Overview

overview

7

Static

static

7

Spotify v8...om.apk

android-9-x86

7

licenses.html

windows7-x64

1

licenses.html

windows10-2004-x64

1

quicksilve...ace.js

windows7-x64

1

quicksilve...ace.js

windows10-2004-x64

1

Analysis

  • max time kernel
    134s
  • max time network
    134s
  • platform
    windows7_x64
  • resource
    win7-20230831-en
  • resource tags

    arch:x64arch:x86image:win7-20230831-enlocale:en-usos:windows7-x64system
  • submitted
    11-10-2023 14:18

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    licenses.html

  • Size

    1.8MB

  • MD5

    2d0ce6886e0879d82423a72a61e25478

  • SHA1

    9995d5943ab31a652dabd412b8f7f6d0c7f87742

  • SHA256

    aa9201dd0fe5c65745b0ddb4ea7b83bf9b61e1c3f3debbae884bc47458d80726

  • SHA512

    1bf810001bce87f0a5bd0e40fd4d6dc2e4d36a66fe32121a84e457f7295f59832d6c5e79634944c0225e1d1d3300031513c28a8670aaaf7bb4e5423ff5c3db82

  • SSDEEP

    12288:53V3e3P3D34353/3q3q2w2FDS303w3e3w3a343H3S32323+3n393C38303J3l3fz:P7q

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\licenses.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2824
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2824 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2576

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    7a430cf1973314036ac325329f0008c9

    SHA1

    3cb2ebc0d009ef20610376dbf425a75ec064bb31

    SHA256

    ce64a82d98e624dcab31eee29272639649357bba6a9351ed2e5b74e562d89703

    SHA512

    62a25ce8f8c79fe96d352d0dcb78175301dfbb1f87e6e5f0b6d79c5a161d4ef46cff42ce8a649802f62827d60a1980241ea1d93ec758bcc2255899ecee22d8aa

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    5e4061438a9cfd814562ab203e9f79fa

    SHA1

    c7a7763f315a682512d1bc8fb242362b3ef5d813

    SHA256

    d6ddf2ae7f41af75c4964756ce231362e169e46218f481b03f674be86294d4eb

    SHA512

    35f212c0eee56574cf90b06200d3a22f8ba39988c86e50ea0238035440fa08840e0003fc14d7b47911071273c6137b05f55467c5e3f842096c746b646ed28835

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    5f8c44d489296a458868a80785badcff

    SHA1

    a5f5820f0d4f66311e2f1dde7fa04a8a34f1cb8b

    SHA256

    bf29a6b9af89a677083955e90703504050313b73a773c8c947d3afa882c8a960

    SHA512

    283f69b1dab801d24590ff3d418be714f115d84c2c50984c61f769b2d0a30fdffe92b279ffc334bb71c5192968441898c9961cee73b4acf016662780919d4208

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    0504f4dab69d3132c450d2905acceb3c

    SHA1

    270c80faead4c968cb533091f9a3b4ae8e8f6086

    SHA256

    6590e8cc73a63ec0cf21dc2076f438b1bb622102afbc943044916f8221a6b23c

    SHA512

    e7b434660358314ee44cae96bccf075d87acb5aafa3b70b1da11603d81b56c8abc0d5540da9ef848e9a8bb27c05e9250d5e2e93f97bc58bce49a50a96d8a0145

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    ba63d8eac243020c02259e59c944dd65

    SHA1

    f1fd3dbaf4307e896ae5cec44cdbc50dc55c52ca

    SHA256

    6658ec299b3194ff2d7af3ab09f04ec31e74634c79544ba8f0cb45919b5935f8

    SHA512

    eb9de5e0583cfefbb5dc5a82d235619e809d84c91b7428695fd3030707b563f3cca0ad4e7c354478e48e199e52bd1d72fc0e0fc5e2b8cb633a0cbfa17cae021d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    7e04176d739047d4041aed4436963e04

    SHA1

    c9f4690d68d9f7e7aefe6181d7d1b43be9e15d9d

    SHA256

    70d4c9328241b0b2da3c4149b8abdbd7a41523402b07a1ccd95f632d5822a1f8

    SHA512

    4de0f33cdab6007b1d8cb9ddad0e5dcf8ce6ebe0a90d543ff85b8e90ccb7651ab4f389d168bc23621e610406613dc5c7846b8da93b2f01aad2304bb07370b74b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    7e67829dcfc750d9ad597ad8e3bd656f

    SHA1

    62316621756c914ff09514f8ea31d65ad234200d

    SHA256

    954c1f05a1ae6306a25c3ec2acb22eeae93459b185f2601c78917172ff04c497

    SHA512

    ccb622aaa70d18502e16b5d93f657899cb4295a7eca9601dd746a0ec923f17e1bce3f28cac3f55a9fd2e32ed7468717d09586f7a238daf0b191cb85fb9cf2704

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    c13c4a1a582fffe8fb0a37f919e69efe

    SHA1

    e4216d9b98d5080ff6745c93d0e56d68ed2d6243

    SHA256

    466b39899d9add43e595d6ac04a225e0066e16ecce8888be7e6a1c672f08a649

    SHA512

    7aaf5a5a78206ad4509bde8a746e4e93a4af9edd5361defc568b91aae7d33b41c5851c54241fd18492f0c6edff1208640d04a515ca8736d423bc3de4358b75f5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    a0ebf912bdcebbdb214a3e4e6975505f

    SHA1

    4f7fd1a90f4779f8aaf120f8365fbbe182f80539

    SHA256

    8b7c3a253642b0d82468c5c2ef792b4da568bef865af9abf55a7b19482f2f1ee

    SHA512

    77b3abd32106efcb0e7225844e5506450803ba955a7f08e4a8e192c30c2551559460a31f56390c30870fed6c8c407b8a29f072a0bf8264765ac4b08a4610a57e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    a0ebf912bdcebbdb214a3e4e6975505f

    SHA1

    4f7fd1a90f4779f8aaf120f8365fbbe182f80539

    SHA256

    8b7c3a253642b0d82468c5c2ef792b4da568bef865af9abf55a7b19482f2f1ee

    SHA512

    77b3abd32106efcb0e7225844e5506450803ba955a7f08e4a8e192c30c2551559460a31f56390c30870fed6c8c407b8a29f072a0bf8264765ac4b08a4610a57e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    5a017cd6ef262dd3889e23ad06968a0f

    SHA1

    a70a685369028bc90dda676c5e280985d130e678

    SHA256

    e7457637bf8a85ea5dc6053899e850f4048f432de62ec6be0f27ac9e9cb338b9

    SHA512

    3d997d113826a5a2e54446644c45d0e36590876fb92835b0ce55f870554944d198e79db6309f2df4c9514124c6c95bc80326bc037a4732463fef487e9c1bc70a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    938700a867fe70f3cfdfa041a3fb218a

    SHA1

    98e638165df6a4f15676ec68ba4ed01c5243a0b6

    SHA256

    8888b216c69e558dc94254445c4b2d9a934f913f19f2c61d073afe8bf4263223

    SHA512

    e2776c39a5cdf2c39e9effdf1d7eb0b961d0dcdd967b7389f42b51d8c24170e737a81a0dbf5957a90727513155258198b5242864963af4cc09827e449d9b7784

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    7254ac9fd89342fc907362fac6c2cd18

    SHA1

    934d9471b4b0eb99c2f478cf9256e6720bb6ef3a

    SHA256

    74b18b2f4e98fcd3e7ee87aa93c1b4c02ecc1b432a8846825a739ae31897290f

    SHA512

    0969924d9f6daa7a4a9eb8b82ebe6393ec4afaa0e8d4e91739502f80c049eae245321aef498b1a35bc655f11fe0248d2469cc0e9a5509c2fbf9f773f280aa462

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab800A.tmp
    Filesize

    61KB

    MD5

    f3441b8572aae8801c04f3060b550443

    SHA1

    4ef0a35436125d6821831ef36c28ffaf196cda15

    SHA256

    6720349e7d82ee0a8e73920d3c2b7cb2912d9fcf2edb6fd98f2f12820158b0bf

    SHA512

    5ba01ba421b50030e380ae6bbcd2f681f2a91947fe7fedb3c8e6b5f24dce9517abf57b1cf26cc6078d4bb53bde6fcfb2561591337c841f8f2cb121a3d71661b9

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar807D.tmp
    Filesize

    163KB

    MD5

    9441737383d21192400eca82fda910ec

    SHA1

    725e0d606a4fc9ba44aa8ffde65bed15e65367e4

    SHA256

    bc3a6e84e41faeb57e7c21aa3b60c2a64777107009727c5b7c0ed8fe658909e5

    SHA512

    7608dd653a66cd364392a78d4711b48d1707768d36996e4d38871c6843b5714e1d7da4b4cc6db969e6000cfa182bcb74216ef6823d1063f036fc5c3413fb8dcf

    Download Submit