Overview

overview

10

Static

static

7

09c28d864e...ad.apk

android-9-x86

10

09c28d864e...ad.apk

android-10-x64

10

09c28d864e...ad.apk

android-11-x64

10

about1d.html

windows7-x64

1

about1d.html

windows10-2004-x64

1

about2d.html

windows7-x64

1

about2d.html

windows10-2004-x64

1

app.2d89045a.js

windows7-x64

1

app.2d89045a.js

windows10-2004-x64

1

app.html

windows7-x64

1

app.html

windows10-2004-x64

1

app_get_version.html

windows7-x64

1

app_get_version.html

windows10-2004-x64

1

aps-mraid.js

windows7-x64

1

aps-mraid.js

windows10-2004-x64

1

bakchat_privacy.htm

windows7-x64

1

bakchat_privacy.htm

windows10-2004-x64

1

base.js

windows7-x64

1

base.js

windows10-2004-x64

1

error.js

windows7-x64

1

error.js

windows10-2004-x64

1

home.html

windows7-x64

1

home.html

windows10-2004-x64

1

index.html

windows7-x64

1

index.html

windows10-2004-x64

1

jquery-history.js

windows7-x64

1

jquery-history.js

windows10-2004-x64

1

jquery-res...min.js

windows7-x64

1

jquery-res...min.js

windows10-2004-x64

1

jsbridge.js

windows7-x64

1

jsbridge.js

windows10-2004-x64

1

libwbsafeedit_64

ubuntu-18.04-amd64

Analysis

  • max time kernel
    140s
  • max time network
    151s
  • platform
    windows7_x64
  • resource
    win7-20231020-en
  • resource tags

    arch:x64arch:x86image:win7-20231020-enlocale:en-usos:windows7-x64system
  • submitted
    13-11-2023 22:00

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    bakchat_privacy.htm

  • Size

    2KB

  • MD5

    a6770ff50d114c81becedda6f1d87eed

  • SHA1

    17da909ee817dd59739fbba812e67b1ac13cae06

  • SHA256

    bc48fe6585c55c5a28dc27b6ce581552861a00903c160322aa65d494cf2276fb

  • SHA512

    55ccf1dae715a6bdaa967ecb5781370862251b856f378bed54e7ff884ac3589efc62aa9e43b5d0fb498d136fefac33a090b267a28aaaa21975dd49f2d67ae8a6

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\bakchat_privacy.htm
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1956
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1956 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:3008

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    3c62de97b9f6b28eb6d05c0673e77fe5

    SHA1

    239740aca2e716c4ab62981d3bb4d7190d978bd8

    SHA256

    9fb4390933e51eeed039f0b45f9ed6fc43061b93dea3f1b9f44fcf50a7dc52d2

    SHA512

    de99829039f4240a90e9b13e4897ac60108acf229e1a5408df3d76784e666340edc25ff7cb44c419b379e801afc15a85a4bfbea9303b5fb1f7fcafa65115c162

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    ca5e00def4e59b27f7eb5629783a7210

    SHA1

    264568fb1e93e97b5a9f22afca0693a2c6f4591f

    SHA256

    708221034c993490aeefcdada56fd38cb5e452c28b247a7ef57db1d428533b8e

    SHA512

    66046fd32f637cfd6c8fdc2fbacadfc7330c263d5564018f10e22cacb840ff918be78bb6417126dc8b5909e011f6ec938ae354eb47cb8393b5fb40e6632312b3

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    5459a44a3c9ed23ca6bd3e44db29faa0

    SHA1

    4539ab048987b48c82889d76455a7ddcb9bc6a07

    SHA256

    695764fd95c6be55ce3e6415ee4dda14d9a57a2671f40ba9b8f0f985d4cc1658

    SHA512

    0448b4662f8261fa7464a4c1dd97e8b05072c69b53ee6b5eeb0d854a76ce0ecc141d205d83ac5584e28fb65034d23ea192d8385bb904cb2e198d583d712bb3a9

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    d36a2bd4ac73730fb8c51367db5578fe

    SHA1

    5c57b969cc749f648ad611eba9cc1efa4fa6de7c

    SHA256

    17e0a2ee408d996565775a598580c9d0285f721a7167e95b6ff83f74655f447b

    SHA512

    d277b62ddc34b37afa036fa76985ed97371d6e5d9ea89ef76354b182cf720735fd0bd3a601e091d5babd84c060557363accd8f41ee702bf58d61e9d668e12dbe

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    8c02a443ffc44c516c763623be783d8b

    SHA1

    ba932d35a050f01ad715f7e35f5fa1d920ea98b2

    SHA256

    6d97311f0f8c5950118c812a23f75613e2f320253d4a4440a4e7ed28122bddbc

    SHA512

    961b1dafdb23bba0d3b4760b5a0c4283cb6b88f361c41e1ed10e82c84a57ebba698dc1d3db2ee1a9c65c220b54813c761b9173b63390029a7bced659e850f406

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    f3948daeac9c28e43fcad869a02a5a66

    SHA1

    5b9837d3ef6618f92f32d846d23d1deb24c29339

    SHA256

    f3eb3b14515f7997811b4b0576e1321e03454cd7bd3e5900b80b82d72029c564

    SHA512

    25b4b3c18ba8e04974cfa8f4fe057515f6bf14d24635a76dd639286de6e1f4fc82bcc1da1478e9f26154b0c263349d7666b9ca896afe211c0a23592b9bcf8df5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    897570982f7a69ce6281c0751931dc3a

    SHA1

    1549c44891015a6b2572e3f69fd6c39eea4548e9

    SHA256

    1e59283c1e5699c22249558923b31e65ac02976b6331c084ec9bd040d03516d4

    SHA512

    f6cfdfbe1f0f4c95b7a4c408225f4b65f61a2b8bc1c331b80edbf4a36398014a2e073a20c7ce2a0c75f7587af76fdf6a0635933e0f7d5252a484df38f874be99

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    9ddf467555419a660bc9f164d821a79c

    SHA1

    d64c566461676df5ba68f858399cc771ea45b154

    SHA256

    c62809b3b38b95cd2ede753a78a84e79fd639c79f0e6199ba231b3757cfcd45f

    SHA512

    b7227601d51b40daf599d1344d70fe1585eb31ce083f67115f36a695213b12bcb8a776986813341e1ff4cbd9013167d8b073bc397c51e8e55665d6eea3e23dc5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    7befd17f66b9a6cb0edee7fa9722825d

    SHA1

    596b4c279815562e5bba6e7ca5e8955af49a795e

    SHA256

    c421c9a70be8228f7e502adc4f749547016f63dcea68212399fad117abdff9de

    SHA512

    895abd4b8b8acb4f79147d1a86d5834e94825ea238c1aeba410e762e69f3b0225ddc38e2b739a1b89020a54156e343800e81103a987db1916737e530eb1a58dd

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    dc369d66d931968294d9a44871da7b79

    SHA1

    3b65c65220f5a41e55f03b62009f9e8405ad7670

    SHA256

    5977a110ce9dc9a1a383e06d73b8abb42156479cff464bb70fa0a733e427bad2

    SHA512

    98a19df1c97448501984ceda64db743e795f2e667e52d9fd72fb07493061a55b3cf94e0288df5a0bd40b7febadb0c3960723d92ecde85679aa7e27809d95f912

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    bcc1a0e911c53f84d60eb089da6ed5f0

    SHA1

    1a23a34ca15ea2881acc71fb20a9b445f0c2dd9f

    SHA256

    e76efc563f2017d914aac931fdbfed183cf6a46e54b20b7cd25496f1533a4d0b

    SHA512

    9ba605ad8f0e05fb4b61514592e2dcd34dfad3b4499704dff9f97961dc66bb7f011278f94e0b5a0663724d8dd1047f070ac3f56a3e90fe1380ef6950cbc82d63

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    2ab29f978417421c78a744e6f325ece3

    SHA1

    8eb592f95e858294fda648fd1ed427428cfcf87e

    SHA256

    c67dedc554d25e38c38985bd62ef771a0ad1048e9900e7c15364b2b50c11121f

    SHA512

    00160d7fb7bf606d93bee6f8432dff86aa890bbb2fe1584e2a064383362f380df658b30d60b3cfe79e7aa769790a05dcd06b58808403475346a5c522f1ded8d1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    9d8b5b6c9d54d2c173aa97020cf0150b

    SHA1

    10eff31194d555895751194aa48f9b97ae32203e

    SHA256

    2cfa1faa6f158bcdc5c717c0e688038cd0b803a9acf11ce3923bf4fa6c058de8

    SHA512

    aba44cd2e7dce96d20145b648d3b1d9e4cbcb43d62e511025a6854cfdc86101f56038676ea3995ab341f594faf08ea617fb7be8b5746ae43fa436c8943f74eda

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    6f47ac3cb9aaca24249134d9cc3b26cc

    SHA1

    b4fb3423f6e89fe5ad229900f897547518ff5ecc

    SHA256

    67cd50ab24d034fb379213e9cc83a3965dad4ee16a51e7b06fa80e68af74624a

    SHA512

    72a37c3728b89dea4edbb1e000aca29db125dd67fcc7f63fe7cd7e52a5a088ec847fe89a2264c17d37afa5ddb8df58d34b782b0ea99a3cd2d7171a062c58ac17

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    25942279c1330fded53e93c9f6168f70

    SHA1

    eecfc7db4c12cb1db6b9bab607ae708ea89286a4

    SHA256

    9f1babd393f9d4efb10f1d48b1f58fb2c5ed4e126b4a043eac74825c7e82f964

    SHA512

    2866eb24090767dc671d775fc9af279d7b92f69534aa3fe20e09486a60551a0dd17e79cdbfbab000328bee66d2151596e8554aa5a76ef61574fe6032cd3710b8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    102d35063bb82e63e7383c0c8dc93f32

    SHA1

    30ba8a576aacdc2bf16a750153c9a217b95c4e0e

    SHA256

    1215902878671152098188d2c37392f2b3c90b11ca353056375c8f783279504a

    SHA512

    c84fc8b98a022e4267b82076fa45ab0752a5a62ec04377fd96d54728adddd212bd860aae3d570b10c04152ef74b3994e5cacefd447d53722e14a2f714f2b5b19

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    3b40b2fe8e2ae49fe931670c9af01266

    SHA1

    3c10ad44f77832f310bd32f6b95c9ab6ddd4eed4

    SHA256

    a0e3cd9a28da5963fc2f40755f143da4bd25e9c2137ad974b423aa2d97fc299a

    SHA512

    14de17cdf808af2e562f7275107335389e1c32feb9c5dc62537eeaf3fec6e292211beff9f942b6c8b32903e1249d38d9155444f0da71162156b0b561938d8ec5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    5166ca270c1e026bc2738dc408ebcbf9

    SHA1

    e1f43eac377d4fed520df1edad8b08a9ff394960

    SHA256

    a67b89aa1e3aa33d1737d9f382a60a9f6eaa4b1aafa617a778da644da68a503f

    SHA512

    4c814a9e4bc8727918c80a641d31c89f7ddc78d21c1d3a94d651e69f4a522711404c85323957371e2fb8afc5fd1efe8ffa5c15df2014441954d9104a20c506a8

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab7080.tmp
    Filesize

    61KB

    MD5

    f3441b8572aae8801c04f3060b550443

    SHA1

    4ef0a35436125d6821831ef36c28ffaf196cda15

    SHA256

    6720349e7d82ee0a8e73920d3c2b7cb2912d9fcf2edb6fd98f2f12820158b0bf

    SHA512

    5ba01ba421b50030e380ae6bbcd2f681f2a91947fe7fedb3c8e6b5f24dce9517abf57b1cf26cc6078d4bb53bde6fcfb2561591337c841f8f2cb121a3d71661b9

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar7082.tmp
    Filesize

    163KB

    MD5

    9441737383d21192400eca82fda910ec

    SHA1

    725e0d606a4fc9ba44aa8ffde65bed15e65367e4

    SHA256

    bc3a6e84e41faeb57e7c21aa3b60c2a64777107009727c5b7c0ed8fe658909e5

    SHA512

    7608dd653a66cd364392a78d4711b48d1707768d36996e4d38871c6843b5714e1d7da4b4cc6db969e6000cfa182bcb74216ef6823d1063f036fc5c3413fb8dcf

    Download Submit