Automated Malware Analysis IOC Report for

Files

File Path

Type

Processes

Path

Cmdline

Malicious

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized "about:blank"

Details

Is windows:	true
Is dropped:	false
PID:	5356
Target ID:	0
Parent PID:	5040
Name:	chrome.exe
Path:	C:\Program Files\Google\Chrome\Application\chrome.exe
Commandline:	"C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized "about:blank"
Size:	3242272
MD5:	45DE480806D1B5D462A7DDE4DCEFC4E4
Time:	22:41:25
Date:	16/04/2024
Reason:	newprocess
Reputation:	low
Is admin:	true
Is elevated:	true
Modulebase:	0x7ff76e190000
Modulesize:	3325952
Wow64:	false

Signature Hits	Behavior Group	Mitre Attack
Spawns processes	System Summary	Process Injection

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2500 --field-trial-handle=2456,i,735129319381295614,10823576887298295822,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8

Details

Is windows:	true
Is dropped:	false
PID:	2228
Target ID:	2
Parent PID:	5356
Name:	chrome.exe
Path:	C:\Program Files\Google\Chrome\Application\chrome.exe
Commandline:	"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2500 --field-trial-handle=2456,i,735129319381295614,10823576887298295822,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8
Size:	3242272
MD5:	45DE480806D1B5D462A7DDE4DCEFC4E4
Time:	22:41:27
Date:	16/04/2024
Reason:	newprocess
Reputation:	low
Is admin:	true
Is elevated:	true
Modulebase:	0x7ff76e190000
Modulesize:	3325952
Wow64:	false

Signature Hits	Behavior Group	Mitre Attack
Spawns processes	System Summary	Process Injection

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" "https://hirerightuk.satmetrix.com/surveyui/?p=MTIAAAAAAAAAAAAAvl4NBEHfdYlutqHtsOUT5NEAFxtg5udmncA4libMkqGau3JT%2BIIhllM%2BsS1F%2B2Cx8tijQaTYHJTl195eQde4AhH42MpEwiMHfKFFvGjmxEBr5DydFe%2BvjIveleEPdhITjfZ%2FW93V59uW8xPtWaE0CFLlkA%3D%3D&type=invite&selectedLanguage=en_US"

Details

Is windows:	true
Is dropped:	false
PID:	6404
Target ID:	3
Parent PID:	5040
Name:	chrome.exe
Path:	C:\Program Files\Google\Chrome\Application\chrome.exe
Commandline:	"C:\Program Files\Google\Chrome\Application\chrome.exe" "https://hirerightuk.satmetrix.com/surveyui/?p=MTIAAAAAAAAAAAAAvl4NBEHfdYlutqHtsOUT5NEAFxtg5udmncA4libMkqGau3JT%2BIIhllM%2BsS1F%2B2Cx8tijQaTYHJTl195eQde4AhH42MpEwiMHfKFFvGjmxEBr5DydFe%2BvjIveleEPdhITjfZ%2FW93V59uW8xPtWaE0CFLlkA%3D%3D&type=invite&selectedLanguage=en_US"
Size:	3242272
MD5:	45DE480806D1B5D462A7DDE4DCEFC4E4
Time:	22:41:29
Date:	16/04/2024
Reason:	newprocess
Reputation:	low
Is admin:	true
Is elevated:	true
Modulebase:	0x7ff76e190000
Modulesize:	3325952
Wow64:	false

Signature Hits	Behavior Group	Mitre Attack
Spawns processes	System Summary	Process Injection

URLs

Name

Malicious

https://hirerightuk.satmetrix.com/surveyui/?p=MTIAAAAAAAAAAAAAvl4NBEHfdYlutqHtsOUT5NEAFxtg5udmncA4libMkqGau3JT%2BIIhllM%2BsS1F%2B2Cx8tijQaTYHJTl195eQde4AhH42MpEwiMHfKFFvGjmxEBr5DydFe%2BvjIveleEPdhITjfZ%2FW93V59uW8xPtWaE0CFLlkA%3D%3D&type=invite&selectedLanguage=en_US

https://hirerightuk.satmetrix.com/surveyui/main.c83fb6467342869d.js

34.246.245.134

https://hirerightuk.satmetrix.com/surveyui/assets/favicon.png

34.246.245.134

https://hirerightuk.satmetrix.com/surveyui/assets/icon-map.svg

34.246.245.134

https://hirerightuk.satmetrix.com/npxapi/conversation/v1.0/surveys/invite?selectedLanguage=en_US

34.246.245.134

https://hirerightuk.satmetrix.com/surveyui/384.fd4ada3edfb1c32e.js

34.246.245.134

https://hirerightuk.satmetrix.com/surveyui/runtime.4272f60f2cdfc4c0.js

34.246.245.134

https://hirerightuk.satmetrix.com/surveyui/polyfills.e00ad2a2a84783c4.js

34.246.245.134

https://hirerightuk.satmetrix.com/surveyui/assets/isoCode/isoCode.json

34.246.245.134

https://hirerightuk.satmetrix.com/surveyui/styles.eaa04b0ac9aed3a9.css

34.246.245.134

Domains

Name

Malicious

smprod-ext-nlb-983581ef6e5535e7.elb.eu-west-1.amazonaws.com

34.246.245.134

www.google.com

172.217.215.147

fp2e7a.wpc.phicdn.net

192.229.211.108

hirerightuk.satmetrix.com

unknown

Details

Name:	hirerightuk.satmetrix.com
TargetID:	2
Current Path:	C:\Program Files\Google\Chrome\Application\chrome.exe
Reputation:	high

Signature Hits	Behavior Group	Mitre Attack
Downloads files from webservers via HTTP	Networking	Application Layer Protocol Non-Application Layer Protocol Ingress Tool Transfer
Performs DNS lookups	Networking	Application Layer Protocol Non-Application Layer Protocol
Spawns processes	System Summary	Process Injection

IPs

Domain

Country

Malicious

239.255.255.250

unknown

Reserved

172.217.215.147

www.google.com

United States

34.246.245.134

smprod-ext-nlb-983581ef6e5535e7.elb.eu-west-1.amazonaws.com

United States

192.168.2.4

unknown

DOM / HTML

URL

Malicious

Behavior Section

Behavior Chronological

Disassembly

Uncategorized

Graph

IOC Report
https://hirerightuk.satmetrix.com/surveyui/?p=MTIAAAAAAAAAAAAAvl4NBEHfdYlutqHtsOUT5NEAFxtg5udmncA4libMkqGau3JT%2BIIhllM%2BsS1F%2B2Cx8tijQaTYHJTl195eQde4AhH42MpEwiMHfKFFvGjmxEBr5DydFe%2BvjIveleEPdhITjfZ%2FW93V59uW8xPtWaE0CFLlkA%3D%3D&type=invite&selectedLanguage=en_US

Files

Processes

URLs

Domains

IPs

DOM / HTML

Behavior Section

Behavior Chronological

Disassembly

Uncategorized

Graph

IOC Reporthttps://hirerightuk.satmetrix.com/surveyui/?p=MTIAAAAAAAAAAAAAvl4NBEHfdYlutqHtsOUT5NEAFxtg5udmncA4libMkqGau3JT%2BIIhllM%2BsS1F%2B2Cx8tijQaTYHJTl195eQde4AhH42MpEwiMHfKFFvGjmxEBr5DydFe%2BvjIveleEPdhITjfZ%2FW93V59uW8xPtWaE0CFLlkA%3D%3D&type=invite&selectedLanguage=en_US

Files

Processes

URLs

Domains

IPs

DOM / HTML

IOC Report
https://hirerightuk.satmetrix.com/surveyui/?p=MTIAAAAAAAAAAAAAvl4NBEHfdYlutqHtsOUT5NEAFxtg5udmncA4libMkqGau3JT%2BIIhllM%2BsS1F%2B2Cx8tijQaTYHJTl195eQde4AhH42MpEwiMHfKFFvGjmxEBr5DydFe%2BvjIveleEPdhITjfZ%2FW93V59uW8xPtWaE0CFLlkA%3D%3D&type=invite&selectedLanguage=en_US