Overview

overview

10

Static

static

7

38658ac74d...b8.apk

android-9-x86

10

38658ac74d...b8.apk

android-10-x64

10

38658ac74d...b8.apk

android-11-x64

10

1bf84a89-2...c0e.js

windows7-x64

1

1bf84a89-2...c0e.js

windows10-2004-x64

1

ad.html

windows7-x64

1

ad.html

windows10-2004-x64

1

aps-mraid.js

windows7-x64

1

aps-mraid.js

windows10-2004-x64

1

assign_lab...l.html

windows7-x64

1

assign_lab...l.html

windows10-2004-x64

1

blood_gluc...l.html

windows7-x64

1

blood_gluc...l.html

windows10-2004-x64

1

blood_gluc...l.html

windows7-x64

1

blood_gluc...l.html

windows10-2004-x64

1

blood_pres...l.html

windows7-x64

1

blood_pres...l.html

windows10-2004-x64

1

consentform.html

windows7-x64

1

consentform.html

windows10-2004-x64

1

diabetes_r...l.html

windows7-x64

1

diabetes_r...l.html

windows10-2004-x64

1

dpr_report.html

windows7-x64

1

dpr_report.html

windows10-2004-x64

1

dtb-m.js

windows7-x64

1

dtb-m.js

windows10-2004-x64

1

edit_insul...l.html

windows7-x64

1

edit_insul...l.html

windows10-2004-x64

1

edit_label...l.html

windows7-x64

1

edit_label...l.html

windows10-2004-x64

1

edit_medic...l.html

windows7-x64

1

edit_medic...l.html

windows10-2004-x64

1

edit_track...l.html

windows7-x64

1

Analysis

  • max time kernel
    134s
  • max time network
    136s
  • platform
    windows7_x64
  • resource
    win7-20230712-en
  • resource tags

    arch:x64arch:x86image:win7-20230712-enlocale:en-usos:windows7-x64system
  • submitted
    07-08-2023 20:29

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    consentform.html

  • Size

    27KB

  • MD5

    7a2ed1a6df8839dd8936a86d9edccabe

  • SHA1

    7bc1af528444afca678905059cb1ba9fade65352

  • SHA256

    d02fbd55c1b5da3fa1f77c52f5633421395a3bf228457521512b37cdacd65f9c

  • SHA512

    ea0c3e512b37e340f4c0a49196344f1dd5aef38c469ba124605518e913be601a5b6a92a50f00e962bc90041bb80e51480254c7902032d894b7d24be5aec47097

  • SSDEEP

    768:wEh4FOT6bJdK0D7fkvaqF1b6cY4c5rC28c54NTc5Jt:th44GbJdKoncY4c5Wc5wc57

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\consentform.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2052
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2052 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:1784

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    8646145c4f015c34dacefb4f3fb0736e

    SHA1

    34546978ba693c191a6e78e71b62bbe0b51a3a78

    SHA256

    c452122c7ab65e8ffbec96b638a861eee1ff5f956c39455d078b4c44dd46207c

    SHA512

    cf1ee34e4a600cd469ca84d0a851facdbd8af178ef3ce7e5f27af3b7ba4782c3243564a8d11852163915bc4fd53c3741162e336b5e59d4c41e6da9409267d61f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    83b655c4a071206c7ffb2aebfccc2a8a

    SHA1

    183cf3af3b9aa1d97191e3b7c3c503f58d09ce4b

    SHA256

    7c1c5a5e32a30e92a5990470b0c3ec35a6d4897047da553a4ebba06a9c4c25d5

    SHA512

    bf114be5d0bca3bffb84dbd71c457b7c32b3f1886bbe4d27be3ec0926daf8fa456bdb9832b8564a6f1672a960af2c6d3e3f6bd49b9698eee3295d3375a35b0c5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    0d8318d1049af3f7ce33ad0664fab810

    SHA1

    3ebab28cd2f1b6231ccf0089160a70465c0584c4

    SHA256

    c64c8df8948d17e4f15e6d28a4f860d38d993a91f97cc06aab9eede3b4b2e3af

    SHA512

    2a48241c261d2dbcaa663436269e4f6cb7c5b52bc7366876e4facc614970f4c519b1cf14a16fb9cdf81de5039f49230e55df324b652816e559e59e239ffe56a7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    61fafe5652016ce3cf14e3200a4ad6f6

    SHA1

    a13aa1e56111b120576bf7db238955bec39e7f29

    SHA256

    dbbff816de95e30a501480fef7a633a2f4f9a73ca40bcf3f65ea36ee95ab97ef

    SHA512

    18f872c7a63c4835d782fbd0f47e7c7af4bf12061cf3e551006fedb6fa57211e1b897de8412dad0cf27df9c7bf8f2b4be51d3e9a48b03d64f58fddb51e5501cd

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    8458bc9cdd264b63acf7fd3390919a11

    SHA1

    a8c6b2449c924f1a44d4e089f0e148251a43e2bc

    SHA256

    cfc4b5cd74a4d682d06dead6229e412c8267021ce8137f8e240381d3ad7c1cb9

    SHA512

    2692e7c56e26fa4f9f56254d6c6a64c722d2f4e88d17de5bc6a5b922c2f4cac6eed7dfa0db3dc150473a0ae5b06faa52ec5bd1baff8f59fc6496e684f0a390c1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    6c1b5ca089d308fe8405e700351f71a5

    SHA1

    2c5e4e618a4c99f8a7be92ea92365a6ff11d78b0

    SHA256

    236cbcaa6c523b21a6f17717c5a8fa6643b0db11b50174b878252e9c17d55d09

    SHA512

    14ce62ed6b1c8469b5998e9d8d7dab6af68846b739b6e6fb23813a82d5f43ff79d6785fc62d026cdfdedb7335add7120d0145c2d82219e3833bf245225361c66

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    48e13d89d26e1f318613a3857bd4ac64

    SHA1

    39772d6ddc4ff9d215d5f98b6a36bf64272dc5b7

    SHA256

    45275d6dcbcc5b3b04e0ae8a6e7d8118e6ff34064c79e1f9b248fc39459373a7

    SHA512

    99fbdcadd706224ed0a970fe80860529dddaa285b7b2f866415b754e82f6db01954cf690ba0c5b70b03e72c122fff608de46c62635b8b22ddf52735f6efe96a5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    be9abdbf51bcf1fe5693eb9de4c7e292

    SHA1

    e760916a437d700432ef9c7c49c2036afb40d51b

    SHA256

    060d38b14989eaa46dc34ee5dd09bb7fd25c892bd4572acd15cdd5b55fbad495

    SHA512

    ef4aa0906ad5ee0b0251f3270bac8929f4f72d2532bf0eb443660f826af4973c8780b85a0828c2553e12bfeb2505f06e5889025a163336f2670ea3cb237e4af3

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabA1BE.tmp
    Filesize

    62KB

    MD5

    3ac860860707baaf32469fa7cc7c0192

    SHA1

    c33c2acdaba0e6fa41fd2f00f186804722477639

    SHA256

    d015145d551ecd14916270efad773bbc9fd57fad2228d2c24559f696c961d904

    SHA512

    d62ad2408c969a95550fb87efda50f988770ba5e39972041bf85924275baf156b8bec309ecc6409e5acdd37ec175dea40eff921ab58933b5b5b5d35a6147567c

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarA1BF.tmp
    Filesize

    164KB

    MD5

    4ff65ad929cd9a367680e0e5b1c08166

    SHA1

    c0af0d4396bd1f15c45f39d3b849ba444233b3a2

    SHA256

    c8733c93cc5aaf5ca206d06af22ee8dbdec764fb5085019a6a9181feb9dfdee6

    SHA512

    f530dc0d024a5a3b8903ffaaa41b608a5ccdd6da4ba1949f2c2e55a9fca475fec5c8d2119b5763cabe7ef1c3788fb9dcac621869db51d65b1d83cfe404fb4c27

    Download Submit