Overview

overview

10

Static

static

10

Instagram.apk

android-9-x86

1

Instagram.apk

android-10-x64

1

Instagram.apk

android-11-x64

1

dropbox.html

windows7-x64

1

dropbox.html

windows10-2004-x64

1

facebook_d...e.html

windows7-x64

1

facebook_d...e.html

windows10-2004-x64

1

facebook_d...c.html

windows7-x64

1

facebook_d...c.html

windows10-2004-x64

1

facebook_mobile.html

windows7-x64

1

facebook_mobile.html

windows10-2004-x64

1

facebook_m...y.html

windows7-x64

1

facebook_m...y.html

windows10-2004-x64

1

garena_free_fire.html

windows7-x64

1

garena_free_fire.html

windows10-2004-x64

1

github.html

windows7-x64

1

github.html

windows10-2004-x64

1

instagram.html

windows7-x64

1

instagram.html

windows10-2004-x64

1

jquery.js

windows7-x64

1

jquery.js

windows10-2004-x64

1

linkedin.html

windows7-x64

1

linkedin.html

windows10-2004-x64

1

messenger.html

windows7-x64

1

messenger.html

windows10-2004-x64

1

microsoft.html

windows7-x64

1

microsoft.html

windows10-2004-x64

1

netflix.html

windows7-x64

1

netflix.html

windows10-2004-x64

1

paypal.html

windows7-x64

1

paypal.html

windows10-2004-x64

1

protonmail.html

windows7-x64

1

Analysis

  • max time kernel
    134s
  • max time network
    132s
  • platform
    windows7_x64
  • resource
    win7-20230831-en
  • resource tags

    arch:x64arch:x86image:win7-20230831-enlocale:en-usos:windows7-x64system
  • submitted
    30-09-2023 02:20

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    facebook_mobile.html

  • Size

    11KB

  • MD5

    75fcdb1e09e6a7697713fb6f83021cb0

  • SHA1

    b12cbca3b52ca3eb63abf52086432b1a0965c47e

  • SHA256

    e4b692454ffde0ab619659bfdd1a5b26994d83dbaf30fd3f22d820d51a87f5cb

  • SHA512

    6875b5f10ac074eb4f8fa57c05c6b255f64cfd5df65b967980ccbe7a263c46e3239ff0fe72341cb62b6370ef8c146bd01001e710dd02b0a8e06a6485c02c9d95

  • SSDEEP

    192:u5zREOR0Hlj5/CwyzyLnEhO5k7efrjGpEF9/w7jsSQ:uNREOqlN5nVa7jpEF9/1z

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\facebook_mobile.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2180
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2180 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:1308

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    9fddc08a62a40b94c4db8732513097e2

    SHA1

    40b0134db11d9b29e187f019ac86f217fd1056e3

    SHA256

    abbcc3bd14caa0c4139e38b08897f8dc6889ba7db3d069d1f8cd9cc0d28fc377

    SHA512

    b145650f501191903ef4f6092aaa075bf77f01c73fca974b41d09e4152634870320325158b3d98b00ed4fe7d902204bbea30815d9faf491b97f42fe9e608e355

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    d5d0b27a07c1a22ed74ae702ad8b95ec

    SHA1

    3e908727bd56bee66ae1894b38121147dc1d0897

    SHA256

    a91d38834601188e836aeeb1ef8a2f606c6fc1a157a50596b9408f53644d406a

    SHA512

    92a6a4805192e1bf7467a60c3f943957ba03302bdf580df545e3b51e9d30a8bf44b0c9ae0e2b6c3114063c68e27f4fcf34961b8620ce703ceb8c9738cb8ddf91

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    a7a21281c64012e46a3760db876cacf9

    SHA1

    ba55ffb95bb17d032e371b3067d7b8bf07cc7790

    SHA256

    de7c5a0670012afd43ee6e38d02457bb9768b894dc280595e42846dfd2603bab

    SHA512

    ff9bc50dc8a77dcb03d6a98ec87077047baa14aab87a80003a90c4d58d183d0ada09650952f7ca5ee60630e15314ca1f7be5b9fe00114179afa0f092266afc4c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    577fa546d8cf9a692978978200d5e899

    SHA1

    13030b3e22cf63f07fa9b976dce0df55bbb52740

    SHA256

    5b072e60dce706cad5b6aaaed8f034d00995d4df2bec86c15c68ddc765eff11e

    SHA512

    9059621557862f3cac309a63725cfcf94578923113f7ff79be075ad340500431b489913c23f3bbb2442077ae277c1734548af5c41833db5d32095246483cc8f5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    1240a8cb9282b00075eb72b65da6d25b

    SHA1

    f2df1e73f26d867efd29466110356075cc45619b

    SHA256

    a52351b26b8f5b7fde5d41237dea3e702faae1cc5bc26d2f68c51caf6bed824f

    SHA512

    2c109415dcfa670e195580b30811494219785e04580568cc562fd7e449bdd455f259613f92c6c9e0e7f5aa4c0b446bc1582edbd49ad81929ffaf5632caa27f53

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    020ecc50b36013f771692d6f990d1bc1

    SHA1

    12e1206fa504c5c13db9cb03d08638d837604b69

    SHA256

    96df88b4324e317d5c960fdff4f18dd2e00ebafbbccd9eb1f4a9f3126bb12c3b

    SHA512

    f39a7fffa51307fcd92b25cffd6947028d8d133746537436c6bf53b15a127a114b2bb716cdab5b8446be363a08b31369332cf84c7d3e641f9c0e4eec6fb982c9

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    00cfc1630017fe1fb7275e948ab17758

    SHA1

    1c57acb8b0a339ca16d843b51d7789783e8369e7

    SHA256

    03a0f1027c35f27fbbd67c0f922ff81bde88d1fb63b4113d122a629968afcb24

    SHA512

    fe02ecbbb21dc287465361882b27aea370b944952faafa680ad7510f921e3b6890a115a2dfd15813c4de670c5c9a43bd60fc4a62c86847647efff9ef9a8d9c78

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    acf9ffcc1ce79dd3b1ca2921c1d3e0eb

    SHA1

    25d28d233b638c1a897c043b293ecb824307ac0c

    SHA256

    586d29182619c4f62ff92e6c812ca9d6b42af9e0bf6c8e665338e2971b84028d

    SHA512

    93e0fa696c25cf6849719569205a5491c17e17aa20a3df9cc49a63f90e0ab2bf2e12018aec4c1cd207cf922494a5b2c5ddb36d6f1e93da857985ce885965a71f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    fec2bcc8aadc539ebf8001e2eebefbb1

    SHA1

    c863e9fc19b348623c76ab78c0a42c71d89f0ea1

    SHA256

    e2ea48bb2eb3aeb82d5b0765466fe99cabd694581ca72e5a6bdb3e4716b4c612

    SHA512

    def91f56d55331097c27ae2f49fdb77381501245bfa7bf0ef66030b8cb98f3cdd8002c50ee36e7a2cec4503a7c1d633f1c4263ee46073c2ccd15db5f365c474f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    8c3888c5e47af7504bb7537ece077dd3

    SHA1

    8cba5e5083b13e2b825f74671301fab7fe5863b9

    SHA256

    9783325b719c1943ebfd3302553c92f22e9f233ee09d987a682b4ac91d545432

    SHA512

    32d29db9fdced5c8e6769e2dadfc23d331fed697839103bc2541212782df2b59bddcd4a3e0a97dc307461ad302174bfba1fcd29a9f3e39a12d82db86f0a3de2b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    8e8f598f41ff182e1efc022b60e9efd5

    SHA1

    c4cbc6a6b4fc930fba05296cb752ffa49480a8be

    SHA256

    8fefcb3ee4635bea82f3ba1296db9931185bf41e2b60fe95bb80c9945f297673

    SHA512

    9d3f406cc9d490fa8da6d5933bbbfca7234d102751245287ec507184804df8167ebcd82378d32bdc1db75c32ec0a1e60aa00987861b88eea82f7efdcda57cfbf

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    efda241f75c64ce4775ab634d3637657

    SHA1

    16f65e22fc597c5313282b2298b57d99fce719b9

    SHA256

    ef576024af8297b9f4293a0c6d843eba0753499a08fac22bcdc9fae8cfa64b3b

    SHA512

    e47c801351b06385b970f8c7c68338e87a67c3e67047ba3f2e835f6fbd2f49e09c9dd749d1e07b4f1d39d6add5c10f3677d1e6407ad553fab387ba29912a4c0d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    8ed64f6c92b2df34b365685202f2ccc6

    SHA1

    5aeed012a87261dd3a691430aeb49323c7ccc40a

    SHA256

    bcd6ac8b865ad52b5007225f2cf1627735beb5dc870b2f5f94baa15f0339f728

    SHA512

    7b3aa0cb1c054335e30e551b9af9faa9b5fd229d07c5ccd868a93be17bb353623f86fbb7fe0365d6f07b9b8b61720fb9b1479b02db6e3aa42357b3ba9b7aedc4

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    2ae404fc35a674c0e296ad01cc715f95

    SHA1

    7d9968d634acffc5ce1c3a4277b8ce97d1d6b2e9

    SHA256

    4f6cf892c86970504b1f09f39dbd8b09cd206e2791193cb9db94549e94597f3b

    SHA512

    c56f0d2e38c5e08c287b5a12bd59306ad2ba4fb9718021aac4b91eea20b6b9e5b45a23ffb00bb9ddd52e5e923ddf03d7e7e5f868080b0d5bf5b8b9da081c4e20

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    7a8654ce2ac0cc2c6752c9f3121128e8

    SHA1

    daf59d053b5e0d3e0e49283a2f44b2f792d43a07

    SHA256

    f4734c423921a420ab718bd261a475bf8c085a01b53bcd56f2e31db87efafafd

    SHA512

    e9fea13da2088f4bd846ecd6afc8c2fc6e6aec9517ccf1cc9d07eda02838ea01bea529aac194f5e1918c1211fbe6d5ad0c8906203c4a434e733b7d6bda0ebae8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    0d375fc1ee1091920442ff9ebaa82f36

    SHA1

    265c527ad5d167dc0fa6c9bdeb2076902321f655

    SHA256

    bf588d2738dcb4bd19d3295de265d1f968c54de1e690e130d9f3e51fa54d9cb8

    SHA512

    81948389cc3829be07f94f741309cca1f0d4141e06f927e6d3a9f2775c79d4950b2620a0242af17de4fbc681984e4d6f8a67b88603f966922204462028e9fc76

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    adaa73199f14e768985085f0ab43473d

    SHA1

    7ee907a4480a0fee52da2c8ce4367407ea1b72e4

    SHA256

    b585923f2ce7e5fb35eb6664ebf3a90b138c361b433af3d0be530495d2562ff9

    SHA512

    75131bdd77faeaceda816f42c17d2620fe0e1f902c72c761cee696a4534c386f98a23947ec9de16e0d92d929fa5a7e61f67674de067bb98592284941d14fb31b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    bb77d36b1f195cb6139b1bfffde26e8f

    SHA1

    f6d3e6f2f30d70352e0fb69b39d5b5d3a299f273

    SHA256

    b688760ae85a9a51891d0de134e49ec0ec6f71b48ec18a84f33e8fc449927cc7

    SHA512

    57f92a221488f2990572e4069c7aaafbffbed5494e361977287b71272a9377b766215b78ae5f4c953ce732a8ec1aac46ead0f72713765d94414a45054e14be7a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    9a721143ef1a34d5b4e53b9ccedabc28

    SHA1

    56b10a8548eecd894da7e1e57ff6ebd96083362d

    SHA256

    b653113a5399620a435e2ca44fe6d7add54c474c2f8effe4f3e28879ea71a2dc

    SHA512

    5225bff41f3b7c5f68fd92979b0e19b3778babc45c07bab7b17e82ff93a55d0f8358a7d160ef472625e303566f3eac30400e8e61c3bbbf0b60e0565d4a431a2d

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab6931.tmp
    Filesize

    61KB

    MD5

    f3441b8572aae8801c04f3060b550443

    SHA1

    4ef0a35436125d6821831ef36c28ffaf196cda15

    SHA256

    6720349e7d82ee0a8e73920d3c2b7cb2912d9fcf2edb6fd98f2f12820158b0bf

    SHA512

    5ba01ba421b50030e380ae6bbcd2f681f2a91947fe7fedb3c8e6b5f24dce9517abf57b1cf26cc6078d4bb53bde6fcfb2561591337c841f8f2cb121a3d71661b9

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar69A2.tmp
    Filesize

    163KB

    MD5

    9441737383d21192400eca82fda910ec

    SHA1

    725e0d606a4fc9ba44aa8ffde65bed15e65367e4

    SHA256

    bc3a6e84e41faeb57e7c21aa3b60c2a64777107009727c5b7c0ed8fe658909e5

    SHA512

    7608dd653a66cd364392a78d4711b48d1707768d36996e4d38871c6843b5714e1d7da4b4cc6db969e6000cfa182bcb74216ef6823d1063f036fc5c3413fb8dcf

    Download Submit