Overview

overview

1

Static

static

1

fdf4f9c5be...8.html

windows7-x64

1

fdf4f9c5be...8.html

windows10-2004-x64

1

Analysis

  • max time kernel
    134s
  • max time network
    141s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    21-04-2024 00:00

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    fdf4f9c5be37bfc1c18fe760eb255592_JaffaCakes118.html

  • Size

    63KB

  • MD5

    fdf4f9c5be37bfc1c18fe760eb255592

  • SHA1

    ed8c545f0464e2039e580123d3da0a1084983d8c

  • SHA256

    6d909a59804f40bbd5005876f3c799e2699c9e19d12da061458b03caad54946c

  • SHA512

    dd26d66f6e540dc58b7b4c77548e1de6b343e54a42dfa6732c1cbbbea8245178e4aeba2ff06274c4904dda12f3307ce57476a6afbfe9d35cf9183130fa4bae59

  • SSDEEP

    1536:JoQ93rmIx0Y5gkRSi0FRophNltKolxLEO6siCymZqlg791ESWL2etkhcdQO3T0HU:JoQ93rmbopsoMmIlg791ESWL2etkhcdl

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 42 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\fdf4f9c5be37bfc1c18fe760eb255592_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2932
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2932 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2640

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\3C428B1A3E5F57D887EC4B864FAC5DCC
    Filesize

    914B

    MD5

    e4a68ac854ac5242460afd72481b2a44

    SHA1

    df3c24f9bfd666761b268073fe06d1cc8d4f82a4

    SHA256

    cb3ccbb76031e5e0138f8dd39a23f9de47ffc35e43c1144cea27d46a5ab1cb5f

    SHA512

    5622207e1ba285f172756f6019af92ac808ed63286e24dfecc1e79873fb5d140f1ceb7133f2476e89a5f75f711f9813a9fbb8fd5287f64adfdcc53b864f9bdc5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015
    Filesize

    68KB

    MD5

    29f65ba8e88c063813cc50a4ea544e93

    SHA1

    05a7040d5c127e68c25d81cc51271ffb8bef3568

    SHA256

    1ed81fa8dfb6999a9fedc6e779138ffd99568992e22d300acd181a6d2c8de184

    SHA512

    e29b2e92c496245bed3372578074407e8ef8882906ce10c35b3c8deebfefe01b5fd7f3030acaa693e175f4b7aca6cd7d8d10ae1c731b09c5fa19035e005de3aa

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\F0ACCF77CDCBFF39F6191887F6D2D357
    Filesize

    1KB

    MD5

    a266bb7dcc38a562631361bbf61dd11b

    SHA1

    3b1efd3a66ea28b16697394703a72ca340a05bd5

    SHA256

    df545bf919a2439c36983b54cdfc903dfa4f37d3996d8d84b4c31eec6f3c163e

    SHA512

    0da8ef4f8f6ed3d16d2bc8eb816b9e6e1345dfe2d91160196c47e6149a1d6aedaafadcefd66acdea7f72dcf0832770192ceac15b0c559c4ccc2c0e5581d5aefc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\24BD96D5497F70B3F510A6B53CD43F3E_3A89246FB90C5EE6620004F1AE0EB0EA
    Filesize

    410B

    MD5

    ba00946fad145003530908dd2af5ea5f

    SHA1

    c9be1e944feaf391d149962edfe28169501781d3

    SHA256

    79c01cf51b44e0b6be9534be4c95a6f5094b3131881844499fdce95b42047dc4

    SHA512

    f3c77f38800a4c89267206482e50e4520f1799e7642c30810d2c74bbb02b755076f3824a1d9866ccee80eb4e7b95642fb47ad292b7155ffde08d52c86bd48bdd

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\3C428B1A3E5F57D887EC4B864FAC5DCC
    Filesize

    252B

    MD5

    cea555594eab00a15d27e13c5c81fe64

    SHA1

    9ee183fb32ff8c95f0c92dd0dc669bc2c511e6c5

    SHA256

    5763416775d1721b26577ca5bac00376a050dd2351b4e448e6320c5d0dc8492a

    SHA512

    458b4340869559051e861791977e82f2c46176d3990d4515443b886e1a3887a394d3c61c4c5cf2ed42a48c69d4b968dbd66439bca3dae8559ce1e7858a57ab09

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    3187df64fecf1c25a54c553c387d63be

    SHA1

    fa3d4a7e28c41daf05bf1b04fd55fcefe7631dda

    SHA256

    d5634624b8aaed43fd22c67c7221a128976852637930058b68ce035bc1db2fd6

    SHA512

    ec8220d894f05982c33b2f3d53caf6823813bc1af971dc9f06eaf421379f404f974ebf7c1d7f65baba49bd46ea89cb851f9928005fe9a6084649f2b41fc998f6

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    1c71188d2aa83c9747599b922ddff86f

    SHA1

    799494017756f61d7879b0766e4612503cdd27e4

    SHA256

    bd552bb3e6dab8a525447d118267cd148a0e6eb19c8cd4cc93d48f2f5d36e24a

    SHA512

    719b54db837fc40e91db69feb6e1dd57fea94ddb1de8be19874d5a20431620b8e4cf8f10bb772c40b0963ec568468b5d30695efb3bebce3af15ca54f2455ce64

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    d1fc4f054a2ee3449fa4a113d65b7c25

    SHA1

    04e3151a030cdcb499b590b4c75659a97ba7291c

    SHA256

    9a4d2f1c1b66d0b043582ec8224ad9ec1caa56ce71ec254763851b14a5549899

    SHA512

    f4dfb7fb20d4e7f6adf77065a3100bf660f6400116613bd813bb4359a15ecc25be8c9849656c2b96e56f3a0cc3334e6fe50cd47fa9a55b67b3dc9a130f38dc32

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    c6c2bf62316f433d01cad513248da0ef

    SHA1

    fca904281a4173b5eb44a28e64d90dc8c67e425c

    SHA256

    5ab4230acd2eefed2a5d35291d65e28da21ee51856f8efa279a4a455e5a81c72

    SHA512

    33d0f6d180a0f767a33804af591cfcb190ed8d52e256a27e013b997a9ede233dfabf127c8ea355cf2595711bc01d3e7f70f143d3a5083f56fb574d5f2ffe3a11

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    8fe807b160d50a15b741d53c9bcc6ed3

    SHA1

    e1ecf5a63204a01f6ac9799b44bffd61a00cb778

    SHA256

    9237c874f1015f5f529e93245d400b07130f67210cc41a403a1704c8abe75961

    SHA512

    14dceb317023f77ebdb8536b0e2c5e9ec95434f63d73e826918442f4d98ab88d12fd174f53cfa9e44c8fa6757495d355dceb9c03496f36c69bc54c87e0a17ed1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    40c9b6dae058aacee8a79e8cc549c949

    SHA1

    268d8a6d0b4cfc811e8924830abe41041202fff9

    SHA256

    a6236ff30a633ad6080ba79254f825efea5ac665d46e7a181fe4685c7fa3b5a5

    SHA512

    410c4c3e0ffda7e2edeb12969027c77cfc9ca7a002ee357432b32e7c2c260c950cb91c1b7d7ceb14d50d3081e690dde7f9e9eec6222aa9748fdd36f6805193e2

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    512f9c9f5ef788bcf836e9fde1dee6bc

    SHA1

    e6e67809f995a1776612bcff8cc4a28c7bb3a0c0

    SHA256

    e8728bca057d331a20cf20bf003f5ee3ba7454d60e73fe483d939805fbfd68e3

    SHA512

    78216d783b2a39f10bd82d7fb30491b037b7cabbcabc32ebabef7f72b6c91508ba8327472aeea12f89df6028eb4afe2c56a9319a51868004f282a8649159d1e0

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F0ACCF77CDCBFF39F6191887F6D2D357
    Filesize

    242B

    MD5

    f5b5d15a0b2fefc41a664b5e9ab733c1

    SHA1

    0e43939b771cc4bb59ba27bce3cc94e4eb678237

    SHA256

    1ceb65a127401855050dda5dea7e38d43b1284428d94d6d49c28cec3cb5dbe02

    SHA512

    04b81eedcabaf239a238c73f8f810bb074e3f1d2a0389e89cdbc97f8a34deeb5989af64394e91bb4b0888524d3c11147fd78c27e3aea8481bad1e2142d79b80f

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\3NPBB818\cb=gapi[1].js
    Filesize

    133KB

    MD5

    dbd627c28e97cc5bbe7be0c7a75e386e

    SHA1

    7bb367b5d18dd59a643a8bd4122b37a8a33bb9e9

    SHA256

    97c5e5f7f3c5a1b36449b765e533eab96dd3ee4bb806d0c42d33b2d1457958f2

    SHA512

    f09a05f7ea69e67124dc61acf324769c07e31bab781592988bce009e951480de0c7f310d4bdda3867f5900e91ffde031b48338552a47423d4e59622301bb354f

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\3NPBB818\f[1].txt
    Filesize

    35KB

    MD5

    963c41d71c4f609ef4a3ad842e03efaa

    SHA1

    36044e0e16a02f0e4d814f3fc6ecbd341ed8d3e9

    SHA256

    cb14846cf81d63bc3d2f7ce579a11746a60ca43556a37303ab61ce87c16c3dc9

    SHA512

    0c8e39ff15f17a0c1957700ef2505a0f042397a800e97d9f99fbf40d7e7169a3d5c3afb896ca6d7d8ae652480636139ab934f6e8e16ae33c2fa71846688f2820

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\5OCCPTL4\platform_gapi.iframes.style.common[1].js
    Filesize

    54KB

    MD5

    f0d50a9a90ad59daa2f877eec130c234

    SHA1

    7d06b084efb04f3ab882d07f70bc2cf15a80aa43

    SHA256

    533e36742f3669952d3d943143d569f1681c0329f746f36f4364e73e0d5db5dc

    SHA512

    db48d8f4852f27f8f21fab0a3f6bc685099ef943e63c746a2ee3c470dbddae85f5e38f0f37e69f7eaf52839e697dc5e8082084bafe6a01eaf5864de795223517

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab30C3.tmp
    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar36E2.tmp
    Filesize

    177KB

    MD5

    435a9ac180383f9fa094131b173a2f7b

    SHA1

    76944ea657a9db94f9a4bef38f88c46ed4166983

    SHA256

    67dc37ed50b8e63272b49a254a6039ee225974f1d767bb83eb1fd80e759a7c34

    SHA512

    1a6b277611959720a9c71114957620517ad94541302f164eb872bd322292a952409bafb8bc2ac793b16ad5f25d83f8594ccff2b7834e3c2b2b941e6fc84c009a

    Download Submit