Overview

overview

10

Static

static

7

5d1db00b48...a0.apk

android-9-x86

10

5d1db00b48...a0.apk

android-10-x64

10

5d1db00b48...a0.apk

android-11-x64

10

closebutton.html

windows7-x64

1

closebutton.html

windows10-2004-x64

1

core_wrapper.js

windows7-x64

1

core_wrapper.js

windows10-2004-x64

1

lynx_core.js

windows7-x64

1

lynx_core.js

windows10-2004-x64

1

nd

ubuntu-18.04-amd64

slardar_bridge.js

windows7-x64

1

slardar_bridge.js

windows10-2004-x64

1

slardar_sdk.js

windows7-x64

1

slardar_sdk.js

windows10-2004-x64

1

template.js

windows7-x64

1

template.js

windows10-2004-x64

1

Analysis

  • max time kernel
    138s
  • max time network
    141s
  • platform
    windows7_x64
  • resource
    win7-20230712-en
  • resource tags

    arch:x64arch:x86image:win7-20230712-enlocale:en-usos:windows7-x64system
  • submitted
    25-08-2023 22:01

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    closebutton.html

  • Size

    981B

  • MD5

    c8efa039f4f84b2705a8e3a3b31da61c

  • SHA1

    669749429feda1599c4ee980cfd67fbb1a54c1a4

  • SHA256

    494693c2ac56ecac1a2588c25631e1bf71211fb0f06108649a983c879315b1aa

  • SHA512

    db6c9817469c937a41eedbbbdaeb21a0860fa5228258978fe59d29c75ab1497b8d1a0ceaae2b236206d6935e186deaf0d83a73791658fa68a985dfc5c314aed2

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\closebutton.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2184
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2184 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2524

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015
    Filesize

    61KB

    MD5

    f3441b8572aae8801c04f3060b550443

    SHA1

    4ef0a35436125d6821831ef36c28ffaf196cda15

    SHA256

    6720349e7d82ee0a8e73920d3c2b7cb2912d9fcf2edb6fd98f2f12820158b0bf

    SHA512

    5ba01ba421b50030e380ae6bbcd2f681f2a91947fe7fedb3c8e6b5f24dce9517abf57b1cf26cc6078d4bb53bde6fcfb2561591337c841f8f2cb121a3d71661b9

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    ecac51e063d35e37cc75e00886de34b1

    SHA1

    a0b3a4c1e38ff10039717030a88569ca379a8703

    SHA256

    0ca3dd0032af164f32cb678d2fa41b6e506ff66db65900f188f11079a2192b0f

    SHA512

    3387c6dbbf23bfc2dd7e5ccbfb9c3b91695fa7c3090fae2fd39644581dd165d7ccd6b3f81cde6a0579fcca0abd57afe8272dbce46863d506b471d38efd862f7f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    21ee52a1f968df3a0952ce2b59eda064

    SHA1

    78b680c0d9acf2d15aba4ccb854c696f7f994165

    SHA256

    2273a051daa815647493d7596d3104ad702787f0e0a05324bf2810624c6f7d4c

    SHA512

    a7f5b8f6e298514d9a8feb0a3b311165ed3bf48e2860dcbda7c1c49d8224085b2866d69289f5de27fbce6eb37b2cd4afec70592a0079b68184141ddf4fdfd353

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    8c10826b1d1e1161adf8de8be6a5362f

    SHA1

    49562576fb8112dcb002a2c46026019a61b7d7ed

    SHA256

    8084150ebcb7de82827c549d46de3fe23447b87aa57f94686c663711227d503f

    SHA512

    c55240c948eb1379866c418c0809c12d34ac75fb03c4aa1e5cd685edb92e2ba46fc8cd0e1465e8d8d58e19d4869993b4bf2782a748c02319ab538108ad5435bb

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    303b93d7a50a0703ecc9d19b04a6229d

    SHA1

    f2d7425ceb316ee5191b5daa249f45f2b65f12a6

    SHA256

    3e7831b4240fb5c8fd0670cb95509ed02fd3b73273ee5182325b4fd3673a7a44

    SHA512

    dbfa6087aae42ace3974f7eb8f433890e1462b8fec720b74d6f551bf5f7e854f71c0f14e101f5468f7ebca10361852105e64cf595abf629b70137d2212545209

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    ce36a6d9a91e3aa978b9cc2d07f1c982

    SHA1

    d3ecf271a9556ab03a9c7985d706fb32f0ee0f91

    SHA256

    8549cb0fe761843189c75f8c4ed96aa9a309a20e46de45b93bba0fff0bfd7311

    SHA512

    f02d5257db42f8f2991fe32d51822682aecc4f9317f4a247333260149b071a62b9227c5d28ddd6ead38636cd4ea4f239b1f69d87b5a108411df21e09357e8dbf

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    caa6f841e20685cb94fb0ebfe919f8a9

    SHA1

    d556b019004f9ae2275dfa9eb444b53316d1888e

    SHA256

    d7b22923735daf9daf5e10bff1d0f7ff54ffc82cf4da6b28adc587a351d5b6a1

    SHA512

    37b31e93d9eb4c4a5c115249d74af95ea244c62e20e9c085c133c666595f8df302a8a9b51a4f1ea3f7b596928781d9f6fd10a6385d129b9b22e9d5cede6e59d6

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    644ed1cf07686c97de4f2ca2931527ca

    SHA1

    cc9d7b63e33711218d04095bb517c2c8004d2914

    SHA256

    fc6e236b91ee2617dbc15f907dd7534b40c9cea1c70082ad8333f0acab9de8cc

    SHA512

    33913c3fc6846c74f470d13c990bd8e4b0d3fd7b9dd04c29adebbded3b271a16d8fd095a95896ba8dc060fa9aba8db13b9392a6418db977f44dd11889127c957

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    431b797ca94be2b7c711f0ee502fb8f7

    SHA1

    d50604dd5d4acfe61060fe3cdf8d9714ec7d8359

    SHA256

    181db4a619305f6a9ea7bb1fc1b60f91abeb25f7689b2019ecf279bda2a7f523

    SHA512

    6357e1b4124a246334de1540990c448429bed59e84f0b1d7e928fb639c5e4fb48720680f0e1f0e321dcb9fe0b478e0f153f8f903c7ab3c6a4498a0cbea5e241f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    f6f8e11e8ef0e71fa7eff2f523b6236a

    SHA1

    c46a7780042a86d732d1181579b7d3ee3453dc07

    SHA256

    273a3fe46ca70152ba1189ab9203510724a94c5b004623eca401da3081f8f651

    SHA512

    c03187bb7d3ab635326ac79adefe4adf95aefd168cf976021a20df67345c763a84e059230d88eef715e94aad17e6a36d94cd8fc94420a55880a8742a5ccf11ae

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    da82c439f84d4cc99ebb63300c4ebb99

    SHA1

    b5dcebefa5c0a6d9d8291b71c3e4523a3b4148a0

    SHA256

    9d4cecc664043c6b3707f47b6478655a3cc223db0f6e406de3dea8761741c862

    SHA512

    130e0da4fdffb9ae63718315e3b063948adbf93d9e7864efbee6ba4b2b5597744843fbf478cf8752c51331754c5fec70a15faa8d48caf1893535b0e094d24192

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    cd269bc6a419b27ab75580f106b539f8

    SHA1

    d31fedf04208e714bbcebc6b7e6c7f4bf8d5d635

    SHA256

    73c727fb2801ce423d95a697de00b714e38086e819fe96f204f24e905af4d150

    SHA512

    fa6215db3b9133977bed25e4e7fa12f6d6f9c9608ebebb459121538211ac8b980e53d287829e6961013b2eebba732b1bb9010de85230fb5e676b2797806b5c3e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    8d3895a281afaef923e6c3a8e48d29e1

    SHA1

    bb39d65c4240c2468823a3b6aff6d2e66d032c47

    SHA256

    a61d6180618684e59d386ebf81dcc1e173dd421f6eb108e61440e78020c3a995

    SHA512

    0acf276d4c73e8e25c93c4034bf7a2484d607acb2590ef78792ea36e5674568bffe73c31fdace6f6acbdd004df6c64d9ab99a0878e08c3d6419f935165a6918c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    b18b2f2cdbb3b815a0bf018e42158748

    SHA1

    51ce8f10fdb912c3bd88b5af1e7a26d383c1a918

    SHA256

    1b118ac05b48fd80827e7a18a4624666a350cf1b5b1fb780cd35cb29b4a18d0c

    SHA512

    530920b9d149f8e191d7912f7bf3fa7f35e02d23bdc0acef772d0ab2491c8f1d580b94201d12a42c760f0eac4659cbf3438d7b2a578ee07de15ff18c3ab22b02

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    69fbb2fca79382a554aa1d37123a74d5

    SHA1

    9ef500454ae2325fc20a5fba6eea255b82570685

    SHA256

    b025de290bd6430e88ad0bef4a219f2687dd9958ebdc641576a174b4c9a43f57

    SHA512

    55373d8995cf742fa79d202d9cc43e7c03e8df1f461bbc8701470b23111baf15c6bc06a3aae86a94228e19bf2cac52b19bcc42a8349c3c940b22be30ce2177f7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    5913128557cfe4ea1135e43e7f00f4d6

    SHA1

    adcbb71426cbee5693f4511e257f9041375c3dfe

    SHA256

    5ca8f340697ee26777d1823abf2c0b0d2df865cb31c606e04845db89815b38cd

    SHA512

    0fe596344a80dff6dde16f3bb6395dba5d3f404cf5047dfad3d1ad32c58c650b4e95a96c852dc46431fd51429e3016b6b3e0f4ea05ad4225835d962ba8a02800

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    17e9ad022606bfd1d286a35645c5e10f

    SHA1

    b34a2b86bd41cfd6c19d32be0bb4b909a4dbb3c0

    SHA256

    f5d0a47d3da6936d6fa4e0e4bd83ea45d2831962a60f8ee500be073f37b1371c

    SHA512

    8c02841c3a866c22201c2f8351b140ea06803537db8ab0a834e5c15433b503a3a95e54d085e9da44964d795872003e5e757a7ceb79fe6035d4cced9dd3f77c15

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    ed5845f44af7d68a8a47a4407b7a4249

    SHA1

    00c5cf420c969116af0c11eb062387b8386a61f9

    SHA256

    0655a868eb279cd91becb0c368410f952989c9bef5d0881bd5f0a4061a79a22d

    SHA512

    4ccb28f76a6c8d9a5aa26b8a59a0bc07b941708b0005f3f863949a7171d998fdbfc531a5697250190ba40b82e3c769aa7efd693a2bc0d4a0b1c0d363d8bb7a09

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    4a48fe2b780c3962be3941b7e3ce6b6f

    SHA1

    d2c316bfd16bcc49da7d2e1184e3e6974a309e4f

    SHA256

    cd9d86ecebc41c8c656eaac9d3f0cd6318a3159563b3f317190ce3f2b2b88f44

    SHA512

    352fc8356ffc0121acca866eca037b79be43c4d2a4557fcfc1ed87284575f8590cd46fcc5613f7a928406dc1a90d73ae6c0e6fc5e328fb3684ea7fd26a322a1c

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabF673.tmp
    Filesize

    62KB

    MD5

    3ac860860707baaf32469fa7cc7c0192

    SHA1

    c33c2acdaba0e6fa41fd2f00f186804722477639

    SHA256

    d015145d551ecd14916270efad773bbc9fd57fad2228d2c24559f696c961d904

    SHA512

    d62ad2408c969a95550fb87efda50f988770ba5e39972041bf85924275baf156b8bec309ecc6409e5acdd37ec175dea40eff921ab58933b5b5b5d35a6147567c

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarF918.tmp
    Filesize

    163KB

    MD5

    9441737383d21192400eca82fda910ec

    SHA1

    725e0d606a4fc9ba44aa8ffde65bed15e65367e4

    SHA256

    bc3a6e84e41faeb57e7c21aa3b60c2a64777107009727c5b7c0ed8fe658909e5

    SHA512

    7608dd653a66cd364392a78d4711b48d1707768d36996e4d38871c6843b5714e1d7da4b4cc6db969e6000cfa182bcb74216ef6823d1063f036fc5c3413fb8dcf

    Download Submit