Overview

overview

7

Static

static

7

17e7c53050...0b.apk

android-9-x86

1

17e7c53050...0b.apk

android-10-x64

1

17e7c53050...0b.apk

android-11-x64

1.html

windows7-x64

1

1.html

windows10-2004-x64

1

10.1.html

windows7-x64

1

10.1.html

windows10-2004-x64

1

10.2.html

windows7-x64

1

10.2.html

windows10-2004-x64

1

10.3.html

windows7-x64

1

10.3.html

windows10-2004-x64

1

10.4.html

windows7-x64

1

10.4.html

windows10-2004-x64

1

10.5.html

windows7-x64

1

10.5.html

windows10-2004-x64

1

10.6.html

windows7-x64

1

10.6.html

windows10-2004-x64

1

10.7.html

windows7-x64

1

10.7.html

windows10-2004-x64

1

10.8.html

windows7-x64

1

10.8.html

windows10-2004-x64

1

10.9.html

windows7-x64

1

10.9.html

windows10-2004-x64

1

10.html

windows7-x64

1

10.html

windows10-2004-x64

1

100.html

windows7-x64

1

100.html

windows10-2004-x64

1

101.html

windows7-x64

1

101.html

windows10-2004-x64

1

102.html

windows7-x64

1

102.html

windows10-2004-x64

1

103.html

windows7-x64

1

Analysis

  • max time kernel
    137s
  • max time network
    143s
  • platform
    windows7_x64
  • resource
    win7-20230712-en
  • resource tags

    arch:x64arch:x86image:win7-20230712-enlocale:en-usos:windows7-x64system
  • submitted
    31/08/2023, 22:00

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    101.html

  • Size

    1KB

  • MD5

    150ae59149ed690ec913f46f08e0bdac

  • SHA1

    a3e0065f0aceec6f7453da7a8d54fc5b3249ca7e

  • SHA256

    a7b62f50afe83f3445905c3446874192a9e10fa3af22cd031148198ba376f114

  • SHA512

    23f60972f55814fe81fc019c93eb9ba2aaed9f46b522decfde528a0cb0e2e427a817f6b4a0e7064ece1b4371c47cc1943b471515b08d3bf036dd1e7bb32a1e70

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\101.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2364
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2364 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2152

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015
    Filesize

    61KB

    MD5

    f3441b8572aae8801c04f3060b550443

    SHA1

    4ef0a35436125d6821831ef36c28ffaf196cda15

    SHA256

    6720349e7d82ee0a8e73920d3c2b7cb2912d9fcf2edb6fd98f2f12820158b0bf

    SHA512

    5ba01ba421b50030e380ae6bbcd2f681f2a91947fe7fedb3c8e6b5f24dce9517abf57b1cf26cc6078d4bb53bde6fcfb2561591337c841f8f2cb121a3d71661b9

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    e8021a41766348dd4631116da95ddf95

    SHA1

    a82817daa9cc23a7c3f9c0267b533076914c6718

    SHA256

    c0f1e1b07872e798c1bff5d25a8170845a910f9d9bd2ecab44b87c5a333941c7

    SHA512

    4fdbc1de30ca8a9d59747ff5454d13dc6e5895976a8a53ec7e9f76780da000ecf18bf96f9609fd8f7e93d46d737623a020de73f9376fc3ea987546fe2e30379d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    f150017e4db800243e7ac4e71f7efd15

    SHA1

    5c7e3553ed08e5181d7b289bf1273c8d89a2d899

    SHA256

    8670c5d845b85370f75fa61f5ae73b93e5f1822fb1f67fb416c2df4e3265b351

    SHA512

    74520978ffdb7c1e68f5bf71036cd7b3d213dac1796221d5d4d6fb5d81d72d5682f95641ff1161cef61e025e0926a4150d3a54508081315f7c5645c1ad06ae2e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    4f813fede1b23ca3eb902e28d168f8ed

    SHA1

    59c9ba70f054dbb46b70b6680e19136759beead5

    SHA256

    eb509d5a4793600f77a0dd4a314b4a15ade75855287762d27a024d9341d20fd6

    SHA512

    373e4aba212d076ff0bc3e9667ca945ac5adb0261394102920c0bc38177fa84194aedab6a2afb8e4d70557a5a308334d728aa3e067f9b698bf36bcd66c36a879

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    b09308534aa679ce714b444c3f169e9c

    SHA1

    e660b65d227a0284bce3335517acc45a039fb37c

    SHA256

    e2e7a32eafc56c4578ab6b34c8c7b36fe8e5de896e6f3cf03ff16be664ab8d8b

    SHA512

    c8dfbb065a7d06ed7cbf8fb0a33c39ae59d7fd10ed5efce74b749e8d1f01b0fdffe8bb41f542424a65903f5eea9397f1767663da5502afb6aa92949ce98fb15d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    453930d830fce6a3b548227f368bccea

    SHA1

    5d5418ba663ee197f539358f55c7b5fdeee5c9c6

    SHA256

    2f4fe9e2028c96cc58b51aca370bf9f5b34aa85ff9acef593f168fe3ae32c3a7

    SHA512

    feab51330120a609e83a7f524540a9815f859dc32be49ef93ebb19e066422ffa7ae2903e3d5144998890d429c7313a76eb78def4ae6f244ec5ba46be2136a97c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    108f1d517605b2332ff303ff6f3d641f

    SHA1

    cc80869966a6227c822f2bb18ceaf57c91d24109

    SHA256

    38452f04b24dc9e1cac4c3f9fd0c278115db48bb579c8a1e160e95a484b3ab06

    SHA512

    3896f0c16da36a822ec39df2ab495dea1b32d3b4cfc503919c645349f415fc22d51cbba67b742f647c0244152587266b997fba63511751c89385c7a2877436a5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    9e964f1dae9ddf1a7cff077067aa2dca

    SHA1

    7f18e40536099da991d37932d681b2d76f4acee3

    SHA256

    6c3283e5e2222545005832830bc01f56c13bbdc353f0a089a42676e1f6b9d25b

    SHA512

    fdab58abeb14223d28100bb60fa0de86621648bfb18e48b8d723996460a1a1aabc366d17eab6fe273ba7cf2cdd3f6669ecec2e61fa1b7257e240fb440611f9f8

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabB666.tmp
    Filesize

    62KB

    MD5

    3ac860860707baaf32469fa7cc7c0192

    SHA1

    c33c2acdaba0e6fa41fd2f00f186804722477639

    SHA256

    d015145d551ecd14916270efad773bbc9fd57fad2228d2c24559f696c961d904

    SHA512

    d62ad2408c969a95550fb87efda50f988770ba5e39972041bf85924275baf156b8bec309ecc6409e5acdd37ec175dea40eff921ab58933b5b5b5d35a6147567c

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarB748.tmp
    Filesize

    163KB

    MD5

    9441737383d21192400eca82fda910ec

    SHA1

    725e0d606a4fc9ba44aa8ffde65bed15e65367e4

    SHA256

    bc3a6e84e41faeb57e7c21aa3b60c2a64777107009727c5b7c0ed8fe658909e5

    SHA512

    7608dd653a66cd364392a78d4711b48d1707768d36996e4d38871c6843b5714e1d7da4b4cc6db969e6000cfa182bcb74216ef6823d1063f036fc5c3413fb8dcf

    Download Submit