Overview

overview

10

Static

static

7

392d9c1f05...38.apk

android-9-x86

10

392d9c1f05...38.apk

android-10-x64

10

392d9c1f05...38.apk

android-11-x64

10

Certificat...g.html

windows7-x64

1

Certificat...g.html

windows10-2004-x64

1

FileBrowser.html

windows7-x64

1

FileBrowser.html

windows10-2004-x64

1

MediaPlatform.js

windows7-x64

1

MediaPlatform.js

windows10-2004-x64

1

OPENLCS.js

windows7-x64

1

OPENLCS.js

windows10-2004-x64

1

POLITICAS.html

windows7-x64

1

POLITICAS.html

windows10-2004-x64

1

WeReadApi.js

windows7-x64

1

WeReadApi.js

windows10-2004-x64

1

YTPlayerVi...r.html

windows7-x64

1

YTPlayerVi...r.html

windows10-2004-x64

1

angular-tr...min.js

windows7-x64

1

angular-tr...min.js

windows10-2004-x64

1

angular.sa...min.js

windows7-x64

1

angular.sa...min.js

windows10-2004-x64

1

apimiddleware.js

windows7-x64

1

apimiddleware.js

windows10-2004-x64

1

app.js

windows7-x64

1

app.js

windows10-2004-x64

1

base.js

windows7-x64

1

base.js

windows10-2004-x64

1

blank.html

windows7-x64

1

blank.html

windows10-2004-x64

1

bootstrap.min.js

windows7-x64

1

bootstrap.min.js

windows10-2004-x64

1

chmod.js

windows7-x64

1

Analysis

  • max time kernel
    134s
  • max time network
    135s
  • platform
    windows7_x64
  • resource
    win7-20230712-en
  • resource tags

    arch:x64arch:x86image:win7-20230712-enlocale:en-usos:windows7-x64system
  • submitted
    07-08-2023 20:26

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    CertificateWarning.html

  • Size

    2KB

  • MD5

    046dd89c427a6a6e87697c62e587c21a

  • SHA1

    7b57f146cd64eb61158b2296ef813b5051c882bb

  • SHA256

    6f9f0b68ebaa3383daa1c62dde25420583b763b6748208a78cc876602219453e

  • SHA512

    3d18ae2c7dd1ce5c8d7e84efb7a73fc2ac68a60fdaa09fca94d4826d587eb505f8f610b08d29664265524d6112a54ce966ba74c1acecfd0a807f20f0e76a68b4

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\CertificateWarning.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1860
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1860 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:1276

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    5488035c87ed737e1368ea6ecc32d721

    SHA1

    8a05d3613a7b45dd6f73fd359fb359fe1cb34ba8

    SHA256

    96fcf8ee05711edb2a466fc0e16718549449515b5016d02aa97997961ad50feb

    SHA512

    71b82605421136e295bab1568c7506bf09bfbbdcef7fb6e3a6d7e247ea89fcf3792f4694da4034aad9a4e4b8b36793b1e7984e5c7393d561f7ce439d45907cda

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    adc2be8d51b6ad82d671a3e36866db16

    SHA1

    82bdd21f315a3d15f1593550f565195b8a571764

    SHA256

    d1c182ab7ddcb99b14887d80e35fde7186eb68628b684df1922e1e67c28d29c7

    SHA512

    a3c0adb723d6d61f63e069dfdd626efeca1aeb77f768ef2680e867b5730f9e19598080aa7c43ec9eee1d7d2153f403ed945081861f0937a17b209bf1b0ae55c9

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    188c8a1a4272758851a05e76004cb5a4

    SHA1

    0bde4cc3c07c4c0443199668ecc16c42da83df13

    SHA256

    89d04bdb7561cd18dfe541e6fb96c24c73e31964bb4fd429dd7fe623fd379a97

    SHA512

    7d45e2a60f91e82c1d111b7c2cf19e6ad47eebe3d9c9a3c82d42b6b7273267e7c02553a2f0db16a1283e718248aed6ec631d96d4d43df8b7bd334acedd16ae14

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    d9828b8145a1dcae1d89a7336a6d802a

    SHA1

    b778593d99bc7c918d22676e620f6d6e57ff4de0

    SHA256

    935892694a1ece799912106d6cfa6a687377f141fd02a90f374fac5957609317

    SHA512

    b32a09e0c7c14770b4c02d7173c1515394f224e7194f37c4edf87e5bacac0dc1e888c1df035d1a9c3219bf85d856684b13bf730a78cc8059a782129a0b7a4923

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    771edaefe51bc2b6d62ba2982482a47d

    SHA1

    7eb5a717f5894a9ef2d67c578731be03b0162235

    SHA256

    9f53962f953d13db7349ddf9c4ff95a5753e2521bd9d69a09eb58eac3c7f577b

    SHA512

    700eaf2157d75ab758e6cf67ac9844f2316a501b810fab3101381eea0000899cfd7873dd669cb48913bda1e89e8febd718773bf87729b8ca71c7558c56314789

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    ba9f4cc5eb8e73f372103a852a9a5463

    SHA1

    fbd0527375005b3087804bd520201e7dd387a7b0

    SHA256

    a81cddfa097af055acb08966ea0ef04a5b622efb0c03baefeef0183e69813459

    SHA512

    4fbfbdc12d1ea5736d108bc99bf3cc245f29d67617a7207f994d12c5cc28cc94aafb8ea6e1762eb42d0daa87d07751c1d7ca92a1736d11886cca39b04a620cb6

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    869db8ece3fdde328f677736db140306

    SHA1

    be923bef2527557642edbe3389c501dc331b102a

    SHA256

    3f295c8b54194df2480406a47f660848206b07da61ad34fb5f3d3b82edc4f105

    SHA512

    64d6763edf2dcb43d45d82cf32800b6872ebf8392d6192dbb8594dced1b7eb3a89bddd7f55a4a27fe96b838af1202d78b9fc265fdc5b85ba4dc1d32d370c3576

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    a6a8c1de8904b526f6aa8fd1e3e2092f

    SHA1

    a51a445003c760d711cda179944ed61de8e0a894

    SHA256

    72616a8b12be50a8f2119a314959859baa1db5e41b772abd62f5230327583461

    SHA512

    05dba4bcb1092b280abbfcf3cf93d31eb299982ac744af4acde3b4e325c7715640486681a19abc10f1596744a56f62e065a128445c015b7ce609884b6734d18c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    07f15df4d17dc20dc2fb0491a462f914

    SHA1

    8d83f057e75cb022e3140a9e2077a93d1661fe7c

    SHA256

    0a75b71f2507747e7c6ab97c99bf3ecf507e551e7e4ede595617e4af9ac7b636

    SHA512

    654d0d66a8232cbe7b9af54f72335a56e5fc570e17077cc5de5876e981f2819e6aa1233af5b368d6667b44836e0de3f99f949fd77e96b8ff4f7d6a4a10e8e28e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    331a73de0ef1259e1627e8c5569ee9b3

    SHA1

    b196a8e22ab7b1662f40058f8c29809157ba030b

    SHA256

    fff987d1d12dfe7ddd3a75fcee02a79b7c4397a40ce58a93378f520d8d474877

    SHA512

    b5cf87153f1304d0e65b2addfd1233fc406fcd02cb832b827e8ce58b6e47b67700870f877eb90de15471c89dd1b3151847cb9f3663ec282a98b7e1472b85b683

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    6c555b8268652e44bec761b91e66f03b

    SHA1

    1fe67b8caa6b549ebd91cbf6567070dac35c5729

    SHA256

    2507f5fb6fe93b69e3938a21bcb68d07db3601c0ab7b79acedf78dca5f73e5c0

    SHA512

    e543fe36016d35d0905fb29073f54390ca0daa0afcba1b9d59e0f4d487be9a93e966613e095f99cf029e35facc75721d7d83b19f5bc27febe04ac31511bb99db

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    b68083f07d8e418e35c9caa10b96cc13

    SHA1

    e49fa64612579f199fb4e48d7cce8d7b07e038c5

    SHA256

    f9fcfd98a23fe9067ed00f0acf6b27af4d4a1213f3f13a2cdbe1842ee55166ef

    SHA512

    4d60af5887fe1f587c38853995e2d0406830d032dcf012c1c5ec0f190dfd3dc466ab674bb68409709e4f3bb1a02af79cda6ae843c9f73e21f0e8f2db55bf8f98

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    294150428c857dd34063a48725c63c33

    SHA1

    8728c3a5cef2f20aa8a9171f1d4a2fb3911cb291

    SHA256

    2fbeda75ef2f99eaafbc48f2c6d2b2bea1cce1a7706ae2a8c5c5d1ffde309d38

    SHA512

    5877138edd8c636c4249e882d2fb66f1bb2e12725181d5007c6c4838ee10c36c9a9d8e65ab697a2137aaeb8b430f6be46ce45eee7e830a40bd858e8e7ad090ad

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    b60e3087c868e8651dbd925e35aedb79

    SHA1

    42844830209d67e3c6bddb10534cf14bdbf5c432

    SHA256

    2623854f210ed4bf6f49489f2157c672629586d10c5784c89aac3e215ffd5e21

    SHA512

    b6cf1123c9c740a31a26e9b8a79b69921b7babba5eedc9e682afef93d3ea8c62e065c286ed55723bf893942a3e2fed4a9861fcef4dd7394d055f90d53bcbf8f1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    f0628b73b6055b08cff89ebb29de79e4

    SHA1

    58f042214176870e4c452dbabf495a87c0f6847a

    SHA256

    3107abbc88a8b8026e1a53ecf81cc42155b6fc48c065b0e4c2bcc45fbecd9f6e

    SHA512

    b8b9150144b55f01935180daa671c15707f8c3b4a2abb2dd654013a29e0e1aa0bd14c47d84ec5007b84079fbf8616c8edc67b3d56b501603ed3922e38f8f2a7f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    cc6cc71abf0838cac305795590f2849d

    SHA1

    7b4fb2cb1a1348a61f6d47c9497dfe723e1193a9

    SHA256

    521d100daec7e346966ff26b468049c4eb340790a9a8403ceaa10e14558d2d8b

    SHA512

    a7259d2a9b4c67203c59e2fb67f0835887b7a6921a170c16dcb695bebfafee9adcef3e78f10f5436482e8165d5828c55fa0d2e03621aa2e133417d8568ea377d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    fe63975f36d1b27fd419e87cf34dd0a4

    SHA1

    0dc357547d1f41d38f2d80079f1f754c6999b7fb

    SHA256

    6301d06f5d6d7c4f22a98781fa405b131d68151ec502b19ef7369f39bbb8c767

    SHA512

    03ef4a7d3db0d024c0247324213e85206a8c627c444ef3fffa0949b64476051afbc4f8c17c5e6eac6625128335d00e4d5bcb11ca29b9828af80c14559bd7aecd

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    30d66e40fb8cd396b7ff9ff1344cab18

    SHA1

    923d980add91b80b42ea3066c98ba7d7343de992

    SHA256

    ce8c767345bdd49ec19301b2383f571f0135ecae4aa77a5e33388c043f1f9dd8

    SHA512

    3753cec2e0e7ab08117b0cb587c4da273b4466962d51a654be6aa57efb30dac894828eca1bba0da84a3e11fc690ed2d39cc648c954594902ba51d0be9dd239e5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    762394f74248c8d8502bd3932abd0346

    SHA1

    6d074de1f824acd9ed7d03de9f29177f53b67f9e

    SHA256

    093d50537e81ead3b6aa951f98e5d0acfba295cd8ad038c99dfe44aad33f13ee

    SHA512

    47e4c99b2dafd87dd7d7af15d9e0ce304dfc4123f93a7cdc7c121ed044a39aceea07ce697bcef8624fa4c94aa76d077e5e7502cac6109f4a4f8ea1bd7faf4981

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabADC0.tmp
    Filesize

    62KB

    MD5

    3ac860860707baaf32469fa7cc7c0192

    SHA1

    c33c2acdaba0e6fa41fd2f00f186804722477639

    SHA256

    d015145d551ecd14916270efad773bbc9fd57fad2228d2c24559f696c961d904

    SHA512

    d62ad2408c969a95550fb87efda50f988770ba5e39972041bf85924275baf156b8bec309ecc6409e5acdd37ec175dea40eff921ab58933b5b5b5d35a6147567c

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarAEDB.tmp
    Filesize

    164KB

    MD5

    4ff65ad929cd9a367680e0e5b1c08166

    SHA1

    c0af0d4396bd1f15c45f39d3b849ba444233b3a2

    SHA256

    c8733c93cc5aaf5ca206d06af22ee8dbdec764fb5085019a6a9181feb9dfdee6

    SHA512

    f530dc0d024a5a3b8903ffaaa41b608a5ccdd6da4ba1949f2c2e55a9fca475fec5c8d2119b5763cabe7ef1c3788fb9dcac621869db51d65b1d83cfe404fb4c27

    Download Submit