Overview

overview

10

Static

static

7

7e87ac723c...91.apk

android-9-x86

10

7e87ac723c...91.apk

android-10-x64

10

7e87ac723c...91.apk

android-11-x64

10

ad.html

windows7-x64

1

ad.html

windows10-2004-x64

1

disney.js

windows7-x64

1

disney.js

windows10-2004-x64

1

googlephoto.js

windows7-x64

1

googlephoto.js

windows10-2004-x64

1

hbomax.js

windows7-x64

1

hbomax.js

windows10-2004-x64

1

netflix.js

windows7-x64

1

netflix.js

windows10-2004-x64

1

web.js

windows7-x64

1

web.js

windows10-2004-x64

1

Analysis

  • max time kernel
    134s
  • max time network
    132s
  • platform
    windows7_x64
  • resource
    win7-20230831-en
  • resource tags

    arch:x64arch:x86image:win7-20230831-enlocale:en-usos:windows7-x64system
  • submitted
    03-10-2023 22:00

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    ad.html

  • Size

    15KB

  • MD5

    52c368fc009579446f8dc67daf8dca87

  • SHA1

    fc52b078a9a02847efbf85d10f41b961c85fa459

  • SHA256

    9b6cfb0e52c7f7dc99d5f5b7e2a6142fa3ad82d1333f42877eed3d29b0561579

  • SHA512

    c80bcefe98c2eab09d4a831e788cd50563c62333d4c8aa81046df2acc9888c5a87da45546c1ee7d40bc7a9d7148075e3029e09e4b086406f6143a589111d1cb8

  • SSDEEP

    192:xMejgzfCtmdyPfojYA5D5zniVkG4zhxm45IqTbTD5qRSwpcPt6FLYFieRO6shWUh:flqiO5RrD5qBpWt6FAieRahW6X

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\ad.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2580
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2580 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:1588

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    d68eb3e49eea9e2afab863dce006ecc9

    SHA1

    1f5490089b09daf21a4d9ecbf5417b7b1fb48afc

    SHA256

    e24fb52dde82ff550590e8f5143c869ef1f079043d643b0c4accd174e711dac8

    SHA512

    70bbb3822970d39872891f27711b681b35ef8ffa3f2822b6d82cda7c74ae033787ff2c3a891c362cfb883b297b22cdc260fb28f420f3bbfb7aae6a67bc3aea4b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    d4b41d997a52e9218b43b65df809fd1d

    SHA1

    c2a696a6fc62e5c02d1bafd148ab73659f4b7dfa

    SHA256

    4f6a7db12ed520f802782a91e66fd30fa45fadd34ca8d53b7174a8a9c980974f

    SHA512

    8d43c7fb591e06b6e1d7ef3fc63dcf2c35588395ff08167b39a6c9138a5afd4ec53bfd184479af455d6ab87227c334eba8a6d468c7fac0f2650c15c81943fc2c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    57044f220203641cc402083c6df46a8d

    SHA1

    1ef1b6f15140c12818e0b4d3205e52d19199ac57

    SHA256

    47ad0650518be9d258a8167a8614526dd8ccb126af291204282c8bc6b6777211

    SHA512

    9e6ad95a39e08e8dd6ec822255683102bd80b35a3caa055a7c6de9fe0db2b1cafe6e672ea9202b20cdbd03b7fb63fbbf1bfe372ac7a6756c789c8f1f8f220381

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    01c677369bcb62a7d39d587ce23bad9b

    SHA1

    2d4211982fd30ec10cce7b34adb90ab53bd262e2

    SHA256

    a9fa4b99b56a8210d5d1f0bf04ca1f1ea6662350639a743099cb1fa67c5d2a3c

    SHA512

    017b6e503bc882b7d4c208406e6394f01e6cb7313279a5e1138246c2ab830e7bf2fed05f4cb74f7777a1962eafa4edde0f53346b35c4224a8046ccbff0cf4414

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    3843752743d34f0bd7e35a56acc2ebb7

    SHA1

    7908e139f4e9ed9f34560ff6b4ed75e89db9e700

    SHA256

    3a449a0d505e1df9f5ebc7b4a10b52fd37d4a76da4182aa14fbca7309d3a5c2b

    SHA512

    3dcdd0c900aa8bf6d7b645f4e2f3d3162a9cefea2b5856843f210e6bca6ed21007cd0d311f1a94f553ca3aea6f782397b19a729755a64a147ab02fccc63a201a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    fa9c2ec7916928ee27793cb02617fa7b

    SHA1

    cd09fcb7f0f6bf351a7a50b9d85c472e6df743b9

    SHA256

    8dac4b97ad2a9e8744e8651b7d10f946a5e170ce957a9d663e3bcd6bf0b46d10

    SHA512

    5996ba3a0a1d37d8b29b434692a02c4b7651d347fef4397da3f8661b8ddfcc1d3455b0b5678100d0f6cc564d9fd859793749225913479348801301fc67a89dc0

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    8be5bc8c339ce1583a3fe812ca20000d

    SHA1

    0ec5ae06705a83df0cbf1d7f88039095a3224a07

    SHA256

    67753c9a624c361580e777f50bc11fb0bbf2ca84402c82fd4c6c8c3d33c2e195

    SHA512

    d3c5a8ec461565e89b7e0749fca9626dd65a7c8c86660f3d23499e1f5514710aee2cd87bbfa022e3ce2d26b7e6c9e0924601043e4c3c9ef098ddf22be3133b7b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    7cae914950c323985390e80d0b9fa79d

    SHA1

    3b136bf7ca890c2b52ac33161177a2fc3195192f

    SHA256

    965fb5181d345eabb22f5d6f7075ba5aeb9671b8bfdce339983be15a87e4a337

    SHA512

    aa400649f2c3393b762a3f5b692a5e1ff424ac15898c8da476a589ffefdaccfd5220765506627dc09cf7c2b724037bf439060dd5150a14d412871649e17bc596

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    d22f378b03bc9a91a9f6967ef5b348e8

    SHA1

    acf9a4a6427aeb23b60ee474bac99c276c8afbf1

    SHA256

    368ce2e7e6b0fb88d8338a0d824f778e4117fec1cae36786424243a32940cd19

    SHA512

    7f908574bf7802d478d19e5d580d26cdd20a94522933238e921486b6bf492781701a4b45f41d651de876cde47c58bcfc2c166c99640a47ca2b2b05650a17c622

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    fbeaea9a112edd7fadad543858192397

    SHA1

    fa5d0a8f1701e4bbfaa1647fc89646b029047349

    SHA256

    257b381af0e80a9146fa4921356fd413d52e925fa8d849cd9a5693fa7cefd70b

    SHA512

    4474216270fb6001ac196244be798a509ccb38fa97fabc2260df4f3326a9feb7947863a573011ae4313cb0ee78abad667a14ef3735bc120615b04c713b641fc6

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    dc41444322e3f46e8cf0af4583c8269d

    SHA1

    6ea3b4b78ad0743dbecfe54d08d6e2ee170fb599

    SHA256

    9ba41438705a5cec766815d6076307122ba9d218db9bdb49cd804a1f0307c3ad

    SHA512

    c08d179de012032d62ea2ee205570836755be466a9e4d7e79e4c6edf7dad6c4d71723fe2b642d6ad959684314100bdbe6fe80f2e6bad6373f1747d1a09e5712e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    96b3fe583098f018b00f974ebbb11fe3

    SHA1

    6d7d1412a15e12b75cb9eca9c81aa8aa1c0068a6

    SHA256

    1fc3a28ca61ef3ee5d3e5f6016b0b1fa054d0958d4e1fc6afa8c6de81c7a7a65

    SHA512

    6cf954005f692015612696b90c5c08e7fdbd38873084ab70c8cdbd2ddc9fdf77869b2bd831dfc44354d711ce00ee46e0e2f9547cf1913d63b3822bc5764abf32

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    f3f4d6033378384b1514bae3425e1981

    SHA1

    36c41efaa776d32edc65c5377e2a0dfaac129d71

    SHA256

    dccf143af5c78162da93410d82a1d6f803be5c4ec7835e845e08a079401b45b4

    SHA512

    11040b9a86a947504db02924fb93e37e8d2d18f6ff8055947a47256ca4389335c27889055f8c66faa177f3721b746b0fb11fffc3f4d7201bb108ff422123cf22

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    948abf965ea3d900b3113a32ee2fd4e1

    SHA1

    659512d70303cba4e3ddfcc2c59aa9905c8c35a7

    SHA256

    ff63c1336d0bd44667d4d859761413a573b375f19448e8bf7c5e947224c4a0e9

    SHA512

    b418494678d72bee1aac68fa3004708f011aa3eee6c057a59bb8e8d6dced7a35b7d0a51810d7ca7b63d494676ba00b10568c1fd2ac6856ee9d3e85b8777bf9d4

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    da7af9c610e32e0c3c3bd795eef37d49

    SHA1

    4e6cd1b0987e0ffc408d05aaf18fe5f3e6677534

    SHA256

    677e7463175fac5eb28167a23e791ba66b66f77c3e3c9adbd7646c1750e0ca90

    SHA512

    ada9a459174e3851a19f6b5bcf73eb4b28db399a405eb342e5d423df2ff40c9d653dc53ad7e94dd6728462e428c891d304c86facc0426752aea0fa483b6b07dd

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    716447009d0f41eb3fdce769d92e8006

    SHA1

    b4209eb02f567df9f38c8d1cb06ec6e33f0e67c5

    SHA256

    db53f6ce0b72d7a2989eed417cdfb08fdce4b9db242aafd424e294d06fb78b36

    SHA512

    aeb17d8db15dc1e8ae09211edfa30aa0336f7ac634804419feb253bd285cd487737b16bee1d9b0b893d62b9e244de91f9d3053d1874cbff5101573002fd327af

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    9a60cf1fd8909482672e0771e5ed75ca

    SHA1

    c2c1d1e6f9f762aeb2f77f69c85f04555ea90e55

    SHA256

    b7aa86531b8db482d0936b9be3f3d0e1f4290e6247553a611678c81a1eab9217

    SHA512

    da17d8e9e30782a1cd28246cd83ca029b4e64ab8810d3112a18c5fa41fe8f17ea2fd42221b9770e1030fe4e2cf469a7e6e5c664b097ae0ec58af98db5769f614

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    f341f1e92295640d6bb4c99bf798e82e

    SHA1

    0b073efbf3e57e8350d098f9a86b844c5249c8bb

    SHA256

    302ad9afb91933509cdfc84804c07650b144989f6ffee3eaece1e7c2ab6472cf

    SHA512

    6076b409d105ec6f558cf1fce6213916a45fb72ad066a1d6138e91bf16110347bdf8a4484a1aeacacbc12829e57a7e68023ee3fcd1f6a78b739965d89a108fbd

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab515E.tmp
    Filesize

    61KB

    MD5

    f3441b8572aae8801c04f3060b550443

    SHA1

    4ef0a35436125d6821831ef36c28ffaf196cda15

    SHA256

    6720349e7d82ee0a8e73920d3c2b7cb2912d9fcf2edb6fd98f2f12820158b0bf

    SHA512

    5ba01ba421b50030e380ae6bbcd2f681f2a91947fe7fedb3c8e6b5f24dce9517abf57b1cf26cc6078d4bb53bde6fcfb2561591337c841f8f2cb121a3d71661b9

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar51DE.tmp
    Filesize

    163KB

    MD5

    9441737383d21192400eca82fda910ec

    SHA1

    725e0d606a4fc9ba44aa8ffde65bed15e65367e4

    SHA256

    bc3a6e84e41faeb57e7c21aa3b60c2a64777107009727c5b7c0ed8fe658909e5

    SHA512

    7608dd653a66cd364392a78d4711b48d1707768d36996e4d38871c6843b5714e1d7da4b4cc6db969e6000cfa182bcb74216ef6823d1063f036fc5c3413fb8dcf

    Download Submit