Overview

overview

1

Static

static

1

fe5734151e...8.html

windows7-x64

1

fe5734151e...8.html

windows10-2004-x64

1

Analysis

  • max time kernel
    140s
  • max time network
    137s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    21-04-2024 03:39

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    fe5734151e15f7264cce5c5e6a1a7a04_JaffaCakes118.html

  • Size

    393KB

  • MD5

    fe5734151e15f7264cce5c5e6a1a7a04

  • SHA1

    be1b0268078d721e75554fef6cb2ce94080707f2

  • SHA256

    ec7b099cc7f990203ad69890bc780e1ea1907882910a2ae3bdf32bf2ae112260

  • SHA512

    f669e65bfd42d452bbea9dc969ec01295de411a3a3b073502ddb412299655d276d63ad042db1c2257c44f084fee5151c75d67af54533f31e88ca599c295f90ca

  • SSDEEP

    12288:F5zSS0w7RbgE3Q0g1IPt23rl/ZslohtoG6rel8Bo:/RbgE3Q0g1IPt23rl/ZslohtoG6SCo

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\fe5734151e15f7264cce5c5e6a1a7a04_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2976
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2976 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2148

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\3C428B1A3E5F57D887EC4B864FAC5DCC
    Filesize

    914B

    MD5

    e4a68ac854ac5242460afd72481b2a44

    SHA1

    df3c24f9bfd666761b268073fe06d1cc8d4f82a4

    SHA256

    cb3ccbb76031e5e0138f8dd39a23f9de47ffc35e43c1144cea27d46a5ab1cb5f

    SHA512

    5622207e1ba285f172756f6019af92ac808ed63286e24dfecc1e79873fb5d140f1ceb7133f2476e89a5f75f711f9813a9fbb8fd5287f64adfdcc53b864f9bdc5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015
    Filesize

    68KB

    MD5

    29f65ba8e88c063813cc50a4ea544e93

    SHA1

    05a7040d5c127e68c25d81cc51271ffb8bef3568

    SHA256

    1ed81fa8dfb6999a9fedc6e779138ffd99568992e22d300acd181a6d2c8de184

    SHA512

    e29b2e92c496245bed3372578074407e8ef8882906ce10c35b3c8deebfefe01b5fd7f3030acaa693e175f4b7aca6cd7d8d10ae1c731b09c5fa19035e005de3aa

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\F0ACCF77CDCBFF39F6191887F6D2D357
    Filesize

    1KB

    MD5

    a266bb7dcc38a562631361bbf61dd11b

    SHA1

    3b1efd3a66ea28b16697394703a72ca340a05bd5

    SHA256

    df545bf919a2439c36983b54cdfc903dfa4f37d3996d8d84b4c31eec6f3c163e

    SHA512

    0da8ef4f8f6ed3d16d2bc8eb816b9e6e1345dfe2d91160196c47e6149a1d6aedaafadcefd66acdea7f72dcf0832770192ceac15b0c559c4ccc2c0e5581d5aefc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\3C428B1A3E5F57D887EC4B864FAC5DCC
    Filesize

    252B

    MD5

    f042fd12739400a2fbee705a828b6088

    SHA1

    605672dda3d0a92b0bb9faefda5a639773b202b3

    SHA256

    2dd4eaeccf2b7004773e93df1c0443d842625646e0c77ff995548ad11f3b5f0e

    SHA512

    b84996da25c51a53ee2fb3d874c098a6ad164e2110d447987dc33cd31477968e4aa3f41194b65d307d606f34d8e7bfea63726af281fdc260bd550affcad15f7d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    5087c4d2a8ee4036a4be096565681f42

    SHA1

    7ea64384e84ae67e225a71cf3ffd2c9badd652e6

    SHA256

    0a04724b8bd67265c2a69cad134ca919dfc4f3c1f63936b0bab1f3e271da2661

    SHA512

    1d9a2e90642a8a58db2ce2e5ae14f9d79c5a71d0c3bcaa85a7fcdc1a3e861ffe1cf7d1c80f54aa7b9370a3c263920fb01332078f67b18431681a59cfdf133148

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    732de4b54cecc4608f68d5ba6d43bde8

    SHA1

    5b16d1c55448772262c3d73efba95489cca0c7a1

    SHA256

    7d54924e3d37989df787e29b8099deecab8c6bdd1c3eed3e34c374a553ac84ba

    SHA512

    575fa6f033d24a2bbf13f489138373d673d69a6b561afe7ce84721401298add0ebbf39e136e9f4e3528441bc5b5d2db3fae07f2a73dcae16e52a7bd132f4d7be

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    f5c1a470d9085906adf97d53a4f11416

    SHA1

    3b23d36125f78a4d2e40a013dc3d89476b3dbbec

    SHA256

    863bc4bacdbd717c54ef0c22afe20cd90fae614b89736cbd0cf662c3441b2695

    SHA512

    daf44110d5a4211e28d4f384b7d1638ebae1c3d2eeba11dbf0c0155132f66099b0c8b9adc5dc01ec8e7fb19f4d835b3203f9edb29a6d79a443902eb08817de7b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    3aa399982820388865cc25870a07da7b

    SHA1

    f7b71dcadbaec8e7aa268d1d3964006ce3d0f76b

    SHA256

    36549d5cc32ea5075ad61d384aa9df007ffa31975279b230f7d81f5c914eb748

    SHA512

    09d65316675a35edc3e6b741eef046535a21dfc2859fbec2b223df3aba6529e8f7e4c18bde798dd0d518d81f0dda4cbbd89c342884e71be37be4021dcfc4ea55

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    0e8fb0cd47de2638d94f4131dee54151

    SHA1

    7f50cf482f7d6341043d8d7cbc0878893344db54

    SHA256

    6c23de4ccd543dde6d7b12a75e132511024e547d3fc637b156736ae574d27b6e

    SHA512

    e1346eca015d8e4aca61a29e4209049ec2f590206cd662c956d9ecd8ff9284dc0bf234fe399e824da1f49ea7306070adb521927de6a1ebcf91055c2fe3db3c43

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F0ACCF77CDCBFF39F6191887F6D2D357
    Filesize

    242B

    MD5

    9ebbe1edaca04222358fcfb5324c5aa8

    SHA1

    6184408beef3750b9f3ee6ad69a77024da77d2b2

    SHA256

    a10920e0ef55b6a96264245354667b971834f6d1bfa1b28a86c64c3df8dd465a

    SHA512

    a34177590d7bc5772a79dd92857eecd713d7fef0e308d157d753f46b429edd6562bd07934e516e87b8576d865343353c77840113c16cfd8f7da0d30df72f872f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F0ACCF77CDCBFF39F6191887F6D2D357
    Filesize

    242B

    MD5

    69e4b69f6870bde85925fdbe715cef43

    SHA1

    adb3fb3581f15e592e45cab126d22625a3857f64

    SHA256

    78d11d43d9e70595b494857aae1ded9d608212ef355e1f96a8dd751eaea41112

    SHA512

    d35e3020b5b57298cc52cf1026fb890233244825344162548849ac13b6654e4aad9eb6fee809064bf5f51198fe857a5530018f11b80f66fd7a793ecb42a9d2db

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\B1014REI\platform_gapi.iframes.style.common[1].js
    Filesize

    54KB

    MD5

    f0d50a9a90ad59daa2f877eec130c234

    SHA1

    7d06b084efb04f3ab882d07f70bc2cf15a80aa43

    SHA256

    533e36742f3669952d3d943143d569f1681c0329f746f36f4364e73e0d5db5dc

    SHA512

    db48d8f4852f27f8f21fab0a3f6bc685099ef943e63c746a2ee3c470dbddae85f5e38f0f37e69f7eaf52839e697dc5e8082084bafe6a01eaf5864de795223517

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\EDQW9R5V\cb=gapi[1].js
    Filesize

    133KB

    MD5

    dbd627c28e97cc5bbe7be0c7a75e386e

    SHA1

    7bb367b5d18dd59a643a8bd4122b37a8a33bb9e9

    SHA256

    97c5e5f7f3c5a1b36449b765e533eab96dd3ee4bb806d0c42d33b2d1457958f2

    SHA512

    f09a05f7ea69e67124dc61acf324769c07e31bab781592988bce009e951480de0c7f310d4bdda3867f5900e91ffde031b48338552a47423d4e59622301bb354f

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab2F99.tmp
    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar309A.tmp
    Filesize

    177KB

    MD5

    435a9ac180383f9fa094131b173a2f7b

    SHA1

    76944ea657a9db94f9a4bef38f88c46ed4166983

    SHA256

    67dc37ed50b8e63272b49a254a6039ee225974f1d767bb83eb1fd80e759a7c34

    SHA512

    1a6b277611959720a9c71114957620517ad94541302f164eb872bd322292a952409bafb8bc2ac793b16ad5f25d83f8594ccff2b7834e3c2b2b941e6fc84c009a

    Download Submit