Overview

overview

7

Static

static

7

f277534561...67.apk

android-9-x86

1

helper-huawei.html

windows7-x64

1

helper-huawei.html

windows10-2004-x64

1

helper-normal.html

windows7-x64

1

helper-normal.html

windows10-2004-x64

1

helper-oppo.html

windows7-x64

1

helper-oppo.html

windows10-2004-x64

1

helper-xiaomi.html

windows7-x64

1

helper-xiaomi.html

windows10-2004-x64

1

imwebmodelprefix.html

windows7-x64

1

imwebmodelprefix.html

windows10-2004-x64

1

imwebmodel...o.html

windows7-x64

1

imwebmodel...o.html

windows10-2004-x64

1

imwebmodelsuffix.js

windows7-x64

1

imwebmodelsuffix.js

windows10-2004-x64

1

imwebmodel...two.js

windows7-x64

1

imwebmodel...two.js

windows10-2004-x64

1

index.umd.js

windows7-x64

1

index.umd.js

windows10-2004-x64

1

libwbsafeedit

debian-9-armhf

1

libwbsafeedit_64

ubuntu-18.04-amd64

libwbsafeedit_64

debian-9-armhf

libwbsafeedit_64

debian-9-mips

libwbsafeedit_64

debian-9-mipsel

libwbsafeedit_x86

ubuntu-18.04-amd64

1

libwbsafeedit_x86_64

ubuntu-18.04-amd64

1

load_error.html

windows7-x64

1

load_error.html

windows10-2004-x64

1

localappchat.html

windows7-x64

1

localappchat.html

windows10-2004-x64

1

login_load.html

windows7-x64

1

login_load.html

windows10-2004-x64

1

Analysis

  • max time kernel
    132s
  • max time network
    194s
  • platform
    windows7_x64
  • resource
    win7-20230831-en
  • resource tags

    arch:x64arch:x86image:win7-20230831-enlocale:en-usos:windows7-x64system
  • submitted
    08-10-2023 00:06

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    load_error.html

  • Size

    2KB

  • MD5

    e5a1f74af1b023d0498176204e832bbc

  • SHA1

    711121169b73eb03a378354863ad434a6df481bd

  • SHA256

    ca3b89d9b7440da17c22538f735e470596d406ae6eb629fd1c92eff1659e392c

  • SHA512

    10cef7e5c510a7f6ca77a264d2bcae4eaa85985ea63cb9e320bf01c8240ad34ec015325d58ab872d5750b56345ed9b853f230f2066801454cbc748495ebaee2a

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\load_error.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2768
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2768 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2788

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    ca8c96db5e5cfe2777276563dee7f08a

    SHA1

    d9cde7e2fd4f7b6058afd0844f0595a7177801e0

    SHA256

    fcd42976a0363692c1687dec7c57e1f882ac40a1a3f4392557e519c2e3114845

    SHA512

    eea38a613daf25a068800c9b3014fbf451621a48fecb46a3b7a7634287887abe43c45c7a0298c1f70100569765ce74641dfaaa2b3747a1da589963a32eff133c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    5a0ada3d83dbf4dbc8fa98f0178ae04b

    SHA1

    1a13d2137774569fce1c054d2e84fb1608f8d6b3

    SHA256

    eaa35097fe149a43a1a7ed9a46202eeb84ea6632014ed3be0da6bd37c61c5d6d

    SHA512

    3c0239afe19010e6cc50886f0eba6bb0a4fc606e3d0680d205cf4f18f6577931a66803c94ac93e37add30ba6b440e6029395e13f96268daf1db6df16495e9b64

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    4957a05d88df18f16639bf649475888d

    SHA1

    185eb7082e681a62c9654417872e0cea7c5478fc

    SHA256

    4d7405809c38f7a646918f9c7cdef898d486d57001f2557a60758bd574659d1c

    SHA512

    6d540237eaee7bb91353f36f0abf1971562846132eb4eda1421c4dfd0814c74d10ff4fa1322b5e984699642a5d3a8db9edec5a97d99035e1983ee21f3f2155ae

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    ab9d2a0cb5499985b110bf79321e8789

    SHA1

    226c69fe6f5c797c1c0674cd8a78dd73d9e00fb5

    SHA256

    1edbaa7d808e420840ad93485f325707ee9a7cacc72325af3e754637a718f934

    SHA512

    0add23158fb59f036499c93d7c54a5ea38423a9ffc516129cdb62111301cb9344b2659bee605e9100e7f2e8b304d5df3fda5a6a93ecea22298d6b83c8faacb94

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    767741752b92a4dcfbed91ad3fdbdf25

    SHA1

    d3c2780f69423bcc9ff6b17c4996d4fdf06e75d3

    SHA256

    7c6646b8ecade2d005ca4caa562a5febd789dadd5e78a362ba5b9d60cd044f11

    SHA512

    709d991a29c43b41fb76c0b1c60ce4e7660c7cfcdf72f73f6f06666ea3e926837e5c0f9816787cfe085d2e2691d216113e4246631ddb1fc6d5904da14d335ebf

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    6aeef15011878558e27eb68fdc0f14d5

    SHA1

    15bddaac7f7ce145bea723bf8f98db6cc2c92eaf

    SHA256

    e585366a1adbc06208043b98659c43d97e1f30ab6c0cfdf19d3f738470431468

    SHA512

    013800ed3bd0390298902089537965322de02237a08834699b23c4e0c05be11e2c87a05221e9f0edc92e517e42143a599a50d5e29309e105746b7a64ca875b3b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    9994615ba7e67b7b199b1a7340f5982b

    SHA1

    6e6cb140a69214a0026b5770f50c1826ee1e00df

    SHA256

    02d9f82b00916827bb457ec8ba7d6cf0da0aadf365c26469a31fd68fc6a87941

    SHA512

    818418311744706f424ef1a9e98fbbf89997c2e83fb1767b6a510d22328b41c3caf5131ac1adffc00c06e25489d7043235d61ca0b39158fa9d4577f958043cf0

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    5d48f0578d6149fc4adbf16be2fe2d27

    SHA1

    3cdd5ed3f9deb3d0e23824b8d1e73d9e21c3cc76

    SHA256

    a6c28f07d4758515e4e243f5e79913432e4ca94f7ade43f1f661a1d921823576

    SHA512

    f27666fe0999679e0156ec771de50db1104647cf4fc5b3839c74a6f3fc368ae338a9c9c2fe3c686273bb16622023b9084ce64d40f7f6936fd5e4896adc3278b8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    2b7a59a8a0c8b3e47f39e06acd88bc9a

    SHA1

    492de2f5f883f58ec44712ba89b4cc2c9f1fec4c

    SHA256

    fedb799c094bf83598660e4797783b44e12d605775635a9f8f983a50dbd64ea9

    SHA512

    e5a5444f5f9afb1779b4de656ba7ebdaec11dacb50589fa683f1137737206001cb3cee8b63c36d9f7f67e9716c42291c136a95b4a692ce00ec9ad437c8cd6da6

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    8d545d9cfd1cf612d8d44dd034c67505

    SHA1

    4db5a33f5f3fcefcd6e269e6892845d4f0ea2779

    SHA256

    f43ac9c0c2a9c93b3421e4a5809090a75ecb06edff3dc6fdc72f1c25fdea2142

    SHA512

    bf9d0daf4f315f6f667374cc116499606b165eed6fc49b1e3c17ba229277a6d0724fc802ce7fd285b57963ff9b4f8344b2aed755de66da5ef5bfe544543e5b81

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    022f8658faee5bd29a238000c42b399f

    SHA1

    0bf97b32c6bcfe7de47781468d66cfd92bd75249

    SHA256

    5d653bbff27c7a7f85a807b1dd0b1ad140dc64168e0ea4dc71952e70bdedebd5

    SHA512

    596225df2a81032c546171a587ae4ae396b218a91c17c4c50d9a925ca96e046c6966fe9e8519a84e99befdbabdbdfbe70a476a7408f43aeabeed754af68ea087

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    66c94b4f2582bf5c578f107e0f543211

    SHA1

    043ce0f0f94e759896d5f79a852dd56c4453e11a

    SHA256

    57c03744893460e9afa0776e1755a78113c659373ad95d3c2ef517b284f64195

    SHA512

    9ee0b167dfce092d16d076983f68949f70d731c124475b3050cd0cf2c3d526ab64a763ad0241257b41812d1dc88f983dcf980960312eab4886ffa2ac76c9a7ae

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    a229d984f6716d1a5330a15055d5b9d0

    SHA1

    5da1c023b8b6f96d8ddcbdd57f44229c7c829fe1

    SHA256

    8813a7396ff5b4f7bcf7c677f2dc0fc3f86b08d555869644911d4e34d5706086

    SHA512

    ed48c4b624e885e3839ca543979953d3d43268916420c6e388900cf0d340aeaea9d538f42b9a34e74f8ed753f88491b4d4a549261ddef055bd6efef17d881585

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    9586a90d642ccb512ac3468b2e05b945

    SHA1

    3d6c45e09958511a9a117031581224d7ad46a081

    SHA256

    ffaceacba1ccc586fd3e0e57587bbf81efbf6a6161ea1531eb709a97d6c2bd6b

    SHA512

    61669b4e8979fd92b04a6b5153ad2ce4e5683acb059d245bd19a34588b114a75f291eacf42b475bcf19691e66215aa0f35c200219a46aa0a3710492daf9cc032

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    8a1f33a1abd806dc8d738c834cecac09

    SHA1

    c2ba649a0aa1e5ac5f78518f31c19d1827b49161

    SHA256

    08f1676d855140b5914bf148cbca0aedb0d75b8a7e278ac0fc948970ca579df9

    SHA512

    72c2904aa7fecdad983e52e6ab13dcbf51e70540012694ca633936f5f348024da12a613afb576adfbf3f0f06da844aaa47a96714535628c7eae4a818c35933e8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    a0f9327ebe3414528012306573cc4f35

    SHA1

    7a77747c40a50ea73904f8abdd8da578261f8ea9

    SHA256

    1a0307b1a80e4ec6c6bb2121b79fda84a20ae83ec181be6094d378008ad8e65f

    SHA512

    77aeabf0a5ba8cbe93c9b761406082bc118348035a5d4fc6f9615599a50007e923023b3ac034422bcab4fa5f8155631da22d62eae29d847e996f3f1b5d3214c5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    867a4c60d7da1c78e9ec94e44844abbb

    SHA1

    edfec75da6fb155ed38d4a5056d58ca9030d9acc

    SHA256

    188121135eb3a156ed4758696507b7976ea38a48cd886b3e5ad5997da11754f4

    SHA512

    aba1986feca04f8c3bf4c1e6d74f704e6699581876477ff430b3ce954738ec774a044ca6d4063ce915be0122e1fac1c627a6514aa45433f536a96b879b432ea8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    1bb002a58b0958418d5812714e5c9771

    SHA1

    cb0439d1fed5113dc982fbdd1d840c8754bd586b

    SHA256

    d60cbf394cca7a9ebb2d2b90398803284433fabdc07b0694d4ade24f8685cccd

    SHA512

    7cb68ad0681ad898032f7b840a7f6c74687d5f6d73f78eb59c264db48e5fe0bcf10076410245f86e45ccb9c3cbb7a22bcd57408049ea146aa402b9405496426c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    13eb409a0b96b26310fc269eaa4a9120

    SHA1

    00f4190a68e50a4938f4af6cdd55e1dce3eda926

    SHA256

    8e0de68156b90c4b349694ac0ca287aedad8c71e6922dffb3287fb4c57b9e414

    SHA512

    510e3e3b337d65537825e41627847624534ad5b3b25df9d2e3116eeccda83090b4b59639877a159f1ef1dff51942d1d41ace3e21bf537713502058e482f5aa1e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    eb14b60f820f097ffd7b6fce5009b538

    SHA1

    bc6f366458e61a95f436e7755c6f5a52e469d517

    SHA256

    89efab6c62722f077f2b6e9c52fd900df4e0693cad9991985400191c37e56b42

    SHA512

    5f9674b7d68e2a8d02113fc7ade959110afe21bfd2bc0da6ad4f76b27621e8fe2ca732369243b1966ab7c3e1e0842246a3bf474bf1e62c753eace396b9140abf

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    1dbc8dd6837d6c5976a3f3e9aa618bd1

    SHA1

    b2980084d990c0c4bbb93ffe957026f2d6ce631c

    SHA256

    d3587c3d724092a49f3389ffd7135525a9bd919e5a72a6a15715a3c35daa6cf8

    SHA512

    ba6d8feeb3fc2782cc3021e298ff7bb2909801f99ada1726fe3a6e4e18eb093c67e235bce9ea3e062b9b228fe8404155b34b218040dc0691af716a57188162a0

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    ace965e6bd719fc345042622a8e598b5

    SHA1

    71b92933b0a210ea09666a1d371060ad63b3688a

    SHA256

    fc4a47a639f442beff59d327c934fbb79388da2a107f6615d4728bd7bad5a06d

    SHA512

    0be54bcad7f68027254347b43814890c1d2c32fc3ca281ec7e70f4753b2f81a4e17cf1c7551bbc46cfa790342010aafa719ee074c56c7cab642b79e493d3058d

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab70A0.tmp
    Filesize

    61KB

    MD5

    f3441b8572aae8801c04f3060b550443

    SHA1

    4ef0a35436125d6821831ef36c28ffaf196cda15

    SHA256

    6720349e7d82ee0a8e73920d3c2b7cb2912d9fcf2edb6fd98f2f12820158b0bf

    SHA512

    5ba01ba421b50030e380ae6bbcd2f681f2a91947fe7fedb3c8e6b5f24dce9517abf57b1cf26cc6078d4bb53bde6fcfb2561591337c841f8f2cb121a3d71661b9

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar80CA.tmp
    Filesize

    163KB

    MD5

    9441737383d21192400eca82fda910ec

    SHA1

    725e0d606a4fc9ba44aa8ffde65bed15e65367e4

    SHA256

    bc3a6e84e41faeb57e7c21aa3b60c2a64777107009727c5b7c0ed8fe658909e5

    SHA512

    7608dd653a66cd364392a78d4711b48d1707768d36996e4d38871c6843b5714e1d7da4b4cc6db969e6000cfa182bcb74216ef6823d1063f036fc5c3413fb8dcf

    Download Submit