Overview

overview

3

Static

static

3

BINDInstall.exe

windows7-x64

1

BINDInstall.exe

windows10-2004-x64

1

Bv9ARM.ch01.html

windows7-x64

1

Bv9ARM.ch01.html

windows10-2004-x64

1

Bv9ARM.ch02.html

windows7-x64

1

Bv9ARM.ch02.html

windows10-2004-x64

1

Bv9ARM.ch03.html

windows7-x64

1

Bv9ARM.ch03.html

windows10-2004-x64

1

Bv9ARM.ch04.html

windows7-x64

1

Bv9ARM.ch04.html

windows10-2004-x64

1

Bv9ARM.ch05.html

windows7-x64

1

Bv9ARM.ch05.html

windows10-2004-x64

1

Bv9ARM.ch06.html

windows7-x64

1

Bv9ARM.ch06.html

windows10-2004-x64

1

Bv9ARM.ch07.html

windows7-x64

1

Bv9ARM.ch07.html

windows10-2004-x64

1

Bv9ARM.ch08.html

windows7-x64

1

Bv9ARM.ch08.html

windows10-2004-x64

1

Bv9ARM.ch09.html

windows7-x64

1

Bv9ARM.ch09.html

windows10-2004-x64

1

Bv9ARM.ch10.html

windows7-x64

1

Bv9ARM.ch10.html

windows10-2004-x64

1

Bv9ARM.ch11.html

windows7-x64

1

Bv9ARM.ch11.html

windows10-2004-x64

1

Bv9ARM.ch12.html

windows7-x64

1

Bv9ARM.ch12.html

windows10-2004-x64

1

Bv9ARM.ch13.html

windows7-x64

1

Bv9ARM.ch13.html

windows10-2004-x64

1

Bv9ARM.html

windows7-x64

1

Bv9ARM.html

windows10-2004-x64

1

Bv9ARM.pdf

windows7-x64

1

Bv9ARM.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    137s
  • max time network
    138s
  • platform
    windows7_x64
  • resource
    win7-20231020-en
  • resource tags

    arch:x64arch:x86image:win7-20231020-enlocale:en-usos:windows7-x64system
  • submitted
    07/11/2023, 13:41

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    Bv9ARM.ch11.html

  • Size

    53KB

  • MD5

    e2197253eb92c2e9379014cb74072e38

  • SHA1

    c287559f4ef51bc8ab0dc2f1ec2032d397e3ab54

  • SHA256

    855f5768943acfe4cd6a28b268be3e4a2934a483fc1ddafe4a46a137ea7cf662

  • SHA512

    97e47ad567beefefcf63c4e1edea58227ed30e4ad3f5d3df5e9e9c2026b25b6e70332ed7dd2d7f45843f1f038c76ce8aab3e932dfd4345765c24cf6f750b8654

  • SSDEEP

    768:t0OI9ju/Rp2LbVfFeRshD+M3CSqlaUqqZ3kY:t0OL+lFrk3kY

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\Bv9ARM.ch11.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2212
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2212 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2152

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    5709ff97819ffb2290b877a4408863c7

    SHA1

    5a4debbc17cee18f417c532e06a8e01a97fa5f6c

    SHA256

    5d4c78b5133198f8ac629bdcd9c7268374136356a4f828a999b204dcb37a7496

    SHA512

    3bdd212013291148549cd217dd89a3a567aad994fad8c6b91499de170a0ef9f4f658acdf2f9dfb0cac6d402dd32e18663ff8bcf294dbe4d8d38cbb17674ea717

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    91a140e3802e3cedab8524fea18f5328

    SHA1

    320d1f0da7639b0ec31a917203cc4d153b5aa1a2

    SHA256

    6344197c638bb06becf90270a4f404e5dc4d835e255d2731686983b743547a90

    SHA512

    de5148eba2b50aab472cd4429bfcf2cb181222871bb5ff5114d8c098b1eb7e13e2831cf9b050382700c1ac1e9fe102ae84ec160a4c3067473f42423af6587997

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    cd20b10d5c74cf82306d4e6d90770d8c

    SHA1

    0c4b061ca0a4fc12bb7fbdb71d7a8f84833b06c9

    SHA256

    e1df2b4f61896839c61ab2f12e1f1370d3504d9d7545500fb1d43b220bb251c8

    SHA512

    9c12538e59d7009ddba76eaa9b8e37127809d7d95ce771bbd87fa0bb8dad59e8a85398086c961b5dc70680b48b3160dc6983370bf31124c0cdb4a3ecf174c2f9

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    98d31e2e6d83a0ebeddad05e38e9b388

    SHA1

    54e563a485a82ae196a87623af9adf7489cd6eea

    SHA256

    e1790b038a705d908f927ea1844a36056fba1eb6b60fed037d5ac7572a80c8a3

    SHA512

    39797789606b8b99968175d179769c17f3ac97f6c99cc4a25844702e5d4ecbd50ef9afe35a280fffe485e63606be02f32593cd3f6c623db4ae7c26fc12c77d4a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    f94e8e1a97d76111d7fd2a72beda3b81

    SHA1

    cf28b5ceac7469ac9d10a7f2dbc2b8983bebc0c3

    SHA256

    05fd21094746f13d4a10eb8c154b4dba872b59b2f0be5979ca6ef20ad7d34d62

    SHA512

    fd06e2b0f0af047880bef8e5b0cea9366290bc0a270095a5ee2ebb86ee21bd9a7580a8bcf8dce3c5977368548e677fd401e4b2035a91047062ac391d2658eb62

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    63845bde8f1a4bb32758d5da35a956cc

    SHA1

    bcb4fb8dbbb54eedac8dd0f5a3d6e231c0faeb0c

    SHA256

    5be91d4b017708942ad615e42b40726c20f8630a6c9095a7a7f89bd538f28720

    SHA512

    a1ecb5b57cf8107d3478b74b158018fc6fab7e8107b6ee75c3e7973f307218c3b1dd9cc63b717626cbee3865d2b62c6fc0951e8fd36e3f839952deddfa966a10

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    d6ee986acd085bba050238de3a309b1f

    SHA1

    32bc2bb71e06526298a8fbe37c4bff04c38fe1ec

    SHA256

    e697f3ab3392e303ee85cdd9d30a5abe6c4ccec9d5f53fe3dc801fe234943fde

    SHA512

    eefe811cbaf45352b27d261beb6fab37708d0e745352d2d65ce78749dda314a7d4513a0f3cbe884629f07ed806fed4adcffe482f5cb5df7f999e44ed80a143e6

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    3efd624631b05f4b5665339189a4af59

    SHA1

    27cfe84f04711e825d32f71a13a11d80adf93a07

    SHA256

    8440e0d9956d9f66e90d670bd4a74a153d8da7fb22fe670a5e0046ffc8a344ce

    SHA512

    a5da76175129947f978801d138fee768623b7c56e78750441e38a4ecc41e04ce8e46652ebc9ef30249602ffe8342408a33c405ac355a7210cda98f77705db0e7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    2afadf4a0dca8f777d63fe1ee53efc38

    SHA1

    362315a8414b18e022992b327ff3be1f18bcf2d9

    SHA256

    dc39369479980b0c079e7a79dbc658ff4af05de8fb9019b27a8fa07d9375d824

    SHA512

    e01a9118308f94bc2710f69a96cebb0fa2ef41a2d79358680722c6dc947f9b40d09d7100249ad48c925043a5a5e2e235af3d3b8484a5b1d38f35500dfb794ebf

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    2e175a6be78e99644878696ff7ba7ae4

    SHA1

    d74b06b243eb22112e6bf692014a1b92087fc4c2

    SHA256

    309f360ae817250f9c192cdfaa33cd277ba6d0d0d05fd581410faa077ce2f60b

    SHA512

    5ab75f17977df925d6f0cf66d12ca80a9ad8acd86ad1786f62bda0d1f1fb15d441908e004627766276efc37c12747f9d449fa1e1702191e7ea8fde30f58deecf

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    54ed52891b1271556bbb74d94918e632

    SHA1

    184a3fbcf5edd37b36beff0756f290399f00f931

    SHA256

    d3336ae95762c6f4a0916a7d433a3e32d5f89e57bb38f82270d43d6132aac76a

    SHA512

    2aa7745cdaa44c5c78748a1a41179832b6f9d6957b92c6916a8033d74bebbc1426aa4a3312f95741112fa91523a19a240d9bdbce66a980957c7b019073fffc95

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    1a8fae470bb02b0294570c84cadc04c6

    SHA1

    cfcf39a1c22fde6e57975eaee9767d8bd2c7ff83

    SHA256

    b2b3aa071c0359e834c5b39bf313afa61fc6f2daf2727434777ce4cf7bb1b6ab

    SHA512

    91c8a12f4573403ddfbfaf41bd45981a08c2deb092df64b096fd47d4ee7aeb2b56429c5eb0b00caa6e1ac40368d3cf80b0548aa5eeb620151b8f2f40d2454da4

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    c986ff1679f3646dd924f1cf11109588

    SHA1

    a7f0de24874d3e4cedc552c36639e52c8a4ac269

    SHA256

    7b69e2071cbc00f28b1ac4c599e4a0544671157cf675255b6c4b454d58d41adb

    SHA512

    6df84be196104e725bfebe03b53527faac799878b24d037536cac54284e760bcecb44db44f02f243f21be434355092689bb0874869fb136f0da10e2e2a8a72e1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    d91e12335484e2c44102aa9c1cce0da7

    SHA1

    6da50911a52f1c028449985ec333f09aa95dedb1

    SHA256

    c242e3fc8983ca4a8aeaf0b31823c1985095090cc0df07ca997727f67e08320b

    SHA512

    0babbab3c34c4ec05ec8dfc137e60c0a2d01314aedf6a025596a9a5c8678658fcfd7d6478ed6ceca31abe9d6da9661b22c9df686350c283fb1dc31e539e7eb8e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    4a525f1ce7674b56f62efafa00f84e7d

    SHA1

    783a0a527d050c95fc4fa6ce8c9f7aaa6ef19fe3

    SHA256

    76f76cfe257897b284452acef67d3b3b0cf5ba68208d1170d25c793ba8476d53

    SHA512

    f1b517d1ce8ce05f6336e01740df9c7758a90ebcff1d786f177b4c4080acfb9649a27f3e2124f720f6b3098d3d384ed770aef2c2ad04f0f4703d6fa3a6968f4f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    a3f30fcd9e166b7498f14b0728f116a8

    SHA1

    cfa738a7a9f49f1d46c9fc3f006c6eecf87a8d92

    SHA256

    9b41f02a8a7aceb95a440a4dbc41877c400344f40d7f4944a17ed0ed0b94059f

    SHA512

    dc11abefcff8d65b028a4c6be9d446ea2380710e4efb726cf04c8d5cb10dbf0185eb3066ccb92ac5055bbb7b56ed94d1a8de829dc8fc6d5dcc9ecf6fb8d46e56

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    147b75a3334a7b94131d84bc9a568148

    SHA1

    6571c65ce6985ea3ebd74419f5d0ae4ff10e1f9c

    SHA256

    e561656f47503a055c44c56faf5f861934e5dcb41e332f9d30b66e712708c5fb

    SHA512

    83cdced21cf77afa2219efbaf1a2648e79f8f8e445ed6deb248e51f9097d659f8f7b0b2b2978a166a9626ba62ff8cc13ae29ace923167cc9105818c8200503ae

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    f6cefa290ee23f0c9518967f4bc20098

    SHA1

    35512aaac365a875c4be2d2dfa69b02dbf9b17aa

    SHA256

    a3b7c811b30915bfc8b4f09dcef549216502de60b2f56bfdfad9ac25b251e291

    SHA512

    b54da895a6bcfe89b23cf06e7575ec1893487550ff6c3aa9f0085bf1270d68d6460f5d48532c426333b9ee40a29687c03fe6a3e281d6d9d6e6cc3161a6b3fd7b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabBCBD.tmp
    Filesize

    61KB

    MD5

    f3441b8572aae8801c04f3060b550443

    SHA1

    4ef0a35436125d6821831ef36c28ffaf196cda15

    SHA256

    6720349e7d82ee0a8e73920d3c2b7cb2912d9fcf2edb6fd98f2f12820158b0bf

    SHA512

    5ba01ba421b50030e380ae6bbcd2f681f2a91947fe7fedb3c8e6b5f24dce9517abf57b1cf26cc6078d4bb53bde6fcfb2561591337c841f8f2cb121a3d71661b9

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarBD4D.tmp
    Filesize

    163KB

    MD5

    9441737383d21192400eca82fda910ec

    SHA1

    725e0d606a4fc9ba44aa8ffde65bed15e65367e4

    SHA256

    bc3a6e84e41faeb57e7c21aa3b60c2a64777107009727c5b7c0ed8fe658909e5

    SHA512

    7608dd653a66cd364392a78d4711b48d1707768d36996e4d38871c6843b5714e1d7da4b4cc6db969e6000cfa182bcb74216ef6823d1063f036fc5c3413fb8dcf

    Download Submit