Overview

overview

3

Static

static

3

BINDInstall.exe

windows7-x64

1

BINDInstall.exe

windows10-2004-x64

1

Bv9ARM.ch01.html

windows7-x64

1

Bv9ARM.ch01.html

windows10-2004-x64

1

Bv9ARM.ch02.html

windows7-x64

1

Bv9ARM.ch02.html

windows10-2004-x64

1

Bv9ARM.ch03.html

windows7-x64

1

Bv9ARM.ch03.html

windows10-2004-x64

1

Bv9ARM.ch04.html

windows7-x64

1

Bv9ARM.ch04.html

windows10-2004-x64

1

Bv9ARM.ch05.html

windows7-x64

1

Bv9ARM.ch05.html

windows10-2004-x64

1

Bv9ARM.ch06.html

windows7-x64

1

Bv9ARM.ch06.html

windows10-2004-x64

1

Bv9ARM.ch07.html

windows7-x64

1

Bv9ARM.ch07.html

windows10-2004-x64

1

Bv9ARM.ch08.html

windows7-x64

1

Bv9ARM.ch08.html

windows10-2004-x64

1

Bv9ARM.ch09.html

windows7-x64

1

Bv9ARM.ch09.html

windows10-2004-x64

1

Bv9ARM.ch10.html

windows7-x64

1

Bv9ARM.ch10.html

windows10-2004-x64

1

Bv9ARM.ch11.html

windows7-x64

1

Bv9ARM.ch11.html

windows10-2004-x64

1

Bv9ARM.ch12.html

windows7-x64

1

Bv9ARM.ch12.html

windows10-2004-x64

1

Bv9ARM.ch13.html

windows7-x64

1

Bv9ARM.ch13.html

windows10-2004-x64

1

Bv9ARM.html

windows7-x64

1

Bv9ARM.html

windows10-2004-x64

1

Bv9ARM.pdf

windows7-x64

1

Bv9ARM.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    162s
  • max time network
    239s
  • platform
    windows7_x64
  • resource
    win7-20231023-en
  • resource tags

    arch:x64arch:x86image:win7-20231023-enlocale:en-usos:windows7-x64system
  • submitted
    07/11/2023, 13:43

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    Bv9ARM.ch09.html

  • Size

    11KB

  • MD5

    202e51be11c078f861257e4825024da2

  • SHA1

    5d6d2504fb7a044896c1e49bf07e817ee2c9b02a

  • SHA256

    37e687ea81477566f51b7f29cf171efe8f712ce2847ce88de4f2a88d230bf980

  • SHA512

    9fe68be137644e88317ff5aaf62b990849c0fde7c9dba22931c10639e0cefd743e5c37ae281adb5895af1d781891461b03d6bfc16caf21cf65b2e28ee9ab7d5c

  • SSDEEP

    192:nyvOHIjtmNSSuIHDrcfUQiJ/cO0seY/YKf6+Ovx28w3R:nyvOohmY/erD/qstXOwjR

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\Bv9ARM.ch09.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2692
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2692 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2528

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          ea06120f16b245445e513ceb28296aeb

          SHA1

          3d75a5583c68882f0196ff207157a42c4dc6512f

          SHA256

          72a3fd69ba0b2d59a401ac7e3a10e263f1b064898a919e9f31aae2c925d8e2cf

          SHA512

          e2977e2bc20bb620c064b1b02e15be9da2c840944ac69a44ba5f00ff993ffe32239c377798b175a8a41a631563b935a798cee81945bf1b12177cba3bb0afe1fd

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          96df80bc4fc5c91c672dc56e0ea87d36

          SHA1

          72fbcbabba5395c9a076c0e2df4162bd856a8459

          SHA256

          17f7ac618ece3041dc7fc743a433005a0d9496b8d084b4532c45b28da579f71d

          SHA512

          eeb06e6d630ea81b955a057568a06db4e292d614ec5451c9da8dce290f2447608b65cf8cd2524053415966143edf9b483837974ab5130f87e988700c2264aec7

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          b51eca3135721616d18e615bf5d4333e

          SHA1

          37416c0f6c4ea06ad949f1de36438dd5ed437c61

          SHA256

          8df5c271a1b085a1d381987f557f5ebb11e116e8b3ed8541545adfdd903b6852

          SHA512

          c1acd8891e5281861f535c58a81363c26abbe3de6bdc8591efd5c65e9a544d243287d713d31ca52f7b2cf85b7337c87cf410fdb5675a8582e11daca89b8aea0c

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          fcf5eeaf76911c52f96a431dc8714c66

          SHA1

          fb07e03001aff522e7ee7fbf8be79a66fbfbd916

          SHA256

          ce74f6ad146690d68c98c6051e6920719aff53ea2acd64b5be33de06a76252cb

          SHA512

          217ddecd03c59db7abc5e6a5e65016cd2fd221220d4e77ee08a04b79e4e8ebc286b76c5c36dfcad619df1eec55845c5e62e910168584b4ee1f419a52297d91f7

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          1f478e8565c447946112b229f297327e

          SHA1

          353ec381f5ad94d2c915a60c8f1a539d279dcf14

          SHA256

          3b26dec9fc3b6163bbe2849650ee0d1094cbbf8df7e3e097c85f8c104c0e55c2

          SHA512

          021719f202a37f17e67deb3e76ce8fa069c3d19d18b04830d040d00ab6960021655ac7f193bc49b18aee8242b5b25e6bc89626c220e9d0403f9c2f809785cbe0

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          cca7c398d01756e422312541f5fa9f1d

          SHA1

          28d018dd1c378713d4395b6f01ca2570d1429d12

          SHA256

          2979dd88ae474e465e5ad24b9c948c3d36a016dde8802d45ca2b4a7c214172e3

          SHA512

          d2d0270a44a7a020566e1788e1604d06f4a1356568b7724e86eabaef727632de81e913c66ce6cfaaa3314f1ba4a95afae72607b8264d8a352342f8df58196cad

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          97d4b9c9c77d10ce6d3e6f2d88cc00a8

          SHA1

          cbb22fa2fbd3caf7a6fd73b7a8c1bab2085e672d

          SHA256

          30433e867f3dee40b82f9628f9c7384fcfd5a1a8cce83230a33428d65fba5908

          SHA512

          9ebc2574277b7f899fcce43831448bbc332ed755c70fc4e046939e68735c0cfe54ac3c39a75d772105cfb10874b68799ccf52935d973944754cbfc39c3798d39

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          e970aa76469c9967c31c2bf228ae9628

          SHA1

          2a7088182d459436341a0f1434dca29e005038e0

          SHA256

          9206ddb021f4547be4a724ff52be8b92ee34924e3e609317b252714de55868ed

          SHA512

          de23059a918adaf79d0efc94a137e6025e2d481f4448b5668637227fbe1ac8bd7a1b022f33c806db16da1af1bba042c89e0cdb5957a9e948730a2e0d2d8324a8

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          2bd62c1aa83a9f7b0616ab6be7c722b0

          SHA1

          38aa06a655061759a4aa8a78177ae4d48347fbc1

          SHA256

          622f7c1c378af468f65e4b5896d0e5f3f2d386955a4906ab68eb394a16a543c2

          SHA512

          825e146c4518ac4cfd7223a853210ff8d00be4c4e489fb85955dff2f87a7533a33508a802d4a2418ec21777cc69994357c4f30887cc9f675b612aa32de6bca64

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          e0c6ddfb3b94a51fca32ff9ff57cb680

          SHA1

          47e96a6fca608259644b8819866a869c684182d6

          SHA256

          deb46dad938a068d8b5c394f148b967bf0f0f8aabf87c9775e75753d3531cef7

          SHA512

          13038ea15bc00afce457dd08d20575f56d2f7ca746b3b4c1d540da92037d697a9c87c895fb0cfe47eda596ad0ddd6ac47ae45a42b48b343d97ea7532775edeeb

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          8fee4c64cd66c03de88650599a0851ba

          SHA1

          80d098a72ef352dd288f3bd931b8745bd090a211

          SHA256

          d1166b06aef12b3c5403df38ed73d5bd751f4e6b9eac8571c13c3fd7805ec3c1

          SHA512

          e79f45cdcf58dbd0ec8de6f5b5feb352b284f198425939e746f3c47f8169203bc4d5b6370585227feb68ded86a1e58ef2f4f655805862ec0cef099c939f40d19

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          87d3b155a50f159b93455f814de4f349

          SHA1

          a510d06e673cc01c3160577381e78d8e1bad069d

          SHA256

          2d0251b6a7dbcf7a7fbd9d6641edd59d273d9b7d416ee27f4c0f9b50b197557d

          SHA512

          5dee19e90bdcc2335546aad8672d379ee77b38ebd0c913d0efc18fabc2ac4d1713eab1264fbeedcdb3ff24b34d2540c7a17ef2deecd9b86da2c1c0a1eada8a94

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          eefffa80c51de280a33c71ccfe604637

          SHA1

          094e8c5a3f1c6ce7a367374042db330486dcd13a

          SHA256

          fba6f3f419b3ca9a0360eb17574b4de836d32c57d8d2ddd0602c7e8ab635957e

          SHA512

          0a7e68978551474f4d9677496c8ef9ed3509536b93917dd44872c001b09502419a56921c7762f36f54b5fad998c72cb1ae42661ad13b28030a3e783dd7b9891d

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          9cc3987ba30b7f04344314f4724369f8

          SHA1

          82eb186e60fda5983a300b878825f95fd6be034d

          SHA256

          e21353280ca685ce437a24cb2b1394da1bf2a7c89d180d5e1cb6d145979febe9

          SHA512

          b11f03aa40bf7a60b1bba379141903ed528c20566ca8348a9ca42958f0cb1e528e665d02c6601e2600aeabbf525206f3f397bd1300b3454ebe3b94d9e7ad6c7f

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          b3aaa7c82223d6d4a00e0abb5893d7ff

          SHA1

          2d7fe8b1bc542e1b81b75f4fe11d4b304683f6cb

          SHA256

          58fc626b2074545a52095eae3f0f9a05249a2ad45ed2bcaf5ba5709ac3102b52

          SHA512

          b51a2737d776efa7feb42e0404987f2601d3de3d05e013e9f730cb254b03f76fb165b3596ee2f93712bf8a82e4bf9feb2b57098f1fe06c8609f9f93b2f288747

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          8491144106823cb5879926a064d44f22

          SHA1

          87b91046424a146b76d27bc6469650a5092645b7

          SHA256

          dee8935280892d70e5e5ea8a96897b39d74a42d6ea7ef3cb60da6ac10fb8d128

          SHA512

          bbe8f292cb76c41eb5964b5fbcedc0fe89f6dc382a6dfc280b720dc941e3fde31e47353278c7db7f0755b7f8bb9ec0a8a25d4876a2ced9b6e00d392a99a807e0

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          21198d463cb247e8a5d3aeb69b0645f0

          SHA1

          a1af06e295f7ce31b7fe5383b6850cd87d388394

          SHA256

          8691a883dac4cff48fe343fc0b29172b04fbc44c755e5dd707514f760ad31ee9

          SHA512

          5346c9cc878cc5422c53672f63f79b3c1ece0e4210f92d931318c523faca759ca104916ec656abb2c0976a67a5eebd082f38a413c41c2c321908ba79e72ac904

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          378633fb0d2de2156e314159a4003491

          SHA1

          146e4570dc083277c05f7fada5c0d9e6873781a3

          SHA256

          0c57b5865a8d5f8ffdc02dc4437c3f877b5ed18183ea3bf24b347f0695cf781b

          SHA512

          b88466bf016a25e61242bcd76e27e18eacbd2d80454d1aa08f6bb305761220e8f638493157936f7ef0faa39f8e3756cf0e00ec30ae9b1321f762be6fa16aab83

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\Cab2C8D.tmp
          Filesize

          61KB

          MD5

          f3441b8572aae8801c04f3060b550443

          SHA1

          4ef0a35436125d6821831ef36c28ffaf196cda15

          SHA256

          6720349e7d82ee0a8e73920d3c2b7cb2912d9fcf2edb6fd98f2f12820158b0bf

          SHA512

          5ba01ba421b50030e380ae6bbcd2f681f2a91947fe7fedb3c8e6b5f24dce9517abf57b1cf26cc6078d4bb53bde6fcfb2561591337c841f8f2cb121a3d71661b9

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\Tar2D1F.tmp
          Filesize

          163KB

          MD5

          9441737383d21192400eca82fda910ec

          SHA1

          725e0d606a4fc9ba44aa8ffde65bed15e65367e4

          SHA256

          bc3a6e84e41faeb57e7c21aa3b60c2a64777107009727c5b7c0ed8fe658909e5

          SHA512

          7608dd653a66cd364392a78d4711b48d1707768d36996e4d38871c6843b5714e1d7da4b4cc6db969e6000cfa182bcb74216ef6823d1063f036fc5c3413fb8dcf

          Download Submit