Overview

overview

10

Static

static

7

45c8779a8c...be.apk

android-9-x86

1

45c8779a8c...be.apk

android-10-x64

10

45c8779a8c...be.apk

android-11-x64

10

appx/af-appx.min.js

windows7-x64

1

appx/af-appx.min.js

windows10-2004-x64

1

appx/af-ap...min.js

windows7-x64

1

appx/af-ap...min.js

windows10-2004-x64

1

appx/es6-p...min.js

windows7-x64

1

appx/es6-p...min.js

windows10-2004-x64

1

appx/index.html

windows7-x64

1

appx/index.html

windows10-2004-x64

1

appx/secur...min.js

windows7-x64

1

appx/secur...min.js

windows10-2004-x64

1

appx/web-view.min.js

windows7-x64

1

appx/web-view.min.js

windows10-2004-x64

1

appx/worker.min.js

windows7-x64

1

appx/worker.min.js

windows10-2004-x64

1

[email protected]

windows7-x64

1

[email protected]

windows10-2004-x64

1

[email protected]

windows7-x64

1

[email protected]

windows10-2004-x64

1

[email protected]

windows7-x64

1

[email protected]

windows10-2004-x64

1

[email protected]

windows7-x64

1

[email protected]

windows10-2004-x64

1

[email protected]

windows7-x64

1

[email protected]

windows10-2004-x64

1

[email protected]

windows7-x64

1

[email protected]

windows10-2004-x64

1

[email protected]

windows7-x64

1

[email protected]

windows10-2004-x64

1

amc-h5.js

windows7-x64

1

Analysis

  • max time kernel
    240s
  • max time network
    286s
  • platform
    windows7_x64
  • resource
    win7-20231023-en
  • resource tags

    arch:x64arch:x86image:win7-20231023-enlocale:en-usos:windows7-x64system
  • submitted
    09-11-2023 22:00

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    [email protected]

  • Size

    3KB

  • MD5

    55acfe384eae522d3d9e0c046ef9bd53

  • SHA1

    fbcf05fd0ad0569b4afc35c3bd8885b042832b77

  • SHA256

    62ffd64e012a83d114bd8e15c45808773d66852ce385599a8f8a0fd5d7acc87b

  • SHA512

    32043682d12cd10e24ea18d9a636b7f03ef688596818b1e2f15b090bdf69251fb2b69136231c418616fa95d3d3d514ae98b529c7a76d3f286828029cc574c0b3

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\[email protected]
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2516
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2516 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2524

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    1abac420f0d30f12a48e46cd12f67c31

    SHA1

    e3ef017884bfe26252b4b66088123e1a31727a5d

    SHA256

    ff271190ad48b6af36da51742d898f039b0071aea737e02bdbc8a30e1542e344

    SHA512

    5307500d085b4ff6c64b1bafc5935581bc410ad9b395429ecadd2071beca7c4c194bd08622af4626752bc5cfc32ef8d4eca9ff8d19562ab78fe68e24f59d6576

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    55770bcf29900e0d131be3ef7693cbf5

    SHA1

    e83a5b61d9504fc29bd6182b785311fcad102c79

    SHA256

    e90ad4674efedfb26b30afee3298aef965c9c4a93269356335a742e9aacac4e5

    SHA512

    3956523cc1f5f6d9894a4bccddcda76223ab8cda8cd633b9edc8ea037aa08872fa04a8af5a5e0557233c647515f03fcc4b76fe3cb114f7f3828ab30c75ee9514

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    5757f0687bc8dd1f963652ae156dd401

    SHA1

    cc1baa636b5d255cdd7e869e0abd5aa8263e823d

    SHA256

    9e17db1917d56425ef9e7fad0d502bb96fb336373d5f203684c0bcf3867f5b61

    SHA512

    c86f2d3fb450a6b887e8e9503b05cc94c4c3c3d54ec4e4b38cd2148cad37b4c330cd18360ee48c0651dec821aad28d957f8eab6b151eac5c800cae92b08f1b98

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    244cb2b3751825c9da53af83b15dd62c

    SHA1

    3114f33286a11aed86837b473a77fc6a247a73e5

    SHA256

    905ba7adf324a71c6378561de80e6a9aeafb03b6d99b5fc43165044d025a629f

    SHA512

    6f2bb8ea0b325734147cf0efb879949acfd48865e1500aec3432175b217368a3a2b842a1dc3d4dc14b88e8029446adf242d599f89248b3eefd658c13d1376272

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    83d874af7198e8ec5df5e5814a9574fd

    SHA1

    9c6db948ad9bf1a5e8730f9dc25707769e7e05e0

    SHA256

    9551497b66827ee3d4770fecbab0085bb3c4f14abac258017acf6b7de831b0e7

    SHA512

    143601ca30d45537e2bd4da9bf291b82bafeebda5172213b17ce8c7b2ebcb8816053603b9a28bb7c7ebf7591c5e79e39348f5fa86bcc085ccc34b61c868c4576

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    469d9c6a985efb715c117be1837f0052

    SHA1

    03d0508c6a7b6209ddd28c62865054f3473e78ba

    SHA256

    78acd17356d9f7f5d620f0b22539efe5185543a5d7ac1c2efb5b96b1984e6999

    SHA512

    35c8d7f0f6659e41338d632a73372b3a0de612841004541ab5fb6f20886cb9eb9e7b9db7147e53af53d7ce483bd2f94d731be4cef6f05bba0c8151b719ef799e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    588c493d33cc5a4a530071130b07734d

    SHA1

    686ea06ac7d8c30a1ec602f80d886d98c0bbfb91

    SHA256

    c1e97639728c997857deb44f5af97f569dc61bb90a94d0009710b7d8da1f7fc3

    SHA512

    cadc094403fb17d5f0098d3a14967755fe6f25e3fd94d4876cb573e4c00401d7216ce6ca2ed3ae68514636884ecc50951b51c5e3ac9a1bf78183720b81fe9096

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    e014c34b7b29f2290e671839ad3c366a

    SHA1

    b09a1008fa877199ce8e61af766b3dd190d2c85f

    SHA256

    f9c4aefa17b26af87238807d567d62e48b04de994f42c1a63dce408b514a4041

    SHA512

    b828da5f6c16b98cc270f1e3526fb32d968b174b7f10c74265b6fa125ff3987ac993626e09d96ffd0da38ee3708b8d8c429aaa276a68bc99920b6baccc9aed94

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    4bda69a89607516bc839705349e2f2ec

    SHA1

    75125e6a260cdffebf5c6f0eaa93cf176362ca7a

    SHA256

    cd48e489ce8e4c0a147367c90b6dc5282738f5bb277aaf06cc24fcfc95b12330

    SHA512

    b8880c777a2d9f81833ada33b7fdd71afb6c6b673ceec5df6d7571e056ee0656a81838c621e84d42fc05bf28e1533b48fe492fa1f4412933b6c8fdd058ffeccc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    ad910b02337da22e9fb6130a533d12e5

    SHA1

    0edbce5b5566b9242b3f792877fb72b3badc46aa

    SHA256

    9ab0884d824319af0abf86c7f19199ca5490aa83fc724ca954943bce2ca3c13d

    SHA512

    d0c6c24ddef3615ac40765d036e99212604a2baecc02d3663b095aff23e1ef3b2ac589706f6fc061329d25327d0dd1eee7d2e28c1a20e45153c6c98beba7bdcd

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabDA8A.tmp
    Filesize

    61KB

    MD5

    f3441b8572aae8801c04f3060b550443

    SHA1

    4ef0a35436125d6821831ef36c28ffaf196cda15

    SHA256

    6720349e7d82ee0a8e73920d3c2b7cb2912d9fcf2edb6fd98f2f12820158b0bf

    SHA512

    5ba01ba421b50030e380ae6bbcd2f681f2a91947fe7fedb3c8e6b5f24dce9517abf57b1cf26cc6078d4bb53bde6fcfb2561591337c841f8f2cb121a3d71661b9

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarDB19.tmp
    Filesize

    163KB

    MD5

    9441737383d21192400eca82fda910ec

    SHA1

    725e0d606a4fc9ba44aa8ffde65bed15e65367e4

    SHA256

    bc3a6e84e41faeb57e7c21aa3b60c2a64777107009727c5b7c0ed8fe658909e5

    SHA512

    7608dd653a66cd364392a78d4711b48d1707768d36996e4d38871c6843b5714e1d7da4b4cc6db969e6000cfa182bcb74216ef6823d1063f036fc5c3413fb8dcf

    Download Submit