Overview

overview

7

Static

static

7

com.xiaomi...om.apk

android-9-x86

1

AppListCol...unk.js

windows7-x64

1

AppListCol...unk.js

windows10-2004-x64

1

activity-d...unk.js

windows7-x64

activity-d...unk.js

windows10-2004-x64

1

activity-dialog.html

windows7-x64

1

activity-dialog.html

windows10-2004-x64

1

activity-d...unk.js

windows7-x64

1

activity-d...unk.js

windows10-2004-x64

activity-d...unk.js

windows7-x64

1

activity-d...unk.js

windows10-2004-x64

1

amazon-sho...unk.js

windows7-x64

1

amazon-sho...unk.js

windows10-2004-x64

1

amazon-shopping.html

windows7-x64

1

amazon-shopping.html

windows10-2004-x64

1

amazon-sho...unk.js

windows7-x64

1

amazon-sho...unk.js

windows10-2004-x64

1

app-commen...unk.js

windows7-x64

1

app-commen...unk.js

windows10-2004-x64

app-comment-list.html

windows7-x64

1

app-comment-list.html

windows10-2004-x64

1

app-commen...unk.js

windows7-x64

1

app-commen...unk.js

windows10-2004-x64

1

app-commen...unk.js

windows7-x64

1

app-commen...unk.js

windows10-2004-x64

1

app-commen...unk.js

windows7-x64

1

app-commen...unk.js

windows10-2004-x64

1

app-detail...unk.js

windows7-x64

app-detail...unk.js

windows10-2004-x64

1

app-detail-more.html

windows7-x64

1

app-detail-more.html

windows10-2004-x64

1

app-index.chunk.js

windows7-x64

1

Analysis

  • max time kernel
    134s
  • max time network
    138s
  • platform
    windows7_x64
  • resource
    win7-20231023-en
  • resource tags

    arch:x64arch:x86image:win7-20231023-enlocale:en-usos:windows7-x64system
  • submitted
    24/10/2023, 15:50

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    amazon-shopping.html

  • Size

    1KB

  • MD5

    762766e130c10012f7a5b8aab1994ae7

  • SHA1

    17f6af1a7cffd2a967efd490387b70438eeceb49

  • SHA256

    0d2d34827b9f7582389392b225e6f700944846d7e48fa040c9b3f9afaba21fa7

  • SHA512

    492e865047b13555203fa697e6eb9c8f236d0a640c65466d656f5c9ecca983bb4d8f0459a418c41a6b245b937d8210a84319233976f2e25d0a1e76f30251a19c

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\amazon-shopping.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1108
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1108 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:3020

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    56ab0a438d331c54571f08aa90f226f9

    SHA1

    d51f6efc659a0039d0c32b83937f1a9812dca339

    SHA256

    ea18201d0c2fe2a9e1cb8877ecd148a7170fd3729abb6fed0db79296c17ee147

    SHA512

    9308e84d8527965e6fe9997e1f3517fe175d5c3a973c3b19834096b02ed218576b5b634d4005a9901a675841b13e66d6260be218983cef65c9a93e859797b02d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    42b92d0ee2d38efb7a70d0583bf74017

    SHA1

    30c28fcde8a3bdfde8f63e0773863ca297edc444

    SHA256

    fadf6ab909d943dd5db446817d8bf0471b941960083a9aacdf459b34d667f313

    SHA512

    aa245e9b9defbb4d251192972b405305113bbe5a4afaedaf2e621f8f2b7248e4c0bddeb6cf0a443ad212885bb23bfb7490a21541d35042edee7ef3e566f0f5db

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    7dd4fa1f3189e785643bf633baab1b7c

    SHA1

    f8023747bdca0ad803acf50bdfcc5cd7d16a1714

    SHA256

    77ab672cc5015144eff008b532bd93632bd188bdb48212fd12250d1584996dd7

    SHA512

    6cdc3ffbdebfd406c094ec08f099408543efb5af69faa5ef024f38f2060b3ab45d599eda75a41ce613e76fa75ba09fa5b2cc991f4e4e3679a28d73cfbf661ebf

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    b4bfd8788bd9e93f09dce280c8fc2c4f

    SHA1

    483dcbd0ca3d840be15f170c178e2bc147a18e9f

    SHA256

    4df6101ec200975eec7e91dcc3ea2234b62c6bbe0767edbc59cbe46f4d2d168f

    SHA512

    b23aed38e010c857f69202c1ea820092630fa6e3febb18d02e3afde58d8c5a9c0b42e3b2b8afa9b0ce61179e2ca06f3e74579c7985caeeeebe1bb935a6c12fd2

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    b748268d8d204df201c3e0a5ffb50973

    SHA1

    5c32ea6d8b65b3d522d7362835413e4176b03c3b

    SHA256

    fa20b67b993586048dd517252bafb5a99aba4c885206a809cc63487ed9ad24f8

    SHA512

    2375bfa7b2b88bf174f5d3ad4129d4bddd9b088d1250142b2bfdc7d69a1466b56507cb53ad22f4e4ce5a45d9e8a74afed1713fb2aead2fed3c02cb8c0c49d6ca

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    6b9870b9c06e5ce6c064ec980e9d54fb

    SHA1

    b9e1ca8e1b340c30c201a69d2e015e64d9fd1930

    SHA256

    8754647d3aa3d2687dad62bd1ba98a940365d28df2d3d07dc4faa33ddfea9e62

    SHA512

    f353a63a8ba4a50a9d5b78ed0c07569c2c45e8ad56aeab6de0f6a3bbe208e20cf0b789493ab38dcd67103598c2589fc06ee343440db84ea518c79f67f6d45098

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    75278ad17bbf14e7bee6c53a1f19201b

    SHA1

    241ac34c6f096c045e9285a480c60fd7eadad3f0

    SHA256

    91f9211c0da1df33451cda5eb7d095f882a0c6ae2880348e3d10b3bc7c4092e3

    SHA512

    3b3bd2ac92cef7aff6ace8679a0f5771ed0ee26e14b3fc7aa98bea281340b3c2336d11184a3605ee2f866ee029b8723855bf8a09700ba01f36da4b97295cdf16

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    9faac0f6ec55ab86bd671e836558cacb

    SHA1

    a1d6c149d2332d0c4f9e929d1022a86fd7f15c0a

    SHA256

    ea2385dff160123ee01bcc8c30749309920dccf42fbf3ad17db90a100a17dc9e

    SHA512

    3bc0b89973b0df2833e5c8cca4838b600980cd4e03cdd02cb7ee186917182277205dcb4a03c86272ac09c8b92c05f08ad70bf0bbba067e3977c71c2514a26a17

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    d8b227e646e73729741f88f7e9fa2241

    SHA1

    23088ba4f7e4bff46f631524767a21f9e36fb5e3

    SHA256

    cd8159ec0103da5d78625d32a149917c254f93e2b1ef9f76b28b611f1e9f75a6

    SHA512

    14aa2e610d078e5062117a1a79c04fd94762912895c9320649b05d37a667e0465cef55d7de24a9f21d3945888865635f0a4cebb8493d5ce50fd5edb352c4dec7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    cc06a8113b99df4fe2069e53990f1f73

    SHA1

    37ec858847c59e6551a37762e2f9f55562707505

    SHA256

    4d1568a16b4285bd8c8040a9903ffe099d28004b9a57fff239b19007dd36fd5d

    SHA512

    fa977ac7dd8faf19e410662cb41715a5398b9c5b4e91d886c075309d66f1982c1821336030967b15427ea37af842e798916ae3f7801c43b8b3b245e3d7513465

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    8a42dd81df9b8de3782bb62d83fc95ea

    SHA1

    b88ca092344f3e598f6d459bd56b3c5548fa0fed

    SHA256

    3b475fd7d8954d156bc69255ceaada193b14b19aacf9225d7a784b093142c583

    SHA512

    bad99263d7b8a982bc5c420260655c177d1e75a8327128505b48401c8053e17dfc9d76d64e323c3094b1088bb15156b8871d7cb476c4fdc274c74c1908826bcf

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    c2efd168efcf7ece99bda4276fb23a08

    SHA1

    f27aeab25bc5f6e190ea542938d5c49dc13a420e

    SHA256

    eaf9309881af40e8074f44b2c8b1aa98bcc03280623896999e6ccf04d2444451

    SHA512

    f169fd46593e0f8fa56ee6acb7414634d3c13e12ecdc15e085216c32774eecd95130c24b2458f9613a22e68d2679c38b5eac543b0cab21203c30b9eafda7e066

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    c196b62d9a03fa01f5e20a7a9444957b

    SHA1

    6a5a37ffd1ccefa633de24bf3698ac38ea1e02ed

    SHA256

    d74d6aa5f2c7dff97516eea042b1c5a005ccc808559f43fb5b8035b8015fa4b6

    SHA512

    6ec9513c4b948955960977de0f5dfee9cd0834e58156517b6853c6d1b9e0a376d351242ae4f58acc4552bf66f96a1582fddb397db061480f1ebb26a28c4192e4

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    6c14addaa5c746cff37700e36f532bb5

    SHA1

    c2fc8e8b33f0f5e8fab66663141b15aa346b770d

    SHA256

    f659a56e87c51ae695594b293b7373c329996dfc2d267ad2c3da168aa98ed59c

    SHA512

    fbc1414502e6ea0fdac08f2ace22a4314359f23eef310768f1fd0e2555aae09c3c188088851473113501d230a3f7e2f14efa3c51dfbaa195d1d8e828b2cd86b1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    3b4e7bd94c8e86a352095ef2663c4947

    SHA1

    79cc5a00874e37f593129c9b78f944ead3cab77e

    SHA256

    82a8633005e86650592763addc691ad029a5a04f76373ec0a772a1c3142c6715

    SHA512

    ba67d7f697e84890fcb42329172caf5d56e72c4406e2ce5e844be5ac80d25b3c62767638200ad74ddd9540bf35bfcf77352e9e610fa40f4b9938aaa356446dcd

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    0c6fca81048c820bad2ac7a6463450cb

    SHA1

    9ffe290e388f6db330b64623970a88e94021fbee

    SHA256

    73e77d88e33d0f45f528db6e7cbd4006ab3d19339c41ee3bf0041e9ce60a58e1

    SHA512

    4def8b06aa07e8c3651ba09059cec05c5db5f90cc13bf3fbe21871c9d5bfa36de556b9f23ad805038867d227b1ad9a5b0951766d984ba11629e8d709191b891d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    a8e66f850c1fb63490a1677120ced994

    SHA1

    e3582e05c50ef9344f77b259a1c368ecb03b1cde

    SHA256

    186492c698de9e1d0b2268ed3010d438a98d3f37fc76f96c8fd61221834b4963

    SHA512

    0f7aa4d436d883c7eadae93336d64dba8f315ede31c34323f143fca0e7f0f81352fea09569050d41517471ca01fa11963217f3c934a45d5753fbd09146e69c69

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    c634edc868b6f324066fdc1bd87c9aca

    SHA1

    8aa70314ba3a4ba030cb9eff14ffe1648e88886e

    SHA256

    bc480c95c0395acf61d828880e9a3ceaf337e169fdfd2c5704be8e1fff0f3c88

    SHA512

    455c62a1c75eeb798edaf148da0eef0b992654e7796a8cf39b1d38d3b24cf6a5f37e395a7b01b2455b128cf60833165e48e720effd5a5078a9373901a2136e36

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    e5b0155fad6f3fa2f9ec503b04205808

    SHA1

    172783ab9697bd55a6a4d2b5d70e831d8d2191c3

    SHA256

    bebec85ad8160f1f3e843c23f64ebc47baff323e10038bf29790a88794be7e25

    SHA512

    812b00bc6ebbbbd35381758109c7683a8c64d76968b90441bfc43844a38e5b7c74435bfe831a6d5ffc9341a091d1bc746e17d276e87ed2c4efa72c4d30d691af

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabAF34.tmp
    Filesize

    61KB

    MD5

    f3441b8572aae8801c04f3060b550443

    SHA1

    4ef0a35436125d6821831ef36c28ffaf196cda15

    SHA256

    6720349e7d82ee0a8e73920d3c2b7cb2912d9fcf2edb6fd98f2f12820158b0bf

    SHA512

    5ba01ba421b50030e380ae6bbcd2f681f2a91947fe7fedb3c8e6b5f24dce9517abf57b1cf26cc6078d4bb53bde6fcfb2561591337c841f8f2cb121a3d71661b9

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarAF77.tmp
    Filesize

    163KB

    MD5

    9441737383d21192400eca82fda910ec

    SHA1

    725e0d606a4fc9ba44aa8ffde65bed15e65367e4

    SHA256

    bc3a6e84e41faeb57e7c21aa3b60c2a64777107009727c5b7c0ed8fe658909e5

    SHA512

    7608dd653a66cd364392a78d4711b48d1707768d36996e4d38871c6843b5714e1d7da4b4cc6db969e6000cfa182bcb74216ef6823d1063f036fc5c3413fb8dcf

    Download Submit