Overview

overview

7

Static

static

7

3ee444da45...cf.apk

android-9-x86

1

3ee444da45...cf.apk

android-11-x64

1

ace.js

windows7-x64

1

ace.js

windows10-2004-x64

1

app_config.js

windows7-x64

1

app_config.js

windows10-2004-x64

1

bridge.js

windows7-x64

1

bridge.js

windows10-2004-x64

1

c_cpp.js

windows7-x64

1

c_cpp.js

windows10-2004-x64

1

csharp.js

windows7-x64

1

csharp.js

windows10-2004-x64

1

css.js

windows7-x64

1

css.js

windows10-2004-x64

1

dom.js

windows7-x64

1

dom.js

windows10-2004-x64

1

editor.html

windows7-x64

1

editor.html

windows10-2004-x64

1

editor.js

windows7-x64

1

editor.js

windows10-2004-x64

1

es5-shim.js

windows7-x64

1

es5-shim.js

windows10-2004-x64

1

es_privacy...t.html

windows7-x64

1

es_privacy...t.html

windows10-2004-x64

1

es_privacy...n.html

windows7-x64

1

es_privacy...n.html

windows10-2004-x64

1

es_privacy...h.html

windows7-x64

1

es_privacy...h.html

windows10-2004-x64

1

event.js

windows7-x64

1

event.js

windows10-2004-x64

1

event_emitter.js

windows7-x64

1

event_emitter.js

windows10-2004-x64

1

Analysis

  • max time kernel
    194s
  • max time network
    199s
  • platform
    windows7_x64
  • resource
    win7-20230831-en
  • resource tags

    arch:x64arch:x86image:win7-20230831-enlocale:en-usos:windows7-x64system
  • submitted
    07/10/2023, 23:35

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    es_privacy_content.html

  • Size

    36KB

  • MD5

    393d977f2fa14231601762111790f7ec

  • SHA1

    66fb4abcd6eeeaacaeefe0ae632db02868e6a767

  • SHA256

    b2400f5cdd052f2e368e9394979339b9798578a8f7e6617ca8ae94b02ab2a8af

  • SHA512

    5389ec0c992f6c26f9afb4d3b755328ee5360f141c0c3d41204bdecdfc3c189083871453e1bd2b54e52df2175d243aa42dde377dd3891bc6f195f2d305f2b68f

  • SSDEEP

    384:ZNzmzHtWK16181atj1N1U1ty1Y1j1MfcjNQ:7gNWI4OuJXmtQSJMfc2

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\es_privacy_content.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2724
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2724 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2556

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    93fd5577c2376f3acf3ec63a80375c57

    SHA1

    180733fbee2b7062cbf6de49065fcbceef57bf18

    SHA256

    82f8da2ce19f01e12a8bb60a125701af88457c15aa14b0b2a531ed126182f670

    SHA512

    3d9d0464741935211a995a28de05e991561023db6d2b629287acc576e00ba9f74e8f42d46ded74a3c2d828a41b36f1def6e8ce93190f451dfea0765497b1647d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    a04ea2c7f1a2c853c23dbc799f20758b

    SHA1

    4e8bd5e287cb4850311c66bf070cee0596734868

    SHA256

    310c1770743197c300661c1f978f33c1d36fc1737afca9829b26bd4b17b41bf5

    SHA512

    8667f5d407b989cc0ce13c6f57e771757705922d9aa663dace84e66f8ba3b7b6938680e44c475a0c16515d133296aaab06a8c6e8d9e39a31c3b646fe33fd4b99

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    39ad1e0f2f2e04740c332c288c9e2acf

    SHA1

    d682d20b4b6f7c242f01ffcc1817421dede8f77b

    SHA256

    5848aa21a054a2ec5268f9e9ac66528c4e88ef8f15065ac2117fe8b452bbfd0b

    SHA512

    34d041ade5684785bb128b25aa0bef3e008ce7329514593e9038e8040597dec0429e719a6c3fd9a1945a60c62858f68bce71b1ee389aef74253e2326fd3085d4

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    ea0780f85f5f513375aa07f073272842

    SHA1

    e3417af8b2adcd0e40b618dcb6ae895f47aad1db

    SHA256

    09af5e706d87ace5dc6b2d0a580e4bc7f80cfcb739ede01dcc87d0a7221c2646

    SHA512

    4c5c6912b7ab53dcb0351ed6a4a6a30c32571de2f53224ab2107a1aeb0487699a4955e4901d23f87f528ddf11699567f1e1f31e6f11cf20c0fe8400c1dd48f91

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    e6230f5adda7b50090ae5e36aaf9af1d

    SHA1

    1be74932a572da8eb25f853502ee72ff475fc8ba

    SHA256

    5e6d5d89791af3f0fe74f2c12908964685239bfd54ab58ecedd18a9f042b416d

    SHA512

    5db57e8a5963a5dc30a4bbdaea96abe5a1b20ec7b5b4640d387225b63036c7f66c1d4c1dabbe67d2f55a4ba7ec1c29a7cad7baf7672a60f33e3bfd99e707e1aa

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    aaefe948b8273a127125fcdf9ada9fff

    SHA1

    371fafeeed0274d322fa779b2123d9fd7c99634b

    SHA256

    1dd452f1f34855c9eac6cbe061d0a88f8b7cf8e3e9224732f0eb765f68557bd5

    SHA512

    451e5a109d170497bf0f420fb691eb9bf0b62be291f6233e13f948e1c6a08473755a416533a49280461b71f9613c05c3b303dcbe0f571e6ae88dcff44e0351c3

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    e2ce6fdb803a10da527ca4150a2282e3

    SHA1

    89a30adc71da581dac9aa32882f6581464a4976a

    SHA256

    b8f6ae4a66383c7a55ad7d52590c8b05e4558ba85bcb05d0492b18b2c1bb7d3c

    SHA512

    bec4ac65e6f69dddc59a32fc34b765ef50f7040659c0627960224178a939c2904828ed141556d7b6fe53040209e258be6bc10c28e27fc0c9f8221f7a12675a0e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    2889aab5f2e62737ef7eb7c112876e00

    SHA1

    404d2e872b8ed4896fd9e585a88d0852066987f3

    SHA256

    65822af3f683c2a37fc0231fd39ed55ae19aa328a7dd1b31b4072baed6489edc

    SHA512

    01b76447348694dc444f8c0fc12c58bfd6dbcfc2ac3c905424809c560c24230c14d3bf47870880061d7655421759ea25f79134825cb3d79dab7f4d75e6957bf7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    f1faf3b72ecf0b8cd08e933c22fe6ee2

    SHA1

    209dc625999d324c28d8c54fbfad2bc81724ac0a

    SHA256

    bf4320dcf9115e6fa4d3b7afa2da68a64a080aede06f71148e12403ac2f80a9b

    SHA512

    e433489a915218cf20755365e912add4567261272550d1cb2be4dad434d3c2a7d0de1a99fbfe6e7a9ffd41ff4fae51b6ce28260e944ab2b65345c97c2152ca30

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    e1076c3a1e6963dfa0555dcbc83c3f72

    SHA1

    4be8a0c2d4b8d1b74498aa4665b928b423c50961

    SHA256

    e4b4957853ed7ff53d702dec5876b0c77f43f5a293eb1b740df4decf690d6066

    SHA512

    b697c5dec8af5f54ea329dc9a5df4dd71c67cb56ea3de7348ae8d9982932a50731a4bf4772c15f24505632edceafe28f16343e0439e4f5d86267f77338cd1454

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    3f13f15e160bd5f13edf1efcda26449d

    SHA1

    9f9d304e87ed9d14ecbd5250ea0e45928c2edbfa

    SHA256

    804e293c2b6e09f47151ccefeff3db397357194c155f4bdacf303b4404dcddf0

    SHA512

    5cc30370b9404f38f9afbfc8dfd972aeaab45e341397e64cdda4191df136d5606a2d8c247d5d659ae3bdb002ba35598b96d5c1b88043482023341620ea0c16a7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    9237d81f191370b41059164f23bab216

    SHA1

    e644a2190729debeb33fa3220e9a7e9ee55ab14f

    SHA256

    30b571d26ffbb3884d6f90783978c5dd39cdd8d6627cc9af92b64e113eae697d

    SHA512

    78a9a0ba4555e059e262d4396da2e0092edc0bf2e66019e83ed633964c73f1f25e8a69d4c66f4410ca645e210d0811a2bb2575f82be26f99abd5bf0785629b53

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    fe3925d47dbb6594add9fc1c5f32a35d

    SHA1

    99719dc76777265be88c0c3dd800b3ea71fbc098

    SHA256

    62819df93682980a94865c63a233deea071dd78bc91f85041d07b70ec53d3198

    SHA512

    0f15699c22ec8b55bd85a5d9a447b77d2e7d3f5873b7979538db2d1f32369571a379bce72eb7d28028d251944cd9719fa72932530acde2a8f36ae6d46421c5f7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    401d7cfdbd05e2f6c5d438fc4bd642aa

    SHA1

    9da59f15366df4aeda5681e554dfd20a9469f368

    SHA256

    336043a9b7f53c5a2b5245ce32bfef31c10f85a0d29204f5fbb0451a3393d1be

    SHA512

    2653f14c2d650b4ba71ccb4cbfd685b04a2f509cc3a4f93f4dc6a601267983b96377e72bdb34e49249fd7b997a2c8424713d481a4930ad558a26d576f5e844f1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    5c207761fc3363e2dc9b6aa0ac1129dd

    SHA1

    400449102afa7587bb3707df326b18bd8ee5363b

    SHA256

    1c19858582c1bf7ffb110a46fa8bade4b3708c6416ffe90ec65d8a30adde30a2

    SHA512

    4702e09325ccce1b086b036372d1b14e20204655abe7ae3275713eec3324e841497354002b117afcfb892ae325a9ee7d3144208ba3b0c6f3fa177104ae36d1bb

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    45ed38925893c963f4b332d17ac9665b

    SHA1

    5efe277b3f9ed91820bb95cafac7b5e311441e0c

    SHA256

    a00aa28750f6e96fc90ed52af20739930d70172d13eb915e8d8cb8b142874dbb

    SHA512

    46bc583378afa2590362b7747ff190e2d96155c2d5f09023ca5476554c1744fa7f4203257ea7a44b97671c87ffb62ea687799ee379a61115ef34bcef5a102d3a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    1722f67c2dd315c71610a5ba4cfaf61b

    SHA1

    1d9fb0ef1feb8cb88b3e3559ff04ca585bf59602

    SHA256

    c5f1df9d101f1716bf12c6cc39d65e78637993f5b7a14b571fbb05c8b00a9259

    SHA512

    8aea40d929399e66ff0378ef1ad73c1b3f7839799baee08f9e91f87817c08e7a34ca99d3d6d3343cb513a7e536f075653a66cb78149528e2188ea838df44f2da

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    120b43cd81c39d7c9fb55c3c194f3b3d

    SHA1

    9f5fb440dd758e5b9d3ba6a1477c046e82c2a076

    SHA256

    0d18fe251b623c75ac76217d2a90da29970c5035ae064609d1f1273c22dd5f70

    SHA512

    6558e461607c01b7e0e009e7d7a776ae29a1701b898ee983693aea570e106f3e8bf4ee4e2b4592a25610a71527182d4b7feabe156ffc5dd39194b4e85a247344

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    468b6ae1adbbb0399dcefb9301369ad7

    SHA1

    02781c6f70fd8d7e3c9ac133587bbb58ffd10c3b

    SHA256

    26c7d476c93c17559ad9bb40a88d03962b11e711ad6ce24d184d11a76fa8d608

    SHA512

    f93583d897752126005a4525db0694b22817b8322a6f6199b3d2a17d4d618a220dd8aec2382aef72f0dc50da08cf63c75cb27661f9633a81982e21e7d68e07c9

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    17287e1c73d926e49bb65afbfb93e744

    SHA1

    3ad444c56265a0ae04b9c28771547fdec649d75e

    SHA256

    4565b5a1c8ea9a89ed2f183e1f63cf907c957342fa193e9b4181f64b1c4e3f2f

    SHA512

    cd2d7fb666e539b5612cb35638373cb73c8685efbaf48873236f61a7c5a6c5d7310bd754dfef2f7a357b5958db4ffbe8cb2a236a325c87d97c95ef6fd0e4a99a

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab75CE.tmp
    Filesize

    61KB

    MD5

    f3441b8572aae8801c04f3060b550443

    SHA1

    4ef0a35436125d6821831ef36c28ffaf196cda15

    SHA256

    6720349e7d82ee0a8e73920d3c2b7cb2912d9fcf2edb6fd98f2f12820158b0bf

    SHA512

    5ba01ba421b50030e380ae6bbcd2f681f2a91947fe7fedb3c8e6b5f24dce9517abf57b1cf26cc6078d4bb53bde6fcfb2561591337c841f8f2cb121a3d71661b9

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar8D29.tmp
    Filesize

    163KB

    MD5

    9441737383d21192400eca82fda910ec

    SHA1

    725e0d606a4fc9ba44aa8ffde65bed15e65367e4

    SHA256

    bc3a6e84e41faeb57e7c21aa3b60c2a64777107009727c5b7c0ed8fe658909e5

    SHA512

    7608dd653a66cd364392a78d4711b48d1707768d36996e4d38871c6843b5714e1d7da4b4cc6db969e6000cfa182bcb74216ef6823d1063f036fc5c3413fb8dcf

    Download Submit