Overview

overview

8

Static

static

1

HiWaifu_AI...d).apk

android-9-x86

8

1.html

windows7-x64

1

1.html

windows10-2004-x64

1

2.html

windows7-x64

1

2.html

windows10-2004-x64

1

3.html

windows7-x64

1

3.html

windows10-2004-x64

1

4.html

windows7-x64

1

4.html

windows10-2004-x64

1

a.html

windows7-x64

1

a.html

windows10-2004-x64

1

a2.html

windows7-x64

1

a2.html

windows10-2004-x64

1

a3.html

windows7-x64

1

a3.html

windows10-2004-x64

1

a4.html

windows7-x64

1

a4.html

windows10-2004-x64

1

b.html

windows7-x64

1

b.html

windows10-2004-x64

1

c.html

windows7-x64

1

c.html

windows10-2004-x64

1

d.html

windows7-x64

1

d.html

windows10-2004-x64

1

e.html

windows7-x64

1

e.html

windows10-2004-x64

1

f.html

windows7-x64

1

f.html

windows10-2004-x64

1

g.html

windows7-x64

1

g.html

windows10-2004-x64

1

h.html

windows7-x64

1

h.html

windows10-2004-x64

1

i.html

windows7-x64

1

Analysis

  • max time kernel
    134s
  • max time network
    169s
  • platform
    windows7_x64
  • resource
    win7-20230831-en
  • resource tags

    arch:x64arch:x86image:win7-20230831-enlocale:en-usos:windows7-x64system
  • submitted
    11/10/2023, 17:17

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    a2.html

  • Size

    3KB

  • MD5

    41c22139e87f8edffe2f3faf9c418291

  • SHA1

    e1c78ed9f6d198fa9ddc320244af1271e36d10e7

  • SHA256

    3af0316db011921822fd3a22e676108a8e6574daafa7bd7c17c73206d87af5d6

  • SHA512

    cc402810ae71ccb8026dc673f0a48d0479e938e9749e98a8b9b849cc4eaa5a1ef49d7b1ceecced69e341426be9ff711c64bd268b945028fbdc3d644966fc92d9

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\a2.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2356
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2356 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2580

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    419521ccd10a7dc72fada2ad9cbe221e

    SHA1

    38b0d1d28e658f15ab29102a802f2458b1fecf7e

    SHA256

    0cc70d32af36579c230954855f024766f0972e81be9025acb4e6c6edcf13cdc6

    SHA512

    0de901a10964a457dacab53b36acbe010a91b2323b1afe8a9d81e4dc124509709329aa8e2b563e60061a72f4c96e4358ad3db79ba8b48539feb7dd6150036023

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    d1f27b7da6188511bc06724b485c52d7

    SHA1

    dce7a77fa6e3b0f545b4ce947f1c1c255277ba16

    SHA256

    9a19af8f06a3d47f8c048d2d4dc5001731f3d9ecbae383916e1331f6e8adcbb3

    SHA512

    612355772c4a2f6513b3507adf4842683e69f95efa907dc679be52c3019182102f03341dde54a842e5114d4810817cd7cfd8eaa2f80893656ac28fc5f330471b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    b8d6eb15e326d0b6b73c32af4ca56c23

    SHA1

    b4462187072e1b7439f78527a60a619d1e8c0b38

    SHA256

    85df3fbfa61b27d154e755816794a34fe9cea94fb66c9e3b8c799d8ef7073884

    SHA512

    bc16e40615987d40d30465e42b0b67bdfef3dca9b34879a46ef3f0d1d6504d217541edbabf3fd771642e7e1846efa548610dacfcc63e9dcbdfb74c2f668da4d6

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    6aa0a250b1c2d41b994e1ab2b85574f2

    SHA1

    0fef8559b71921f7a35dad2133ac511387b8cfc3

    SHA256

    97e594854d8b19ce6a7cc51a88f8b33c7aeef64974255068ef5ba141d1ddcb9b

    SHA512

    9e9eb15d7f14cb6e0fa7a1005ef83f86cdf842a78e7e1c131243e1390caf3a960ff9168aecd84e0a7d57b92bbb74d8ba6e77491baa15909575f0b9b39dd946af

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    6c346f4136c50dc70cf95d23e9e4848e

    SHA1

    2f992718095edfae9b9ea641725bae4bc9f4aa87

    SHA256

    64b9e243b48fdc162e7a1dbc3263510a9c8f2b4e999cd73c1b0870d2533e1520

    SHA512

    fc5806328ed0d583f0e2fab93244eeb4c0291459329854f92b921b5842adaf366b08879991770404a47257a2c2c56b11b89248ab8909a616427c5162d3efb4dd

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    00461cf50b03cee6eb3fefcd0391e1c2

    SHA1

    c4bd984e5bdafd8d6cf08b75b1fa68b9b9919c4e

    SHA256

    a1e030fde24482ecaacd5be733be1ae3f2d26f1f867388c9254d0756a6a87db8

    SHA512

    7f228fcc32195ce7809166c2cf9305575ac71b01e7baae5d29fa63d4b5320fa4ce311f7db5f7e45b6fa3e62f841dcd17c43b5fd3d7a232bd8b0abcfaa8c7eab4

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    29c1f0d082d487ecec7e1d3290cd2569

    SHA1

    36b4e3e02b7f2f03f44717facbd9018c480cdbac

    SHA256

    10b3bb2b85b914bb85591677660e785ae055aff4ec156996dee1de7980b47804

    SHA512

    d2a074a92a9b40b76898d8da010d8f278bed795b598df645e93598952e26cef13afb6ea99e7f3647ea5104133fcf2481a40292683e08fcf8d8321405e6780757

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    2ceb78a9828c41d5d2a6740df0c972d5

    SHA1

    943ee7b416271b9ec8ececc3c5b99a8d6b8dbdb2

    SHA256

    cdd1f4ea71c72c869c85d6f76a379387178e16d1a54c0a426377a6c4d5505164

    SHA512

    fc30d5a4b7affd0831878b69248b37960673e0c3e625a87374a076d4b54e92325e2eca56b33be747006e3a301709510b26eba562f9cef6651988f6c122f1b420

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    60cd0db2e7a865142e9bc1b3bfc72c5c

    SHA1

    6c6a6385113496148bf5ec75e07cd5d67227f16a

    SHA256

    43fb7377ca9ca2f0464b24152f3bc05e78f55f6a6b02fcd65039fb0be562ac72

    SHA512

    9db14ed2f7b4d21fa64a49ddbeb13f39342adedf54b2c09a77a1233d17c3b871854f4cb56c3ffab4803fda7615a7dfa55394f06e9cc7c8d682708502b6032e14

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    f4620609ea90c79dc55438d437be2e5c

    SHA1

    d8fb7b144d9d29c92157bc4628d665f97e3eb352

    SHA256

    211e7d75e46fada9a7b1cc78c255e66ed81d130d332b13c4cafc6a7b632bbb63

    SHA512

    e7bd7c915c223d3cfdba651300d6dff8b87ca531b437e627f55d128d867420088b4bdc8097c0e7e7b766975fd4bec15074333e7db91ad752956531138da34315

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    76f62b04bcdbeebb50c2779582935faa

    SHA1

    194f354fbb7f5d822561b3fc0cb9a7327e19f83d

    SHA256

    48cb728c23939414109e18a6b3a23e24be70e8189207425f7d24dde0575c326c

    SHA512

    4c4a112def0dcbdbd27c94576bf102b3efd0818c0e4ff9fd58218532b8bae8787059c3b4d29cb21dd998b1f3635f8503e7ad577e5f513ba481a172a329f15c02

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    dac9861c73d4f6e2baf0b8bc2967f592

    SHA1

    9d3a81a42e0adaaab1b623df3d68d2acc1f28d29

    SHA256

    729e0a960e55064edb1171fc9fea2c6815cb66b86df5d9d9a75fdcb57ae2dae0

    SHA512

    c9faef6cca65a5ef27194634818185954f9606be3fe55e5105291246814813361deb8ac416e50345bb5da266e0eb014b0c2424234db87c507a746f606c95b5ed

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    fed5b0b79c1bf1d5b128dce483845af1

    SHA1

    830cdadf73a6ea7b6b70abbccd2240f36e505bb6

    SHA256

    72b80513fc49190be76ff8f340b6659eb9cb0d60b00775389eba60ff452501c2

    SHA512

    bb28093e3f2473efe3fa87beb27d16398d576326346d078354865f4872d3f63aba5077cdab5005704478100c064ca28db39993c8e347ea23daa4153af7dedf10

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    00454c9d1fa2ee29ff751eed76a1e95f

    SHA1

    b909233c2225db8c98502c2bad09656e0a3058b1

    SHA256

    476ba54f15c2122e0906c5d87f5e95ed564dd90fa79af4ed63577855fb717629

    SHA512

    87c4cea9709cc7afaa4fa0adaf75a98bd2e4cced1a79f69597ce70b063a0c4b6bf7bc31dfacbb3b5c2aa04a7c03249fae5c08cdeb71b90f6b42f3c24d5d6fe1b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    a9fdef34943bac893d0bf5225dbc2cb1

    SHA1

    4b94b4accff425e3e1f57e171a2a2d416ea09fe3

    SHA256

    b6960a499f815752eeaf39ca2fe4bd1c91d301dc524e6c09bb01dbab7f91ffb2

    SHA512

    4ac510dd1717faf0ef0c26516c9fdfd6178962bdec1c08b9360c102bb68b500982a2a39cd5f2bf40ce5ff44331dfaa8a3c36960701fcdf97bab2b83c8d39564a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    47de8145b2432887e7be5f48ceafb585

    SHA1

    a828dea66323ff6cf64c95b62adc3b14020f51c0

    SHA256

    1a8df572a6fb03b5b796aaa2ec036cad5f783dd76ea5c71c4e2414a818a6cc21

    SHA512

    949af1dd02c3235815b8b8aef941b59d4c69d85d1ce4b68e819f710ff1c3fb0ce7789432e205e7c3fed94b1e17aa175cc21b5238215a6f6a4b1e8276909ceb82

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    03f7eddb939adbceb57ec2b5029f7a66

    SHA1

    47af38f4fc8b5827c2f2bdedad6de59563d90156

    SHA256

    3099eac0d4456e0fb14cee9c6bc64ef81bc9e345ac42e37c261778b8240cd260

    SHA512

    b0b46787028615db7cc282e29126321a85ade4f362443a24bd7f1d74a8f4ebf650b93bdd14c7e007d883cd4b5a8d918282cae08ced622cfe7af891063bff4f97

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    7f81cbd84ac4cb7ce4f6b2c885ea5481

    SHA1

    773666ce89f3328c0ddd61fd6c2e71a8a7bb35c3

    SHA256

    028b2f3b3d6dc0ace35ef4756646a61c8ed0a2dd79627a754958ff298deee2f3

    SHA512

    5d85ada607a3d069396dbd14d7bdb03d1c68b2b72844f98622298fcdd18f2558f94480991065e73352370d2d1b294309b447e18e81c01972293ef58bec6cc4d9

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    cd5b10368e8c9e8651c51a15b0642472

    SHA1

    1a5c4718e77ea85d07fb9f3126d3d8485df771cc

    SHA256

    a1292efd5ebf9f848b8f37fb02a14c0d060505b7d692c92ad934b409dd56446c

    SHA512

    ddfb4d7c7676796e63bd63d8da3e3c5faa4e9933b41d9e0feed94d6558cbddf3a390be2d041b108385a9cc96ae03f736231623d419dc0e13fc75995e057bbb6d

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab8F55.tmp
    Filesize

    61KB

    MD5

    f3441b8572aae8801c04f3060b550443

    SHA1

    4ef0a35436125d6821831ef36c28ffaf196cda15

    SHA256

    6720349e7d82ee0a8e73920d3c2b7cb2912d9fcf2edb6fd98f2f12820158b0bf

    SHA512

    5ba01ba421b50030e380ae6bbcd2f681f2a91947fe7fedb3c8e6b5f24dce9517abf57b1cf26cc6078d4bb53bde6fcfb2561591337c841f8f2cb121a3d71661b9

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar9006.tmp
    Filesize

    163KB

    MD5

    9441737383d21192400eca82fda910ec

    SHA1

    725e0d606a4fc9ba44aa8ffde65bed15e65367e4

    SHA256

    bc3a6e84e41faeb57e7c21aa3b60c2a64777107009727c5b7c0ed8fe658909e5

    SHA512

    7608dd653a66cd364392a78d4711b48d1707768d36996e4d38871c6843b5714e1d7da4b4cc6db969e6000cfa182bcb74216ef6823d1063f036fc5c3413fb8dcf

    Download Submit