Overview

overview

7

Static

static

7

f277534561...67.apk

android-9-x86

1

helper-huawei.html

windows7-x64

1

helper-huawei.html

windows10-2004-x64

1

helper-normal.html

windows7-x64

1

helper-normal.html

windows10-2004-x64

1

helper-oppo.html

windows7-x64

1

helper-oppo.html

windows10-2004-x64

1

helper-xiaomi.html

windows7-x64

1

helper-xiaomi.html

windows10-2004-x64

1

imwebmodelprefix.html

windows7-x64

1

imwebmodelprefix.html

windows10-2004-x64

1

imwebmodel...o.html

windows7-x64

1

imwebmodel...o.html

windows10-2004-x64

1

imwebmodelsuffix.js

windows7-x64

1

imwebmodelsuffix.js

windows10-2004-x64

1

imwebmodel...two.js

windows7-x64

1

imwebmodel...two.js

windows10-2004-x64

1

index.umd.js

windows7-x64

1

index.umd.js

windows10-2004-x64

1

libwbsafeedit

debian-9-armhf

1

libwbsafeedit_64

ubuntu-18.04-amd64

libwbsafeedit_64

debian-9-armhf

libwbsafeedit_64

debian-9-mips

libwbsafeedit_64

debian-9-mipsel

libwbsafeedit_x86

ubuntu-18.04-amd64

1

libwbsafeedit_x86_64

ubuntu-18.04-amd64

1

load_error.html

windows7-x64

1

load_error.html

windows10-2004-x64

1

localappchat.html

windows7-x64

1

localappchat.html

windows10-2004-x64

1

login_load.html

windows7-x64

1

login_load.html

windows10-2004-x64

1

Analysis

  • max time kernel
    138s
  • max time network
    154s
  • platform
    windows7_x64
  • resource
    win7-20230831-en
  • resource tags

    arch:x64arch:x86image:win7-20230831-enlocale:en-usos:windows7-x64system
  • submitted
    08/10/2023, 00:06

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    helper-huawei.html

  • Size

    1KB

  • MD5

    e612d05317c8d42a5af4c67a1fe8a7cf

  • SHA1

    16d00e9a41e1c1c957c86e385eb9815da979ce69

  • SHA256

    48c001447539674d1c101df3eede3aa8a143f47d8a24f4d96f800925d817f475

  • SHA512

    685583e49565cc248ce8c0d1bf924f28bcb9e4cf5ad6c2c53891288b75e25bd81bf540e93224d396fcb531e99d09aa6f5b429a41a937002d650a728a16ccf38a

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\helper-huawei.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:3036
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:3036 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2628

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    354fd8a55ec27b93d33db7c67aacfee4

    SHA1

    eb879bd1540a089a7ac647a4ba052662dacba793

    SHA256

    6ea905e728652464be65bcc375dd0e6623fa023d7a92403bbcd54753f88dcafe

    SHA512

    22f8b827c50db90757296d285d2380139fe1b98b6ce311d67240e14e1cdd2d9c6ae9a27eed28cb1949f80d6d8d3305cf69f4b0a00a386b070ce556a688266b02

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    da62869e7a3acf77cb09d521b91606c7

    SHA1

    089f09037f6a74d534f9af7ee9e168b20e4235ca

    SHA256

    1b0dd70c381c1d0b15f245abad787143f01428140199d57dcf5caa5321d7f5ca

    SHA512

    a8aa8e0b34bace21611d405dec8e42b4d337ea41ddfcd18e36d2a4c14954e540244e2865adb289651c8d12415574e525ef5be9342c1d5b3634f4380bd7842086

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    553fa26536db09dc743c7262c6ee6c20

    SHA1

    b3297f5f65c7b9b4ed8c33203d7a12c6e11c0c22

    SHA256

    a497c062a96f9588b03bf18b022f8c67adbcf73841aa8882e09599d7697cabb4

    SHA512

    0b60d90c23dfd20bfd56bc219fa34f6599a296ef234a1189b0dbca00956a4af91c9ed1c7459e46b4961e02f51650f45aee4ac2144d19b9cd18e17095f9a330a7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    7e44009f71d272e75a8c4f5e0399f4a1

    SHA1

    c2701da18db6b247e9da1a8bd58d722b690ed281

    SHA256

    1778a0cbedf01378d70e8adb86f9bc9ac15e005c626d8d17fc672ee4146fd637

    SHA512

    e71981827ba04d063d24f4f0c4cdf81626633c0a5f8dd8c391e965160c2c86355654f55f205c34bac729f8a75dc012ea8f57c98f52b9af6bcf8ab7adb6a6b9d1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    30efa49b8d770b093c892532f1efb938

    SHA1

    54946f3999de341beb4787c943ff990a9b08179a

    SHA256

    7e39a3438ed1e4fb789192426b61cb3f45b8f4cc86cea2f1fb07226ed408ca16

    SHA512

    7eb4c3cc47586b2dccedcbfe325780bd3f96a2cb5cdc066bfc170376af057391e97ad00270c6ddf54383354bb6a39ba248786e50ff5984ee3f69e38325957e0a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    93073724e85452fa44ae872975f3c508

    SHA1

    6eb6a3bf3953ce98140b1289c302dd9b5ee525c2

    SHA256

    441c305ef8692a914021329fac05e1a2b98c8e34d8f77031969df040d8035ce1

    SHA512

    9de31b85f85cbfc4a08a4620d366a7b38ed94be0960d0242d624445234b04198081acf86b12907c9abdb621d27ba3a8991911afc0ccb20d36786cf97cb0518bd

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    156fdc0664b3542a9391cb6abd3a5c07

    SHA1

    729b6bfd345fad1b96979685838e75354c1a0dcb

    SHA256

    d1d2f54d7c998a77a72d729b2184d130c88b654a1a57ea03069e74626ea6dea9

    SHA512

    b762925f1300e0d039fd5279d273a0bd29676cd6e5da85ed12c9af457d5ef7396c5b27d04323bbbe97845f7b159e7087c639895864ffc8e357cd03b116ebada1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    9cae4b45451a0c48565c185f5fb5f3fb

    SHA1

    f93b3591f5f28dbafd0b3479409a243aab1d7bb2

    SHA256

    3d62457a4014fae7f54416e13222ba1d805e18758f6b6d7245b46c8a279cbf64

    SHA512

    9f6a4e071d45232ee1379e02b86c4db8d057a109967707c6ce60990060d5315d8e4529cc463d58822d136e2e2bb98f91b172977c9b4703b1fbb54eec33074284

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    8893f5b9b423e07ffa64ad153e8e43c9

    SHA1

    cbb7cd230d982b9a04cbf69522d59fa1bc905bc8

    SHA256

    f915e6f75398a96de7798af7dc3c01d497c8ac5e23d1b4ebb66215a13bcd3eff

    SHA512

    bad196422ed51ae132d86c3f59e949223f67f050ba0e774ba12441bd6a8b33493bfd503efa5640063c57bee9b05a513e5be410d298d0b27037db9bcb196784c5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    adee0220ba23717e9148ef62a59a5923

    SHA1

    1b0a2226ae44d27325d10d269b111b2cdd839ec4

    SHA256

    9a74f4f3c8febfd35ca4622e778c7e273fc100a5af7fc08d730c911c7e4a7c7b

    SHA512

    6842e8ac50735c7b3444f16df6c52de03156f91885a3db742abefad85ba2b63266ace407f11c60d6a1e8a8197af38a6e7e91c400c179bcbf201e9bf8fba4d28e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    98a0438fc8c76b382e5b13c332c7fb12

    SHA1

    f84b6429199d33262b7acc06982160fdb7ebcdd9

    SHA256

    fbc58d8d075aa006b6e6f3e7ac11d54d9791d7d58add6636b8bdbc798e2c5c08

    SHA512

    7a0ccf09f4d897b93bfc10fb34f7a3c44284d2c1664529ccc67e12d75bb17ca945dd8fc861cdeaa8fe07da45575624840130340a1f6b7c950d71ef8cb90812a7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    2a0a255ecda6f3405fff792509d8ba05

    SHA1

    b858ca3b1293df20dfb08b69dffd5412038dc90c

    SHA256

    f009f40c64d7c5c686602b2c60b08beb2d745dc24566f970158ec69d3b2d5124

    SHA512

    337b9427bfd7f75fdf10239f9db574dcc01a7323fe80c6167b8ee1356cf2a26d670ae11670a9b61eeebdb3c454422502c68e85cdf3f684b55b009f8899119cdb

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    589ff0bd77a5e0795ed8604381ac78e9

    SHA1

    160e36a2d26d70ed1c69ae6e64d7f930d83baaa8

    SHA256

    e0c4ea300f68c29d3d3f81a1af4401a79bfa00125361b5c9e9be649106fb9205

    SHA512

    e8ab658f1671ba2e336deeb823ce9cbc12d7b232032f8dc0e639897fb1f0bceeea048fbf0bd0034ec3f578306362d48777e23dcee937700238d429705f9ff819

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    eef17d4565eafecff5fea0bc60988d88

    SHA1

    0e238a2dc4ebe029c29cd74b206cdb5e147ad29c

    SHA256

    146735d4e4e21cd130491f1308db6c3bda8a583676b11c29daa9ec2d9dccdbab

    SHA512

    96bd47b511f4652b128123bd1f92a1d4ef2ce2f02fb8774aca50b9bfbb42d2fc1140eb342c57236e2fa773838fb88f4b287390d1639d11cd53f57afa46853abe

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    dd9ebe936d3cd92d4a439272c303ab40

    SHA1

    918b186d1df1d59a7f9258430687d8a356757e10

    SHA256

    52568bbad9745d313b4c1dcda84689f909628d2747e5e91bcace7fe858b5440a

    SHA512

    f588029ef5c53f4fa39bf0afabb43033d72f2c028ab32f6ce85a698848ad749e2caaadc7bbd42f030d15767954ab0695a8a990118e800ab8723625572cac355f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    313799de5385f549c93529e200221495

    SHA1

    fa02a39124aaf2096bf0fbac117963dd41d05ae1

    SHA256

    d752d1011b68cf2ae4e16b87dd80279166f1305de0f269c065dbcf71ec35dd2a

    SHA512

    b44b604de807ca01874c983cef9450578faffd3fc66387089fc7e6bdc4b000ca2481ae04c92f075a147b4b0deb0634e346310829c075d08ec6462f948facbe24

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    6cdcbc30f83b1357adc0af1f39d0b782

    SHA1

    5146ce43935911aac773e6b9d295ad5df806effe

    SHA256

    635ce2f9a8a09696c8bfb5a3df854fc344d5558490170a9c3bf32d7bec0a97d9

    SHA512

    c34b230e07a306b15d0d44c1f044ac4a5ba0802623de984934f47c6943f96d26c29075e879656ddaf2970e2ea5e3e7d9cfc59d1520546ad340ef35c6851d7382

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    de8c566aa60d849faa3ce98d5c978bc8

    SHA1

    aa7a761d6291a5c72c7fbed7999f795060fd3e0a

    SHA256

    43a3e5f03f346f8b20fbecc3972cf99a10d18f6476c456a2ade3f361206e20e9

    SHA512

    d97f9b8628eb341ffe3a60d1f437a88996f718cafb00fd2ce9506e3624d4b55afaec9125ced4fcba4c2c2f531cfc7768d2fb083f63a63bf3c8ac144c8324f74c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    79075aa265d257e2f73e2fe870ae2658

    SHA1

    8f06a599d94bd8df7bea54603d0dde61efbea410

    SHA256

    04548f2fac557b0d7fd87bee7b27bcce0996a6f1fa7c879b70b0ffd83ff21ead

    SHA512

    a11a0f6353928239be661b511c5ae88e7c533af0ab2f63cab6b1f8eefd3283d931718df94938efc418bc71583e3bd278aff3a3af7f457a2a8412b73b2091ae15

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    37349f46e3d119f0feec27c186d8929b

    SHA1

    87adedf4a3ce8712c01d718324d55023b11ff9fd

    SHA256

    d78e5b7ee80b63841323eef0b1da28daff847efdb5b5b857e5a19a5524231d71

    SHA512

    dc97e46cc09182c44180b93e13dbf37845ff1bc16791e7db4ca545055345becc82a1c5b5d365d3ad6bc8b6b45384a84689ac6876c9471db4c9ab1718b62720e5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    e33d178acd65e0e374cc69d8c34b22f9

    SHA1

    2e60d287fc73df028f5c07f8abb6560e43512db0

    SHA256

    507afac5cb51a7279c57af17e4305059ad3465b15cff1df2759de846d307bb61

    SHA512

    5880b2c1a921a1e3191172b74a4b7fb34efdadaaa18a08ccdeae8da8f428d5e32e2049245f11ce48df3f800fa220951066ea9cb1016d85f886541f5754da5743

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab4637.tmp
    Filesize

    61KB

    MD5

    f3441b8572aae8801c04f3060b550443

    SHA1

    4ef0a35436125d6821831ef36c28ffaf196cda15

    SHA256

    6720349e7d82ee0a8e73920d3c2b7cb2912d9fcf2edb6fd98f2f12820158b0bf

    SHA512

    5ba01ba421b50030e380ae6bbcd2f681f2a91947fe7fedb3c8e6b5f24dce9517abf57b1cf26cc6078d4bb53bde6fcfb2561591337c841f8f2cb121a3d71661b9

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar4753.tmp
    Filesize

    163KB

    MD5

    9441737383d21192400eca82fda910ec

    SHA1

    725e0d606a4fc9ba44aa8ffde65bed15e65367e4

    SHA256

    bc3a6e84e41faeb57e7c21aa3b60c2a64777107009727c5b7c0ed8fe658909e5

    SHA512

    7608dd653a66cd364392a78d4711b48d1707768d36996e4d38871c6843b5714e1d7da4b4cc6db969e6000cfa182bcb74216ef6823d1063f036fc5c3413fb8dcf

    Download Submit