Overview

overview

7

Static

static

7

c718c3cb6f...ca.apk

android-10-x64

fail.html

windows7-x64

1

fail.html

windows10-2004-x64

1

imageView.html

windows7-x64

1

imageView.html

windows10-2004-x64

1

libwbsafeedit

debian-9-armhf

libwbsafeedit_64

ubuntu-18.04-amd64

libwbsafeedit_64

debian-9-armhf

libwbsafeedit_64

debian-9-mips

libwbsafeedit_64

debian-9-mipsel

libwbsafeedit_x86

ubuntu-18.04-amd64

1

libwbsafeedit_x86_64

ubuntu-18.04-amd64

1

night.apk

android-9-x86

night.apk

android-10-x64

night.apk

android-11-x64

problems.html

windows7-x64

1

problems.html

windows10-2004-x64

1

success.html

windows7-x64

1

success.html

windows10-2004-x64

1

test.html

windows7-x64

1

test.html

windows10-2004-x64

1

upload.html

windows7-x64

1

upload.html

windows10-2004-x64

1

wbjs.js

windows7-x64

1

wbjs.js

windows10-2004-x64

1

Analysis

  • max time kernel
    74s
  • max time network
    192s
  • platform
    windows7_x64
  • resource
    win7-20230831-en
  • resource tags

    arch:x64arch:x86image:win7-20230831-enlocale:en-usos:windows7-x64system
  • submitted
    07/10/2023, 23:57

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    success.html

  • Size

    1KB

  • MD5

    d2f7fb4266836e12a7721a6b142ad425

  • SHA1

    00b294e3df167e2d336260b97844fa47afc3051f

  • SHA256

    5b97a827d06ef91debb27c8fa6c7eb656ec60a7befc8d784196d8dc099251f37

  • SHA512

    1a622f1896cb96f37861395e5694d027b37ebe50cffb00f91e5c2979d5c936416c43e5cac20d8f463b594c42ab09bd2d322c2f9c93c450d9041ad95b15d40486

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\success.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2728
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2728 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2608

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    0ee921c114050ce4eed856e4bc76eda8

    SHA1

    3d3b00dd81faeb5db521dc18018c1d225bce5fd1

    SHA256

    f1e4b9b80505be55bfaec5d496d4efb3a855857beaa372c175600480fb78a2f7

    SHA512

    4b8732b09e9039da4f572fa59f58a243377401e9e0b0e3971c79e54e1072c12f353ef01d39fac7b428ab5d5ca0044afc1a4fb65f1675bab23cffe9ef718ed770

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    2373d254df6fb0686a54834d057805ad

    SHA1

    2d1ead1a9428351929cf96308072b3b2bce8ce6c

    SHA256

    71909507cacb765d7e535ba7a03f1e82334774cf3fbf64b92598c4f0ad8e242f

    SHA512

    ced58e4d0b0bd3161ec43b5d32011856755eecf20ddbc2b060be70c37091a7c605607acca95171308f16d182b40d9c66148731363fda1fbbdba75bb2ec8cce00

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    db092a66391d24a12fa3079802a30529

    SHA1

    18b288f04131fd038adc0b7ec9e049f3aeff27e4

    SHA256

    6a86aa65aea9f2bf51acc84ff2605a10cc0139ddae0281edc67432818060b96c

    SHA512

    870f9177842c41aec1397745f70d94052e164fbca8b920a6f78949e5c1d1f493c5d9f13c7e9b3a17c925d110b8d7078e8d417b611528c82c179d3b7bb0bffe35

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    f34f5d6a2729f8adcfba3db9f16aac48

    SHA1

    96c84c7ae5b2915ee56ab2d602206335eb64e69a

    SHA256

    19d51d00b3efbda7f6c3beeb78bbb45052eca562f62fc031ab49b759237cfbc4

    SHA512

    9356d80b168b80c0cd0d78661847ea3362f17dbecddfa8699116625058fdc2018b5c82490bbc70c8697f0f1c094a485494f09271bec5fd5cf3e653e20346ccf5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    b88b3989f4068c437ffd7fb496d714e7

    SHA1

    89849633278f2f53aee9697eaa6017d2eb017cb8

    SHA256

    5e7896dcbcac7a964a844dae9273f9b22af06af36c1e501d83f723d24e66a0f2

    SHA512

    57be75e38806eb2c561812260686e5d1e8b78c0b39f281ed58c8f5b5d099db2580a7d9c526f81cc2f83245dd036aac1ffc5d728872ea137f269cc168d03e1bbc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    3a0b8d645d9d0ab8344a9f46376b5b2d

    SHA1

    766aa0e012d654de1daca515c8a0150123a54181

    SHA256

    3e53376c31594c8f3eeeb3dc1f56e11c622d4ea6eb4210eca0da44f75c168715

    SHA512

    f25d7365edfc143a62d41ee44d22f551639b58f933013b6cfa1213f81d0b7cfe31ca5e7ae43ed9c39676b2f642a01c80cd87c840815ab8d7cff7e7ce39ced3da

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    fd2c457dead85a09a182eb0bdf467254

    SHA1

    f009c039dc9f334f8168f7bbb3e005ec95ee2bff

    SHA256

    61f8fb7eec8a2f1c2e896c0fbe08bc8b65443bea1c7afe5e7e86981e578032b0

    SHA512

    760822f79ae840e6a4197edef46712ec3fca1a4ad0b3c58aa3d307e81034dfe6ec6ede1ff3660288ef8b992d0f48286560318060e1ae0e7f72a7d3aff6119cf3

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    0f557e2a9d56c23840aff4eef4eebb96

    SHA1

    16c7ad358b672c6c11946a3b3c6edb485010ecb1

    SHA256

    179f3ef7cd16bdb79cb7c2ff1a056d84ab4803fa82f4986a546ede8317de4215

    SHA512

    3ae6b9688bf99e7c0b287bdb8b4b7835d25eb659c979726597b458b3ad0ac3f7ff67c2cfd1ffc34fd384cfbe9080d11805984a46e8b176bf253f4fb8d64a498a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    63149005dc365e02b8e0783da0276e29

    SHA1

    078b97b90ad5a4154d435e1a0507f615f67a9abd

    SHA256

    7ebb8b0598719885b5394dc5870841d786a00cb967d68e306ba2777ceea8cd51

    SHA512

    c34400db07a9109b9611aa363e8672ac5b432c062c009130b2e2ba9675ee3803bf93885da7bbcd014957a25317f42c6ead9556b8bbcf308f4f55f8efc969ae88

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    d766c1d0d4146925eaf6a48b5ca6696b

    SHA1

    0993bc294374da016270f9c14c6dba44fd1c3ec9

    SHA256

    29ee8124df5111f18b3255189fed2a4e76dcb7adf26d5cea279164b7734ec62c

    SHA512

    fb0ce340b1f72b7f88d49a461b77a7039aefe84281e219da732f2312301cf6bcf8b62f9f04e93afc52d07bd0ff07d6906d5f55f4d585e63585de46c2bfb16f03

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    f132634ec6d7da41c8fe3efceb7ed7ca

    SHA1

    42a3a85c9588015fcd615d933af8a77585b6b80f

    SHA256

    8b270b161a09f9e9e721c378661087316fdd55a0d04aba15f7203176d96cdc6d

    SHA512

    cd222beb92a1ee4bcc6a03353b940e4e235929d18130202a554f76c0d39f4c2a3caca7ebaddb542727096e6a55744a1dff0aff07c50d9add94798e7371cf923c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    d383a750007d9a6865cafcb6b4893213

    SHA1

    d289b47a789a71f687f9fb42b7e41bc8a22680bd

    SHA256

    24f603f8d41dc096402650593343d5dc303627b335b5349747afa35245f627e2

    SHA512

    6b28ade3e2dc18d41c93b5311e2a21d8f274a4bc9aa3439d90c46f9b86d4d17e91609528fc1ae958c9c84607e66b1c064c21f4ca5019ec3acfab346887a16785

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    862772593617aad9ee24159735fc41b5

    SHA1

    6497766f7016a6bb49c6785c8e1241baa694ba65

    SHA256

    def302b57f799ed9f5292952fce6cb02b1c22655ed2450501a46870fde01296e

    SHA512

    e2db809871c4462d0d7bfd72e808bb1877f63ed84f82916385cf8310ed37fe2aef784d8fa4039cb051968a4615411e62c944074e1e9685449a6d42abf64a91a4

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    8820c7c22ea1e7ceb96101dd0280c45e

    SHA1

    8ec5b1fbc39c532b200a0f315e3e4649f6518c84

    SHA256

    930105d69987c0f25bef805cbd35a79124879056207b7252c2ee27b01fdb5707

    SHA512

    c1c444ebe41ce286fd1eda9a262c0943a88f2cbe5bc811d5d4750a88fad477d6adebb431faef5ce7bf1ec3d797426552000386ccc98889255a4c6d769bc616cd

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    d29beef87109f039fbfe9fb6ee75ce38

    SHA1

    e74ad1cf33a04e3eb1836f5466f53e2eac9d1e1e

    SHA256

    922b1bd26a2b686780f922c1a06378ab87bf5ec692848993314811478196095a

    SHA512

    f0fd933128443e4c0b5c5492601244be7a81e0f3a348efe7a09d6a05b38a324642f3a293645997c31683c213fd3f2ae5d5e8b0061b31cd26c0dfc5df6c28d767

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    41ce6238686265debb97bcdc23229ed4

    SHA1

    d6a7c0346eec74519707890eab3c9b3016502893

    SHA256

    71f225651f87805aec0402b467530f23c33813efc20d4319934cbffc021031ef

    SHA512

    11d21e76aad6922fa9b51e70457eb25269ee398c7391bb4987dcaea93099f78119a6892b1393922eafe459ca7652f0818e9aab8c9f72e2965b4719150e2afebb

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    5735a6a57a973ddb695120bf87d68fe9

    SHA1

    9b691b5eebf28ae8cb7ccb8977a384578699f272

    SHA256

    0a03dff22300252aff645d0ab7f92cbbf9db4ad12368bb585f570968fab2428b

    SHA512

    21fec1382e2bd67fffcf5f00d630c22255734b5c3e20b511d2bc59e765569449ad2a7554159bf08c76ac513f5c51cd9c206c1ae70c15f4afcff7d4d38311e931

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    332a90d68093411f06e21ad20abb093b

    SHA1

    3a17ff2e242823e67cac81a7227afe5535d1d907

    SHA256

    39f77f1a3f95d6e1736dcffe80026b54ef8976b95eacf630e2447acd06d42939

    SHA512

    e2d40eea84c37aefb727a6c19837561b49db4150069d8b76b84ad888d6f318bb8fcdf91ded9ccffcdfd6026d43e4e2f0f8edd1f15a12a3907dd27aefe6ba5d64

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    61cf49e25d24a6de08cc06cb63927d5a

    SHA1

    b69ae6aec55041aad05373e40f27ef54698a68be

    SHA256

    cad8824fe1f8221e6e05a2a8a16d9e7178e86a62fc3cb4eeb99d21faadba172f

    SHA512

    ad5394bad0f115f028b881d3e6df8185367db93c82994f605e891d540a1157b25396941c85046656dec2a5f5f3e9c717938ca6add39a6d40777e8abad7e38758

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    eed1dcb02034f820a7cbcaffc54883ba

    SHA1

    1b999cd6ad408a7b0840274ed66248ec583c4ed6

    SHA256

    1d4face62f05f7c1d1f737a5a940c1c0ad5d0e02322d434cbe9271bb26fad866

    SHA512

    a290aeae6b6c84fc54a262839d1bfadd44517d9e7aeaeb89b8fd43298a174d2257e8e26d28559d5a44c45a91267e667fb14037537f26c126a29fbb2b920453ea

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab5C55.tmp
    Filesize

    61KB

    MD5

    f3441b8572aae8801c04f3060b550443

    SHA1

    4ef0a35436125d6821831ef36c28ffaf196cda15

    SHA256

    6720349e7d82ee0a8e73920d3c2b7cb2912d9fcf2edb6fd98f2f12820158b0bf

    SHA512

    5ba01ba421b50030e380ae6bbcd2f681f2a91947fe7fedb3c8e6b5f24dce9517abf57b1cf26cc6078d4bb53bde6fcfb2561591337c841f8f2cb121a3d71661b9

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar5F65.tmp
    Filesize

    163KB

    MD5

    9441737383d21192400eca82fda910ec

    SHA1

    725e0d606a4fc9ba44aa8ffde65bed15e65367e4

    SHA256

    bc3a6e84e41faeb57e7c21aa3b60c2a64777107009727c5b7c0ed8fe658909e5

    SHA512

    7608dd653a66cd364392a78d4711b48d1707768d36996e4d38871c6843b5714e1d7da4b4cc6db969e6000cfa182bcb74216ef6823d1063f036fc5c3413fb8dcf

    Download Submit