Overview

overview

10

Static

static

7

646538cdfc...bb.apk

android-9-x86

10

646538cdfc...bb.apk

android-10-x64

10

646538cdfc...bb.apk

android-11-x64

10

createjs-2...min.js

windows7-x64

1

createjs-2...min.js

windows10-2004-x64

1

vpaid_html...e.html

windows7-x64

1

vpaid_html...e.html

windows10-2004-x64

1

webClipper.js

windows7-x64

1

webClipper.js

windows10-2004-x64

1

Analysis

  • max time kernel
    134s
  • max time network
    137s
  • platform
    windows7_x64
  • resource
    win7-20230831-en
  • resource tags

    arch:x64arch:x86image:win7-20230831-enlocale:en-usos:windows7-x64system
  • submitted
    10-10-2023 20:27

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    vpaid_html_template.html

  • Size

    16KB

  • MD5

    7d7cb3d6c22da954fccb084f6c18ee01

  • SHA1

    529871b15146f802c1c1fe2342b31db9e328bb7b

  • SHA256

    05cb7160ec6766397cacbfc5d57373edbcb028917d81e2f2d748e27086db23cf

  • SHA512

    a73d034079dba15d38bd14ddb81afd8af51b31a5c80cd83346556e7ca7f2ec927511ec3c151abf7cdc108ac4671b7623066e0375b30536e1503125354fa1a15b

  • SSDEEP

    192:mrLYJFkVvGFQshArPtP842+Lw1wOEeR6kad8bWXSrJEBOn8TsjNC4ck8aanlDTtI:8U42Fn9qW4+EQNuSXIlodo4

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\vpaid_html_template.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2416
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2416 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:1872

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    c471363b3dd343d3c2754509669e77f0

    SHA1

    44115ff97c954fcc5bed95d7e455e0e95dc551cb

    SHA256

    84684462414665e00438646f32390058b98600c9413af1780ff9305788f1d9cd

    SHA512

    18137fc377ab6330b0d359145389b0e407362ac2635a0afd08ee29e4eee6c99e896d592e18a007a8ccf4be4f72721af59e5117e4573b5db79dac29fd9276668b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    23d52074b55994f8d2c6bbc883e7e77a

    SHA1

    ca6e491c023fa16c95462f6b8f116ef4305bc8ef

    SHA256

    d2fd3f529571461825c9ad7ab04195b77130544ee11bdcc23331ad6930443d99

    SHA512

    6bd5a8aa4393b9e9735e2b7c9d44e76d91a1aa96883fe2ab086fd27607856a94581cd7fe3d5fb8653bd0b7092a4f51f8a306e50896735b53b7881a760afe247f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    5a7db15bb796bbce432b9c416c4a68c9

    SHA1

    c2b05d0f816c51fbbf2bf11766ea38194c2f60e1

    SHA256

    29afe69d880b72ddeb881cb74bb162eb28d31ecc5a44577febc5a7295cf92e6d

    SHA512

    fc43e0dad0b37ea5a22241f4616968f5e57f139b1ca47c4e7887fd550cb738792a3aa688a38cdd07004c26ff5fa6285941707e4cfeac100065e05e888029d2d9

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    363f3b09898e6d731844aa08ae1abafb

    SHA1

    c03f0fcb395f22e5e30763f983c5517c270ff780

    SHA256

    bbdb949ad58c3dd4061dc61ed70ba2cc17fdcb98368d5b289279ba6f68d5d8bd

    SHA512

    374a4c2e1816459e9302c3e98ac7f4d62e0b838ba52806b8e1863d0c99e4869614abe680586894165aa562d45ca26bf922f7a14215ef18962183db7923558b50

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    82a4cd1aa9dd701e62c131b4c36afa73

    SHA1

    dda59a0cb87f0aade6616f08cafa91428ae7baa5

    SHA256

    9f1b8ba6a6249e0185a18befd51923a7d2c28d2f9dca1d9e5af1267f66263a9d

    SHA512

    914b67e30d312116c6afe9b0538a27f24b95d7eca0b6a7735808a4acc1bbf57f9def7e2c6f1fb8943524c24f00bfedcd6bf9bd5346cb6184670ad61a1e3285e3

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    a60bd848ec6253d9486e9e6a6c742aeb

    SHA1

    7a46a37105ff9ade6267df76e5f2195036a5cc13

    SHA256

    c6f08e8b1f9d07b381c9b6de06511bba486a4c4dc5dc672d8ff77e72fea870c0

    SHA512

    3c1653b5c38468d842c1988914aa6d7c6efc0a0fd76baf40d6e97820453f869847cb855e24a3df0f06366bd58562bcd667bcfabdd7185ad2d90b8340ab31921c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    7794de985a6fdc9045babaa9a8f5e455

    SHA1

    e6dd0cc06fe131bf81a5c7062d66424b29e25be8

    SHA256

    1d0b84b6155097e188f7f334fd3471a001c0af593dc443f5c9ee2d63cc827787

    SHA512

    b835ef9f46af1be43ac4d18218913f13e49265d0f900344debcffe732e6b9ee2794f2a8f3d99d19af3617b00ef172ad08933b54b1c0868280a2b11b47be879da

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    37649179373755f1b5a8020e07ac8143

    SHA1

    b918bb7fa267c7d82b3b94a278fabbaa250df98b

    SHA256

    baa97be96d6fd5e6647ce81be586ed04f7ab79c88579507258c6bf24374803b5

    SHA512

    2e3e0ddf7fbcaed3755cfff23422040ca938566bf69f19f971bcabb3d1ee6072648e409571acfaf31eee02bd67af7c5010c6aa2434bb5db434f22c029b479f30

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    9effabac81b3da15f74fc7b9315c0309

    SHA1

    efb77cdf89523079c5db134f7daeafb76ef10fe1

    SHA256

    1617b055491fbcd0a3b432cbc04280eff72dab14ab19b539c699cf0468619d15

    SHA512

    3c652255c23f26fa0a63bf4db3d0e5970044e2855cc5c8e8a9c3de98070ab3af72d5fd9ff65cb0e18f9681ead1d0799a4356656dd5fe03c408d1ffc367a10de8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    52885b5cb85fa0aabd85748d8e866246

    SHA1

    980b4ed6650a95ffb3b00397e33943339632a91c

    SHA256

    9b3fc7aac53f3c1530ea9861190831228e4529b86744afee3c4482fbdce49cbc

    SHA512

    e55b2c524c5a64d3a3ff25f145baa7de251ae4486b4ce060cd6246554a53c7c76b917ac01b9834d63af23b00b096c18b13ecc78089275a2ebec0781c24887636

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    42e5734c5c45478a697275d983e94916

    SHA1

    167efc9ae9853e9069a5f7da56dc330401cd7731

    SHA256

    331cbdc12675cd10234b5449e527c88fa2a217e12006b2ef8c03b4611a8c29e3

    SHA512

    d554c6d12ea1dad3a0fcb68657dec927fa9de8aab44b7233f8eafe1ef1d1bd4b0bea3dac038c5176af3756384c39bfeae41de01588790effcbf4bd421f144111

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    5b65c80db2bf040d90634f02bd6eba68

    SHA1

    923567994258c23d2bba2e7bba8de8e551b6f952

    SHA256

    33a8daae46cf6e86764267245e260f56eee67ce5424d02fd6a4992041336fbca

    SHA512

    a6a4f612724a6786172a2143a38b1fcd648f2a5847d008e24ca89d265b07a5eddf8f78567277625764619edd03aaf316e44f077876a012d018944bf189fdac39

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    7e6de71b2468ee57f4fb990c3cd789aa

    SHA1

    581ee81833b29e81b1828fce40fc57eb831375f1

    SHA256

    e0256845fb64532b9250c5cb6178afaf1f48b2218a238478523702042a3287b3

    SHA512

    df5ce453d5454a07e8892e8bd022e93bc7a4fcc2cdfabcb59df8c270c0c9bcafb5382befe6f1d211332179099531500642672d88edd28daedfaea6d48b810e26

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    4136e3146cad1b0fbc23469e8bb2b9b0

    SHA1

    8df020edb9e26d843863457826d6d5741a12ffb6

    SHA256

    1cabd2cb175d842812899c6450202e07e9a3a039eefa830dacdff0a124be113d

    SHA512

    66ec99f5b1e7d9d8a0a865d4d2df4d368680ae5f4e1a10d5e2ff9de54ba301c165793b939e8bfaa8d738972c129f306740b43c1771529c6bd8f3a8e90b7e094c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    7b45bde0431332dc68956609943460ac

    SHA1

    0e7e549bf3d85c4a6730c166cf600d3e8ff5320c

    SHA256

    eb72fd6eba683ecdd5aa1e00a6c8891b50c467a3489407567e7a16647716f34c

    SHA512

    cd390f6b5cf4b77495b39358146daae78c3de316175c2c1692891ec7feb2c8998608e3a5b8dd5c1ed7039a5d4922df429fca4bd9b1623aeb4ddcf0e9c386826a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    7902b3e502c12ccc86c3c82eacf32d4a

    SHA1

    888966abaa650060b4ce47e4c60fe159eca9ee48

    SHA256

    921e95e12bd0a8a669fac891bb8e5308a4185a5fe2c0e18fba94983a0c7b1fd8

    SHA512

    3dddf88e8a4127f836bd68a8f7fa6ae06d5ec83619a76327f38a21d0425ab3771800ec9aea045a0b97385ac02c8504ff8bb0d4efbe765bec0fdddac3058e42f6

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    16f1a2e2af1a8109d4fdda84e94641a5

    SHA1

    3a6dfe1584308236621371fe6a8863d1aff1cf40

    SHA256

    b0f736fbb7aa785fca6e6335b8f7854fb8c04c2f9fb81cd382e07a92d1c6c8df

    SHA512

    7568e415b66bf97086aee7dac062f0fcc59d4016ffc33ec04736aa04958ff693720b82fb19e0857923619ed4360b81e5f932f1cb5d134447ca4860eb1ae5d498

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    aa6694b60852a714bd3ae9bab6d6d6c4

    SHA1

    bafe513d4161988bbbc14b91066bef538d4a3c1d

    SHA256

    af187a0c631cf2506353b93099e75c5125bf33ebdf53a2c217d2ec96d5bd0638

    SHA512

    818012bad764347f23788af7ca204c22baf9c6af694c0a4a0d7c04b44786f0f34a6bafa8ab4aaa0ff354ed6e8460f67688e98bdca9914214a0f691f8df62c5d0

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab91B7.tmp
    Filesize

    61KB

    MD5

    f3441b8572aae8801c04f3060b550443

    SHA1

    4ef0a35436125d6821831ef36c28ffaf196cda15

    SHA256

    6720349e7d82ee0a8e73920d3c2b7cb2912d9fcf2edb6fd98f2f12820158b0bf

    SHA512

    5ba01ba421b50030e380ae6bbcd2f681f2a91947fe7fedb3c8e6b5f24dce9517abf57b1cf26cc6078d4bb53bde6fcfb2561591337c841f8f2cb121a3d71661b9

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar9209.tmp
    Filesize

    163KB

    MD5

    9441737383d21192400eca82fda910ec

    SHA1

    725e0d606a4fc9ba44aa8ffde65bed15e65367e4

    SHA256

    bc3a6e84e41faeb57e7c21aa3b60c2a64777107009727c5b7c0ed8fe658909e5

    SHA512

    7608dd653a66cd364392a78d4711b48d1707768d36996e4d38871c6843b5714e1d7da4b4cc6db969e6000cfa182bcb74216ef6823d1063f036fc5c3413fb8dcf

    Download Submit