Overview

overview

7

Static

static

7

460bbe6038...d1.apk

android-9-x86

5

460bbe6038...d1.apk

android-10-x64

1

460bbe6038...d1.apk

android-11-x64

1

continua.html

windows7-x64

1

continua.html

windows10-2004-x64

1

error.html

windows7-x64

1

error.html

windows10-2004-x64

1

index.html

windows7-x64

1

index.html

windows10-2004-x64

1

instalar.html

windows7-x64

1

instalar.html

windows10-2004-x64

1

instrucao.html

windows7-x64

1

instrucao.html

windows10-2004-x64

1

Analysis

  • max time kernel
    100s
  • max time network
    135s
  • platform
    windows7_x64
  • resource
    win7-20230220-en
  • resource tags

    arch:x64arch:x86image:win7-20230220-enlocale:en-usos:windows7-x64system
  • submitted
    15/06/2023, 02:30

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    error.html

  • Size

    458B

  • MD5

    3b6ba64075bfb3ab089a2bc1a60b527d

  • SHA1

    1dadd622a621ec8e7d0f0e5bac3f134c74721dc5

  • SHA256

    51f068e89cd1e3dfaed58c837d5a4a4083bba5d2bf33cb3528a3d7f48ab383a2

  • SHA512

    1d419e9fbd3e49e67b02b86e112dcf9ddf01f1cb4c55c812c1d4bd4db6e9aa279c3937217f9e47f1c43e970d7b5b42196924e2fb5666841f9161b5f3972abac8

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 38 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\error.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1676
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1676 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:1680

Network

        MITRE ATT&CK Enterprise v6

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015
          Filesize

          62KB

          MD5

          3ac860860707baaf32469fa7cc7c0192

          SHA1

          c33c2acdaba0e6fa41fd2f00f186804722477639

          SHA256

          d015145d551ecd14916270efad773bbc9fd57fad2228d2c24559f696c961d904

          SHA512

          d62ad2408c969a95550fb87efda50f988770ba5e39972041bf85924275baf156b8bec309ecc6409e5acdd37ec175dea40eff921ab58933b5b5b5d35a6147567c

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          bbb22e2551d93c606c8b078b9f8f23b0

          SHA1

          c9760ba03cc96fbe78aba54f0e597f0076d793e5

          SHA256

          c7740f0ed4ee658a397ee1b0833ee997095f2de95b26e98dc5e112b4bc3b7273

          SHA512

          097120331ed73319478ef07ced8cea6810587dfcc7ccbcc28827ef7b15d91624b2648e940fd75753a2192bad021bfb390af04b98be8dbfa142cd34f22d9bc9ea

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          e099a0ea8dce4c912289af049021c0c0

          SHA1

          54ee7832aa0f4a1283e59d9c7cd206b34dc2630e

          SHA256

          43cbd60387bce85b67969e91ddaa6d56b23f265b18cd92f3caa1695c83a13311

          SHA512

          ce47739e682aebb06f08c82f5cfd3e0c0c87cae06f4587280c3957a254ae115a0c2b1100f5d689892a7a52c7dec032986aa26790690002322db2c058bed4d1b0

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          e3eafc313ab9b699d8bb72ac19234d9b

          SHA1

          fc6a9c96fbc002fa57f953b2468dfd257a834e07

          SHA256

          23f9cd811fda94b8b6586b8b299d4d7433e6dbe580dfcbee9b5f0e94d0200e10

          SHA512

          6caa5a3d0a1aa1e33d870c4b4e23567fc56cf24942a7c7ace7c6641a8031c0bee82497c98c5df45adec63a1617390ab0b002a820271d16b6d01cc4edcb6ba8c9

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          1d577a9b8f373475b9a340cf5f9d32b4

          SHA1

          942d248f7fb73b95c18d4e14861fce1f7be26e9f

          SHA256

          f4aaf302460df5f657954bc1f0a118ce1a46c8a9211c0b1fa4210e5f096a0ace

          SHA512

          4611ac8bfb425ea61032fa98713ad2fae5092c3e6832909b80a5eda08334b7414abafc0e620c99de181b95c3f0c3fa0782d6fd91ddfd7a7dd8397c2bfad9aa60

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          5f515dc30b87372a5f42397451348981

          SHA1

          e6cdf1c2f71212583b2d5322d70329e0e82fda17

          SHA256

          77adfabe1384e93a841e3e1f6bce2460e0a99a204adf09fee5284fbc14cd7f30

          SHA512

          2b85e5e2dd649e47adb18b07feb0795baa3f9481bc3292beb24491893b9d53936e5c07a83feb06867376fbc8b25a3e140b8ebee0ca27711f9cee3888e153a2ac

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          a6a23761246bcb6fde165388db392642

          SHA1

          d419451daf0bead4310a13862038bc37346bdba8

          SHA256

          f0e1adbc1fc1665819fdb5a305d07aad2ad1fd0ff5ff20cc1dc969a53bdb2806

          SHA512

          ae4dd2fe8e07bccc3e9fa4f2b49c14c1b8cb3735fdaae542da5d272c3a6250f908dc3143cde3d048b112813de16fe4b050cf8bbebaa6e9a2f7c32f2cf24e0914

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          501a49809169b1c3a8e22cf8f41b7fcc

          SHA1

          550391dbb00d8344755cd331469dfcd524ce38ec

          SHA256

          cc093b688eaa783ae0242d0552a4da44b6274625c031709445f9f5eb08d762ed

          SHA512

          93c25f4aebc3ceb84e5ba43763b782c61b9831283b4a91a7f413a1ed310bffc5e0a7aceee16ede3aaf6c13ab5e9a25a8e91e8e4017f640979dd92fb4cc4c7ce3

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          8be0328e42a3dbd1e007535c99be1b71

          SHA1

          8f38d4d6c703ceee3751025eca1d50e6b20fee70

          SHA256

          1c90edcaf2a7468ae10534dc4665bad4dd76ab12b127ecae6591b92dae2e08b0

          SHA512

          9dc6abaaa8ba5df884e9bd95008574a14c5e67ed8dea6288f65571844ed793746deb0473fe6d5128ad2bfd95d7f8c472a1e93a78baf1f2141e838f4f8103d430

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          f7912296f043d46e390cdb20624c8dcb

          SHA1

          eb25c01a0f509ca351866a59c4047cf8600d9ca1

          SHA256

          b29341f2e486034f4df23ab12d9fb4fa26cb7a277d44244a4fef8bb07af7ff55

          SHA512

          6c1874dc9d90769d9d0ca1cfff780639ad1aedc99b66efcb1d56c0db646d2f4165053e6785336d101c2bfc6944d2d1883361608bc2b87c02150d0bd7054edfd2

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          7940f32fb25f758d339ca4d8a7e769b4

          SHA1

          7f5935c3db81f8a203fcbafb0e351dd3374f86e1

          SHA256

          0dc62666feb65f7eaa608254f8556e06f829b504f328a95fb1a966c9725ec581

          SHA512

          d591ffd475a8e14a58c5f6f7cade56f75c24b6eca62a4a0829547955f51d0c972136ee9036ce05a1537a2cbdea6894f2ec5af4fda629b50a178f932c71bd8542

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          8141ebf5198705cccea9ebc987963601

          SHA1

          f1262d2a540e6cb9defe55fb83d6ff95d59d8dbe

          SHA256

          db10f2306515e29caa79f04cd933eed89d2b134e95af1fceea92190f43612196

          SHA512

          d214779b70a68e770d2ffa4f7dbae514548ba9ba8c6e264dedc61275496f8e738dfe28d67748ed7fa0b43f68c6bc3c7068a4e3ef5e1fe99bb6eee898bcd5eee2

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          762d9a1a8145de4f01cb64bbe44ff059

          SHA1

          bbdf7652ef5abeb1beccb6ab9f2ab9ac607c98c7

          SHA256

          0ad8b2a8b5ab751a4ffa4e1b54040e77d58b470a3da9fa53ea25f6121e4f0a9b

          SHA512

          251da6052e932c8f1fc114747c81f5ba4cdd304ff95498b9cb7cc31b3279c6b09181c4158741a011f30a00849a723d27c0967b49cf46502bddf9b49b94b60520

          Download Submit

        • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\TOS3MI7U\suggestions[1].en-US
          Filesize

          17KB

          MD5

          5a34cb996293fde2cb7a4ac89587393a

          SHA1

          3c96c993500690d1a77873cd62bc639b3a10653f

          SHA256

          c6a5377cbc07eece33790cfc70572e12c7a48ad8296be25c0cc805a1f384dbad

          SHA512

          e1b7d0107733f81937415104e70f68b1be6fd0ca65dccf4ff72637943d44278d3a77f704aedff59d2dbc0d56a609b2590c8ec0dd6bc48ab30f1dad0c07a0a3ee

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\Cab3A66.tmp
          Filesize

          61KB

          MD5

          fc4666cbca561e864e7fdf883a9e6661

          SHA1

          2f8d6094c7a34bf12ea0bbf0d51ee9c5bb7939a5

          SHA256

          10f3deb6c452d749a7451b5d065f4c0449737e5ee8a44f4d15844b503141e65b

          SHA512

          c71f54b571e01f247f072be4bbebdf5d8410b67eb79a61e7e0d9853fe857ab9bd12f53e6af3394b935560178107291fc4be351b27deb388eba90ba949633d57d

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\Tar3B85.tmp
          Filesize

          164KB

          MD5

          4ff65ad929cd9a367680e0e5b1c08166

          SHA1

          c0af0d4396bd1f15c45f39d3b849ba444233b3a2

          SHA256

          c8733c93cc5aaf5ca206d06af22ee8dbdec764fb5085019a6a9181feb9dfdee6

          SHA512

          f530dc0d024a5a3b8903ffaaa41b608a5ccdd6da4ba1949f2c2e55a9fca475fec5c8d2119b5763cabe7ef1c3788fb9dcac621869db51d65b1d83cfe404fb4c27

          Download Submit

        • C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Cookies\LNLOMRGP.txt
          Filesize

          607B

          MD5

          06b72782a049cd9a67ffbae7523472f4

          SHA1

          59eb348d54500925315c027aa1a4b3c735596691

          SHA256

          a01108bf6b6ed346740dbe1d5cd4b52b480cfb9161539c4508c6d3f68058efd2

          SHA512

          f7c8281d2517188005dfb8881ccda1b3ce7dc16f76eb4457b475191f049a5737caefc87482ebc46d5f66eaf577e050e4c0dd59ef838aadc25e5e53fb968e584b

          Download Submit