Overview

overview

4

Static

static

4

BINDInstall.exe

windows7-x64

1

BINDInstall.exe

windows10-2004-x64

1

Bv9ARM.ch01.html

windows7-x64

1

Bv9ARM.ch01.html

windows10-2004-x64

1

Bv9ARM.ch02.html

windows7-x64

1

Bv9ARM.ch02.html

windows10-2004-x64

1

Bv9ARM.ch03.html

windows7-x64

1

Bv9ARM.ch03.html

windows10-2004-x64

1

Bv9ARM.ch04.html

windows7-x64

1

Bv9ARM.ch04.html

windows10-2004-x64

1

Bv9ARM.ch05.html

windows7-x64

1

Bv9ARM.ch05.html

windows10-2004-x64

1

Bv9ARM.ch06.html

windows7-x64

1

Bv9ARM.ch06.html

windows10-2004-x64

1

Bv9ARM.ch07.html

windows7-x64

1

Bv9ARM.ch07.html

windows10-2004-x64

1

Bv9ARM.ch08.html

windows7-x64

1

Bv9ARM.ch08.html

windows10-2004-x64

1

Bv9ARM.ch09.html

windows7-x64

1

Bv9ARM.ch09.html

windows10-2004-x64

1

Bv9ARM.ch10.html

windows7-x64

1

Bv9ARM.ch10.html

windows10-2004-x64

1

Bv9ARM.html

windows7-x64

1

Bv9ARM.html

windows10-2004-x64

1

Bv9ARM.pdf

windows7-x64

1

Bv9ARM.pdf

windows10-2004-x64

1

README.vbs

windows7-x64

1

README.vbs

windows10-2004-x64

1

RELEASE-NO...V.html

windows7-x64

1

RELEASE-NO...V.html

windows10-2004-x64

1

RELEASE-NO...SV.pdf

windows7-x64

1

RELEASE-NO...SV.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    134s
  • max time network
    152s
  • platform
    windows7_x64
  • resource
    win7-20231020-en
  • resource tags

    arch:x64arch:x86image:win7-20231020-enlocale:en-usos:windows7-x64system
  • submitted
    07-11-2023 14:14

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    Bv9ARM.ch03.html

  • Size

    38KB

  • MD5

    c90329d55847f15691a3564439b30983

  • SHA1

    049f07c33fd91398c58f34e5c70b23324dc00225

  • SHA256

    9533df7840e0b254804afc547a8bdfd0a9ce23a43b432bfcf47d629f7bcf41ad

  • SHA512

    64d61b03b86565ca20c97ef25f4b213cba05e9806cae7acdc4255c343659cef1ef8a0ec3c14ab89b8cb59b92938e8b7dea7ec59cf2d8fa370f509f675c0f65e5

  • SSDEEP

    384:yyvO6dYSW/tNiXxzIbdjSO7vzpkjLTq7af8GeGDg7FIRw4q/h+AYG7khERr4qgo:y0OHtYx8bdjxvijhf8GemgLpRRr4g

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\Bv9ARM.ch03.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2344
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2344 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2216

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    5fb30b582565b1717b83e0d2072a5300

    SHA1

    8349c61e91ed8ccfdbed7b04c2ab0afa7adfc76d

    SHA256

    5a38e10f7b5607cf4948abacff8e4e429405656e3b8585e407243b76e2f99492

    SHA512

    1477f86331987ab4e01b83665b2b9d3b2f2ca14762b9f568e9c6b8c0620c1bba2c5cd0eaa414aa2072b83c16962f5d198a5b1d7022288b2d370e4aea87cb017d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    b39a34f57e15fd53854717270abffd48

    SHA1

    c100c3329bda28efdf6f9aabb6ed088d626ab5bf

    SHA256

    945a33c6b67bdeea918aba3b8e0b39bd095d8abfad79aba91a9532be42597b09

    SHA512

    ed9ebab560735c7f1fd1789fb9d77a49eb7df52ef16e6d634457fdfb43718d970c6605ac8a12b8785285eb1e0ac91a2bf1ef8561e57ab7d93ed803a071e674fc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    b0d69b5b6360c0e56ac05ba93dfdbe6f

    SHA1

    e27d5d6a24b3a7c5d4e1b4792e2a9fc5a0f8154a

    SHA256

    247c6ee055b901944ea325bffd1e7ee986ca5fd4c6c0ca5b5c5e94ef2eb357bc

    SHA512

    2b75073c90fa03cfea7efed246611c746115a01c7e4daddb56ee218d5b4eb7c395a820c8cb1c9646134492a8839b3f0f1ad37bbd22f82e61367b5a83e1d0b220

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    d0dc856033d0f029a74b90b87c4ca5f2

    SHA1

    79fb2ecdbe85596d96ffb35a7f9b1829c401e0ff

    SHA256

    7afa7fa2d9d27f6b121f0340a324cd07914fa92e8e4040bca9126899beb87f90

    SHA512

    0970de244e134934e05a730ad751e02b40b178084e95df9c2e2358ad824969f432d5735404db3401905760b588662cdaae85f929bb3bb80d831ad5063237b5b0

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    20fb541244439fb319e82d8c05487a0c

    SHA1

    712d43760a5c8ad68a2f21cc36519349447f6735

    SHA256

    9dffea1b5f85ff7a52a22570286def1d9a5c6989e353fa19e4c8632e32d4ed9b

    SHA512

    3f5d748b83878a102a74429ec024ae4c15deb36f01158e5f94fdb7368179c9ef49a7fc6ae56c0211ab83e4e066a0c107b92fe628fef56ae1bc7baf32aefb75dc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    e82ba0a6718a1e205ffb3ff65d100983

    SHA1

    62cbbf4a438b3fd64bcf9e530e5b63087ab65bcd

    SHA256

    762c241bd0ea81ab3b4f24ed705d8c24549a74951b7daccf32f4cdd02ca7e40d

    SHA512

    4247d26e200534a22888ab3031382746f0997ca17188f4095eab90b1f9f10fafb732d1c72513700477072ba691417769553643c8a644102b0fd8987427f0973d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    357012e48220768c578631e172bfe148

    SHA1

    a3a731cccef5de59f7838f64a1d18dd47b2f8bd0

    SHA256

    481c16efbc6b36c8905f70c8429ec9f2026e97af1b582c5711af1459086ad4ff

    SHA512

    42465016433280ec52067769f935bc752208f412454fb42f2ca46c0fc937f5c28461487f5ca16b2f1a4f5b3debc9e544ac614ff9c9cf7a264ddd322959bfd00d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    7f628be85f96841d2ad2be590ce2ba2d

    SHA1

    b29516aeab95db19883463984653f2454180eb9a

    SHA256

    1fad65162b826be50be87516e91516b2ae84d2a3e9c86caced2c16410aafd7be

    SHA512

    4ef0f9f8c19eccfce7032056ae56757bec2a2a64ac1945a73d5ac28f334b4f4678bcdf830bea6eea73814fddec9ff333cca07c379325c61565733e47d9a5b85f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    da550cdd3981d20cd347b9700a8dfb56

    SHA1

    72908d995a08bbef52c06a652969956523cd6c8d

    SHA256

    6de40bf6c8d90dfffdd937a85ab90bb489fa25548eea7387dbaec5a6feccd7b1

    SHA512

    ea5037ba8e74c1b750365e2cfaab55cf23eea0935f5a1ac7e16fa4c23e4d44d72b6909d576d37d206d7844f55bc2571f57c2943670ac67f2be0b7afd86cc1d31

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab8F48.tmp
    Filesize

    61KB

    MD5

    f3441b8572aae8801c04f3060b550443

    SHA1

    4ef0a35436125d6821831ef36c28ffaf196cda15

    SHA256

    6720349e7d82ee0a8e73920d3c2b7cb2912d9fcf2edb6fd98f2f12820158b0bf

    SHA512

    5ba01ba421b50030e380ae6bbcd2f681f2a91947fe7fedb3c8e6b5f24dce9517abf57b1cf26cc6078d4bb53bde6fcfb2561591337c841f8f2cb121a3d71661b9

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar8FF6.tmp
    Filesize

    163KB

    MD5

    9441737383d21192400eca82fda910ec

    SHA1

    725e0d606a4fc9ba44aa8ffde65bed15e65367e4

    SHA256

    bc3a6e84e41faeb57e7c21aa3b60c2a64777107009727c5b7c0ed8fe658909e5

    SHA512

    7608dd653a66cd364392a78d4711b48d1707768d36996e4d38871c6843b5714e1d7da4b4cc6db969e6000cfa182bcb74216ef6823d1063f036fc5c3413fb8dcf

    Download Submit