Overview

overview

1

Static

static

1

app_files/...te.apk

android-9-x86

app_files/...te.apk

android-10-x64

app_files/...te.apk

android-11-x64

app_files/...rg.apk

android-9-x86

app_files/...rg.apk

android-10-x64

app_files/...rg.apk

android-11-x64

app_libs/l...ker.so

debian-9-armhf

app_libs/libad.so

debian-9-armhf

app_patch/patch.dex

debian-9-armhf

1

cache/adfu...c.html

windows7-x64

1

cache/adfu...c.html

windows10-2004-x64

1

cache/adfu...t.html

windows7-x64

1

cache/adfu...t.html

windows10-2004-x64

1

cache/adfu...r.html

windows7-x64

1

cache/adfu...r.html

windows10-2004-x64

1

cache/adfu...e.html

windows7-x64

1

cache/adfu...e.html

windows10-2004-x64

1

cache/adfu...c.html

windows7-x64

1

cache/adfu...c.html

windows10-2004-x64

1

cache/adfu...r.html

windows7-x64

1

cache/adfu...r.html

windows10-2004-x64

1

Analysis

  • max time kernel
    118s
  • max time network
    131s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    05-02-2024 01:24

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    cache/adfurikun/57172fc12d34955b79000013/filler.html

  • Size

    1B

  • MD5

    7215ee9c7d9dc229d2921a40e899ec5f

  • SHA1

    b858cb282617fb0956d960215c8e84d1ccf909c6

  • SHA256

    36a9e7f1c95b82ffb99743e0c5c4ce95d83c9a430aac59f84ef3cbfab6145068

  • SHA512

    f90ddd77e400dfe6a3fcf479b00b1ee29e7015c5bb8cd70f5f15b4886cc339275ff553fc8a053f8ddc7324f45168cffaf81f8c3ac93996f6536eef38e5e40768

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
    "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2016 CREDAT:275457 /prefetch:2
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of SetWindowsHookEx
    PID:3064
  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\cache\adfurikun\57172fc12d34955b79000013\filler.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2016

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    9d0a46fb28ad13fca4553a50ed5796bc

    SHA1

    c4bff70977997ef222783fb03d4542eeca0b601e

    SHA256

    b4e2135c5cde4c31f0c51b6d024b16628950f3318de350c5caea820e7140d6cc

    SHA512

    bba3b49e3c64fc10b02248b3d73cc793adf236d9087f4d369321e6b463f0c641934e744ca387ae5eb09be7f407a708d39000b4a5dd1cb1251c2845af6d2d259c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    9054564fb2796b06b72619ba315b1285

    SHA1

    d3b0fa08fc0f671f88e94931fd9d64961ad35ccb

    SHA256

    ce031dc23a4ae44e11c62488160cab8cf87c7e73186a7d9acf45b2a08a165efa

    SHA512

    13d51b6fd2c7116d57130c07c17636505067561218bd29e3186c47fac6e5bb7a0650b2f1643bf944e30848b50ac907e3ffd07e3cd14a19c7ced28db58d0c7648

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    e3758f9eb3144a884b914cc1178f9c68

    SHA1

    1626f7c899aff012cd6380f62c51034e5591d38f

    SHA256

    ba13fc8389687503f6e83acaccc4295080451d1640491bde01fba103753e57c2

    SHA512

    b9d0a3102f6b287227bf4692767565155b3abd34902af8e0aafe79c0c31c38516a2010e257335d249f5675b3daa7a2f62da852c27e965082ff770c070a839707

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    0f53d76d8bb7b50c0e2664bbe06f7f56

    SHA1

    cca754d3c403ea1581b781a1c1ab8477dfcf4af3

    SHA256

    21019bc60a6332e1f37ff3e23353e8953cfd21d4b0e6ba948a044a190e862501

    SHA512

    33695e6c937359200976f06c2af0f6e6ce86b5fb4a56ce4f8e64130d97368e0baacc4150fdd27a4e80ec3e4d27a7a9213050c79561796efc86382640c74d8662

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    7a57ab38ec32ed469cd502eee90fec44

    SHA1

    3dbb1e6090d2663e5424f05365defc9332680e48

    SHA256

    cbb404f64793fb35da34a3728a016f0f28ea65ad461c267afddd12816bb0a06c

    SHA512

    e82ae715ce893f84926085bbfdcb71e80379a441c869554999e074586c9f8986c71865de387feb6f905575f0725b69aee21ef5f5e53593a27404f43698094d7a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    7ffd8dce8a999271c50349c057679650

    SHA1

    9927c2d926927cebc9d84c7cfca5280deaf4995d

    SHA256

    902dd3054540606e482ae5d3ea00388e5b5fa6a9ec314dff2ed2bd7c2641d5ad

    SHA512

    06f6f7aae4cb21d87415ae6794a01f1464d6b6d3144d14eecb0398339880a255d7520548bba446a344d59965afcd567968c6a24267ef16af6f431d9293142091

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    38663fa62e1b1d328a5058d14de702e9

    SHA1

    590e1783c490bc2cd83178a161896874f4ae63ef

    SHA256

    7995b36a9b3960e3f83508928c1cf9206dc035dec5c3f76d3efdbec7b0ae5697

    SHA512

    335348ec20a25df26ceb53409df53741da794dea6702d11d3bf0cb61511875610d7b64430922f8d7183ed8b0d393c78a6d605108e99551cb5ae16fdd12f76ab4

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    5267670bded09b4277bf8a3666070205

    SHA1

    dcc5e83868198b0bb61773b36f7a2a6be479b1db

    SHA256

    e39535fd16c07cacebb1631dafef68ad783ecb55bda67e41b57826b33c001af3

    SHA512

    b4a2009c1ffa7aa7fddc56560d837e20cafdcc18ba9b01b936ff265aeab4fd325ed3878df028396aa77d53e5e6c8d2589770ae0757aebcbfda6c584b8456eb11

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    0e3c22e606250c25d512ef48f554146f

    SHA1

    5109062a1ebfebbe81e0afae22bd6239920091ad

    SHA256

    597eefb12a00d7a915bb66852ab87e838418049dd6a1525fc66ec85bdb505698

    SHA512

    aa289508e1633cdc62bcc4b555430ac8f9ed8557b63cfbae961e3ca2bfdf53630fddfb75fbdcf11f821b0f7efed4811751c915aba162113c61572387e270c7f5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    aaff9b47592e53ff3d5a8bfef43e7187

    SHA1

    e211672f5de01029ba36a55cb240ac57c02a115f

    SHA256

    c4211e0d35a86e27b51f0a363e93de70ea43ec06eae7fbd0aa43f332ccf1c5e3

    SHA512

    7eaa41fb1a9acfb14aa80ce8543782a67338e63fe20dd634a3007d7d624c993768962b4690868a3dedff739fac6f23606b35aa459a4d83ca206363221fe4351e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    f4a0b48ce8e9612c2085363387cc7953

    SHA1

    4185f65cbfd999be68dda22657dac93135ccc07c

    SHA256

    974849b113785d868e0d1f84231aba3cfc9a04bb933aad8fd555e58d55e09531

    SHA512

    317e07fd5a7735bb1f01a7a0b042e798e23fc4c5d66ab9980aafdafb7dc60c91b035b28c5d2287a975dfca60e714e901a6c034d985ce02eb6d0be505685d1bca

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    65dc18dd89e0071a08f673fd54970ec6

    SHA1

    6dd9b228f6a08e77e8d235cd2cc0632e30458724

    SHA256

    d41cb6b6e3f8fc9179fdaa9dd37409ce67bab8cecd307c9debcd0039adde18e1

    SHA512

    54b0fae1d8bbbde37c4129dd9762778caff1f5f5329154a7892f8fb137577bff45c2009aa1a096ebaba61dbda2d72c1418ed7b035f90ed9a6e1532a0d2576791

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    0dafa1f75b75b58cb6ecdf4ca6b4dca3

    SHA1

    c8c8e5504191997763b5883b48accb6dc0b4e290

    SHA256

    e2b469833f92f892442ad354342884c0b575a862e07c4c2642e06ea135601c57

    SHA512

    418947a365e0a8e8e92699c4fbef94c8e065d0f088ae274717deee4a29269fc721da2fe2b74f8d21ead169489ad4e119024e5b9738784d06b54a9e1c5b98d7a1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    52f4dd6bad8cdd391aa9ac001592e9b6

    SHA1

    4343056e46f0e7f931423110ad8e92efc7788357

    SHA256

    bd8832106c6a4538cde647bc443574cbf82bdcf33c2c3dc1d5c52d62d57bd719

    SHA512

    56cca65423fb411376c33e17fa9a6625d1dd10734501acf01884f2489d1296dd0cb02febfa46a909318cc0aefd81cfd9e8f50df7534147eb7d92e985c1f8f0ea

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    4395ab982488f750346995ce996ba405

    SHA1

    8f43cda97e256048f0d5da1326ff89e8752f3a1f

    SHA256

    b2cb883c2698c6d6254187d9170bd01369bbfcac5cfc82f6be36d6a8f631d480

    SHA512

    d85bcdde343631ce1aacdd500f1ebbe465758ce358c1a36057aec4ecc615aa5a4f64453cbdc14c5524c9fbcf3e2c9318a6cdf16068344ad0dc284a811d137c31

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    1caa6333d0b60c0e31ffda63b2599f47

    SHA1

    5d8512a1afb0367d18aa3a98e854c5e000c33185

    SHA256

    9de0ded88ce7253646a8b5da683eca2ccc5b5af6c884c140caf6e5a5c9c3bb46

    SHA512

    56c2732f67a4af6e080438784d5b71b4f071dcae5d75897e4bf10a24bf2e7c729d25ab59ee61cb9ce712d364390e314e67df582e9cc11ce0a1d4b147cf7f78d2

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    ff9cea8591d6ff410e76a903809e7d9f

    SHA1

    0d0ff0e26b0a8866c0e7742b5678d2ada067c7a4

    SHA256

    4a9ac15030e09f743751abc62d701c960b3a3f34f6cac24f4e1ec59ba2d6b52d

    SHA512

    8875273bf3b0ed1eb73c958070cd61e5efffb7a3bb9d43a439f7a71b84d8f08b88b4a8f23ad8c6ade1964419c1698543401873dc9e525039aa159dda0d421d14

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    018772f00c8962ed91590c50c7ddda8c

    SHA1

    846fd8abab2978ca250b76d148b2c683c11f0625

    SHA256

    7647ee1cc202a207f29137cb85b86ecf5cf735025a14a4bff0d9e899deda3e82

    SHA512

    a2b5714996159f3906eeb2086cbeebc8f7b9f1fa9c2484e1ae3780d33c3df855585da93eb1615e37b4de02f43675df5306aae05366fc6d344287973a9c40e03e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    5eddc0a00b475f268061c3d35432c945

    SHA1

    ddf1a62d8a066f08535a7a02bb0de7db3737df57

    SHA256

    f4449ce74fb64c445503389911ef41b60a18ce2f5457513dfa84b9f3cc22d9d7

    SHA512

    f8813914da71627f298881600fd7732fa015f82a05992c6d4685c22d9f86540041eb14dfa8ccb9196f8552515d16590ad6583a0be81f263ecdf30eb39a76b714

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab605B.tmp
    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar60CC.tmp
    Filesize

    171KB

    MD5

    9c0c641c06238516f27941aa1166d427

    SHA1

    64cd549fb8cf014fcd9312aa7a5b023847b6c977

    SHA256

    4276af3669a141a59388bc56a87f6614d9a9bdddf560636c264219a7eb11256f

    SHA512

    936ed0c0b0a7ff8e606b1cc4175a1f9b3699748ccbba1c3aff96203033d2e9edabf090e5148370df42fbfc4e31d7229493706ff24f19ff42ff7bef74a6baad06

    Download Submit