Overview

overview

5

Static

static

5

Koobi Pro ...er.htm

windows7-x64

1

Koobi Pro ...er.htm

windows10-2004-x64

1

Koobi Pro ...me.ps1

windows7-x64

1

Koobi Pro ...me.ps1

windows10-2004-x64

1

Koobi Pro ...can.js

windows7-x64

1

Koobi Pro ...can.js

windows10-2004-x64

1

Koobi Pro ...wd.exe

windows7-x64

1

Koobi Pro ...wd.exe

windows10-2004-x64

1

Koobi Pro ...ncs.js

windows7-x64

1

Koobi Pro ...ncs.js

windows10-2004-x64

1

Koobi Pro ...ool.js

windows7-x64

1

Koobi Pro ...ool.js

windows10-2004-x64

1

Koobi Pro ...x.html

windows7-x64

1

Koobi Pro ...x.html

windows10-2004-x64

1

Koobi Pro ...d5.ps1

windows7-x64

1

Koobi Pro ...d5.ps1

windows10-2004-x64

1

Koobi Pro ...up.ps1

windows7-x64

1

Koobi Pro ...up.ps1

windows10-2004-x64

1

Koobi Pro ...ass.js

windows7-x64

1

Koobi Pro ...ass.js

windows10-2004-x64

1

Koobi Pro .../db.js

windows7-x64

1

Koobi Pro .../db.js

windows10-2004-x64

1

Koobi Pro ...hp5.js

windows7-x64

1

Koobi Pro ...hp5.js

windows10-2004-x64

1

Koobi Pro ...m.html

windows7-x64

1

Koobi Pro ...m.html

windows10-2004-x64

1

Koobi Pro ...orm.js

windows7-x64

1

Koobi Pro ...orm.js

windows10-2004-x64

1

Koobi Pro ...ile.js

windows7-x64

1

Koobi Pro ...ile.js

windows10-2004-x64

1

Koobi Pro ...pic.js

windows7-x64

1

Koobi Pro ...pic.js

windows10-2004-x64

1

Analysis

  • max time kernel
    86s
  • max time network
    169s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    30-12-2023 09:07

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    Koobi Pro v5.8/Koobi_helper.htm

  • Size

    60KB

  • MD5

    ace918fee912f4b9977174fe8e7f2e7c

  • SHA1

    aead12182d1d30a78d1ed187518750c33ac35040

  • SHA256

    9cccc82458c24fefd46d39cde33809224f0c5f814ef11f212df3b8d8cd53d6e4

  • SHA512

    323f23a87b314875b2ad5ee1c1211756c858b6eee559eca2bc59b39e0be5c8ed07bfe529aa486373117fff96d2e751fb1c8c4c7315d01884c48491adb9cd76d9

  • SSDEEP

    1536:CDa2qaI9tnXcEa1Kf0a9NxS+SVuREFW0NqnznO:CVQbcEWKfnNdkuRNO

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 41 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" "C:\Users\Admin\AppData\Local\Temp\Koobi Pro v5.8\Koobi_helper.htm"
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2772
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2772 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2800

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    0730af3ca24d577c35303f861fb62368

    SHA1

    586b71ea2c9c14b33049b064b1748190315973e6

    SHA256

    924af6601deb0793c11e290743da367c741b02811751e35d71e263ab985b8f7d

    SHA512

    e09400a32fd4a20ec18c54fcb2a990d97ae2dcb4c2f11bbde9bc5d4cc7e1be91d250f6c04fcff78b385b0909395c359c442a65de4cde931a5fe408361b4ab32c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    658a52502a174996b070c5e9229a714c

    SHA1

    d8c96b718ce0d61cef80fc9f44d25b56881dabba

    SHA256

    1b744504709eaf90a30d993ef9813b5beb0d88f6e12ccff613d042b06f34f15a

    SHA512

    62a086275909eb6ff953980571f49c88fe1f64d5f5d6ab56f1a82e54c7be408ef222ea31c111680fb4e4f7b3734bf396017f00a96f32e34d59d85ad5ef53b2a6

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    ea07a3b2adab2aa7158794680e2851f8

    SHA1

    3b5fe7eb3acb2dd3cf0a5b50c07895841902f035

    SHA256

    78e8fb0f4cbe4037cbad727d80c676d942492fec355b8dc9e07c688851781827

    SHA512

    73bc0baa216bc0c48dc957ff89c6b893a24367fe4b04120face2737a4a375f9e13d4d936c6cdd4ee9a4ae93f69cea756a3d139cada6333d37b620cd04fdcb4ef

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    4d7b414862fd8d4bc97c32d4ce95d064

    SHA1

    589cf1734f18ea3b4f20e2c7279215b84ef47237

    SHA256

    bdfe92292108a7598fc9c4fdb52467a3e12052fd59bbc732fbb70a3cc8a0ebf4

    SHA512

    3293d2077bee7cee1079ab56a8e5935403dbaa79ed12e09a3b139cd51c88dd8954ba33857edb8bc562263f905e37aa3e0d3f74c244c59a8abca298e11e6c4b16

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    70cb850f5c4c2b2dc52b27e1c95dc909

    SHA1

    c18f20a1463585fd8cadfd4155cec0b5d4512990

    SHA256

    66fe8fba69c03f50c4645a8f477dbbde8933222cd2f4e636ba68ca48e9acbd11

    SHA512

    9f6f1ddc650c19b0c0c518a4cc4f77d4d28c3d55c65727635c50a46ae76a0d9cf67c3f55f60a548c101048ba2716fdf83daac76686571a06c5bcc478860d5d82

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    b028980b1f7397e26cc3661c03e79d0b

    SHA1

    76edc269fd00a81f0eef18da6fb70c0e07c573ed

    SHA256

    dbb39caaf27d1aa5a6510371ff712ffe558b35f9aadec192ece1ff0c75e5142b

    SHA512

    9b72a70d6e7f3d62fc53c27d96608bce30e671a0348fd8a65accdbb193979133f2b5a29224775511ca4621770a2cd9a558694cddea3640f12b1f96393e2b85c3

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    0730683639f3ed9e8eb22f5b22a00ca3

    SHA1

    427a7ddaec6150b4be9842a8bb85d26c13687da3

    SHA256

    d1642d308d0c86f34934270ed53dc1e3462ffdd2edf687203cc54225eb02b91c

    SHA512

    3452cf0db91b56630f198494b14ec43e3cf30dbeebe4a3d6051b2ffbb897d9846991bf66b3ee897b5641073d309d0445711df740757ff20b4cf12bd2ebadab01

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    4a2e130f77cca6eca6a9df566982dd2b

    SHA1

    b4dbf051273c03ef32aa077f5db95fb19ec709ca

    SHA256

    f67c066541b16a46699b0cea12216d1968563679a3de9ef05ea02aa1341f3de6

    SHA512

    867e1142588634de7786d3cc05e68293bd4f5281eff25cee3cb10bc36252945fea3839337c12030a8c5d512e0caa1c57906ec85b300fca212ff8a72d15fd2e3d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    56c62a4f559fdba75fd735b7954e8543

    SHA1

    6fc9dad233bc6a23359221b39906bb5ba007d64c

    SHA256

    124518fd7576fe847b73bb512f49e9fb1e2127c84251e2837e86afe27531646e

    SHA512

    1dc21fdd904de2025d3dfdf6309ac663af92919498f711f9418424274f0b48c15c23a4c8d1eea70c582b4ce17072febd9ab244e9fb2739925f5a99f99f1271c6

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    5df672cb0ecba2a0f0c516b67acb7f48

    SHA1

    d1bb33b497c9426e2fcbe7a1ce9fb5122e93bfd2

    SHA256

    bca4366f0031efafd4e9179a51c9d1c26f09791594a896ad3e1221cfbf8dd416

    SHA512

    b6fa5e0918e56ee76cfc5022f7c307da3876d4c956a9c2e8ea25a5c0e1d8c17286e6d670b743cc4b129fbe5f19d0d6a64ac703ffa8539e7b2e67f837b379b17c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    c2269e83dff966e2731438948be665ce

    SHA1

    3a46030c655bb79bcdde4f8f26318e0ef863c60d

    SHA256

    e20fa3546afb094923132d9788072e49e90a680c897b395ff8882d9953b21c72

    SHA512

    1792537bcce947dcabcb4a3cc15f5eadae45d7e93bce2e946d3a68abb1557019a465314dd12b5fe77ac46a04af974f731d545ca9cbd6b17e73a7b049ca28a878

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    55f21f1d25499a61ec6869f40ac17aa4

    SHA1

    bbc9c3ab9cba9c42aeb7e5c4d512daaf93acf56f

    SHA256

    683c0805620fd65753abb4834dd3965b50b2bb415dbcec2c1b90ef4ac7e61a87

    SHA512

    ed92d01a835bd1a1d864dc1a51e1e89d1454eae0ad6b83fb0581bf1e6cc229003bc29094950bee3a4bbe9a52df6df7d6543ef1a2448ed813ad8abf842bf3364e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    fa6eafcfb8129a2f671a86782348b2fc

    SHA1

    c44a36fc299d2d9578835304b8efdf843558e5e5

    SHA256

    eca6ae65416e8beca27d25706530c87be6cccfe6d9fc225079318617ba788bc3

    SHA512

    78e43f4e66f3b5953326250d25be432017d81e1c3261b1d694401dfea452ed51df0535e50f345cffab99ce6e7325c6e2ee9bd88f15d11871a3279068d8ca3422

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    884787de78a307a7c31a731f55dfcb60

    SHA1

    ac1ba037f90d3098643fc95df3cc65d50057eb66

    SHA256

    a7c2bd6f5fbc868698e3cbafcaa3b6b57792aa11284ea9b99894612efb8b7d55

    SHA512

    af6ebdbf9adfb28de158321054d452dc380046bd815552ed70af1b14035aa7456f882356d67fc9e90a41249098b30b460b5d953df6f8cca48649e3a3d8ec0180

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    9049aaf0d962a71a3ad538ba527ff99f

    SHA1

    69d348081b43cdaeac7bd1e81d4b84e74d825bbc

    SHA256

    6bf271d30f7706ee4e0892c341841cdfee46a51afb9b554e2c91c34b0ef63339

    SHA512

    a2e225b1b74da742ec9f3dcdfb3557e6c60c8f1e270d6bf3d02024dc0668268ee5d6db40ab352e1ee52b250b77d3d557e23ae0d6cfefaeddd83b54ae4174e551

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    761b4506550423b4810b0887fd6dc4ed

    SHA1

    253fe724825f0eef6917223c4a4dd10a154d76f2

    SHA256

    1569ff0f753f079cc834cbddf0fc1a019cc30313d11fee588c51f5c5d9d44b59

    SHA512

    4bb8b752aa75559425edc24c66cbb7a8ef80a60b9df85c7da72b663fd8ed7bd6b137b2287e3f723e0b499f4de304f88e9b649b48b7da4dc2b858f2641269d317

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    41532cca5242f1fbfa2a98d76bd676cc

    SHA1

    f2d0c9496904f784499b9993fc59c5daa9187ab2

    SHA256

    592fcfb64fdb16065ac7c5a5c97f21d3047d246dcf358bd04810e5cb12e52bee

    SHA512

    8c52b2c700c1871c06f7b9f3641f9a9aac8c079f0db17f7434847aa344727d063828767d84d06bc943b68e5990ed8825e4cdaf55fd1ec5e303d028499c64e2b1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    95457de85aaea80e382f472344bc6fed

    SHA1

    f37c5e3aab574e653e9702b57a85986579ab0a5a

    SHA256

    3f3c7739ab89d0a0cdc76babd50135a280c78f7f1d7ba762742d080a2b6c7c22

    SHA512

    fdf9e2fe6dd5bb2bc5119d977d9c0796159d75439dac206f0867827dfb93da6c519e8f5b5636153b4b28ed3c531743d5c6647c968f4d0a72afad45a8bae7cb7b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab2DF6.tmp
    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar2E18.tmp
    Filesize

    171KB

    MD5

    9c0c641c06238516f27941aa1166d427

    SHA1

    64cd549fb8cf014fcd9312aa7a5b023847b6c977

    SHA256

    4276af3669a141a59388bc56a87f6614d9a9bdddf560636c264219a7eb11256f

    SHA512

    936ed0c0b0a7ff8e606b1cc4175a1f9b3699748ccbba1c3aff96203033d2e9edabf090e5148370df42fbfc4e31d7229493706ff24f19ff42ff7bef74a6baad06

    Download Submit