Overview

overview

10

Static

static

7

56f114a308...1b.apk

android-9-x86

10

56f114a308...1b.apk

android-10-x64

10

56f114a308...1b.apk

android-11-x64

10

bootstrap.min.js

windows7-x64

1

bootstrap.min.js

windows10-2004-x64

1

epl1.html

windows7-x64

1

epl1.html

windows10-2004-x64

1

gpl_3.html

windows7-x64

1

gpl_3.html

windows10-2004-x64

1

howto.html

windows7-x64

1

howto.html

windows10-2004-x64

1

jquery-2.1.1.min.js

windows7-x64

1

jquery-2.1.1.min.js

windows10-2004-x64

1

keyboard.js

windows7-x64

1

keyboard.js

windows10-2004-x64

1

libcore.so

ubuntu-18.04-amd64

libcore.so

debian-9-armhf

libcore.so

debian-9-mips

libcore.so

debian-9-mipsel

libnative.so

ubuntu-18.04-amd64

libnative.so

debian-9-armhf

libnative.so

debian-9-mips

libnative.so

debian-9-mipsel

mit.html

windows7-x64

1

mit.html

windows10-2004-x64

1

mpl2.html

windows7-x64

1

mpl2.html

windows10-2004-x64

1

mraid.js

windows7-x64

1

mraid.js

windows10-2004-x64

1

mraid3.js

windows7-x64

1

mraid3.js

windows10-2004-x64

1

omsdk-v1.js

windows7-x64

1

Analysis

  • max time kernel
    134s
  • max time network
    132s
  • platform
    windows7_x64
  • resource
    win7-20231023-en
  • resource tags

    arch:x64arch:x86image:win7-20231023-enlocale:en-usos:windows7-x64system
  • submitted
    06-11-2023 22:01

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    epl1.html

  • Size

    12KB

  • MD5

    3e7834963816ca77838268576a8b74b0

  • SHA1

    5ffc057313b98733454f70b111bab2dfd3dc583d

  • SHA256

    100060f98b85e04f3c5b5b4f9be014396b7247ba3bb142c806556618dc3c482d

  • SHA512

    fb33d7aeb25c74b83d5bf6eeca35ca6781e95115c9e9bf086ee326df14c6f4a4c42bfbdf990b3339cb783c4b0b9d7d5ad6dffcb680a43567a85d8e96c49be10f

  • SSDEEP

    192:lanSWw8dYMuH9OJ6wBnmJht5NFY1khHVh5zxQumM9cupXXfxZe1rJJ:l6SIKWHODY121Rmxsf6L

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\epl1.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2872
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2872 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2968

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    c09522fd9a6c906ff44edd5d078597f2

    SHA1

    19a4542859f80f467101d9fadaec1e7569c37075

    SHA256

    a646bab799b3c192add6a565972a2a0b8be9b9daacaf22e1d6e07a7e81ff3e94

    SHA512

    4671e81a3d80407c79306c2cf009ad9ec1b03588b3ee9f0c1945cf1f66f69a604eab1dfb84fbd656313cd55433aff3d49c2284297283805888324dc0c9fd9a84

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    95b59ff87d6229463a3f3b8b7bff11f0

    SHA1

    0cdc724cded77f5eae8f689ef5c3641111bd5c5f

    SHA256

    d88337b574d815f4ae0b1fb8e728b7db4b414322879fa0f26df91176d667e5b3

    SHA512

    da4ac7ca0f698a9e74a4b50c87c51714c289c5e0ccfc9233a5056049dffb8c295a7f643b110b06a7f3a6d0893bce4f2a7c495d5a3c81bcc0b0036a03aa6f6441

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    18aa487eefff36445484c35b452c01e0

    SHA1

    9e05c22bfd2bdaf79896925bd4e8481ef5cd078c

    SHA256

    b33393ace73e7c8a785a3143c4fdb4d62519cdfd583ff3c99c8269b8defe195d

    SHA512

    78d46d1989b59cf1d137f10b56b21dcceff215d290a8156975c84d3783671cfd3e9772dc61a61e78e04a0d3d0f705c538bd8cb6b19922c1cd01006b3e637e971

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    c4db425b62d2b4b5d8e40cdd3587628f

    SHA1

    b6866575436cb0c6fcb22b12ccc91bfee0591971

    SHA256

    8d5f3f2c3d6cdd4748c194f24aefd37d2751a7d17136c01d9cf24a27e47ea1a5

    SHA512

    629eea9fbe2fbbeed35070d0b02c680b0c4cfd63adc2d0f0158e7e0319057e724c19918c00ec6133302bd60ecaa4e435c001718932feeb72a80eb1ae63178039

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    2ccd74c2989d8455ca28cbf86a23d15a

    SHA1

    63a259d59ea7bfd51224b2bdeeeef60103366b82

    SHA256

    c54e32be04aed3f413d8e6395b79fe3d3a517467f97f603e54e4dc59a0caedc0

    SHA512

    e73e023c0154e16a9f4a8e847d47e88b1c13c5c1739d68f5890407883a39e72ee5a0d7ac951ad7d1a891f45cc3640cc5fc1cfcf447535424ea1940a77ad6bb71

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    a0407b25de3a9a49fc4efc66718d8e77

    SHA1

    abfbee725b5049da8ef47aca1185e5208a243fc3

    SHA256

    b9064e006fb13516299d29c631a4586234a0b12667045adf9b04c3d1e6cb4962

    SHA512

    d6f321d6ac9e02bc1f0739816f34b52bc084e533427c3de00c7467e57396147f7bfea2bb83852cc0ddb688d1cbe6d5fdd8474eea803c9250c5bbc2895aa6ad93

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    ec80a3f6c8283d85a98eded9d4be3c68

    SHA1

    646682d80509f16031faff8f2305d60c8c05dbde

    SHA256

    2fde3d39d95a89ed8a0b147f8b1e6e5760988c5a4f1fb016aabd7b93e039ddc2

    SHA512

    258cdec53a2b7022640137daf11403aa850cc60ce27399a02dcf0b37192253f9e3b74f1cf4fa9ab6ec3d6dae6e86fbd4edc887303c51ade766e34e0aa6be2926

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    179a6254e5a44eb900692099c3b64376

    SHA1

    a654a724d0fea12c5a2d57bfad72ad2746e9fe5d

    SHA256

    973b63e49fd6af26b0d5f45a0deedec000a81f7cab285a0ab473d69fdb911122

    SHA512

    7609bd96eb00d2e14eb58a2c84e8aa8f60e5427e2e2395fd14b5531b6e1bb76e7015c9fb61c1ba04d7fe8491ae7ba6762f2491bd10c51d15200c5382aa01c138

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    5ad083e8f5cfef0183e98fc996c6b759

    SHA1

    7e5f2ef75f1e1069ab035bf21e976aedfbb93da0

    SHA256

    bdef40eedfffa98b92543607c8476aa741486507eaa02c5d09df0772b0c5a302

    SHA512

    89c5b499b3edb9373877c2bfabd6039f5a8127f7f0f20055971a00d9de67a91ae9c8f2dd6860bac6396aa8574abda2df81db37296050e0c8b6b1150f5ed8d451

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    7908b27775637e8275178d28493448b8

    SHA1

    2e9a1d69f53f671b34fbe41ebb163c103b9ae716

    SHA256

    a978db6aa9e006d7efedba5d1964063f923a90795fe84973c237c52afccc9bd7

    SHA512

    68aef4c9ccf07c94d3f4034d2b7eccccb6fb55ee34c11f5e42f5a42ba0dce3044b9d6dba6bf03358bbe98611d83d413474746ad3b8dc85822d3a5d5eaea72a85

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    1b7ea79f2155286e68e1128d6e78e235

    SHA1

    f1798969fdfb29ef6e5851d51d9a26ae71bff526

    SHA256

    cead3028ebb924d8ddb7d8e29b1b0df9d3a88cfef8e0d865f751e5b5fbed3fe6

    SHA512

    3f480e111b23f94c6ad298b4ccc0112da210c418efa4341553c735c1c5bdc249c45ae90ef1c7a447e6ae20ab01f02ddc44642b851e2a208ca9641296770f6620

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    8fa10817a062cb78c2d8419ecd1a479d

    SHA1

    e4650f58aa3dcc0446d6c90b729719bb4665d11f

    SHA256

    f17f1eb13fd128b5ab1b2f60ecae2979c529988ec136454d369961dc3808d717

    SHA512

    902f9a9e091c6b30262377d413ff7820ac66d4951a16fe6d135caa38e7a2759386db8419baa9d0a7675961a42198b1d86f4765903706c28936275575d64a6a15

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    0928d976e8da754a3a57242f9b73f566

    SHA1

    2caed7895780ed244690b0f6c46cccd391ef5b9a

    SHA256

    393f51c0d6048327774f8a47ed2506f630d010ac5873c711c077dc4b9b1f7304

    SHA512

    58f86db0d8c6b8908b9c495d409b6ace7f765bec608e176709e2b5a3b4e3059f713e5cde553df09b809e05360e8e1c488a4700b480ee37967b542cab75046cee

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    6a427d96c3a5d0fdfd674b92b5c1c8ae

    SHA1

    519ffab46b783a7fbae90933e4e6817a4a76cbff

    SHA256

    7afe7336c2ecb75687ae1871d2f7e972894ef2b5a4612e47872e6b0d9faedde5

    SHA512

    f34996bd2392ccd6fed28e76c059e924ea1b8eb2b15c6b04597194ade308336748166dfbae40bf0dda635b4bda2f7f63dced43ec003ed97a990b1d56bd7e5926

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    3aad96cceb6eacfcd5e60608cbee9412

    SHA1

    d26179d25a522fcd0f6d92427780426e0bde0416

    SHA256

    14a4aafc5999252aa6f824478fa5b994abc55709d9a073c37d56d44da2e77fef

    SHA512

    a62ee7e16b5722596ce55cbc59181b7000181d47622e1c1c1923a77864957da0c28d016c1d1aca03a708fc55908b5ed777d235b265c08f36ec80a6978c120aef

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    0c6eb729cb26800ff5251056b1e6fa79

    SHA1

    84640cbad6d22d0db27b125c269156c993e616bb

    SHA256

    03af03688073cdb710fb4fb4c285868e7786feb8d616a7b2b4877f81c8a6de14

    SHA512

    b2e35c42c6cb42251b486a142760d673c2e47cf03c0cff497befcb15661fe63bdf5512cf17382a3827e9429306c6e45ee92c7f54449777ff3b513b55a1448ed3

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    a8a4988913d1a799d78dcfcb19a2164e

    SHA1

    56db16598cebcf1a207d3387d67633739c93f36a

    SHA256

    83620de9860895bdb899775be511767e1f27fc70e04986d9eeec88854a46731f

    SHA512

    bb4802ea00799481274c6c65df89a1b244f801aafdb57c83c9b737e4cb7145de3910c4cf30d12dff003dfcb79aa96881663a4a3e0beedf1567095c776d3dd75f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    3c1f1b2b6471fad811802c0769bd50b6

    SHA1

    36dd617cbb8e193e21cf0cf59240f1f9df89c70a

    SHA256

    2f4ec60bc2f887a997edb9c337a5270bcdfe2f73073e915ce1d041d76e7f1ca2

    SHA512

    b7ce3e20127aff21719da750cf8e370ae149423b306b4e7c916cdbdbd59be1c9c1441a77ef447f121a7f1f4c1516f4b64e016b05899e8415e8a487ecaa822ee5

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab96E6.tmp
    Filesize

    61KB

    MD5

    f3441b8572aae8801c04f3060b550443

    SHA1

    4ef0a35436125d6821831ef36c28ffaf196cda15

    SHA256

    6720349e7d82ee0a8e73920d3c2b7cb2912d9fcf2edb6fd98f2f12820158b0bf

    SHA512

    5ba01ba421b50030e380ae6bbcd2f681f2a91947fe7fedb3c8e6b5f24dce9517abf57b1cf26cc6078d4bb53bde6fcfb2561591337c841f8f2cb121a3d71661b9

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar9727.tmp
    Filesize

    163KB

    MD5

    9441737383d21192400eca82fda910ec

    SHA1

    725e0d606a4fc9ba44aa8ffde65bed15e65367e4

    SHA256

    bc3a6e84e41faeb57e7c21aa3b60c2a64777107009727c5b7c0ed8fe658909e5

    SHA512

    7608dd653a66cd364392a78d4711b48d1707768d36996e4d38871c6843b5714e1d7da4b4cc6db969e6000cfa182bcb74216ef6823d1063f036fc5c3413fb8dcf

    Download Submit