Overview

overview

10

Static

static

7

636f6e438f...53.apk

android-9-x86

10

636f6e438f...53.apk

android-10-x64

10

636f6e438f...53.apk

android-11-x64

10

1bf84a89-2...c0e.js

windows7-x64

1

1bf84a89-2...c0e.js

windows10-2004-x64

1

ad.html

windows7-x64

1

ad.html

windows10-2004-x64

1

aps-mraid.js

windows7-x64

1

aps-mraid.js

windows10-2004-x64

1

assign_lab...l.html

windows7-x64

1

assign_lab...l.html

windows10-2004-x64

1

blood_gluc...l.html

windows7-x64

1

blood_gluc...l.html

windows10-2004-x64

1

blood_gluc...l.html

windows7-x64

1

blood_gluc...l.html

windows10-2004-x64

1

blood_pres...l.html

windows7-x64

1

blood_pres...l.html

windows10-2004-x64

1

consentform.html

windows7-x64

1

consentform.html

windows10-2004-x64

1

diabetes_r...l.html

windows7-x64

1

diabetes_r...l.html

windows10-2004-x64

1

dpr_report.html

windows7-x64

1

dpr_report.html

windows10-2004-x64

1

dtb-m.js

windows7-x64

1

dtb-m.js

windows10-2004-x64

1

edit_insul...l.html

windows7-x64

1

edit_insul...l.html

windows10-2004-x64

1

edit_label...l.html

windows7-x64

1

edit_label...l.html

windows10-2004-x64

1

edit_medic...l.html

windows7-x64

1

edit_medic...l.html

windows10-2004-x64

1

edit_track...l.html

windows7-x64

1

Analysis

  • max time kernel
    134s
  • max time network
    132s
  • platform
    windows7_x64
  • resource
    win7-20230831-en
  • resource tags

    arch:x64arch:x86image:win7-20230831-enlocale:en-usos:windows7-x64system
  • submitted
    09-10-2023 22:00

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    diabetes_reports_local.html

  • Size

    1KB

  • MD5

    82c943f3825b6c0ad53ea5a928f545bd

  • SHA1

    626e445dfcd1c8fa70a3ee779b6d9f484e36cceb

  • SHA256

    c108fb2c8544a1f2faf5fb450db095df0231cd876aac67e944325bdd74bd3ddd

  • SHA512

    72618f9545d4533e9e0aa6adffecc009928585eb84950ba2b3d3e5610e2ae20259f2b39911bbeaa60230a490e8ced334b0b3fb9501ffebfc930ccd3cc8b27cee

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\diabetes_reports_local.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1264
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1264 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2196

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    e188e887e6ec909dc606eef86b615a8e

    SHA1

    183a04cd8d1672035e32b19b1821f138ff9ac995

    SHA256

    13bb889fdf046b40321c1b357f3c22cb7bf1b7d5f30e1576b6ef49e2139ceae4

    SHA512

    0a0c81fe8f56b6014ee7503b5d72875763960b4501645e696c781a32fe6323c8dcae0a78ac09356ac7802908621662bbd8d3ace4ec985a32961829d446e033a5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    b7954a8ce77b78ec1bce0bbb6d130d0e

    SHA1

    7a21a3f656043a779138adc24b6745b11ae12f04

    SHA256

    960a87da98e27e6c08acafc40dad3929a2c839a7f0987727fb1849d9c717930f

    SHA512

    b1bc3f6635b839af39d646c50ae28159026fb1dc68f5f67efd704fed8076558b7c7e3b9df4162e530bea7b6d6338d454d147b010bda921cede38cb337fceb3ec

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    17e0d454e28fe80e31ed907bccf27d8f

    SHA1

    e0c05fea9fde2c7462c49342620fbeccf439bd0e

    SHA256

    1b887717426807c4b8cb2a852b4547559cc3419ed03a6135076453a764512b68

    SHA512

    dd23f96c226c5cf717fa43c030ff3d983ee2ccbaf0c2c2192f639651797e34adfcbf74c8409c670251c36b515cab80b2f0829ce2e8673b375a2220ba01abd42e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    4f4c986ecedfd7bd5cc86ba977aa53d2

    SHA1

    e6034b77315294b693dfdc3427396779289582f8

    SHA256

    298782088bd47d2ed9892306400f9e10745ce8e222df6669cad275620663bead

    SHA512

    44ab919dc39abf237c6ed5058277782d7c5aa6c0fb860ea03fa7eae2def3a5eb81e78762db9479b944b1406c1ec43c9f614b2e5ac314eed8f0e0e48ee861ccc4

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    4232ac08daac0f995365df33236432df

    SHA1

    0dbc82451c612c3d958a83fa5b2ea9705084e1aa

    SHA256

    4b6f48fea7bb2fed923b04960b50408fe7944b200c4657e618bc384b102d09ee

    SHA512

    fadc4254f2b2bd048a35ce714dfbd4252b51ad02f3c0878c9212e0994b2161f33cb35e6d7d77ee8035aa3bc83f5fe1e5e0ce100eeb7861e3887ef576cbf42f73

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    e3bd5ec9d42527121d1eaf64388bf890

    SHA1

    60db199cc0a878823be2f54de0722b547bdcb383

    SHA256

    912cd179fbcee93829ed6b14213a6bc22b2eab012769daba1ea731c1b7dc8e64

    SHA512

    e8e941efa85ac37c3195872516225c57c09ea4dcfa9bbdb0c8fd95be53f50491b40a73ce64500f2942825bdc54e764d797e4d0d777333c470160bd846db594db

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    a905259d3abe9db316b69d79f71f9922

    SHA1

    f338a8750596d39b9b76fb2a5b80d8dcd297e6a3

    SHA256

    2b6c823273bbc7b2eb103bace93ff193daab94f431c9dd4d78f94c6cc8e0c76c

    SHA512

    3dc0d4a388f1c75b2e7e6eef4dd6b095639bfd5b3de70659b8231f1b07c5fd59c44a1729737a763db597e9cd04f770fd9c55b71070c3bc24a25a061ab305b62f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    e7285c87225883a83b3aac54305745e7

    SHA1

    222a29dc8856e8267667ea0ea90c2e2be197fac7

    SHA256

    3e856f1ac46a53257cf49b4bae02e518c4e3ccf277b8bc9f5732b1651712e60c

    SHA512

    99eb46c51c6397871ea1597ea73b3c73d4acb0fb8bfd967ef7cdb0b6f04428c3409f22f727ad85e1d84a2380d78fcf99833f7bed7b71922a4168c06ecffea8b5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    ede4b09ae0b47ccc97412ad4de67bcfc

    SHA1

    dc453ae9c41c4b740c60a29885078f0d86878f41

    SHA256

    52f94f926d31894750b326f84068a57d03cf0115a456b4dc18a4385e8e2ce515

    SHA512

    b3266af49b6b839cbd0d3feaa64a3a3347d1609d7f59a45be59d8dde84382a817636168485fa2c00435400ae7abcb816b5e3999c7ce6e74c76947e146147a6e3

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    649be705dcf6ec480bb2cd36d55fcde2

    SHA1

    acee5c06822bdeb90962e1722a7719aaf87bf48b

    SHA256

    da53f6cf1ee8740218b3cbe8e9108e7b4a9e67cdab792dfb0addd8031f04b84f

    SHA512

    111c19b85170aad02f57c9e73affcb60f46aeab8e906f0ab03a57335027499479f27c8e8ffed9fe5d9b6b17a6b705ef538ead422aa22480646813721427074d6

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    0fdb26bb965517a5c552bac964cae398

    SHA1

    d040d87f681e81ae22e557642a4219def0278673

    SHA256

    457be211b7b919552ecac9c42380bb331024a85cdc6f67af66b10daae54d7f61

    SHA512

    0bcbaaabe8426b3c5a883c0bfc05341533f803f6bf1802e37f164b7505550e73e0c70c807d08b44a053ce4820ef4f41869b9a65d040b6e5df578694c0ae2d727

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    a9778115a914ec3b45accb17e130045d

    SHA1

    f88515bf8e7034cda6e37b261509f9d3382c31ef

    SHA256

    a4c10d9b2397910b26352d3de6755a1a4ac9f5593501f25cd108b9e93f0a70fb

    SHA512

    ed0f264a108eabbcccadcf7a726edc84dc1e624b1d3813792b48738be6d07b84df24eda82e090d08f3d169f934b57a1d230f6bdf117bf7de36c195aa0f441b07

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    97b748c93df2d446dab469865e1ab456

    SHA1

    35bbf81adb412d2a22aa2198b03f665a9f8d358b

    SHA256

    3ef9fdb0577ea40b9559c85e7517a59a5006b7fa18f78a826863e3214281ec99

    SHA512

    24e510202ad3b05c8e50ea945d8b9f62670fe21d8d6ec02d2289f4b785f218cfdbdcbc761670010c9bcfcabec3b1dc7e9af8ee3be47b0c7542768749ef396843

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    0e8e4f270759e67ec2ab488d79b90026

    SHA1

    e7b6cddd11f5b0ab8babf91a617c7e55722b592c

    SHA256

    42c679756d17b18b90c6752d6b2bd57f6adf887f82acab020151474035391d78

    SHA512

    20b4f2b6508658693d5e66fe4ba85c72f2fceeb4a85bbdcf57b9e3291279f1f137a121bc62e6ae91329df464ac0d717674eec79c919ac39ca7ddb5285603e276

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab5026.tmp
    Filesize

    61KB

    MD5

    f3441b8572aae8801c04f3060b550443

    SHA1

    4ef0a35436125d6821831ef36c28ffaf196cda15

    SHA256

    6720349e7d82ee0a8e73920d3c2b7cb2912d9fcf2edb6fd98f2f12820158b0bf

    SHA512

    5ba01ba421b50030e380ae6bbcd2f681f2a91947fe7fedb3c8e6b5f24dce9517abf57b1cf26cc6078d4bb53bde6fcfb2561591337c841f8f2cb121a3d71661b9

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar50A6.tmp
    Filesize

    163KB

    MD5

    9441737383d21192400eca82fda910ec

    SHA1

    725e0d606a4fc9ba44aa8ffde65bed15e65367e4

    SHA256

    bc3a6e84e41faeb57e7c21aa3b60c2a64777107009727c5b7c0ed8fe658909e5

    SHA512

    7608dd653a66cd364392a78d4711b48d1707768d36996e4d38871c6843b5714e1d7da4b4cc6db969e6000cfa182bcb74216ef6823d1063f036fc5c3413fb8dcf

    Download Submit