Overview

overview

4

Static

static

1

URLScan

urlscan

1

http://t-4xygcr16469...

windows10-2004-x64

1

http://t-4xygcr16469...

windows7-x64

3

http://t-4xygcr16469...

windows10-1703-x64

4

http://t-4xygcr16469...

windows10-2004-x64

3

http://t-4xygcr16469...

windows11-21h2-x64

3

Analysis

  • max time kernel
    1565s
  • max time network
    1566s
  • platform
    windows7_x64
  • resource
    win7-20240903-en
  • resource tags

    arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
  • submitted
    30/09/2024, 22:33

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    http://t-4xygcr16469gajT372akzwnwrpun1284AZZZOTSGHYYSVMK53AGQF27527a14.asd.globalpathshala.edu.np

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 8 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" http://t-4xygcr16469gajT372akzwnwrpun1284AZZZOTSGHYYSVMK53AGQF27527a14.asd.globalpathshala.edu.np
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1364
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1364 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:1900

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    101df4648d54f9a379c6237e258078af

    SHA1

    af139801a667ed82528a19fdb5e8c7e6a163c19f

    SHA256

    afa1f02dc23ab0af4ade7b1616753c58495662e82ad329affff1509eed3c7045

    SHA512

    8c57f14471ae30e7d2dc5fc03b8278f90f7d1e82e74e77bea4775028bd281e080f08d2738545392ae4620cd8a6e00688e24f02387fed2caa585d64ab7f6f2f86

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    e55b60491f62c5bbb04e255aeb9f17e0

    SHA1

    ba9d78cceacb5746650eb57cb6f2be35bd36feaa

    SHA256

    96145bd45e62f30a70139ee18858ef89a9bd7e4e9edb920cfc8eed220df6ae41

    SHA512

    e81dff38b44532d013c33db887ee30852eb3e5f244011484dd0b1971884eea8db0b9162a0570e29cc49a5058b3085e611e471da35f94e44d89536ed230cc3c2d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    ff01e88fdb6b5a6bdfc4e383b157b39b

    SHA1

    b58b8c5295b79a2af79357dd23c8775d293e4573

    SHA256

    4af079e2a933f4ca0973586c137f7af4c5e7bd6209f712448388bcddada1fa99

    SHA512

    ef5b3ab522fc48b5f896ebf08efc0429618b380313309577f0f6b385231019ca864bbdec9957c3c7cf0a2b24f3a2cadeb1dd2378aaade3c3253c67009de34584

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    d911941381d9bea13c4fedfb6da6ab1b

    SHA1

    21133d2bf18c693e803578d105512fd3c4be9e73

    SHA256

    730c7a9740e4c9a199b9a364a40d76f0d4fa0c595e876412694ba1d006831072

    SHA512

    eb816a7662b84d55f771de08609b84e7f296be3472865b114f2678d7f410b1c273d2c92673d598b9a8621617efccb83defcec973aeac9adc6620dc90cf416532

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    81f2f3cd690becc77d8f79d9c855046e

    SHA1

    df3fc862c1b7c2e1e85b41154ab210f6bcea4f5c

    SHA256

    190b484f95ad11fece8186a748e6a80aa9b68431d176d1db46174b5eb1acd35c

    SHA512

    47e07a67dca3f9ae7fc89f2a4799322b65db7cf712e03fb78b97fd1381a762435e5496ba7861efa703d1efd02e6e4c6a800be2276b70ad49b28da9287f9d5e1a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    d6fe31495ab8019e5c5957fedc242458

    SHA1

    69713984b6c688ed51208d13799012db121ad5e8

    SHA256

    602e81eee1ef63a68f3f73ec4f04af6e95f0a6ad3ca377dec7a89af6749f42bf

    SHA512

    ca564d6aebc8462159117b051024edda5cd0890b72ee78d481742ccb380b98d70683210a4fc150e54da7007b73a310610389421b5979ff54c373466a75109047

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    df66f62c4311233ebf2449c0045d588c

    SHA1

    c20bdbd9d185a0c72054ba94f9e89e643e638cca

    SHA256

    3aff7e694b228b3427a843f7fb889b7b5e91914f2f1208c1bb7878fc1d294c37

    SHA512

    65041f66d1177877f006395b80963672259a1240f73223069a27978f379446a4917742dc8384631dccbc67623270a9dc0ea7e28da9d0ade92654c5577f85bc73

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    aa2bb433f0a4293ad9a58e48446909a7

    SHA1

    c4812fa4ccb9062f95ab9091aee6c4697638117c

    SHA256

    8bc7bc5568fb2e77702963ae054f892706ce8504c91af82f53c584c708707c73

    SHA512

    cb4c81249edd9c457ad82451d720166481f02af323fe84db07abf6957264c1ed08bb98843a2db96442660dd119f2d8ec424479896d8171d1f0bdd5ac7fc44355

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    ea0986a3306889bd0b08fb2c5880e1a5

    SHA1

    a7be40b01252adedafeb3fff3622174984eef83a

    SHA256

    f41c72a3fe8553066cf50c6c2c6dc0ffaa05826c9a52938d115fcc34d643fd7d

    SHA512

    b291282a737f83dbda06b6be088f1f151dab0aa4fbeb0112f0460982674f5faf46107bc4cc2185d8e8fbd2c86da88da685b4ecf5d91e149fe349cc9590b4877b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    1c6887101ec9002b6701a4fe574bfdce

    SHA1

    86890e60f3525ab1aa6580330e5db9d0bcc56ae5

    SHA256

    ed5fadc6d6eb0fc7c95320af4c85c9454b26754b58757ab60f5550401636cef3

    SHA512

    57c2571839ff21d5fdd5ebcfafc6fd22930da8ba9d447540769fd34168d287f5fb6ff2eb8ae6192a1ea04b2ddd7f84eb34199026e1438c95609074125bb33145

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    e3899cb73fb65b817c4dd5e8532a9983

    SHA1

    fa2e098a25dee172b0f312b4182562e0b365c4d7

    SHA256

    a051a20f45cffe05251dca68bd66663aead703743174a4680aff9a4f1db7790a

    SHA512

    d50051f681ef685b79299b0a925ab84a55f7a29d60fac9d2f4851e94df03202d2b45c83ec2830b09a473405704d8f685b6c3fa698ba7b9bebdea22eaad83ab65

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    4113ab4d2227e35844a3aac542935e21

    SHA1

    e6490611709da3ae74b55bf60746c346036a95ad

    SHA256

    50bee31e5fcfb03c45abcec1ca45e7941f1c80a84757222e393251fc4a90d39a

    SHA512

    28073675401ba29a56269aef88455f26f8513104b55fe8796ec7afdd1ab47f36613af23b4c3dba8dbaad369e9bfcdd8b8ab4e5b45cbc96ecc4545173d5dc3f81

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    ba338166e4c62f13459badf2b53cdfbb

    SHA1

    d0e0fe589ac929952de8af7e31de90953e00d29e

    SHA256

    3d41334b9dc8b521bc39c6988f3301705544878341a3ef3aaa3eb217eb9537eb

    SHA512

    e9f55d2103fbeed256362c5844a66eec2dacbfc335a6f00fd80db68f98e1aec2a8ef2ae6c5284413ca894c9286982e76ee768227ab6598a11807c1bef1475700

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    cb03272913871bccd6e88a002be04ec3

    SHA1

    aaf8631a7f482ce0cd38e0d34bd5035e537a03e1

    SHA256

    7d6ffb948f9e412354c7f50a6147d5b8718cefb8189e4f80ac1522be69a86c40

    SHA512

    9c4855fad645ddd938f62e2bfcfcb0be69d592ecd45f6b946731c73a04ba40037e268574775023f4e264efd447916563ae24a3fc4988fbd0cf19fc55bc4a1c06

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    f6d456a5934f76617534347827bc2f9e

    SHA1

    fe27b5705b6161cf892090ba1301c3053c89420a

    SHA256

    204bf821fc3eb2a504d95a8e4c361ababb82df7f58acda60f136e2afd79035a6

    SHA512

    cb8b7b01cf84f20e3c1b3a148cdd762043e7fdf54220eeca82e1af73c52624c4242576315998c3af57b8fc58e37afaa085fc429f15c8be8e801c8d56755ac7fa

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    fb8eb52f41a4bc9b7d021d021865bba1

    SHA1

    191140c34bd3770a85778ff7ea7e0e91dcbc0e8b

    SHA256

    9603b9e11ee776435ac950a00e1fdff8ae4f25f35f9825327598ce6a55dcfefd

    SHA512

    2d1caafe31fcc0bd5c2d077e5a6e58ae0ab0e53506d77506d6b4bf8e28626fe479e2016f2ef932390803b5bf1e0b5ad59c59589ed882f0b3f3e51904a5226c86

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabBA2D.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarBA8F.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit