Overview

overview

8

Static

static

7

f061c63427...55.apk

android-9-x86

8

f061c63427...55.apk

android-10-x64

8

ace.js

windows7-x64

1

ace.js

windows10-2004-x64

1

app_config.js

windows7-x64

1

app_config.js

windows10-2004-x64

1

bridge.js

windows7-x64

1

bridge.js

windows10-2004-x64

1

c_cpp.js

windows7-x64

1

c_cpp.js

windows10-2004-x64

1

csharp.js

windows7-x64

1

csharp.js

windows10-2004-x64

1

css.js

windows7-x64

1

css.js

windows10-2004-x64

1

dom.js

windows7-x64

1

dom.js

windows10-2004-x64

1

editor.html

windows7-x64

1

editor.html

windows10-2004-x64

1

editor.js

windows7-x64

1

editor.js

windows10-2004-x64

1

es5-shim.js

windows7-x64

1

es5-shim.js

windows10-2004-x64

1

es_privacy...t.html

windows7-x64

1

es_privacy...t.html

windows10-2004-x64

1

es_privacy...n.html

windows7-x64

1

es_privacy...n.html

windows10-2004-x64

1

es_privacy...h.html

windows7-x64

1

es_privacy...h.html

windows10-2004-x64

1

event.js

windows7-x64

1

event.js

windows10-2004-x64

1

event_emitter.js

windows7-x64

1

event_emitter.js

windows10-2004-x64

1

Analysis

  • max time kernel
    88s
  • max time network
    181s
  • platform
    windows7_x64
  • resource
    win7-20230831-en
  • resource tags

    arch:x64arch:x86image:win7-20230831-enlocale:en-usos:windows7-x64system
  • submitted
    08/10/2023, 00:00

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    es_privacy_content_en.html

  • Size

    26KB

  • MD5

    36aba766dd4371dad00c95896f1d27cd

  • SHA1

    155e371a71ee35a766a365c9da18e4f9a3cc777c

  • SHA256

    4daad217625b90dc4ba899f26821b76af5c87df3b9cba48ff40a0842ce834174

  • SHA512

    82750f7526b50a0256f1181d7edab63c27c325dc74f14d29d8cb801923fbce9c85013b25ecd1b1e74ee3a18ddd5cc6a874d2cc0b1d994150b13f16039e748c87

  • SSDEEP

    192:OvAYoh5hG83KnNG874lq/EBWbDoVav0xGLNxMF34Fhgvedsrapby+nuznlLzRtBB:rhG83ejDgvedsraphk+DhiFVIzu

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\es_privacy_content_en.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2648
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2648 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2632

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          1f167161949c3b5296e8d120743c311a

          SHA1

          778b1e7a2d76f25cafff3e97afc9eb6aaf37b513

          SHA256

          bbd56eae679775da7c9ec57489b20c5962162e44d354d302251f53f75dab035d

          SHA512

          46647f7702c50e5a90798ffe6ab22561f91cb28b9e333e964a53f07cf8e5ccd692453d953a0ec91fb4c9205587404dc13510f6431b3a5e4fe38c0aac3cbedc97

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          4124b4e6000d4331e2d82bef0c5195ba

          SHA1

          b3f5807a3db8780ab962fabe79e74b93197fa0d5

          SHA256

          4b4d459f90a508f991641287ee0ccb1c56e19cc90763ac176d30db34d801ad40

          SHA512

          54ccd139295b64e2cec4d51d85519796dc362f0513194a20591374008660e61f122b658388ba21dee9dc876116d1dc06e224855de4e00de1d035a1841e0c6262

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          298068f0ae27df890bd50bc5624295e7

          SHA1

          4e0a63a1ee71c989806d8383017d5e49dca56e99

          SHA256

          5ab7253d0c6cf8dd4238d5aa7e1c078460044a98551aea7f817f8803466e5422

          SHA512

          21a74438f27746192d8076d7f14580c54e977d04e60e104d6dd74a92db39e8abd07f7f9b27e35f441339e494c6837c0eb3bff7e8fd4bb0450244c197aac9fe0c

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          f3beeedd41600f9b3e07283bac447784

          SHA1

          272e1026bd37794730fb4822942f03aad2cff4ba

          SHA256

          c0826e309c7d1e194a042bf208d1e2ab022241922e12c4f3243948528c7f51c2

          SHA512

          b18a63c9e7394a77129e5d6f40255409fe84728c4fcc91c0f70440d13def681a277ed918b6407b43b5b3a0a10a0cb9e83bff93cee967e2bd02056d65a3dad7e4

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          0e745bf295cf00d66033edd7e25b1d29

          SHA1

          3cfeefaccc65b42c45b2ff232738c7bab378a248

          SHA256

          f4716f836d27079d46b50188c40dd0d1baff3737377f311e7cf42986d9ff8c6c

          SHA512

          12c6bfde40daf9d1d2283d832864b22a125917aea6eda647e8f0038432171d1f17e842ab9c55bc10f51de82dca548114f34356e658a5056d916cf09881ecaebe

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          dad0832d03b98c5567df4555b0e4d057

          SHA1

          f0f97df899ca21f765602c96c700c08afd1133a8

          SHA256

          1479db31813e26081246d95dad38cfb74946d85aa78546c9f5ce4b858d9c4ef9

          SHA512

          d48c00b2bec3976f84a043c05c3d55404616d1a69698b9d1a553ded35d5b7e731a7298671cd38a3532a41d829e69733f4cf6e198fda33a39ccef8e5ce005fd6e

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          9680b8e07997b1a81254c46e1d936d5a

          SHA1

          fcb33eb6a2120456045a22c964b050da9d773afd

          SHA256

          4e96ee328adf10664dd7aad6eacfcfe8956a0c2e6cc0559c7b6832a627191ac4

          SHA512

          566e25ac391d1264e0eef7218488e1453851486b7be706041c4dd81c5de7c183331c253e58d5388708f4dbe0ba7cf5c48fee388285dd708c6a567a9e05aac403

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          58ca5c481a26aefd9b1bd2438b115964

          SHA1

          70c78110be385eab85b98f6fa140f5a4ce9e0310

          SHA256

          240d480275f2a105794042968b5b16a4e50592227cd2389a10c89a90c9c18524

          SHA512

          d0f83771cdc47a44d6479cc1d439c00c15fe7621f77f1ca79675df0399b5bd6e498d44b2a02f7614fab4fa397cfddec727d6d030fcc5642b4fa9c1c5e1b0c2fb

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          c56b279fc500eb4d0ca5f40c3c7ad201

          SHA1

          419f9398066d7a4b2a62113564b6f1c3c601aafd

          SHA256

          c1965b2d809a53df920a4a10840ffbe78af35779d5e6a831d007232192f65f1a

          SHA512

          134edd2e0d4cef158d157e1bfff3e5b26fd2c45a63dc7d9f69d0e2a165bccd59e568d565e014b46ac2c183bfa90ef34c479b13a57f161b6a738b96c0edaea696

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          130c2052dec385b57721a80578e4af4a

          SHA1

          95cf3a47bb7b6f90183fd4c834d46a716529d416

          SHA256

          bcdd74b20047be5a5fc18e0ed6449f969706f5ebca94043846a693b5a3de96ce

          SHA512

          f55df6bcd9334712b328043e1bf07ef6570e23cc2fa655d6dde50a076c87f3e6c129b0c3cd64915fb3421cef1aae60be549f0f6266a8a6961f239acb2d8d527a

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          cd308f5ef709c991ed28385bf720f798

          SHA1

          d7aca2c0c90c8852301e037d2b6260ca99e3ff99

          SHA256

          167691e4d9933fda364627cd7f1cb034e94aec38fbc4fbcfdb22443ae1ac4f26

          SHA512

          857d2e0723227323f0f894714944aac64f137b8efc9d666770b8e8f2feb8daaa2318221f2e8f1a55cd7d7d44d35feec9ed04e1a3d1d375d33b45228afcbda11d

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          306eead3120740dcde2772b5a6392fad

          SHA1

          f628a260558a91bb579afaf45bd28d2ac1ec842b

          SHA256

          7720cf6701def7182c4cabebee924b5a193e1e6f64181d9d2f386e4e59d0dcd7

          SHA512

          bc1a79bb6dcd74c67e010876278ad971f437f5261bf53cf5e98ff31052f9a51dad1f57aba195452e54856e8784e3b1f1c7e229bd04bbc99e85c9abda51f1f76b

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          bc16f3f0cd8bca6e4009c1224d2d6bd8

          SHA1

          492721f0b67aace0405a8d5d5652ad9eb8d692a6

          SHA256

          c4696080752f9d7c70a9d5428a72a76975a35500249d2444bdb91a0e011e3e5c

          SHA512

          e8037433c0d9ec3e184847d0af0ad8a7f4731ecabb47202170b59091bdc3d11bcd4c31153c6b8f6a3457bd350a0abe47b1709ec2845d3ef3e8e51b2e93c6b968

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          b7ba6a45f9ebd20b88b4bd1bdd9cd340

          SHA1

          ea871af72b377ce96e7f2ab807ed9963cefe0ef7

          SHA256

          3f74977231a2af618099f44bf5e4435f0b535a791abf098bfc3123d112bcd5f8

          SHA512

          0f6917c265b685f35224292ab6ea710861f93fc8f489946e53135fc3a46cd01c51d4902afb91973e3e2a72cb52a23a66a8dea4b2fc47aa307fabbc3e43871c07

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          811ae62e8fb9b348be6d76a0f8660265

          SHA1

          3b902cb8c247e24ab360abf9dda66184335c84c7

          SHA256

          3e7ded0b4d7f997626a9aadc3bead71d70993c098c73cd6dcdbe4a6c121d5b0a

          SHA512

          55b208829e9b5a94813db5a63b9bceaed752d59db9213928004d2b14f0e6989ce4755ac13e2b10c9ea9a7c32859388f635ab6cba14c1324f32ee5e34a3ae3a0d

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          8bc0bf61ab930fd1e78aa4648c3fa045

          SHA1

          137809617cf258144401428e94238fbade56bd23

          SHA256

          2e9f483a3f2016a3578a72655993aff6f858e0dbacdf8e6e8af0002d9f0451e3

          SHA512

          4fa878ee60c282c79d1587990d0c412aac87d724e46ac5b688f3348b2e75f566601bcafbe15b8f39dddc4e011adc6336982907a5320f954dd9d6b06d2c3fb661

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          3c71a202bf77f442a2f23a6ff9a69c38

          SHA1

          6b1e3bcbf764abeb054b08bdd203fbdcd253b51e

          SHA256

          87108cf123756c24c1f57cd7892f2eab42b5e9ba01e7337b2f73de66d1dc599d

          SHA512

          f9430783998dab9f104739bca98ece70bbb188f50c2acfee06edfba02a64743d542bc168f51023e9070b0d6d3123f4f21f1002c99475265701f6d54156bc2547

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          f80937816e1351abfee61434c4125ccb

          SHA1

          ac73248eace7bdaefd0270731db64495d7734ee1

          SHA256

          7500c16ca31f54210684249e23cebae1e9d374b4377c2c2071fbc8748e783fbe

          SHA512

          b30b38666e3fbdb50da413bc8c9fe833d2b8be25a3ebbcf0b02a77d243d4904bac54bd7cf269e55ee54aaa51c2ccef71750322398fbcc9a73c22ae88232a0856

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          cf9d6d7a68f5a135ffcf9a70430af9d6

          SHA1

          2c193049acced4bc1db34076f8f4e32b031f314a

          SHA256

          ad73a7b0811c1ce8a0b90813f692279dd63ed828e895962dd19d1175d5c40034

          SHA512

          0d00f20064ff9d961d27fe70f442c0e75d4b128919bc37fbd1a1f0be24502ee4ed4f487f164e83bb43f2e5fc7567de26220afa567eaa66933dfb312e0fc96b3c

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\Cab3F24.tmp
          Filesize

          61KB

          MD5

          f3441b8572aae8801c04f3060b550443

          SHA1

          4ef0a35436125d6821831ef36c28ffaf196cda15

          SHA256

          6720349e7d82ee0a8e73920d3c2b7cb2912d9fcf2edb6fd98f2f12820158b0bf

          SHA512

          5ba01ba421b50030e380ae6bbcd2f681f2a91947fe7fedb3c8e6b5f24dce9517abf57b1cf26cc6078d4bb53bde6fcfb2561591337c841f8f2cb121a3d71661b9

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\Tar40BE.tmp
          Filesize

          163KB

          MD5

          9441737383d21192400eca82fda910ec

          SHA1

          725e0d606a4fc9ba44aa8ffde65bed15e65367e4

          SHA256

          bc3a6e84e41faeb57e7c21aa3b60c2a64777107009727c5b7c0ed8fe658909e5

          SHA512

          7608dd653a66cd364392a78d4711b48d1707768d36996e4d38871c6843b5714e1d7da4b4cc6db969e6000cfa182bcb74216ef6823d1063f036fc5c3413fb8dcf

          Download Submit