Overview

overview

7

Static

static

7

89cb774edd...c0.apk

android-9-x86

1

en_alias.vbs

windows7-x64

1

en_alias.vbs

windows10-2004-x64

1

gpen_handwriter_32

debian-9-armhf

1

gpen_handwriter_64

ubuntu-18.04-amd64

gpen_handwriter_64

debian-9-armhf

gpen_handwriter_64

debian-9-mips

gpen_handwriter_64

debian-9-mipsel

libwbsafeedit

debian-9-armhf

libwbsafeedit_64

ubuntu-18.04-amd64

libwbsafeedit_64

debian-9-armhf

libwbsafeedit_64

debian-9-mips

libwbsafeedit_64

debian-9-mipsel

libwbsafeedit_x86

ubuntu-18.04-amd64

1

libwbsafeedit_x86_64

ubuntu-18.04-amd64

1

news.html

windows7-x64

1

news.html

windows10-2004-x64

1

jquery.1.7.1.min.js

windows7-x64

1

jquery.1.7.1.min.js

windows10-2004-x64

1

privacy_gu...n.html

windows7-x64

1

privacy_gu...n.html

windows10-2004-x64

1

privacy_policy.html

windows7-x64

1

privacy_policy.html

windows10-2004-x64

1

privacy_po...o.html

windows7-x64

1

privacy_po...o.html

windows10-2004-x64

1

privacy_po...d.html

windows7-x64

1

privacy_po...d.html

windows10-2004-x64

1

privacy_po...o.html

windows7-x64

1

privacy_po...o.html

windows10-2004-x64

1

privacy_po...e.html

windows7-x64

1

privacy_po...e.html

windows10-2004-x64

1

user_agreement.html

windows7-x64

1

Analysis

  • max time kernel
    122s
  • max time network
    147s
  • platform
    windows7_x64
  • resource
    win7-20230831-en
  • resource tags

    arch:x64arch:x86image:win7-20230831-enlocale:en-usos:windows7-x64system
  • submitted
    08/10/2023, 00:10

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    privacy_policy_ext_third_collect_info.html

  • Size

    25KB

  • MD5

    a39fa45425f285d0687940ddc5b983cb

  • SHA1

    eec020f1166d4aeafe11c9c77c3cc754ddc958a7

  • SHA256

    b1a6439078105584896bc66add3389b244fca76507d7883038d597380debada6

  • SHA512

    63664708729d8260b91a2f9a24fc4a7ef919b77b4b4c48e2095039f4ae114931cf33b0919c27f51e9a2ac15fc8f490df624f477a9b963e89dd54bf7df0ab76b9

  • SSDEEP

    768:F/WYE8czMIeK0/U3touDyIV2cie/WQR8czMIcuTyIF0J:BLE8czMIeK0/U3t9DyIV2ciaHR8czMI8

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\privacy_policy_ext_third_collect_info.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2492
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2492 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2648

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          0ba0861dbd3f7d7b78e36e343decf3fd

          SHA1

          76e2e26dba67fc9967f08c0c6f9a0b3fe1d9a8c8

          SHA256

          f83c33298b502b6eea560b747f0a742acb6bf12cbb5a10a4ac7a6b6cc2dc637f

          SHA512

          15472a2e8d01a0cec67ad38e006bab8b7d17cecb2b1fa8eaae3901600c02375c298a12013cf58a3c997e4d96a8caa008b6f9813d86f03b9f39669381baac3d41

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          a844756b4ee05a3289f5ae3af06a5b89

          SHA1

          57628f11b653b256ff964e781453c3a7eb478d8c

          SHA256

          40cd578031a287b583d5a3e84a608c5fe52b041d195b70e31c2bbf6da7e28d69

          SHA512

          4ff38bc302fc8d13e5a10c2f3447586a94512af12dbff63baa553e1f25aee76bf3fbc5aab8cd39872bf83531631b73b2e20de3631dfde4a1c44394b409f743a8

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          c470f2fe8857717cb4dbca03c48a235a

          SHA1

          d9c13c2a595aa4ab492c6059cc76baf1bf05461e

          SHA256

          3035ef5a322b5e31d92910b9b85b2b07a5cebc38d542c458bf6da1b8717220dc

          SHA512

          4ec652041bae7b3a8aa75efa6b78fc03b0a68b58cfd42e1f03bc444f93c01783b32b34710ba16ae16a067473b112cfa052d9ec3956552200f50704a4d22908c3

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          a83a33651bd0a2a831f59d59c35b2495

          SHA1

          0035bed8e62331a38e85d6a1fa6d8b4463fd0893

          SHA256

          fcc06eeb69bef2bae994055294c4bf98bb9188f1dd1b1d97ab0e311ccc57b931

          SHA512

          03e0ccd1f98f1fa02e9651b535d1e50e54f053c1e66a777c4b9d9bd31e684289e557cb05043afcf2531aabd3ee4066e95832fc71913e06ff1c87ca9b1507ef35

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          d75db71a15e6fe08bbdf121052a20d6c

          SHA1

          5c94ce8ffb17f963879026b8155c83bf4065e9e8

          SHA256

          fb32d52b4976bf03bc6e7072ff865d76e3ed609a8cbaf13f036256315f800b29

          SHA512

          9112c93d3d672b08c11a16a11ef08d28bea8b7c817253c974799557b8e0615dfb3703363436abbad06e6a04adf585f7ed9e58b08a61c24a5fda78134393e7592

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          a9d7fad54494db241713b3ba444fd2e1

          SHA1

          31f501da4c781391efe41d55b666c4b9708c77d1

          SHA256

          099e8eb2a9ba30ceab154d7ead6362ed2a73ea7c5b3476d1deb588a7b1f08372

          SHA512

          3ef03acbe8a994235c1a8f73a66b3dac87fc5f1c916363228af455e0488b9cb3b223ec7621df2f8a148712002e86f01e0ddd53ba323f09757ef6efda2929e8d1

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          b9d2f5d3e1ebf3d7c50a1cac03e8cdd7

          SHA1

          51b39b3a1b8dc792fc67ccbfbd2daaa06aa2359c

          SHA256

          296760cdc7cf4176b83d93773d4a373af6c79fef25eb85747d5cbab8130180d2

          SHA512

          670b942df68b98e60e095da854b1ab3b33e2b3d7a716e973db59be486eaba643f539a64f2d35db070d786c148a3e082112fb6a67e8858912b9f6cfd722f4b5bb

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          7a5b8a43c7afc6e73496db148cd6fec1

          SHA1

          08cd56cef5f824f65c0e611997a71779521c0294

          SHA256

          d3454c422d0817d393b644b0aecb58ca9c66ba9665790686fb400ddef42aac35

          SHA512

          f4dc695acb79d4f891f095525b35a2b51933ca16e494e39ffa09149ff3ff048fe02cdeed7e3a8c58bbec7cd68c059a625132a1cc8f0b28364053a1582904c07c

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          65209deb6836e64f6846b7970d9040aa

          SHA1

          a0a648c2b2c0a09f2aee1bde0d1d11558287bd8a

          SHA256

          db3ae49c471842a792c4345c54bc5a246eba48fe4a7d00f5cab5553fade95d88

          SHA512

          cbbb7aa58825fc5188489624d1a79056fc061c368d5adc0b7c789e9d103b957549ed82e072f801e38840e550fd08268f4693146dcbd4233bc0995fbff87cff58

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          0ba280848dba582e089b6b3ffd72b8af

          SHA1

          46507fccaccfbe422e44aa4ecc5605fb84ab53db

          SHA256

          3a6a8cfff3eb308446c0169356bf3504ca3c3088078974d82ebb438ffcf21e47

          SHA512

          c54746433055df66b91f86044875c9ac3a618e1b23b526f18fea917cf5c4262a5e6d938385001851a7c514ef81d7636c73e5b20ff16c39fa1d44003eadea9aec

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          fc86493840b36e4425759acbd7564c9f

          SHA1

          a44d17401e02e0e90a17a4cf322b7fbc5c2cb029

          SHA256

          ecbebad47052a9073221d6dc98129976dcc91d30eed38907dcb7662fdfc7dfb7

          SHA512

          7dc1b487660070399c053890c043c90dcf71e30e1f728fe22dd7f45696cfec2a3c9f8a1c9749aad8e8c32199e525f75f924a52169484eae531d5e00b7be28a03

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          9822292e525821461c3284bca6a8361d

          SHA1

          2743193c4724886692b7f32a6f911287551ad30b

          SHA256

          df48bf4580eee496f627e43becc792d92572837bf314b4662f768be658307c16

          SHA512

          f01a65cbe4669a445b0d2f955f57e88ebb934772356bcd059bee8aa246140a2e703b64e8d7bf6bc642e45222cbdae1df712ed9d729142c7c7e9002d6d10d97df

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          9d4bbe03b65f05db36c58f35f18e0fbe

          SHA1

          5f68d3f51ea6527550f26433eb22fe4a281a9e53

          SHA256

          0da3bd9c95194155ef31eb351a7dea384e9e61cfe4b0c195361d10f576a408e8

          SHA512

          761937be7219ad9614b425f873024574bff247190de636380c342b491630df3e851eff96e68fe411ca5fb8ed4b9907f0d344599511d6d559af429f0032c56e71

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          ddb1bfa86d2bc3cdbccbcf04a9b97f4e

          SHA1

          97617d0155b81880ae8a4b5f0690ab2a70e42b81

          SHA256

          3b4eb4608b578278582f7b5ca3bb4620430acb87f6b52258e27022962c155500

          SHA512

          a2d3faf5df0ecfad293d207f19b688b5da831c382e30ef043d37a14a6c6a40e559c78252ae0ad415f846da886fe5d66c4d9962c38342be18c26cfd8bcb0186b0

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          bd8ebc19d685ea2827ffc7ed2fb09cb9

          SHA1

          c6e27c56c353f4887853cd13602cd01aeaeea51e

          SHA256

          7e2250869f2bb5669a302ef6206cd104d4baebf02361535539f058c87ae4739f

          SHA512

          4478f052496332bfbcbff4751e58093d9ede1515d8c80c0ec90add3296b37301729534e3552f80cc083560778e810e086286bf7dc049fba4f20a4620eaeeb29a

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          0f804c7097fef9bae01300bcfac87b67

          SHA1

          e2c8be03f4b11f73705b6e7f93a55cbe7ef86df2

          SHA256

          18ec143308cf95ebf7ab7cd70030966e64f3fe8f8c50a96413df797b069db3c9

          SHA512

          45347785262ba45ece60101a28863422618cf113011aee35a14efa7babb393746fec4c669e19d9d1208023fd21f2615f3dfb8800218e4c06527da8af38de0fdc

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          ea269d2d1fb9387c926ac882b5fa1c5a

          SHA1

          74e85b26973635dfcdd7b7e10320584e566b12ac

          SHA256

          42634730aed3ae9f0d410fa680ebaa04bf2420ddadda06a56f96ec0a613b1846

          SHA512

          27a6e1cc98fcec119282fae0a4163fd0182c3d5c744c2c6f6d91bdf7fe3755a33791531de19a93754b784aa61e5849cddc0e5a7a6f59806f183dc13e0f16d6f7

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          4601185ec4c077749c31b3990950489a

          SHA1

          a11832f5a64a76a72f7969bac39799fff6271a15

          SHA256

          1c5e9fd8dd9e8744ca3bd829463a8a4bc8c1881d2e25f1713ab42e997f79bc48

          SHA512

          44be7a366e4f9710c066a421f28608f48d1bdf0af38530b7cd1116ea0680e99b654a9fb7541eb713e5cad6318f17a76b89f62c46199267825650e2b901b7c45f

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          0dbc825d24eaa4dc07f3f6bf496a0968

          SHA1

          605118e4d730aeab9bafbbeb54c42a6429185b7f

          SHA256

          c0a341dc539357ff8f19bc2e7e288f3f30b4d95cea93e446b2fe18b96dfe9be9

          SHA512

          f9f667a4547e4e4a988823a4b4244a7a90640ce69f3eefe73ec7952ad92fe104b60eca20712cedff55d9e1da4de2c4841980f7feb314989a2ab9f94af590374f

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\Cab849C.tmp
          Filesize

          61KB

          MD5

          f3441b8572aae8801c04f3060b550443

          SHA1

          4ef0a35436125d6821831ef36c28ffaf196cda15

          SHA256

          6720349e7d82ee0a8e73920d3c2b7cb2912d9fcf2edb6fd98f2f12820158b0bf

          SHA512

          5ba01ba421b50030e380ae6bbcd2f681f2a91947fe7fedb3c8e6b5f24dce9517abf57b1cf26cc6078d4bb53bde6fcfb2561591337c841f8f2cb121a3d71661b9

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\TarBCB1.tmp
          Filesize

          163KB

          MD5

          9441737383d21192400eca82fda910ec

          SHA1

          725e0d606a4fc9ba44aa8ffde65bed15e65367e4

          SHA256

          bc3a6e84e41faeb57e7c21aa3b60c2a64777107009727c5b7c0ed8fe658909e5

          SHA512

          7608dd653a66cd364392a78d4711b48d1707768d36996e4d38871c6843b5714e1d7da4b4cc6db969e6000cfa182bcb74216ef6823d1063f036fc5c3413fb8dcf

          Download Submit