Overview

overview

7

Static

static

7

460bbe6038...d1.apk

android-9-x86

5

460bbe6038...d1.apk

android-10-x64

1

460bbe6038...d1.apk

android-11-x64

1

continua.html

windows7-x64

1

continua.html

windows10-2004-x64

1

error.html

windows7-x64

1

error.html

windows10-2004-x64

1

index.html

windows7-x64

1

index.html

windows10-2004-x64

1

instalar.html

windows7-x64

1

instalar.html

windows10-2004-x64

1

instrucao.html

windows7-x64

1

instrucao.html

windows10-2004-x64

1

Analysis

  • max time kernel
    100s
  • max time network
    136s
  • platform
    windows7_x64
  • resource
    win7-20230220-en
  • resource tags

    arch:x64arch:x86image:win7-20230220-enlocale:en-usos:windows7-x64system
  • submitted
    06/06/2023, 02:34

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    continua.html

  • Size

    6KB

  • MD5

    7d6321780ea71322ca45e67a005d0921

  • SHA1

    fc6c6aabdcd4413de3e4dd53031ecaddd41b7fdf

  • SHA256

    2af1eb500cfa4ae019958c3c7af92a826f1ff5f9320315b629dc68460e72b4d5

  • SHA512

    99604161a1db28688530fccad00b82106aa1fa5acac20273e0df74420d5060072d31293e2e9b863bcc0cda313014f349402273a4ee61c466006583b46bd22d0d

  • SSDEEP

    192:XtKC03JQTS7vYBnhnsnrGKHEanMW8qX3IR:9KC03JQ27QBnhnsnrGKHEQMW8qX3IR

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 38 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\continua.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1728
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1728 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:656

Network

MITRE ATT&CK Enterprise v6

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    0ed0a062e6d6c06733553c736ee03b8f

    SHA1

    9e97d1088f1ad9a403d552cad144e42f17efcbdb

    SHA256

    05558d84a065b37732e5bc7d189ebd4af8fff28f2f25c5e5850a50bb5d0e3c97

    SHA512

    b571a23f45da94611262bff0315f003e9af54a27f750af56da6075280cd6d4c015a6e3e9c4761156db8138c4a36979a193df19f55df3eebb1fc0b2a3819dc567

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    7809a1a5623ae5a3c91e038286885b23

    SHA1

    05c16ed6d29821c2f36180b4b7489383f64ee42b

    SHA256

    bd5a45b57c4b225ffbeec51ad4707d726900eaaca531e1fe3038483e9e39fcd2

    SHA512

    ede337fe955d49e65e34ce2030b68f1931ae0d06f23a19ed7aeb1cb4dc7b63ed316562128b1fee4750a53cb2e1e5331389f7f812cd257e5b9035a3628e09c7dc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    6df1548dd24c272251bce46f9107d63c

    SHA1

    dbe0eab57164a17c76661a5e59c1b0d68988cdd9

    SHA256

    67b9d8a42f34741ef6d1be839085bb7db38dff329eed09bacb4147060973751e

    SHA512

    e6944e8774bf574f4c7aef6f75f539f14a99af132b018f01f021d8b489274f97c439378f1019d79b21a1ea200050c8be7da80edaba3561f0de69043b3fd3066f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    a510c3cf5da32c8bb3857c77d6337adc

    SHA1

    b00adc0b916e5d3c995d77d156008e8cd325fd63

    SHA256

    bb0ee9f54c966e7ab3b71ecd589ab8fdeb582e07c66709751819e47e64f83df5

    SHA512

    5aa944e1d2cfed80f3464fae8960e74d02ee2f151cfd3c42b43139c269a9b7716920309b339aaf8e140f22a9e453fb56a13c3e287c22b99f84a84a3b06201eff

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    a364a43025322a1cf923294755460f5b

    SHA1

    90ea1221d69ad3b2558d26229b3deccaca3e4fc3

    SHA256

    8f1fef65ad08e0565f2da85dfaa45c11172a6a2e837b30de21e98fa3e6626784

    SHA512

    bf5f3ef09d21210674a5c8408ff831d1aa2b6a547e429962d75844f1f9ea33350759053374faafda8d86b22be9370194f5e609466ca1af150826c3d4d84a844b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    6f808a66b7afa68891c3cc3a11385629

    SHA1

    38feaba75fb270ae3752625d7755a5e438d02bc9

    SHA256

    a99900139475b580f64b66a8d4df2644c69c7c079af1ddbc6acf74fcec335dce

    SHA512

    136a1086d709baa5e0aa230ae01b9662879c099f9a7b3e2f8250db5c8bca41fddbf1d8372d1f2112629c20aec7b7b372d1feb6b7f629b71f8aabd94ad0d231f7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    98cc7a6847fede637621f4a2f3e895e2

    SHA1

    4fd546f63afb5a7e49c5241356ede4fb60e5c184

    SHA256

    53b176acaa7f6f6959b711b4daa5fc8bc6da17cf710f15f084d8b640518d6619

    SHA512

    66ce46314da1ddec725c4a2765e6f73b6318dc2eedf798a6b722e0bdf60ee62b4f6918d4f053378052883435b979bd45179777129e652d93eaf65d0217dd9bc6

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    e853ab52b86c9dbd8d8fe2dde7391c40

    SHA1

    9ac8a29e5d49228430c45b383cab5bb06918eb93

    SHA256

    c55a65f8ed34aae04253a65834177e3412e0d2e1d6e2cef1c21de78c67307b41

    SHA512

    5f35f9018719309846b1e8f474efe2f0fe329b0eb82655decfe2326ce74c96ae5fe420d961a12013bb56afbfdef59d98526312507af2eb854152a12ba3fe474d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    dff1dcfc4159931446eeff0f598a9bb1

    SHA1

    062fec83b956839a1eb2f2277bc350698d9670c9

    SHA256

    bbfdbf2afa38ffc0d0c027211877553488f938b645878983052a00497e342976

    SHA512

    fb2dce5dd88e573516717060462cfee1d5148bc5eff037bb56a67530fea11f6a9d86c9cb5725e7ff870807ae608a77c19948a9b1c891953660351447a69911d6

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    a11152db53ed16addf8b84089a96b76e

    SHA1

    9d7916647389913a8094a1264febaab3202f412a

    SHA256

    1811503cd67021bbc82ca40c1498be137db2b989f80c9dc8bd6bbbcf02c044dd

    SHA512

    7d26b2910e6612de116d04b91c00fcc44a5321c274331589d7f8049a2e5842810d71ae39e021348e43050b06faa69636d31f196827b0ab2170390b707b6fc912

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\UOYUJSME\suggestions[1].en-US
    Filesize

    17KB

    MD5

    5a34cb996293fde2cb7a4ac89587393a

    SHA1

    3c96c993500690d1a77873cd62bc639b3a10653f

    SHA256

    c6a5377cbc07eece33790cfc70572e12c7a48ad8296be25c0cc805a1f384dbad

    SHA512

    e1b7d0107733f81937415104e70f68b1be6fd0ca65dccf4ff72637943d44278d3a77f704aedff59d2dbc0d56a609b2590c8ec0dd6bc48ab30f1dad0c07a0a3ee

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab4655.tmp
    Filesize

    61KB

    MD5

    fc4666cbca561e864e7fdf883a9e6661

    SHA1

    2f8d6094c7a34bf12ea0bbf0d51ee9c5bb7939a5

    SHA256

    10f3deb6c452d749a7451b5d065f4c0449737e5ee8a44f4d15844b503141e65b

    SHA512

    c71f54b571e01f247f072be4bbebdf5d8410b67eb79a61e7e0d9853fe857ab9bd12f53e6af3394b935560178107291fc4be351b27deb388eba90ba949633d57d

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab4782.tmp
    Filesize

    62KB

    MD5

    3ac860860707baaf32469fa7cc7c0192

    SHA1

    c33c2acdaba0e6fa41fd2f00f186804722477639

    SHA256

    d015145d551ecd14916270efad773bbc9fd57fad2228d2c24559f696c961d904

    SHA512

    d62ad2408c969a95550fb87efda50f988770ba5e39972041bf85924275baf156b8bec309ecc6409e5acdd37ec175dea40eff921ab58933b5b5b5d35a6147567c

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar47E5.tmp
    Filesize

    164KB

    MD5

    4ff65ad929cd9a367680e0e5b1c08166

    SHA1

    c0af0d4396bd1f15c45f39d3b849ba444233b3a2

    SHA256

    c8733c93cc5aaf5ca206d06af22ee8dbdec764fb5085019a6a9181feb9dfdee6

    SHA512

    f530dc0d024a5a3b8903ffaaa41b608a5ccdd6da4ba1949f2c2e55a9fca475fec5c8d2119b5763cabe7ef1c3788fb9dcac621869db51d65b1d83cfe404fb4c27

    Download Submit

  • C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Cookies\8F8LQJB2.txt
    Filesize

    605B

    MD5

    b6db88a0b837c2c2de5e8f3f1ece4542

    SHA1

    743208a34fdcf2cdbc588bf13089eb24528d6bec

    SHA256

    4ddb695fa5124ea58c9a5b72058f3d6d89bb2bc185a9ac7e7546931af0b6dc55

    SHA512

    181a665834bc5265d58c2cb2103e290814ca053d4aef2ccec89e5823b002554d38396eb5ead26c9e1405c52f1cb16c9ee29db1a8af1cf1a005566a2cde3d4746

    Download Submit