Overview

overview

10

Static

static

10

MyDiveDeals.apk

android-9-x86

8

MyDiveDeals.apk

android-10-x64

7

MyDiveDeals.apk

android-11-x64

8

08eba805c9...ac3.js

windows7-x64

1

08eba805c9...ac3.js

windows10-2004-x64

1

08eba805c9...002.js

windows7-x64

1

08eba805c9...002.js

windows10-2004-x64

1

144.9655be...unk.js

windows7-x64

1

144.9655be...unk.js

windows10-2004-x64

1

68.a0c7b2ab.chunk.js

windows7-x64

1

68.a0c7b2ab.chunk.js

windows10-2004-x64

1

7.d78e4aac.chunk.js

windows7-x64

1

7.d78e4aac.chunk.js

windows10-2004-x64

1

AFFIN.html

windows7-x64

1

AFFIN.html

windows10-2004-x64

1

AM.html

windows7-x64

1

AM.html

windows10-2004-x64

1

AM_Pass.html

windows7-x64

1

AM_Pass.html

windows10-2004-x64

1

Alliance.html

windows7-x64

1

Alliance.html

windows10-2004-x64

1

Alliance_Pass.html

windows7-x64

1

Alliance_Pass.html

windows10-2004-x64

1

BI.html

windows7-x64

1

BI.html

windows10-2004-x64

1

BSN.html

windows7-x64

1

BSN.html

windows10-2004-x64

1

CC.html

windows7-x64

1

CC.html

windows10-2004-x64

1

CCValidate_fred.js

windows7-x64

1

CCValidate_fred.js

windows10-2004-x64

1

CIMB.html

windows7-x64

1

Analysis

  • max time kernel
    97s
  • max time network
    153s
  • platform
    windows7_x64
  • resource
    win7-20230703-en
  • resource tags

    arch:x64arch:x86image:win7-20230703-enlocale:en-usos:windows7-x64system
  • submitted
    12/07/2023, 11:56

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    AM.html

  • Size

    223KB

  • MD5

    2be390d456ff284109c4482ebc04e275

  • SHA1

    d20c7c773a13161f850f2bd51fdbf8b1cf6b06c7

  • SHA256

    34516f0631ce2b6a9bec0b6bc3c425f031f70312bcb7d7b1dec05fef911bfcd6

  • SHA512

    c95fb4f89a128b209d9e5aa4bb619f04d808f404f072e456507b52592e4079d423444a36216621092a59bfb154e2622a41e2fe45de329e6d1619fc90c68087b7

  • SSDEEP

    1536:xO8oVE7Ew/2LUb0kqMWUn3mcubpLzWFlofQpZrsyq5Uvcf:xO8oVE7EwgUInC3WooSvcf

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 39 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\AM.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2244
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2244 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:1708

Network

        MITRE ATT&CK Enterprise v6

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          ab65ec3aacb7dde0f8a3cb4d72531eba

          SHA1

          f75a05e3f31f1a22655efd2c1b5a4d3623f6aaa4

          SHA256

          e64eca9b665d655bb9c65b461c07541ed91ee49f09c322484dcfee2600d53cba

          SHA512

          bf2d8b5200425ad251fcac32f7a010f5fa0b5934ade5804a1921252a4abb5ef6eab075ba3857ecd1a26b0fa34ab2a250890c3b582d07d83454af71fef32deede

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          608bef4133af5ec01a52e3b0bbe34a80

          SHA1

          da2d70f5fce82285a602bbefdc9954482aafbd16

          SHA256

          a34b70175fea3d4a73ae808ce6c305359dbd919c0b012934e5be3eb1b8609442

          SHA512

          45f4a41628cbb3ebb51c63d1f606364b470559366c3ec282abbb35a171e516602307d95ee9907714f635f4a2a365a49747f43c324c016f8ac22faf1e66b9f794

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          e78a07fc4fe4928121ea9bb0acd9cc60

          SHA1

          d6d9cb2ef9e54bb77469864bdc593aa834e9c182

          SHA256

          cbead83924fdabd180e29f7023cc6f4facb11d7af88d120ff648eba5f2e9bbe8

          SHA512

          4b802c8049009f6a5ca85a23a9dd6c1cb5dd5b4ef0538b325b32af5373c0097ce0d8656a761e976ceb1716feeca4435bd64ae98f9d79acf9d4a2817b4bf4b33e

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          2bf57252890afaa6796ac2bd462494da

          SHA1

          6264dac27d3bea8b834c53fac067e43fe427fdf7

          SHA256

          0c8077863d0fa43fbea7a52fb7bdc3e96fb4e596e4d6603a830aad64cef8e4d0

          SHA512

          f7126150d76230c4780e6cec5f88890c9633760501c3e2ad4aff045f8c52b9d424364927a80e866d9dddff4bec7b6dc849ee50513db744055c4cce7e1a933ae8

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          6fd798fecd4a492387a3bc1544b02adf

          SHA1

          b39f7b315ee0d8dcb9b0cee05a2860d4ff000672

          SHA256

          89e92bb3d8713bb9f4aadaddc3f9efe06b74e13b508fec7cc48aadc8504acabc

          SHA512

          86cfa9c6fd5f756b0a1fd28f2077596d1f9aacb9330c54858920cc5b0a93f0640a6b9732470c1e4e95b83a14380f162c64d8c812ac9badb3eab4403f0c2c8047

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          116343918faf37195786136397fcf2a0

          SHA1

          4a9a263107687d0d91318c0bca51e6a8b34cbd52

          SHA256

          df0c36fe96baee6d19e1665398e7ef330973092d85fa41fec3b11dc0fd2ebc67

          SHA512

          3d10444b576e4dc52da48adf44ddecd34eafe639dbf8472b2aac17ad281d22447544520b72b7b38d4607d56c6806d2ec6ee3e4e1cb81f51a2b983dfb706512aa

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          32981a9d39d5246d9b45cd3d9cd4d516

          SHA1

          41c7d78a95de911190db681a9ff5bd07e89d7bde

          SHA256

          dbd91b9d16d2f7cd844edfba913c9acd10acb40e2e490687e57e436fa0a4f478

          SHA512

          1fd44079427be27f61bb28b6a8f5540a9182d210901e19a9a188c861113255e995cff0c544af9e3d15dcc36f83828d4b170fd4894d58135ec6ed1ceec1d2d999

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          f29aaf52e0364268af014c12ad55cafa

          SHA1

          fd65a866671f9e047b2935c96fb8ecf59c08c21f

          SHA256

          142a73299cf57bd04219eaba3da956ab0f51b4b9a6372f8961476cf5e39d1704

          SHA512

          b7fdd82fccd94bd3de78e14af803f5c5899c3a1793e558bd51920cacb313d0a53886ace430686c94700480d4a3ec6f8456eb9226cfebd366ff8ba5f17baa5f8d

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          9f820ef2be7657fc99a90be1921f8720

          SHA1

          22f10c387dba28e5e1bc5fe26a6f29905e2716e3

          SHA256

          dcb848b7817d1706a68a1a3eec7bc7ea2493eb3703abb6945059e1f39dfe9f7f

          SHA512

          cc87bd1a69d27eb136e117345319c6ea2333be2dbd02802366310c9b0ffeccb84b849421a45436c6db41073160c723ea4a9c52bd0df187a75a0be21c23c1298c

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          3711b79ff6885206fb73fbe512e37c5a

          SHA1

          23901c0e41d789b87246d4dcc6924e15c0a18870

          SHA256

          06de6ec41a991a3a6bf153303d58d8a04607c8bc742e6a22b8a186117dfc765b

          SHA512

          3997e96ac414b25002cdcc5172e4f730f53e9cb12d46c7b811675a59ef9eff7073d474fb6095b0a3817fec23985f2488b3865bff3c01d34bc22e2f85edec44e9

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          828f1c8236af372ae4acd4ae12a03aab

          SHA1

          a83dee3ea69f51f5d3ba0aa1c84483902f3e33d0

          SHA256

          b4b4a7345cd63b647c78717c38186b1650ec2e9bc3447e2c696b9715ed6025f4

          SHA512

          5a4283f555efc30b6a8234807e1c6152ae73a2c3a81e2df86ec8d846126fa48c86f73dd0bb833df045cd66b50a2d463226ee3e80b5408cee36c13d6269e92fc0

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          92afbc62bb2e4b5e4a5803b4e63297ff

          SHA1

          8b849ba5748cd15d4bfb31a781652f80f79edcad

          SHA256

          bbb7001a422cc33b9063675aa229f4c02f59d8c0fe68958ef27e0ba4adb68c70

          SHA512

          d5368c399c08afab0b29d08128b7ddb68b3a73f0d2051b408e1bb7e34ec338d06bcf07e5e2aaacfb42f42ff231767fa6b8eb2db464a05663e51e145e7385185d

          Download Submit

        • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\XZEULFN0\suggestions[1].en-US
          Filesize

          17KB

          MD5

          5a34cb996293fde2cb7a4ac89587393a

          SHA1

          3c96c993500690d1a77873cd62bc639b3a10653f

          SHA256

          c6a5377cbc07eece33790cfc70572e12c7a48ad8296be25c0cc805a1f384dbad

          SHA512

          e1b7d0107733f81937415104e70f68b1be6fd0ca65dccf4ff72637943d44278d3a77f704aedff59d2dbc0d56a609b2590c8ec0dd6bc48ab30f1dad0c07a0a3ee

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\CabD942.tmp
          Filesize

          62KB

          MD5

          3ac860860707baaf32469fa7cc7c0192

          SHA1

          c33c2acdaba0e6fa41fd2f00f186804722477639

          SHA256

          d015145d551ecd14916270efad773bbc9fd57fad2228d2c24559f696c961d904

          SHA512

          d62ad2408c969a95550fb87efda50f988770ba5e39972041bf85924275baf156b8bec309ecc6409e5acdd37ec175dea40eff921ab58933b5b5b5d35a6147567c

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\TarDA9D.tmp
          Filesize

          164KB

          MD5

          4ff65ad929cd9a367680e0e5b1c08166

          SHA1

          c0af0d4396bd1f15c45f39d3b849ba444233b3a2

          SHA256

          c8733c93cc5aaf5ca206d06af22ee8dbdec764fb5085019a6a9181feb9dfdee6

          SHA512

          f530dc0d024a5a3b8903ffaaa41b608a5ccdd6da4ba1949f2c2e55a9fca475fec5c8d2119b5763cabe7ef1c3788fb9dcac621869db51d65b1d83cfe404fb4c27

          Download Submit

        • C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Cookies\N03T4FP4.txt
          Filesize

          596B

          MD5

          83c0e0ffe1d5dc58175e0b7b36dd5720

          SHA1

          b15fec282e9126dbad13cfd7ad218fbd9d113846

          SHA256

          d2a4fa352db9082c1e0d4ee38bd84bed3269efdcdbb552c6923ade896b42fd9a

          SHA512

          a3124b9b1c2dd02823f9fa887fa6a3a8529e7f953ab0b193d4c67572b00ce1733067fdcadb7972d6dd86c81925ecc446dd2c6ca27acc6c759c967d492d295ff4

          Download Submit