Overview

overview

8

Static

static

1

HiWaifu_AI...d).apk

android-9-x86

8

1.html

windows7-x64

1

1.html

windows10-2004-x64

1

2.html

windows7-x64

1

2.html

windows10-2004-x64

1

3.html

windows7-x64

1

3.html

windows10-2004-x64

1

4.html

windows7-x64

1

4.html

windows10-2004-x64

1

a.html

windows7-x64

1

a.html

windows10-2004-x64

1

a2.html

windows7-x64

1

a2.html

windows10-2004-x64

1

a3.html

windows7-x64

1

a3.html

windows10-2004-x64

1

a4.html

windows7-x64

1

a4.html

windows10-2004-x64

1

b.html

windows7-x64

1

b.html

windows10-2004-x64

1

c.html

windows7-x64

1

c.html

windows10-2004-x64

1

d.html

windows7-x64

1

d.html

windows10-2004-x64

1

e.html

windows7-x64

1

e.html

windows10-2004-x64

1

f.html

windows7-x64

1

f.html

windows10-2004-x64

1

g.html

windows7-x64

1

g.html

windows10-2004-x64

1

h.html

windows7-x64

1

h.html

windows10-2004-x64

1

i.html

windows7-x64

1

Analysis

  • max time kernel
    134s
  • max time network
    135s
  • platform
    windows7_x64
  • resource
    win7-20230831-en
  • resource tags

    arch:x64arch:x86image:win7-20230831-enlocale:en-usos:windows7-x64system
  • submitted
    11-10-2023 17:17

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    a3.html

  • Size

    5KB

  • MD5

    c1d018e3a3ff9ae7425d84696bd1bc4f

  • SHA1

    be65c22222deb8ae69ff66716465f925d92e67ee

  • SHA256

    7a24f32b015363b1a22f2ca01a15873139a30b7283fa4a61eecd4b466be9670e

  • SHA512

    1a2dca08d8f7be4135f06c49a61883482dcab8e963b6f25fe1c9f6dfba4bcd11f45e8f5d6c2f43883471d4f2a9385da2760bf1757a0c030055df59c69d6b1183

  • SSDEEP

    96:uBKfU67lbSUDv6XSRi0jcB0jVCXOiXcOV3HrWi7qPAxY3QRD03ceVJ2C1f6hF2Fv:E6/zFZQwj2s

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\a3.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2984
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2984 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2900

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    79c079a6d76fc6817f64c3f37f2d14c2

    SHA1

    e0f34ddc48691cd0c8ae8575036052ce683e3672

    SHA256

    5035e4f3dd49785cbac98bfa8986e4f31a10a9ca2c26895831a5a6e74e6c1c2f

    SHA512

    c517402ce474932c08b83db803f0e4295df7a5e734e0c7c28f6c3978973b0a17fd6dc6dcc0ec20fe991c399f0079097475cd335e48d9aef4509a1fb82bd0c681

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    bb2086316293c70b38ede25068d5bd87

    SHA1

    400a76a7c199cd0a1ee29422fce9a28fa13fec7f

    SHA256

    c7a55f99b80d19603dd7a20a9eae78b64353dc4ef9b635b2b85c5e35b507dda0

    SHA512

    0568c0b08bdc11d5fbe56b24e4daaf76dbab9a55badaa3698e73928fe19bf81f98fe30845e4c692338051220e23d9ece076c91d6d3a5cb6f3d7460961c1529f3

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    1c9241e9f1e0e3bcd0421bad082a64d0

    SHA1

    6515b0f768938a1eda1661df2b900c5c4ea6fe8a

    SHA256

    52aea45e33f94efed30d63510917891a0b99c0ae6fc40d2cc5cb081719788b81

    SHA512

    b130def451d2fc20e678506cbced64101b12ad032cb3f2af347074ee95e75ebbfd05ca25142fde4f9d5f38739f7437f23a66d3598f1f0394a378056c384eea3c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    1b1aea4a0e6c6153bf97f3a056b7a282

    SHA1

    ad1165df03270d569a1413d10c1b47501cf11ab6

    SHA256

    39d490a1e13b9f6842f39e9c2b1b74a62177276d21fd056f659203339ac7e40b

    SHA512

    2ba6685eff4f8137d83955fedf3913af748fa59f9e37c5e724ef6e738ef4eb2933862245e336f097022cd252edf9ec1fee7d6383ed387f7337690f491fd3aff4

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    a11f498b4432e6774159cb4e3296a615

    SHA1

    9b3e844aa1125e5157bc3adbaefb50237e9607dc

    SHA256

    5725e0b838b78b412453f220d7143608de10b7439d35d8401a360f757a389884

    SHA512

    6920213f3c77e787ec04855c272328a4680a5940c90e5a34fc4e698f6c96e9491a8bab047dcda6e3c9754994689a2b21a2f75c11d59e000ba2d174cd579dde7c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    070a697dd8ce74357af5be63de7bd2b5

    SHA1

    61badcdf1aed09c0ba64c44c616af2f6a6e2ad40

    SHA256

    3f0e2e213027415ce7eceffcae1c789e9d6dcaa5f5ec69a5038d1e042dfb90c6

    SHA512

    e0674587383897fb64e7eeccf47b47da466510d2d1aad980b6b664f3f4f6de35b19ba60bc43af02fa11e031a8594bf2b191039819b2c9903e41d117baafd3357

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    2f3f32a732cc9dd9b7dd8f27f4cbd787

    SHA1

    dfcf32f5b10517766025fb6527b5a239d60cd214

    SHA256

    4418b14990bf14d7f167b56ff2a7e0ca8c4781258790e85d839b86ce8ff9d4b2

    SHA512

    004304edde4fdc030a2e52b770d74faccd492dc8a8662d4661401c74df8616aaf063ffd67b07164272ddaeb5a9aab01bc2358e53f60772e2c0b08c3877f74693

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    9f290188b05e8e32c34576243875b2cb

    SHA1

    e163e874841c9d55ce698f5a2cdfd5ced2d0ff45

    SHA256

    952efacdfd14dbcd7218e23af97c7bdff7f2218471db7b2a8dfa4b8cd3c21a69

    SHA512

    1799f39fb81b659ea7db9019f7dcec9bdd9102ade4f5c02121653caba346a395c6c4012e3130fac650a38629e97a219d9691810edfdfee2406d2d8887fdc6027

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    8cb6c95e7302a2033934531fbe2d8018

    SHA1

    b010ccace4db7d34a4da921c87fb7965988cbe62

    SHA256

    9ae7ef753522246910a74d9f86ccbc56a8821eef253e2b9254c8013631cc0a2c

    SHA512

    1d4446d78234e065ec3b8afa776e1b04099ee5251fc26b13a047181a58e3134c11fd99c8dd09c7d2e4f19dacbc0aec925276a37146ba62255a8c2f3a8c30e981

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    b673fbc56c3fc83efad5bb8100c2dd56

    SHA1

    33b40906a5202ed573c18d86a5e6be913f2e1889

    SHA256

    b40d546853912ce8c3cb2805da41f617ed9b20449cad58aae98ad7c0c8584d68

    SHA512

    b79a957465abab40e569d5e8465d629da5f8bec17146afd5660965435d6db804e3047b6878fcf9d80f78d6e4b1a748d04d44a9959047da732fca6f93fd2dc84e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    55611a66b133a2886d3adb509c218fab

    SHA1

    3d22bf2f6bd52e3d92c4c60594590a086846718c

    SHA256

    1e112c2f3f9be866a23c6053ae5d040a20344696ec0f23cf292a4974548e3583

    SHA512

    67d68405ff3750409b65f91e8a80919a0ec9e43330cf71135eaba239ddeae515b79bc21f6175cd020ad571a07eb324cfab7f16c56bc3d5dd1d07b0e037f246dd

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    9a0a21b2c9b720bdfe815b9d3a13888e

    SHA1

    43355b25e837ae523d3bdad9a751a2cd6eb55a99

    SHA256

    5d0a7f7f5b9de4d2de089a841d4d284fa97095aff5ccbfe07d6f136b01d5067a

    SHA512

    16f2e7e178f11173733e2c43b59e7199bd020c5096fb7a2f954d36ab28491a6450242ab8b3aead4c9f58ffc8a6ac6d2e645c8a88c77695ee19c7b3294c140ae3

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    0159f464cfba49f4142a9d9eaafe0d07

    SHA1

    a70ce737610e55b83a96d0b1cbe65f8881efe469

    SHA256

    fc08f82abaa14a253d0862edaf56007f4188cb8ea7ebb70baebd8d543fd515c4

    SHA512

    935188163a7f628515858ec39dda8ed0c6614041e5bf255245384e538eee75f6e65fefaa953ae0b446e598227bc53e1677a6b0b391d0960ff53e7e1ca43b358b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    1a574f33b32a50fccfe2fb8aa773dbf0

    SHA1

    0ff5cd1b79114c2d7cfcb463132db7f8444df71b

    SHA256

    ab75c3ca4a2136ec87fc690c1c18afa48fb03a71348ef2e6b4dda5718482b9a1

    SHA512

    6a3d347366f1d14718a5ba8184d7fadf4569086bc56c31eb5980af548a6cec4f5752a5856b45a04d679cff79327ea9f263f0532d54eddf21e369acb583e7213a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    ea15a6dcf850458240b0e9a55db4914e

    SHA1

    4541f89f0a29321d87878ae6e85508d8f58ebc4f

    SHA256

    2982ce07ffffbd48071bfd0502d12c33e33fbe88085b47d723b887bfef747e88

    SHA512

    db47b85a5a6de0a35006d8927f960f5099c58754351774430d85a3458831ffb31d3a112c6059d9e2378d9fbf9197aab2661c233d4991680f6fce82ec3da21474

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    6991a98933f384cd472b83f56e593c02

    SHA1

    02d361ce06c027e715c08f0c7b506894e274408b

    SHA256

    096364902e876b28773f922089910afad3c8e54806061c72c3ab05f8b30a2a8e

    SHA512

    3594570d853e97d0296bf3e12ce8a06f3ec5598caffd33b09e8c3b900d0ee163a42313f3de767ac27bbda3566246dc90fe068b7ca32cbc429c4006bf0cd3c28d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    8a203fd85253892130606e3df9cc458d

    SHA1

    4009eae5bd48d797385a716eb92aba615813b6d4

    SHA256

    778899b420c804eb0650ad6a6547d6bd44c8b64c95bdd497a1083d44b288ed19

    SHA512

    27edb02b31a8c56ffa4ebfc5cbfbed8dedbf7cbf044f7b4a805791b5cf8e829bbb62ed31a81636ca0070eee4a457317703fbdca59a2e61a099f5f2e2139957ed

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    2d5e438c388da1b0815bba27fa41d69a

    SHA1

    89521547aac337e2c1c178830644ed4f0eeaafa3

    SHA256

    eb028d1053ac763aa66b0d737547c04e9b7597e5446ba9dc44ea5839bf1acfd5

    SHA512

    67015c6eaeae60303a0d351dc6b4484229aa46807a7b723937c24b141f4800698a157153a5d590ea120e247a0d10a48938f6de267f253a92db737944c941f9f0

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabB2CD.tmp
    Filesize

    61KB

    MD5

    f3441b8572aae8801c04f3060b550443

    SHA1

    4ef0a35436125d6821831ef36c28ffaf196cda15

    SHA256

    6720349e7d82ee0a8e73920d3c2b7cb2912d9fcf2edb6fd98f2f12820158b0bf

    SHA512

    5ba01ba421b50030e380ae6bbcd2f681f2a91947fe7fedb3c8e6b5f24dce9517abf57b1cf26cc6078d4bb53bde6fcfb2561591337c841f8f2cb121a3d71661b9

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarB310.tmp
    Filesize

    163KB

    MD5

    9441737383d21192400eca82fda910ec

    SHA1

    725e0d606a4fc9ba44aa8ffde65bed15e65367e4

    SHA256

    bc3a6e84e41faeb57e7c21aa3b60c2a64777107009727c5b7c0ed8fe658909e5

    SHA512

    7608dd653a66cd364392a78d4711b48d1707768d36996e4d38871c6843b5714e1d7da4b4cc6db969e6000cfa182bcb74216ef6823d1063f036fc5c3413fb8dcf

    Download Submit