Overview

overview

10

Static

static

7

09c28d864e...ad.apk

android-9-x86

10

09c28d864e...ad.apk

android-10-x64

10

09c28d864e...ad.apk

android-11-x64

10

about1d.html

windows7-x64

1

about1d.html

windows10-2004-x64

1

about2d.html

windows7-x64

1

about2d.html

windows10-2004-x64

1

app.2d89045a.js

windows7-x64

1

app.2d89045a.js

windows10-2004-x64

1

app.html

windows7-x64

1

app.html

windows10-2004-x64

1

app_get_version.html

windows7-x64

1

app_get_version.html

windows10-2004-x64

1

aps-mraid.js

windows7-x64

1

aps-mraid.js

windows10-2004-x64

1

bakchat_privacy.htm

windows7-x64

1

bakchat_privacy.htm

windows10-2004-x64

1

base.js

windows7-x64

1

base.js

windows10-2004-x64

1

error.js

windows7-x64

1

error.js

windows10-2004-x64

1

home.html

windows7-x64

1

home.html

windows10-2004-x64

1

index.html

windows7-x64

1

index.html

windows10-2004-x64

1

jquery-history.js

windows7-x64

1

jquery-history.js

windows10-2004-x64

1

jquery-res...min.js

windows7-x64

1

jquery-res...min.js

windows10-2004-x64

1

jsbridge.js

windows7-x64

1

jsbridge.js

windows10-2004-x64

1

libwbsafeedit_64

ubuntu-18.04-amd64

Analysis

  • max time kernel
    136s
  • max time network
    133s
  • platform
    windows7_x64
  • resource
    win7-20231025-en
  • resource tags

    arch:x64arch:x86image:win7-20231025-enlocale:en-usos:windows7-x64system
  • submitted
    13-11-2023 22:00

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    app.html

  • Size

    708B

  • MD5

    63ec4137ec1dddb92fe9a6a6d4837921

  • SHA1

    7fb1d2517bd8ac16df3e9ac77249f6d9b36b32a0

  • SHA256

    f3c0cd68e1a826c4f9c2301bf29aa4c299477cbec2b65e23b0e3c8914a294a1d

  • SHA512

    4fbc2e5751216e12627389c47711788e9f3c172e28e4150d389dbcfb6ce268de1354eac6f12f9ce36ac70dab1c06d3fe85d1233006aab1fef06b186f4fcc4790

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\app.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1224
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1224 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2388

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    3884c77d7506531cebd17db1137641f9

    SHA1

    8490497ff10be4cfba08c7069f5a8906c2dc643c

    SHA256

    6a1a9191af636277d53db14c003602171fb23d8280b0f3e563ae830c136e7529

    SHA512

    c1448cadd336ee5d5610121bd4c007ec0e87bf43de4c3d2116f27c36ef82cea14a325c275019d3470c1c9ee76d8f62bf57533581ab548750dab5df6c096fb09d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    a657d4262048811044762d33943136bd

    SHA1

    4dac90298b445b84a537a606af44932aad652b75

    SHA256

    5545ab66760c3d3fff66ac106625214070ddf314d9dbd799e2d02bd47da8bb2d

    SHA512

    1f73516aa78a6691a0c2e6d3b2a078f3c0f215629a1950bdccd529e0714c585f39194f5b36d7cd2918d87392fcb58e40d62e043afdade85b9ef8c0f3cdc87b49

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    b38e6fc230082b3647492badd431334f

    SHA1

    1c8be1639ae98b0024b3141a6fa198eba7e71641

    SHA256

    4d6a94d3483963ac4915e32dceeb6797214230ee74f8631f99ae116b3a3d60a9

    SHA512

    d40a7253a3aca8851d226dea7af0c390c12d6602944dbad0fd4bcd31b80ed87107122674e7003f61f7ac9a8ca6a11c8ea068dcdcaca162a083e89349e83b0d9c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    8f25fd5ea3132048e89e6863503272bd

    SHA1

    c278148317dd986121739cae4aa7da3ff4700e59

    SHA256

    9cdb64e7d2d6d787efde9e8eb56b53c6483aa4ac39325ccdcefa5a3c153417a1

    SHA512

    32d7349785df1abd8e735d89ed58f8b1204b38a63f437a3a0d81c811bebc0762a14e71c8dd98ed1deffd802982bcd5b48ca0228ef93b1d90d260626db97fdbb9

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    b85bea9c80b4ba89f7794fe2133d9f6a

    SHA1

    176aa2468faa52020dff3999b359497e391ba310

    SHA256

    3f5aff94bfca0e9a94e697b92d02e53daabd718f559ee8dfc8212f78da33bfad

    SHA512

    d0a31f3506be5505d4c6894d100bda93111dc50151baf7a9347b877600b24fee70060b7c72df6900d6b7a77adfcb6838d8e3f80f68fa92fd47fd2a698deb1e3c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    869ad5a09ea21abf47565ea236eb77da

    SHA1

    8ee3d3d5d4bf6b5f8d1b31ddc3f0fd55e7a15aa4

    SHA256

    eecd7fb2a7004984be039d48c4b01e3143193acc466a086e6b34f035fdb14a1d

    SHA512

    72b9ade3d43f71b48fb566597cd42bff243fb67ddb9090f5fe2e559989053abd32810142081f2b2b164f7da0c60adb79f2f1489e999e521ba0e731b2e236150a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    b61d5a4b70cb67547073d8bbe2252293

    SHA1

    c29abd733630e23ce8b2aaefa9a8f2a1f39a58cb

    SHA256

    a00a2242fb84bd7b3f7aa1ba0a1e06c142dd03815730ebbcba70a04fa799b686

    SHA512

    c84633f2f7d2c20bbf66b501b75877605da7e47eca3e8fb917644893dbeede60b8f8ebf48cfaa5856a6c6a49abb99bb21c279834946799c8add9656270b062bb

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    b5aaf30dd5b01b850570b1d66a684cf5

    SHA1

    546e08942b96f3e1a47dfcd2ed6c4f4af614d02f

    SHA256

    ee2c831b2649303851e3ee15015eb186f3cc1a26f8e47e93c5b00f82af4a45ae

    SHA512

    5b2f91b4a4d50ada2ad95ee5e9a83f47c7266f86a66f2e6418bd841731349322930076ab1890080d9d957406b643850aeb9dbef49870f4a5904534e75cb322b9

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    808cdd2f2e7ff22ef1a4915575026adf

    SHA1

    48ab11ad0f3af5cc92459569165ab8e2a3b88e73

    SHA256

    7e0f45c5c3565252c67cad726f2e7b343657ba814f85dc2ecf1f966074b12f02

    SHA512

    ff5bd2bd306b95421d648833af8acdd59d07ef94bd298532127c826a1625f3d85deb091d4d12d40b248bc9537dce5a16015eea46ae06fd37b3c4432b12d16895

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    ecc83b34b7bbb9fb05a0a260af67cd07

    SHA1

    b33a00cbe26c04a482b7c7dd01f512a9d051e8c0

    SHA256

    22862abff7f2d1dedbd0e814d5459b791899942b6521e0727c59c7bdf7a2da76

    SHA512

    94fdd7c8ac317750de9c95fcf7401919a2f927f588f8e8f031d28c6fda1672e90aabf939e59dee6fa0da28035eacfa5d2b29b64859b1084d70f2f4f7976f7847

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    f049a23c8e4582e08af2d3071f2577a7

    SHA1

    e2b929d7f6d013d1c212fb29d18e8631895d249f

    SHA256

    bf001d0947e4ef93ae0955ed35efbb778f2f23405be35e470f21ecb674e5a178

    SHA512

    28c9098d0cf49efd024e9c51ba8ae5fb82918526ac200dd0e39d72c5e39b8c1537b4d84d7cb7fdf33b66daba3a75ff3d0f31783a679b596eac468f032fa4c5a6

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    2bb6a71de9769157364a14ad32486708

    SHA1

    d3b8da024936e1eabd092c97e940ab24204b6c69

    SHA256

    9347ec49d33aa8464f4fd8201426b4964d9d045c2377da384e723c583af86f5b

    SHA512

    03b40e92c910c9c5332b1f78693ef309bce12eeaa5d52560ef5416e0060863dedb5faf815673f452e2a9d65b77681c4eff8d623e2ee612452b57cea95cb5307b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    b19a08e27063329c4c8b55efa28c2b88

    SHA1

    c51a3e29dae8e97618142704045e24613817ca0b

    SHA256

    df8d0cd81d55c8f14e3ea1f4f1c5ba3dbb88cc3b1d007f1476b38633d034869f

    SHA512

    da042c279c10535b27596f344168df28a34e221a562a4c75839f2024160b9f50caa204d16ed3a10c7422551ca204b62c3ee521d460781af456d63a3fbd0c6d0b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    24f6159ff2985e94c37a69b985629b74

    SHA1

    de37f1e47d7d99c0e1cfaf6e819639417e461424

    SHA256

    4e5510029609d94f6069152f99ab75a2747bdae4bc79a119195a265ef2b24812

    SHA512

    6c5f0bdb9d80d4ec122fde7024ae11127769c3d6c30d72a07f14f47d9e24b7c5ddff5f22c9945956afb9656fd9dedc0d41d7659df39158457ec0798f08594c74

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    b9e3d93561273103a6d67b84d7ff80a3

    SHA1

    9adab59ea4d8c32d087d3222136081fc55283fe4

    SHA256

    8d42172030cc7858bbba8ec009cdacb2bdb00397f75191f8eb85b39835f80ee5

    SHA512

    dd28ac688ba10ad08269e3bde8c5d4840cbecb2f6880a177f288e92be545356ee2f35bba55c1cce205183f63deef6284aa8c544f96ff89fdda2554024467ac6e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    e41ec392b47bd620314a43b5cee217c5

    SHA1

    51c93c4789f9b8745afc9461d0b79886f36c7dbe

    SHA256

    09c2d3bc9796d0b2e495bd67ae29818788ec8a774356a3da13c662cd6171db55

    SHA512

    71aa7ed291c0c226ef79b4313d5ab094ca3997e888ca18a2aac937411f1ec6a3b77253f545c27693d763715a7dd2509cec0f86f6e85ea88986f56d00f8393b2d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    ac6d98f48d0ac9504a013824ee1bd38f

    SHA1

    d351d1cc0f7411c6cc169f20cf16a697b0d0f146

    SHA256

    6565b5346e5550e20518e0ac306cb14cd13aa5465dcdb6c88e70c573473e6e70

    SHA512

    3758cb2aa9e5d20580c7c716f1ed161e409e70600f14a1f3f87d737816efb696eced56b33d2ac0bfb14b06abd56d3766465eef21259d8562102a84ad6c07307a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    9447a501fb012bc9c92bc975c3c5d88e

    SHA1

    cb29e0bf6a1d37512cbd34a5caaf91bd3e7ee4c7

    SHA256

    d83f3531a8764fd62728458ccfbaac971bd8825fa9bb29aad80aa49014922881

    SHA512

    16db025be1f39b34cb2ef1cf3158853d5904e9bb5bcb27b50fba7f87bd6a2b1345873a622cd119a3965d3533c4752dbcb4a1c7ea7d4923884df262d0a1c192a0

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    80072375cfefd893b8b01f90403c7a6d

    SHA1

    d2f64c32d8403940cc4781e773a143ffd0047dc5

    SHA256

    cc185ae363c61c24404cc109b8c43d9f9a980ad215ff1450aa46c695b6126d5e

    SHA512

    711602df29fccf81a2a909e3aa7878752caff03c7eba7b7eaf90d650835e009d29c647e00e1e3803d583b3404d59e551986e7f680cf5d15bf7fbf8c4b34c93f6

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    af5ea82bbdf66bb608f9e6ec16ee7a4c

    SHA1

    e9212db3f1d49893d50e3ec26a6ac581a8c66f87

    SHA256

    3e68c1bfd92e72d6fb788cde75e6fe93806290cb052cc807b9ec7661e28a657f

    SHA512

    faf8221470930dc83df3a1251b9cccfa6ae7521824bd2b4c0a23fe22f59567adc35b5b08170b4fb55c26c4588a6c8a4948a3b70f963608d4745ce973a76cd6bc

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab4D37.tmp
    Filesize

    61KB

    MD5

    f3441b8572aae8801c04f3060b550443

    SHA1

    4ef0a35436125d6821831ef36c28ffaf196cda15

    SHA256

    6720349e7d82ee0a8e73920d3c2b7cb2912d9fcf2edb6fd98f2f12820158b0bf

    SHA512

    5ba01ba421b50030e380ae6bbcd2f681f2a91947fe7fedb3c8e6b5f24dce9517abf57b1cf26cc6078d4bb53bde6fcfb2561591337c841f8f2cb121a3d71661b9

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar4D9A.tmp
    Filesize

    163KB

    MD5

    9441737383d21192400eca82fda910ec

    SHA1

    725e0d606a4fc9ba44aa8ffde65bed15e65367e4

    SHA256

    bc3a6e84e41faeb57e7c21aa3b60c2a64777107009727c5b7c0ed8fe658909e5

    SHA512

    7608dd653a66cd364392a78d4711b48d1707768d36996e4d38871c6843b5714e1d7da4b4cc6db969e6000cfa182bcb74216ef6823d1063f036fc5c3413fb8dcf

    Download Submit