Overview

overview

9

Static

static

7

Spotify_8....b7.apk

android-9-x86

9

licenses.html

windows7-x64

1

licenses.html

windows10-2004-x64

1

quicksilve...ace.js

windows7-x64

1

quicksilve...ace.js

windows10-2004-x64

1

Analysis

  • max time kernel
    100s
  • max time network
    132s
  • platform
    windows7_x64
  • resource
    win7-20230220-en
  • resource tags

    arch:x64arch:x86image:win7-20230220-enlocale:en-usos:windows7-x64system
  • submitted
    08/06/2023, 21:52

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    licenses.html

  • Size

    1.8MB

  • MD5

    e51c452e3c0a5322570840f145bec86f

  • SHA1

    272fd93ef8bc30ad02879ef245d626b80dad9d6b

  • SHA256

    0dd6d560372744592aced2de9424b81a3f1b14a7564ed44f60d2ba471fad48b1

  • SHA512

    c6f18f42bd764820d1e1554074627c33674f41e044e8bb171a27a9279af8323705253bb1107c1fd3b928842fbbacc93c01059c6953396738160857d968fad8fb

  • SSDEEP

    12288:q3e3P3D34353/3q3q2w2S303w3e3w3a343H3S32323+3n393C38303J3l3f3j3S+:pQq

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 38 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\licenses.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1408
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1408 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:1528

Network

        MITRE ATT&CK Enterprise v6

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015
          Filesize

          62KB

          MD5

          3ac860860707baaf32469fa7cc7c0192

          SHA1

          c33c2acdaba0e6fa41fd2f00f186804722477639

          SHA256

          d015145d551ecd14916270efad773bbc9fd57fad2228d2c24559f696c961d904

          SHA512

          d62ad2408c969a95550fb87efda50f988770ba5e39972041bf85924275baf156b8bec309ecc6409e5acdd37ec175dea40eff921ab58933b5b5b5d35a6147567c

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015
          Filesize

          62KB

          MD5

          b5fcc55cffd66f38d548e8b63206c5e6

          SHA1

          79db08ababfa33a4f644fa8fe337195b5aba44c7

          SHA256

          7730df1165195dd5bb6b40d6e519b4ce07aceb03601a77bca6535d31698d4ca1

          SHA512

          aaa17175e90dbca04f0fa753084731313e70119fef7d408b41ff4170116ab24eaee0bd05dca2cc43464b1ee920819e5ce6f6e750d97e3c4fc605f01e7ff9c649

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          1e9e1482e30735965a6134ce0273992b

          SHA1

          3b68714a4185e2449ba9f026a77961cabaf98f34

          SHA256

          4d2691d4a461c8c0d79f264f36872be79a017eeb82c6cc10449829a3691c6923

          SHA512

          9a1ab934012b528ce803bc7a8bd6a8fcfdafae96c1dd86ffa10e4c5ca68312c199cc254e0cc733bac1a6c861a87bd2b475c5ca1429435928f30e5f761f7a4569

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          df8323f9431d4fbc2fff96dd02b86b72

          SHA1

          1966c85ec4ae42ea95061276cdb24558004807ce

          SHA256

          66252db906f0ddd43a1919ca2dc21ab48ecf75ffa1ecd184e20a527372c5d4fd

          SHA512

          3ba1e31a36c09ffcdd339827d4e6c8b8a3f58ca0aad16056efb12a9c2cc0213afdb30e7f25c36a282689e9a803c2225f59bb8ce53aa9693698e156c4ef4b1ed1

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          6a3f1908cc42565e1d941c180959d8ee

          SHA1

          279e3115ed83a2e00993a6bf64ffccaf59aa517f

          SHA256

          21f3d4f19629b43ccdae5f7fac3fc5cf33c5a67f4ba7d66f206336995d7421cd

          SHA512

          c3ed08da632f2c7082261128249ed555b56fc8c2fb316d7587e811df07e369a115bdd3eb52828e0a4240effbcd2573be4aa7f4716470bf2c0af8cddb80dedda7

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          9cfde7a97edc33d92f103a99022dd31b

          SHA1

          06bd2c56a5d6a1de039bc12a8943316a6b4b1e02

          SHA256

          a57b60b93db6e7a735604c5153ad0b629800b56fed2415d7f60bcdd1c51ff2e3

          SHA512

          2eca96db0d4cb4eebf2e2580945ec3ae899f9d57054842ddbacc8be8e9e02ad47afa9c0bfbb81144537675d82339d5ef83c151d1c4952055acbf9daa18b904a8

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          21613508229a61631a728df8cdffce37

          SHA1

          536de2328d8c5238eab55758a512f30c6b067eaf

          SHA256

          9f3df7eeaa0536b5930c916285a13dfc293d88a475c2ee72cd134b9bc139d9b2

          SHA512

          53f9c4e9a253c03ff81172d7552b97a2bf6e35ed2a84e1b57b03d77de8d914ebcccc3ae1d9087804bc88bd7a98b81115ecff178640850f2dd93a7a015245676f

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          293793149cc22783c3d20eb67c7b1cb8

          SHA1

          0ae66f79fc5ff3df2fa66807515d995ffe31b789

          SHA256

          c61a8ac5c9986d03a56cd47e44ae7b408fb5757713e08d3e06fa767f86e0e26e

          SHA512

          79e07ff8b63120de1f196886ed0505c9047bab0bb69dd9d9dd72f5ac1f6f25c5100540bc2246152d7a56406fcddac6f4bddb69cb5272a69a36002adb2a0b900a

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          415a23c093487f63bad5e76993a09064

          SHA1

          97c6b24e07df6e077f745837a6699180a62e2e53

          SHA256

          83659a48cd0989a299b916e5edb0910e109d02879aa2955d16f08f90c7ba5e7a

          SHA512

          1cea2bba6e2436341f9466dbdff1f725e47ff79f36ac9f2ecf1eca3ff41e50c29e26f65abe52a43defff0d5eeff8f9e346465a76498908fd8087bafaa3530e31

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          62ba7329a75114db651a9bdbd15037c0

          SHA1

          deeb85f837f4df601ce0d554f1445e28c9bf3b6e

          SHA256

          66e7f6580612ba74aec725deb885b0f43a3980bcb67f69055badc4045f584a2d

          SHA512

          e78501a8a2e3554372295470e7a3786457d9e2595f4e175f731aa839e284a6fe92999dfd834cf5bd56cf4f08f2ae4a7cf040cc004514caf5743ec1ce79e31dbf

          Download Submit

        • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\QCNSQOTT\suggestions[1].en-US
          Filesize

          17KB

          MD5

          5a34cb996293fde2cb7a4ac89587393a

          SHA1

          3c96c993500690d1a77873cd62bc639b3a10653f

          SHA256

          c6a5377cbc07eece33790cfc70572e12c7a48ad8296be25c0cc805a1f384dbad

          SHA512

          e1b7d0107733f81937415104e70f68b1be6fd0ca65dccf4ff72637943d44278d3a77f704aedff59d2dbc0d56a609b2590c8ec0dd6bc48ab30f1dad0c07a0a3ee

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\Cab3594.tmp
          Filesize

          61KB

          MD5

          fc4666cbca561e864e7fdf883a9e6661

          SHA1

          2f8d6094c7a34bf12ea0bbf0d51ee9c5bb7939a5

          SHA256

          10f3deb6c452d749a7451b5d065f4c0449737e5ee8a44f4d15844b503141e65b

          SHA512

          c71f54b571e01f247f072be4bbebdf5d8410b67eb79a61e7e0d9853fe857ab9bd12f53e6af3394b935560178107291fc4be351b27deb388eba90ba949633d57d

          Download Submit

        • C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Cookies\31V127KN.txt
          Filesize

          608B

          MD5

          b399951ce8c27fb99ceb5b36939cb234

          SHA1

          c65e15daf7295455aad4f9a469b3dc1782528bb6

          SHA256

          52ec96cebd296c97a2c0644dcf9fb61ec249911cd3863c1e3070c60ba1c6d7fd

          SHA512

          2cec657bdefcaf41bf4bc4b3e9dcd4856f092c2161593db8da6757e9ab09b4338439cd586f5fef1c6be212cbdf2612c9a1d7207fe2421eb0528231c2b918f437

          Download Submit