Overview

overview

10

Static

static

7

817dd433f3...93.apk

android-9-x86

10

817dd433f3...93.apk

android-10-x64

10

817dd433f3...93.apk

android-11-x64

10

createjs-2...min.js

windows7-x64

1

createjs-2...min.js

windows10-2004-x64

1

vpaid_html...e.html

windows7-x64

1

vpaid_html...e.html

windows10-2004-x64

1

webClipper.js

windows7-x64

1

webClipper.js

windows10-2004-x64

1

Analysis

  • max time kernel
    240s
  • max time network
    298s
  • platform
    windows7_x64
  • resource
    win7-20230831-en
  • resource tags

    arch:x64arch:x86image:win7-20230831-enlocale:en-usos:windows7-x64system
  • submitted
    14-10-2023 22:00

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    vpaid_html_template.html

  • Size

    16KB

  • MD5

    7d7cb3d6c22da954fccb084f6c18ee01

  • SHA1

    529871b15146f802c1c1fe2342b31db9e328bb7b

  • SHA256

    05cb7160ec6766397cacbfc5d57373edbcb028917d81e2f2d748e27086db23cf

  • SHA512

    a73d034079dba15d38bd14ddb81afd8af51b31a5c80cd83346556e7ca7f2ec927511ec3c151abf7cdc108ac4671b7623066e0375b30536e1503125354fa1a15b

  • SSDEEP

    192:mrLYJFkVvGFQshArPtP842+Lw1wOEeR6kad8bWXSrJEBOn8TsjNC4ck8aanlDTtI:8U42Fn9qW4+EQNuSXIlodo4

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\vpaid_html_template.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2764
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2764 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2568

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    c7a130118fae2c5932e171646f6c42f5

    SHA1

    d92ca4d18e3e869b58b5f09883b292184a70543d

    SHA256

    6a94ead90e5a936bc1f1595b398555f4a4186d8b6b90d2c5268aed5d403a35d1

    SHA512

    a30d29f399dbba562aca526b86b8dd540b4f7f6c0d97ebac2f08d1368d9eab5dfbd465fda5e00faa558807c61bd10cd401f8b54d45c6d4e8ee211d59788be07c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    3aacc5142d96ea986f6063accfa9ff2d

    SHA1

    54950deefe5c1dcb090b467ab08cfca5092e030d

    SHA256

    19b2bd082bc8b9f459850411020d92922e590ac503ab0d0abe42357a1b71b332

    SHA512

    aa8c4d381ea9929a86dc9b482d64e1d8a399e47b2784c2c27072e7cba99b6abe82931a94e325f490851db380d845f606553dab6c0b65f1fd7b1673ac222ecc68

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    eeb9ffd89bc539f5768428daaca6aa3d

    SHA1

    4888062c8dd7c1e578f9633081ad1afc57508ebf

    SHA256

    01f5028616d48c1d03db8db8cf024113d79811a3bc13799e2e3e6a27b54b5608

    SHA512

    32f80f89cd379b95458fec4862e42a9bc8753a3e4bf261d0e0a26f55fd7dade2cc78d0ac424e325822cc065c298a4322bf4759c09585bc18b0307b9acdaedf9a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    20a24774622857b1003c458da455dc49

    SHA1

    229b29140d20b18e06d769481443f3f4aca5a8f1

    SHA256

    1e26c6dd86413e4ff47bb39fccf1225883a854de0ef48958d5f34ef5f6f64c5a

    SHA512

    438c11386759e2de76f08c267557a32b5bab678d50d7b46396dec17a7bb2abeee3d5112fe169f2b6879688ea4522aa23ea0d80ff31e1839784a0e006450d967b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    c6c8ff9de43a96b4e14083eb262452be

    SHA1

    3a0060138dfad31cc2ddde55ce4e128443f096ad

    SHA256

    7082be0201d209eb28e78b71d6dcb4ba4995a9c22816608e2a1d0cfd7bbb3ee5

    SHA512

    489789a7a79f2552d2f127ea60ef7aec0819083a732d384b068b27548f5fe212133002e79aac85613573e1a2d7ffc72be1879526b200786dea0ffa5d4417cef3

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    b5bdec44234287492ee5a51e8a637a53

    SHA1

    24388c115b772a95d3879e382972d59a2bbb17ca

    SHA256

    e363d3c8b5cc9e7affdba54c74f79b81eb6e5684b52dccaf7ffbbc1343ebe867

    SHA512

    77368260b1856c3ea4aa8c7bc1223194eb2cd187b6c9bd547434733f9a3f20c7f5b46e6266083ac762b821579897bdf5ffbed9f28fa5420e2520ae5a14708eea

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    97c07faad38d035d47916c93291eb332

    SHA1

    6c0716dd7ffbabe03818d4c3eda9d23b6a3e80a6

    SHA256

    758f0c5ef93cd1f887405491d46545795a6f080f3b59e9a8bb79672577267a4b

    SHA512

    a0cc3dfbd6494b9eb0800c6f7f53be2ccfb72e103c7f73beece3dd0627c14b22e620758090f4a8599f789d77330d75b447e87c92d6dab36b0a936c2533e0fcd9

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    fcc00249f59b6b7d9f0915cca3ccc5af

    SHA1

    36dc7418955bd3cfb47a65f533bc8630b012b234

    SHA256

    d75570f6d8babef45be92058a12b9b776ff95029108e18c2657242b0266776ad

    SHA512

    9d820fa1ccb7d0e10bcf370502401f813446dd9d9291a9f5d6280205b3390a2f6d33e38652a48a254c4f9fdf89ccf4faef9cc0a573841bf4849215d4cf03e116

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    5da59e16dc346b0103038a756ca41463

    SHA1

    904beba8c7f1f9f879462371973c13832f91f6c9

    SHA256

    d1d1f6ea5a9985a00797791a7dd98a5dc33bdfebf4565905ae4a1ff9cba1fc35

    SHA512

    54bfc40fa726a99c67f2a41215aeb406a48302605d9d2da8bb31ba540b7985f1ca4181afd8b55ad8ea98ac960d1cc1e62b5d99b5d83db438c5398be1fc9ce15b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    f965ae6d1281e43c21276c44e20eed60

    SHA1

    7c69d69c415003cc4065edc74570c92c69fee420

    SHA256

    15c0d86d3116ded7369ab20da8ea3b3e3862f3884fa7b4ce7381bb64eb83a953

    SHA512

    42d148fa22ff70d374067e8db9cd59c42dcbc0ea12b60d45fb1235c01a6fb395dd0e648465517bdf98d4c8c12b13fb3a29946fbeeb746c7d3195d095ae7f64a9

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    714a92784a7a0659ab21fdbecc5c0c4c

    SHA1

    14283b892d10d4b0277ebd3961deebc3775e2ec8

    SHA256

    c66da642b4c1e6cb85e6f82464dbc488f306dbe09299949cc97e1c41783fef02

    SHA512

    5b3b64d941e5d3b0a5ca7097718869114610bfd8a16c7acb51c1b32d38ea21824ed0252ba6aeafd19fc2e20b1b2c1bfd9b2d6f5a4f93ed2e31f373de04417ca1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    a3fee7f9ef0f8d6b4c124524aceb04c2

    SHA1

    9d43e1cd99e1927ccb7e684e3f0b6481cca0cf68

    SHA256

    c4fbcd810403e92d81b2bc5e319df962788883f5987ff4ecfaade091efc11d78

    SHA512

    526059da18561e33311a383e74fb8f74cd62fcad89fdc94dc6b7c063ca13f90258da1413f586bb6d9b6da3a1f010becf4ca682bbe0d7b9bb9c5dab03a23396f3

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    44d7f380375525a46e9afa85051898f1

    SHA1

    1b342d343355abf1d30266b1bf497df2d7704990

    SHA256

    63aafa8472c4269867fad2ce6e7ad72fcb77e7992db756e47b8040a7d41a47a8

    SHA512

    b5d870fa6bf2fd8b3e595c16bea6e8a9ee7e46713c0f61e2dc444dce435cce654c8ed320c7ce7bcd313290c635f6737f7e5588e47bbb3bf657cb2fc3c041471e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    28d823894490a1a6c2a54b0d980d1105

    SHA1

    531ad0ee47bf42a0a9cd713aa4acf1349105d653

    SHA256

    c591dd4434b245fcc5020a73dea0016425b7c2a29eef89a81c89398c63e665c8

    SHA512

    ca6bec713d06be27d1ad1937833437406ec5b3b3947cfc30c23b3c988ebfb1bc8e9e7939b948c6753a34c150f6f3af9e8eb0fcf2df69ddf9b4628461b32723c5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    3703d2471465676786782a64113aa032

    SHA1

    1959cdeced89e4717554685daadbce593fe6f0d0

    SHA256

    7571a2f5ad18ed705165d082f08b3be2a215d75ec335d708e31e04c3cc697a78

    SHA512

    cb390c7f86ff69a1e9c5db95d3a72a0e0598d198e236807624e59cdd7d6528547750c783c372611349234f40a8d824598132db65f3b20612a03323e10a0b5034

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    6ee332188363e1f7410a18414f038c26

    SHA1

    22dacded0a7a7c9d60665386835cc56c8ca0c0f7

    SHA256

    96d215b75baf1c35d7c51f6de81a7c16ba26c0130558df02f02483e0d4daf8f1

    SHA512

    4c1f27d809d90d83e87fceb7eb12ed348dfae704a5614d7cb7db02287a2eb0ca3411d973982d5a7e263398737d0d949abba0190745fd1a5a9ba8f63c09fed769

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    1b0cac0f2954e9219c47c915d9683456

    SHA1

    ea9e36e3c471114ff9c3a28618711b0d7d348e12

    SHA256

    05d99c58c0770b6024d82eb16403b76aa7c862b01b30e0fa0179f167256a4197

    SHA512

    ecc2afb8c1fff52ea84cf1da82c0720fdab451c262b973e9fd9aa4e06c2121cba4f32916abf8d102ff4383e8f663c854189fae123bd7f8088b8907616d0c0236

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    bd71550cb2dcc1f7bb94c8d360551128

    SHA1

    4f1bde4858cd7e94d66f0e5d0c4598e46fcd3bd5

    SHA256

    72de61cdc590050b2fae016f233875081d929491752af739d6d2faa44f7c3431

    SHA512

    a92e49d5d9b6cf2feee296262cd58f068b56592172eeb354048f1018b122f4ed399e1ecf37114ce12473bb39f3340e422eca0fc5480233545fd1d581be5b25ae

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    f04c544e73fe922af12822671a9012d6

    SHA1

    32088e9a43132a8f3ddda40c03073c2334c1c344

    SHA256

    95acfe671d8e7dd5b70d2940e0a4b40ecc9140db29eb104a3dc9ee831345fadd

    SHA512

    5ee5f047c6aef7ab6953602aeb1c5067481a0c58aea12dd48f079bb4c634d075feb3cc446ed4005ba203f4bd62fc0a2c2e00f495642ae6d79a9034ed0bb8e8e3

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    ea72d1faf01613db38e5a591c2d715d1

    SHA1

    5d6253afe6923518528df02aaf7f52abde1349b2

    SHA256

    24b84b66421bfa9cf48671ae266e2723befd1e5a2667e615d36e70f6c11bb2a2

    SHA512

    902a21110aab73f51655391193492706e7fdb9a33f1531173e62c35068c04b39aacc9f2a2cc91375c5457ad8ee3aa5ebda5923cf6f8904b89d9807f42f8ec7c5

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabE10E.tmp
    Filesize

    61KB

    MD5

    f3441b8572aae8801c04f3060b550443

    SHA1

    4ef0a35436125d6821831ef36c28ffaf196cda15

    SHA256

    6720349e7d82ee0a8e73920d3c2b7cb2912d9fcf2edb6fd98f2f12820158b0bf

    SHA512

    5ba01ba421b50030e380ae6bbcd2f681f2a91947fe7fedb3c8e6b5f24dce9517abf57b1cf26cc6078d4bb53bde6fcfb2561591337c841f8f2cb121a3d71661b9

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarE72A.tmp
    Filesize

    163KB

    MD5

    9441737383d21192400eca82fda910ec

    SHA1

    725e0d606a4fc9ba44aa8ffde65bed15e65367e4

    SHA256

    bc3a6e84e41faeb57e7c21aa3b60c2a64777107009727c5b7c0ed8fe658909e5

    SHA512

    7608dd653a66cd364392a78d4711b48d1707768d36996e4d38871c6843b5714e1d7da4b4cc6db969e6000cfa182bcb74216ef6823d1063f036fc5c3413fb8dcf

    Download Submit