a765c1

          SHA512

          24fb3552ef801d09113cb74e346932d0e8e7489712cba75fe7c1856f47db21b7c6000dc4deabf3b15bdbe299d278d43b5bccf9eec10ca5f3dec70de004662a96

          Download Submit

        • C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\SQ0D0320\wanwang.aliyun[1].xml
          Filesize

          13B

          MD5

          c1ddea3ef6bbef3e7060a1a9ad89e4c5

          SHA1

          35e3224fcbd3e1af306f2b6a2c6bbea9b0867966

          SHA256

          b71e4d17274636b97179ba2d97c742735b6510eb54f22893d3a2daff2ceb28db

          SHA512

          6be8cec7c862afae5b37aa32dc5bb45912881a3276606da41bf808a4ef92c318b355e616bf45a257b995520d72b7c08752c0be445dceade5cf79f73480910fed

          Download Submit

        • C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\SQ0D0320\wanwang.aliyun[1].xml
          Filesize

          143B

          MD5

          abc5973cd33166220da92ba05bd47222

          SHA1

          8758abf117a7aabbe2e6a7ccb81fc4248c4f69fa

          SHA256

          d92992959864a0809390efde22695b6031668da4a752e96eb4383de56c6ade45

          SHA512

          f3888402ead2a800ae5eda0d6d514f1055d71647097fb94742589e7a242e6dfb59a71021bf1af1e16021d36440d2a8490a24ac9b627a5008ea7f37361b1d1f59

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\Cab55FC.tmp
          Filesize

          70KB

          MD5

          49aebf8cbd62d92ac215b2923fb1b9f5

          SHA1

          1723be06719828dda65ad804298d0431f6aff976

          SHA256

          b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

          SHA512

          bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\Tar761D.tmp
          Filesize

          181KB

          MD5

          4ea6026cf93ec6338144661bf1202cd1

          SHA1

          a1dec9044f750ad887935a01430bf49322fbdcb7

          SHA256

          8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

          SHA512

          6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

          Download Submit

        • memory/2460-2-0x000007FEF4DA0000-0x000007FEF573D000-memory.dmp

          Filesize

          9.6MB

          Download

        • memory/2460-1-0x000007FEF4DA0000-0x000007FEF573D000-memory.dmp

          Filesize

          9.6MB

          Download

        • memory/2460-0-0x000007FEF505E000-0x000007FEF505F000-memory.dmp

          Filesize

          4KB

          Download

        • memory/2460-3-0x000007FEF4DA0000-0x000007FEF573D000-memory.dmp

          Filesize

          9.6MB

          Download

        • memory/2460-4-0x000007FEF4DA0000-0x000007FEF573D000-memory.dmp

          Filesize

          9.6MB

          Download