Overview

overview

10

Static

static

7

3f39c2fc43...5b.apk

android-9-x86

10

3f39c2fc43...5b.apk

android-10-x64

10

3f39c2fc43...5b.apk

android-11-x64

10

about1d.html

windows7-x64

1

about1d.html

windows10-2004-x64

1

about2d.html

windows7-x64

1

about2d.html

windows10-2004-x64

1

index.html

windows7-x64

1

index.html

windows10-2004-x64

1

scanning.html

windows7-x64

1

scanning.html

windows10-2004-x64

1

sharing.html

windows7-x64

1

sharing.html

windows10-2004-x64

1

Analysis

  • max time kernel
    134s
  • max time network
    153s
  • platform
    windows7_x64
  • resource
    win7-20231023-en
  • resource tags

    arch:x64arch:x86image:win7-20231023-enlocale:en-usos:windows7-x64system
  • submitted
    19-11-2023 22:00

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    index.html

  • Size

    18B

  • MD5

    c50002b30f2db7e33045a6ef53f94b46

  • SHA1

    84346b72d78331cf3909638329cf227f912d5822

  • SHA256

    04c6d962335c2da8d837eb14f48f77019f3d71c1d09bc2db067751137f9c8746

  • SHA512

    d8635d4fd501efcba4dde964bfc1f38d022616b11a94f3f88e31be270e5712268772d8c9573571b16a1bb7c26e0b60516b241bf8e843f123e80050306a5b11a3

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\index.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1140
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1140 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:3036

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    cc0e0b2c6469ebfe3cb979f000da47e1

    SHA1

    9a5389dcb0bd8827e0f5d26b69ca2a8d605efb9b

    SHA256

    af72e66296b66131a819a743b74c0dfb1895e5fcb5d760b37fb4e9c1343b140b

    SHA512

    7afd1d51ed01aab7494182c5966a260c242f24f0b8426778959568cd46fa449f3b594dc994808d454685cddf726a65f6c8de307a3e29e44ee11fa5cb6aa626ed

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    e9c8a94e2667c07cf6bd4d14948762a9

    SHA1

    f068092a29a10eb0b8ffe20dd6a4c2d83e1e6011

    SHA256

    e7cfd6063c9eb08174383e22f31970b3843a8e4d47315b6378b9a6eee2f4b9a8

    SHA512

    f962ebf3289274f58674bf5058adc5e047550d981b62b1a7a1f700e5131d16b0caf6918b4126240cccb55742fdf0a2b17e9bce017a0ed9a46380e657ebe12592

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    525b1cea91cf8c5f57a9d0d5a8a71fc6

    SHA1

    65d2e895efcd21b6d137e74b8e33dedd6240b5ed

    SHA256

    697311f44f4f2d51e9da67bffae1647b63f581ef4066c4a31977d5988e0bee0c

    SHA512

    f3663249d3f7cee528cafe8e9d5b92189b4a3762c04236bfba1482c3e51034f72dfda57dcd09c58fb475982cca71a612879eea6dae3def3711e7dedcb8a1f4bf

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    26db05a7791d4d93252afdd080375036

    SHA1

    5d01dc4c3d8e16d07d16730c15704dbae745489f

    SHA256

    30f60e65968db2427b77798da031b0ebf93a08930fd05a401dc0c6c5d844f6ba

    SHA512

    84270aa9c2777ca22193727e66c1932fe61714676ea95bfaa7b5000aa3338f7b5b5c35e5e11409a07c03b6511b3997b6286600200b8d3c2f737a2375c73f3025

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    b489b8f282859efc022be8ed795c676a

    SHA1

    a2756aef39bf6512338a51b3b683447e0256d42f

    SHA256

    4f1e9a04072e5a6dbe9ef93f1f879b14dcbbf594e631fab35a6be4b8e18edaaf

    SHA512

    db35d9177b86486f4427c090f197985fb0073d8dedd7a046b386e02d4298297cae5da312a07fbdd292368961aa60f2cb7a630ea5b032a89eb26eaae75e5a58c9

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    d4416eb3d9bcdc8485d41682d2cd8882

    SHA1

    1ab206da55ea5a34e3ee6d243ef0bc71c18692a1

    SHA256

    fac32b78643d5512189567820392e3decaabbcfdf70b82fe6ef25b0483875ddc

    SHA512

    127603a2f9c3ce0e3921214b45f8a026d7b8d212a52927796978cfcb47c79275712a45f3861ef4ffbab69ae5e837e07c2eb6f2ad557a60091249c5d88b0eeb7c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    f959ac4651a89e4028a8fee3cad8ee2e

    SHA1

    b718538eb718b4405c5d84e5ad6c66a991d6eebd

    SHA256

    70b74cf094c0fd2d36568f0285b0a1eec4c9270c5f00e11751678ff4ba8fae34

    SHA512

    6ee9616d2e70910b783098c9bf7c0c8a1dd0c01582de5a42b306d768523f9e12f78a5ca1568bef8ba7d13b508830ae5a3129b06d1845469583b8e18cc443ebde

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    50ba4e0898da0eeb649dd96e23d11251

    SHA1

    f0bc81f132b3042f7abee78f3c9f605667027d3e

    SHA256

    8079e6be73cc30e848e0afad360d279324071055600d9b86e120fd22b3106152

    SHA512

    e9b2fbd8438725db919718a2c8c28df3cda3c27aa45c2fae0e448ab7870e94d1da74496263e8da7430814bbc06bdb98e6a2f5b13e9c8a41d0dc0eed13aee03fe

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    a0c883e7f5ee98b6a1f93d5a3010f144

    SHA1

    53374505ec9ffa8c2f573153948258eb0ad33fc5

    SHA256

    73bfc54cc12b1c349b7a134c8feba0367db3f276ab5b76338a2d5c7b15675e4d

    SHA512

    7c8ec5f929e0e3ffa7c9a378cb85509628d46af1699094c88db73c8413d5e0f0797e0e19716dc11fd5cba54f841ab18e8082c91aa502e057efd2499cbee9146b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab51EA.tmp
    Filesize

    61KB

    MD5

    f3441b8572aae8801c04f3060b550443

    SHA1

    4ef0a35436125d6821831ef36c28ffaf196cda15

    SHA256

    6720349e7d82ee0a8e73920d3c2b7cb2912d9fcf2edb6fd98f2f12820158b0bf

    SHA512

    5ba01ba421b50030e380ae6bbcd2f681f2a91947fe7fedb3c8e6b5f24dce9517abf57b1cf26cc6078d4bb53bde6fcfb2561591337c841f8f2cb121a3d71661b9

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar520C.tmp
    Filesize

    163KB

    MD5

    9441737383d21192400eca82fda910ec

    SHA1

    725e0d606a4fc9ba44aa8ffde65bed15e65367e4

    SHA256

    bc3a6e84e41faeb57e7c21aa3b60c2a64777107009727c5b7c0ed8fe658909e5

    SHA512

    7608dd653a66cd364392a78d4711b48d1707768d36996e4d38871c6843b5714e1d7da4b4cc6db969e6000cfa182bcb74216ef6823d1063f036fc5c3413fb8dcf

    Download Submit