Overview

overview

10

Static

static

7

b59d430797...fc.apk

android-9-x86

10

b59d430797...fc.apk

android-10-x64

10

b59d430797...fc.apk

android-11-x64

10

bootstrap.min.js

windows7-x64

1

bootstrap.min.js

windows10-2004-x64

1

epl1.html

windows7-x64

1

epl1.html

windows10-2004-x64

1

gpl_3.html

windows7-x64

1

gpl_3.html

windows10-2004-x64

1

howto.html

windows7-x64

1

howto.html

windows10-2004-x64

1

jquery-2.1.1.min.js

windows7-x64

1

jquery-2.1.1.min.js

windows10-2004-x64

1

keyboard.js

windows7-x64

1

keyboard.js

windows10-2004-x64

1

mit.html

windows7-x64

1

mit.html

windows10-2004-x64

1

mpl2.html

windows7-x64

1

mpl2.html

windows10-2004-x64

1

mraid.js

windows7-x64

1

mraid.js

windows10-2004-x64

1

mraid3.js

windows7-x64

1

mraid3.js

windows10-2004-x64

1

omsdk-v1.js

windows7-x64

1

omsdk-v1.js

windows10-2004-x64

1

privacypolicy.html

windows7-x64

1

privacypolicy.html

windows10-2004-x64

1

ui.js

windows7-x64

1

ui.js

windows10-2004-x64

1

Analysis

  • max time kernel
    135s
  • max time network
    136s
  • platform
    windows7_x64
  • resource
    win7-20230831-en
  • resource tags

    arch:x64arch:x86image:win7-20230831-enlocale:en-usos:windows7-x64system
  • submitted
    13-10-2023 04:44

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    mpl2.html

  • Size

    17KB

  • MD5

    ea5774e8329852655bb7200eadc27752

  • SHA1

    b2276a8ef099ac79566dfdc7f10185391623e8ca

  • SHA256

    8a6321ff9c6cff54621744534fb98232e09994c80c305b9fb5f6d70e8c9b84e8

  • SHA512

    9eb04c4effacf9b6eb36f2fd28e0ee7d9487748aaf801d4c9df9ccc5f0dbe25384e46a140c0181a77d1d704ed5c6c3754c6fd6a4ad4def472c13aeeeac9ebec6

  • SSDEEP

    384:/6HmBmFwcg8UJsqsQInUdaebkIABBDrR8GzAi7W:/6qmwL8oxb6BhR8GUi7W

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\mpl2.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2104
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2104 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:3040

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    a884c3deb558afbb7b6942c33726c060

    SHA1

    fcd5715dbd230a1bb871a7df420e4dcd22689fb0

    SHA256

    5dc95ec5374bb0c9526fd9bd219f9715615b0414d06a2d68bc523acd1b719c1e

    SHA512

    29877aa6d6122d6075498f1b704ef488cd68dcb75155561442ef0e9331cb969eba2086f735a200b1422c35675c084969e11caa1e42e4160757806405bd487ac4

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    f0e12af3a18f908bb4afecb01b8420d4

    SHA1

    eb77191c4eb540a12fc06ab9b53f4e53525ae96e

    SHA256

    94e5ca3befed15d2fd484683c2e33c592681e9550946dedaba6c814b51849871

    SHA512

    3f0ef4c13159e76820146dacb3407245a85d09e2c4789b417f86c42b4144e575ba6250455df1bdc6fc11b3371952b13f2e7c1c88ea6ee673827e68865cb10ae2

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    1ea1758cf477964884f736d6bff69d9c

    SHA1

    268b425b099323e24a0456ba7a7a610e58cbd960

    SHA256

    a2794e76f1545558cb63f03401a7234620653f307d063c0b1c600d57dbed8c4b

    SHA512

    1b4ab92b54b6356d730b214b343d72ad69db86406d22563df43dca0d8bfa89714fe3e8a67be0c46463fc63c99bbf3974a14512ae8172df36d49514dbb4e8be78

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    c261e312ab0e3c5ba229e252f2194d69

    SHA1

    a4b7cb9c99b5df1160593b074a5608f78fd41dfd

    SHA256

    9a6be3b139406bf8596947f229c1dd5dc9ac6f7321a5209d614fd057236aa560

    SHA512

    fdcb1f09732d74ddd75e30d40e1c974c673cd5c55673d21e257e8f0fb7caa1053b08b7e8f9942859f35784076b73f144deaaf9832879aef9805205c4ae8988a8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    9cdffa8604c96fc2c9f1f93841149ab0

    SHA1

    a136941f6b1849122ec7f0b3d9ec941d5a7010d1

    SHA256

    1740c3fbef2ab29e783e06204baf76db8362209bc9c9c8c62e028e7fb18ce718

    SHA512

    1f9833cdd4b217a93496569dfbd393c3d043d8ab0bd57755afe492201435f58e75cfc18906f08d0f0a94a07611d89d42a045ef54a2eec709f7242b73ed56588e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    73a54e2cbfb5d8018e49fff4e3746a8f

    SHA1

    d55be719fc043d4536b7ef5334a89775ed5d2c30

    SHA256

    e3deefeeb09bfe8d45a78dd87b2f282bc8a0b0c092e1bb0754866649ff34069d

    SHA512

    f0caad6f2a5d2b9484e663e70d9306d4e915230b95ded08c3f81695c5e3ec70720f475002a45a2d4e1200333c1ddf48debf823228aae26d085e631ecb4c84669

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    cd78d05daf1dd2f8a475366b4a4d5505

    SHA1

    5e82725fdb284696d28b0b2e2c251d571bb2ef98

    SHA256

    8b66ef28f7dd186b11f47d4349c9b0b76200f31e9df65c908b4461027ba15991

    SHA512

    778872e2f93c330b65c2090d34942c484b38e326df8786e9cf8356b0bd5965ae6b0fb4b0b35df3280c83cbc9bd985d1607acf7e58388b809e98c9ee1c17dbc64

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    b66a63af044c734efdeee14078cedd3c

    SHA1

    48f65fcf3389a4f67243f775cfacf373da4ff3ad

    SHA256

    8b2435718007de935a5710eca8492bfb75e304f66a13ba23205cbd862d2104c8

    SHA512

    214dafd433c568fb7b07796d49bb0d4e116571d03b1701b711a8cc65666566f5caafde8c9b2a7f9b56c54b7aae51094e6de7f6ef3c49335026bfe9aae60f1468

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    50d921efbfd12a2a96ad3879d29062a3

    SHA1

    1f53e4a8aaba72050ac28af7e4832d9c52607460

    SHA256

    b72e3c6bf65d3ccb375f3097f58de29ccb8029ece24662a33932551e01da6c68

    SHA512

    0640e8ad324460003af5dc7ca95b0901c5c04120481d8c32f04aeb31e0a35955b96c171603ef68377b89a24510d7bacafab4de8430c025db3b5b9b6a43d3be31

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    70fb8460c6088044526fe4cd64eb3865

    SHA1

    4e4c0eba42c8ae99273c264d1cbc7f86b34b4000

    SHA256

    c59385e8a848ea5472c27cbc1781ed83a63dfee6fd527c374a6f83e59e909a86

    SHA512

    2a88833b06ddbe6657e39fc5e198d1bfcf3cb044a85d6c1106586a727bd67eef78a3e6a1f7bffdcd9e604aa391a38229550b2a3b999e440fb8cd7c30cf1ab79a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    6b97ee0d09704eba5c81b4b589b75d09

    SHA1

    d661993fcd47d9c6085652310ff81f5e574a6dce

    SHA256

    8b2af23fc92d2481c07e17c7bc945c1a1a2f0801ed4ae80812301d35cf37cf23

    SHA512

    d09b84606378d514fd516ff29264067c9b977f78ef2f74dfee42dafe2d4a8496e544a67300e4edfa8ca0bd44f5d8e2f3fcf718ff365217eeaf698367bbff9732

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    a0dd6ac45d52713d0c81347af7895317

    SHA1

    e71605fa1ed676a4001db9770aa0d087cb561853

    SHA256

    eae669928f52ac06cd01990c309d3292db379b729e8c5bc430f50c19a627a8dd

    SHA512

    639ee9cfb446f34845d995ed3ffabc5e3e43ba2a0a35538d33773362990fcf8d88e997d4639cfe7433e3255b749c628284dd35a709e19c23df573345ed719f7d

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab984C.tmp
    Filesize

    61KB

    MD5

    f3441b8572aae8801c04f3060b550443

    SHA1

    4ef0a35436125d6821831ef36c28ffaf196cda15

    SHA256

    6720349e7d82ee0a8e73920d3c2b7cb2912d9fcf2edb6fd98f2f12820158b0bf

    SHA512

    5ba01ba421b50030e380ae6bbcd2f681f2a91947fe7fedb3c8e6b5f24dce9517abf57b1cf26cc6078d4bb53bde6fcfb2561591337c841f8f2cb121a3d71661b9

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar99B6.tmp
    Filesize

    163KB

    MD5

    9441737383d21192400eca82fda910ec

    SHA1

    725e0d606a4fc9ba44aa8ffde65bed15e65367e4

    SHA256

    bc3a6e84e41faeb57e7c21aa3b60c2a64777107009727c5b7c0ed8fe658909e5

    SHA512

    7608dd653a66cd364392a78d4711b48d1707768d36996e4d38871c6843b5714e1d7da4b4cc6db969e6000cfa182bcb74216ef6823d1063f036fc5c3413fb8dcf

    Download Submit