Overview

overview

8

Static

static

1

HiWaifu_AI...d).apk

android-9-x86

8

1.html

windows7-x64

1

1.html

windows10-2004-x64

1

2.html

windows7-x64

1

2.html

windows10-2004-x64

1

3.html

windows7-x64

1

3.html

windows10-2004-x64

1

4.html

windows7-x64

1

4.html

windows10-2004-x64

1

a.html

windows7-x64

1

a.html

windows10-2004-x64

1

a2.html

windows7-x64

1

a2.html

windows10-2004-x64

1

a3.html

windows7-x64

1

a3.html

windows10-2004-x64

1

a4.html

windows7-x64

1

a4.html

windows10-2004-x64

1

b.html

windows7-x64

1

b.html

windows10-2004-x64

1

c.html

windows7-x64

1

c.html

windows10-2004-x64

1

d.html

windows7-x64

1

d.html

windows10-2004-x64

1

e.html

windows7-x64

1

e.html

windows10-2004-x64

1

f.html

windows7-x64

1

f.html

windows10-2004-x64

1

g.html

windows7-x64

1

g.html

windows10-2004-x64

1

h.html

windows7-x64

1

h.html

windows10-2004-x64

1

i.html

windows7-x64

1

Analysis

  • max time kernel
    134s
  • max time network
    133s
  • platform
    windows7_x64
  • resource
    win7-20230831-en
  • resource tags

    arch:x64arch:x86image:win7-20230831-enlocale:en-usos:windows7-x64system
  • submitted
    11/10/2023, 17:17

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    d.html

  • Size

    4KB

  • MD5

    ca4d3aef3f3b966ccd379f3d1e882fa9

  • SHA1

    d431cc19430784340a1f243523f24a745d920353

  • SHA256

    a37577ea9e338d0da8981e9e6916678c15d37ff8fccec4ecfb5e9e02e5ae8f7d

  • SHA512

    1a2fa6351b4ef818d786882270d4eebbb6f4aa041062919692eb4373a229847791606b37de123ddcf4e30bd32795ad4a5121a5733d07f0d5fb103e1260eba400

  • SSDEEP

    96:DgrefZks0cHamFDs87DVoB85nkYKQs5yPgtiyRgzXVNpPQkLDVQPa:Erefdng8nbhFLSa

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\d.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:3016
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:3016 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2120

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    d2979901e5e841ac6a85841cdb115906

    SHA1

    c1fa91b374e2a434a597f2e8febf4d95b17c68e3

    SHA256

    ac80b1353ff68ffd99207194e29cb9d1b9411723a467585646068656dc182d17

    SHA512

    3c3e526490a0f6a5fc5a951e849e5eabbde3b5a88d94b7db04bf669e7a0153e12a3bb994099f3babd9aa4d34f7d5bf65b2e4cc64a196966ac1198d3f7e750a66

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    8b7ee95afce9cb6238a544008c4d541b

    SHA1

    58bc9a10db0b49abdbe5921261fffaf6c101a871

    SHA256

    6871ed183322dc10f4b0d9f771a28331c4f9fea38ee3c34743f0fc263b013f7a

    SHA512

    2091721e9c92f4e74db41bd81fa88b51a13da4c149a7c707254572aad32b86254ec6ad0c1a5dc031137be24dc7329022c0afb4b6fc988adf961244d31308ca89

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    e664351543d541bf45a73adcf18b8260

    SHA1

    fe3fb81d7e84118949509e245ef4b8c74a552264

    SHA256

    c9dc1e6e33b2e11af7ab9553cd6683cb1fb3b932586abf51c06e6466d2b73214

    SHA512

    75ce3d19c6965f5b31314be2eed0409f911d599731f08ec96a9e0b235d6571903e0aa6879cfac71e9576ae543c094a70c60369b8a6e3c48a53257ff990d865e2

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    e50d6434c38ba15366ce89a741abadff

    SHA1

    48c7665a765ef8166f122512070b1a829871ac74

    SHA256

    39095a3ff8eee8e53f2aaa0318f77a429465696a073bfb30011ccd996069bbc0

    SHA512

    90dc9e60151fddc331125489d28a27c95fccfdae26c572f34af5610b5a0ed6a719b88b65a9f0457dc95e036100a104ef4467a747ee6c44a0da57addbe1777e57

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    53689080e492bae01e9d756fb5586451

    SHA1

    2045e4e106ec5b5cc64f7eb15cff0c7fd4fef589

    SHA256

    b3c8ef0d6b672cea19d6419b997ebd6aa59654889edf266217db1a9f85748150

    SHA512

    44243a5a28e2d315ed33ce41280e84497ab23acfda1b9e9d8c3d4ae7182d501fef05f17338b4317b83e64ae833606cec4b78b3c95de3f3b5b17c361c522a4eb0

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    dd277f3696fbaf37d8a4b434f8bb3fa0

    SHA1

    f504dc43972a3b64e32b69c672ccc5a7e180cdf8

    SHA256

    2141f28be4dd897c96b1518066d749a69f844b5081be592a9a09505e37bc945d

    SHA512

    e9708d1d573c2ce5f6e58e325a56bc062ca505656ee99b4324a138ba8a940913e394ebc61f21d57419509780439d287a57e0949199d5501e1a743c24d069e8c0

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    549917e4990a260aaad773735d889a9b

    SHA1

    a639001cb31103e85a682cfc620ae2c4c15edc25

    SHA256

    01156044ca3cd7942b72e18d2e9ebe80d7cfac41941322aedbbf6bbbb7b638fd

    SHA512

    61ce8e0563e81fe74ee4f3af9fd213ce951233dbd2052deafa59b5e6ad675f26b5c423c612fdb45b180d063c81b2867a741be03884b42def552abfa14ed7d120

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    8b76d668180960d9d9bce8855014540f

    SHA1

    7800d7d1dedeb360b41101d0356750e3f42d58ae

    SHA256

    40d2c48a7aca69c0eff69d1318f288bf1af64514751552c2bef370a978ab1165

    SHA512

    d8d0f86802b312390a339c5d2c3795de84a4a22cb5f9b14ce9bf72d1a1ed43f32db9cc01e80544bc7072dbff188c7e717ea41d2120e44a5f6908c5b23e014cf9

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    a596e889e5f910c1853098bdbca03923

    SHA1

    a3238a8841dd018cbe90e1c055658bf65415293c

    SHA256

    cce1cab5ed7f27c67f4385c7064f32960ce2ca0fb28b92b2fabd77ef407456ec

    SHA512

    37d81acf3a00e4cce36f0a4e1c5432137f737a3cb8351857a739a5c9e6fc7e929b8a92650389672a061a6cc21e8fff1aeb76c936a85104fffe9fc9bf53fc571d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    96a06da37a8e9e67c6f74f87d56aca0a

    SHA1

    cfa651a4b01dd8d550556ffe234f81383b2e1050

    SHA256

    7e4ed80d2914472dbb6db7c6593d6d49de1509a2aab0e4b219fdb2f98019f825

    SHA512

    22db52b4933bb6becefc60e0685179ef2a8a1c3ecf9313cb02fa544389dc4476179cb1c31e1aa10b34051f9490c38b62c78a702d3f19d83194819750a1685ba7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    dee412ed8a0ec38a878c77e858337557

    SHA1

    0808f80301b46dac9d0148fd961c44bd0228bb93

    SHA256

    3616b6d56b7b609691de6a307f89b692ac7ec3f3f4c054f662a6facc2a06d044

    SHA512

    7d668d61792fb54f5f1cbbeb73012cf315202b36e48ab12d68aea7500bbeace2959b2096b028c852d3e2911789ca38c96e0c0f9ea0438db24b178810dbee1861

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    ae37cb041bcdfac16bfb6bb6aff1f343

    SHA1

    787da406aa24fe2449734dff27a899229664a7ed

    SHA256

    adc5b4c0ae1c44822758c40bb03d9dfa279a4230f5274b54c7fd047b1268afc5

    SHA512

    5fd75f2fed912ccc8a7ead707e834025b6cf3ee8c791fa4e31e2171343ab23dfe396b9d0611b26041c9fb493e8b4db6c71bac1306da3b2aff8311bc176fa0a78

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    1cb391712235fe4da29481478b2ffae1

    SHA1

    74f5a9f52e34c7bf34bb636d66741f7d4d93bf79

    SHA256

    686511bb72f860a12339785c3010cb5449e9125cb40cc536be097e509872f6ad

    SHA512

    34c127d01ae5ebaaabb595747e4b9b8c6ac2f14b17f62dc5d29c44fe008c5d8bbffb64cfb30a3703c4c97b3344bca9f48e4717bd827fd7d069f47785bb1dd707

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    7cfe1959db84f868a5c88d75663ab4b7

    SHA1

    797ee62a840998bf8c5bac6e71e08dc4c1671fc7

    SHA256

    5bce03f24718c14b1277ad2086062e377d3fc0f68039b685b13a6dfaf87116ac

    SHA512

    bd46c419938801d12b6075d6061e34752e9a73f9de05bde20f7ef7ba9118b1590d5fa0d3cfe3084c23541e0fba821da3b7b17517fe3a5c16b74a751944436f42

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    c26dbe6530a9c89b9220124f868d2529

    SHA1

    22e54f65c835ceb06e3bebb137c591c378689142

    SHA256

    682516cb9b20f086ac16b971774b2ea614823d453095b438dde8df4ea9e7701e

    SHA512

    a2f119be9e88b55d5a38fcbb5ac01938de30c91440adea74796786d7b3d119566dd74733e55aa6fbbeba9dfaa23556397e0cc7a7f66a74cc1f477d7aa675448c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    51b93b5b9b7165c47bcb66a40111673c

    SHA1

    d7b88cd83c28dc0d78fe03e80810b90e1255e349

    SHA256

    165234f153a6ccab65618fffc75376789ee5e47e71adf62ab03ebf4f61b8650b

    SHA512

    e9852629c3890b6d35153f76a209d06e55bbec9863e7a4771f1be7dcb2f35a9f3c06b6f94befd9e4b5f30f0fa5c5420bb6db7c282f17fb2cb5db2c248b5480c1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    fb3faf8b1f4103a03484d90fe97548df

    SHA1

    01a6ce165cddf8b48cb76df5cf7444feceb0008e

    SHA256

    8acff8b1197d5bf3858df103adeddd1a59cc63d7552cb8e4b492fef84673dfe0

    SHA512

    573a8d085d121e71975b0d14deedb1377a8a5e53ec09415855298f8341515130918ecd9194183f4c69d4d5989dc0752e7368878293b49fda056393358e0876f6

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    2d5f021bed4b2b110e673c76ab9901c0

    SHA1

    b286102d1014e5f721fd68fc7962341ded15fa81

    SHA256

    503b4ba4bca7a0b1a0ffa1a4a3ee1cc2a4b75887371b5de8cb8ed1d367409c82

    SHA512

    926b3bfcd8e2790354673202d0343e06d5458f7ced723f3a3686f507d507a7bffa9817ffea452936663defb00ecde91e74bea10efb6644fc0da94ce778a0f00f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    24a993160f93623b4fc03fbc96527d6d

    SHA1

    305617e0aebaf7ddaff0d8be0fa32058f29e1303

    SHA256

    f90a34193fca323d4dd5d21c6b8c96ccc67830aae4723ec64634411779138c97

    SHA512

    aec8c1a7047019d17fe53a7497fcf3e4331ef6d8e7db8bc9a215157f9194cae9185602ad621a9922b61917951aa63d4361d1cc4cc91c0cb1e54fb46a9faab725

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    f53002d6fcb4c928df40b6cd27d68be5

    SHA1

    573b246ea9a7b21ea338afa2ec1fb03f9f98fbcf

    SHA256

    47e52b9d44583fe3223b928a49ef0933565cfe135590d9be5e15bbc70f02a3f6

    SHA512

    b0a3553d88b10343375bc9c8cb90ffcb23f4d311211d3d7729855ae23bf627253126b6d5ff6d19fd9507b2fc9bb4a29002af1e4a7c0c4f07193a05dc584c5920

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab54B6.tmp
    Filesize

    61KB

    MD5

    f3441b8572aae8801c04f3060b550443

    SHA1

    4ef0a35436125d6821831ef36c28ffaf196cda15

    SHA256

    6720349e7d82ee0a8e73920d3c2b7cb2912d9fcf2edb6fd98f2f12820158b0bf

    SHA512

    5ba01ba421b50030e380ae6bbcd2f681f2a91947fe7fedb3c8e6b5f24dce9517abf57b1cf26cc6078d4bb53bde6fcfb2561591337c841f8f2cb121a3d71661b9

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar5576.tmp
    Filesize

    163KB

    MD5

    9441737383d21192400eca82fda910ec

    SHA1

    725e0d606a4fc9ba44aa8ffde65bed15e65367e4

    SHA256

    bc3a6e84e41faeb57e7c21aa3b60c2a64777107009727c5b7c0ed8fe658909e5

    SHA512

    7608dd653a66cd364392a78d4711b48d1707768d36996e4d38871c6843b5714e1d7da4b4cc6db969e6000cfa182bcb74216ef6823d1063f036fc5c3413fb8dcf

    Download Submit