Overview

overview

9

Static

static

7

Fast Launc..._r.apk

android-9-x86

9

Fast Launc..._r.apk

android-10-x64

9

error.html

windows7-x64

1

error.html

windows10-2004-x64

1

template.html

windows7-x64

1

template.html

windows10-2004-x64

1

Analysis

  • max time kernel
    144s
  • max time network
    141s
  • platform
    windows7_x64
  • resource
    win7-20230703-en
  • resource tags

    arch:x64arch:x86image:win7-20230703-enlocale:en-usos:windows7-x64system
  • submitted
    06/07/2023, 20:20

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    error.html

  • Size

    394B

  • MD5

    af73dac5943769f096eed0a81ed485bf

  • SHA1

    187ce7ce78d296da586e378d990e2520e94ceace

  • SHA256

    eac69188b0aec17013b34ed679d57c06cd6032b53992f673d5560d46de45b161

  • SHA512

    02aeff00a85c55b7d8221bfc1c4bb5e6b9dccca1cf07e4822aceb533eaa4eec5efdef2c58df37b9d27efa2d5c9544eb749bc729a87a86768c660ea41ae70cdb5

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 39 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\error.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1184
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1184 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:1456

Network

        MITRE ATT&CK Enterprise v6

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          dd06ff689ebe3d307f8bc1a2ef4267a4

          SHA1

          955f931ecfce688494efe06a5eaf5099cf3015ce

          SHA256

          796e6cef4840e1661aeccf475e9b0e2e290077e0c7348bdfbb7bd1fda0ca6344

          SHA512

          572dce77187b1663877ff3dc380a4d7f427096b674d08a115cdff10d3f01b3a7db315a6a18390749e6e071bbe9e4b0e3219890d77c5df62874d8c41b998e9998

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          131001d65716653e08da5298ad993547

          SHA1

          1b0d62efbbb56ce313c6ffcaae1353c472c8873f

          SHA256

          fa820b354c510f27cd52dac0c49aa09a3d0db86bda096be5e8c5d3f532659a84

          SHA512

          44e28f87de7d32ea75f1e3ee7667542ae8fa5d22656efb65004b921ca5fb2a4b878d562315a6a2627ca7e66147273078b812ed118882f8f89df88b7958780005

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          372500b25d89da312abc834f6d382b3b

          SHA1

          1ebba45e4ff5ee08c1dc6492eb145dd3ef2e5f7d

          SHA256

          9bb4dfd82761d8ec07a8580771aea048e231f3e83b21598a0e830f10210695f8

          SHA512

          b844b229a2fafffb00a65deda6f1b268e3365280ae6829ddb1892a48ad342919cd970e740ccc7beeef343257c59626f09c0d7f0da9313a0b947e3083d835cfab

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          c9d9db3f3b4bf58df708f1d41a904710

          SHA1

          a772538f9fb7f927cf349ca53ff4beb03ce516fe

          SHA256

          d6fd92be2a86d00bf37ad6e03494bea1a2d3e6079bc140095afd6ef2f4933c6d

          SHA512

          b0bea8cef83cf9402738aa4aa4eab28f9cf646aaebfe46821e1a1c8a9e1843590d5a3e3219d6d543de1f5a2fa786295dcc90449dd252e3b7abad2d9ec362019f

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          298327a1b288f359188134807feacef7

          SHA1

          9c516579183dc74af87dfaa3fdddbd60ee9ae8e3

          SHA256

          6760464876a978179cb5274fd1f5f04306927640a2a78b203435d7e1bc902561

          SHA512

          1268cbed10661a4c3c7a137f0fbe3efaae322a00acdd60c9a4b0686357c372e1247ecdfb872185948654725c0070cdae971ac0cbafce0d9baf75feb06479fd68

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          5f239a7883b745d89a64324c13accaa3

          SHA1

          0d05b88a58a8e3b48a4658bd2ea3affa7aca2afa

          SHA256

          ea6b629c39680e89fffc3243776c1ac9baf1a67bbf8f94c8ed7e6bce3ce65132

          SHA512

          01577cf4a28a0a48586a21e0762e4eed6e94eaaa9205bf3099f513d69deab8dfd52b3bc447e99174d2fa4b1d068953bd642e69c6e2b1e010e1e8aa3172c3fc0d

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          a5a4303ddb019e7e250a520433b2c3b7

          SHA1

          7940b04bdd98b34e338a316bad10e43748e9245b

          SHA256

          d6e48bf0bbacf6079bcd7ed735e0ebb313f80b405f113426f3f778c22e70cb07

          SHA512

          cd5640deae221a1023e0bc2ec948ec630c57f1b20b87a6b4828e77db8383ee8371e1b1e37af85f2f0d7ff8a853a274c053b188e37d9842da68f077f3a6265bb3

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          2bf44625069e7c3c8f8ba703f5e48658

          SHA1

          a20b0c120ae1bc3360a184f30b021b3aee19af6d

          SHA256

          920a4a5334a4a0b35938d47472f759b9bd0bc1e915cafab32d8c8e84fc45d83a

          SHA512

          9fa78c83859c3d9069a11c1d951f72e379a113c9a5c15767e0b32f0921df23fcad226161d5eb090989f6b060b4ad4d891eaa890cffcfc949546c15b3612efd8a

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          9995ca144a71b6dfe746740f9504c9b5

          SHA1

          ab2fee1b17c9761ef4d4929f9e408968b7aec23d

          SHA256

          1e919043ce36a1ccdfbd0e07fd1d17d1ab3b9684042d3c619162b91dd6c342ee

          SHA512

          155fc0c13388f5e440b46fc8d27fae3451da82db11bb04888e44fa51394f1a0805f57b7137b7d91c190ae96d50333c985d249fa0b5b4fabfd34d7dddecdd8ca4

          Download Submit

        • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\M70DY8PN\suggestions[1].en-US
          Filesize

          17KB

          MD5

          5a34cb996293fde2cb7a4ac89587393a

          SHA1

          3c96c993500690d1a77873cd62bc639b3a10653f

          SHA256

          c6a5377cbc07eece33790cfc70572e12c7a48ad8296be25c0cc805a1f384dbad

          SHA512

          e1b7d0107733f81937415104e70f68b1be6fd0ca65dccf4ff72637943d44278d3a77f704aedff59d2dbc0d56a609b2590c8ec0dd6bc48ab30f1dad0c07a0a3ee

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\Cab6166.tmp
          Filesize

          62KB

          MD5

          3ac860860707baaf32469fa7cc7c0192

          SHA1

          c33c2acdaba0e6fa41fd2f00f186804722477639

          SHA256

          d015145d551ecd14916270efad773bbc9fd57fad2228d2c24559f696c961d904

          SHA512

          d62ad2408c969a95550fb87efda50f988770ba5e39972041bf85924275baf156b8bec309ecc6409e5acdd37ec175dea40eff921ab58933b5b5b5d35a6147567c

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\Tar6484.tmp
          Filesize

          164KB

          MD5

          4ff65ad929cd9a367680e0e5b1c08166

          SHA1

          c0af0d4396bd1f15c45f39d3b849ba444233b3a2

          SHA256

          c8733c93cc5aaf5ca206d06af22ee8dbdec764fb5085019a6a9181feb9dfdee6

          SHA512

          f530dc0d024a5a3b8903ffaaa41b608a5ccdd6da4ba1949f2c2e55a9fca475fec5c8d2119b5763cabe7ef1c3788fb9dcac621869db51d65b1d83cfe404fb4c27

          Download Submit

        • C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Cookies\M0LH595U.txt
          Filesize

          601B

          MD5

          1cacaae3bb37fee258aed5d6ffb5f8f8

          SHA1

          0326ffd98334ccc636924da350bb88dda88d2075

          SHA256

          80b1554aef01f43d08be7bc4608d3c3177f619e5e33cf645390b2fb7b81a396a

          SHA512

          3d7b8c893a29aaf874ea5fc2e2ee547ebecfa2f32af3aa99799265db76096c516a378fa9bc4096f21af2a645fae950c83b5c6b5a455afb9d9aeb451d3c73e673

          Download Submit