Overview

overview

8

Static

static

1

HiWaifu_AI...d).apk

android-9-x86

8

1.html

windows7-x64

1

1.html

windows10-2004-x64

1

2.html

windows7-x64

1

2.html

windows10-2004-x64

1

3.html

windows7-x64

1

3.html

windows10-2004-x64

1

4.html

windows7-x64

1

4.html

windows10-2004-x64

1

a.html

windows7-x64

1

a.html

windows10-2004-x64

1

a2.html

windows7-x64

1

a2.html

windows10-2004-x64

1

a3.html

windows7-x64

1

a3.html

windows10-2004-x64

1

a4.html

windows7-x64

1

a4.html

windows10-2004-x64

1

b.html

windows7-x64

1

b.html

windows10-2004-x64

1

c.html

windows7-x64

1

c.html

windows10-2004-x64

1

d.html

windows7-x64

1

d.html

windows10-2004-x64

1

e.html

windows7-x64

1

e.html

windows10-2004-x64

1

f.html

windows7-x64

1

f.html

windows10-2004-x64

1

g.html

windows7-x64

1

g.html

windows10-2004-x64

1

h.html

windows7-x64

1

h.html

windows10-2004-x64

1

i.html

windows7-x64

1

Analysis

  • max time kernel
    174s
  • max time network
    219s
  • platform
    windows7_x64
  • resource
    win7-20230831-en
  • resource tags

    arch:x64arch:x86image:win7-20230831-enlocale:en-usos:windows7-x64system
  • submitted
    11/10/2023, 17:17

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    1.html

  • Size

    6KB

  • MD5

    01468f16d0d26cd6563cb08a9ee81277

  • SHA1

    274599e5974679673337626de4d25edcf98bce61

  • SHA256

    ebdf02e5d97212e699587956c86e1a16daa606cabe99f2d3c0d309d07fb0f111

  • SHA512

    6c04cf4996c7c324626c8e3cf1cee3402377ea465013e86a68b028a307120adc74d9af4829ccb68849b992f58fbcd14dcc9ee277fbfe8d0a7ebb63b6d16fe4bd

  • SSDEEP

    96:kHbYcZSgieqpLelQIEc0cco8gNAgZC3a3dxfxIDunOc9a/Ijv7/7Fv+X9Ea9Qh0R:4Jci1x46CKtzM5Ut78XgTCQbE

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\1.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2736
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2736 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2740

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    7a6f537d33fb524c90230afae02b0f09

    SHA1

    ff083d58ee2fc9779764f7b4eee09ff653146d0d

    SHA256

    9c268445b4152120242f72e6355d1a3fa55aebe7831c3066ead3cd7d766d8001

    SHA512

    e9e085d3d781d7ac64ac646d6737cac81473b3ff25f22a173cc6b16153d0759baaf04070b9e37512da8d3c352601104dc7eef1d342df04f4e39a5e0572411ac3

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    a7e5716733dc24393e71bd75138aae6c

    SHA1

    c40175fda773854d73102f62cfbda6d163e3d0b5

    SHA256

    db81cacbbbe89d3f09cdb519396aba0a64d8026f86deea4a17bd6117ba3b83a3

    SHA512

    d0232a887b18854a501e55339580072d3784d2fe61f526a5ad7a2a25ed0f99863ef2459698438a79f4e1fe69d5fb699bb714014e46ff26190661ad2f7c51cfb4

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    1a802a0960c4363c517a995a63e22ade

    SHA1

    fda257a60fcdde515bfaa18ce5d22d509582548f

    SHA256

    a6aba5cb1b119398326a2d511d21cd0e5c26e03ce6b40cd5a368f0d5dae026f7

    SHA512

    a6b83a1dda6b72453dc090eca4f10d8c7dc0ad3e39a6461af7623b436c715d468823006faaf6f028e3bfeca0b98623c42707a00c96907d9c94e37e03826e4149

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    d10e1479c3b1e890ee99682cb79ae476

    SHA1

    2590869c2851ec600139b95761564fab1f28ade9

    SHA256

    dd8adfb9f9c07d3ef81c2b6e1170cdfe62ad57271a3ce5a02445b52205d2b786

    SHA512

    6d41c57076cebb65d6a553a9e9617df9c08aadb3fc712044e6c0783a2c511659743174ffccb85c355fe02c84eea15ba5a532a10505b1f3db39842fd7d7224a49

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    afc03095c7b19c34f1aa9451eea27bf7

    SHA1

    8ca3d8f5d1d0f17518b22f6596ce8f9f79f4818b

    SHA256

    f93af5ccff27e09c033bde5d9edd0c3704a8fd5201a1cadd3e9ea473199c1232

    SHA512

    232b9dde52eb37d52d37acb71fe2a23b49520100e691f2e67f64217dc81c22a26326bd0bcd76544cd3fcb8359e4d29d180c1a30f00831bf2b060a7fae0e52598

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    029ef4fcd0bf000703e89bd6c366658a

    SHA1

    42dd8c0d0039eb93b416ca12996b384ab2a137b6

    SHA256

    2227f641e50d571ab1452ff890d58b93131ef2197c42f90d44df514f14596305

    SHA512

    5f96725a63f378e441aecf45ddc99d10d4066e60ebd9b314a9f65a77aa76d91484dd22fa868084dec381a5adeda01344b3820947d09952c29dac49c1fbf51b34

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    462c0272e499a4b9302a78eac775565b

    SHA1

    4283b137d4552187200c2bba6c27ffd798219638

    SHA256

    f6f18a7266ef8105eaac57ee555e7e734c2865b94a9a9db5203f6fedb232b058

    SHA512

    363117a5383ab411e9752c5da17af1204b6fb1a1221b1a4a0ff0bdfa168dac12d676d41bd5477a51cf4a2c93ceb4313046c72d2fd3ed52714f6384c7b4d17128

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    1318c3562b061afaef4f6cb40e792140

    SHA1

    8827f3cac3c3d53597155d743adf08e03ac1e7ae

    SHA256

    af26a38ee891f029d3c232fbe15ed83fab4d50d1bd0afe86acbfb2325d49f03d

    SHA512

    d621d85eb130f574888f37e8d2af6570c6e56e81f039d5afee774b46adab5b242aab72e8879b83b48c6cbfe459e0282d52e81bb86a2a7bcf530f7e6a653069fe

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    c970dea4d56124a645a4d4cc7f034f8d

    SHA1

    f3ddfaab54377c90e805538f38b81f895e38417a

    SHA256

    f1d9b86afb41bc31e81260820753b961ce2cfc03eaf5444f1d0bca1ea407b7c5

    SHA512

    bd1831ac86453e0c8950069009438d7c5d2da31dfe272a36e101dda4db073ee3c59a2c36aace838036c67a9dabeab80466753bbdbe705405f5c75e76015c654f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    a42d87df1e6882f22bb59c22124cb5a1

    SHA1

    2507ae1a0052c763fba2510a91de547f6d99b67e

    SHA256

    da8027f0eefa9298d977e8845a3a1e894d201e3fe442427bdf332d10da458ec8

    SHA512

    2156d5bb8c30c7689d6c26a73a2c0fe7b730ccef0d1690725d71213015cb6d1213eda8c55bc1e54ab613efdc1cef258deb769414d7a7b75d0dafcd253746a384

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    030280728af72a6b5211b2f3390a2a2f

    SHA1

    c8981684bffd9e3eebc7f08871c77bc0ff5b26e6

    SHA256

    45e4a4276de273b22f15ad5d27d18b5d580bef6e6c3f27762ed35f4f719d4e2f

    SHA512

    d283bec221fd71ab0bef316df4744c35f23c86160a68be1f7b94b09003892522a6965f79ff9f075f440a3147035225c8d2b9cd0c0ca55124acef0c065faa0971

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    04074d966e7840c7a78d2b6c96e05fba

    SHA1

    70dc92599db0cc5be8e3b2904e0ab2eb126c6f56

    SHA256

    d797ec0d59b7498c1d518b5f35e4e20fd2327425c5c8683e0f5704c96c499091

    SHA512

    7d0178670344b2ebafe01ad7ec4325bd694d1509ceb2a2cddc55634f0371f68bd6458961672791a4ab06f38066dc322e3d033bb878f1522b8ff35ea807a4e8a6

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    eb1a062704ef9f070912b20a6e126698

    SHA1

    2e6d817440a8376d7005a4bc77d95008127fc741

    SHA256

    8e908d1fffb51ec8c22fa51c32ed4c63480ce0ae30cbeb840308bd52eaa5d306

    SHA512

    e858f29854f5b7522836856e0f9390b3dfe56b4fd93a6fa043836685237e5fcc03ee9d2073d1c27e86e85485e00381d0dd8accda445b7df56ec8ed4ff871d6fd

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    d177515ad71f4d7517ef3336753a5996

    SHA1

    52ea380fdb634f13abd5bca9a71f1edb5edbbbe8

    SHA256

    d14b39fa5292a028aa146cb2c9d4ae8b8c713a92f66415c6c67bd4d7b56558e7

    SHA512

    65e585df0d0048414eb5b6af99c7c8cca75509029616faf3509c6110acd2946137e38151ee6a972dd66c0de92082aa3c3f9ce5c9df1df5c4d51b88ffcff9049d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    f46c15dad61b761bc26c5a3c81cdc30e

    SHA1

    be56a37f0569f37d29ce618d32b7698cc1737ca0

    SHA256

    ed327c7f3508ff64e749722a5d9e153345a8adee7e854ea70e7d7c2b622ceaea

    SHA512

    6a9c47b64b371cc57c6d96806718fe4725775f86bffdc5ec4f2da9b3f76ba3cbf5b4818b752aaff9f82d44be06312e169353c10677ff6faf78b6628c5387b1f0

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    489773ff865e56357b95711309ee28ec

    SHA1

    7f62dab7dcab9e161d3f485c2223d5754cad47a1

    SHA256

    4cb1aff407c21a20ee21c032c17bbe0a4ae9db48bdc0a845748f634f71769824

    SHA512

    3f9e214cbf8521888b477d22a96eeaf0110e02afe010677dc2cf0410289d2d13febd4ef4895835d0aa91987eba6f6c18987395d603e02ecdf0cbf6ab3037427c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    4113bcee49e4469a816fccb1a8bfc068

    SHA1

    cedc0f519f4e9043021b8a1f58fcd5031858361b

    SHA256

    a7c5db56f44045b2ed2babd71109401d37c248f399c34dc4d9045d071acfccea

    SHA512

    4407af24f2f2466f9b41ecbe8edfe370890630652c0ecba29ab8b9efdac67273ac5f3d27f47a3251eae54aae22c3317191e56325345838c18340769f57e3dec4

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    edad1c2e0791aa9927ea25d2f638b82e

    SHA1

    5abe54ceeb38afc0b8173626ee68e123247ea9ab

    SHA256

    ddc61f81bdc2e5cc840b5462ffb329f787240938ee5db7519e450d5f51f8e147

    SHA512

    bc25152fe6ca7ac00551703bcb63b0740819654378cbc2c6e81ecd342607913bb8a1b6cae0f8bf9866b32e94c58b33badfe41a52804e5f6fa72fefb548c6e3c5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    f9743fc441955eb3e51db614b80b3e24

    SHA1

    bd1a5dc29b2d1beaa62cf11e20c52c2ccd2958bd

    SHA256

    c5d18b243bbaf4bc47d599594282cb38a271913f1753c2954453b282f5382b00

    SHA512

    7ea0beff5c12ac0234558475f9ec1e1fd501959ebdffa5295d951ef3fa56a50b065796702d2e89623744f0484ba0964e38633b7008a93ab824db9a0263f29c26

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    b08aab6df3634137ade5410324a1f5b0

    SHA1

    dfe7b9181d7760492ebfc1a075772e86fac2e9ad

    SHA256

    a368bf193f7ad1d31a2ceea0a6e9cdb42d9dcd8f63aa28f4f2b5f27ed877c6e4

    SHA512

    672e4b64093aadb785f6c15ab8c21cfb7ec3b59d18d567227bbc2462d6904097e4a7c211f923836559d00471cdf4ec6e3b625e0809bdc465e32079814fd6136f

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabA640.tmp
    Filesize

    61KB

    MD5

    f3441b8572aae8801c04f3060b550443

    SHA1

    4ef0a35436125d6821831ef36c28ffaf196cda15

    SHA256

    6720349e7d82ee0a8e73920d3c2b7cb2912d9fcf2edb6fd98f2f12820158b0bf

    SHA512

    5ba01ba421b50030e380ae6bbcd2f681f2a91947fe7fedb3c8e6b5f24dce9517abf57b1cf26cc6078d4bb53bde6fcfb2561591337c841f8f2cb121a3d71661b9

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarC087.tmp
    Filesize

    163KB

    MD5

    9441737383d21192400eca82fda910ec

    SHA1

    725e0d606a4fc9ba44aa8ffde65bed15e65367e4

    SHA256

    bc3a6e84e41faeb57e7c21aa3b60c2a64777107009727c5b7c0ed8fe658909e5

    SHA512

    7608dd653a66cd364392a78d4711b48d1707768d36996e4d38871c6843b5714e1d7da4b4cc6db969e6000cfa182bcb74216ef6823d1063f036fc5c3413fb8dcf

    Download Submit