Overview

overview

7

Static

static

7

AirBrush_v...m_.apk

android-9-x86

7

ABPrivacyA...e.html

windows7-x64

1

ABPrivacyA...e.html

windows10-2004-x64

1

ABPrivacyA...n.html

windows7-x64

1

ABPrivacyA...n.html

windows10-2004-x64

1

ABPrivacyA...s.html

windows7-x64

1

ABPrivacyA...s.html

windows10-2004-x64

1

ABPrivacyA...t.html

windows7-x64

1

ABPrivacyA...t.html

windows10-2004-x64

1

ABPrivacyA...u.html

windows7-x64

1

ABPrivacyA...u.html

windows10-2004-x64

1

ABPrivacyA...s.html

windows7-x64

1

ABPrivacyA...s.html

windows10-2004-x64

1

ABPrivacyA...t.html

windows7-x64

1

ABPrivacyA...t.html

windows10-2004-x64

1

origin.apk

android-9-x86

1

Analysis

  • max time kernel
    149s
  • max time network
    188s
  • platform
    windows7_x64
  • resource
    win7-20230831-en
  • resource tags

    arch:x64arch:x86image:win7-20230831-enlocale:en-usos:windows7-x64system
  • submitted
    13/10/2023, 03:25

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    ABPrivacyAlert10034es.html

  • Size

    2KB

  • MD5

    c9c63913239d83a07875b24fdc2009df

  • SHA1

    35ccd56ffaf0b7c1e82e2edb3e7ed421803b19bb

  • SHA256

    0e57ce5f18289ab1faed177d2a5cbf6adc0f0c0bfc2d75f9bc8f5be6731e5e54

  • SHA512

    03a518206aa86255eccb4016ca5ff9aec79c96e7cd6aa929a8aeccbcb1424ffabb847419e674f1e82dc8c3362b8ca04332fb8d42ce0fca7d145ce67edb95022c

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\ABPrivacyAlert10034es.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2696
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2696 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2976

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          304B

          MD5

          c61acfc7f0030e545693248cece179d5

          SHA1

          a428fef3329b19a87476b9a3c05aa313e09ad495

          SHA256

          fbb56db61688c747ae2af4d61b8f7cb654c03a66399a732e72b112e49b27293b

          SHA512

          1f7828b2b33314d021421464d3fd0cee2861fdda246757a6d25ca6145856aa7b6c7b887cb974a4e6e90f0bd0c2c62ace80280b069ab80b3c99482558f21e0247

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          304B

          MD5

          4cdbf940d7fe0d1ce666bd3bbe28dc93

          SHA1

          70c04ff53429d94af37126ce218695604cc3d48d

          SHA256

          b3ce67cd4e4005b1b795da52eaa101169225877b9fea06731894ca469c7ab321

          SHA512

          446c7837b5977e6a90c985b562a9f5d039444a7d834e02caaf66b0f8110da330de0158f2bc9fef21d21dece32f2b2aca2a1ec77de01e031396c81ddb447b408a

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          304B

          MD5

          2b2cd8096ef9c2a32034719b13706bd0

          SHA1

          37031bc31d0da81c86b7a1296437290221b82357

          SHA256

          fded72f7b8f455562e6a670da2d72ed07fac1713b7e0c50c87da556367ccaf96

          SHA512

          6ec056c5458eb9cfeef16b16afc9675c786d55d2c3e2c97f8313813ef954746bb25e3f5813709685dffe620e3a5e468ef7d5611548733f3334546fbd8ed30915

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          304B

          MD5

          b7267bf4f40e2f09174e4c1c920f42e6

          SHA1

          e6d00d8e7a5ee817db06a4da290e8d90cb73cdcd

          SHA256

          2b5e15c2e9bfd5f7eaa57a005fca0c083c0d4a1ed501d01a7e31ca99c3f6bd4d

          SHA512

          faba1b70fbb1b3af0c2fdb7de04b62c12b1260b2cbc6a6ec4981d32cc203edac59b386df199c86a30855863d7fb47357b1221165cb6ee15fd4af286432db6396

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          304B

          MD5

          c96ebf80408f371ce4a36d544e8f9336

          SHA1

          1920aefc59242dbce66d5ae856f7a9a745750a36

          SHA256

          a1a1f550bf3c08b8b0ec284c8228e10ee4b856872eeeac25061d548bbcfb7535

          SHA512

          032c4bb2640419d07c2dec49b1a18a37c72629630cacfd0b49f7f0a588aabfa6721698808dea67f0a05402d0b89a902c146ef1d2c54c200fcde5cb3195faa95b

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          304B

          MD5

          5ef7bc54ed6b43db25811427c06624a8

          SHA1

          b8eab34d7e68c87bacf7cf824eed72c7f5b0ecd6

          SHA256

          bfbe55681b50f0966a14c99b74fa5ec878651990f08b81698b76bf2487f370b3

          SHA512

          eac03341d272c254f2b190542850e73133906c207b4cd190cb6f8b11dac8dc4034b4dd7862b0c9cb58984b0282cdf817a0fa3cf6efe79f37c33198223e9db4f6

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          304B

          MD5

          a462293061f5d8844f9c50d27858a841

          SHA1

          c616332d3e9929ca818a78ffda570b84852c6928

          SHA256

          6f6ac0bb5a3a61e1131fb1ad684b81c54797f27d2f2447628b7b26bd6faed54f

          SHA512

          553614ba0586932abbc83ba0cb67680795f5d3ba65668484d96f9fe3cab697d92bd599252e50f0e3f49318e3bb0db86a4f399134f6aa07e8020bd0a703a31479

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          304B

          MD5

          9eaa0039c976cbf8d06e93e2a91bcfc8

          SHA1

          b01414edf6bff43be305dff14f06ee5efdc0bc2b

          SHA256

          70e1e7eff6f3a10ed550ad9acb12b2ddb7f248efc0ce071fd5312d278a5e9430

          SHA512

          1979a915c50bd512e513d01ad840bfbf1bcd86fd8258c3017165376f2dc35c31ebf7d3c62861dde7d908cbb101ddb3f2f3bead522f9e9493bbccfec0d8f08006

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          304B

          MD5

          27f2f3d062486d4c9557efbf1a1b8be2

          SHA1

          972d80c7bd50f5fac1d8e910aaf2ece4466bfdb5

          SHA256

          ab39915b9bde96e8dcccd5fa20f3ebf6c4b4a641b588873d66a3f93f909b3bdf

          SHA512

          82f3f3403895736e03a700f4055b12f074a6af648fb0c0b8e762b2b14523e69d64d22ca20c84bc4b97e4f299119fd0fa18158c6974f1f9fec518bfeb7590bc7b

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          304B

          MD5

          05f780ed3f6d85eec7890567607f5542

          SHA1

          7c0830d494c7d5a791080fd36f2a50fb32c3693e

          SHA256

          1215c718a219e8efc9817441c4fad10b384aefca8f3b0d3431a5fd0186343bd0

          SHA512

          6cda13b06a4d0529aad3bc464d0512e24567d3d34bfbc3f99c2b4fd2c3b754bdcc8e2462c2e4a72ada44da082e84fdaba83796289f5cce2978811a11997e2b2d

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          304B

          MD5

          c38d88a5eda6fbc00ea072893ccdff34

          SHA1

          0a4c268d5b8e44cad32b8f681801a30a42a44034

          SHA256

          20b243e2df0707318c24120e914adbcd379ba735237e6eecabf1fcfc58efe7be

          SHA512

          e7fa7e7b9d8cbdf5742b5d3116209adfeb014846f7090cb68cb53a9ddc0d5151db2bf36c26b174a364d273465c45ee70df93aa169e43afaaaa409e277f2c35d7

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          304B

          MD5

          efc1321d9bd6d96eaed34dfa0a7b1805

          SHA1

          58178e3937cadbcd29017c55c13c1074529d6008

          SHA256

          68cacc75bdec1565a206ed3adbfdb46e0ebc4cb6f13eb923d5e2441a45ed43cb

          SHA512

          ec60e1f4d2952c7fbd64fc794fe647b4376a921174dd454ccf71912b4d900836280c441940d724d4a721ce850a57c666327a5ce8a30dffc3362fb6afa37c3faa

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          304B

          MD5

          5a1d782f0469927377dfb83e90ddd955

          SHA1

          e8bcb5710d728c2d37d8aa3363133c01feb89e3d

          SHA256

          2ab0c94c8fc1febf287bf019a2e3ecab4a47a976699e6c0684ea8c41d2b5e726

          SHA512

          7503741d3f038c6906c3b574687d4505c432b73c9fdf41271db5d42f2d85a476025fa8b2a8ce5002eba7d1bead26b9f00e798f8103943419a7f3b640885e4bfc

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          304B

          MD5

          dede6f8851791a25a2e09926e0da1416

          SHA1

          01d5a1dfc09823289043efe3b3047a6dc5cdf0fa

          SHA256

          b5df4cde6d9040ae8ed949326bb7ac000d4c8a01fb351db93bbc798623cfc4cf

          SHA512

          f361b9c52c016da4e439160ada3faeb8e84e7ae7513ba1ef175fc4d19adb2f0821777c9237b5da4da00131bd28aead718e1285c953ec7cc932ccf62fe24abb76

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          304B

          MD5

          2dfd0acaf7a9c4b32e60fe4054144c93

          SHA1

          8d7edf92909e95990f0ab1f74926e580a35a9b83

          SHA256

          eed7cd5c6b94dcfd35cd31948f2b31c2b22688bdfd14c3df870ade8eba45e3f5

          SHA512

          c23f3e855a9d9a078b0e676e23214e547493d08b9fb555765550b5ceb97261de9434cfe9c8b9a5f896de13ee92423b27049b31c745fcb288bf4652ef889e2ba8

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          304B

          MD5

          d24cee9f551dbc7e28768e228d734a04

          SHA1

          995ec2a9dd0828f44ee95ec0912342a6e9884c46

          SHA256

          cdfb8de205018720db55ec8f23315b426615c1a942c8afe582871fdeeae66735

          SHA512

          fb1368611140f72495a7998c0367a3dcb27f04476e58f8f1dec3001f6c49b81de5dd5d9d0e63eeef720599db580d716fbd3584ed17f1a8c40ed6e467633491dc

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          304B

          MD5

          a74d1afe05cc143c443218062ad8a975

          SHA1

          4c40da0a1a50cea22b42b070daf77569d8e303cb

          SHA256

          3e233ca252598629e212f0f58e860441c5baeadd54192bc5f343f1db0e6c3a4d

          SHA512

          f5ad99f9d1e007370b2591d9455bb724e08dfd0fc8a7e3cb284333005e8f16952282df4b7ec9113cab1a3d8c0054ec38faa01bc80f4c3a76408210bc1b942a95

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          304B

          MD5

          af18cdf406e10e22e37a106445646adb

          SHA1

          9a1c45a5b26988f89b8232a8cfff120c52bafc58

          SHA256

          67386820049eec52ecf51722175c2dd24a14d95cc09629019abb9d4a111ef668

          SHA512

          06d8024b6080d07ef7924aecaa6adff2ccddcc5d8024e8e8afb4bc242844ae492557e1f75dcea761b0fedebf942fbd3272cdf3b842b88bb11e550c1e9a801d39

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          304B

          MD5

          e8db76968500705c97fb0df8f82df1e3

          SHA1

          f2c596410e91173c037249ce8c7ce6a04c51f1ef

          SHA256

          a3ce7bee916e878f56961148aac0f0870a8a9c1b2b80f807f4bc18a19e7a750a

          SHA512

          ab842cbfcd91d85e891e836581b0e077bb5b6343eb7cf14bba8e11b5acda5bcdd5b6e24db5bfa9bb8797c4ddbd10e2b1fab33574794cec5d45c285dd652c89db

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\Cab3832.tmp
          Filesize

          61KB

          MD5

          f3441b8572aae8801c04f3060b550443

          SHA1

          4ef0a35436125d6821831ef36c28ffaf196cda15

          SHA256

          6720349e7d82ee0a8e73920d3c2b7cb2912d9fcf2edb6fd98f2f12820158b0bf

          SHA512

          5ba01ba421b50030e380ae6bbcd2f681f2a91947fe7fedb3c8e6b5f24dce9517abf57b1cf26cc6078d4bb53bde6fcfb2561591337c841f8f2cb121a3d71661b9

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\Tar3884.tmp
          Filesize

          163KB

          MD5

          9441737383d21192400eca82fda910ec

          SHA1

          725e0d606a4fc9ba44aa8ffde65bed15e65367e4

          SHA256

          bc3a6e84e41faeb57e7c21aa3b60c2a64777107009727c5b7c0ed8fe658909e5

          SHA512

          7608dd653a66cd364392a78d4711b48d1707768d36996e4d38871c6843b5714e1d7da4b4cc6db969e6000cfa182bcb74216ef6823d1063f036fc5c3413fb8dcf

          Download Submit