Overview

overview

10

Static

static

10

Instagram.apk

android-9-x86

1

Instagram.apk

android-10-x64

1

Instagram.apk

android-11-x64

1

dropbox.html

windows7-x64

1

dropbox.html

windows10-2004-x64

1

facebook_d...e.html

windows7-x64

1

facebook_d...e.html

windows10-2004-x64

1

facebook_d...c.html

windows7-x64

1

facebook_d...c.html

windows10-2004-x64

1

facebook_mobile.html

windows7-x64

1

facebook_mobile.html

windows10-2004-x64

1

facebook_m...y.html

windows7-x64

1

facebook_m...y.html

windows10-2004-x64

1

garena_free_fire.html

windows7-x64

1

garena_free_fire.html

windows10-2004-x64

1

github.html

windows7-x64

1

github.html

windows10-2004-x64

1

instagram.html

windows7-x64

1

instagram.html

windows10-2004-x64

1

jquery.js

windows7-x64

1

jquery.js

windows10-2004-x64

1

linkedin.html

windows7-x64

1

linkedin.html

windows10-2004-x64

1

messenger.html

windows7-x64

1

messenger.html

windows10-2004-x64

1

microsoft.html

windows7-x64

1

microsoft.html

windows10-2004-x64

1

netflix.html

windows7-x64

1

netflix.html

windows10-2004-x64

1

paypal.html

windows7-x64

1

paypal.html

windows10-2004-x64

1

protonmail.html

windows7-x64

1

Analysis

  • max time kernel
    134s
  • max time network
    132s
  • platform
    windows7_x64
  • resource
    win7-20230831-en
  • resource tags

    arch:x64arch:x86image:win7-20230831-enlocale:en-usos:windows7-x64system
  • submitted
    30-09-2023 02:20

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    garena_free_fire.html

  • Size

    5KB

  • MD5

    9a849b2f53ecfb0555f094204d30f579

  • SHA1

    54d37bca91b0bffbd10592752d90e29397dda084

  • SHA256

    0cb9ef94582dbe566091d89b6903237d5cea31f48e494cfcf530c33de77dd72c

  • SHA512

    d47643ac0bde9b7f4cec62687f79b2938703e0bec9f5cecd67fce16d04c44755409406d588544725c4c697b0727372731809ffd2549f1026218d61e958ca3b75

  • SSDEEP

    96:ofdvPjc2XXIlXLvG9IgLth3Rbla+BJ3xb2HoG1lKAPHiuwSOO:ofdHjc2Hqq2YBxbVGZiu8O

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious behavior: GetForegroundWindowSpam 2 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\garena_free_fire.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2460
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2460 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious behavior: GetForegroundWindowSpam
      • Suspicious use of SetWindowsHookEx
      PID:3024

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    c874a01c465f4fe82b5ff1583e29e37f

    SHA1

    b29e45ea54da750735ec3b62bee39b01b15eeba9

    SHA256

    8f504d4d763c486749f62202721a976d66696f740d5d4e0ffbe386562a01d952

    SHA512

    9f2ad36b28275b6b57578f12eadcb2cfdc3f43b2a2e2d397e11aded7e3fc90f69aa04dd228b93ff4e56d7bed502792a17047e2ecb590562d44a759c703b59df5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    59d4b5485bb4681a9515c41b446d845f

    SHA1

    87235f0737b6dc2f20ecc9d16f9ddc196ddc3f77

    SHA256

    736cc511d4c92f1f7abaaaa4d932807307daf067f320e4db1da5e1acd4fd5212

    SHA512

    6741ce8fe75c20bcda432b98e23aa38de64c78543d5b2f355722826ec4227fa3876a19b43425b89b0053442cd3ed07f739362b914023d54fbdcf342974c86f2c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    da794508d330a94bdf0652fac95e3751

    SHA1

    3c55798adc97ec61cccd6eb475d869623c9a787b

    SHA256

    683bd2423754182ae812e17b0948b059c9df15bbcd7f3a484677beabc133d236

    SHA512

    e11cc81bf651617baacadc89d91377aff44f8722acf87f72decc613bfc8aca3711cb67393af967828f436df77faf989cfc2b4647edb8a2827b04a71f4f426b4f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    13e47955d8eca4115c95f3687d15756b

    SHA1

    928212fda836d437a00bce41f9c0012462e30200

    SHA256

    3035974bccc5c17bcc4048033686076c6341c214914ac815b2835c6201b35952

    SHA512

    cc1224ad4bee849b183be02f8d61a8601fa3e402741ea8e94a877400db5e74983d2ee6f04a541f110cb86afddfe92ac093398f6a526130d559d47e13218ee4fe

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    1be449a2efa61baa54f3169a6f44c104

    SHA1

    22950e809d49fd9c7535c718e1be90d8e8efffda

    SHA256

    8e13f2721e05e78f9ad432971e50e38386ade40773ca2a5863c9e9e778b35df7

    SHA512

    7d509d322b2fc9bc5984c76ddd9263db8efd5450287486f326a7bbfed1b4d447d53beefd8511492a8ebf3447f2e1a0c6e63ee8e9233eef0c267f041c2eee1a73

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    6be7e7da03fb453b76a17d1aabde8e4f

    SHA1

    b25ca531b25c83b4ddd75a8939572b0b51dec014

    SHA256

    0e8262367582365bb29fb65d0c41d7c4fb365b6b4b078e232fed8c0e16a7b68c

    SHA512

    e025a5be6b2cb9003ad3cc897e016a3afa80046f199b73b086a05c79d3b0d5087f5fe50e42b03f58af58af6a32ca805dd0e2e02eff477be28a917dd0745b8518

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    a663580443da993eb6471837a75a1bec

    SHA1

    bb49601439a0047c10ef1e6ac1cb64ff4816f7ab

    SHA256

    7b6cb6c48c3cbc2debfc6518c87e5085dace4a580be520c4e274eeda65cd91e8

    SHA512

    033d810a980b535ce33ee0c85386349efdd184b6aab9b6984442da369bf63f822d3948eb2d308e5e37057b4389fa16cd18554e349fb32906d5853b4c8c8068e9

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    b9cb1e0b5044e166a8d2532720bab6cf

    SHA1

    ab39b8298b3607b3789dc3dcfa93483db4f3b3cc

    SHA256

    ee2bf5508a1ab338b3efefd8e2512cad4d298ef013c0b4b8043b7881067f2f0e

    SHA512

    43f7b5554c7a58109ea0f4e6f049337fafda76c5d01f84ac957b5933c251b264520d60437a07a0ac60b17690e6b5f81f97b139a6f3c82b9f20351ce03db899fe

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    538c232f560c70dae71aa1cbb129710a

    SHA1

    32f14e47a403acea9b5e74c9dd843da45ea97d27

    SHA256

    4503c35bd1aa425284b1af904f82ac04c91f3cb8c617a06ee3ab4d39f01918e3

    SHA512

    820deb1adc5a17b852b72447413d536860afad803a54a6501b506e7b30670051ad2b120b0b698fd6cc60892e3c265f80fdf341014abb87c899dd73091b74fd26

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    0c4159a6ef7016da8b1e57c8865ca49d

    SHA1

    d45e1a53cbc22ef603bbc03eb75f2f610bbeec1e

    SHA256

    32c1c13eea5c208142ef160b439c4d9f8d8b78408d187c04852e0b7c88376289

    SHA512

    a0b1121ccd9f02d4dfa50842ed7e89f5c57a72e04ab7ab8120bfda677743a6d3134014c44e7323d8b99091998c0aae3eea8ba516203eb2afb8e25980793fd6ee

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    03b98e39421f78ac57236905b294f32e

    SHA1

    6ce9daf8d197ec9ae894b9de9535d45c3185fd18

    SHA256

    2d61241a3fdc22a185c2a4d7351b0143380aedb7a9b2a3e9e6587b080e0e9468

    SHA512

    c27b5763e1ba11adedc7bd1618deb5cdbaf0dc3ee17038bafec62f40c49a9bbd951d75ed25f81fbbc1f0485618d9ed4e03d574471c34aeda1e3ad319fcbccc45

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    9d4d168a78ded9b7b7096a8dd7eda9b9

    SHA1

    a6c59b1c0070638e5b1e2e3628be1741caaf6c03

    SHA256

    a618a45fc898fb5185a50b5a14d9030c7b49a1b69d3233eaefc82cde902eed56

    SHA512

    366bbeac939f5ca6ed57aed0d043fc194b8abb840cba165ad9463ed3d91719f8e0269a248cc32d1d8e8ff3daf468a6af48675369f706d336d90f97be7a824a5b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    c831b2d2cd81c5e8ff719d76242e6ceb

    SHA1

    66df5ccc17d3d282fa6ea6461af6100f6373d70b

    SHA256

    7d5d958fec2d5465398704b273b5dcc5c12cee51a4eeb2b8d299765383eb6a03

    SHA512

    baf2fbff9a1254013a377cf06623287714e7ffb6f49a5bd6e16fbc33995d553e2df25ec4ad2a0bfed6e795684db4521390a31c423a583a1cc89fa1948d064cf6

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    79d28a0e42a2bc3e6a21fea0ba3b71e2

    SHA1

    9e05f7669ce05466ad47d0a0e4dac177424eac3a

    SHA256

    683d6b671de58484328fdc71bce4f608704cd762a01cfd136e102d03693c72a4

    SHA512

    75642ee46edb2be97a627b418834ff7960099931dfe9f3859897dbe48f9c5cd2986a2c7b497716cbf2661bf8a83b4945b52b0d4096dd3bda24b4138d0c8306b7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    2ddc332a573169ae0d8da096a9c98863

    SHA1

    98fb3dce42a9a0fe873f2657300e24ee799d7dca

    SHA256

    495816801ecd99ea5d6113a588f087b652b1f5bb00d49185c5216a2f4e210de0

    SHA512

    b94ba799d4e66250caf9539499bc0d158193f919d591c9d40e23319189113bdfddb67419af9ca23a039acf38895d7494422b4a48aa6832d77b39f8ead54eeb3f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    142bb93997ee9d91d23aa40b2cd747d7

    SHA1

    34e8c44dbba41d792c96202f3c6a43d442dc219f

    SHA256

    5ca29624fe4047e89ef6c50a4f707a76bcbb11f306516603998d4d26a9edbdcd

    SHA512

    d9606ae6959ba9fb01959b587b71c079727f615ea1bf673b9d0a51b8b89f8bbe6597005d2d283cd77a6ecc6a1605e7f2a4829686ba45f457c080ac7e9c3d83a4

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    31a6ee202db20cc1917e9b3ad1f56072

    SHA1

    dd8aa3ee590f1532b1ee062d76c3b48e35bcff88

    SHA256

    cce1b7e0b89e3aef6b0dc6ecf76dace8aadace7dcdd40ef976a066d81e39bf0f

    SHA512

    fb82104b50e40c5c53616d7256fc639b5d77c7d1a0c59e1c9ad5489d77634618eff4dc3572246e1a57d2be478c5abdb16312437b4944feb66ca562dce914e0fa

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    f64f8504032e988a6ace81ffb884c43a

    SHA1

    45fed94c017ae9f0baea6b3b2c11a9a281384955

    SHA256

    25f5c4853a84c21f446270c1f9b0531f908bc1860cd3675c7a4bd4e9698d6ad6

    SHA512

    077fa663967b6e53a6e01cba0f935201e726c7ed123784634aeb241059f228dda910885fafbc43929047aaff39ef142f84e831e2177486c75a896d437a4c5702

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    f7e58af16b5d8202a54cd6b4e383b255

    SHA1

    74801c6672dff99120489ddeba3a2198de7f9d7e

    SHA256

    0370447e6b48972fc8166b994aada4912a45b7b55a03000abd2a5a9cf0aa9285

    SHA512

    b9c45ae871f83b9158bd8980fd93ea2bea49908e6160c2fe23b049c8149a1bfdf3a79f6a2d4f5fdf0075fa809795f75645b23fe23ca5bf39bbf191866b6b1fa1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    9186ca0458131b244be5634025bdf208

    SHA1

    20102e08d8459113f1dfd4d828bc23564c8dc293

    SHA256

    b80bc7be91765c8f929ebe379f3dde2b410b782d9467f28f44ed927a185e68e0

    SHA512

    26c5e2245f1c7a9779c5f91927efe4354bdc483854490c13ec34852e58ec228ba130ec5660d27915a41924b0f305f6be330e5f0bbbbddc8c8539da2b30b78305

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab4453.tmp
    Filesize

    61KB

    MD5

    f3441b8572aae8801c04f3060b550443

    SHA1

    4ef0a35436125d6821831ef36c28ffaf196cda15

    SHA256

    6720349e7d82ee0a8e73920d3c2b7cb2912d9fcf2edb6fd98f2f12820158b0bf

    SHA512

    5ba01ba421b50030e380ae6bbcd2f681f2a91947fe7fedb3c8e6b5f24dce9517abf57b1cf26cc6078d4bb53bde6fcfb2561591337c841f8f2cb121a3d71661b9

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar458E.tmp
    Filesize

    163KB

    MD5

    9441737383d21192400eca82fda910ec

    SHA1

    725e0d606a4fc9ba44aa8ffde65bed15e65367e4

    SHA256

    bc3a6e84e41faeb57e7c21aa3b60c2a64777107009727c5b7c0ed8fe658909e5

    SHA512

    7608dd653a66cd364392a78d4711b48d1707768d36996e4d38871c6843b5714e1d7da4b4cc6db969e6000cfa182bcb74216ef6823d1063f036fc5c3413fb8dcf

    Download Submit