Overview

overview

10

Static

static

7

b6b59a54d6...0e.apk

android-9-x86

10

b6b59a54d6...0e.apk

android-10-x64

10

b6b59a54d6...0e.apk

android-11-x64

10

callout_11_shadow.xml

windows7-x64

1

callout_11_shadow.xml

windows10-2004-x64

3

callout_7_overlay.xml

windows7-x64

1

callout_7_overlay.xml

windows10-2004-x64

3

callout_8_overlay.xml

windows7-x64

1

callout_8_overlay.xml

windows10-2004-x64

1

callout_cloud.xml

windows7-x64

1

callout_cloud.xml

windows10-2004-x64

3

callout_de...le.xml

windows7-x64

1

callout_de...le.xml

windows10-2004-x64

3

callout_shape_2.xml

windows7-x64

1

callout_shape_2.xml

windows10-2004-x64

3

callout_shape_4.xml

windows7-x64

1

callout_shape_4.xml

windows10-2004-x64

3

callout_shape_5.xml

windows7-x64

1

callout_shape_5.xml

windows10-2004-x64

3

callout_shape_6.xml

windows7-x64

1

callout_shape_6.xml

windows10-2004-x64

3

help.htm

windows7-x64

1

help.htm

windows10-2004-x64

1

help_cs.htm

windows7-x64

1

help_cs.htm

windows10-2004-x64

1

help_de.htm

windows7-x64

1

help_de.htm

windows10-2004-x64

1

help_es.htm

windows7-x64

1

help_es.htm

windows10-2004-x64

1

help_ru.htm

windows7-x64

1

help_ru.htm

windows10-2004-x64

1

help_uk.htm

windows7-x64

1

Analysis

  • max time kernel
    134s
  • max time network
    137s
  • platform
    windows7_x64
  • resource
    win7-20230712-en
  • resource tags

    arch:x64arch:x86image:win7-20230712-enlocale:en-usos:windows7-x64system
  • submitted
    07-08-2023 20:32

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    help_uk.htm

  • Size

    57KB

  • MD5

    6f351ddb8050526c77850db00448d3c8

  • SHA1

    dd253c3d52261d3504bfeadeee08266ab01da749

  • SHA256

    6bf22746ea6b58743544aeebb5f47fdc690e19037d4702926567a69ad426c463

  • SHA512

    e52e1b60b6866175249c33e5b72329c02d2a743673d6845d2ccc2051f4e77967367b095714c583d315ad03e849ab6877e958f6beb5314274e263bc03a8362551

  • SSDEEP

    768:m6At7jfON+B88ArRwU5XG0uUOBiKaBb4JKpBbZM5XyZwhDmILSsb:1UOnrRwtfiKaBb4WXMoaqI2sb

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 41 IoCs
    adwarespyware
  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\help_uk.htm
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:3032
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:3032 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2108

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    7c9cb5696c0a04f5fe3bd46c66cc7a93

    SHA1

    75e842911ea4bed46a4dc2474801f046d390198f

    SHA256

    7a117a398396c7ff5f607fda05fbed4d11c6b108d32f3f30536ce96f1feef609

    SHA512

    67150d9a5928732238a079036476fb1ae64f7ebfdb56d36796a91fd081d68411317dd077cab45af3b302fb56ddeb081eae8b5c01f05cbc1fd22cfdf923a1b307

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    c03a7ea24c6399ef35d4dcef5e15f0b3

    SHA1

    8ebe795dafa21f01e18f14a5d13e6e01abe4ca94

    SHA256

    e2fd1891be6df1f41f2024fe1bf092aec69865aeef3bacd87aab92574ff3ba44

    SHA512

    2cbf16ef2bbe10d1fd9b33bf7290e65272b862a1f50505a76fac2995499ff8e5ce84f22082a0fe683717d0ec61dbdcad27d6fe8745a484010605b9ec166f1518

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    d528df6f5359d70a4b053331cb4385df

    SHA1

    ff9676b8341d43c7b334f0e9dc73e12d7836bc49

    SHA256

    23a991edfa33bfa79ae6ab50a22f10d40e5eb95b9d6d675e4a26bb1f58dd0ff9

    SHA512

    e495718cd0ac46bfd6827e5bdc842cd3af4914ce333526234461267d5d05f5d2cbfade01057e18f6ec5041ae91d73dcaa2181b18f2a5ba0f6640b152289ea2e8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    55ddc5abb0051b4f8735756ead3b58ed

    SHA1

    b6426c5f64ea229b6e4ada9b396ab4127088ffbb

    SHA256

    8fbc553a023fdb5f9f61be0ac51ad47b2991db32fafce7192fbb09d500f91a20

    SHA512

    1e729d5f9754bd86a23faed18301213fd7c59ef2aa44fb5b85ed82a53e6d934c737bed2322a3bf4ea20c7ea596f765ba003856cf20c8f3853767b49b032cc80c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    bbcb8b9f95072dc9741581b89d7c05aa

    SHA1

    26317cf5d22aa45fadf109340f8f90ad322abee2

    SHA256

    6227d2ede15af8937ebf475b8f36f9a3be43b71ce0fc05452ccece42a62c364b

    SHA512

    c4e6d7a28ad0c3c9a9f46dee84a3924f743f1beab1ac3e4dcbbba17632cf655aa0b491fef9b31d16bb1027d258f9801c73b764014546de55ada0c53b9924e691

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    8b3cb142b751c8ca8082dbb5ed842b16

    SHA1

    b0d9c2ef001ba7961dae199d06e71131ba326253

    SHA256

    19d47c714a46e43391d700b1ca79f685bca5a7927f111bfbf4372ce77038c00b

    SHA512

    5677ed43188a03a02f49925691e811765e57e036441af6e385c7cc46c0f9f72d624c7478fec46148e4f1be8da25af54d01eb85406f076e7d30362e773006b790

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    a3bb5bb1fd21a61ca1aebca4f5d4abd6

    SHA1

    79d94f23860163eb74137401432657ce683b2507

    SHA256

    ffc6bdfe19b4872fa3f2ff37c12cee4aac06232593b83ae70c2edb0ea804376c

    SHA512

    3cca135e469b512128a509668a62a37a101312d5795a1b8dca2301686d330f7797313fe7de7f240e828cec2e4eb52707142e05c31d9bab9a3cabd3a51a92de64

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    5b47d37ff2740a305837457fa1dc1003

    SHA1

    ad5fc1ec39039b3b57e5a6b2ee3d48d52350afb4

    SHA256

    61dbbe0753059dc43a5bfc6732c181b9aa6a88508c76e0a614bc186d10a18d05

    SHA512

    d4b1f066115bea98219cf381d886a512aa039ef9b89b31fd687f1d8ec8b275555eed2b88b3a37d0af712e724a0f77a2ec7e74a69830e248c806f4a8e462ab70e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    64d8be2584cb10ea468e9e4712458067

    SHA1

    d8bb7f33587355e26198811e9c16cb276f2b0d25

    SHA256

    bbd83e9fb7377ee8b47d046b4363433df4dd0523bb73ce1ce4b0eb75c8e84586

    SHA512

    8ccb6bb9171b49ccc9447dd4ed7a7528674e4aa5ddb44a9b597bd6292296cfd62e4de6f555bbd8788321de9ae1c3c0c378c923d212dbd589f879d0e089eb7d2a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    f51efa3208e07ebe0f7f1f07b1107b81

    SHA1

    aaf8fad394636e70ebd1ab04ae37ed0532a61167

    SHA256

    76c69bb241c66c826628491b59946fc3779fe76347cb15899386e751535703a1

    SHA512

    eb2c6aecd8e2207c0f82cf3edc99dbd3afcf724ea7fe5276b69dced5660771a0c6b7fea8b9277f048233e988a542ea76806590b6a53e8e45a753e2d2021cc822

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    e21a38f20ab86809efd29fc412a884c4

    SHA1

    e7b6b5cc72eafcb791e669a371a2bd78da813a70

    SHA256

    65fffecf2096e9174d7eee47f5ccd2607edba5e9591fa6390088fbceaf18a5f2

    SHA512

    9688e426a2d18f4fd069055da4cb5dd02eb9472f661e5c1af14e447629a072d9a496b516dcb36db82d283802e6e19e6dae603eab7a0b600376bc180c6204ce71

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    8cdf2d19274aac60e86392ecd96c566b

    SHA1

    d3741d4eb943218824fd0996b83b2b93892f3e4b

    SHA256

    f81f102bb958a31d37a5781a024b968104fe1223003909a6ed8adace8f1596db

    SHA512

    8f702e63c3956a1c7b6051a784280ec3c7e1667d2a379cb7eb7d95788d1f5123ef6010f5351fabb41f69177fe3a7517251139808b6aac1cd5a320a424fb4ed32

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    030dd0cc796cc5be92dfe39a79616c6b

    SHA1

    643dce9072fafdb1b5af18d2550a11fa9c9b78b2

    SHA256

    23ae4bf8e19f528a18bbe2a43eff6152ddeef85bde8d87c4772c5bf465bfd4f0

    SHA512

    ec0d07f5da428bc00f34998e00056658d4682ac59b7f71b6d9cf3a0085bbd66226d2975d1961fdead477423aeb201ec737063d565d10d6e07ecba57bb0835f75

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    1c7ca0ad17907b89446745d932b5d02c

    SHA1

    68ff52368b5e2a2dfb0432fe494282702c121620

    SHA256

    097f7cdb9bfbc828e223a64cc00020e1573f887a63d4373a7456ff4973fc40d7

    SHA512

    6583395d3a2331e2a6dd7b0cbb841e6c9907016394f66b32831773952ee8b5b250f8a1e4bd14adc0465e7a7008dfb86fcc98a8a03f8345412d42fbc38b58caa8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    8c34b63c62630474c948f864bc5ea340

    SHA1

    1097ceee5861c3ae8b35d05a62841bace8fa4648

    SHA256

    880b1d079e3bdf36634e42ddf66eb613e78d8abd5b3953ec4b802cd26ed3e6ab

    SHA512

    e9f5733230df7b98b561a412acd5695b4de87f99ce0c5b72d527e2472c119e311491eff679901f561836e64d69ef810c7dbf5952cc28edde9183b1248a58004d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    3deda29a66f7e137a3208198ba45bccc

    SHA1

    e38636d03f342a970a381b3dfcf8613131c2fae2

    SHA256

    8f2a5f52ea0270df28fb97922273da451fd5980617abadf0f2270e691d4b46c4

    SHA512

    6f38dc6647c4078d533c04472bd7ad80628d57db3acd9edeb8d93fce0e5503fbb573605303b4abe05a7337803ef5c7ea2ce3020ee410dc1dec5e33e755e29019

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    421ae702c172540765abd9962d23ab7a

    SHA1

    6b1d46b55413f7db10d60e84cc99c11f2754e8ab

    SHA256

    9e8eaf37efbaf7ff6446e149053daf941b93a3f5396a795486a9ca4e7c64c9ed

    SHA512

    0a3f5e198cdabd66ca841081b7c7c74dc2e66389f976a4c0322199b00b223e227b512e62fe8760e8a98a2ffd239e8e84aa5ffb0ad7501d14033965f3a48d6d55

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    c7d17ab2af31fcb20b47fad5114f02c1

    SHA1

    4641765eebfac53c277c3fd78d028c3661eeead5

    SHA256

    94ff29e10ce1adcda4c8fc96589e189de32b63b202dc982c578b0e5930d86a13

    SHA512

    b4a687403a2152e3021370bbac5946481b00a23fcaac63a0bd3ca4dbb3d53229991ea696a9608b2f05983c272dc63ed725b74b0276df6830b17cf18ec6b955c4

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabEAAE.tmp
    Filesize

    62KB

    MD5

    3ac860860707baaf32469fa7cc7c0192

    SHA1

    c33c2acdaba0e6fa41fd2f00f186804722477639

    SHA256

    d015145d551ecd14916270efad773bbc9fd57fad2228d2c24559f696c961d904

    SHA512

    d62ad2408c969a95550fb87efda50f988770ba5e39972041bf85924275baf156b8bec309ecc6409e5acdd37ec175dea40eff921ab58933b5b5b5d35a6147567c

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarEC87.tmp
    Filesize

    164KB

    MD5

    4ff65ad929cd9a367680e0e5b1c08166

    SHA1

    c0af0d4396bd1f15c45f39d3b849ba444233b3a2

    SHA256

    c8733c93cc5aaf5ca206d06af22ee8dbdec764fb5085019a6a9181feb9dfdee6

    SHA512

    f530dc0d024a5a3b8903ffaaa41b608a5ccdd6da4ba1949f2c2e55a9fca475fec5c8d2119b5763cabe7ef1c3788fb9dcac621869db51d65b1d83cfe404fb4c27

    Download Submit