Overview

overview

10

Static

static

7

88a50ba6ab...aa.apk

android-9-x86

10

88a50ba6ab...aa.apk

android-10-x64

10

88a50ba6ab...aa.apk

android-11-x64

10

core_wrapper.js

windows7-x64

1

core_wrapper.js

windows10-2004-x64

1

faq.html

windows7-x64

1

faq.html

windows10-2004-x64

1

help.htm

windows7-x64

1

help.htm

windows10-2004-x64

1

help_cs.htm

windows7-x64

1

help_cs.htm

windows10-2004-x64

1

help_de.htm

windows7-x64

1

help_de.htm

windows10-2004-x64

1

help_es.htm

windows7-x64

1

help_es.htm

windows10-2004-x64

1

help_ru.htm

windows7-x64

1

help_ru.htm

windows10-2004-x64

1

help_uk.htm

windows7-x64

1

help_uk.htm

windows10-2004-x64

1

license.htm

windows7-x64

1

license.htm

windows10-2004-x64

1

mraid.js

windows7-x64

1

mraid.js

windows10-2004-x64

1

omsdk-v1.js

windows7-x64

1

omsdk-v1.js

windows10-2004-x64

1

playstore.htm

windows7-x64

1

playstore.htm

windows10-2004-x64

1

privacy_cn.htm

windows7-x64

1

privacy_cn.htm

windows10-2004-x64

1

totalcmd_d...ng.htm

windows7-x64

1

totalcmd_d...ng.htm

windows10-2004-x64

1

totalcmd_p...cy.htm

windows7-x64

1

Analysis

  • max time kernel
    134s
  • max time network
    131s
  • platform
    windows7_x64
  • resource
    win7-20230831-en
  • resource tags

    arch:x64arch:x86image:win7-20230831-enlocale:en-usos:windows7-x64system
  • submitted
    01-10-2023 22:01

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    playstore.htm

  • Size

    4KB

  • MD5

    b5761ec7f4412406c8f521379cbfe466

  • SHA1

    621c6720da697ab81116bfdd6bf81d1c8ad5e7a1

  • SHA256

    27b9dbf27f7d81fc3cb84c6b3b2430a14fcf78d82d351d38b92dd18537f0bc26

  • SHA512

    e4115829d744cfe44891eb753c4b2ef042d6d5397e5138899ddcfbf9f5a7ac84f2a47af3ca496e11505ca501b8ccadd51b276adafa42d709525b337049d7ed4d

  • SSDEEP

    48:mB79CNoW1ii1n8BfDaqDUMmckWmk1ZVEsMToZtME1NOar5McIp9AMF3Y:mB79C2WT16DaqAMv5ZxoMMUbMrHBFI

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\playstore.htm
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2136
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2136 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2644

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    4d51ec8a7145c32fb0026294bae6eeae

    SHA1

    1e0dbffbf3d8976843b072620baa6cbca5b88e22

    SHA256

    6a9a36b01e864d1a918a0e85fc1b55c2556f049e21e3a114bca12c13cd516f25

    SHA512

    2eae6c9b665b2edaa5c8f3d69c52efef67b9f463578bd2fefb5e2dfe769ea3fccadd0460e2d3d259222433420fda3a14174a263b34b76b220e0eac9136f2d04f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    f4db7ae67adf48d56e37b95fce9d1d3f

    SHA1

    95f08bed268c216bba0fe6c79a5ea7eba98eaa19

    SHA256

    761c7a0dce07fe59bc798e91b20387d6f0f8a84a01242a964120ea758caf7a5f

    SHA512

    6d5d4e19061964f8f3788166bb6d5a28f37583f4344c80f82a28f52b87057c1077d88eebdef5c14ec596944f2c2c03d9e0eb6e05c05ae3313052b692e8dec331

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    ea0d9294b29ad323fe533fdffd02b8b3

    SHA1

    e91699628fec5a695c769b81a91d626612ee77d6

    SHA256

    bdac15664ff7a4e90cc78257e7ea5bbd2b5fbdbae1a5f9a21c08e59ce089c769

    SHA512

    4c9e133bb2fcc2e8bf36fa93956c594584a8e7ecd5e0e267d7adbdd34daff2237c4937ff3cd7e767e04c45dcf2a2405534e24b9d26b32d96e77624f9f6f6c329

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    4775b28c09709b3bb0ecf95632b33056

    SHA1

    aeefe2213bb9cf3f4b7d0b0aa64ee63732ef77da

    SHA256

    cf5e27557fdd387f0af9b9440f9e17e94c858819028c6c7ac5b732c365283cc2

    SHA512

    34fe5a754ea2943e7ffedf5c8e425cdb65adf6ded115f5d786ce66c50676138c99f9b900445120290022d6eecd6413a78daef456822ac023aca9a1db1e44f8d8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    941411ac70a6f8d9f75a7dc56cf09d98

    SHA1

    f3ec7ba4c85a7d7eff2299fef46cc31fd8e52ada

    SHA256

    46d854dbd3e3304fd415e37a51659a0005c00bd7376644cdb81d6e2d0042b2be

    SHA512

    eaf51feefdb4b67eb1567453a824236f33cfa151ea875022b5a0217142badd46704b2e9e33899839c87924694f3b6a9420bf4a254ef97a911461bb7a5d0f5e0c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    0592d42719c65849e3828d6509165948

    SHA1

    fef9ad864397a0cf2c0030d18659f60dcc34604a

    SHA256

    e78ddf1a0b95c8df400aa15b4b79bc79fc753c5369e8c1ac9e1e159450619a9f

    SHA512

    ceec0823e77ab9eceeda2c385680a186c77ac23f614d715b386d507853f4232d80b65dbb2dee7c0612c1f391bf8cab2f16f18bb5de2bf47637af25c4de0d85d7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    741ee090137d58dc8ff15329b68b9ced

    SHA1

    8cb61cd0ef3234443633ef66d7b466ec33d6ae6c

    SHA256

    61bb42d9dbe4b82e8bf11c27ad0e7cf1d90489a25054b844f240cf3371b6d36b

    SHA512

    ffe4c09dbd3556bfa8e59ae329dcea1fb0374358703a10207aacb23ad9dd1a29b512f7a6167561bdc079e21e382c332590f8f50262b7359fc68590e81974931f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    4987ed785599744853fe3ba6b47b24c3

    SHA1

    6ade9c96c24c3f69ff4fe43e429372d8f6cabe7e

    SHA256

    e5dd3aaf1fcaa2af470f9028a86abc254f93e0597834925a5bf128214fb9fc8f

    SHA512

    8f93280b9127b96a0632588b1c87838ed9cdb46dca71f486a12f16b921b543357568379541f3b2890175dcce2368b7b54e6986a93d514dea681ede7c1a8e6c24

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    dc14fa0525535933f80141c966ced45d

    SHA1

    90742ccd21a4ff4bce54d23a966db98dadf57563

    SHA256

    9bd08a8e8407ffa15d771dfd325cc963a83583b201c221b54313308da0315d28

    SHA512

    f2b20716f893b1cce8f85589fc1dad673757848a108ecf6c691d00b145e114ce870e47d3514fea37aaf4eb59ff490cc8b713b16f218b359719c23c529565f7c2

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    366ce66ba3eec07fd9030a2237e1b00d

    SHA1

    0553f377e32ddfee6b2e99da6ef83ef467b1f662

    SHA256

    317638646c4fb2b2154a9e2e99968c8e2a52be5a90939f1372430f681abaea83

    SHA512

    d7016a17b26fd06f22e97c48c919e28904e416a5a3386cab5e84fc79cb7e8570e1b38ad18dd5dd30b4df2659ae6b54d14ad847a769b19c49a0779aaea16465d1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    5cc4fa1d49f02b1a53f6658540c2bca6

    SHA1

    c0acb220c7106caaa69db75c7d69873175e1db42

    SHA256

    ab919f4613fbd57fe57177ba9962a5cb08c92b13e640e6cffe76497b0d6b1faf

    SHA512

    2755e90a2b02a09cd04739534cc0c028e54d459041cb4fbd901cc5ec5d0260aedf684a52e6d8abb6dbf5591cfbf8168a9b2313c7226e264555b320bd1c4363c1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    47ec020c68e2cdf21a21c9049af96f6d

    SHA1

    3734d1ba77f0e0e1e3e6266bae0b4844ea99ddbf

    SHA256

    4fbc08a6b863546ae23cad46a972f2212d07e513d8cad1a7b80441786b5763df

    SHA512

    e87d945930560b42dbbdab7ee21d31c9f5d58532593690c3e3d7ea284daa24598efb2d0b3b0cdc7d3d9bac7fb2b482673fccbdf35c1af698a443213dc5bd73f2

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    d1bca5828a601f28f0280fe7def83d88

    SHA1

    f890c3f8dd0ed4cbe3b6dc6cf363edd87980c134

    SHA256

    56b9ea71e50fc228ea7fd9710727b73cde4fb1e3b008b1cde7aff9f498936768

    SHA512

    37cefcad41d2739de437862fe71e4e172afc8be79b3db26ce6a77bf38eb3f5c2ace9fb6b5d2e492ec6122480b4070295f123e40c36da8852d716448d65095885

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    b8b8a615cf9836171613c64c1d85ac36

    SHA1

    73ee5c35ae3710117790ee2474d8d6932fdde8b5

    SHA256

    40c902ec44b55d9e7181057c5e48a9ce22543b6fc2c0519634044ad4482ba931

    SHA512

    9289190074f1c90b454654e21cdf1b26a08ae0f1c801b980e19238a639d3cbba3aa91b9b53be810e3ecaffccfe9177c2392f35184292c65d59cb8fc3269ff341

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    8f075e87c62f1c18ed7efd46f6274b86

    SHA1

    762c1c87010432b7ccace1d5fb83639c55bde5cf

    SHA256

    cc6ae6ae3e727eca066fa332758d94b93aa4b1e018eedb71d3baf3015cf7f331

    SHA512

    c2fc2cdfbbb3a560c14978082d84d66e19cf0cb60c419dd0cd8fa047b3b78de6ad3e5a7c975bb433398fcdfe3496d6c275d3a038dc28fecf252c5cb65ea53669

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    1e9566a41c327dcda4fa093cd6dc5ec1

    SHA1

    67f6244d21b0e2f0e968a36610b7eb4b09b257bb

    SHA256

    04be766cf47c335f194bc981473d7652a6f407e008ede6606e3eadf7f3bff97e

    SHA512

    cb2c9357eb2a1cfe8c0ddfe74ebbff5fd3301a53bfa2f6ac735f41d8c1f4fc87091d7ecf50c2b52bc4a1c529bc6ff60342bbbee100235e661b95837e97e1c2ad

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    9b6b96bcb36d956c5557bf5de678df30

    SHA1

    8e1e5adb89fa6be4c5a62f1704c34a7c1052d447

    SHA256

    ee6fa614f5a7b5eae87b3f650018aa430bb2450bb965348ca4c14ce91713e89f

    SHA512

    02e8c258ec8efd7f80a4a430e3e175124b8b9f1c66e4cf5261d838838614e2d30127f37e07d6ddbff9ee5add251df87b28341dbdb7419a0f3881e0f24a0ccc4c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    7bb6d2bd76ab5d0b800644700800d4ba

    SHA1

    f4dbe0380b394e7b6f76d8c33728c1c317474396

    SHA256

    47b0eb5d60f4cb6c2de664aecdd56bd612bd7b4c4c9bb2e469ead4fda1032f37

    SHA512

    bd7e6535b853e91ad70693c024eb97d3df6804f01d0a9895fa09d620199426757d73cf0180a9c4aa3028418e8bca8f9ebaca7dbc2bb236d5caaf8511d30ff217

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    ffcdaed2ffd8d06bfc79624bf6f084a6

    SHA1

    d5dcae8cafcc6f3e35e890f40e2ff15006238ba4

    SHA256

    31079f6075360743685d5408ceb707530f60c64df06cf86a5901fd6675279220

    SHA512

    8360b10da98b7794f5f804a02a8a8ee1e553989dbef00b461a8b3ab74b9fbe3d437a7ff1453a76c65e91b5a3f0459eba8534fc92532370bce3e599526d253b46

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    db1da53200430a07828c6d7fcef52c05

    SHA1

    fd7a96ab532c02d4a241f4f49bcffeb9339be793

    SHA256

    018fa5847ac1c8c8cc2368fe2c93ea760f7860e2bc7f35a1d6ecef870c8924ec

    SHA512

    83659c2d9fef79f9c18fa038a607963215c6828f85b16ae257011c4e6fa70c306e90870a05b376885738502fbf63d068ef36e513b0a3c94b90789af26be4e0b3

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab5074.tmp
    Filesize

    61KB

    MD5

    f3441b8572aae8801c04f3060b550443

    SHA1

    4ef0a35436125d6821831ef36c28ffaf196cda15

    SHA256

    6720349e7d82ee0a8e73920d3c2b7cb2912d9fcf2edb6fd98f2f12820158b0bf

    SHA512

    5ba01ba421b50030e380ae6bbcd2f681f2a91947fe7fedb3c8e6b5f24dce9517abf57b1cf26cc6078d4bb53bde6fcfb2561591337c841f8f2cb121a3d71661b9

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar5113.tmp
    Filesize

    163KB

    MD5

    9441737383d21192400eca82fda910ec

    SHA1

    725e0d606a4fc9ba44aa8ffde65bed15e65367e4

    SHA256

    bc3a6e84e41faeb57e7c21aa3b60c2a64777107009727c5b7c0ed8fe658909e5

    SHA512

    7608dd653a66cd364392a78d4711b48d1707768d36996e4d38871c6843b5714e1d7da4b4cc6db969e6000cfa182bcb74216ef6823d1063f036fc5c3413fb8dcf

    Download Submit