Overview

overview

10

Static

static

7

636f6e438f...53.apk

android-9-x86

10

636f6e438f...53.apk

android-10-x64

10

636f6e438f...53.apk

android-11-x64

10

1bf84a89-2...c0e.js

windows7-x64

1

1bf84a89-2...c0e.js

windows10-2004-x64

1

ad.html

windows7-x64

1

ad.html

windows10-2004-x64

1

aps-mraid.js

windows7-x64

1

aps-mraid.js

windows10-2004-x64

1

assign_lab...l.html

windows7-x64

1

assign_lab...l.html

windows10-2004-x64

1

blood_gluc...l.html

windows7-x64

1

blood_gluc...l.html

windows10-2004-x64

1

blood_gluc...l.html

windows7-x64

1

blood_gluc...l.html

windows10-2004-x64

1

blood_pres...l.html

windows7-x64

1

blood_pres...l.html

windows10-2004-x64

1

consentform.html

windows7-x64

1

consentform.html

windows10-2004-x64

1

diabetes_r...l.html

windows7-x64

1

diabetes_r...l.html

windows10-2004-x64

1

dpr_report.html

windows7-x64

1

dpr_report.html

windows10-2004-x64

1

dtb-m.js

windows7-x64

1

dtb-m.js

windows10-2004-x64

1

edit_insul...l.html

windows7-x64

1

edit_insul...l.html

windows10-2004-x64

1

edit_label...l.html

windows7-x64

1

edit_label...l.html

windows10-2004-x64

1

edit_medic...l.html

windows7-x64

1

edit_medic...l.html

windows10-2004-x64

1

edit_track...l.html

windows7-x64

1

Analysis

  • max time kernel
    137s
  • max time network
    134s
  • platform
    windows7_x64
  • resource
    win7-20230831-en
  • resource tags

    arch:x64arch:x86image:win7-20230831-enlocale:en-usos:windows7-x64system
  • submitted
    09-10-2023 22:00

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    ad.html

  • Size

    15KB

  • MD5

    52c368fc009579446f8dc67daf8dca87

  • SHA1

    fc52b078a9a02847efbf85d10f41b961c85fa459

  • SHA256

    9b6cfb0e52c7f7dc99d5f5b7e2a6142fa3ad82d1333f42877eed3d29b0561579

  • SHA512

    c80bcefe98c2eab09d4a831e788cd50563c62333d4c8aa81046df2acc9888c5a87da45546c1ee7d40bc7a9d7148075e3029e09e4b086406f6143a589111d1cb8

  • SSDEEP

    192:xMejgzfCtmdyPfojYA5D5zniVkG4zhxm45IqTbTD5qRSwpcPt6FLYFieRO6shWUh:flqiO5RrD5qBpWt6FAieRahW6X

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\ad.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2448
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2448 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2068

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    0bab9c91cbf95d961a48522808ec5a05

    SHA1

    f2fa278e83415cfc8e274b86ea0676f0b51b332f

    SHA256

    7bc0949c847e2abe23cf66c64a6016c9798bff10b4377ff94bf6e1e9e2c681ea

    SHA512

    6a319fcdf005f0676a3e68820c759525e43340ee7706744afe52f491a803bc9dda25a58afd5602286a7697aff661ffccc7dc0de91ccaf1aa259b00a29118f58d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    4337ad3504e5a4e66023c2944fcbfb80

    SHA1

    a1717ae24de8da7475d4ef303ab5163f3f816a27

    SHA256

    5a210576d90b65614adf170637279c9cc187ede6b9beca3e82d4246f1558e123

    SHA512

    48a0b04433e643f18f9708535c5d628a842c18dcc9b4ed8c10e4bdbb46d80a166f9622bd60b23e3c8219e50b16fc59d4dacfac9969141fb39ad1ceb4e5ffd893

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    5463722a230b6f4e9396b038108e709b

    SHA1

    e23de4a8e9e60a0dae5c52efdc1522ef927c837e

    SHA256

    92eb40700df0f57b1629a8231913391876c77083d9371eb84f7985ab5fc28f25

    SHA512

    a9c08d1ea4434cc8a8e8203ec193156c55d242f9e9114edb706ed28fad966f586885216f536e742c862ed035b80f8cb1fe9eca03b22dc41a68679bdcfdd42539

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    6019ec9774868fe5894cd35016b6b318

    SHA1

    4677311d4c82bdbfc9bf846fd9861236499cb26c

    SHA256

    599b7edf28f56b0d9ad76071ea77ab29a85c6b88178c62957051f78af60596c9

    SHA512

    2331adab6629441ad31059c5af3cf64629743e04dc8a9aaa2219d6035ee865066f26f1bfeac3d5a95b168725f73514297cbac1ba1e07e66b10351009118e2385

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    c4625b43d3c12adc7e75b57b9d0b725f

    SHA1

    5d2a1408ba720cd5166c00b5a8c018842eca917f

    SHA256

    beb9b4eed209c2bf0f67c7059b002cc15177e319aa3cd82db2163af1a77c0110

    SHA512

    822cb9c09b65a3456a8cf1ecaa66eaa8b877e72effa77773c8e665594c8909a2786b0ec18f255ae1691640bc9e4057d40b133e48fef8f83495ab1306bb7537be

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    40e2a4b2e3d8bf3b30324a3189445656

    SHA1

    bb2c798509a12cb64692bb12cf91db1cd9ab43e2

    SHA256

    0690331226df34463b6d567ed40877b4c9bcbbcbfb6de19958b5e6ceb0ffe5f8

    SHA512

    050dc73348d3c8d6658a4daa815a00ec2789a92c61c811e725b710789e7c845e5eba622f9d3e2c976cedae9e994fc4572d3ba99fe3714d0c174b0a691f9ead4e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    51a107d89c00745da583dbf6cadfcc00

    SHA1

    4c9480a9d6d6ab7929de432d779eb418e1443803

    SHA256

    abcd03144b39ac6b0a2546eab39983eb063761a1986c1392dd1f3fcac8565efa

    SHA512

    7f90e0736ae66b7b9e1c9a401f34addd005490cdb340b4b1a5116dc433666284f93f90de35b044504548ac9654b06ed8b1c7de2d89fd4a7d86531dceae43f48a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    778e9b1f6ddea447ec3be7bf8fc34be5

    SHA1

    36019cbbd8eccc9dfa979bd43a1be5377144a6ba

    SHA256

    b89a6b39aa8912eb5010273f1dcb9087897988d44d534a888d5814a67f652dc5

    SHA512

    932097eee94fa1846a5b017823d9528dd08db489829c025f4487d17134dcbde247a63c71264622c693b65e02ebcbba2a6f430b5a1bb35b133737e77344466b4c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    63edb2a62312009b152d848fd33f6773

    SHA1

    f8080e8136ad36da93acd187c238dddb9eaa446d

    SHA256

    9843590f494ed73b7f7c73bc25d33ef94f49d5cc6516aecaa022c351c7f91c67

    SHA512

    ff8fd5ea15164c7a1ce789d9699c82c8ab56feffae287e1675b355a08f26e21e567b8c81778092bde783c5fd6342f019d5481976fde086212a23172f6686e646

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    4952d27c823e5917284373d00a686aad

    SHA1

    0e414acc3bcfa2b3ebe7fbeac95bc526b24c66d9

    SHA256

    042c18181582cda689322165cda798d1a7bd37449d022203efac0d17b86e524a

    SHA512

    e469a4a4d74078d656b0c081ada58abc0e4f25575b7f521efc08743fbc0b1b0a59aad2844a547506755b98cad9b08c159f0a0203362d700c2a4ad3f3aa831e51

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    b293cb025f3a82c57791eac599cb854b

    SHA1

    2954641476bb45cbeb24369e02dfa29976bf0b5f

    SHA256

    96756a90cd01d0b9e497cdfd03e8f899c5a945dbb09b166f626322d0b72df9b0

    SHA512

    cb66c3667ac6f7e5a9cb997558bd24a6612ffac4b1344b46afa38506ff155aa29e9fe4708d0d99bfb80539d1372e31bb303bef8da30e90459b2d79e6b6eb3134

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    06061012e3bb936332861b67c97004db

    SHA1

    9caaa6fc2c8a1cbfc126b0796d215a6832cb16ec

    SHA256

    6de0e5fac10bfe5eeded752d0386afe769530b29c0e8e2569d3b6c79c84fd916

    SHA512

    81352fb25d0a1ddf0ba6afac8704ac2820c88ac148c64d9c79c0eb2c4e7734fdcdec026323fb99cc5b7428d3de9f47988bc87ed033a74183ca9dbc0069de9536

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    38ab7e5eece736ea188649e98d875755

    SHA1

    f52b65760bbc85c63f612f21a28986d8a3431930

    SHA256

    48f062406416eb3f4e3571275c7fad5fe57098c833b333440cc384f368518015

    SHA512

    c5d34d58571042c5e5b6599aaff12439aa767ae462a46a2291e0dd784d95ac09a7be536ddf8898691c06e7a8d70bf7b7879809bfefcdd55ce266de90be0b672d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    db22b4b545190276564dcda3e1831482

    SHA1

    731d691c10f09ec3dc709792c04bf13b8753f998

    SHA256

    130dca64e0a6a54c957adba1cf835acd8cce70b84ba87f75013aa1e8cffc952e

    SHA512

    a0c6e8c601e217c09537ec555e63026db808bd8dd9ff9761ec0070ed5834c3ff34a283e5d9ffbd6a96b5c2a1e6067116af3058b86ace63d6f5e6bb378459c13c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    b1744827331404b3ab885c3640d35a13

    SHA1

    ff01a435fc262f99bb04c1e9756c9803a6eb2454

    SHA256

    265359c19ee79ca7823274c1fb09e22f98e32c372106cba156ad02f73310c98b

    SHA512

    4b8b049777217ca0c7a38ad0273b0338798b552058dc9eb3eb3d9add97555a2f0665a3b1f3d85d68656c7c86b02729aa24a73fedd46fdd729e572471dd19c58a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    4e6cf28ae0a2420be357dd5f1b9bb6c4

    SHA1

    615c1f5daf83066e5b9010e218f0d227afd12c7b

    SHA256

    37a8db449455027f21718366a3cceaa898377571273bbec7557e457d3934c995

    SHA512

    9fe51f9766198bc567930c999575041cde02d0f5575a13dc43e3003fcfa039f1be3d3f28a0aa07b042c0800b925bc64b82790dee951fe4a143d7686ecd70ac4e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    343f19212c5e05cee7ca768b1f576595

    SHA1

    1a3f5bc4be537d208b382f07b6fa8debc5235feb

    SHA256

    1b696d5996e5d650c9c630f1cc0e6a7d67bf36f78666f305f7d63c9d94d92049

    SHA512

    78563621084a90b5bbe17228d8a3ed0c765be9cde9c1ee798bd49ab686c23c17fa3808108665af73d61812143df807725cf9a5b9e8ff04463cea1f9ba65a7560

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    c88c5ea6d2beb157744993b408a1d079

    SHA1

    e8d743e6a595bf27bb25cc3472dfca23806a0a9d

    SHA256

    8cbab544dfb5f8568b96abab1406f87d0e836fda2f9b66529ef16f99a06999c1

    SHA512

    e34035b7ae2d027ca9212021a9179ca4811870d6af8dc693f426154a4f39dbad9f37ba9e8cae0204d9f560b6b75c301152d7fc765ee867c02429ae218173d830

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    d9246e550e0da4f7e897714a7bcd3301

    SHA1

    17cbf7d795dfd101221cff763f928ab7959bc071

    SHA256

    c6d924c8d09a89c1c6386c1ac2447573170f3693f6a3b7f4df88219ae2e8a0f2

    SHA512

    a6f9395757d7dd2c9295d25e425c0ad90f0cd7cde623e1365fe0b5fc8032fbfa2cf1e631e0c8e2dfca125695bad75cf90cc3393adb542a4b5917a666205f78c6

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    43fe1e1a60f54927463431fa9c38133f

    SHA1

    8278e025a33ac6a67354b2af23a7ea82138d44d2

    SHA256

    4c4588a17e9dc525035aa2ca4d092d5c1c73f4dcbe9c70f408e0ba6d541220d1

    SHA512

    1b53d52ab550380f560500328802a5fe56522c2cd01c820113e3aaf175d0800335c7aff3277f162672e6cea432627f9d085dce861f555ee6ab0bae028543f2f7

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab5E49.tmp
    Filesize

    61KB

    MD5

    f3441b8572aae8801c04f3060b550443

    SHA1

    4ef0a35436125d6821831ef36c28ffaf196cda15

    SHA256

    6720349e7d82ee0a8e73920d3c2b7cb2912d9fcf2edb6fd98f2f12820158b0bf

    SHA512

    5ba01ba421b50030e380ae6bbcd2f681f2a91947fe7fedb3c8e6b5f24dce9517abf57b1cf26cc6078d4bb53bde6fcfb2561591337c841f8f2cb121a3d71661b9

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar5F55.tmp
    Filesize

    163KB

    MD5

    9441737383d21192400eca82fda910ec

    SHA1

    725e0d606a4fc9ba44aa8ffde65bed15e65367e4

    SHA256

    bc3a6e84e41faeb57e7c21aa3b60c2a64777107009727c5b7c0ed8fe658909e5

    SHA512

    7608dd653a66cd364392a78d4711b48d1707768d36996e4d38871c6843b5714e1d7da4b4cc6db969e6000cfa182bcb74216ef6823d1063f036fc5c3413fb8dcf

    Download Submit