Overview

overview

10

Static

static

7

73d121b346...7f.apk

android-9-x86

10

73d121b346...7f.apk

android-10-x64

10

73d121b346...7f.apk

android-11-x64

10

createjs-2...min.js

windows7-x64

1

createjs-2...min.js

windows10-2004-x64

1

vpaid_html...e.html

windows7-x64

1

vpaid_html...e.html

windows10-2004-x64

1

webClipper.js

windows7-x64

1

webClipper.js

windows10-2004-x64

1

Analysis

  • max time kernel
    135s
  • max time network
    135s
  • platform
    windows7_x64
  • resource
    win7-20230712-en
  • resource tags

    arch:x64arch:x86image:win7-20230712-enlocale:en-usos:windows7-x64system
  • submitted
    07-08-2023 20:31

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    vpaid_html_template.html

  • Size

    16KB

  • MD5

    7d7cb3d6c22da954fccb084f6c18ee01

  • SHA1

    529871b15146f802c1c1fe2342b31db9e328bb7b

  • SHA256

    05cb7160ec6766397cacbfc5d57373edbcb028917d81e2f2d748e27086db23cf

  • SHA512

    a73d034079dba15d38bd14ddb81afd8af51b31a5c80cd83346556e7ca7f2ec927511ec3c151abf7cdc108ac4671b7623066e0375b30536e1503125354fa1a15b

  • SSDEEP

    192:mrLYJFkVvGFQshArPtP842+Lw1wOEeR6kad8bWXSrJEBOn8TsjNC4ck8aanlDTtI:8U42Fn9qW4+EQNuSXIlodo4

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\vpaid_html_template.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:760
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:760 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2444

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    e98137dcd65621c78c62c624347ce164

    SHA1

    0855a7553057945638c042e6ae2605186cb3bb95

    SHA256

    b7b24cb7f806d4d5b0a22bb3c82a13ad73a41c08858bc6fa4bca14ce50ec06e4

    SHA512

    f8c5782c4215623ac2d9c95704160ceb8a2c47482052adef38c41b74719588a792fdc21f2a59d286dbf0af75c9cc968509bbaa45b1d58047580538ef6778cc40

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    2a75b7161bc5eabefe946b3e6cade040

    SHA1

    c777e68659e28e90e3146144d34bad1a33570354

    SHA256

    0501655e2ba75f9d0bede87de1f86c6371bd4abd23a6577d4d3f8cdf732a909a

    SHA512

    991eb587b06904d23b6ef000e35337781ad0a7d51b919d5b5646fdc1a228a9843359e2e93b3ccfa00cb812c8626fe716376376188046f961b6935e75c001eede

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    811c0d70189526c26a3e6a5d2201553d

    SHA1

    5e63976e3e3b84b93633f7cd69cc717ae158a9cd

    SHA256

    9ccae15925018f2d81499a76a1a443534e7fa879a1f88c6e26629bbd93825a2b

    SHA512

    fdcfc943c43baad3f299b9ddebb847c1f5db78fab17d7383f434a86e5d053d4fa23a2d91668a12a538df96aa6bf529f247f691580a6cba30992bdd271f0d4ecc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    e47037e201374912c9d84707be5e2dea

    SHA1

    c1ec5b6770dea823b14cf22544d7061136a912d7

    SHA256

    eeae31afda2f8d277fe780eb2a660290d9c61f822ee2499cb3889bd87a6e4da2

    SHA512

    0b48d7fd78e6e2d071cd4f4d68ac29ce014c2386f04a0aa4fd3368f06a91d01ec59badc406b8facc846d271f4d41bd2b125518e5adf2d88c04eb066d20cc6183

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    0e6b61ba6a2589f41337b2d9dc3c045e

    SHA1

    ef3b2d0a10b36489671ba5763759a76335e29c1e

    SHA256

    b8acb8b5963fa33fce81608d837c612f51227c59bbe3833aa2dbb9ca7711c3a7

    SHA512

    3c707a782edad5bbdb512f014127f8818d9e311df668286e7dbf8a6e6cb8f5a2db45d2c2a804e364122b0558c6c12d3047c7d7f16186aabc2926132d0c4498f1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    d4cc062672597a38e0cf8bbd074567ba

    SHA1

    c40e7f766c25d506c3d5991ed6b13677da975734

    SHA256

    26688ab32cf5eafed500c251c7ae96f581d6a8caccd8cbc762874d0a04b6eeb6

    SHA512

    076785652f9979b2fd6da289379a46506b7f01922505dfd3075f04bea5aadf56d2e3b457a1039a3b25da04b2a49edc0ae4b26175f88ebf86f003a6c821fe9ba7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    fff670b2faba3165b43aaec3142eb54c

    SHA1

    df486a08ca1c74367e3a794790c8a9d141245594

    SHA256

    e92df200e78317f1a18b0da74b5393ee0ecc30b58864dcd5060e017a8877ca47

    SHA512

    871bda40c74bac957e04b3ed57dc16dc1bfd644e86245bdd0a0f53ad953eeebe0616dc2e6accdebeb975d342909b6eb2454e3ffde581e097a073ceaed908e83b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    6fb66295d6b0df0138001d96ac5aae7b

    SHA1

    2f40d1c36d5b0bc9c23535250bf0cdb2392bcbb5

    SHA256

    649c2bad31d334289442763644ae2d36d42e3804e47e198c68d284a963a71148

    SHA512

    76d29c2f588fc29523e7506a27b555b643fd53609ef9a05dc0a29bbfa32c9dbf49c4c7215bf01b468b4e588a1bb2bfb8d7c8e27ca9bcb59c6ececd22f1dd07ef

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    53d29367632d50d76eb196f90e9a0b7d

    SHA1

    e0140ec3173ef9bfbfd22e6066e863860acfb799

    SHA256

    593081bec33b805a3f2c0e3dcef8448866a8567445688bb2529277cdc8dae0bd

    SHA512

    11aa987d983b2174fbc706342a7aaf7410a6fdb8456ce93c29b34aba6c067bfd151d3145bc11cb443107d6458d352ad39ccfb6d8361e08c65e116105be1ab30f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    a34c20dc62afc507cf352779f17d3ad9

    SHA1

    70c87842973ea826a9d65ad6f2382a235fb006fe

    SHA256

    f9da441070e37c8cccdbd7c19778136027b30498c476ab447774a6808c25ef3a

    SHA512

    f01291472f327ce2734b58e6a4104cc6e780d09f0255bfe72fd81723cc5b38ddca89b0816f076a5648cd8ab2887f644ad0fc698f1828076a5a4b7520dafbe485

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    72854085af82574b2fc30f6a8f91116b

    SHA1

    f409a8e8371e75ca59542499a57b3b3612cb5d5c

    SHA256

    f0e03151860cdb48c096a154c94165c9b2844b4e76298b1fd09fc32525ee3ae3

    SHA512

    11750eb1dcc8e92f20edff037b69b18c3183dec7475ea2e9671262bba7221cf2b09c030c85341f91efcb97e1151d20174b8f8dc4aac80d678ce26b5d2c222ac6

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    9f0ea5e8541a2df9131d7d54375ea293

    SHA1

    296884b7fdcea51306474d5f4a24d1f9f58b01a5

    SHA256

    2ecf7a891dfb9d8bc404bc0c99870ee95d6eabe4e1e9c40b803f574819c80c82

    SHA512

    7b08596238d7c362db6e05983cc2b89a23330a8ef28fd51d7653bf9dfdab854b8f0d72f0a378902b1c50fa1a8288cc83c6a2f90c9d1fab003e1bb580e6ce07da

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    ddda4176ae704ecd0701853cca20ba41

    SHA1

    f6380a22ac4743d6ebb785b52138ed541752c9bb

    SHA256

    a5efd61f45a884d16fabd900d10bb1fed67a647e9e6df967cec4865feb2ef11c

    SHA512

    ad0bf1cc96e17eb479419fb17d5e629e6a4182eea14017c9a3ddf4616375b6a183b2cf7d3ab551169f274f669dee086a53600221211032d081ba055133c10742

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    283f795760ab5be6d3a254514336cc99

    SHA1

    7db82e82e0cf9318b71ed156431d7fe815271364

    SHA256

    50f3e5d00495cb134195aade5de53f715855219f5c0a0672e8fe9ac579ee988d

    SHA512

    ea2948168b7ac19ae6855c17d85e360388a0e8ae77e190f16d3b7ee4c7eb9be8c246972e79b3e36655cc1b87a227e1505dd34f259d0b8baf2b81498dd9c221d1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    e50f335737af0e534a125c2f455e9c3f

    SHA1

    0fe52e1af44089692fe5bdbbd0039cc772c5dbe4

    SHA256

    4212d2605f0bcd8414528a597b4ca9d4597b6c2744ae1e58b028b9ec3fd74d54

    SHA512

    8225d192757fc767a0c1cc20258571f5d544909d0bdd7966032394bef3842d4b1a689021f11a62cadd95c33eed61e0bfdf0867887b63e1c82ad6aaa67480a764

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    d5dbb2ac6753fbd79b3cb487b1196ee9

    SHA1

    a71f0ce0d78c765a6dc564f824f9fcfc822349c9

    SHA256

    db2ed465a6bf16a26e3201b72cefaba6f8a448a71ed5a80533be18ca7299f644

    SHA512

    18561958ac2d3d6b7ae1e6ed0e1baebf09b47d26404bd07e3c2908bf9d555b42a705a49b6a1225f224ffc251703417550dd789edae584e7e925cc15d15d70e5d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    6161d911a55a0a97f8e93d38a13b5bbb

    SHA1

    cb50fafcfd918620339d9447ad20d86375545fd7

    SHA256

    eb008c3067b8e1cc822ba37944287f98538b447f11bba13ded1f8faa98246a0c

    SHA512

    1cce6827b6bdea2ad93e621037f7d035a14169ba492861a29898a9a3620eec51e40530df702397225abbee1a42c3311dc4e9b1b62099772e64c68e4030816ebe

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    c53d8d20868af0109d4f5f4bb013afd1

    SHA1

    6f29e7703eb11df222769e33324b2b42a2701c16

    SHA256

    bfc54579c8a4bb903d895d43f74356b66b061579e618f37cec0bffbd85289907

    SHA512

    238eee372d8b6a7e24b838d2134deeeb6caa6c676196ad687571daa300e440e80b089394e0455c6553c9203e54cef40dfa2d0c573fe28a38f8915178b506a7a8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    85719c5a268ecbb0d9984a732e5045a5

    SHA1

    0f271ebe768e6580b025df090ac7e901594c0a62

    SHA256

    1961f6620b51524d18334b798fc0e4b23a8078275df365e7c07e49138165ba33

    SHA512

    9b3da36f95a8c614a13d79391c3ffc6531f57fa8179f7bccc7d01da3853f65778527091ea476e9daf672ff3f954121ff2b04b2af5cc8b755e760992872458dc1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    a1d55807a2fd02b52b1f1fbed96814dd

    SHA1

    2047956281268c9e4b6ae059d3cb6ee6f7abe81b

    SHA256

    376a1b94defbbb6d5c2e15fcff61a5cc180efef6a517888e5c68c7a46b126d68

    SHA512

    07725015ad9e2f9921a8938131464b810bf712bcde9a3a0be28739f3c2e8e613fbdf290a778a164ecae46e44bb4341527baf19253a3e8733e39c20fa32790e20

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab98C9.tmp
    Filesize

    62KB

    MD5

    3ac860860707baaf32469fa7cc7c0192

    SHA1

    c33c2acdaba0e6fa41fd2f00f186804722477639

    SHA256

    d015145d551ecd14916270efad773bbc9fd57fad2228d2c24559f696c961d904

    SHA512

    d62ad2408c969a95550fb87efda50f988770ba5e39972041bf85924275baf156b8bec309ecc6409e5acdd37ec175dea40eff921ab58933b5b5b5d35a6147567c

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar9AFE.tmp
    Filesize

    164KB

    MD5

    4ff65ad929cd9a367680e0e5b1c08166

    SHA1

    c0af0d4396bd1f15c45f39d3b849ba444233b3a2

    SHA256

    c8733c93cc5aaf5ca206d06af22ee8dbdec764fb5085019a6a9181feb9dfdee6

    SHA512

    f530dc0d024a5a3b8903ffaaa41b608a5ccdd6da4ba1949f2c2e55a9fca475fec5c8d2119b5763cabe7ef1c3788fb9dcac621869db51d65b1d83cfe404fb4c27

    Download Submit