Overview

overview

7

Static

static

7

GB_b19741fxj.apk

android-9-x86

1

YOWA.html

windows7-x64

1

YOWA.html

windows10-2004-x64

1

changelog-ar.html

windows7-x64

1

changelog-ar.html

windows10-2004-x64

1

changelog.html

windows7-x64

1

changelog.html

windows10-2004-x64

1

clockDarkTheme.xml

windows7-x64

1

clockDarkTheme.xml

windows10-2004-x64

1

clockLightTheme.xml

windows7-x64

1

clockLightTheme.xml

windows10-2004-x64

1

credits.html

windows7-x64

1

credits.html

windows10-2004-x64

1

e2443.png

windows7-x64

3

e2443.png

windows10-2004-x64

3

e2445.png

windows7-x64

3

e2445.png

windows10-2004-x64

3

e2446.png

windows7-x64

3

e2446.png

windows10-2004-x64

3

e2447.png

windows7-x64

3

e2447.png

windows10-2004-x64

3

e2448.png

windows7-x64

3

e2448.png

windows10-2004-x64

5

e2449.png

windows7-x64

3

e2449.png

windows10-2004-x64

3

e2450.png

windows7-x64

3

e2450.png

windows10-2004-x64

3

e2451.png

windows7-x64

3

e2451.png

windows10-2004-x64

3

e2452.png

windows7-x64

3

e2452.png

windows10-2004-x64

3

e2453.png

windows7-x64

3

Resubmissions

06/07/2023, 18:35

230706-w8fqlsdg43 7

06/07/2023, 18:32

230706-w6mfdadg35 7

06/07/2023, 18:27

230706-w34kgsdg32 7

05/07/2023, 09:21

230705-lbqjfabd66 7

05/07/2023, 08:59

230705-kxxdfach7v 7

05/07/2023, 08:41

230705-klwmrscg9y 7

05/07/2023, 07:15

230705-h3aqhscf6z 7

05/07/2023, 07:13

230705-h2e9lsba95 7

05/07/2023, 06:50

230705-hl6fvscf2t 7

Analysis

  • max time kernel
    101s
  • max time network
    143s
  • platform
    windows7_x64
  • resource
    win7-20230703-en
  • resource tags

    arch:x64arch:x86image:win7-20230703-enlocale:en-usos:windows7-x64system
  • submitted
    06/07/2023, 18:35

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    changelog-ar.html

  • Size

    72KB

  • MD5

    c651bb94e9f83dc0e7c948c60eb1db60

  • SHA1

    9d982fef2dc879c8e91d9003d398de221d3ba9f3

  • SHA256

    cd0453a82a7ed5379049a5d3f3d91ab36e673761418e777d91c4c944d1912a81

  • SHA512

    3e234e7e0167967e1600dd8dbb5b3d0c119205d67eab93e09bb9d2a6bba470dc6f324edf787cd54bcf3cbfd77680eaa32b128bde7a023dbd619bc37094d952a1

  • SSDEEP

    1536:aQweFu6MydzhX0iYvTqrSFL7pGXtiEmfxZb6JOL4suMApYlvpENCdjWbFlrQ9ZLW:DBu6Mydz90TqmFL7pGdiEMxZb6JO0suP

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 39 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\changelog-ar.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2980
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2980 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2324

Network

MITRE ATT&CK Enterprise v6

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    907b7630d6edb96830fbd938a0ecff11

    SHA1

    045ae6165a17b43c5180f327d329a8106642f97e

    SHA256

    3d4f526eef9a2b39b203b811b27a93f9997f4b165b69d05952eb7b9630e9a0ab

    SHA512

    246cef6dd486625be7b2467d2a542a1bda431902c113f566a888e72e2fcba6dcaca6a9692f80b29cad0ebbc46e1f48084574efefa24d7dfa33d689b672de4e92

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    a17be16c781edc375590246795093c7f

    SHA1

    f53b84aa0eb341b39b836b7711d5da7edb84ede0

    SHA256

    8e59879510b372e5ab7df4b2a508ba9f8eb801b26147c823cad7a51bb200cbd1

    SHA512

    98cd9a9af6971256f943d66c7c45a21e79e11c97425ad056ff52b23241b85227066e94ae2235b9600d85e79017747fe1db2d942e1e8d7b73c04034486630a5fa

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    eb89d131bf6dd971782bb462490e6071

    SHA1

    03bfd0101424f8edd261f673c0bec1083451e921

    SHA256

    2b8f8cdd563b4725e02d1150833e20e7a0252f363fd37d3d2fa498d4cb4c9501

    SHA512

    bec520e59a4ddc606f4bb37aee73bdb0ec0be0fb30b327133e2a6ca15dada4315901c346a939076b029a9e97a36d0f81bf0b2a6e9922d5af1bcb338e4f4166d4

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    bedb6eb74faba35174cefd238407227b

    SHA1

    03866543043bad7721a07435fbbbfe76cfd5b184

    SHA256

    a993c109f9fdc6b6a8259252a150c09cb3528bae07eef1c44e01db5462bc55a5

    SHA512

    cff026128dee48f06154505a580077ca61118545dc7af5a39ff0516f38ad8a5879a1f077ea3ee07a81fe0fef5dafd3a6a72dc98d6947297a48fd71fe31e8ceb4

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    cf94a3c6ce6833eb51c3448e153f982a

    SHA1

    5713505678104324e39e2c1d015c9b0ca90fc5e3

    SHA256

    78cf2f9a0e00bf2fb2426b4b93d880dc32748184e9b5064b3b1bc7f352e89df4

    SHA512

    a29f8678262d644a74313c6f12d970905a773e56128008ca31909b77b3f38b0ca6b20b7c44063be2f01d0ca6531276aa3ef3c0b53b3a918ef770c4b66f75ae4c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    85899b7d2779fe2d58db9d575f4f58dc

    SHA1

    f9f6c219495a1877dea0c067b5590a2eba3c8d17

    SHA256

    2acab56110516891013106a9629caaf2b21667acd0178b835f9ef456f4053f49

    SHA512

    dac4ea809ec373d553c1bf02f4a5168f1d85cd6bf95238bba4c4af8ce978adba1e269726a92068ea7fc79585460d2d749450fd809b3aefda18e733fa995e41d5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    69c99c38ae614a1e552402570b520d27

    SHA1

    cd2463783b175b269d73e111eea5b8bedaf6d878

    SHA256

    4fa10e225c9b121081bb62409d2696c3c821a775c7acbdabf4b764ebd0799960

    SHA512

    3d1b5308308e85a46357b8ab4113762d267475c51676fad81220f172ceafffb6f9707c93900c2ffe58d9aaba64e8532fa7ffd416a2916cf451a2482377c5a676

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    c5b19ccc109c5e6f96035d28c69c9a29

    SHA1

    156dd647c9682ef53fc9cee29bc7e05f6d9aafd2

    SHA256

    0522ed79efc4a7aa206453e3b68d47998bd15a5c291b1344efe864da305bec6e

    SHA512

    2aee2b1551a3e7e22b743e711bb1ca8e12ff62605116027b73ef45a25251369910b98f487e987d553cc026c0871775e13a428d91b0c8195943ca75745d5c9adc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    978549c46316f74fe785664f9cec6fe7

    SHA1

    7cfd852ebcc2361308b19fcf3a9a9d3b6229c374

    SHA256

    8d00f5b3fad1f3cd2d2b06a5ebaa3eb9c24a3df284803aac758572cfec3f7892

    SHA512

    9ac60e233501922e49df1ff6fb29fa1e32953ca95a9afff3b1f57641134cf93c16bbe183706aba21c56f81dd751b8b8ebd4d76fba982a019f060b5b14e07b582

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    08f80478cefe98bcd2061bcbd8b3f647

    SHA1

    cbf51eb1b5d08edd31fbdd0fd2157a8103f0af66

    SHA256

    b3c19e224a45b745ec946fde4b12edb54a2a661bded7f81af0416af4ddbf0a63

    SHA512

    6fa9e54f6a6c5b2ee313e087afa97f7410c3878459de38101d6fec29daaa2508c9e693a4fe1838727368f942b4a7208b213d749c5e4b37c1aae045567c6bf4f5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    d941c6f4f94acc653f4f2b2962fc5cda

    SHA1

    0bd29eeca697185096c9bf45d0469a8bc22509a8

    SHA256

    1ec0489da7dc320ac18b969fb8517dc450bcc1f23955c8603008cca56e8b7614

    SHA512

    6c32a8cdfbcf342268ed2249a17c427e6cbb5f1457e911527baf936164f2a3ab45a3dabc093b06dedd0c7d5f8a1d094968d9af37e218171963f35c23ec64ca48

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    d0a7b1e2e46bf8171c244a9080b7f807

    SHA1

    97402ff76ea7de622d9277844a4b00134dd9d19c

    SHA256

    7739d6c8b958f0702ec372de4d0fabce16d75c3a31bfa8a6d329c24114c81e41

    SHA512

    23fb3d00a6a611c5a835e4c5fe6a140960bbfc77e441d4f5bc09130c321c104c4af5db7faa393b599440f628d1648ec163fae3143a67b930f5555945ebc0d2a2

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\M70DY8PN\suggestions[1].en-US
    Filesize

    17KB

    MD5

    5a34cb996293fde2cb7a4ac89587393a

    SHA1

    3c96c993500690d1a77873cd62bc639b3a10653f

    SHA256

    c6a5377cbc07eece33790cfc70572e12c7a48ad8296be25c0cc805a1f384dbad

    SHA512

    e1b7d0107733f81937415104e70f68b1be6fd0ca65dccf4ff72637943d44278d3a77f704aedff59d2dbc0d56a609b2590c8ec0dd6bc48ab30f1dad0c07a0a3ee

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab7EB3.tmp
    Filesize

    62KB

    MD5

    3ac860860707baaf32469fa7cc7c0192

    SHA1

    c33c2acdaba0e6fa41fd2f00f186804722477639

    SHA256

    d015145d551ecd14916270efad773bbc9fd57fad2228d2c24559f696c961d904

    SHA512

    d62ad2408c969a95550fb87efda50f988770ba5e39972041bf85924275baf156b8bec309ecc6409e5acdd37ec175dea40eff921ab58933b5b5b5d35a6147567c

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar7F73.tmp
    Filesize

    164KB

    MD5

    4ff65ad929cd9a367680e0e5b1c08166

    SHA1

    c0af0d4396bd1f15c45f39d3b849ba444233b3a2

    SHA256

    c8733c93cc5aaf5ca206d06af22ee8dbdec764fb5085019a6a9181feb9dfdee6

    SHA512

    f530dc0d024a5a3b8903ffaaa41b608a5ccdd6da4ba1949f2c2e55a9fca475fec5c8d2119b5763cabe7ef1c3788fb9dcac621869db51d65b1d83cfe404fb4c27

    Download Submit

  • C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Cookies\KQ9Z5AL1.txt
    Filesize

    606B

    MD5

    1cebf386f1dac92efe251d8b41f69a1b

    SHA1

    972d8524514e1ee220acafacac8b2b3be87307da

    SHA256

    143e5eefcd59ebca1c3189154e53c8476ceba59c8e54ef41fc083703024f5dd5

    SHA512

    53495178ea878e63ab039cd0054c2415800652b06d8afa10d7f76b09757184e3c17b94abdab3faf21724878dc5e31a3f0ca660c6052dc82a886681b05b667705

    Download Submit