Overview

overview

10

Static

static

7

1b51293002...64.apk

android-9-x86

10

1b51293002...64.apk

android-10-x64

10

1b51293002...64.apk

android-11-x64

10

HM_JsBridge.js

windows7-x64

1

HM_JsBridge.js

windows10-2004-x64

1

consentform.html

windows7-x64

1

consentform.html

windows10-2004-x64

1

Analysis

  • max time kernel
    134s
  • max time network
    132s
  • platform
    windows7_x64
  • resource
    win7-20230831-en
  • resource tags

    arch:x64arch:x86image:win7-20230831-enlocale:en-usos:windows7-x64system
  • submitted
    14-09-2023 16:18

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    consentform.html

  • Size

    27KB

  • MD5

    7a2ed1a6df8839dd8936a86d9edccabe

  • SHA1

    7bc1af528444afca678905059cb1ba9fade65352

  • SHA256

    d02fbd55c1b5da3fa1f77c52f5633421395a3bf228457521512b37cdacd65f9c

  • SHA512

    ea0c3e512b37e340f4c0a49196344f1dd5aef38c469ba124605518e913be601a5b6a92a50f00e962bc90041bb80e51480254c7902032d894b7d24be5aec47097

  • SSDEEP

    768:wEh4FOT6bJdK0D7fkvaqF1b6cY4c5rC28c54NTc5Jt:th44GbJdKoncY4c5Wc5wc57

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\consentform.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1880
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1880 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:3016

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    aee1f44502210af2826d2239c4414de6

    SHA1

    86bcf1298f2001e7e3d5836f534a3d66b98bfcc0

    SHA256

    61954f70052796494c3d349e49fe5b958241e148cba9303cf7c277536de2acad

    SHA512

    ed4a54ca968f1ee33cac4545fcc91396f8a68c5beb93d1033399086d4fc76602ebe69655948c2799d54edb0f37b246759e1d57a88399ce74dd524601e38d1dba

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    f12831b350081509690a5ce68316242e

    SHA1

    a7033596594dfdc8c79d1828a2325eae91adb6c9

    SHA256

    a238a504c822ad4c9ff3dc049262cd1e813d3b3d54aa692c573d5a7bbf17eb9b

    SHA512

    adf9d5d4b3322bfb9f776221b2d30341f5db3e13899fb66c2ea63bcfd967cc43fe8e662764b8703f58d3ce268a0b6e361e84f736ef11ff09ec78b42de95914cc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    5285c16940d0b32bde3a6b13828d6e8e

    SHA1

    61884aa7400bae84cb475b5dda2cf80e6cc6aad4

    SHA256

    424b71a0bc396c3fbc3db21f62ddc3bb8e594edac785d3f94b55622e788b2ee3

    SHA512

    ed1a07b1f478146160c3b266277c90052f20343fb4b21a5501b8ed0e0f0bb720e0d24578fb9954b9eaa1ee70e07b49c89edeac994ab1e8e8939fba5f3338972a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    5dff800ec03a4914c0e831fa2ad1cc18

    SHA1

    d8a75e0d85b723f45f719b8f6749d8716aecf0e0

    SHA256

    c79555d60e91d4707836633578e4de79cad142209e3f37bca1ec54f0243fb515

    SHA512

    90aa376f73e30325347fd3d7242de6c569d5cf6dab373311b929628b3b957724c610c580a7acd739a214a2dc9ee0c6105f25d335a4683d61b6b5c0af0bda40ce

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    41e8df462c7dcbcdb53b2843b5754b98

    SHA1

    a12f086d817090cd26da8fc4d685fc92faf1af3b

    SHA256

    490781450e237bc799fcb3853c5a4e32d00e981115904ffa080d1b2d619a1a69

    SHA512

    e89b18a32beddd0de0218156953c83a9272f5d02442e14743f63d6da5932cd4e6277781995ea3f4d5eec32b6abd89cd1e49e460fd24da4d3abbb5da1d1ad0e47

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    792ae23a014f601dc5ee51e8c7a8b619

    SHA1

    d67c1b713bd002a15da9165a4b055029d6e3531b

    SHA256

    26e4bada1f29663bacfced8def97fd56fc8c4f99bcf285bdd3e5c63007e79e55

    SHA512

    c43b7f4fb372782dd222992c205a877c6ee2aea7d6d0a1d4075ccba30bad0d5385c486081435c59e00ae554ed86201e3f4a690966781844d300ffc155788622e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    0aa60ab363110f0aa1246f7b096c8c39

    SHA1

    c5b1fe35e642f34081ddd46cec9c62acd9b0f46c

    SHA256

    998bbb0696be547b13ba2c958208282244c1748f9e668e0a006b129975e1faa0

    SHA512

    1c07aba4f4a1e84f2299c005d3f75b185d2178233d0eb0c9f3c15858931913d4a72dc9bbdddde20f46950bdd56818c867ab67251f3fbe9a4d0ed118ec7cdd5f4

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    7c05bbd626cd8d5f5bbe9815bb7c2834

    SHA1

    8e9649b9e52bb25578c508eef6fa501b4a14e869

    SHA256

    eaea88baa41a8bf3a508f487cd49ef019c112159e9fd6caf46e5e1dbf74e8f44

    SHA512

    ea0ae6bb8d602fbfe7c0e49c6ab1f0e10ff2fd79243f7e4e78c5cf13cd44c898415be7dba7721e0769d832d05ce9a7f8c3b48219faad3a42b893ce96ed19566c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    093cfac630d6c10d1f363ffc9f6956c5

    SHA1

    066269d5b6a1a3fc0552b2cdc6be08008be6f9a1

    SHA256

    30b83457fd9dcdcad789c9880bf06035165d4acc0aabfa12265abdd92bb1fb14

    SHA512

    0e4ac16e9eb62fa49472fddef0f8eeffe8a62f1096a856f37f1eb42116639506dd12c330fc41da7995f9d826aeab95b7531086a16d8c9739b9cd2b33ed2c6fb9

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    2bc18804bde91efcdc0220b96a425d36

    SHA1

    472592704d8253762af2394a9cb031303285cce6

    SHA256

    bb4dd3acfdcfcb7da0c37dd9cc42f2cc2be5bd2047ba2c53d08adc653b8c190e

    SHA512

    fa84fd645f144f4ff0975aa79a03e612ca63706bc2d91c06e3fb61debd9f175a24f08a95f32111c87a0240a4c2e7a1dbcca5d6da7b231687ff3e2a2a1f46b894

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    6b66dd0e9210208e4f7fd6a714a695fd

    SHA1

    e8f88cac0245ce8f9d053f8a296949c16ba7d07a

    SHA256

    933c928da3faf1741b0145ae998d4faa92b540d6cde80f85c988cc68dde90c21

    SHA512

    bdbe59818c986af3ce0c98abb41f86cc982d7544d157e1a2354c9f52a6098067fb59a976cc3676f3583b3f209e3462505cfa5afe364e903199842e0b412e12c4

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    68a5babf4eb9848a9a11467d84e4638f

    SHA1

    1dd5c855363dd895a881e6b255e9a8fddb941196

    SHA256

    f0d4e4b73fa8699a8b04236f5bee688ad56fbc6f50dfef55b1b7993f947c2f67

    SHA512

    486910507371e876c741844b9654fdcbfa451afaa0558726f458da546bf7fe79d4d7ec938ea8a1c0dbb86aa5999b12d9e3b95506fb264ab8534696a79ad81890

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    7b1cfab29de48c273f79e24c34c2107a

    SHA1

    ce49718bfbaae70c7cf01f90f6fa17c80583270c

    SHA256

    1a027b1abb4e0fda298e8e8bd67b2d4afeaa800836fb8dc2ea6cd31f7e55deb1

    SHA512

    dbef5c281d1b03a0b75f1bb5988588b03fd317a7b1bbb50055b849848ef1362d49db36791e797dc81d96c6b345b03dfe9be16ff8e5f073cb475f120dc9409da2

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    c959ce3a4b543da56c947bdfa4671220

    SHA1

    35c3f22b6ad6e338fc06c353a7289a07b7b27749

    SHA256

    42669feedc83683c634a1afa64088ac7556f1807a8d7ff0bf69974ed9b767c2e

    SHA512

    4b7f22b981c141e2d7e97b369fdedac48c08a92ce06069fa32b9886f69186a7f93e6f46ba8eb726599e4fbdce8f5fc3965882406cd0454475a39d0c78fdae765

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    f39ea165843a7c9a24850fe3ea180345

    SHA1

    b5f620640c71f6130aff81ff79c994df258eb9e2

    SHA256

    3f27af022ce948d9890d30bf4d9e758ba80f062cc422869344c89f9bd1f45e06

    SHA512

    08248d568a55a8386bd24d051c2d1b73efb34d29301f6bc19c147552f78f41bdc2b019ad74033aa9e696c20dfdb8af6b4cc08cd26c0f4f6d7fc0cfb6ffe57687

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    76ddf27012c27b843c2e70cfa12c535e

    SHA1

    4fa3561cd15e7708e3f42758d7031b08283d904e

    SHA256

    3d5e05274622aedda6a93796a2cfab0f43b6bcdcfcc4753dc2381957360b21b8

    SHA512

    ec5ee5fdde4918cdfa4718a98a1291fdca7ce27c364aed2e674825bf8756258449a21684c5e478b5e58ee1180513245a07184902931bf86353453905dc4c9ab2

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    2e50e0e845e262850825179d37684d16

    SHA1

    6adf5eb474122b9d2ad2d51ab16aaea58b3c702c

    SHA256

    115fd86d6559378ab8558adc7692fe6fc9ca5eee6f3f3273f38d86d55c0fd215

    SHA512

    4bee37c33d3a106001d0f929518b7093f4670d88167f045e9c2f4b442c075f3d639d98fd5289e0e3db5d19ce3d8a8501348b9ca721109b0cbaafd23579d82fe0

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    27509a26aed70902506bc6d9c85924a1

    SHA1

    7318fad75838a1242e35e8e3b43558bf84256912

    SHA256

    4933b21e5811edd00ba79a51c1d485e554576e52d1133946301cceb15242e088

    SHA512

    08dc00265714f6d890c9717a088be4790b6619f68d90cc4693232fd166342c2d9a89bf3838a5dd55ceb2e87b64c7f6edf9d8e51a00d7d8a26fc4986dc6e5d784

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab3ED6.tmp
    Filesize

    61KB

    MD5

    f3441b8572aae8801c04f3060b550443

    SHA1

    4ef0a35436125d6821831ef36c28ffaf196cda15

    SHA256

    6720349e7d82ee0a8e73920d3c2b7cb2912d9fcf2edb6fd98f2f12820158b0bf

    SHA512

    5ba01ba421b50030e380ae6bbcd2f681f2a91947fe7fedb3c8e6b5f24dce9517abf57b1cf26cc6078d4bb53bde6fcfb2561591337c841f8f2cb121a3d71661b9

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar55F1.tmp
    Filesize

    163KB

    MD5

    9441737383d21192400eca82fda910ec

    SHA1

    725e0d606a4fc9ba44aa8ffde65bed15e65367e4

    SHA256

    bc3a6e84e41faeb57e7c21aa3b60c2a64777107009727c5b7c0ed8fe658909e5

    SHA512

    7608dd653a66cd364392a78d4711b48d1707768d36996e4d38871c6843b5714e1d7da4b4cc6db969e6000cfa182bcb74216ef6823d1063f036fc5c3413fb8dcf

    Download Submit