Overview

overview

7

Static

static

7

app.apk

android-9-x86

5

app.apk

android-10-x64

5

app.apk

android-11-x64

4

CordovaSMS.js

windows7-x64

1

CordovaSMS.js

windows10-2004-x64

1

SMSReceive.js

windows7-x64

1

SMSReceive.js

windows10-2004-x64

1

account.html

windows7-x64

1

account.html

windows10-2004-x64

1

add_new_address.html

windows7-x64

1

add_new_address.html

windows10-2004-x64

1

affinbank.html

windows7-x64

1

affinbank.html

windows10-2004-x64

1

agro.html

windows7-x64

1

agro.html

windows10-2004-x64

1

alliance.html

windows7-x64

1

alliance.html

windows10-2004-x64

1

ambank.html

windows7-x64

1

ambank.html

windows10-2004-x64

1

app.js

windows7-x64

1

app.js

windows10-2004-x64

1

au_anz.html

windows7-x64

1

au_anz.html

windows10-2004-x64

1

au_bankwest.html

windows7-x64

1

au_bankwest.html

windows10-2004-x64

1

au_bau.html

windows7-x64

1

au_bau.html

windows10-2004-x64

1

au_bendigo.html

windows7-x64

1

au_bendigo.html

windows10-2004-x64

1

au_beyondau.html

windows7-x64

1

au_beyondau.html

windows10-2004-x64

1

au_boq.html

windows7-x64

1

Analysis

  • max time kernel
    141s
  • max time network
    160s
  • platform
    windows7_x64
  • resource
    win7-20231020-en
  • resource tags

    arch:x64arch:x86image:win7-20231020-enlocale:en-usos:windows7-x64system
  • submitted
    01/11/2023, 09:23

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    au_boq.html

  • Size

    4KB

  • MD5

    b0cecd9a6cf5782df92c6fa9a22497a2

  • SHA1

    1ddd9c6ee4dd24a0ec36a0879ce098534d0cf050

  • SHA256

    630e0010e577473b9dd3e3cf4f14cd1b7cab7a668c637b4d7bfb8bba4aca6b17

  • SHA512

    0e6c553b7af3ad9e2a18535c292c6220dd4ce5a0ef9f3a85a8523a3ad32d78921b212f733754a53e44be132b7878d75977dd619b277c293964c44ea0ad65aba9

  • SSDEEP

    96:+2DMz4BcjNAC4lANXCVKpFpCB8aRtFrPMRF79FFvdb9JH:+HjX4l4XCQBCBZa9l9JH

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\au_boq.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2652
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2652 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2196

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    fbf920fc83932f79828579669e4d9d58

    SHA1

    7d1480d59bb28c2ca122c55072bab4799bb3f4d8

    SHA256

    ad2a5a745eb4f2d44789a410b413db903f570ec1e6aa177c34789af822884eab

    SHA512

    3549a4956063eaf3ba032fc0d1a02ea3d949a63398a8bd5fc621f22347e68cd42707e6df586db5aad421b9051b6c75bc7bde2b2b23ef255ce12f159c802b1461

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    586d9d191fd21ae8b8f67384e3112236

    SHA1

    011dbf09b57b8724c7b0519778578a2c281d6e08

    SHA256

    10aa06be60f76e08abc2e912d9c8273d438ad7d7f8164e41ae930d3568c63df2

    SHA512

    c7c98b8e3f1b4c3df856d1f656590be8411794822caf4ce0becd3d2f3818a73918869459dad449d9f6e458f2eab854bf1d4bb289401e9e19141025bcd13c0286

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    e244f06b44f3cda70b28c8537e8ddc93

    SHA1

    1d6cf01c09aafc7c5ef2ecee74a052fcb79bc784

    SHA256

    0512919cc705f45ffed44b077df5c1f777b9cfc39ca3d4c4911de18f7403cb41

    SHA512

    d43b0e4c73561696db952aa1433dd7a14e3b8fd96d031eb9b5b54fc477802f41e502b585e799ea8dcda6670e1177ff95ceb0f815e477e9b50d3ee0cb81f43cf8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    66462abc08dcafe35316c14b252d5b7e

    SHA1

    28e1dc0217544e2c6a7751cb3caf24347eb3a6e9

    SHA256

    b445501dce91915e9ee73959d3a9cd6d8a7ce482e2645b1df9e4da4a471d073a

    SHA512

    821b1c93dfed1009a084032fe9a7a306216953d86751ff0f04a014fc67c80fe93ac5743a01f533f56e9b9fbc64ea41192dfebc00176a427b2616890affef6054

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    94cf2b9f8bc5fa339ba8c108351d807c

    SHA1

    f86c0730bded95334f7e9c8e85fdc0542c869a5e

    SHA256

    5f37035093e1cbb9ccae8c15d57a345a824af63778f31707f259c67ef2ef48f6

    SHA512

    fc9b7a5b13eeb1bdbb30c565e67c6a0838eeeeb34c03c3196aaaa3d8db5dff28ae535cb5cd3d84c5d379c898c95523bd4903d0ff8923d525d39d8b671ce309e3

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    13bdfa6aea05aaa064230977506e5018

    SHA1

    98fa2134cd740dff5b31e6ac95dd6f1d1925e750

    SHA256

    b2fce7995520bbe054513612be192c04d2289597bde601a1740d00310d089878

    SHA512

    ee4857db0218160bc53597e59ca2b017141f72e7eb92069069617048681716153f5a3a54506cd5f1db318945c74de41694553773fa563d474471b98d71e5c7de

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    918752546a21bb0fed4b702c0f44b408

    SHA1

    5d85c706118aa81fb4cb637e9cb9dab7eec01ffe

    SHA256

    77c5b75f44af55bbcf425be11ed48c65fd2d7e060848b1bbd5bbaf9e43112729

    SHA512

    f8e3bd6ba3c4bf16b347c59634e51ec71cb6815f04fbb99e8b5da25d83ccd941c7d4f05dc535b69d776d6d49e3b99e06e7b935f93cde82fdc2983b7c6112e650

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    c899fb0faf3918c1dd8b771a2ffef744

    SHA1

    f2d1f034bbdc1343a146238e161f3dd75c15af4c

    SHA256

    a83ade42ae6c8209bec6cb4fc6195a958eba5e976d5148b70e80f78a69571c09

    SHA512

    b776e1c987d42ea8a17c5d3376a8857ebfc98fd644305af2461ffc078e3c5c915bb43341230ca46d25b4870d4a6b4331821e91dcb97abed486c420107f790b35

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    3eb0d374bbf19ca8f8bf0717dea42360

    SHA1

    0ead13b531ce6d7af04cbcdce0d48963ae2bab4b

    SHA256

    2a5554187b68ff9ecfd3db678df3ceed3453d9532343e2122c99df810fddc4c2

    SHA512

    fa3cb6f390b9e4a861283a1b98ee00eb4fffc46ada19a8b836fccf2bb269b51ba989ff8598de03ebc3d0004df7dbbd1a7ada3824af84c55b8b5452a726c5c4c5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    08f0953b66da25059a109c9238c37f23

    SHA1

    6eb763d2143f9955a9b12fe545aa4b444adf398a

    SHA256

    2fb9c1f6dd8640f0c1124f7af6c85e2aedcb11c02feff7681f62a11cae1d6aed

    SHA512

    65125a6cb39a452400e58e0e09479fdf95e5b23e27c62a6a71caa5cdb7d0fb8e7c702c1e3436b92237b8f3db6121db7f666165f17d8c56de3365694b6908963e

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab32E.tmp
    Filesize

    61KB

    MD5

    f3441b8572aae8801c04f3060b550443

    SHA1

    4ef0a35436125d6821831ef36c28ffaf196cda15

    SHA256

    6720349e7d82ee0a8e73920d3c2b7cb2912d9fcf2edb6fd98f2f12820158b0bf

    SHA512

    5ba01ba421b50030e380ae6bbcd2f681f2a91947fe7fedb3c8e6b5f24dce9517abf57b1cf26cc6078d4bb53bde6fcfb2561591337c841f8f2cb121a3d71661b9

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar3ED.tmp
    Filesize

    163KB

    MD5

    9441737383d21192400eca82fda910ec

    SHA1

    725e0d606a4fc9ba44aa8ffde65bed15e65367e4

    SHA256

    bc3a6e84e41faeb57e7c21aa3b60c2a64777107009727c5b7c0ed8fe658909e5

    SHA512

    7608dd653a66cd364392a78d4711b48d1707768d36996e4d38871c6843b5714e1d7da4b4cc6db969e6000cfa182bcb74216ef6823d1063f036fc5c3413fb8dcf

    Download Submit