Overview

overview

10

Static

static

7

6457c9837f...ba.apk

android-9-x86

10

6457c9837f...ba.apk

android-10-x64

10

6457c9837f...ba.apk

android-11-x64

10

noconnection.html

windows7-x64

1

noconnection.html

windows10-2004-x64

1

policy_content.html

windows7-x64

1

policy_content.html

windows10-2004-x64

1

slardar_bridge.js

windows7-x64

1

slardar_bridge.js

windows10-2004-x64

1

slardar_sdk.js

windows7-x64

1

slardar_sdk.js

windows10-2004-x64

1

terms_of_service.html

windows7-x64

1

terms_of_service.html

windows10-2004-x64

1

Analysis

  • max time kernel
    135s
  • max time network
    132s
  • platform
    windows7_x64
  • resource
    win7-20231025-en
  • resource tags

    arch:x64arch:x86image:win7-20231025-enlocale:en-usos:windows7-x64system
  • submitted
    28-11-2023 22:02

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    noconnection.html

  • Size

    161B

  • MD5

    856bec178dc0b1c9db20f147ef93d86e

  • SHA1

    426577810cb9e2123e3490eefd71153bff28f4ae

  • SHA256

    8df9563fd4ec286f4b8e608a7f10ac16be1211cbd028eecd269c7c0e5979656c

  • SHA512

    cfea8fac891818a3c5bbaff4adef3172049a19ddcddf9ce0b55d51507a443da6a116c022d457cff1de3c789576292d522eb74e7efb02a5fe00c38185bf86bdc9

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\noconnection.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2944
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2944 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2388

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    f766980f3b85c7adeca60848369ab336

    SHA1

    106cfa7bf866a692bd86f2f645dc971bc49f36b3

    SHA256

    628198b8999aaf09ca8d06458f9073616969ccf71357dcf7a7c66c6ffae85b60

    SHA512

    fc2dcec59d2087748d1459f42b36c221bcfe23fdc80f0077e452e43e0643bff9b60f76faeee01ee764b19faffaa83e44eeea1738b25d5ea389e9dcc5dc49ffd6

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    2845631d5ed99fb34ab5abb9c0bcf999

    SHA1

    eeec275901a9fc6a1354e82996a12a0301995bbf

    SHA256

    55ea2347c45cbda6c4c6ffecbd543474563e48f4b1756b310bb11e668d2426ab

    SHA512

    65638c783e9ade5922ea8c91db70b4c31f085c6d84c2810b9be5efe2cb8c9c512e34b7666653b2ff44f43a99012566085140910c0b083497b0fcc34ad4d2a5c8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    976d4bb40e6c883dbcf032a5930deef2

    SHA1

    fda0a98a4e3ae3e47e93b01962c57cb7f5cb3f24

    SHA256

    6874206567a24dd7c18af1536e2e3cc119cf641e410a54155db10dccbf00c6d4

    SHA512

    a180c14b1642ff0fcbe49941fcebd3c9048a5a2696e3477ae4d17b32fc5640299c39adea22b5d06f88edd1455b77b53cb61adeac4aab7aa7a0b804e45b004b7e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    d8d522268cf46cec1de7a786c2666445

    SHA1

    46ec37e98aba48be1e94085d8baef41987affb29

    SHA256

    a7140e1a71dbbfe0bede1faf5a597a89c663c8f1e2c95750114594e3f09790a8

    SHA512

    5b7c9571238c4a5b9ec437c4bfa1c708843482cdf22f00c0cb62f5269e765f51e29d4ad922c7d4aeeeb016dc8d4eead69036d85d4b6abe5fdb4db9194558cdf5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    1ef123e1be2d9d63fd6dc5678a4cb52f

    SHA1

    3d4be08b1c3e8abefb3d0eb1cf034855027c98e2

    SHA256

    b1e5cd18849ace23ad7cd18c74e8237ca36fe9138f289845a5b5aaee04e249be

    SHA512

    4ef80e88d57cdd3e839d4e6f033412bd82886241645bbbd6717a0630267bfce28ef62d3e9d06f08ca0e7661ef40d758a844b40924ffbf114f51be8f523013051

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    90fe49d9f85293db9eebac544a4e2e07

    SHA1

    6e205e4f600d72d4389c7ea10eee50f6af271eb7

    SHA256

    6decf3ce5e0fbb35cb6a052b950e7e3b19dd7c4e87fb5b281d55e5d59d71bf58

    SHA512

    02e16ea446ed0d338309c4f742e201057aac3ebce647c12a012b563374327b161242a8ea45a8c98a4121b88e86ce9a134d28c77689af6dc7a6d1e20809eccabd

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    27c3b5d7abea96858954ebed468f8060

    SHA1

    96dd2ef1ca1132ab210c914ae9e433bf8e1a981e

    SHA256

    2d5b6a858764faf230dd27f3ab191d4dab4828d596dc75307d5b7a89a3c2da80

    SHA512

    70e839023b16c64aff2ad3cea40a6b618292a3febb6f947619fb1f97d0aa415f110d61e9da022ca9dc78b7a24af13643600d9872376639846a55b097c7287950

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    3871f10674991bf827567815c5621dbe

    SHA1

    75ca49ed150d020ae80f053c09be9cc61da61a7a

    SHA256

    19da73bf51a3c2595735a1ff2fe3b8e46f7640fe0f5cbc48e4eba0a1c1bd9131

    SHA512

    6e28717a48bdd0e10cfad5b4043677cfc9684b3d74d78970d517471f27a76ccb36a4ef0970a4e5ed109f774c4bcbbbdbdacc6638263a9120227095ec9d3941cb

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    9f71c6a0f6b9aed67b0267b91fe83518

    SHA1

    33a8e4a91c553e86f00468939365b62968c4c114

    SHA256

    c5c1899120167928560ff3e841665a3530d771b09d2bdc688802bb9ebffeeae3

    SHA512

    3a37ff96671b76d857e16f8c5bf2b489384bc5b2c1764dc848e639ef7e840374f59ad44bad1eb095a59fb6cc408b2e177952ff49341810ccf7f492a709ed25d7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    c6d7d7803c71fa44a579a02192a3621a

    SHA1

    463cbda64f1a8d47b17809c65538300a59e8bedd

    SHA256

    9801aa2ebb4e0a201dce34026474cda85a10a579dd94bfe0683b81493e221eea

    SHA512

    62bad2eebbbf3e3e6d86aa33bce01a5b15be0a65c346a40b6e71bcb77d41570f04d2e50c54fca8125acc8a91d102361a3a7cb240bf748cc8b2c1dea1d97e64f9

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    e9ae924cbf6304f858a0bf0f1572f83f

    SHA1

    46408c0432ba9a5693b43dc16ccce26e2847d1ee

    SHA256

    2903e4572101df8fe0b7d4ddda6ad3e8906cfc9b165e40da28595ea27b577169

    SHA512

    3436711c32ad7081d40a8ebb64cdaa2216c54be57b85215029e85d205613bbb5c7ba0ab78d3b45d0c84c997b36fbf1b087ff9d912540d6fa03f6c62dd646cc8a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    96c72ff75946ef6f70c5ca0c076ab915

    SHA1

    1296c7d1675a34a4837c1aa54345092bbcef9992

    SHA256

    455f9f11e9eb2f7b0c4fbd64bb007c77abb57adbbe28b84bc2e2623d1343fb93

    SHA512

    95a925ef74713403c97fae78e550dbb0ef3bfc45e3fd38e756f20fd1aae026c41be9001bc230998fc81e87490084d16c2c3d20f84ad701f2169539571741ac92

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    2799d58b280fbbc3ec61fc85c218a48d

    SHA1

    1b313b8a77c94394aa701cc0b290fd319d553277

    SHA256

    dc4b64c7cf35981cedda3cda9f1f16531c8aec661b8955ea65de06f878c21ed3

    SHA512

    a96bfc8c6c1e6073216c9d2e3a9a2a1c572d37a6414c7aaa82254b565f6a53da179a354b4e72a3508b8e8b0a817532a51ea88124a7cf5fbea2994622bd445f09

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    8fcd0609aca473f3d4b9acc98ad87c48

    SHA1

    1140be52e3afbccdd8f5ff7dd7b69add6efd18e7

    SHA256

    6c60eadc21b0d17b7b999ce6a7e56faee52eff66fba9352b09949b476b83ffda

    SHA512

    d242d4acabc61859284afd96ccfdd09fea25ddc94e4c890cc376ab216478ff009e6e801a5468d41d681db081cb1b3854437d0072e32ef3100f803fb00405cb81

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    d4b5cefd79ba5e47508c7960bcd463ce

    SHA1

    9a76f3c243e26a34f61b7430489828c9e3e74ecd

    SHA256

    35a176e67637c109beb60175aff522ed7303db83e21b27746dbf200e8f8a57c5

    SHA512

    a2b18de36c2e5f90e83b17cc0d74762ad66ce5cdc5e931342e2723f0f97dfa302fc9b138f8c58ffe247b6a8fb8895268680e59d7fa26e19e7b0d3f90e8379076

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    e0bb07b32912faadd009e206706beafd

    SHA1

    963078e945a6128ab734862057c991b3ef4aec58

    SHA256

    6a171e1f8a7f0a9888a04bfb3f435eabf0a798512f260ec3ad518b17e8346987

    SHA512

    dbfa7df0d2fc7225e606916dbb106f43e335b7f35c8194a0a3a3d31e1deb0c091d4920250b4a4f9f9f56e416fed1b468b2ade05e7469368058d20672a54ecec5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    a61c81d1c3ab150d540b343a1296a62c

    SHA1

    b65800116a1f36e2a433f1924e024b990b773ef4

    SHA256

    e76e9bf1723c92b3fecd04d2b7cda56cb445c1daede7c77f91e90011b466f3fe

    SHA512

    6b27e2ec2a766e6aa74fb880db7ae32b9d621efd0a304e0c2d9f803a3c79d39ed8126fde867525ae2232babf0f2d65c7b5118547b65fca9aac083c441a9f742b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    9025cb732ab230e94e9ca8c9a758e286

    SHA1

    47883001372a825fff8b9f8b6a9eb9f0f03051b3

    SHA256

    1619cb40c0a8144f0a2196e3ff3d5eb7f3c820462c84ec45017e7ffab59acae8

    SHA512

    bd5bc53df1e3f28f74aa9b83a12ce43e328ee2fa3b25fedf80de55dcca0ac1a4de53162fa9cb0076244f228f4cbc359120672505d97bd561824ddc80f68efabc

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab4DE5.tmp
    Filesize

    61KB

    MD5

    f3441b8572aae8801c04f3060b550443

    SHA1

    4ef0a35436125d6821831ef36c28ffaf196cda15

    SHA256

    6720349e7d82ee0a8e73920d3c2b7cb2912d9fcf2edb6fd98f2f12820158b0bf

    SHA512

    5ba01ba421b50030e380ae6bbcd2f681f2a91947fe7fedb3c8e6b5f24dce9517abf57b1cf26cc6078d4bb53bde6fcfb2561591337c841f8f2cb121a3d71661b9

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar4E55.tmp
    Filesize

    163KB

    MD5

    9441737383d21192400eca82fda910ec

    SHA1

    725e0d606a4fc9ba44aa8ffde65bed15e65367e4

    SHA256

    bc3a6e84e41faeb57e7c21aa3b60c2a64777107009727c5b7c0ed8fe658909e5

    SHA512

    7608dd653a66cd364392a78d4711b48d1707768d36996e4d38871c6843b5714e1d7da4b4cc6db969e6000cfa182bcb74216ef6823d1063f036fc5c3413fb8dcf

    Download Submit