Overview

overview

10

Static

static

10

c2c29a35f3...JC.apk

android-9-x86

6

c2c29a35f3...JC.apk

android-10-x64

1

c2c29a35f3...JC.apk

android-11-x64

6

cid

ubuntu-18.04-amd64

dt-mraid-v...ler.js

windows7-x64

1

dt-mraid-v...ler.js

windows10-2004-x64

1

dt-omsdk-m...ker.js

windows7-x64

1

dt-omsdk-m...ker.js

windows10-2004-x64

1

fyb_iframe...l.html

windows7-x64

1

fyb_iframe...l.html

windows10-2004-x64

1

fyb_static...l.html

windows7-x64

1

fyb_static...l.html

windows10-2004-x64

1

omid-sessi...-v1.js

windows7-x64

1

omid-sessi...-v1.js

windows10-2004-x64

1

vpaid_html...e.html

windows7-x64

1

vpaid_html...e.html

windows10-2004-x64

1

Analysis

  • max time kernel
    135s
  • max time network
    133s
  • platform
    windows7_x64
  • resource
    win7-20230712-en
  • resource tags

    arch:x64arch:x86image:win7-20230712-enlocale:en-usos:windows7-x64system
  • submitted
    28-08-2023 17:34

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    fyb_static_endcard_tmpl.html

  • Size

    3KB

  • MD5

    d18fb1787ce0e84567496b8564e452aa

  • SHA1

    007033d0824685600611af6992060577e127dd23

  • SHA256

    2ae5e0576febb1a1cd63b10bf71644f99fcfd0fe7fb1f2d19525594165294e51

  • SHA512

    ba5225a80941e3ee4ff18401b910968a6cab47634914ecb68213599b96fd4b39c8722e82bf2883faf355d9416a6f2acaa36151a5d8969079cfcd4c6795f6003b

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\fyb_static_endcard_tmpl.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2368
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2368 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2400

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015
    Filesize

    61KB

    MD5

    f3441b8572aae8801c04f3060b550443

    SHA1

    4ef0a35436125d6821831ef36c28ffaf196cda15

    SHA256

    6720349e7d82ee0a8e73920d3c2b7cb2912d9fcf2edb6fd98f2f12820158b0bf

    SHA512

    5ba01ba421b50030e380ae6bbcd2f681f2a91947fe7fedb3c8e6b5f24dce9517abf57b1cf26cc6078d4bb53bde6fcfb2561591337c841f8f2cb121a3d71661b9

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    c4be5498397b6604d79c4c5920bbc6df

    SHA1

    09ab365564bcf00ccbdca93a9c5427d763b257cb

    SHA256

    5e3df3bf6e97e3b6fbc01c52409af63f25338f48701e484304da939d496e61fc

    SHA512

    a33b4c9b4ec33d51c517f082eb18a3cfe9aff144b67b10025cd76a39af97470e6b365232b2c11c8566902327937c2f83413902a96eee298d0d009b97e57243dd

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    aa209b3047ec891c6b0624623edf01d8

    SHA1

    fb2da8d41242c87fda017c30d540b4d0ce75e125

    SHA256

    a518d6a145a21864a4f20b306afd2f079b574efee1a89e70f8ae2cf6a30a7901

    SHA512

    32cb82709038b1bdcf74fe1e59fcd75e88f025b34bf3237ab77ca35dd94866622ee7c69317609da1dec1ba22705bc01270a80dcf1faf33dec6d252c39f5b6efc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    133dd56b3b00ae0efbb804437c7a120c

    SHA1

    58e01aeeb55f699f92268131f4df37b9bfbdd564

    SHA256

    e512fc74304e349e1c92dabdd89d98bc376c850082c8235368b4cb3c32b69967

    SHA512

    84e8a033e4f1a02db2e816089ec942d692e7adfe27995a5b39f638eeaaebf1bb38cec654552259754899a9b474e9479ae349aa6e4ec92200bfaea4ce5e55f771

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    e34a75ba162b1dfff75e14f7ff11dad3

    SHA1

    7a32af42887c90a26d49e7b31b2c54f2f5cf1f0a

    SHA256

    7fc024edbe4241dbad6693e4950945d3418b2bf087fa8a984fa691be770e27db

    SHA512

    75e4cd9c4ad5e4d53a83b6fb8de1da0f0fba4d3b1048d97c7394cf6b9aaa00dd2d7ff77b94db5f16f8295c0ec8c582d59c49b2e8579f7d62055ac3731c3ce3ea

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    f9a6ec9c78953920e7ded9133dfcc7d7

    SHA1

    53e4d7404ee952b2156b50a61f0fe4bfa3c4af80

    SHA256

    2984e34b6fc675f09ab25f29c3f9d8774c0d2d8c0088980861f9cc98cc198f9d

    SHA512

    7ecb928f9bf1dc6d51d444b5e3b4ae6c8afa65e7c534ee6d34bd06bfd5b1add717a98414325e50cc5ab0ab748847f916b7d2f04bcd4a1d6119d3f86974a6ab36

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    d08fb86e636f588d80988300b5c9e535

    SHA1

    8e895096cd63c56f2a39b2258951b1d37d920dc7

    SHA256

    626251398350c62c307fedee5b1083afab843e220f33be654326f03005bce799

    SHA512

    4be0148848a1e8e243afcc07cce1be0e5a5ce56890c2e07d72f607a58e80576ade7158cc376870b3f64cc938e8f8b35fe73b09dc48e6da9815cc7558897ad0f3

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    9cf9c6fb2bee5dc08f5a6a386431d5ad

    SHA1

    c4cc314fbd5582e91ebb5e6fd1e84a640987460b

    SHA256

    fa18416d396482ba527c7c0e7d7188a09394dabb87c25cde97742cb80b42a363

    SHA512

    ddabbbec6f03525a65d9732b6fb39a7f8515345cb8c1771388ac77a64aaa976c25555e2c7551bffc309777410a36d98da08f5b01167b970e920d23d5ee396df6

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    5baed64e1d42ba09c7d0d10ca97c9c7d

    SHA1

    6c18c463419b783bbfbd0e9e007c7217574bfe45

    SHA256

    aa9254463fb0929c9934e0d6daf9fc86f9b3bbc5a7c461cbe5f80409fe73d680

    SHA512

    43bbf812cab6cbc12b6288ee5a6e5c64cf7753ea1090877379aad64e30a4edaa83d89063fdcb1f925cb8d7e7be9d8ace7a4ae5f7d5d3b315f788bcb36c4014ab

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    928fd06b476b08694db26b32a154f40e

    SHA1

    0e87b9cce70004f64fcf22673ba11bb082a0a898

    SHA256

    80f2fe9285db14455d6e9cedc7181bc3b45543de3997354af171145af76de92a

    SHA512

    0beba69f914f8c11a0d84151946cb48f9555cfe38a96b149e77d16ca6ea5bba0439e417a1463f66defa269677d53fd90e44c508bbd5a4ead75c74f3ad85f3e8e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    6df953e806bb65427edd63af88b40343

    SHA1

    f89067931fd49e8939a1e80a5c544a11264725bd

    SHA256

    5866b25c0b865c469d60c01715d14b38034f96734f552fdbd3fe06238465d33c

    SHA512

    e42b43e6464a658fbf644e4065df43fd80f8c14380343f56e0d3f83d43af8713e0529e0b9f137cdae0f9ae61257d23ae0fb2bbe2d0098902e862d367169afc90

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    66f9ba9d02b864f37d651afbd192f50e

    SHA1

    f426335188fa62332f2294bd79699a91895a2be3

    SHA256

    e6fca9981ee14063a6a71d92ee94f06b1007543582f4b00865c3d54d07ad25f2

    SHA512

    51cba03997eb0454d82a4eb711705f31c143b56594b344887b188e522212901cd9da7c9f8c4bbaf809ee68419320f426a6fc6731915f2dc2cecefdc63ffb81cb

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    f8e49dd5f1a94ac668a60e97da018414

    SHA1

    ac37a134a444d324710b2d5b443bc3c3f70719e7

    SHA256

    744dca7e635967bcdab0161b5ee4aec2edc0b4e5948a7ffc40af06d47fbb1250

    SHA512

    67f5ee479ea2ffa014eb405445f38e02efb6fdaf826cd5bb854f2f194f9ef347a62d90ea83fb1a857de9818426be8213f32552bcea760a6c968ee2a671e318d9

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    60978a22e267babb8d71e6a1ed7020f4

    SHA1

    36ce109b0ea5c3f1dee6f3ab9f5eede0c5cded47

    SHA256

    b50f1eca088dccc5dc31d81f65cc25370fffd2a9a87a30ab3a888d82a4ee4fd8

    SHA512

    1fbe1b5c309c84e9d88f30a960ba5b09e3f892f9de3039a585db690d3725b882e761730e374adb23c079f2a402b7d91f99a70afdad66de40acafd7f8c648d79b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    c518f255f64a9a5cb4b67be660493885

    SHA1

    49f3e88bde51f98f06153bdf41dcc4835e37987b

    SHA256

    9412e8a9d649cc665b4c8bc135bdecf116c8ffbebc5568a1424d5264a9a5cb96

    SHA512

    1a9cff94386594d9033d28aed56ccd5874bf0d9d1fa5095cdc57d8cc5c46ea4661cfcd8d904453278a0fefa5a521f6656c6c581e1274e1057d758e0b074f7dac

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    b433ce84c282e27d2169e95d06052a8e

    SHA1

    a9013da11fb47d91c8b3d29551457ba8f9616577

    SHA256

    7eeed9632343631ef05e8220df447b468a812cf0bff5293eab48e2431550dac6

    SHA512

    84f201b68fa8d952f29bf0d853db9cae734bf98838407afb6601c35e1c6417f6b46abe4aa10fc9d46c59d5826991091afbf29ddbecf1b36ce4ee1e0fcaa6cdab

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    81063dfec616f7f9c8c0f15c79b78c57

    SHA1

    9c3ba8b1ebc5236fbea7ccc3eafeebe941d70e4a

    SHA256

    4c4cb6374ef069b9fed02d86bc2785ae47a0425fda353a051b700b9af5609277

    SHA512

    dc3fe9d5278694e2fbd15327ed2cd0cbe2b25cf59c9809a677ab542164006b28136a3231b899c14d60ea19efc667c7de420e8d9bc4b51ffa2057b761dbb768f3

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab96C4.tmp
    Filesize

    62KB

    MD5

    3ac860860707baaf32469fa7cc7c0192

    SHA1

    c33c2acdaba0e6fa41fd2f00f186804722477639

    SHA256

    d015145d551ecd14916270efad773bbc9fd57fad2228d2c24559f696c961d904

    SHA512

    d62ad2408c969a95550fb87efda50f988770ba5e39972041bf85924275baf156b8bec309ecc6409e5acdd37ec175dea40eff921ab58933b5b5b5d35a6147567c

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar9863.tmp
    Filesize

    163KB

    MD5

    9441737383d21192400eca82fda910ec

    SHA1

    725e0d606a4fc9ba44aa8ffde65bed15e65367e4

    SHA256

    bc3a6e84e41faeb57e7c21aa3b60c2a64777107009727c5b7c0ed8fe658909e5

    SHA512

    7608dd653a66cd364392a78d4711b48d1707768d36996e4d38871c6843b5714e1d7da4b4cc6db969e6000cfa182bcb74216ef6823d1063f036fc5c3413fb8dcf

    Download Submit