Overview

overview

10

Static

static

7

3077d5358d...52.apk

android-9-x86

10

3077d5358d...52.apk

android-10-x64

10

3077d5358d...52.apk

android-11-x64

10

closebutton.html

windows7-x64

1

closebutton.html

windows10-2004-x64

1

core_wrapper.js

windows7-x64

1

core_wrapper.js

windows10-2004-x64

1

help.htm

windows7-x64

1

help.htm

windows10-2004-x64

1

help_cs.htm

windows7-x64

1

help_cs.htm

windows10-2004-x64

1

help_uk.htm

windows7-x64

1

help_uk.htm

windows10-2004-x64

1

license.htm

windows7-x64

1

license.htm

windows10-2004-x64

1

mraid.js

windows7-x64

1

mraid.js

windows10-2004-x64

1

omsdk-v1.js

windows7-x64

1

omsdk-v1.js

windows10-2004-x64

1

playstore.htm

windows7-x64

1

playstore.htm

windows10-2004-x64

1

privacy_cn.htm

windows7-x64

1

privacy_cn.htm

windows10-2004-x64

1

totalcmd_d...ng.htm

windows7-x64

1

totalcmd_d...ng.htm

windows10-2004-x64

1

totalcmd_p...cy.htm

windows7-x64

1

totalcmd_p...cy.htm

windows10-2004-x64

1

wifi_rc.html

windows7-x64

1

wifi_rc.html

windows10-2004-x64

1

Analysis

  • max time kernel
    120s
  • max time network
    154s
  • platform
    windows7_x64
  • resource
    win7-20230831-en
  • resource tags

    arch:x64arch:x86image:win7-20230831-enlocale:en-usos:windows7-x64system
  • submitted
    19-10-2023 22:00

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    playstore.htm

  • Size

    4KB

  • MD5

    b5761ec7f4412406c8f521379cbfe466

  • SHA1

    621c6720da697ab81116bfdd6bf81d1c8ad5e7a1

  • SHA256

    27b9dbf27f7d81fc3cb84c6b3b2430a14fcf78d82d351d38b92dd18537f0bc26

  • SHA512

    e4115829d744cfe44891eb753c4b2ef042d6d5397e5138899ddcfbf9f5a7ac84f2a47af3ca496e11505ca501b8ccadd51b276adafa42d709525b337049d7ed4d

  • SSDEEP

    48:mB79CNoW1ii1n8BfDaqDUMmckWmk1ZVEsMToZtME1NOar5McIp9AMF3Y:mB79C2WT16DaqAMv5ZxoMMUbMrHBFI

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\playstore.htm
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2380
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2380 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2684

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    c7c3e5d6d9ee20de69a1545af14d3c40

    SHA1

    b72b0b87303dedcbf77785a2d44a859985b0e3b7

    SHA256

    38ed04be338d7520c1c8543feff5f29021be78ecbe1410651995714f649bcfa2

    SHA512

    f8e8d2cae1477210ac695702f14e37b95e7b06285912f729fafcf3b24f29b9dc05fbad8db941e940131a56994f73eee31893969f47cfaf5571e051cb622119cb

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    cf8c1d7ae079619241f8f6b5cc2eb1cf

    SHA1

    513b291195554b7942eecc715580eb01061db4b1

    SHA256

    fb4c56d069f220022e51381ae7ae3299bf6bb39c48f3e74a0b675bb9af7a21b8

    SHA512

    7098302da1ba85278adcc1dd8d8c5fc566d5f97f39208db6bb1d5b30009f6a19f9cc3c751315a34e014af2d958efb4a6468ff83c689828700c8eb2ad9ac57d0f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    b35b568b87df4ff44966e0a523ef71e9

    SHA1

    f1957274e08c9efa353c652740b855f8a8bed0b5

    SHA256

    385a49804404bea5b6c0c1d541f7c2d05bb1f222f766fa2b34ba9658bf0ad339

    SHA512

    f49e19e3be65c319fbc1e316b39e65774d7990abe8d4da2b66ff3cd1e697ed5f0d5d0b1e915069e2548f5d10b81511cb259145662994553843bfb6a1e106cffd

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    e1de9f0b5bb737bbaaf00279ed94f635

    SHA1

    9b29db302c5402b05f24ff0ba4b1f992db113011

    SHA256

    582bea8d33e3f816841b9ffe62d7180b9358c46d6349d60a85aa7e35f9fcf6bf

    SHA512

    e1d689f740013af717f169ad60994619d0d574419623efb25277bd603fe925b6e48df7971ba509f1365126ba7871827c44c38dc751d4f4a455d754a4062d898d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    51d0277107eb61ffe33bf8bcb57bc4ec

    SHA1

    c400a31d231f7dff9df09cf32a1665ba44ad9b7b

    SHA256

    45fa9e0ad4a93c276ae9b4ba37ae41633e8e8160faa0f7f5492b1e76b1b145bb

    SHA512

    91f75a8044089a426c09715a712433bee3773e047879ed0bd4b08c4df3ce86b0b21987b6db8075f71e48580dbcd8292b0cf139eb4e5cd7d8783e70d2e626f357

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    067ba0cf7243530e99870c7ef14575d9

    SHA1

    d6fd51b9ad5c38690494c6443ff49f7cd859b9ea

    SHA256

    cf8fd069a765e91741f1c890a4f9b02a17abb41b284959b71d28dc70288d6d2c

    SHA512

    a7870ab7fe62cb9fc591272438b690d2cac6af2e16f8b10eb9ab2b9ded9e6d4bdbae39c0e5990c9f4ae92ac9452b764a53ce9e60b92af307e1bfc41b412d9d9b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    0b0b6b3831a08ca648749ab19fbb372c

    SHA1

    02d1dccf4d93462bddecd83fb1b2b41992137987

    SHA256

    3ec556b90e05c9c03a142cf7c67554ba20b8492ad3d917930d2665d810277e25

    SHA512

    34c0c1cabefabebfe85e70dad7f5e362d675f4f1bbe0d8d8922229e682693c5e539a25b5f486de4cf81e0ed85e8f1eba28732641ada8c9d28b5d15d4b5b51acf

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    c2366fb37345d74d7487563ff2818962

    SHA1

    116ed06a2a3e9d28cb3ffcaa5c47f8149f2ca70d

    SHA256

    4c508ae2f50a78eb89c26f12f08bfcec6f3b7780b308dbfc1a042b163ae375a6

    SHA512

    53c03cd40225a5d3936c6c9a353c00d9f4cacf043adfeac4d600f70537e5c1e98e96389b6987797ae73bfdd66ded945a56f44db7b44d00878c491c18a4be635f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    4e1257d890ffbbde15522339a1936386

    SHA1

    8c198507036cd5deeac43d5bb1edbbf7a678b64d

    SHA256

    c7e91471c6aa35a77d3692482a3c45aa582c52cbbd581f21f71c638ce96963fd

    SHA512

    84e4734048fbce6543eb5225bfda438d14244650f3272b770db3deab13b9963c71c409b69c85c1661928d2630bdaebda75b91549d50a1ff3d12b4dc98b6065a2

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    950823300daea2eb67277ef2bc4e2a63

    SHA1

    89a4ceeb999c4ad0a67978ed382027ff3f9a9f14

    SHA256

    b030b66ca0f30e4ec0009258e7726aaa9e1626135ec8dd1371248bf25b5dd5bb

    SHA512

    eb63f7e2142ec864b047a5d667a4b91b6678f28721beb0c7855981dc6b40fa6032ffa457be3eebda45d17b9bdf70306c868f4fd75cfba4aa6b1306768ea85f04

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    c3a6b25f02aa92cd7bd756e991dda444

    SHA1

    70511a1c4af71daab2658bbd0882a316352c1bc1

    SHA256

    0115327977bfc8f538da2014aa6026461c34570097080cec1ffbcf94e61993e4

    SHA512

    278d685f771d4d12b00e6db7b1d2bf0984292134e027b8e1ed2e0ed646d4f187489d975fcd29212fbb331ae333aa9f6007b3c74a031a90d92118e6953ea2cb0f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    e7982603947b2b634c3e011b79f4de03

    SHA1

    2662cb2c9ea736e469e9d7ab6b6028ec9b135558

    SHA256

    6a8a5c25085342d9ddc0dea6dade5109fc2fd6b261ef6e5a3e26064043d6adbb

    SHA512

    550e6e3e77f1444972118bf6f02b275fd3323365dcfbbd20d96472043a67f0d7deb72ab5e6b6ccb349db4bc9d0b8964b528c1cd69388e186badca81506065fbe

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    7315de36455f34352a7d976c4b9d0cdd

    SHA1

    374e5e76c212941b2a431e3b20c4885d1b62c543

    SHA256

    1ca3bf79964f7b60f2f869492e5bbd54a3576a4e7fcd89858aab4d0bcb4aef5f

    SHA512

    1a38e80098972e0dc78f71417451802e99235addd8a1f0e2433bdde7307d96379e66f580a125ef72d51244bf7fe41c0579a900d7e248a3ab39ca44f425cedae7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    7b33ecd1ed1c73ddd05044f496671d79

    SHA1

    3f129f01c75d96260bb8fc6e01290a74f39a8217

    SHA256

    26a6952b9eafa4ab34cf8f041f2be816ea0e8a99786b96cbcaa03f2d85840d13

    SHA512

    d0e98ddbf21b37e10f75ddd3a788297f9a00d8e5129698e89c05aff285640d3b86d998de941b06b523aceced595a181ef1803f492144fd513bb2eb9917ed244f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    17fc510a92c501d7828e94c92b5703fd

    SHA1

    18e14df094fa71ad37ab4263c3ada67f90abb8d3

    SHA256

    f237b3fc0d4739bb22efef785d117b080d2f0f445f99bf65cff384bd9925d421

    SHA512

    3663b91e62da2312194813d95c20a1752845538e58e0f0456cd58892b8a9f4c0b89c8c63bb9687a50bf526b3b9a5b23efe7c493cbefce9469786588eecc2c70e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    a4907720f4634df5e80cd9ebb3686327

    SHA1

    d2da478b283de5aa46a2471d0078d2598dc8e33d

    SHA256

    ffbc556eb214337226978871a03364900f7ed0580d0c0c020a220832f2a5fd39

    SHA512

    6e6ff27491a7620099f3639368eb24c1afde9f766a37bc44f3e22b9bd64af5c6c2d51a76af408826c83d8ec8123ce4316c841040c51e2d593988fb221cc8200b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    ed01cd9ad38f1bc70ee6337b186bae5f

    SHA1

    66b8e47fe4e68070a3a8b36db1d8f183456d63e5

    SHA256

    df59ade8811e23b0fa35282775f2e1a4c787e29da9b387c63006b3a6a2668004

    SHA512

    8f2022a89145ec6ce9ff91626e0f0139793f568803f7e2b4b73531174b7f93c13b5c98a3b9f38a163f5bf29bb303620c7f41a293f9516b5ed73a95c18733e06f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    2602e6a49979b17455a8ba7fc455be33

    SHA1

    c8015a68904864060a26da8585e55b5ef774bd0f

    SHA256

    5392e372967f9700d58e509fe88a22dd32d6bcec851c204bf4be038d0ffaf353

    SHA512

    61fe20e34e56e590fe2bdfffb6621fb5f7d85b1849adf45f6f324758f834fe5ebd46dabad77b0f592abfb560413fc5276fe6e162b08eb663cd2ae8209c245520

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabAB00.tmp
    Filesize

    61KB

    MD5

    f3441b8572aae8801c04f3060b550443

    SHA1

    4ef0a35436125d6821831ef36c28ffaf196cda15

    SHA256

    6720349e7d82ee0a8e73920d3c2b7cb2912d9fcf2edb6fd98f2f12820158b0bf

    SHA512

    5ba01ba421b50030e380ae6bbcd2f681f2a91947fe7fedb3c8e6b5f24dce9517abf57b1cf26cc6078d4bb53bde6fcfb2561591337c841f8f2cb121a3d71661b9

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarABC0.tmp
    Filesize

    163KB

    MD5

    9441737383d21192400eca82fda910ec

    SHA1

    725e0d606a4fc9ba44aa8ffde65bed15e65367e4

    SHA256

    bc3a6e84e41faeb57e7c21aa3b60c2a64777107009727c5b7c0ed8fe658909e5

    SHA512

    7608dd653a66cd364392a78d4711b48d1707768d36996e4d38871c6843b5714e1d7da4b4cc6db969e6000cfa182bcb74216ef6823d1063f036fc5c3413fb8dcf

    Download Submit