Overview

overview

10

Static

static

7

1b51293002...64.apk

android-9-x86

10

1b51293002...64.apk

android-10-x64

10

1b51293002...64.apk

android-11-x64

10

HM_JsBridge.js

windows7-x64

1

HM_JsBridge.js

windows10-2004-x64

1

consentform.html

windows7-x64

1

consentform.html

windows10-2004-x64

1

Analysis

  • max time kernel
    135s
  • max time network
    152s
  • platform
    windows7_x64
  • resource
    win7-20230831-en
  • resource tags

    arch:x64arch:x86image:win7-20230831-enlocale:en-usos:windows7-x64system
  • submitted
    14-10-2023 00:51

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    consentform.html

  • Size

    27KB

  • MD5

    7a2ed1a6df8839dd8936a86d9edccabe

  • SHA1

    7bc1af528444afca678905059cb1ba9fade65352

  • SHA256

    d02fbd55c1b5da3fa1f77c52f5633421395a3bf228457521512b37cdacd65f9c

  • SHA512

    ea0c3e512b37e340f4c0a49196344f1dd5aef38c469ba124605518e913be601a5b6a92a50f00e962bc90041bb80e51480254c7902032d894b7d24be5aec47097

  • SSDEEP

    768:wEh4FOT6bJdK0D7fkvaqF1b6cY4c5rC28c54NTc5Jt:th44GbJdKoncY4c5Wc5wc57

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\consentform.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1200
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1200 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2052

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\3C428B1A3E5F57D887EC4B864FAC5DCC
    Filesize

    914B

    MD5

    e4a68ac854ac5242460afd72481b2a44

    SHA1

    df3c24f9bfd666761b268073fe06d1cc8d4f82a4

    SHA256

    cb3ccbb76031e5e0138f8dd39a23f9de47ffc35e43c1144cea27d46a5ab1cb5f

    SHA512

    5622207e1ba285f172756f6019af92ac808ed63286e24dfecc1e79873fb5d140f1ceb7133f2476e89a5f75f711f9813a9fbb8fd5287f64adfdcc53b864f9bdc5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\F0ACCF77CDCBFF39F6191887F6D2D357
    Filesize

    1KB

    MD5

    a266bb7dcc38a562631361bbf61dd11b

    SHA1

    3b1efd3a66ea28b16697394703a72ca340a05bd5

    SHA256

    df545bf919a2439c36983b54cdfc903dfa4f37d3996d8d84b4c31eec6f3c163e

    SHA512

    0da8ef4f8f6ed3d16d2bc8eb816b9e6e1345dfe2d91160196c47e6149a1d6aedaafadcefd66acdea7f72dcf0832770192ceac15b0c559c4ccc2c0e5581d5aefc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\3C428B1A3E5F57D887EC4B864FAC5DCC
    Filesize

    252B

    MD5

    5f18edd9738e5a37308c9303c33bd570

    SHA1

    f771b01ff3d199bdf8e694d2ac0c1c056cf58ff1

    SHA256

    18fa8fc727a03980f5cb97fcc85e0c0336bb4351a8386f9d71ad766b6ea6e52a

    SHA512

    b942ccb005612f654aa2898a76122acbdb777942270e035347e50f38e69e5931a1a748ea9a2541a73bdabde0abf85f369fb1198cd4c2e361fad7acd7484291fc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    8f380bcbeb8c631c828bc7903d91a066

    SHA1

    8a3e67aa830d11dcfb78d006f115e0abf63c3782

    SHA256

    0c3a3c1dfdf787cd2152bcba1c251819cc496ede380d51d9315ce86452cadecf

    SHA512

    364578925227d627f1bf0a82ef630a7b99f9d02504bd048dd45c1b95c1fc34f863d4fc6c71dd9d4903e6336c03920dbf0e369aefb6ab285ace30636d43f9c20b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    6be92748cac9a5b6212dc846b3ad416e

    SHA1

    147233608051da2cde5cf9d590f36facdfc410e7

    SHA256

    57b54290d5a75a4e7adc3b9df5c392e5c94ae85b7ce7f8aaa40390c875d4125f

    SHA512

    e4594b46766f83d0001770517a4760c9ce55d999cba00910441a7fefc19ceb6255527941b34b7b66431d51fa64d8067fe4f66e100a29d2929ac41c42d1312305

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    07b55c736dd15c647c8812211f9c5b53

    SHA1

    abe52e6bea11a477d55f14045d0afa7237153476

    SHA256

    54a18ad8b686b82604f4187d28fd770c6fb0ab2172f7ddad88d50aba8ec351f7

    SHA512

    66ee4e89907a6adf9b7e3c7592a7a6766d38c634f21e3eb422f5eea2990264753fd3f3743724e3b6922283e9a603836925dde6b159ce8a641e6e2eef44991b03

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    b90da6e143014d7df76ea3358d5a6115

    SHA1

    cd0b14f9ccae7b371b6426cb7238eddec25a5077

    SHA256

    ce8281499945a9b1ffa4b6995332563689eacd169185113317647e75e2b1d363

    SHA512

    32cd7b774f8c5715bece6372d6ccb05556c210ec6fe9b8c0fa67ffae67274d4e963e5f1c1603ff05f4b56579ef1232ef44026edefd1aaccf4e1abf4017969b04

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    722db67132055caafe61953cd561f026

    SHA1

    30016262435fcf96cf2782cadee89435cf3c0515

    SHA256

    882adb43b65d2baf3a76ccc720f27e14b4ded5c6008bc129c081601d0bcde1f4

    SHA512

    626559a1482e79b4690cbf760f19e7d08c26c117265640eb3942f8239e4e123ebc8b5074f255b34bb898b5edf043f0d48024dcd249ea0b8599985d556c9aecad

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    d0c9b108768b676fbd804981c10d4ee5

    SHA1

    6638caf6c4fb86abbbceff90cb14b11f6b1287f2

    SHA256

    226f53668b59c1be80f6534d51be3be66cb213ef17d603f86dcc36ca87c813d4

    SHA512

    466cd804983c3cf79165d7bb4a5d35b42d9818ea03434108e0fe5a55bb2472f215394ca9599a93d0ae1e831871127371e06c8a1dc7ede6e931dd37cd0f4b1753

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    30483b6af9387f3fec7de480a0fd6a70

    SHA1

    d804524f2b21c2fcf678f39104cdae0362a2c20b

    SHA256

    afde15925ada4c3e606a6da64e5a2425fceb297baf4cbc2453c3d274013893e4

    SHA512

    c11f4753255fe2f0bffe223cdb4bda4d45f23c897561beeca4d411a93b5684166c1732029d9f51f633f3dc28d56a39322154612de619caf88b5c0dec094ab262

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    1c2d85f3a5bebb1238362fafe0006f90

    SHA1

    cb839b59892d6dd16f479f8f20b23e29bcd78ba1

    SHA256

    c7094b262c3022e9381789d7cd83771e25d0c729c30374477a70f45b34f4a3e0

    SHA512

    532239cc7c1835d687af1e085713dacdeb40c1bb9af125ef2f1864ca202223c367b7ad89ce080501960292140c56d8f025481642b6fd8ee7c85645a2564b2d60

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    8daaf4f145c06396072998d575aa2edf

    SHA1

    5867dd072d1f169b676a8c5f21fe784546ddea3c

    SHA256

    b4547f07618c0495be8a6212dccb17404d3956a837f3ad48815e61c3db375f44

    SHA512

    a15df27fc34c19b6b484420e2e9fea6356f4046b06e54e34e0dd07d584f0a30811395525fb6c3c8602b9e7fc9c2f2ab024cdb0c661804223e82deac605c99c5e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    ae608e716680375af089515825dda297

    SHA1

    2fce1d949ed380d98a8708ac296f4639f4d03360

    SHA256

    bfb24f8f351f9a5083d7160db31f4ca420c64ddd28875ae552b7891891c32e9f

    SHA512

    24b5c9dc454646c48ed0a7a5310283820c1fe939681ba7163416d19429197166e7460587930aff2517479d86aae5b9189af858c991442d7289085950c6a35d10

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    13dd6ed296eb20bbd95d1db747100d44

    SHA1

    746e7318a159e6a87571fb44f3d160881270c266

    SHA256

    97893bd6a3c9e028df192eb6c401138937e978a010b41333d0c6e8d04c75a451

    SHA512

    05abe3bb42d572ef5f31c599f2fc7b9957129459c3f3641813028ebb3ee16c46fdd209e44982f5ca67539be4a9d6470e991af9d999c64bb4f95c3dd01c93dbc4

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    f217bbb87b7d03188d3049655104f28f

    SHA1

    6df679b2fc3821a6d558ba88fcc35dc344700f3d

    SHA256

    ed0a9b6b6f71ffb4ab076155e9557aac6c6c4ddcbfe5cac93615403a4f033ead

    SHA512

    76d734a70bf27eb21c4c303c99738292a8d9d48177dc1749d935e517ef436826249b89847eaa296c3784aeb02994ec4c660c1f93a2001fe8bd251e151c15ef89

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    c95590503f449e2043cb69f54507c6c0

    SHA1

    0ad3ca50cee947c94255eb55b787da474b76edde

    SHA256

    88b11568bb07a81aa8774db8184293d94dc4f9e627e3ad19713f974d1cf20b20

    SHA512

    ec73ddf20a945118e16e5406c17a7878d0c4d2441b6765f9e6795a8e7816b45b5b6956a71d7e95443949bc830e2a3c5a566b86130cb81d26e5da3b25c13d9d8b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    dfb637166f6c082c8210713b0cef8192

    SHA1

    3c90a2a436664b811f13853dc22ca076cbf3b585

    SHA256

    bde457de0f4714277fcb8aa08b1ac6ee2fc06aa28017eb86d2bf1f7c85be279c

    SHA512

    a44bd9a52397a837a31f1dd5c86088594da6c9f1f6399e34a0417f6a4480b513aaf22641375364a48aae4329fed4fb91b02755eb8771dec58e4b0de863c1c637

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    3deed1407f674123e0da884aafa8e5c7

    SHA1

    d19f7aa4ab07567ec85c5efc5828a7aa23d248d0

    SHA256

    bbe64f1afdafafd6c4140fc8ee4bb5c5e5e2735b7a04d58bf381dd0e88a9c301

    SHA512

    1155705df88f4223efa2bb6663925776104992be5fce382af510d3eea794bdc984b0b0d18cac0611682bb8ed5727831ac30284c9c29b037bc410dafe4a7c2f50

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    3cbe04441156d95d33f302852d35fac2

    SHA1

    f1472ac656850f81e22246b95c14ce8c274031dd

    SHA256

    9468f56227f5713e2458eb55da1990082bd29eff54f649550eb98dbbb3afa7db

    SHA512

    ce3169179268c68f5a574deb1e53edd624eaf89def67e1d814384da660ec8c365bb2637456bb6e6867a0e8b7f5cb21b25f314b24f2027b2632fd5abb2e6a6176

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    793bbe657fa7f2affd0572cdf129e699

    SHA1

    2dab20907586283f7b003a8ebec744ae902e9c0d

    SHA256

    5c05a6f6e83c016751b5473ada4ae756e7f5773d6322543db1c35d009cc66b94

    SHA512

    10b4c4c93b5bea7dab8891d8ccb00ae08f647092567da5970e45efd6a1d194438425ea45ca26495eea090e9656c734d841a84fdd6bcbb9cc03b94a89fdd5f9b6

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    a615a303c0681e69925cda4f6d956183

    SHA1

    8afad9606c2fb9ed3351bcaf252406a1858b7f1a

    SHA256

    719d9569a27accd975e3f425171894c7135db05186e34197c6359500b99053b1

    SHA512

    80f5578a587d5cd0cc72c2feade3ca258cc33eda27cde24fd45cf513613a6837f63b95361ef22a2992c7e8e4384262101c586f9768870f81e2408c6c42a715b9

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    1c6f2bbe0da2b29443816bc5029cd13a

    SHA1

    a5522296956e777e3f3e7ebe08979a11d3dace6a

    SHA256

    520a837116684ddd8c7b13642e0fb53f3bfe8945ecae17a48bd7ff7e083a4a04

    SHA512

    f31cdb8720d37c23dd7dce39796e4a5390d0f315ea74d16a5304d3af6ed4acd2657d0330220619ad138461d56cc8a884f964b8d6967f7a4bbaf5fd557e3d200e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    84c6180aa21aff14e76ffda3e2ea834e

    SHA1

    4eaa0fbcf941c61890de09d941eb63408674d734

    SHA256

    a6183a3d00d32e6e36f5ceb4064947806e0f72bd2faa14e6584b254969bec55c

    SHA512

    f9ed4e0ff3f78d775691b5b4810d181a146a0167e8a11b73b7b0222d9bc0e15a0f1776db14987e1876bffeac3aed4cb6900d5f16fc458255e44bd2d162c11e0d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    66bb9cb8231f8d486b4e8935b0936494

    SHA1

    30ed5140d6608a947aa406a0d6da474dec316ab3

    SHA256

    d6b97d4030ac33e0ea60fc3548b9301d78cbd8d5a327631ead21bedaf85c8516

    SHA512

    11d0cd6e4670d9c14953bcfa9887aed5a55c303bae515e69c9d3e875c74bec375fb20634eac4909c39bb96f39014bcc33a2ba85ad0cf3047ed952be17616ca49

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F0ACCF77CDCBFF39F6191887F6D2D357
    Filesize

    242B

    MD5

    e97694635d72b53e6d27dbabd986af2d

    SHA1

    2e393a93d203c88de674ae4b2ddf0e391011748d

    SHA256

    b45d421f6c7048349e49634f6b6192bc8f3d1bf32095855c803df974d79b9ea9

    SHA512

    3d9ada2734cd49ddf3cfaf1759ea72d186ebff9346e11953b97548857c3038936f18c70eec735063c83d00409495d63a29cd3871ddc2f03557e88798ae19c257

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabA19D.tmp
    Filesize

    61KB

    MD5

    f3441b8572aae8801c04f3060b550443

    SHA1

    4ef0a35436125d6821831ef36c28ffaf196cda15

    SHA256

    6720349e7d82ee0a8e73920d3c2b7cb2912d9fcf2edb6fd98f2f12820158b0bf

    SHA512

    5ba01ba421b50030e380ae6bbcd2f681f2a91947fe7fedb3c8e6b5f24dce9517abf57b1cf26cc6078d4bb53bde6fcfb2561591337c841f8f2cb121a3d71661b9

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarA1A0.tmp
    Filesize

    163KB

    MD5

    9441737383d21192400eca82fda910ec

    SHA1

    725e0d606a4fc9ba44aa8ffde65bed15e65367e4

    SHA256

    bc3a6e84e41faeb57e7c21aa3b60c2a64777107009727c5b7c0ed8fe658909e5

    SHA512

    7608dd653a66cd364392a78d4711b48d1707768d36996e4d38871c6843b5714e1d7da4b4cc6db969e6000cfa182bcb74216ef6823d1063f036fc5c3413fb8dcf

    Download Submit