Overview

overview

3

Static

static

3

BINDInstall.exe

windows7-x64

1

BINDInstall.exe

windows10-2004-x64

1

Bv9ARM.ch01.html

windows7-x64

1

Bv9ARM.ch01.html

windows10-2004-x64

1

Bv9ARM.ch02.html

windows7-x64

1

Bv9ARM.ch02.html

windows10-2004-x64

1

Bv9ARM.ch03.html

windows7-x64

1

Bv9ARM.ch03.html

windows10-2004-x64

1

Bv9ARM.ch04.html

windows7-x64

1

Bv9ARM.ch04.html

windows10-2004-x64

1

Bv9ARM.ch05.html

windows7-x64

1

Bv9ARM.ch05.html

windows10-2004-x64

1

Bv9ARM.ch06.html

windows7-x64

1

Bv9ARM.ch06.html

windows10-2004-x64

1

Bv9ARM.ch07.html

windows7-x64

1

Bv9ARM.ch07.html

windows10-2004-x64

1

Bv9ARM.ch08.html

windows7-x64

1

Bv9ARM.ch08.html

windows10-2004-x64

1

Bv9ARM.ch09.html

windows7-x64

1

Bv9ARM.ch09.html

windows10-2004-x64

1

Bv9ARM.ch10.html

windows7-x64

1

Bv9ARM.ch10.html

windows10-2004-x64

1

Bv9ARM.ch11.html

windows7-x64

1

Bv9ARM.ch11.html

windows10-2004-x64

1

Bv9ARM.ch12.html

windows7-x64

1

Bv9ARM.ch12.html

windows10-2004-x64

1

Bv9ARM.ch13.html

windows7-x64

1

Bv9ARM.ch13.html

windows10-2004-x64

1

Bv9ARM.html

windows7-x64

1

Bv9ARM.html

windows10-2004-x64

1

Bv9ARM.pdf

windows7-x64

1

Bv9ARM.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    135s
  • max time network
    135s
  • platform
    windows7_x64
  • resource
    win7-20231023-en
  • resource tags

    arch:x64arch:x86image:win7-20231023-enlocale:en-usos:windows7-x64system
  • submitted
    07-11-2023 13:57

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    Bv9ARM.ch06.html

  • Size

    616KB

  • MD5

    bd347dfa6e9dae8c5895c39298872b68

  • SHA1

    455b1667de097e54d83dc10835a316dfc0a17b6d

  • SHA256

    9a1cfc1051cf5194cbd85f3901dde46cc13eff0a6ea98514b84f23b1ecc56974

  • SHA512

    12f1ec5e71479473aed9552350fa7cf8c5f22a3b3b8649e34de4a06020b575b092170511114199bd5493763204ea4f534fc46700e68adeb3707dd8a95f4b62ff

  • SSDEEP

    3072:n0PuSJlbnbP7xp8xX1nSzYocMTV/QqKON5w5O9awFmtakgoVYr5I+gd8VGCF/5RP:n0Pn7TxGXZ+4rwMtaLVGC5RPI/M

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\Bv9ARM.ch06.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:884
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:884 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2260

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    4c68c0e8dee917c4bce567e374b35fcf

    SHA1

    b9cc5059f84ff2fe9aaddc698647c8388252b42c

    SHA256

    3627cb033954f403742cfde9c2a13bb66e710b2e3d9744660337b9526c3451ea

    SHA512

    5ae896f5b5a0135add2d057fb99dacb3aa2c4053effb0f2e2fc43373e98dfd500886d9815d4668d937cadb4dae1af49e09d0be318f6295f9af6cc377f305daea

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    5edd5c11eb27f431ab953df8c890aff2

    SHA1

    72e61a59c7bb1b04b786253d189e5df78dd78afd

    SHA256

    4d70d7a30c62893c81bd231acc6ce0291b0df663a10625ab8dc97fd19f141f62

    SHA512

    fbbad4251772ecc62f133c58a5c5a34cdaba07df437eb2ff7d07dd6855dfe7f76d5ccb68865f0731d7d3a69d75692b9f05591b16e635a326f4c863b1d608dd00

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    d9237c73981b45a47fc803486fe2eaa4

    SHA1

    da901bbe3381efbc9065dc08bcb2869e4a62cf84

    SHA256

    65992c856e51ef7d71231312acea67eb3ed52cd081d67d659a0459c3a5047cbe

    SHA512

    d7c91480b2f4654ba61e283e569ab69e00cbad695a9b72f553cbe850b023e7a479e66499f4ff1a04051bac7cf8c95dbd5be51624e49bd285908aa14990b8b8da

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    aec66ae1f77d53f616442e2389a0c1e7

    SHA1

    a6bfc0988ab26349a99a549cf2e4ddc7443dcdbd

    SHA256

    1824cdf504c831179a5cbf63900ff5aa0b90ce9cbd923c4e0e5179ca04fbec53

    SHA512

    18f02d35e78d67f0968a725213630c5bb81df069ca89a0bac1ad4f9a80e273161bbb5da22fdc76d506727fe1a881254d919a92224265aa481a167b4554c6014e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    f83c7e8ce878c7c0f0284b0c63301d02

    SHA1

    7a251bbf25dde80c3d80737e370470efe9c27bd8

    SHA256

    f8a96a1a646ed37df93050d4ef9d362fab7ff50c5dd52ff3acb56f0a0c5e0bd7

    SHA512

    46a4fa2b0350db55d1890fbb5157d2fbf9aedfb9c1f0fa3117d0ceda94fbc491716e57d4002d505170d162e37851de400eb2cb58123a4fdd503987b55cce0a82

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    84f70328f367ca032a9b712241b4f29f

    SHA1

    81ecb4a58dd7e860fc09ee97e49cf175e7360892

    SHA256

    a063479f9fa254b68f4f2cef3579d0b9d3de38e966ed9ddd4d072d5d332b7c95

    SHA512

    b027cb0bbf3063aacdbfc123c76f13a62e0babf3036936ee14909557f6da8b68f78a20f1ed4c0ed6c0219ab96745232afbce91d4b3887eb1731e68af4dbced9e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    c461b0752472b1bff3e9874e6b40e667

    SHA1

    2b886d850d2212446ffacc0362600859b73f12dd

    SHA256

    4bd8ca4ad6a776c3289fe17ccf34ff6c25267703656e3041bd6e93eb45d53ce5

    SHA512

    a4bf346b3b2f2c8a0a79f118775ec5f8ae986f4725093346f23406aa10d0f7c3ca60a0ab0c24edda2c5ebcf461514b3731c6b0acf55302d3ef81758f5c6e7b2b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    53ba7e383e4d67216432d758b20bb1ad

    SHA1

    28ce1ba463f2e6af6c790009e38d236a74fed02c

    SHA256

    a26f073ad59e76fc8aff2d80362c3df02243dcda6e3b152ccaf9d0620ba9a09b

    SHA512

    d43220615b20849c426e11600e69427516a101e1c00acdaca68ce99f9d8ff5a7864c391c04a7ba8cf1a43a47adb79a5b239474f4c21d7cf1ab6883cabd3387ee

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    db64d320ff65d06234969d20ffde828b

    SHA1

    5bbcd3d09ba522b12e53988f115c54d9ca25106a

    SHA256

    0f3c37e4459247adf4cd375d74bec36596cbf84e8cdcdea2bc54e628f0c46465

    SHA512

    4b90f05c2827a27fec333b6e13fc5ec3a945e96cce21ab57dd613874eda69b93909cc9852bfa1ac00f720f248ae7513ecb0789b64cccb8123e5cb236b4611f0f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    569b823e0de75ef439e0d6ce7862b107

    SHA1

    212d8197d44b7bc1fb02d0b6c0e61b679b9b76bc

    SHA256

    bfd081337d3a3251f5d8431a10306d6a30791522114612edf69e784eee2c4cc1

    SHA512

    5fa64dc6c44245520de13cca088ca158cfdb3f458462c5bed2a5e736ad7d812bd0784dbec4f75852c937950b4856e2fff0a60d5c694ef8bacdc317ba9920e198

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    60b73be6f1c284027eb61f7ffac4ea54

    SHA1

    dcf524b767bcb560c7596a856a6f58471cf3b96b

    SHA256

    126721d1264eea8a3599f38444fff92dbe2e855f9617e9befc686edc07939e62

    SHA512

    2a373ef6151833b1a7fc7e5b69567a5d806a0eac386d0d4368a2e07f231cd80ee3c3aaaefe4bcd63e2255c7491bdd9d7888784777fa73e82f91865e15ecd4e93

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    be9f2526e48904d77bdc819ae1efb644

    SHA1

    eaec7e9162453038f62fd04d0e352b297c1c2eb4

    SHA256

    cd55ff9c37fbe2d73a817346f4c1807c6879c74c42c6fd39cc9d3f354cb9601a

    SHA512

    34751032c2ec22cd451165d9273c3bd9aa90bb756303bec8d9b0d53b15acb28604322fbe8b7ed57ce565376675564bff293914d437f914e17536d9f241a87509

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    86c7e97be54f5701603c84932e3bd837

    SHA1

    d654bc8cc43e633c3066bfe122e08fe90a30c273

    SHA256

    591c6229acdb4d0b74a20bc16f9e47da43c51f17cd9ea0cb2b3ec26fcc2a19bf

    SHA512

    95472e81f58a24b33b850023e74c03e0012b2a5fea3894c495a28a944d94337a7834030f918bca86cbc6b67e6864c614cc28bb93552e2518a5ed2827ec147673

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    a5fe87cd3810c6fc7c1be765272903cb

    SHA1

    eb0387d112be00b7562761875f044da70b1f9b72

    SHA256

    65d5a826d9222b9dfb87d340d674a430a3916393902f934d15ce39cd5172d7b9

    SHA512

    bdb0bd232c4480e01acb3cbc64cd4cb514a1d089bc392d8f6d839ee8eb55453b4f93f6667ed89a73ae413c5a8278be20e650eccf2bbb424f5a9136cce0017751

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    da611ae0648bfa4e2a79a3c601ef8a96

    SHA1

    e7085fdca1b9c172599f1b55cfc682850464674d

    SHA256

    6c45d26570b09beb1859d36a494fb3e3ba7ae8cfcaa7de7c3a133e9b867058bc

    SHA512

    610b4b59131723946f5b527ea4dacb20c750208ffbff11c0ae0666cba0991d2abd11cb28f01dc2f391764a34d84991c80adb5c68ee6b1c41272d94ff9d323655

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    c3f7a7404b4e76850071f7dcf28e8527

    SHA1

    e34aca388b16a4bc726d8a7c4ee0aa934d014eda

    SHA256

    9ccfe0e22b5c749c4d317dd78cbefd728d973e1aceea2b384dd8b13752780c17

    SHA512

    fe7027152eccb45f37dec4f10e9bf5d609989561e2f24e4706f04299e2c3ebe8760e9b22cbb1bfbe70181e21939772c3e360461b4826d0498d84949937758411

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    ff1db9ee728284461d2980e598ecf39b

    SHA1

    b31bdbbe5c70f54a145a3a76e3ddd1e369773f55

    SHA256

    612f49187f62dbb63e87ee98c2c94cf12f48202f54a7f4f88d7923333cf0f1c1

    SHA512

    939f4ddda6fd3e138ea27eac68b0e41949ad7bf885cce043ef44077e1157a7e7f979864e111e63658740f0d964172315bfba90d3dce90625d21795918d0e843f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    14423861d2abc675a47118ab793380f4

    SHA1

    28e368188507cc95ca1a6096a971838542b449e7

    SHA256

    6aa2f0edfed5617947f1e5c022a1e7090369886e37be13952313802b8465b0dd

    SHA512

    21bfe1dff6178541c4494270ad54b3bbef32c7c03f08bad908d2e8601f31e9b53b0d9584d499b3b233cdb20f990dbb20a7e605ab39e37f8622f20f730f6ef016

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    c8813138df6e0de0779c8bb41340a642

    SHA1

    0742f8b69ae061116a4917a0841378fbb13be75b

    SHA256

    89c88b529fe4c3918ec3c77f73bba138866b3409f120bec490025383d484ef11

    SHA512

    caa5f88ee1901c0baa2f5ad92183b081fdc1357f8bb82620e2e4348863a58db58728d165cd17821efae571609cc128d03254cfd5ce34df958c3604c53929f864

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    7bc988fea448a2abe7ec6544c843e515

    SHA1

    5ea23ad51beeedc3e8a699c685658d6a6ae8cb57

    SHA256

    afd82fc63aede94a21959335472b2d5a15a72476f428e4aab93dc4d59f145e74

    SHA512

    0b3abe88635ad5f5b5d9cf8d7b8a0266ba98905486e37004cc870348b0869ed60b48eca3ac169b0a2b2be6edca74f527f06c51f2d67d625e72f07a1961a99ac5

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab9F0E.tmp
    Filesize

    61KB

    MD5

    f3441b8572aae8801c04f3060b550443

    SHA1

    4ef0a35436125d6821831ef36c28ffaf196cda15

    SHA256

    6720349e7d82ee0a8e73920d3c2b7cb2912d9fcf2edb6fd98f2f12820158b0bf

    SHA512

    5ba01ba421b50030e380ae6bbcd2f681f2a91947fe7fedb3c8e6b5f24dce9517abf57b1cf26cc6078d4bb53bde6fcfb2561591337c841f8f2cb121a3d71661b9

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar9F61.tmp
    Filesize

    163KB

    MD5

    9441737383d21192400eca82fda910ec

    SHA1

    725e0d606a4fc9ba44aa8ffde65bed15e65367e4

    SHA256

    bc3a6e84e41faeb57e7c21aa3b60c2a64777107009727c5b7c0ed8fe658909e5

    SHA512

    7608dd653a66cd364392a78d4711b48d1707768d36996e4d38871c6843b5714e1d7da4b4cc6db969e6000cfa182bcb74216ef6823d1063f036fc5c3413fb8dcf

    Download Submit