Overview

overview

10

Static

static

7

b59d430797...fc.apk

android-9-x86

10

b59d430797...fc.apk

android-10-x64

10

b59d430797...fc.apk

android-11-x64

10

arrowdown.xml

windows7-x64

1

arrowdown.xml

windows10-2004-x64

1

bootstrap.min.js

windows7-x64

1

bootstrap.min.js

windows10-2004-x64

1

epl1.html

windows7-x64

1

epl1.html

windows10-2004-x64

1

gpl_3.html

windows7-x64

1

gpl_3.html

windows10-2004-x64

1

howto.html

windows7-x64

1

howto.html

windows10-2004-x64

1

jquery-2.1.1.min.js

windows7-x64

1

jquery-2.1.1.min.js

windows10-2004-x64

1

keyboard.js

windows7-x64

1

keyboard.js

windows10-2004-x64

1

mit.html

windows7-x64

1

mit.html

windows10-2004-x64

1

mpl2.html

windows7-x64

1

mpl2.html

windows10-2004-x64

1

mraid.js

windows7-x64

1

mraid.js

windows10-2004-x64

1

mraid3.js

windows7-x64

1

mraid3.js

windows10-2004-x64

1

omsdk-v1.js

windows7-x64

1

omsdk-v1.js

windows10-2004-x64

1

privacypolicy.html

windows7-x64

1

privacypolicy.html

windows10-2004-x64

1

ui.js

windows7-x64

1

ui.js

windows10-2004-x64

1

Analysis

  • max time kernel
    134s
  • max time network
    134s
  • platform
    windows7_x64
  • resource
    win7-20230831-en
  • resource tags

    arch:x64arch:x86image:win7-20230831-enlocale:en-usos:windows7-x64system
  • submitted
    15-09-2023 22:00

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    privacypolicy.html

  • Size

    7KB

  • MD5

    78f32a9019f57a659d6371154c548a35

  • SHA1

    a77668b9227cc859ac553eb658ea7754a9856649

  • SHA256

    8182750a9334a3375dd0a2f277a50e70a50312ca49669938bc3bc73c242f0e9d

  • SHA512

    81a2e99ebe1a7f72fce36b4df6bf5d15f1390cc6086aca84415ea515042b0218bee6bcb1eef0084508e05dc48923468dfad2ee2bce85fd8b12709533a30e7ff3

  • SSDEEP

    96:MXJuq9eOOa5nKKEeXcgFFOgtIZ6y7PZwJZfx7VwxZuxYMH4Y2+WqI6VT3VCwp:MZuqgOOaQKEnGON6y6JR9kup2dSVjMwp

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\privacypolicy.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1768
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1768 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:1280

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    d0a9f4ee1c8fa9b40da6aa28ab7908bc

    SHA1

    a990e3abaa5bdc86f094f2dfa7bbc1aac971dd51

    SHA256

    bd62d71670e245c2013bdb3eeee71f4c0330e02ec10761f6b49deb9c6cde79d3

    SHA512

    998684597d20e4e06a0873e302b6366069aabfe8be03d1e913e099ff366bb1bc4f79dbead1b2b34949030c2a2d9b9db7f2a7e7b75af40c525444f85e7ebad586

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    c9dd6e5e6108398d5424738b601ba971

    SHA1

    c5a40d7455c410d633652ea14386b2375e3956ae

    SHA256

    12f4ea7191e7a35dbcd430e8e8b568f8284b3b1dd48033fe80b67fd16160c0ea

    SHA512

    7dad6cd10158acec8d1ef15571eae986d10402b66bd4b5a0c7e678f09287ecf8afbcd370c98795af40bd33dbb504dc2267a3c2169315bb4f5b14a63e4747e17d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    02494feec8ba6fb4f0cf73bba14dc6c2

    SHA1

    c768a1aceebc08c7ee44fb451c9afef66209b08c

    SHA256

    3318438451a98d76acb74ad0825043063a5c9de0d0883b6bb6821b3029a875b6

    SHA512

    6b9f8744b6d9f6d114008f29555e4271d290d0c1f3e787c8220f864d2ad596ab182c36615860bf2c3b793955bc390e0117d3dcf129c8f8a2aaba3cc04edd3f78

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    1d57d03035e26889a7afa7e3d3f09a98

    SHA1

    f8b73a1119f6d99a8c42cd4d3915dd3bf1fbe169

    SHA256

    c804000ba9e44554403db6d02971f5073d6b64bd10987af84ea0d7dd5ad93d6b

    SHA512

    00cb6bb985ba0e2598f287d58c1fc9d83c80b30344167119d652b688040e76c55b7b0f41a64d796622df0e42b6c034258702547e99ff2349fab92eabb01f6278

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    917b85586f60b05def9c0942b0dd2e36

    SHA1

    c8d0fae4e0909ffeec2723d7d5811f71644c693c

    SHA256

    f03a747d46240277e57a50bedc32a2f3d687928e471b4b3de4c3f71498a02f2d

    SHA512

    123f8fd3c2e39338a601b1457e020c61cb40b88483731c3912ce7cf16576d48b9756a1e2bec1c91419d57b8a4c80dd88f15721235d33923a68341dc82a318780

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    d0960f3723a0d80f26c0f6db3900b51a

    SHA1

    74cde2509079816a6d42c36bb8b9a5688d7d6445

    SHA256

    104db50995aea7ae492221257866c283728cbd943d7ace99c647f7fa69f63a61

    SHA512

    691f4d0fe90bec792613e8b1f77659917908f0ef33e729060dfb326f9d2afe719cf084b5bd9517d3e088e3e1eb0cd2cd24f6d1ef30f6a1fdc69ffaaef08cda44

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    865d4d849287bb48d9c09df57db18c74

    SHA1

    3a4183f07966a99ecd926b54ad32729173f1bbe2

    SHA256

    ad5f8eadaeaee5a32e7b83845a0d6af832470d4383c47a26e26544a7bfc43c8d

    SHA512

    edb944b93be3af71c6399fc2220ac4f6e73ce3688ea69171243bf150bbd8e655a9100e31fde7fcdbc19b984af6fd3c42d87f32a32412d0ffe7b7fea67dfe8240

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    f363dd40d5789159b2d39165d7be639e

    SHA1

    d66a5aeb6a06260528466fd02a5bb01f3f125e98

    SHA256

    b0dbd4d5aebf66b0203de2f8bac937902f773d6c1e606091c5f6b7b43c5c3490

    SHA512

    22d8e66a4c08e5151346a4ee5eba1d1eb72e1681c1c1e482e0ffde224fa6a14af68d196981f519a6d3d120f6011da1e7c24c4a59c8035947e2abe5d159cd37e7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    d4a1de29e08e4126b175233aad951b8e

    SHA1

    34bdfa7349522c104e0854037e9d3e8451773925

    SHA256

    f519856917c8d1657f129aea7ec16bf5546aa222e2ced23ca46402e66e1a3cc4

    SHA512

    f0dbc69f8c2a53014ce24ba908caac8a73057ffd35ea62d4d8c94d36f73fad904b4575b301ff95cb01157c808afca2efad5b3ef437f8138338d3ae0d17ed0a9d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    6a9a8e6c276044c35696f5d86c77cf8a

    SHA1

    0a856012c0d5c72beb97dcb01025cf872ea3dc26

    SHA256

    1390359a4f071f625e6a3d9eba3a71397a12c5f87d03c02779b8f9ca05b2d7cd

    SHA512

    f3ec0160c8d99a6739f527c0ef90bbb6f6efee7657f08946c496db88bddb68f251e5836f7ae99a80185f6ff094583ae95b7beecb4bf12ae23bb577c405895006

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    60562b79a537eeb31f153e3a34e6667e

    SHA1

    1df208b63f81df108c2e66e6b115479f8850d141

    SHA256

    1f1fad6db855f3c717fbfcc8271e7e1f74d48757c24a75000c1ed9529650aa4d

    SHA512

    f8f58ff04bf1e7ceba266558e1ef8ac0dd63a945a7a88eb6cacd100f65f9ae09b94db97d03358834e383360cdfd5626f6876863473b14827d2223b4ceb0f136e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    a4f21b00e9e9989a23b9d6abb1e0c26f

    SHA1

    e33aed4872ef7b810035cdb61d5cae0c50019a1d

    SHA256

    3a91f6228d334583a6bdd798bba6a13c1a5c1aafb3e8cdf9e7a0d43508d66b46

    SHA512

    ac293586ee273f341097f844b23a3edb946dabca9e288ff8080ce1346af19275579cae957cdb1e9685e455817fbdc617dd6a8f61db9e0e4a325cc34e80309ae9

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    39f55c0b9db6580eb60e20544f3a4869

    SHA1

    da863f00eda5bbf58d18ab1a0212011b9d6805c1

    SHA256

    bf4540c74759ba34accbc478f968a877a97c843ededc1189ad5d8695e4067a38

    SHA512

    05940083af98735c8bc6a2b45a0ecd08a473008ca770907018a82f55b84131eadab33a388368b4a789cc3994df191453f35294aa877efe381a12a25fff5370c3

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    8acf0359f715ba2dc4a31bc7f81161eb

    SHA1

    7a8a5fb6d9fff145f218c5bd0306be1795e3495a

    SHA256

    f8f5f01db61efff4236e2c44d24ca0bb706a059ae3cd443399f485801ab088ff

    SHA512

    08ea62e4526f81645d578a540263711761d105704651f7f4a2b5d58e89d5a2e2878b33958e975cdedc153feccb79ad46e1d14497f5ffed46b49b2fd94843ebee

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    85a48df8bb55cde097885dbbed4e5f74

    SHA1

    f1fa527446aa2f0ad0d186070dfca6490d5f2723

    SHA256

    f4fb8dd820e95938172e414b7b5baa56b7238a88c4fa665e51cce69781de64b8

    SHA512

    cd7467035be884619fd5ccd64de1d7702534c6febab8ec9d7e0de13a71f603b09aeb4ab666abf99f858f8cc8865df114fe14d5cb0304e9dbefda2abc1dd32471

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    4d54a7d3bf61626e352318e2b4475c20

    SHA1

    1e99642f746e325dbd59bb5465e020f984e5fed1

    SHA256

    926f831005139ab9e26c61bf860f1ce1b859e826408d57fe7342f08a5c0a5a80

    SHA512

    3a4c72a508578ae635ab4a713a181325aeca50443769540b8459e26876f0f8cd27778762e301c034023754dfb0176a16fd2cf9f060f72e7c660b024ad9bef853

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    55580bf570bb79de86f1ca095fbb6cbb

    SHA1

    8aafa187c753ecc90cc827052ad58fd52f1cf439

    SHA256

    6457a45cd03d06547756ab79e02ab3839f7f82c532bdd0f5acecb04a4b624e96

    SHA512

    537b4588d0b6194c321841c7e5e0b65a64527887bdb4c54960eae4b9aed446c45e913de8060cd4f4de57f1bdfc4015188baa5c114e221d1befc33f675104de14

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    4ee9c98436ecdce8f7afd261028d884f

    SHA1

    5141a9cf5cf7d3c73550514ba29e8d8c4a46e9c5

    SHA256

    308813558ae533b778288560f8cfa46aad03094f42a255e5e405b75ec7629437

    SHA512

    5892d0eb8e72a0c7af5deaf08fb7398d16ff52ff5b55a8165e01698ef101536ed0be934099e7703751760bb305a38c488686a1e9c5bf39285a8038648f07aa63

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    9af6cdeededdc706c8601c74b80c4476

    SHA1

    e8ec2f14988855fa0a9f883bb22bf44cb756efc6

    SHA256

    233f236baf16202970e532ec13966d2a6e44e0e81c420d4de9456f9f9eff0f4f

    SHA512

    14b185262e7d951ae891a08e83ce1b19bffb0c1ed25a1afb8f29b6e8cd9b3d480989e0950aaaa81a6cb9af4cbed7f880a088c5da87f96396b1ac8d77e64817e1

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab6625.tmp
    Filesize

    61KB

    MD5

    f3441b8572aae8801c04f3060b550443

    SHA1

    4ef0a35436125d6821831ef36c28ffaf196cda15

    SHA256

    6720349e7d82ee0a8e73920d3c2b7cb2912d9fcf2edb6fd98f2f12820158b0bf

    SHA512

    5ba01ba421b50030e380ae6bbcd2f681f2a91947fe7fedb3c8e6b5f24dce9517abf57b1cf26cc6078d4bb53bde6fcfb2561591337c841f8f2cb121a3d71661b9

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar6696.tmp
    Filesize

    163KB

    MD5

    9441737383d21192400eca82fda910ec

    SHA1

    725e0d606a4fc9ba44aa8ffde65bed15e65367e4

    SHA256

    bc3a6e84e41faeb57e7c21aa3b60c2a64777107009727c5b7c0ed8fe658909e5

    SHA512

    7608dd653a66cd364392a78d4711b48d1707768d36996e4d38871c6843b5714e1d7da4b4cc6db969e6000cfa182bcb74216ef6823d1063f036fc5c3413fb8dcf

    Download Submit