Overview

overview

7

Static

static

7

17e7c53050...0b.apk

android-9-x86

1

17e7c53050...0b.apk

android-10-x64

1

17e7c53050...0b.apk

android-11-x64

1.html

windows7-x64

1

1.html

windows10-2004-x64

1

10.1.html

windows7-x64

1

10.1.html

windows10-2004-x64

1

10.2.html

windows7-x64

1

10.2.html

windows10-2004-x64

1

10.3.html

windows7-x64

1

10.3.html

windows10-2004-x64

1

10.4.html

windows7-x64

1

10.4.html

windows10-2004-x64

1

10.5.html

windows7-x64

1

10.5.html

windows10-2004-x64

1

10.6.html

windows7-x64

1

10.6.html

windows10-2004-x64

1

10.7.html

windows7-x64

1

10.7.html

windows10-2004-x64

1

10.8.html

windows7-x64

1

10.8.html

windows10-2004-x64

1

10.9.html

windows7-x64

1

10.9.html

windows10-2004-x64

1

10.html

windows7-x64

1

10.html

windows10-2004-x64

1

100.html

windows7-x64

1

100.html

windows10-2004-x64

1

101.html

windows7-x64

1

101.html

windows10-2004-x64

1

102.html

windows7-x64

1

102.html

windows10-2004-x64

1

103.html

windows7-x64

1

Analysis

  • max time kernel
    134s
  • max time network
    140s
  • platform
    windows7_x64
  • resource
    win7-20230712-en
  • resource tags

    arch:x64arch:x86image:win7-20230712-enlocale:en-usos:windows7-x64system
  • submitted
    31/08/2023, 22:00

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    1.html

  • Size

    888B

  • MD5

    25d0b183d4c751a6d4b4783908b4e8f4

  • SHA1

    d2c00767a055fc915791c3d86d70b744a3ee125b

  • SHA256

    0fd6e698ab8355a470e91f02ec9183592b5ddf953c9a2bdfb525887881ff782a

  • SHA512

    7743f4ce7ce2df7675af96ab33b5de44c41d43583f450e7d62f1524fa3fc4f177438773aaee0c2c7a1bcb5be57212efbe77af928fb7a65b7c5e97a8a84656c3f

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\1.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1176
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1176 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:1136

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015
    Filesize

    61KB

    MD5

    f3441b8572aae8801c04f3060b550443

    SHA1

    4ef0a35436125d6821831ef36c28ffaf196cda15

    SHA256

    6720349e7d82ee0a8e73920d3c2b7cb2912d9fcf2edb6fd98f2f12820158b0bf

    SHA512

    5ba01ba421b50030e380ae6bbcd2f681f2a91947fe7fedb3c8e6b5f24dce9517abf57b1cf26cc6078d4bb53bde6fcfb2561591337c841f8f2cb121a3d71661b9

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    7d2a244fd67a9942071a5c56f7326699

    SHA1

    8e0ee90ce1efb52ef7ff5c16649b23d9fd3c7979

    SHA256

    98409cf5113ad2c341f21c88c4ddd5efcccceedf8bc5d365c1ccc6015143b0ee

    SHA512

    e2b61f3ca5ff1886cee8f390275550e6a9980786fdcb645b7e9696000c3852fc91451138e47277ebe3fc8e5893e53059f59029b6741160f81a5c7989ae86af51

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    bd484d204fed3678838b5d9c9ff2ef24

    SHA1

    bf8dd04e9e124caed19d27f6f6c31503f1d0ffd5

    SHA256

    530c36c1e3d11393b78d20cb206ecac22911f0b35b4a4731f4abb837a1449fe5

    SHA512

    6ef61a5a297039f4444e8856ed5d97f4077bf7245bb1fb0492cb2cc434bf1b5139521928f97ce6e9d6f797b497bfdca5340bd484bcd911fa768828f55b696e69

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    a07e03d519ccbbc408e5494f96dc9fb0

    SHA1

    393c10b51cd5a29f48eb77680d1bbfb5bc3f6a4d

    SHA256

    fdba2e28753ea04e7fe6df1c152aa5ba571afee01210a63070e0e4300b6e7ed9

    SHA512

    56b3689c0bba83aca1efce928363d7f863775404614cb284a6afa63b5fe0e97714f026c3259f92c9dfe522e1854808aa9a3bff08fc22882d087b024daff33e5d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    0cdd297ac2ab09a6dc21ec2ddb4e77ad

    SHA1

    b30f05fc11c37af566d60b3f164fcbfa35ab019a

    SHA256

    bb84813159a9b333c8c44364bdb7fa62ed429652647bcc1691c8d7c4f967c64e

    SHA512

    d306bd427a726278d29d9265e9eba679a703e76b7bc633fa92ca33e09a1fbb0d562328daa1269c5d07a159c6a6bd14a355c7d339567c7c763abe57def87bd201

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    2aec6eb750bdcb712a8cc9c17b6f18b2

    SHA1

    9bcb66f6e731837f31362d69cefa447f77a5d377

    SHA256

    13b11a8ed36be1b4577aab68299ecdb9f3c020f6159a1a0959915f39584e4d4c

    SHA512

    3980830af75a11626d1448204886fa00567739993b2d7936b79c3234fc2ecdc00f17e4f66ad3f6b9f37f2368847be8da42582503266dc6d047a06f7a8fcd75d9

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    ee69d46a433f130c2fe14e47f602b6ec

    SHA1

    9bcfa424369e2d6e1c81983a2d30452d97cd74a5

    SHA256

    1cee4bec2c221e585ba0cd2129e944f1a0ea812b7418699e95e748bbb16e0e75

    SHA512

    f4738bf3cdeb3221fa42dc3f2fe320bf6360508a1cc1c21e7746bf9a3ebea8de101480c90433c43898833fb08b5e10217dc92f424adad9d4d7341dd4a5f35f02

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    96635d03a572f34395a5ec7f81ce6b8c

    SHA1

    49527ccd6ae4a199d9859fe5bf21bc1880927fbb

    SHA256

    61ae7eceeef8c44a33e3ebef9c54231a6d28cbd9fb023c10e3daa1af1aeba5e9

    SHA512

    833edc2d27cce3f319da158ddd7179eb972d5225b34ba8f9816805e8a1bdfd6fd17dfe65e440e07563bee725fbd9b2ce6f07d90913f6cc743499945a90b402e6

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    ea80d63426b42ebd2f7540a35d6400a5

    SHA1

    13060aaf04986013942922bd89ce4f8895ecbeb5

    SHA256

    5f2b9731ed97977b11bed94483ca5767be6ed0a5e35c5a9620db5db7007d5a2f

    SHA512

    060f0b9d0e190db02a9d0d90362b59d7395c5153cf5490b3033fc7549230d480556b7b03868e1e8c75291ad3482e2fb8631ac81df0e27b2db2a0d5222d5ca332

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    507e13818bf370ae9fc197e471d2e56d

    SHA1

    9c6303f32fc9d3c628b76326e5cea413656b17f9

    SHA256

    7d7eb1f11d25d019b5fafe94813c9516166f1fadb4bc2438c526286137284c69

    SHA512

    78363a7b852c908c83fac4a746304bb8edeecbc509246700c489a87d05931d2760a4270eb6af549e2331751424c5c4bf9e068fb40703a0131095fc436e942d34

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    45a7850b283f766667d904432f1e475a

    SHA1

    4ee30d30b95d447f506155f7e100939b04462c53

    SHA256

    cc997c00a86d83284a202c66c96b50496f75f3b5e8de87b9a385b6abc1d95b55

    SHA512

    8f8e625166593aea10ef9889be0b31e1b2c5bb656226ed501f20ee774d3ef0c549e3f6c0694e1e1aff47466abc2eaa3541b882b741b5dc0829a23c54a5ee7840

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    b48963054a85efdfdd9c9a5c61d8554a

    SHA1

    e5c81a9db111c55ab95adc96a5731a7a83899c85

    SHA256

    4777efe53f2d900411561cfe9a5137f4a780b949d9f9769567ef9b752335b3ab

    SHA512

    e79c73f2aa43f6baf713c33795548c3f19d7ea31d7a9b6ae5f53fc214fdff4a7d8542e21681368c863d70955b445813ab04fe68675839f1d92cc1e071c2edff7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    4aceddcbef93943741dd56d4645d77d9

    SHA1

    1b93e17993ad75029718eadeb63c26b871d15871

    SHA256

    b01aed86c12454a28c946e197cd96e5a8e9d6bce20b929a240649bb544be3e72

    SHA512

    e92a052854f2ffa64b1fb9db2c49d6d89e72a65bc7fdb7c922e6740a79571ca756305ff0fdb0791ecd71d9ceb107b887bd7ca96283ced2d2ed6593039f740d11

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    aecaeb84301ccc7ccad434c3babda8d1

    SHA1

    29fb1e3c43bfbc19854b5d766fbf12a399d615d0

    SHA256

    8fa75746629d7a719dd6d6f2740e6a06efb35dab7dd3ae521195f7a49615ec39

    SHA512

    d50ed96f8acf3022b95f36ab0aaff40dfbfca9b9b81eda5a2080f755a54976c85a6c854a1e2736e2739248c36be1f5eede0c464e79151a5066578e20f0d737bf

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    7c84fd77c02c394d8d469857399abb58

    SHA1

    7e2cd836505fef74b92e6a434a797f3b58dba629

    SHA256

    06bd6c23e7bddd3558c63500f4403e354539310491cd46fe78375c642dee1cc3

    SHA512

    88bbdd4ff6fc2cb708427fa3c6eb463660c3466b45e55466fb0275add3f9fc4d3a5e0892819060e1665d6afa46b615dcb48c542481a6e7453aa41a24bf1a1460

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    e74fd3b8450ca73ab024f1182d31ff27

    SHA1

    4b5dde71d4611b83db5dc0007ab7b119ec1e8de4

    SHA256

    4d6987192c504129a5543f9fb4e2a51f7fbbd45d753d965f6d9eaca68d61fb6a

    SHA512

    53073112c631c3f4f4d69c515c16d16f08722877a646da6980c867924a7bdd68637644607b96ae14af5e8cae2db03f75d107edc1112abba9c416e541492dd12c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    f6c2c077f18de51c67125664345edb74

    SHA1

    05b738180da0e0c8ce75416a41bc457d5e187270

    SHA256

    1f4f8b043fa4db7c7b3b09025022c4482c3e551d3da60d973de6088787616fa4

    SHA512

    a375c98c69407d71d5b1b579faf433a843d55b6e3d94a0925e1ddba9b07841dd62bc231ad462b5fed0aecf553e431f7db0948f17b736eb72ee9c4424b58ef77f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    74251b4aed81fb5eb8439125bd0e6620

    SHA1

    b711d87bfe7aac44ff18570c74ebd7edbf171881

    SHA256

    60bb35f3a507c332f0517e13f28b532addd1d4c57170ff836d7b8e9085eb6fc0

    SHA512

    866b86ea53b392eebca0424c652b01ef6ba6ccc05a5c6382e3444de62ab073e57196f2e413bfc2919b1da271e07543a84830c0c034baf8d722721f18a4b72c47

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabFC4B.tmp
    Filesize

    62KB

    MD5

    3ac860860707baaf32469fa7cc7c0192

    SHA1

    c33c2acdaba0e6fa41fd2f00f186804722477639

    SHA256

    d015145d551ecd14916270efad773bbc9fd57fad2228d2c24559f696c961d904

    SHA512

    d62ad2408c969a95550fb87efda50f988770ba5e39972041bf85924275baf156b8bec309ecc6409e5acdd37ec175dea40eff921ab58933b5b5b5d35a6147567c

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarFD3D.tmp
    Filesize

    163KB

    MD5

    9441737383d21192400eca82fda910ec

    SHA1

    725e0d606a4fc9ba44aa8ffde65bed15e65367e4

    SHA256

    bc3a6e84e41faeb57e7c21aa3b60c2a64777107009727c5b7c0ed8fe658909e5

    SHA512

    7608dd653a66cd364392a78d4711b48d1707768d36996e4d38871c6843b5714e1d7da4b4cc6db969e6000cfa182bcb74216ef6823d1063f036fc5c3413fb8dcf

    Download Submit