Overview

overview

7

Static

static

7

Sonic.EXE ...d .apk

android-9-x86

4

10 de 10.html

windows7-x64

1

10 de 10.html

windows10-2004-x64

1

BfFuckingDies.html

windows7-x64

1

BfFuckingDies.html

windows10-2004-x64

1

Keel.html

windows7-x64

1

Keel.html

windows10-2004-x64

1

Milky.html

windows7-x64

1

Milky.html

windows10-2004-x64

1

a treta.html

windows7-x64

1

a treta.html

windows10-2004-x64

1

bothCredit...o.html

windows7-x64

1

bothCredit...o.html

windows10-2004-x64

1

can-can.html

windows7-x64

1

can-can.html

windows10-2004-x64

1

du ai luke...a.html

windows7-x64

1

du ai luke...a.html

windows10-2004-x64

1

f de fudeu.html

windows7-x64

1

f de fudeu.html

windows10-2004-x64

1

festinha.html

windows7-x64

1

festinha.html

windows10-2004-x64

1

soundtestcodes.html

windows7-x64

1

soundtestcodes.html

windows10-2004-x64

1

superidold...u.html

windows7-x64

1

superidold...u.html

windows10-2004-x64

1

tooslowcutscene1.html

windows7-x64

1

tooslowcutscene1.html

windows10-2004-x64

1

tooslowcutscene2.html

windows7-x64

1

tooslowcutscene2.html

windows10-2004-x64

1

truegameplay.html

windows7-x64

1

truegameplay.html

windows10-2004-x64

1

video.min.js

windows7-x64

1

Analysis

  • max time kernel
    120s
  • max time network
    146s
  • platform
    windows7_x64
  • resource
    win7-20230831-en
  • resource tags

    arch:x64arch:x86image:win7-20230831-enlocale:en-usos:windows7-x64system
  • submitted
    10/10/2023, 20:23

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    truegameplay.html

  • Size

    62KB

  • MD5

    e895da4b1975f9c396d0a3acb524bfb7

  • SHA1

    e0a3455f52bcc0bd72eed9dfd6f706806106401e

  • SHA256

    bd0fe5743c604e1f12c49a6448c6eeb66737fdad3e6b424f4bec9159c5a4f782

  • SHA512

    cfb045439122ebe503447462afb9ec4341445ba8e21f475f4a666bdfd2244bb9b9129527041cdb198381b2b528880a536010a3aed25aac9d340aed4effa498d5

  • SSDEEP

    1536:OueXjVYyE/YqVWmQtu/NwRd86gbcgP2k7jEXm7ZwNm8QF6mYzSsKFgANXjaJA++e:Lt/fVWmQtu/NqUbcgP2k7gXm7ZwNm8QQ

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\truegameplay.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2444
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2444 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:1748

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    4bbc212f322b492e764f6b304c69010a

    SHA1

    528c601f0ce7ea3e913e0033f9d034c9e8f07574

    SHA256

    4d5bc1123a6278ef5f6bd8129e6478a158c79fef97417c6fc978f7c5c6865053

    SHA512

    f4310f8e0ada007e83a54792b6307f53a09b6aef3a9c282888688a109e0a18c2ca863e32118bbe6a615c59dd0979b6bcbeef26eeda2402fd866f1fb6349926b2

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    4d1430c2c7518911de8ee79792caf475

    SHA1

    ebec2aba84179fb873b5575a17fecce867b1e317

    SHA256

    44a7bc61a1399621fc2d0825a2225d485c431447580454f23dca3df56d76477a

    SHA512

    57b7fb3a47aad171701cae75da35db2321ae24b7750178e790cac2f0aef6d4d82cfc861b5f02a8103b1e40dbe070001d315886d89cb1efd18c3bc82c74c2f083

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    1963754b76bdf458964acaba78b53323

    SHA1

    c8c0a4b12991bc5c9d503ed8f87dc4b2705ba6ce

    SHA256

    15cbbf6abdcefc6928886971686ac739e458dda1d4557160ad2dc3e479cc28dc

    SHA512

    817fd7f2a71edb24cd72ca47f5fe12b044b3c1c6334b5663c2359a77c39cc21fe3766ce2772beb606d647f919bad2d3826887b0842a2ce65b3c92a039febd09d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    24cd7dbae75f09eac2b07f9734181c39

    SHA1

    f81286f4a5db43196197ecff182cfb7aac32a541

    SHA256

    1c9745040204f761e72350aa5df0e438cf7203d6f43908de62f015ccc9f4631d

    SHA512

    8aa9781e69d31d85563a0950604017764594c34c16eeac94938cd744480c4ad8418931eb40e7780c9a367166f77b662800e68e714a846508b642f92744fe2912

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    c260b750e6252f5de3ca920af20bbe5a

    SHA1

    7afa199b6e32ded8bdad06475d2a55c3aedf5cce

    SHA256

    03fe870e4ade73b760d9d1aeb36de619039ec982238e8ae25d826abc9f87c1e5

    SHA512

    6b70f2f45bdd34aa2fe005131dc286f9e38c9e7da691fbf32ee972b25c2c5bbf3e0ea83bbd2b0ca0be9552bbc9901f7bd0db472c2b8255ad2debd657fe6c2dd3

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    3579341f4e73e771741dc57993c4fcff

    SHA1

    65cb931aa41c099decdcf0f9fdcb8f14b21a579d

    SHA256

    7d1f86516e258126bb21e1d6444d76186ab9cdd69df71624924d4da51dd9ad66

    SHA512

    9521cef60107c5ffc46e9e932430050fb7b23f545c8e1e671e4f6da713b6ffef88ae1ebf42486f10628d96a0097fec8b9ffde3ae01d8ef8a8d50a7a815bfeb6e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    ca2cceee2fa98a6151af90dcaf28118d

    SHA1

    ed6f0290a08ed1ee95519690171840c488bf2f6b

    SHA256

    121f45085524ad9ab3426fd44690bb3d9a03d941599553fe73a7d6c00eb6b757

    SHA512

    2131b1bee329ea6f2e9e613262bb24ec45bcdb64691317b01f29b3fd589da02d5c34a90a40f42d27c893eaf9ab9746d688d8794d04884f6d83cba7b2673282d7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    fc6a28080f02befad9ce70439d06cab2

    SHA1

    13d715416fc5324dd8d27e3d3344886e7f8b3936

    SHA256

    7016fd4ef17fc327275d1303d34d86ba4745dfd4cdcdfb6061ba0e3b9309264b

    SHA512

    0397dd2a39410f6de713ff0c73cbc188122f01f90fbd6789cac0f8d06db7d22cce43713bf9a0ca18566d88d29d7b622ee979838584ca0b8d4a5e3ffd771e8896

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabA299.tmp
    Filesize

    61KB

    MD5

    f3441b8572aae8801c04f3060b550443

    SHA1

    4ef0a35436125d6821831ef36c28ffaf196cda15

    SHA256

    6720349e7d82ee0a8e73920d3c2b7cb2912d9fcf2edb6fd98f2f12820158b0bf

    SHA512

    5ba01ba421b50030e380ae6bbcd2f681f2a91947fe7fedb3c8e6b5f24dce9517abf57b1cf26cc6078d4bb53bde6fcfb2561591337c841f8f2cb121a3d71661b9

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarDD5A.tmp
    Filesize

    163KB

    MD5

    9441737383d21192400eca82fda910ec

    SHA1

    725e0d606a4fc9ba44aa8ffde65bed15e65367e4

    SHA256

    bc3a6e84e41faeb57e7c21aa3b60c2a64777107009727c5b7c0ed8fe658909e5

    SHA512

    7608dd653a66cd364392a78d4711b48d1707768d36996e4d38871c6843b5714e1d7da4b4cc6db969e6000cfa182bcb74216ef6823d1063f036fc5c3413fb8dcf

    Download Submit