Overview

overview

10

Static

static

7

646538cdfc...bb.apk

android-9-x86

10

646538cdfc...bb.apk

android-10-x64

10

646538cdfc...bb.apk

android-11-x64

10

createjs-2...min.js

windows7-x64

1

createjs-2...min.js

windows10-2004-x64

1

vpaid_html...e.html

windows7-x64

1

vpaid_html...e.html

windows10-2004-x64

1

webClipper.js

windows7-x64

1

webClipper.js

windows10-2004-x64

1

Analysis

  • max time kernel
    134s
  • max time network
    133s
  • platform
    windows7_x64
  • resource
    win7-20230831-en
  • resource tags

    arch:x64arch:x86image:win7-20230831-enlocale:en-usos:windows7-x64system
  • submitted
    30/09/2023, 22:00

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    vpaid_html_template.html

  • Size

    16KB

  • MD5

    7d7cb3d6c22da954fccb084f6c18ee01

  • SHA1

    529871b15146f802c1c1fe2342b31db9e328bb7b

  • SHA256

    05cb7160ec6766397cacbfc5d57373edbcb028917d81e2f2d748e27086db23cf

  • SHA512

    a73d034079dba15d38bd14ddb81afd8af51b31a5c80cd83346556e7ca7f2ec927511ec3c151abf7cdc108ac4671b7623066e0375b30536e1503125354fa1a15b

  • SSDEEP

    192:mrLYJFkVvGFQshArPtP842+Lw1wOEeR6kad8bWXSrJEBOn8TsjNC4ck8aanlDTtI:8U42Fn9qW4+EQNuSXIlodo4

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\vpaid_html_template.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2104
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2104 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2004

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    65855b5aa31df3de18941eecc6a62e15

    SHA1

    4e8c0a1ef5ad1baccbdf2ace6cbb07130c2ba18f

    SHA256

    b858d1afa5610fe951259a583fce367eb27d7835a1ca5abfa01bf8fff8d6e412

    SHA512

    40ab53ae55b924c1de759f191e6507279f249e6ae8dea254107ddba2a40c00cff45198a326b1d9d8039bacc841a374afffe96ee565432505216e70007fa959d4

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    f02968c00a9375dd33c11c02b3871f15

    SHA1

    2671a983b1d1499199fe4aa7b0af45acc1a07e25

    SHA256

    c02f60d78408cd92d1dd097783fcc2ea11d293d3c06eea93eef5116c463de9bd

    SHA512

    bb7a971945e3713f68620115177ff3dd24f8cbcdb05343f7b85a2da6449892c328884e947e45d782cb855841d097f7fd84b0ab784324fb46dc25cffcc4be2f4c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    1aa4c02a7af004dacd00f2c12f218a69

    SHA1

    30570b34464d60137de00afa1e73ecb1d63af319

    SHA256

    c9536f8372fb06b29e1d84c6333ec3b145038f9c634bf962cba01c5ba7017eb3

    SHA512

    4f1e158e79d6dd2714fcbaad9846b48c24922bc5631740b17e9c2bc57621292db25155ff1f084048c92605c380f2a7607a0683a91780e56e91c324c9d6050c7f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    b420bbb60f5b8ea7d2448125f3353071

    SHA1

    c396624b18b8f672580165b8d08f7b5e02f7c48b

    SHA256

    75f704bd5d202780e17211574566652bf38256df5b21407927b80e17bde66896

    SHA512

    577988990fffc2eb0c26b89a43f9d95f693744c62e4d70154435b18229c6cfc3ca2979f4fca5505f29cedea540f0c5c53d67ef9d6c8d244c9a70b91aa15664ec

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    249b54c55f465182bffd8ef15aeb6a7b

    SHA1

    6dabaa2954a87570b2f10500da99c4666cd129f3

    SHA256

    a0b2836b79e1f0080b1d8d4a5c3d4c55c0ee15e949344ac3a77af20a77485a98

    SHA512

    339284182dcb52862fa0d2af08567dc1c630febd06b88a7c610f543872f53dd4a8edf45a5dd3b0cbf2bee773c8abaf39a80fe4f942dc48d3a8848c38bbc7fdf5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    0feb70213df0b0108d80224e9c46e19c

    SHA1

    2aae29d52afc33d7de3202bef9201018187a04a2

    SHA256

    181efafdf780b3acfbc8612ae65b0c991dac0fe3ec05191037f0cd7a8372c69e

    SHA512

    e04a9422e17c2ea8787a4142611633dedca4653920af88dd4bdd26df18f9c4aadacb8e04d261207852d271190bc33a56dbc08bcf4e9141a57b364d3ed8ab8a09

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    e6b295b0d4e381b4ddd6089c3ca58b43

    SHA1

    79c2d75fdd8877465769d74164e46a1d7a773df4

    SHA256

    5c021ce6895bf4c1cff54ade8df233e2d4251570c4dc433ae83b11f244051563

    SHA512

    26b2aaf289ba5e16426c7230ca7318a97ae83b1c95003db312153952665c3262706d6693828d5c33bee0627260a4509417ac8be6b8a5f2ef96cc03a9ee138fa9

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    e017627d1d760b577dc9768442d53f68

    SHA1

    8637ce1fa65e19760d4b3e6160d8bfff6971bc2b

    SHA256

    2b68060fbd8ed76cb626a2dd9b346c458f1e796b0ea3718ac679380f2c4f293a

    SHA512

    9758641f61d2b36259cd695db9711c46697e8cb694ca215d6be3091d43871c7a2dd6ed73bec9d977c8bc6b72c57282c6ec6cee009ae47e47643f79a287a14c69

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    82c235623f9c93ad63228a04158a501f

    SHA1

    db28390b73c9b3d89523e578b50b8c2ad4708350

    SHA256

    c136658d2012169f760e8d1a91f8059e7cdae20e60984c76130a107da484dbd4

    SHA512

    a7982c936821dd9518b86af9e979cc04c52d224c63ab4e11d8cf2612f00417fc13c0d1b05c90372ca5b21ef435d66bdbcc25597fcbd3de660c5b1b10b6cf3901

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    daaf525b02f425a4e8e54b6a24fb7a7d

    SHA1

    86ea50596566eee0f3b48a685b3128ae678fc883

    SHA256

    83bf4c8fa335c438e6ca37ba640e3b873b9900d85dbe015979a60d8d9121294b

    SHA512

    a72697f995ded79d979da3737de674c362481c7d49b0dad5ef398ca21723910cbbb2ef4d4691390e1540c1a8eeb9529ecae71e39fe28843caa256d4aa550708d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    e86bd265cbdcba37c36456278b6cd167

    SHA1

    cc827f6f6cfcb40ff557c6d1047ed6b92680bdbe

    SHA256

    fcd56ac61a47eceec985fe8ef46dfff0ca539357d044a1a10d74532dfbb0a9f7

    SHA512

    42890ec286de887fffff755f6015dbc45d9962331b601dfcd5ee5a71dfef0120632bcd96ea10ced4ae1789b0e68402876a4daf8e47238da7035eb0f9a5b067d2

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    e6f3e086e798298055202e73a71bfc22

    SHA1

    973047f4586b1f19472a2c3216d715f3637a01f5

    SHA256

    5591e5bd3669847a5d799395a6e3ae869f3ac51edb8a911efccadcbf2fa517a2

    SHA512

    bf5a2b926ec6399a6c1a55c3824a759db74563fd63dc9228e391ff55636d33a4b21b5b2f82438283aeb99fec170099787c615f810eddb29d90d92afa7dd777d5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    e1ae459497390c50837e17aa8eb3d4a6

    SHA1

    9e956dbf9cde05ed32be20f13ee5ec89e2497c32

    SHA256

    f2e815ece329136cd3c2f4de8db33264b35dc433c40196194453356e5ea56e22

    SHA512

    f377e367740d9c991040c1032586d85ccda5aeb925243dd5664ab4d4c7abac3b625f4d317fb8b19dbdf7312ff6c7e4838d97c9e2d8a91b2933b8b158de98c422

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    00672ec9ca8b84d1249083146cb9819e

    SHA1

    78bb4aba9ef7606bcad925a815237316433993a0

    SHA256

    a59a7ad74d77168c4c1cc35248a95ee86df182d391cf6a0e9e4d179e0b441253

    SHA512

    6114c007c6cb487652c5d4bb592cd1b1273d11d965c8c8285f2ec4933754952630273e5f65a792318a3dd68d474d534039a5aee2b418136c7435cf9d30d78cb0

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    2ddefe5a28e3894b8f19e38f5bf7b47b

    SHA1

    d8e7cacdd811c1afd1400add913c62e1af4cd9b6

    SHA256

    f776c5c5153e59bcaaddcbfd5137f0e0e6d8c55560e4231d9fe1cb3558b159f7

    SHA512

    377caf4ba52f40f13b414fe15300b018761addce53ce89c9c26d2cb81f5df7766335da85fe3e0ff8d0e7e3332cc9dd3546c7f92d47f1b13715d7266e91186586

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    6c6f1ded3f504c419dd402c516268ba1

    SHA1

    2b31ad6520382f0e85a584f292fdac468c920317

    SHA256

    9032ce8be927787f56249c3f054b4c4647d14c5ecf2afc9e6db4d5762db4ad91

    SHA512

    677326a444400da971b25ed6c45b3a26952fd5e158255795598ab0c69c67ba419629e1a693030a9ea6b1163de2ef4cbec6dacaf7a87ea582e3bf4a82bad5cd8d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    ab3dc612ab5c2c7233abe3b3c08fa20b

    SHA1

    b4bd99063fdc0cb228ddbcad400c7f77f00d2dc6

    SHA256

    d912f12394588ffbb2ccd20071e4d6ca1a0ed134f883e6ab63322d422d2ca216

    SHA512

    50d63fec48d626606382b0087e0f8451a4d662d66d2be0a767e0b9007f219ce8c4f5314f07d01eef4f7b2bbf789ac2b07d309af3f033320dede4956c2c7e6166

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    3d9cb64ec8b557b713913490061aa627

    SHA1

    68e5ea6347dd61b19a14de2e991547cd954a3e3b

    SHA256

    d76bb4a0409b5774880f21d64a42c8819d299b1b704d610ca25ec1c25b271581

    SHA512

    b454ed8314342fd46586e2ab3b7c77ca950cf4129a279dee32838bc378a32d7d3ca324db9ee462430f0282ced23ad7d0de1bc15df6686a2c3e0aaebc04ad77d2

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    811cb83584405fcd04d15351a4009394

    SHA1

    21f5a991141d99b70d3c07bfab3c16003c85806b

    SHA256

    494b68909172dd278c4e2778938112c06ca238595e1ed3cf01c75bf8d012ac8d

    SHA512

    7230f4eb7f07ff4ebf65c9f233dabb34c00404579321057eb1eb3dd806f56769f2f3cba36c1e6747553420071f2cb2c7afb3808391732d7abbadc70f478b0a3d

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab4F5A.tmp
    Filesize

    61KB

    MD5

    f3441b8572aae8801c04f3060b550443

    SHA1

    4ef0a35436125d6821831ef36c28ffaf196cda15

    SHA256

    6720349e7d82ee0a8e73920d3c2b7cb2912d9fcf2edb6fd98f2f12820158b0bf

    SHA512

    5ba01ba421b50030e380ae6bbcd2f681f2a91947fe7fedb3c8e6b5f24dce9517abf57b1cf26cc6078d4bb53bde6fcfb2561591337c841f8f2cb121a3d71661b9

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar5019.tmp
    Filesize

    163KB

    MD5

    9441737383d21192400eca82fda910ec

    SHA1

    725e0d606a4fc9ba44aa8ffde65bed15e65367e4

    SHA256

    bc3a6e84e41faeb57e7c21aa3b60c2a64777107009727c5b7c0ed8fe658909e5

    SHA512

    7608dd653a66cd364392a78d4711b48d1707768d36996e4d38871c6843b5714e1d7da4b4cc6db969e6000cfa182bcb74216ef6823d1063f036fc5c3413fb8dcf

    Download Submit