Overview

overview

3

Static

static

3

BINDInstall.exe

windows7-x64

1

BINDInstall.exe

windows10-2004-x64

1

Bv9ARM.ch01.html

windows7-x64

1

Bv9ARM.ch01.html

windows10-2004-x64

1

Bv9ARM.ch02.html

windows7-x64

1

Bv9ARM.ch02.html

windows10-2004-x64

1

Bv9ARM.ch03.html

windows7-x64

1

Bv9ARM.ch03.html

windows10-2004-x64

1

Bv9ARM.ch04.html

windows7-x64

1

Bv9ARM.ch04.html

windows10-2004-x64

1

Bv9ARM.ch05.html

windows7-x64

1

Bv9ARM.ch05.html

windows10-2004-x64

1

Bv9ARM.ch06.html

windows7-x64

1

Bv9ARM.ch06.html

windows10-2004-x64

1

Bv9ARM.ch07.html

windows7-x64

1

Bv9ARM.ch07.html

windows10-2004-x64

1

Bv9ARM.ch08.html

windows7-x64

1

Bv9ARM.ch08.html

windows10-2004-x64

1

Bv9ARM.ch09.html

windows7-x64

1

Bv9ARM.ch09.html

windows10-2004-x64

1

Bv9ARM.ch10.html

windows7-x64

1

Bv9ARM.ch10.html

windows10-2004-x64

1

Bv9ARM.ch11.html

windows7-x64

1

Bv9ARM.ch11.html

windows10-2004-x64

1

Bv9ARM.ch12.html

windows7-x64

1

Bv9ARM.ch12.html

windows10-2004-x64

1

Bv9ARM.ch13.html

windows7-x64

1

Bv9ARM.ch13.html

windows10-2004-x64

1

Bv9ARM.html

windows7-x64

1

Bv9ARM.html

windows10-2004-x64

1

Bv9ARM.pdf

windows7-x64

1

Bv9ARM.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    134s
  • max time network
    133s
  • platform
    windows7_x64
  • resource
    win7-20231020-en
  • resource tags

    arch:x64arch:x86image:win7-20231020-enlocale:en-usos:windows7-x64system
  • submitted
    07/11/2023, 14:05

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    Bv9ARM.ch04.html

  • Size

    110KB

  • MD5

    a80c708258743fbc4e6fe556e9bee7f1

  • SHA1

    121734c30b160bae7898b8b837b5f961a6a59e00

  • SHA256

    3b1804478ba99fef12eed45a4f51ea966f8aefc63f5e9660870c9572d180194d

  • SHA512

    c54e3981ed00f4d8212ab6f79fb5d55c683fbbd0832ff4e30a575f547e41f810fad95b379f10df64d7d4f5085e21b7f26bcde1772a46bff8ae83cd71fd8f9870

  • SSDEEP

    1536:n0Oix7m6CcPq46eYcHJrc3hqvW3M53HW72WvIoW9ctyiD:n037m6CU+3WG7XvIl9MyG

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\Bv9ARM.ch04.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2496
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2496 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2084

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    d9777bebec4adacbb05188f9b340c2e5

    SHA1

    596cd825c46a98f840e88ccf32c2dbb7950b96a9

    SHA256

    010c3db429f1dcbf521fcc5ec8539715b35eb2c8ea1afaf3c01afe16f25b3d11

    SHA512

    264ef7a8ec02a04bdf24aef36fceb46dc3520e63e32b9f4b8b64ca8a77d1bbc0ae548b4578e5b6f129f8a8786f1817f7a62fa33af08a0d8d5c47fa2f5aaf4060

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    93f82817790819caf519914a5de66d36

    SHA1

    7acbefd4d49ae5f9d81de4fbe590a3e47a210de4

    SHA256

    aba6880f52fc6b359d6c3f6295cb5ada9ca09009387fa1e0e7ef74bd041f915a

    SHA512

    d7948fb190928cc5f9e016f11475194bedcddddd2314f3140a6838deaf995826b1b50c53d576110d751b64b58be58ca9a86c1f804fbfbb820edd909f19f65dac

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    bcc48df81d79c13d244b31257597c3ec

    SHA1

    dfb231ab58e087de96e0cff36cb36b677a0de797

    SHA256

    563d3c4ca608fb20a7d5324f22b348c5b2aceb61b7b0b36ed4f832007d93bb76

    SHA512

    42b26cb33dac1f7c8ae91c8dfe3172e3e51d2213177297f1d41feeda77d9f90c284643f0f21a2abc7685c2341589d93520091a7fa72fe63725db7ec7665a931e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    6f060f5849f0fd003752ea506e31d8f8

    SHA1

    66daff11ecd2f9762e2ce35b18d01eed3e5c0280

    SHA256

    0a04fd2bf1a498e2e2c73c18e0668a27ea851e58f9b860b57f46040729f3afd5

    SHA512

    423891ec6ef0ac5f56b45eefbd3d41ff7d709ee465685f22049f1a575b6145bf22ecd3c5de8788617605a7fb444a1334ad5f1e7881910aa33878ecc2c7788448

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    ac6257b00ed53a3d4ecbc6276df513de

    SHA1

    49517cace2bb84065958c74939409083579068b6

    SHA256

    2e6f0212fe9f3e42ee805d50ee62bf4bd85570e9eee026ea9d6a2689c9e7f426

    SHA512

    c901eae4568a0232ca0924f713a08c2c5ad47bd7616c755c4c81d88e247edecc78ea64216eaee95dc3f6e967d7a7b1205c8a113fa242a5ca29cb8348959f1ef6

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    dcb365733e536cfb0f9af6684dfb4073

    SHA1

    6598eb77411d40b63de204c5574c59738607a210

    SHA256

    8f59bc8cea03901c452b7b8c55ba27d6d54ad24ccdff28070ebd704dea8fd3e0

    SHA512

    3091d963053eee088b08f09f227702d26e8adbdbc85436d97fbd0bcde4741034df17dc81f63ea2cab51bc3e3d2010324e736bc42f12b09c029b50e3017a75614

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    25cf22a729efab1ac762fc439c047049

    SHA1

    b531af1bf78fb9aeb1c66474e050b8eed36b242b

    SHA256

    33a6ba36204382b6f17a85fa3d1047885757da088fb91409e2b65cc9df9b193d

    SHA512

    5e603657e0b3d3524261b7a42845ab20102fe95d557130cb8632ea631ee174c1d93315c3501a7bfb17f4c504cb8d4cc5798e74b8245a127df549365052752d53

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    24a17fb51ad8c7be9458b725a809e563

    SHA1

    0118da0064e5dcc30f2409c6c5b19237e928da0a

    SHA256

    5bbf0e37c3ca4c0ee44938845e78d8101279982074d4d06750d7d1f7863bf35a

    SHA512

    746cbc81fc45dc421e0d1e60313daceab4b2b99e284b78209a6ee448579b4a00b17dc2912259716345ea91f57db8391a733d831f5a1d8e8de9cbd67c1ecb363c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    2d59e6ae18747da6996f873d2bd970b4

    SHA1

    5ea929c4c2ad2f3e687971862770ca5b89fbd6eb

    SHA256

    713c05ed6ba9005e1a7ca3928370d76364be413aa2d6c04fa9065429eede498c

    SHA512

    c314d2f0b9c9bbcce582491e0688c9d6b08442bfcb0cea026f1c02e3d9ca50aaa834e92387df4b50ca737d35d40c83102a72d669cc84b000da9d72bd1f5813c5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    735aeda9f90ece47a88d7cd63993795f

    SHA1

    45339fb15c10c177d05d5dfb744c11e66afd2e75

    SHA256

    023a93c5aa0db67d8995784a61c146c73463711019f97920c934575066ac9c3e

    SHA512

    d2f41efa86f5f13d6d77a77181d0905d66be427673bc2d398f69d8a1de0eccc45422c2beb05dcf6a3f92b429608142caec72708142da779c29865ffb9ad9c744

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    928bafc9e6ae308015db5b221b1e92a9

    SHA1

    f22bce15c5df8e2e7920e898d9b068d01a03bca6

    SHA256

    309899e3bddb62fc3f0afd99b3e99e150899ac5df006ff4bc02bba1a0ac77a84

    SHA512

    84a68d41d73032037246e69c7e79f8ee352d7acdeb879e026949b9f25f58b262c89b3bd93f23750519027eedc8437cf116e4484b34676083eca81390aca63f9c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    3c2cbece8ee87ff8219159bf53c5cad1

    SHA1

    ff1a9eef22a3abc68f2f78932bfa7e6e484b35cd

    SHA256

    083ef4ba8bd55c9a26fb57f4ee54c815bace41a651e88e59033be652f4894f54

    SHA512

    05e2df5c6d3ebe6f3aa46313e0e869c9fb72da7e41a77ccadd542fffb07259704ff341de0ebc32efb034251219a25053c630268afee1f583834c233e89f5edcf

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    c6924f4b55f2c269dd24c1269ee686a7

    SHA1

    b67b9253a08a3cd22b560038047af96ec743a5e9

    SHA256

    1356535098773ce0557e9f93bccd93d11ce3126d0d640f5ed2cf957f716890b5

    SHA512

    a1df74ee0a2be97fb885de6b9a80d413edb9133d81af345c83e8c0a8f00b0523eda405de2abf5ed38b79fc79418803ec371f08c8fabf5137532ffb9e6d56682d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    8766bb36fc5fd747aef1ddca18f2902f

    SHA1

    3312677136371420453f27e01468cdbde58a7db9

    SHA256

    0666368c07294012be09d3a2d00a0fceebf545e17f439b15f718321ab5292ece

    SHA512

    01fb663ac9c11c4a889394fa1f3763d58db1a686d25cbeba15d1dc3cee7570cf5a2ff05e35a4991e3371d63825ceb55dbf6f1e95446bda0f1e90785332bf9ebf

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    5577ad55624dae6f4834ec983e8b72ca

    SHA1

    3926bf50cb1623ac3a783b14c9d06c66938c134b

    SHA256

    298213920e6e045eba9ab2f5b9119831bb37b62a11d80f04136ec9e4d85fb8b6

    SHA512

    4e70715070136e6b5ff3280eaba30ef3d332ca25bf37ac36de94caa9fc826aca20b055ccab7edabf236036f1002050faee98d77e1e9412b74a0fa2d611a66823

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    3585705fa3c2d58e38590504f8e44603

    SHA1

    77d9df6a2c6ef8be007432b5c5d99209b8a4e8a2

    SHA256

    994b920b3d7605211d13d77d99b50f49a4e6555c0368bff18170de97586ab096

    SHA512

    2ccbd14e9225389d1539e1d5c60116b89ee03119e7fa84f809453e302da3ac22f6fdcbdd073d29142543fde47319e8a638d83d6ef865bb5ceff76843662c2ec8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    4b18c8c8cd24bdf514ade9a75d2bdd27

    SHA1

    d135d1b47ecfebc7b922fa6c8f41d379252a4a96

    SHA256

    1a3a34167cc914a110275ca20c63e1ecb857bb8485015a8a3713acc8fbd45ede

    SHA512

    1106fb04fa19578f5f19712f56b6bd887a039ba165327e7dbc829e279767d678f3f384627348e693860f7d8b695712d3b6229765a034c9337eec636b0103232f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    0dee3a5977e5d84ffc95ae89f04822f3

    SHA1

    53e4b86fc6b93a59c1478bd14fedb731d9fef8e8

    SHA256

    5a056dbf2443e96794c87c8c1913235d0d0ba627102f2493a658db50ce00679f

    SHA512

    14454d2d999bdb851ca8d513eee830512d3c90e88c25f763fe84888d18d5550e0df2a5c3813aae4a1bd09fae1d3f54534c9aba76fa957709259438aa9c980552

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    dbe557efebe7d7d91cdff430ea1eefd1

    SHA1

    787ac1113efb5fa37c314df3d52b036960ce581c

    SHA256

    8adc33736fa0c0891a06270fa01fac2c439589bd4d0955d022b0ec71bedb42c8

    SHA512

    97a431bdf4bf61bc603372febb72a6d4a387f742c6890a88390296a6b6f4e871b891cb4e1992961eb5628575f20f3046b02dc177ae3229d226acfdd6c2a4d041

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    0b8a5f7caccf3f83ae19455d7df5cf67

    SHA1

    777f0b71e8d139b1f6289824dcf0b5e9038a0dc7

    SHA256

    2e33d483d4ab9c69e6bfc2586fad1e79d506a292206169c006531bcd93bcfda3

    SHA512

    6ee522517b57d5f70e6b5fed33404c3862158a9e2af47af78c1124d42ad736ecfccccd12f285e7612e9c8e39d33781bd0b1d535df907bb72a60a50741d6ad610

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    5960f6a4080a6bec0e1c24968c3c991a

    SHA1

    03136c2efc0c6dc2c7c64a36273addcc66a3004d

    SHA256

    9c66153d7df6afcfec1ff56312bf23896f7f04bddc8b9014ca697925fb6f09b2

    SHA512

    688cc6f1005272fd9a24d9dec443d7ffcaf996fedd845a368f3a74ba61fed2fc65879d762faf3f9e554b189c473909aad02e8d212f7abd52037178422b12b06e

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab6E3F.tmp
    Filesize

    61KB

    MD5

    f3441b8572aae8801c04f3060b550443

    SHA1

    4ef0a35436125d6821831ef36c28ffaf196cda15

    SHA256

    6720349e7d82ee0a8e73920d3c2b7cb2912d9fcf2edb6fd98f2f12820158b0bf

    SHA512

    5ba01ba421b50030e380ae6bbcd2f681f2a91947fe7fedb3c8e6b5f24dce9517abf57b1cf26cc6078d4bb53bde6fcfb2561591337c841f8f2cb121a3d71661b9

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar6EDF.tmp
    Filesize

    163KB

    MD5

    9441737383d21192400eca82fda910ec

    SHA1

    725e0d606a4fc9ba44aa8ffde65bed15e65367e4

    SHA256

    bc3a6e84e41faeb57e7c21aa3b60c2a64777107009727c5b7c0ed8fe658909e5

    SHA512

    7608dd653a66cd364392a78d4711b48d1707768d36996e4d38871c6843b5714e1d7da4b4cc6db969e6000cfa182bcb74216ef6823d1063f036fc5c3413fb8dcf

    Download Submit