Overview

overview

10

Static

static

7

7b0469e1a8...JC.apk

android-9-x86

10

7b0469e1a8...JC.apk

android-10-x64

1

7b0469e1a8...JC.apk

android-11-x64

1

about.html

windows7-x64

1

about.html

windows10-2004-x64

1

gpl_v3.html

windows7-x64

1

gpl_v3.html

windows10-2004-x64

1

thirdparty.html

windows7-x64

1

thirdparty.html

windows10-2004-x64

1

Analysis

  • max time kernel
    135s
  • max time network
    132s
  • platform
    windows7_x64
  • resource
    win7-20230712-en
  • resource tags

    arch:x64arch:x86image:win7-20230712-enlocale:en-usos:windows7-x64system
  • submitted
    21-08-2023 19:02

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    about.html

  • Size

    5KB

  • MD5

    1d7bc3b473dc3eab323b3dd35974caa7

  • SHA1

    c595384979d507a0e27bf1a961ada80161b525d7

  • SHA256

    2b53364b06675f1012c0a2283949862ba18d4c654b63aaecbc77a8256a63ebc9

  • SHA512

    9f98dcf0ab851a9d0d2db93a632da579c069aec1e97a850bb6268eb84e94cbd4b06c6bff7cdd7ebc14fb33a4f88bd1b74438108e244269b5ee017d47c804dddd

  • SSDEEP

    96:GQW6Z9X9YFoHIt08ocdJ65u33fusbrKTwBEBxZkQHQbMNM:xW6Z9muWTol2PH/MGqcQHQgNM

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\about.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2236
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2236 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:1764

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    66f85c644f570713b5f09861d6df7af4

    SHA1

    da19a21a2e236c9c10a7c3eb1b9dfc117893ab36

    SHA256

    35e0349652191348eb631d78aceef23230c15b257479dcf201ddb8863e175bc0

    SHA512

    5ca06b42aa23ef9713eae93c3a2dac50ee435d1e41aa0dde3b6a2b0b5d4ee203906774d889262d01819cf8f679a4f3aeeb8269c81e20a5209598f8ee33a9ed2e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    ba40e419bcd9c7ea0696e01d5c402f3c

    SHA1

    8e1dc401f02d979ac1545de9da761600b2da8ea7

    SHA256

    983dccab6400ece49684f3fa45817943693ae755d8b8df54d40939dc7f620b75

    SHA512

    d909ed5681f1940108c2aabd68339481136f029701cd7e9cff0c15f1b2fcf4fd8d400c7ea9763509dd0965aa7e3e7460c12c78c303643df82c6911b5ea05edec

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    710f697bd3b5cec80b234cea24272ead

    SHA1

    cdb488f15f1b20d7f7ee0697f6fc8c8764b7c875

    SHA256

    e85f58134b5608fb833cc03c03d83b80d5baa437a968f4e647dd0a9f2a882f86

    SHA512

    a8e7843b76871a814a010a932efaf458f5291386d20f34310972e9560fdfb0fd57eaa9c6560e633904d1398a31e8f0354d0ad2a2c411b88c67e3ff017a47829a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    dd6beefb6c4c0054d6e67bb5d0ee42db

    SHA1

    6f209000a4a86ae9c73e478e89774be93b8a5e52

    SHA256

    71adafe6ab36862ca12fa196eb92d606d47e0a3e1ca05e93ba40d28e90e8d060

    SHA512

    796d8fb8030d827f4aabea59199f37ed9e1b2709ca35e753022261b7779d1b7181db5cc754f7118552ef69e9fec362d64e5ce8cfad84229e28418ecb70c6eb65

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    f94734001f71e5c69ea111735a4274e0

    SHA1

    5a64bf6a73a25386f3a599f0c49ebcf1998db74f

    SHA256

    4e43f58d08a9ac5d41f728406679b34fdc6610bbac67425b702784ac6f784457

    SHA512

    4c4c7f0cdc68611056cf84d7ffa73a83ea85a3dc1370da0288a6922a115a153524182ec307c56027f2628c4d90670c93da4cd1effcf8d886f4ebb487cc8f8532

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    e56b7c3e22d8736ce764471c5ffdf1de

    SHA1

    8827f476946cef85d50eafd6ea98850e79b61477

    SHA256

    bd52ebecb2243cc5ffc96302ee0a4680c0084094ed3775c703b8be27fec68f48

    SHA512

    6d2844be9b743f4ad6deddb4f51d79668989d2c22bc2bdd76156c7f3ad85d80c79e4bbe68d827710f9d26e17b09cc297896938b5c5079752e05e2d7546ec4a28

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    9af2bc041c6a7f7490f12075d267f97a

    SHA1

    99db08b53166b805f597ce137db0b2d6ea04e9e1

    SHA256

    6fe2faf9c946da395e8414056363c547acaf7fcd5438ccff6e37e8b8825b262d

    SHA512

    5d29266cd5f685a0994a2ec56e80e342c65730d6b9a56c39c0ef118ad35f4724aed0a08acc443a53403ed72a2f32d451f9fc9ca39c47bfab55a220a2b2ec04cb

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    81ec9312ccf1bc7f3df93f0c7a114b86

    SHA1

    46a6da826bddcc4dcccbfe2a3b92fabb65889458

    SHA256

    2635931fb21df2613cfee39d831af2ff06b426cb27a4b627536b58f1ef351ae2

    SHA512

    4be1c0b1265dac71458a3d0ea236122d05dc60cd76cb3382430521cf396d82de260f05c02d45d78c97740649110978bad05561c859fdf34a28173d16541d0c06

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    b76ddf3b4feb8c4c4457c87dc162c0f1

    SHA1

    987bb31934bb885e6dceab281fedde143030f13d

    SHA256

    1d237c162817da3d9902d4db016e6cbdca468075a57de23a5767216d8d402370

    SHA512

    e986ccf9b5e43df41c4b97656413044f1d3ba0e776066505146efd6b42d1729ecb8b7a8f99f1d0d0f081967aa2daca4ba8175a004a722338bd41666141a0a3f0

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    4536e6a395a40014337a3e034a987c27

    SHA1

    001f102d9577c09bc2d5ea9581c0a72a0ae759b3

    SHA256

    594db3703a5ae5715824fd9a2676c657bae66267879b0ae89f6b0e735ab89e0d

    SHA512

    b37f0e77ec26b754516086f508fcdf8d51e65953bb45ecb6e82716425b7ea404173ade40f0621518b499c86c53d1c03ca69f41fdb7d25dffa2f65e0867499c06

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    e05ca648ee07009e900aae00cb9c2ba9

    SHA1

    d2715e0aa5c481bb5b1029b54e24634727c988d5

    SHA256

    cca69b36e283da90bf99ad92c1e65fac7515436c5dc61378ecb0d01d9e74ba35

    SHA512

    2193bdf8ad62556daa8b8a826c6f64c754c11289e5762c4e7e04ca802f260d97bcb41c5b309579b5e906334c9204e0e12ba8d59f7fe4d73655a1464c89044aea

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    a4464098a46231faa32c0774069a5cb6

    SHA1

    c89fc739197f6e2dac735f5ef2e36e6b7c7db722

    SHA256

    eb3e4171577a508e3b870ba5f8c369f655c35c3dc98028a3481903702ab10f24

    SHA512

    52e4528c75b847d4e9f80577db52c786296850c53251035dc686eaeeaf2c15a4d9a38e44acee05273282cd2f15d5ffbca900d3ee95fc3ec119020ace122f97f8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    6ab8d353da626ed191e7f9a2483fd7c1

    SHA1

    eb494c6242b669e1fc1ff6cbacc132d54fde38c2

    SHA256

    be59fe9476da871495b41936ff9fba9395cc132442469aeabce1bb0753d561c5

    SHA512

    f5df85837e87c2282b0739ebd05043c5296d53550ed377b5935db7de9a20d0260a27dcd8b927a41c51dfbac020d05eae299c26e4ab2840f23fc514dab6aca862

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    8685b022bc0035370f68083888d1b1a0

    SHA1

    7501364798baf09e61215e43937fa6b6ef4a7238

    SHA256

    8e796d032823ba6b19b2018cae079024301adaae74ecdd2b98cf70aea231dfbc

    SHA512

    54ceef64bd7bce1f5b8319a3d7890dafef6ba11ca4c3090d6bbb7bbff66a4d53b66a7685700f34d732b4b117a0bdfdaa550ecb101ad18796e17ef4635cfa96f7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    466e2711dc9bc65b6fc4cfd4f2faa4e7

    SHA1

    fc1b35ad23f8e8086c057ec62e9ff812b520aa36

    SHA256

    dfa13097b5c54b72039a878f0deea0c8be715d24f444d18e92689cc9693ed1af

    SHA512

    3c31e83b8c81c5e8ebc18e1f816f0d9de7e082d6a6af820cf8ba38953c4ba223fcc177589604b49e1c5279c7fb6be4802db900152b2bc77e9c930731c7149c68

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    34e0f8173487ea05395673c7c1d34436

    SHA1

    f54220237b9068ab1f1d103f8cdd2ab7ef790263

    SHA256

    c21163603940788d74299c682687a72e7eb2088f18df956c15219830a97443b2

    SHA512

    c1f0fd1376c1198656b89103a9f2e0f61911e8bf27be2773e2964d8bf693ee85c28d29ddd801ceca65477fca047e0523e6507a724cddf2f3d7f2ed35f3ad6b11

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    592f1d0c631f8ea94254e0b8e7db3c73

    SHA1

    97f8d252e2e4ddd5dc64a6daacef9f644e03315f

    SHA256

    5345f83a250b1d7d7d9d28898098c7f7dd81d9dfd6e8299fcadc90d9be703013

    SHA512

    c75d8ca38da10c8ecac51f3c52a690b568a493fae47c7186c8a0b50d8dc0f05d4dc9906faa0e279bb406bc1dea6cce2e3876ab1997a36985508a12c58d9e6c52

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    44df6f0f8bbbbe3626dc5b61aade3b5f

    SHA1

    b494815295867f4c9a60cdbce020d349b4253868

    SHA256

    15936d62a8da6e7af8869b1feeb2819447c223561d2e2aed8dcc2898a61d7272

    SHA512

    290aef10f80c084db5c1684819b55a56492f7731bd772b5b9b5b12180fa9fba91da83e1af606d9676ac022d57f5368163f58231fb8be17e0b92fb2e19773ab47

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    3893bf3562398b7fcf6ef13a01dd9116

    SHA1

    07a05b6f7954b34a14f5736974316406000c7078

    SHA256

    a8f896b42a8a0dada889bdb6e8f696d4e4e8d08df902ad73c3369d572ea1cd44

    SHA512

    1eeaa269ed412c8d12e4c05406f9b8363fba78dbe247b8494d11bab0095eba3308bfdd833c3dd66934565e5230340d3213131fa2092eda7efeefd4e799916184

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    b4e04f6d04d638e3c1fb788d349ba805

    SHA1

    41f936bc73bcc32f7c99e2ed6f7c60dfafe18a2b

    SHA256

    126c6f1502892fc320b57550af4ec268c26d85ff70fbdb2463ed9ccd063f261b

    SHA512

    6b77eafc4744f34379df3ef47387377d71cbac066a8757b161bd210f97e3c0a06cb14de3cafd5d20b8088a80faf2f96165640e18c8c8824472fb890d6a33d005

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabFFE3.tmp
    Filesize

    62KB

    MD5

    3ac860860707baaf32469fa7cc7c0192

    SHA1

    c33c2acdaba0e6fa41fd2f00f186804722477639

    SHA256

    d015145d551ecd14916270efad773bbc9fd57fad2228d2c24559f696c961d904

    SHA512

    d62ad2408c969a95550fb87efda50f988770ba5e39972041bf85924275baf156b8bec309ecc6409e5acdd37ec175dea40eff921ab58933b5b5b5d35a6147567c

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar55.tmp
    Filesize

    164KB

    MD5

    4ff65ad929cd9a367680e0e5b1c08166

    SHA1

    c0af0d4396bd1f15c45f39d3b849ba444233b3a2

    SHA256

    c8733c93cc5aaf5ca206d06af22ee8dbdec764fb5085019a6a9181feb9dfdee6

    SHA512

    f530dc0d024a5a3b8903ffaaa41b608a5ccdd6da4ba1949f2c2e55a9fca475fec5c8d2119b5763cabe7ef1c3788fb9dcac621869db51d65b1d83cfe404fb4c27

    Download Submit