Overview

overview

10

Static

static

7

IClCI 3v.apk

android-9-x86

10

IClCI 3v.apk

android-10-x64

10

IClCI 3v.apk

android-11-x64

10

404.html

windows7-x64

1

404.html

windows10-2004-x64

1

451-1262f6...cfd.js

windows7-x64

1

451-1262f6...cfd.js

windows10-2004-x64

1

486.8a5045...f98.js

windows7-x64

1

486.8a5045...f98.js

windows10-2004-x64

1

959-504d72...026.js

windows7-x64

1

959-504d72...026.js

windows10-2004-x64

1

_app-ec9bb...711.js

windows7-x64

1

_app-ec9bb...711.js

windows10-2004-x64

1

_buildManifest.js

windows7-x64

1

_buildManifest.js

windows10-2004-x64

1

_error-a4b...532.js

windows7-x64

1

_error-a4b...532.js

windows10-2004-x64

1

_ssgManifest.js

windows7-x64

1

_ssgManifest.js

windows10-2004-x64

1

a1-a098530...1a6.js

windows7-x64

1

a1-a098530...1a6.js

windows10-2004-x64

1

a1.html

windows7-x64

1

a1.html

windows10-2004-x64

1

a2-91441f4...ebb.js

windows7-x64

1

a2-91441f4...ebb.js

windows10-2004-x64

1

a2.html

windows7-x64

1

a2.html

windows10-2004-x64

1

a3-36d4555...ae0.js

windows7-x64

1

a3-36d4555...ae0.js

windows10-2004-x64

1

a3.html

windows7-x64

1

a3.html

windows10-2004-x64

1

a4-aa0b81a...e83.js

windows7-x64

1

Analysis

  • max time kernel
    122s
  • max time network
    138s
  • platform
    windows7_x64
  • resource
    win7-20230831-en
  • resource tags

    arch:x64arch:x86image:win7-20230831-enlocale:en-usos:windows7-x64system
  • submitted
    11/10/2023, 20:06

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    a2.html

  • Size

    3KB

  • MD5

    c8cc9b9a174968f01a3a48c4e13edda1

  • SHA1

    b2bda07c82cb5e053f6a93ff69c674cd82b41460

  • SHA256

    20a5c453f487632ba8bb8edb66d2b18117de23fe55bbf0d71ada2c15c5c5453a

  • SHA512

    63a612a901b55c821b0b534d8d80ae87903790a01e0978831a1564bc3712aa59f8268e1cabc7d6ada92702e693cef775923746b4cdfc18aa8512b293355f9fc0

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\a2.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2900
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2900 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2632

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    eecfac88f4e7d2372e6ec5d5ee44cf36

    SHA1

    6784141105553cd08d0675e4f82bd9b66d750be4

    SHA256

    87c04533f5a72a9342b9e0cb7195c12018993526d85faeb3c7c71e571c6587a8

    SHA512

    93e5089186093c19c7760262a8a1c3277cc87464c4afb24cd353b02b128a39b2939be04bd4b6763edea06a94654b2fdb4abcdc609e829e9565641f8abce9b776

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    838b4182307b2c2cc2c30fdc9dc7a86f

    SHA1

    5f204dc4b66cbd207e8d5e57e60a42109d7028aa

    SHA256

    941dce0293d34cd021a3166202c6d53ba621e607f1db802751a96cd7867edc08

    SHA512

    920e6f080887b9328eaac35f774b4a6d844b5ead44b82c5c1b9af7195b69aeb8962c709986c3099ab2fc6dd3e2f3b189bcc0ea185da344fd37a1e52930bc8f69

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    a82419760865072438934108df7ce632

    SHA1

    6c342baa08eed765755169ef3dca75356573b7c1

    SHA256

    0e76a67c5fdd6bbfbf27bf72e62396269ca10266074d68bab7de0b4618fef0cc

    SHA512

    32b78da5414a6df9b77f0855a657c95a8d3acb58ee7a2b43070accf5211549eebf2247c8a6d5530864e5b510ca1f699f5579c9c7347afcfb021826861791303f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    0d8a6134e39d024646572cfc4035d403

    SHA1

    8b5f84e7836ad3a4592c63ab6c5d8fed6e74f36b

    SHA256

    e89f0ff6f781e2f05275233eef3c289d284f600521c969eef073631e01d8d378

    SHA512

    092319ca96f9a20aaba12216a8e5fcd35270da0df471c099261fe402b434cc7d61ac0e44829bb4003a0913d8aed7f48862607ac5b9d4b646a112eb81d6cc8659

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    4305d0d3d0aab328f1a01058d0b76408

    SHA1

    e078f52439c45bcd46a5584d788ab79b53407035

    SHA256

    24832e75ddd543fbc3a3440c9a35b1dc0b461bc215d604c6ffe28891747fe405

    SHA512

    9edba1f7cb0d30ee2efd4e55d332bb45415bccefee6a0eef790b397ab4ac9414b9cbb6e11e9ef0672abdb6365141e2732944b0e2383315301ae7f508a84d0f12

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    6c0bf41ab665d1d342337664ff1039ee

    SHA1

    9ec890e45e08609760759ff938bb4a8bb2bc3e61

    SHA256

    4bd4934b14bded8d022a7eb2038a9c79db5ee4478618c9590bc07bcf9be965c7

    SHA512

    cf8a3b373feb531f0e66404cf5cd275bf0dc49db4dfe6a44e08b2afbd96dcbe03479908b4137f268d73abdc2a0798c542ed8b83ed78b70f4fd3cb4a08595dbd4

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    9fb245f61ec126b6b0de9dc71ec29cc1

    SHA1

    a117a9dc7a41232412b422e78cbaffe936361261

    SHA256

    2335cd9d0e1f6a60c189a0e4ff3cbe4fd34f8072370dcced857b219ddcca3a67

    SHA512

    30031d133d902899c4e27a33acac7515efc18c56f058bfeaa19ba0ca947ede3ed478b105534c9ed1996bd598049026645d9798054e68cf70a06937d19c27e10f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    91da4ae8d8c04894b91cf24b59ff5fae

    SHA1

    f790ab3c608d7046a19aec2ce016ec07a8291321

    SHA256

    eb8e25992d4c61a06df45d321dc6de770fe5e4cc828f6da4078d1882279f7475

    SHA512

    a44e8bbd1445e340b2e16f4265e8c51916fadaa768d91fa1e97630e03b1b9d531fd3f669b0bcacda6e0f60b3e0a850fc770e64bfabbfdce9688178823de44130

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    1e832f7877ee00f36090814a4fea1931

    SHA1

    18c40258091dc397ddd7fbf95219b1ef8e52a4b1

    SHA256

    afb0042ff021a700d5fd3656765d4fd48da55442791e2bc396b57886582e3144

    SHA512

    259d8a0d3256a4f36656253f53d1d6b3dfa43d78d4eaffa6d5507e3d347d0c031576018da85d245ab2854aecf89e71d19cf9b1aeba5681984036142f11ba923c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    666554054bd65cb9d6c4f94de602a209

    SHA1

    a3eb4ccebdc3792f72d92741f716c4baaddb17e2

    SHA256

    02a8e81a2fe9068b207bb027753e35f9daaf560cb459b9d3ba5da2700a716df0

    SHA512

    3a524c675a866c0d6d26752836d5c7bd3d8c39d286822863e0f5c4ec683d1442efa907abf949230f023e2ab7512b080922f0fd0b2d42b5b37b6d62ca3719f6fa

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    a7328fd0a307dc33f22a4a2bc229691b

    SHA1

    dc45e7a24db30059bd384d073e2c54904133e76c

    SHA256

    23fadf3b958da2fca3a6539d4966a04f334f5cdf699e8ff45f28f05fe7b510bf

    SHA512

    9ad0760b79264b5edec95ae2233375b83f4a1bf15370b51be9ac62dcb73757c2b1c98264ac49fd7b95cf04beeeb32fdd4e06a502416089e465b76970483d2429

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    b8f8df939145516eae57abe7e990fd44

    SHA1

    f2beb3a02062eb6c939209988420855e526708d2

    SHA256

    2e1ce98b0c48cf2d52d6e3dbde15bda192a920a10b9308a693c30507f07a0c6f

    SHA512

    392430f9a7ced21dd13f6b4c2ba3c264cecf86d012f3e39b76e92482f312c6352aad3b6ba0306ff14b2330372b1153e983ea2a52fde912d9e10df63888cb9167

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    18aa3e3873b1259873cede6450561235

    SHA1

    2b5f0e92cdaf618452fa53302de6e232036c9fac

    SHA256

    8d7e7ab00f506afba3a8bcbb2d8530523dc5492b41094d02fff21afaed6f9894

    SHA512

    cf3ba3c5b12936808f5cbcdaa37d5283bbb2f741924dc1de33feb19518b9cbd9bef6f940ded654c1aebb3b1f40cfad26bd6c024829a55650915d1d38ef4cd6e9

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    254dda3199180f6fed19e30295eba6b4

    SHA1

    9033130c2c3bcd613a7b76994b6dcea1d0c2965c

    SHA256

    3956dcc9ea2d7b3e9a1ce16d245f1de1b51c394434c74eaddc1ef7746f709df7

    SHA512

    9ba3aa54cfea796a6f40779c775350396900f1cf6305976cad077fc3450b6dbe7e654589a715b90da9e8f6897e3b2f3dd4d0844b3dec701af6e79ff12ebb4524

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    ac10da44e3a307810e25ac5004d26160

    SHA1

    488cbdc2e6524e82202dcdecef071b00ba53ee1b

    SHA256

    e4b9c26a12f9fff2b4314f63f06aa24cc58de2d89c2a8b984bcca6598077869e

    SHA512

    a680dc4e0784bf5917f4b5038a270b6b8a4616e57d5dfd8cc440385af6559797a1713b283998fe1196bf3c0862d2bae55dd3b80e5f82c01f4c5b2045dbd027e0

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    98fe9f504abdbbf39e578053e96cb87c

    SHA1

    28eb3a2a3f65fa4b8e97d48cbd37464fd9fa9a07

    SHA256

    9adb74e166d755f8a8cff6e6e0fbe97bec1f4d30030b11c8de0f8736b9486ea3

    SHA512

    883b9741e0c4e943b9e71d66380d60a6338124ea2f42cd430de5d3ffd2c12af104db4dde1e0605e6e03f3e6736fcd259104538ec80a130d4215ac6de07615992

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    b6f6bc0b0e45b58b76d6b6806801a996

    SHA1

    21a281349a7dfbeb63bc9ef9c8cff94435a66371

    SHA256

    23626ebd122072624e8c0b6bb2325e44dc7ae5e390488193ee40b370a84b0e50

    SHA512

    d4c4d66676a1137cf4e5adb6d0d0e374428a35f2ca63023090834c4381405a29b437e3948d692e4a9394e7c62ba4262a9183a6e280bcb5e6c296679b7eecb258

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    dc99354bff18971af09fe9e80f4efa02

    SHA1

    15c1ee5eb14a2f3a67e3b5ab1bc245f131341500

    SHA256

    bde579391257a59d836976fd39194fe948ca501794adae6d5a5e9d1bf06b0421

    SHA512

    b355e32aa881d96f5d21ae5bcc633e6328c1f6600345261bd8f4fd1ce5685ff9dc5276a085b7e3548c271876b75aaccfff8d2b56657e44b866856ca8602795e6

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    2c61060db44fee98c70dda340487e4fb

    SHA1

    fa220980af01574b85c144f7a12ea843ef19cbfc

    SHA256

    b3a036b9c18f518e60b241cf089e8f8fd247b9499318bba8348de11e937c34a9

    SHA512

    48d7b4f406c492afdadd224da9463ce911e0c12c2d41e8d9b62b02d77b9a1798dfbb38700462b64e085adb9b52d7dd04e677d16f79d6e8bc55139d0387aa50fa

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabFBAE.tmp
    Filesize

    61KB

    MD5

    f3441b8572aae8801c04f3060b550443

    SHA1

    4ef0a35436125d6821831ef36c28ffaf196cda15

    SHA256

    6720349e7d82ee0a8e73920d3c2b7cb2912d9fcf2edb6fd98f2f12820158b0bf

    SHA512

    5ba01ba421b50030e380ae6bbcd2f681f2a91947fe7fedb3c8e6b5f24dce9517abf57b1cf26cc6078d4bb53bde6fcfb2561591337c841f8f2cb121a3d71661b9

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarFDC6.tmp
    Filesize

    163KB

    MD5

    9441737383d21192400eca82fda910ec

    SHA1

    725e0d606a4fc9ba44aa8ffde65bed15e65367e4

    SHA256

    bc3a6e84e41faeb57e7c21aa3b60c2a64777107009727c5b7c0ed8fe658909e5

    SHA512

    7608dd653a66cd364392a78d4711b48d1707768d36996e4d38871c6843b5714e1d7da4b4cc6db969e6000cfa182bcb74216ef6823d1063f036fc5c3413fb8dcf

    Download Submit