Overview

overview

5

Static

static

1

AndroidFullScreen.js

windows7-x64

1

AndroidFullScreen.js

windows10-2004-x64

1

DOMEval.js

windows7-x64

1

DOMEval.js

windows10-2004-x64

1

Data.js

windows7-x64

1

Data.js

windows10-2004-x64

1

ObjectFunc...ing.js

windows7-x64

1

ObjectFunc...ing.js

windows10-2004-x64

1

README.js

windows7-x64

1

README.js

windows10-2004-x64

1

Tween.js

windows7-x64

1

Tween.js

windows10-2004-x64

1

_evalUrl.js

windows7-x64

1

_evalUrl.js

windows10-2004-x64

1

acceptData.js

windows7-x64

1

acceptData.js

windows10-2004-x64

5

access.js

windows7-x64

1

access.js

windows10-2004-x64

1

addGetHookIf.js

windows7-x64

1

addGetHookIf.js

windows10-2004-x64

1

adjustCSS.js

windows7-x64

1

adjustCSS.js

windows10-2004-x64

1

ajax.js

windows7-x64

1

ajax.js

windows10-2004-x64

5

alias.js

windows7-x64

1

alias.js

windows10-2004-x64

1

amd.js

windows7-x64

1

amd.js

windows10-2004-x64

1

animatedSelector.js

windows7-x64

1

animatedSelector.js

windows10-2004-x64

1

animations.html

windows7-x64

1

animations.html

windows10-2004-x64

5

Analysis

  • max time kernel
    122s
  • max time network
    157s
  • platform
    windows7_x64
  • resource
    win7-20230621-en
  • resource tags

    arch:x64arch:x86image:win7-20230621-enlocale:en-usos:windows7-x64system
  • submitted
    02/07/2023, 04:18

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    animations.html

  • Size

    33KB

  • MD5

    d3a41401e6a3e2fa59431d1df29ecd0b

  • SHA1

    7559c1f72635b0e8b02383532458f96ddd6de5bb

  • SHA256

    74e781ae7626542d6ab95b6d169d0b702341247fde929a49ca51b95313694cfa

  • SHA512

    9f9ca928401cd9e5b37144ce5e61c2bdef7ae90737fc2eb0935d3b1298bf941168aae525879bed60c0765ef3e214315e0aef67f82f3ae42ba6d45480e889c601

  • SSDEEP

    384:uVMKHQeuclMw3WMsHxhDSZyGTIppQiyCaCaaa6a6GqaiyyuKyi6Kw9GSQNDZCjiQ:63MeMQsajHd1ZWeFm8y5cR

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 38 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\animations.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1700
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1700 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:768

Network

MITRE ATT&CK Enterprise v6

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    ebec4b4dddb790f72bfa266d59a05011

    SHA1

    d545697597118eb5cb72ef2d5b06d42dd981e545

    SHA256

    0130e98f3537ee7a958b8086c304eef988dd1beff4d34eddcbd73cb0cdb122d4

    SHA512

    0de37c192dad9a92ebca4e348c0582460ad6220285f593db31cf75b8d42d2caeb47ffa81e63a0acd63b90f597a799ab6b7733921de391baa37aca597ed6a5438

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    026b7a0bf60540db2cb618b9cfc74fe8

    SHA1

    29c15680985a01149123242295078d459ae00b28

    SHA256

    97a643c5adbf2064e5bfeca27e3b844949414d599805ff230866aae044c1900e

    SHA512

    d9bb936630717963f67135b0e4bb8bb9ce45743763ef32980984ad42f22db4084cad1a917527d993d5afccff9faecea3299bd8514976b7b063e53f5fa3a0dce3

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    2be540383594a55e99b1a1efa2eb9d60

    SHA1

    edceed12532575fb8471a85d1470159ee3c30520

    SHA256

    49eba98f81c7c003aa7ef56712bcd350e84db22be015f05c8d6edef60aad7cba

    SHA512

    96a4d864b4be233de85d38c07e932cad088473806ebcb898aada3dd9c204da5e96cf5d2809e245514b7e7c680c117d274fd27abb6de1f233a498e8a94dfbfe98

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    bc48f1a0233f2c72f790436706dcadfb

    SHA1

    a53af8355c5fe6036a843c60e5a7edb07aa66a4a

    SHA256

    c98ba6516e3d6371f015d6c6575e13ab79480462e9fe1271e69c2999e4699120

    SHA512

    16a925acffdf521e947f52022196ebf8ebd0314ef6385415e382975ee6cef3d30c1b1242516778df7768bdfe684fbcbfbd4b0b23c962ea581a668fab8a4c27a3

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    bb77f576e514a5b0a16be5bfa86290c8

    SHA1

    8daf2a7c0aa96eff5a62c549150d2b7e9597d393

    SHA256

    2cc5fe707f5ce9b1f75420ec49a5d6d5346b19dd8c6019734438000d8d924e5f

    SHA512

    ab40c47441991b8f7427e03bc6d69a39af4f531a95b2b4b38c9b645929151606f690598ca70cf5b45b3e1b31d86f0769af5c37d487bbdb4de842637ebe264b2a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    eaba1224f3737ea73e5a5b2c5b19c9ca

    SHA1

    0efa63cc23373242b63bafac185a4c07788009f3

    SHA256

    bf5c2a854a1028890193d4800b406135503e8b90c253c0419f7893f28ddcfca1

    SHA512

    5e150cd701c501ed54f75883ece2ef6e840823a8514792aa3a265f792fb16cff54bd4ccc7c541b120ceb4bf28dac0a9980b8a92141f63ebbcebc7ebbeb304530

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    eb5f24f6093cb3e4b655e0c96e14f1b6

    SHA1

    434bbc2b4dfc618d64ecd560eb698ed5370069fb

    SHA256

    28e065a8a4d4effb1df2b48654a785428bea5ad05f022838189a0cf695d73fc0

    SHA512

    c143cd87114c51379deb07409f97e82848d2958bd2cf02d8aa989c5c094d4c83d185084d52af7cbfd7ad2efe5f8464d57e127fe7a7b461926c69bbf0e3fd990c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    0d29699c23ca432a541e50a5d4e6fe75

    SHA1

    545e35b4b1e1cc20e530ccd5916eef2a9634f289

    SHA256

    17a0fdabce223d0fbd1304d0680772aa71b2a314c56269354742e1692e63b091

    SHA512

    046dc066dec9d24038ee7dac438b5c416d1d38ec37b900a8b284a1875ef119b4bf45377a760bf2142f87238a0689d77f6cc98778057575329cf8c0ca88f37b13

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    bbbe574b832f0f80ac5fb97dbbfe84b2

    SHA1

    3628c3fd465b3dddeca6442fa1c9bbfaf947da62

    SHA256

    6d3011310912b72346923878cbf461fdee97d803c82ddbd1427891726ca84a94

    SHA512

    f5b4e054f9c396f40c144ada54a9f6db42e7f393d8033d306a99b07f610bff583ef4a91cbb3f22225ed40cd668fc86733da9169c8d82f7a153b1a629099ec34e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    0baa0dccb4ca690eb30e0973d1762167

    SHA1

    fe8d33552b6c3a405824b6d2ede9e229cba01822

    SHA256

    09a241d7ef0c4567942fb1f4021eff7923f1dbb7dcb86926f5bfd46535076fa3

    SHA512

    03e5f909092903d1b21e20e333699f0bd5960a485ed630aac257963b0b8249fa63f968f4d11084abae011610aff4532b95e785cb2a1baeed599a18733c2c2587

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    1fd9cc31eb8d86f8f68ab73601c66442

    SHA1

    7bda90c13d75cd8ecde440f3e42f33c9ce3d2996

    SHA256

    f56b53b3a6d5537b5104dbb35d26406ea92976aca3f7ffa8ef856fc167f8df8e

    SHA512

    5d12ab7f360b8ab9e6c24fe50a5834bae5c22404a0b0b05afd2e7174c62b070bdfa37a952f2ed7d1647a09fe94e2d5687da35fbd19a0624f5392ef3eeda458dd

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    e760fe79c84c5e9b9ab00c8089612ca2

    SHA1

    db5b888d36fb468d25ae4fdb3f9423304f4a7dd9

    SHA256

    649b1cc1d9340d44aee6ed839df2bfe8a39adb1751bc77ce2fcec8acecd12870

    SHA512

    ee6f6bb4edbe4a599715490a7385a96b2ebddd1cd2f7623797f2865f2a44d7dce6d469d928f2cc76a80efb80ea030dea31aac9e911d76f72ddac2b8733937bb6

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    ebec4b4dddb790f72bfa266d59a05011

    SHA1

    d545697597118eb5cb72ef2d5b06d42dd981e545

    SHA256

    0130e98f3537ee7a958b8086c304eef988dd1beff4d34eddcbd73cb0cdb122d4

    SHA512

    0de37c192dad9a92ebca4e348c0582460ad6220285f593db31cf75b8d42d2caeb47ffa81e63a0acd63b90f597a799ab6b7733921de391baa37aca597ed6a5438

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\BLYAY9GR\suggestions[1].en-US
    Filesize

    17KB

    MD5

    5a34cb996293fde2cb7a4ac89587393a

    SHA1

    3c96c993500690d1a77873cd62bc639b3a10653f

    SHA256

    c6a5377cbc07eece33790cfc70572e12c7a48ad8296be25c0cc805a1f384dbad

    SHA512

    e1b7d0107733f81937415104e70f68b1be6fd0ca65dccf4ff72637943d44278d3a77f704aedff59d2dbc0d56a609b2590c8ec0dd6bc48ab30f1dad0c07a0a3ee

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\IESQQ4SH\buttons[1].js
    Filesize

    19KB

    MD5

    9712e6bb0b2efaa2d3cdb2ad53647175

    SHA1

    51d002f8d81cf4e540516db8d2b9e86cdc0cd061

    SHA256

    0738580e85e7fdef026f377d497b2791985a1b161bb9b573ed15798e1d91ea48

    SHA512

    f28e4c0fad0602e6a44f9d7983313a93c84af328fe7eb34024c36de1a5d2b4289135992eff96d5a38a8483436555e65d3dfc82b9f4154b89f0544579ebd760bf

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabB78D.tmp
    Filesize

    62KB

    MD5

    3ac860860707baaf32469fa7cc7c0192

    SHA1

    c33c2acdaba0e6fa41fd2f00f186804722477639

    SHA256

    d015145d551ecd14916270efad773bbc9fd57fad2228d2c24559f696c961d904

    SHA512

    d62ad2408c969a95550fb87efda50f988770ba5e39972041bf85924275baf156b8bec309ecc6409e5acdd37ec175dea40eff921ab58933b5b5b5d35a6147567c

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarB791.tmp
    Filesize

    164KB

    MD5

    4ff65ad929cd9a367680e0e5b1c08166

    SHA1

    c0af0d4396bd1f15c45f39d3b849ba444233b3a2

    SHA256

    c8733c93cc5aaf5ca206d06af22ee8dbdec764fb5085019a6a9181feb9dfdee6

    SHA512

    f530dc0d024a5a3b8903ffaaa41b608a5ccdd6da4ba1949f2c2e55a9fca475fec5c8d2119b5763cabe7ef1c3788fb9dcac621869db51d65b1d83cfe404fb4c27

    Download Submit

  • C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Cookies\MLQSW0N7.txt
    Filesize

    606B

    MD5

    69b7c5086ec804d9fbae7c13f414ca91

    SHA1

    67b6243995a987ff769aa979cb482da6641572ce

    SHA256

    2e91af7440f422e11afb8830e44d6643b0709cf05abb4b305e4e63d619487e69

    SHA512

    9f0af745d5cda37a722504ac0ee06ecbc6c50052b1c3cd19dc32fd2e45b0b700986f6f945b14d488fa10740ad7c32db6461460e513dd2ba98232f00f7c9a684c

    Download Submit