Overview

overview

7

Static

static

7

f277534561...67.apk

android-9-x86

1

helper-huawei.html

windows7-x64

1

helper-huawei.html

windows10-2004-x64

1

helper-normal.html

windows7-x64

1

helper-normal.html

windows10-2004-x64

1

helper-oppo.html

windows7-x64

1

helper-oppo.html

windows10-2004-x64

1

helper-xiaomi.html

windows7-x64

1

helper-xiaomi.html

windows10-2004-x64

1

imwebmodelprefix.html

windows7-x64

1

imwebmodelprefix.html

windows10-2004-x64

1

imwebmodel...o.html

windows7-x64

1

imwebmodel...o.html

windows10-2004-x64

1

imwebmodelsuffix.js

windows7-x64

1

imwebmodelsuffix.js

windows10-2004-x64

1

imwebmodel...two.js

windows7-x64

1

imwebmodel...two.js

windows10-2004-x64

1

index.umd.js

windows7-x64

1

index.umd.js

windows10-2004-x64

1

libwbsafeedit

debian-9-armhf

1

libwbsafeedit_64

ubuntu-18.04-amd64

libwbsafeedit_64

debian-9-armhf

libwbsafeedit_64

debian-9-mips

libwbsafeedit_64

debian-9-mipsel

libwbsafeedit_x86

ubuntu-18.04-amd64

1

libwbsafeedit_x86_64

ubuntu-18.04-amd64

1

load_error.html

windows7-x64

1

load_error.html

windows10-2004-x64

1

localappchat.html

windows7-x64

1

localappchat.html

windows10-2004-x64

1

login_load.html

windows7-x64

1

login_load.html

windows10-2004-x64

1

Analysis

  • max time kernel
    176s
  • max time network
    191s
  • platform
    windows7_x64
  • resource
    win7-20230831-en
  • resource tags

    arch:x64arch:x86image:win7-20230831-enlocale:en-usos:windows7-x64system
  • submitted
    08-10-2023 00:06

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    imwebmodelprefixtwo.html

  • Size

    260B

  • MD5

    2fc389289596fbaa2a1eedf07b1f99ce

  • SHA1

    a7057f394c7452861340ca24c605a379a2142b4c

  • SHA256

    f2333f7a91108b597f8c24ee049338c5e4184ffcff928f1d6ab5fa446810b75c

  • SHA512

    746c479c3c51ca49658baf539913e9c31fd593081d63125dd52616d52d8a3ef3301b3d9aeb7bf53cb19a481babdc399c027bb5835a480db7d0883729c24124f2

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\imwebmodelprefixtwo.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2772
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2772 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2748

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    d37c9a2baa5f549f6c5e346499b8ff4c

    SHA1

    f26f2cde47ab2f9b91f596344edcc08eb32197dc

    SHA256

    1efa6a0145938dcb7b7e84d8b30c0c737eb4f97682bb0ab300e10b8a201a6615

    SHA512

    0b30cef72856cafd1a8747cbaf8305edc50a5863ab64fc5194bdc3362b26f717721143ea60733356824a4c142e0f06e1f646da25ef4fa29bedeb2a5ab0305253

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    9ab597761891e3e6bde609f87687698a

    SHA1

    5e55ad00730e0837915f0f99e5787ad58f1b44ea

    SHA256

    defb38a1fcb1e5dd28453fc8e8d72bed3e2958af873717b4f02a411e6608b673

    SHA512

    62f064c071b9a25984aa7c063449e095041f403b197db9062a14d20cfb50223f2137d6da4c8b0d9231a7ac55b53127eac7a5a033b9a4144527d15f4fb2fdfed3

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    04f28cdfd973ecb6b3c9079a2ee4169f

    SHA1

    a5b8519fdf801d046a9946f4acffac4990aa8efa

    SHA256

    1cece6844a0abeb4563d56b91d0fc8fa62784d5be48f5be66385bc2f1c33606e

    SHA512

    534ec68833306845c6c21babe16feef2977221e075c6f6ae7803e69f1921b4f1a0a5703a1ce76e9056b3d23d643d71d58201f8031a27e5ecc53722aafb5fe1b0

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    feba2c7770971345e7df9c0adb999d9c

    SHA1

    bc931edf05de905b3a12e87ac1d0a45f0c1e9131

    SHA256

    529a9f2861d93b90120c9a03c36c96ccbfd5d1af9bc7b33a9a66d47ef3264adb

    SHA512

    06cfd234ae7b969654f900a32aec609996fe902a6de2ec7fab1182324dcf8b68cabcc040baaedb34e38f093e2f19096f6faa30be353799c898247caa28a281cc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    5e29f36f380589e23e9d21f0458bdaed

    SHA1

    cea04aaed54fca21c4500cb523b03c8a7c2411c1

    SHA256

    57bd395ec2722190c327ad6bc8f0a6386ce027e61d6c8c76666379be7f733923

    SHA512

    7e5e7e667c4d771ca3f7ef21f6591111eccad4c36eceb76b3c08c1d84989cf8382820728869ffbd335d500becb25122350946c3fa61a2082375fef37d9e3d052

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    4d1282c18fe36a45175d431efa91ce18

    SHA1

    88b2ad39b9a12c5f439a912b7fcc7aa0a2ffd409

    SHA256

    f3e0ed834d7247c1e2f011d32e01d19e6ee0eedaf0354d5716eb9167fa25caed

    SHA512

    e2e0dc40efd0bf0ce5c791ffad07bb7ece107e69085ac34fab9a22e08c9d16b7e63b5e9645763d6ad7397a775ff673a3a8917d378d965e7c1d902651181e953e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    1e5f03dc93801252e71fd2b67fc11609

    SHA1

    3e7bfbb6b2ab9dc470686a3b1d1991b9951abeea

    SHA256

    b76e580db03b518bf4c907ac6c10169b73c020ef94c60784c1fbd94538d57398

    SHA512

    588cf7e4d5701b33a4201d952e5caf3603f0e6e42144267032b0d31d5d94da59af17361b87b8ee34e90124e29a45f04e964a34bf7a4c0cb9e355c063f56a7656

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    0eacde578d838d84c670b5a34eeb1cad

    SHA1

    b0fbcb94108919b0c16b8905c76fd4cb082ea6b4

    SHA256

    211d201bf4fdb73cdfd9ed63d816363b9bb71394684ec853457bc74cb9826910

    SHA512

    a74746975fc41191c272e5e9da5ed793714a471de3cd6e57ae75455a33cbf88c4a3ffa42f5dfe424a644a4b6b6ef550d92d403b3a98bd87f54bde825f617261e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    68460f1a2c8000532a42e4843620c22e

    SHA1

    60510964a193fde86f00e1dbc9a0a600fdbbeec3

    SHA256

    94ca5b4071185fc17f83f143ac7b74d59735196f27eb178e3cb0cce5623b5439

    SHA512

    e6a84d96fd9eb460557959928f7660c13456e38048627d0686eb7ab444a61c45bb2dc89464a6490515e6b15efa27aad1e8eebc461901568b426a9a60d7503d32

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    44f611465d66b2e286d5539f7aae0088

    SHA1

    33213971e835f815f1aae6ce5d9a84c4061ecaeb

    SHA256

    459db6418a0764c2aeccea120643f263b18c5f97ff4c236355e391028819c3a5

    SHA512

    3c112267d5847fd048e80aaa5d8ce974abb4861bcf4a170443f62316ca1cedd07aeca0e8d938edae88693ef9e06e692f5d5d1a1b2f94f63507c272f4b23b41c5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    7723223e2a12f4efed7d3559157c292d

    SHA1

    24503c65ba9258b7add43cbb5cba9d2291b56fe8

    SHA256

    9e85dad5f892338e802731f02df98f3589574b896750f55008c76e37d0e5e0d9

    SHA512

    a131fd3b31d48378058898d467b573db49cb4144747313475daadde1ff383943abb70c0148bd1afcd01832132873020f1be5f3c3af6d1a0896314d0e2d848707

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    484b9160a04f30abd895c90361aeea9a

    SHA1

    0a41e288f77a004b513f3db662b5609732efe875

    SHA256

    c2dc2d8bdfa45ad9770536fc9434c797dd0bd604cc4da2da45904e3e05ee8dea

    SHA512

    49fa314ae77fd5930f98b0cea5ab12768920542cb3d7b3c504ee88c4c59aa1351b178e3154d0f2ef328bb3cd7395d2376e266f3871e32b1be64ed6db018974a1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    135079a1cca2aa50f9dff6bc3f8cae3e

    SHA1

    8b624263fdf292fa43397ecf143891ee598488a5

    SHA256

    8ec2946820424c452d82b96985a6a78e383f28e1ca732b56565302bf00271431

    SHA512

    64dd252dd0c4c92eebf3d2dfc0adc2e6a5bd079420a2e6c686f34957e331ff36bcb327393cd270af797de53a590e69d12ec152f1032961a12753b646a4926be5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    9bfa7904c1fd1c6df6f01ab1a3fabaa0

    SHA1

    49f0b5010acd798bd9c9a6d9753b7f41d74e127a

    SHA256

    7614538b3f082e3177127b064129b1b04345dab53481b152b60594db1514c3a9

    SHA512

    43d1b0417df72a5e384d09081a02ab64947fdb48c103bb25bdf36ca109cebe7740948f57ec65cb83242f9a6e68b736fa34d1cbdbaf560bd718127d02f0c72ade

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    6759d47b2424dcdc63950e6b406360e3

    SHA1

    ffa5a0673c4740b5a8c1272c6b5a282d10944c57

    SHA256

    2346851488783e2cae66655c38b53138b9e87e01db16045e1a5eb6406bec6509

    SHA512

    04b05356e8fb536f211e82ba9d56e9bc34dd98cd84cc79d03e369ef5ca8c3a76b74b99b7c391670ac1b3489beef692ceaa032016406cc69ea86cc65b171c3164

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    83c56fe1fd6444f6eb4208898ab90b8a

    SHA1

    509fed45d4c681e2dd5405574c1d88285d31a4a7

    SHA256

    067ad0836679b2019875e3d50a3d56a1fbacd75918bf1a22ce3c9684425e9324

    SHA512

    ce1e9c6a30652378769656d6a45fa9ed85ff7d295f0fcc2b0a5dbd520318dd7183561c3ba38186a481d2e0a56bf4ea52c901439f6cd6ff6d140c9e2a05bbc7cc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    407c9cbe9bc624eb85d65b375f91e4dc

    SHA1

    88979a49b6d75eaad56e515c49dab21e4e0970a7

    SHA256

    7e4a31d103b27c708fff1d9d81af30f066b2c88f437545282a9e76d92ac437b6

    SHA512

    6a66187b2d763762cdbe36dac5a728837d92131af7b9a21409f1ddc63caa3d69919c4bda6c985c483204d5e1faa344d595daa047f5e36a4d82e440afec92f2be

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    9c369fb35f676a320b07b46ec90a85a2

    SHA1

    d27c6068e3b15d4749459b4ab6a9fb4ec2d7bfa1

    SHA256

    904c09eda22de6e9cc10463b211ba000ab86a755075089e3fee63c25dc73d9e4

    SHA512

    e7e83f6b965b7f3e09053a250c3d5fd4308149bf492a8fb7c6623e2fd9db939f69286b56f50083f20bb4d6cff06f6181bd5ac3f553fe7ce8ff9a7cafa8269cf0

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    5b5eedd95ebbcdac968d8ac4187ea607

    SHA1

    827d262871ba432c330dc473a8b1886f22ffe21a

    SHA256

    913d0931b34af1d1927435c1e6d8668ba4f64b938459622fa34e804d68cd29ca

    SHA512

    80a19ff79ae7baf361a3aa0e59164409d05e5d80e966dd38527808bd847915fe457ed51cde5bbdb997252410e911fd54110d8fc09606b083e24d488d82f36b41

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    af4af761a15d6289ced872f1cd469dc7

    SHA1

    8c0f2e96f9fe9b1c483f653bae3254134408d02f

    SHA256

    a9959e1faef84d7bc165436743eb4d7a96171aedb253bee044cbb6fb2c396011

    SHA512

    a47fd02d0d8b6cd0709d4940ce8a00fbc20e0018fb664303a0c734cbdd67fc5c8348395ddf193f85626fa60688a54f822cb127ba5bd5f7864f4c7532e87ed46f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    3b45295743e3798916d54f69e76e5860

    SHA1

    8563775f917ff0b1862301ba161140e47439a911

    SHA256

    8f09be06709421d9ac6b27fe4452a48e7d045fbc670d9aff5d1ff789d2e9c038

    SHA512

    d7829ed0e7fda5560d577a919a89bf8b692db8a98fc7ea86d8977439ca4220a73b6a025314b2f502bfac4d67b07742c2d1f4f3d8885d10a636347646e2258805

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    cb5bb700f26ae4614b3d40c247b63d26

    SHA1

    e565cb5e4d034dd13855f13c49adf0e2519dcd52

    SHA256

    e937b4550b1d2a063f2730b0f16a997e726b4405f373f8eefe88993cf640b4cc

    SHA512

    ee25e017e16cd00768ec4f44ebce5a7615c2d222e4e0f871aeaf24a503ce205a32f2596c6e6016095f9ed7b2192ed4ac160e0464747a5f97aba6650d0d82fce7

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab4943.tmp
    Filesize

    61KB

    MD5

    f3441b8572aae8801c04f3060b550443

    SHA1

    4ef0a35436125d6821831ef36c28ffaf196cda15

    SHA256

    6720349e7d82ee0a8e73920d3c2b7cb2912d9fcf2edb6fd98f2f12820158b0bf

    SHA512

    5ba01ba421b50030e380ae6bbcd2f681f2a91947fe7fedb3c8e6b5f24dce9517abf57b1cf26cc6078d4bb53bde6fcfb2561591337c841f8f2cb121a3d71661b9

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar4AAD.tmp
    Filesize

    163KB

    MD5

    9441737383d21192400eca82fda910ec

    SHA1

    725e0d606a4fc9ba44aa8ffde65bed15e65367e4

    SHA256

    bc3a6e84e41faeb57e7c21aa3b60c2a64777107009727c5b7c0ed8fe658909e5

    SHA512

    7608dd653a66cd364392a78d4711b48d1707768d36996e4d38871c6843b5714e1d7da4b4cc6db969e6000cfa182bcb74216ef6823d1063f036fc5c3413fb8dcf

    Download Submit