Overview

overview

3

Static

static

3

houduan/App.ps1

windows7-x64

1

houduan/App.ps1

windows10-2004-x64

1

SDK/epayapi.html

windows7-x64

1

SDK/epayapi.html

windows10-2004-x64

1

epayapi.html

windows7-x64

1

epayapi.html

windows10-2004-x64

1

houduan/SD...i.html

windows7-x64

1

houduan/SD...i.html

windows10-2004-x64

1

houduan/app/App.ps1

windows7-x64

1

houduan/app/App.ps1

windows10-2004-x64

1

houduan/ap...x.html

windows7-x64

1

houduan/ap...x.html

windows10-2004-x64

1

houduan/ap...tor.js

windows7-x64

1

houduan/ap...tor.js

windows10-2004-x64

1

houduan/ap...dex.js

windows7-x64

1

houduan/ap...dex.js

windows10-2004-x64

1

houduan/ap...orm.js

windows7-x64

1

houduan/ap...orm.js

windows10-2004-x64

1

houduan/ap...int.js

windows7-x64

1

houduan/ap...int.js

windows10-2004-x64

1

houduan/ap...jsv.js

windows7-x64

1

houduan/ap...jsv.js

windows10-2004-x64

1

houduan/as...min.js

windows7-x64

1

houduan/as...min.js

windows10-2004-x64

1

houduan/as...min.js

windows7-x64

1

houduan/as...min.js

windows10-2004-x64

1

houduan/as...2.0.js

windows7-x64

1

houduan/as...2.0.js

windows10-2004-x64

1

houduan/as...log.js

windows7-x64

1

houduan/as...log.js

windows10-2004-x64

1

houduan/as...min.js

windows7-x64

1

houduan/as...min.js

windows10-2004-x64

1

Analysis

  • max time kernel
    120s
  • max time network
    128s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    22/02/2024, 10:33

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    houduan/app/index.html

  • Size

    3KB

  • MD5

    6ebd47891799326867ee297d82cdbc45

  • SHA1

    2552eb64ced970460fe76c1e2ddb7cec3b48bcd9

  • SHA256

    c0ae90dd9dd5989081247e8ae295f033f0d34653ac05df1c6617404a51f2a73f

  • SHA512

    6c62ed51ab0172682d4e1d3a57051452e1155c6892e1064fe25ff9796b131d6c1f3a9cd7fddfb82056e660ba25f63ca481ece1ce65961d5a2dc3270690d308cb

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\houduan\app\index.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1640
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1640 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2080

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          e42ee555ac6f5218e926f631e0a8d8df

          SHA1

          7b1286a3df7af857d81d24082d780978129a1e02

          SHA256

          946139356bbd8e5e129abd8a03b4835fdd0a2c36613f601f0061d429aad3301a

          SHA512

          f9d8f9a1afef53ec2e0ab2ad9ff7cfd284df4699e9f48ba5a4b9a4ca9a8c213aaea744e86452b18da159097c76f878b3c4cf8eb3147f7d4f54b634de10ae5258

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          026a6d68150607c551345564d07ffbb7

          SHA1

          2333c17f72d51135e153b901961bc5e6bab8d59a

          SHA256

          873ac213f7e8333784ca0637c807797c2ff930902326e19730305eedee11d33e

          SHA512

          622fd4d846d6b16e78af9ef65d26fa86250580ad6235b9dd07c871d9c8c4b335efc78025aa3f855242f2419b49518f80e4d567a4f37111d6d329a56d7d5e3138

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          bb3b971f99e9d617f58ca7258ab8af9b

          SHA1

          4a3c398d9b989171c71baaa74ac5bf620742cbbe

          SHA256

          13f000488ebc69a8a59d5f8cc29c664479391d45055b2e67a84a9faf74c0d7ec

          SHA512

          7aee1a1be198758d3f6936328007a499d6a5d7e0a27467fefba1987a34b723088a8c5359b4601e33e00dd080419585075c0028fe8d7543114eba311c8a455941

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          79924434a34b06106ef12981af5d0081

          SHA1

          2f39c1cb3554d68e29e1586c70f03441bb75c27b

          SHA256

          f98b934ccc46d6c2c62d642863e474da943f35db17214cbab9c4d26c3e084340

          SHA512

          53a84b6b9735985e229bb5220d65dc40272f146146f2adfe853c4dcfda883c5cb1ab20a8bcde9afd7e5380ea2760db33af38418b56c5a3abac6340f14f90dbcc

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          edac34655fc569536a8d7fa0f0f6102f

          SHA1

          4c48202a5ff1a48ee1a60048b5fdfa873401446f

          SHA256

          b0b2b54ee584b66a2ff549d55e26841ae814e40cb2f445522470514f73efc490

          SHA512

          1f31ddd1d3fc9a8b582e9cc9c892f39327f1c0d1cbf15d26a36b828c744bec089c2904d25af5419a62997504ae6e1ee6c97c121d5606c58006b11e0b0f67f597

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          24652a63edd101b0fffae5c0a510bf4f

          SHA1

          e7c3b457eff1bbb942265fb92b0bc9f2cd93680c

          SHA256

          ca9073da869d2c47f060a23c746c4c710e92304289de46fa65d0933b605b90be

          SHA512

          b10a72e7899b854b518b3ab3f4a9592fe85910640624d0bb094d5119a78cd87f936a5f1c809e6b4c6b8a2caad489fa649ae15cf5dd8f381f61c0a6753e502e94

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          f1d5e191ef155359ea967efdf5ae43ef

          SHA1

          7e00e3d13c0baf724f6845e73b9daaefc2a61d07

          SHA256

          41a0e1cf69219e13d3eab8f87627317db65f0bc87573c9cc8287151739e9e361

          SHA512

          81c3c7410a6bacb843cd2cecc355f12c2311460548aeea5c7ed26e3c89d569a5e38385b1d66e90b12a9c4820e650e22129fae7f2f47669e1bc9abacfee086664

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          aa96a66259c68486da96e851b06ae452

          SHA1

          fc0c74a337690c5efe0d7f84c584bb10b7424685

          SHA256

          70a53755b2eb0cfeebbf53d4d40c796c23cf8015af0b319b0108a5b253963edb

          SHA512

          601c72a6b2e8539a51c8c2173498769b0ae78c975565dd93b0100beaa32ef1e6c531c35bab5e693e881027a8b3eae39691408b4bb07a6a7cda8f37079951dc5b

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          ef46236f4cdab7a359578b9d50af30e8

          SHA1

          b2f4b653454dde68f75c19f69510d7c7dc955c0e

          SHA256

          d77d0ab1934103938f103bed9a10a2557c638e7260924c6474f742bdd11ea369

          SHA512

          3ed52311e6b80a19cff2f25f554ea7d0b78247184d13a3ce339f5d9a81eacb72f646e24116e7c535f87bd198c949367713caab1c12d0ccf6636f9d42faad1b42

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          010fed2d61aee827b66c601645b708fd

          SHA1

          d53802b7a82c3b680fa96bee0a84bd73690478d6

          SHA256

          0591a3a929191b7003536c6a842ba5ba0d6baf25dc5db768b461073518f40803

          SHA512

          07e462fbe5a8ef4c7556a851cdd1abe505b34e8f49bf7fae578a66ad48c92a67885e6c963bb32f79ea233b1dc243d6ae80bd7ae137549ad7c31e9efaf167b867

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          79065d4e4f6452d35cc1c0716d58b8df

          SHA1

          24d9fa3cd9d904826b939553ed1b0cb4036c5d0f

          SHA256

          142f96aaa65c70a40b86a4d3e1302e2ca33c84116a99a49ba4575cad6a6ac958

          SHA512

          988c570e0c0720d8adbc4bab6eaa01dcfc3d8883a42704f3d335e58af43b22c57df4565cf72765082fe15f6fe22dfbde5876a5454c92740837367c1f6bc43193

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          d705e4d2c5a5e854439d808a7e2e89a7

          SHA1

          b79161d272a5e44c95a8b0bdd51e3b9885ebecfb

          SHA256

          7e72e76bf713a57718cb14dba5c078909cd4326d1e2330b07de19d6a6f0a5800

          SHA512

          13243c8f4fa28fb3e25d708f430ce4c2c8ca4005cd29eb0fdc6d338b28253602fd9483b1cb1f896c349c42ec9abc2f1338aefa03dd44693647e79e7f015aa0e7

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          7ab229a7d02a07a64d7f19252a9f7d21

          SHA1

          595a0985913752208ef8a5bf18bf8dc3b98fa2f7

          SHA256

          a8dca4d124484f25c727ead29755f3754cd10d40d1f861accfb5de43ad68d6f9

          SHA512

          cb56cac05aba5af1fd3dd3547e313a1e4e1d2d15becefa9b62b0498ce25866c17f42c1939f1a98ec82cd3976eff949adfd650b2d2468f7059b3881774f2e1436

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          beb424139084dc7aa49b06ef961661f6

          SHA1

          dfd8d277f8886cb45f6b605a2f8a7ca7d5e5d268

          SHA256

          6d93ae1b222934c700e839006a0f8ee01f5fe269c308190d6cbbcd5adce696cd

          SHA512

          08bd581e3c1b9f2246393a4468e02aad87219fe45a3fb2554962d8e823d42377a99ed051f680303ea1f3312b83bed922a82dfc89d6f4fad967697dc93dbfb2a0

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          7481427fe0225fd0c0edb56b302e55a6

          SHA1

          7ca1ee818c6403508b3c3cd7599685bdeb9d4095

          SHA256

          06baed0765188c8b186744bdd4c08a5c1724ae36bc730b02aa9f3ff45b1c386a

          SHA512

          915664932697634ad496dd11600dc348e745704876142ac6bdd89b8a7db45374281e154e31ffc22c008dc844714e4136d8c20d01b6dc30bfe2f965e353979cac

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          d409158fdb9622ec6ae777805389d8f1

          SHA1

          85a95dd438d87d6136eec8cd1fa5ac6c7e9df44e

          SHA256

          8c018da0a67ac9d51b89159f2f7243b3754868166cc688935bde70e261ac9135

          SHA512

          30ec9e43d8eebba2d0caeb2ed1da43e356ecdaa980fa91e2f063242f90676dd5508906885f85897aeb2243059963e1fd2f45e4f79ff58912900372d835e151f6

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          0716aff237a33835b6a1da7d0fe3a202

          SHA1

          832432f94973ad73bbf81426c1e5f3809e0da11d

          SHA256

          e2f6d11a52e99c0356dfd96f8d4ca3508c57d89dd51f4974a92105c9197416ae

          SHA512

          33f902cfde8ea08d29167c88927ac7e7cdc46d5314b524446e61d0dfa17f6d7957e6a4f89fdccc26ff5c110ebd2b9dc8f9bfc8b6098d1c15a7e4f89c81ec3544

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          9168df6f868797de75bef04d1363ee0f

          SHA1

          747f72d5866c34887fe399ab634a2058914778e3

          SHA256

          f1d5e031168c653619d3984cc3a2f2deb01df04924870054033df537f9eb4bfa

          SHA512

          0067bea63821219b350f3da63c0597732a51017436bb5111091741a4f3a3643a9ceeb91c36c5e81e7801e6374e9c6015ec1ad8e71b37efb5ef0dbf4eafc08db3

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          e0a289f684eae54d8ce9a8c6a04e05e4

          SHA1

          562d3e5512d112f2ce6e9240abce10d03cb9ac3f

          SHA256

          75972de919bb11f14529a2380e0db383a8498968ae840cacbdec9c2bb002a6f6

          SHA512

          6acf556fbbdabcc3e8ab9873df0a96479aaaf9842db7f2aae8c145e9c7312b9c7c69db76101528ce7c616edc5c5bf58956c6dff203e3edd97aeebd8d11502152

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\Cab3C27.tmp
          Filesize

          65KB

          MD5

          ac05d27423a85adc1622c714f2cb6184

          SHA1

          b0fe2b1abddb97837ea0195be70ab2ff14d43198

          SHA256

          c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

          SHA512

          6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\Tar3D06.tmp
          Filesize

          171KB

          MD5

          9c0c641c06238516f27941aa1166d427

          SHA1

          64cd549fb8cf014fcd9312aa7a5b023847b6c977

          SHA256

          4276af3669a141a59388bc56a87f6614d9a9bdddf560636c264219a7eb11256f

          SHA512

          936ed0c0b0a7ff8e606b1cc4175a1f9b3699748ccbba1c3aff96203033d2e9edabf090e5148370df42fbfc4e31d7229493706ff24f19ff42ff7bef74a6baad06

          Download Submit