Overview

overview

10

Static

static

7

1b72da2cc6...5d.apk

android-9-x86

10

1b72da2cc6...5d.apk

android-10-x64

10

1b72da2cc6...5d.apk

android-11-x64

10

HM_JsBridge.js

windows7-x64

1

HM_JsBridge.js

windows10-2004-x64

1

consentform.html

windows7-x64

1

consentform.html

windows10-2004-x64

1

Analysis

  • max time kernel
    124s
  • max time network
    159s
  • platform
    windows7_x64
  • resource
    win7-20231025-en
  • resource tags

    arch:x64arch:x86image:win7-20231025-enlocale:en-usos:windows7-x64system
  • submitted
    09/11/2023, 22:04

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    consentform.html

  • Size

    27KB

  • MD5

    7a2ed1a6df8839dd8936a86d9edccabe

  • SHA1

    7bc1af528444afca678905059cb1ba9fade65352

  • SHA256

    d02fbd55c1b5da3fa1f77c52f5633421395a3bf228457521512b37cdacd65f9c

  • SHA512

    ea0c3e512b37e340f4c0a49196344f1dd5aef38c469ba124605518e913be601a5b6a92a50f00e962bc90041bb80e51480254c7902032d894b7d24be5aec47097

  • SSDEEP

    768:wEh4FOT6bJdK0D7fkvaqF1b6cY4c5rC28c54NTc5Jt:th44GbJdKoncY4c5Wc5wc57

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\consentform.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2000
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2000 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:1236

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    0baa57a2a9b3ddcc5fc51976b7a00217

    SHA1

    c2f8623c8ca6049326284ca063f62d4e140c9ac0

    SHA256

    48124b403d9fd4f2df11f48c0f56bb4859eecfae5cf91a46e4f7ac7a86a20239

    SHA512

    d5f3ad8adb61364b6b45994d8deb91e512bbad867ab5f8db12b1f1889c12c40f7a715dbad81174e298b7e49a033d51e9d6a280a55cff77cef0be06a871e1977b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    627d1803e2330f4327b657c821b40d05

    SHA1

    b96abb066abc9b91863aab5241ba197004b49823

    SHA256

    5960de8ccd02b17d6b5a02706c4ad370bff3ac4f17aef98672ff28485d7be7d1

    SHA512

    ef9f4fd0cba36c489d8e41dc4a002bdb7ea3d2c6ab59a147cb7aeae463a0eb65d2036d1e580c339efb084b3325224e682aa6b3c2c97f4d8a87af9edc82bda83f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    3f7b0e30ef4a85817a38999bf72fe3af

    SHA1

    786710dc0ffc5a4b0a6de19f37349587da6c3d22

    SHA256

    8b1bd51962fb0d08c16098045bf30a542879c32d60dd45d9c4c103e80fc2208c

    SHA512

    9d0d642f1cd8633af00d8775f85352af04bf29ca1276d06d8cb81ae46976327fc2458d7bb3450208550c016978fdf6bbf90417240b449cc4a3e5f38950609355

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    c442f14e1e3ed955ce49d5ef6f8af3e0

    SHA1

    35a68625c8d50720948b251e9051301da98e2df3

    SHA256

    379e58fce42ff0e90007c219e488d66caad61c0a37de81e858274f36776b142c

    SHA512

    03d4745778751596f09395648ff014e4062c727c64fd712b73c9567034481892945e3d81a2aa580f4363fa58ca2363b72e5cc28bd2dfe08decaf9c9a9deb7e57

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    0376ca7f8c63636f28f2414830fda99a

    SHA1

    e287d43b35c74bee570db6be0c2e742ea0a7e226

    SHA256

    2708e19997f69a7d2c8e4e118f27bd204a659d99ead456ecc07d32c8610081fd

    SHA512

    653e79735b0da67641923ba8e76cfd92e6869e9a24dd12ed6fd58441d1399f18a4b5bc9c7972706690ac3ee89c0d925e53048341bbe5bdb10d97e0f0c1571ac3

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    f3d2c33fde02c467e2e5e035bf1d201b

    SHA1

    88b156d9ea3db463ff13cf3b5c2d2069181615ab

    SHA256

    b7f9822cf5db3b77fcd4a8f8f2a28cb4b2146a1b4f8469db238183cf9562ce0a

    SHA512

    3d68c208409f6f3d52733b56ec60c2490278cb77b156c9a590c01998fbd0d655d1f3ef28a742dc42b9fd91a388dcf59c0aa0baba7e8f66db9514108d193ac2f1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    6bd6590f6351d451749b123f51dc8a3c

    SHA1

    40649373d96a065a5692f7d617195d704bc8ba85

    SHA256

    923a60cc0a3f3acd8a95bb2194f05024362c3c9e61228611c5bb6825ce21a45b

    SHA512

    cea7a54f4a00a408d3cfefb078007fb5b0a509ee776b86535d3ab04f1fe73bf0916dcdf6be92d0e7a772c1ec5c326f855159a905417d65fbd47bfbe747892e1d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    c070ebda90f5aab1ca2916dcd3791f64

    SHA1

    afdf284f692f2fcf5b75ca35ce4e091c50d2f446

    SHA256

    a6bcfd25b127be49bb080b7f2e292b5f2bcfac28eae8b56ed1837f300523ddb8

    SHA512

    5717ba1aafd72dbc83bcc6a3fa6600a6b989fe93ee6c5176676b1761635891269448b5301e8b697bba122825a1a9a259651515235f6cce6b585f22af3ae1672b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    771d6f8a86751a45b4e8958121682288

    SHA1

    7f0f4d525466b9cadd436cb8e8083e440982485a

    SHA256

    f842ce1d6c2d7e9ecfdaf452b9ddcc2a470258e62e865ff0edf7fd26fe04d089

    SHA512

    574448f5bec999387c62cf9e8497ccc05762afe8634d0c2cdcf3e3208929f01d9bb43b3edc6893d45ab8feef5244caa32be34c850cd8258bb52a116a8eaca4d4

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    2a802ac1caf6fa9f780e6cdcd6af6d4f

    SHA1

    7bc3e34348e0494fbad08c529f35ba0285b1a38d

    SHA256

    438dc98938ce049ca5ffa69d8ee2500b7e1a7edb48b60cde2e7d1c3589dd83b1

    SHA512

    dbd5786d8fc80c5b37418a01cd0db3843e6825ee364a821826e7948b7c257e57d98793090a0c0c093330b49e7e6dcdd8260daf9ae74b0d7b640e6dc5bfa747b5

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabE85D.tmp
    Filesize

    61KB

    MD5

    f3441b8572aae8801c04f3060b550443

    SHA1

    4ef0a35436125d6821831ef36c28ffaf196cda15

    SHA256

    6720349e7d82ee0a8e73920d3c2b7cb2912d9fcf2edb6fd98f2f12820158b0bf

    SHA512

    5ba01ba421b50030e380ae6bbcd2f681f2a91947fe7fedb3c8e6b5f24dce9517abf57b1cf26cc6078d4bb53bde6fcfb2561591337c841f8f2cb121a3d71661b9

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarE8EC.tmp
    Filesize

    163KB

    MD5

    9441737383d21192400eca82fda910ec

    SHA1

    725e0d606a4fc9ba44aa8ffde65bed15e65367e4

    SHA256

    bc3a6e84e41faeb57e7c21aa3b60c2a64777107009727c5b7c0ed8fe658909e5

    SHA512

    7608dd653a66cd364392a78d4711b48d1707768d36996e4d38871c6843b5714e1d7da4b4cc6db969e6000cfa182bcb74216ef6823d1063f036fc5c3413fb8dcf

    Download Submit