Overview

overview

1

Static

static

1

feee629754...8.html

windows7-x64

1

feee629754...8.html

windows10-2004-x64

1

Analysis

  • max time kernel
    145s
  • max time network
    147s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    21/04/2024, 09:05

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    feee629754b5ab6e5a0c66fa20218f5d_JaffaCakes118.html

  • Size

    100KB

  • MD5

    feee629754b5ab6e5a0c66fa20218f5d

  • SHA1

    6950d00d5e9cbac5e87c3858bf5849e53dcec095

  • SHA256

    a7dc7cbb1a7bc2ce413a8dbcfc8113836284d072a1d5cc5652822eedd7928177

  • SHA512

    9e5bd346c9bff4e04c1265e6f89b30e95f15e878a08422fd5778e2dca7421dc8c4b0b406e06dd2cb32fd451dffd7632374472ec97a04cb1b940a1954870d27e1

  • SSDEEP

    1536:Ah7NS1sXmXEfWB63gYieIqeBFCy8oNCbSlL9ZmsR:qRSeWOI3nCICbmL9ZmsR

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 44 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\feee629754b5ab6e5a0c66fa20218f5d_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2376
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2376 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2908

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\24BD96D5497F70B3F510A6B53CD43F3E_3A89246FB90C5EE6620004F1AE0EB0EA
          Filesize

          1KB

          MD5

          5a54bc04171c65339c3ca462971d6aef

          SHA1

          73ee48519b661cc106c8704abc56153323d245cd

          SHA256

          62a390dba0cb57c999a217d4768423330f855a444e37680ab6a0a2edaa6311d3

          SHA512

          dc3ead0e6be523fc36035d97f2c39d59a362d3979506b0c5f4190a09f0b83f62cfdaa574a1fbe85fba0397ce6ef40626ee5f0ebd38e67e25ca8d1b116002903f

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\3C428B1A3E5F57D887EC4B864FAC5DCC
          Filesize

          914B

          MD5

          e4a68ac854ac5242460afd72481b2a44

          SHA1

          df3c24f9bfd666761b268073fe06d1cc8d4f82a4

          SHA256

          cb3ccbb76031e5e0138f8dd39a23f9de47ffc35e43c1144cea27d46a5ab1cb5f

          SHA512

          5622207e1ba285f172756f6019af92ac808ed63286e24dfecc1e79873fb5d140f1ceb7133f2476e89a5f75f711f9813a9fbb8fd5287f64adfdcc53b864f9bdc5

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015
          Filesize

          68KB

          MD5

          29f65ba8e88c063813cc50a4ea544e93

          SHA1

          05a7040d5c127e68c25d81cc51271ffb8bef3568

          SHA256

          1ed81fa8dfb6999a9fedc6e779138ffd99568992e22d300acd181a6d2c8de184

          SHA512

          e29b2e92c496245bed3372578074407e8ef8882906ce10c35b3c8deebfefe01b5fd7f3030acaa693e175f4b7aca6cd7d8d10ae1c731b09c5fa19035e005de3aa

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\A16C6C16D94F76E0808C087DFC657D99_FAD4FA4BE5EA6E868132040E668F6C95
          Filesize

          471B

          MD5

          756cbd76616f7d4ea61a34a090702c7b

          SHA1

          dfe66988970454ed73f479f681f13f8784afe771

          SHA256

          bd05b5fa66627c70a0d033d05c45a4809bcfead31441fc8c1cba6a2a9d9ff985

          SHA512

          c3875a73fb485b34bca90bb76e54459223adc469e6a54a0d81efa405b7ab71740ac3c86c85ae0b0c3be78153b78e595e44cd6b6996f14610fe065168ded777fa

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\CAF4703619713E3F18D8A9D5D88D6288_A7725538C46DE2D0088EE44974E2CEBA
          Filesize

          724B

          MD5

          ac89a852c2aaa3d389b2d2dd312ad367

          SHA1

          8f421dd6493c61dbda6b839e2debb7b50a20c930

          SHA256

          0b720e19270c672f9b6e0ec40b468ac49376807de08a814573fe038779534f45

          SHA512

          c6a88f33688cc0c287f04005e07d5b5e4a8721d204aa429f93ade2a56aeb86e05d89a8f7a44c1e93359a185a4c5f418240c6cdbc5a21314226681c744cf37f36

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\F07644E38ED7C9F37D11EEC6D4335E02_938FF13C775D1BCDFC2A5B45785D3A60
          Filesize

          471B

          MD5

          14b045189c616ac3a22b59a22d8f19a6

          SHA1

          c1ca711cffabb810067c82fdca058268fba3365d

          SHA256

          46aceb9654279ec0999a5c2a995e7154a9c940d04aaa151eaa91486ce45d2ba5

          SHA512

          7e25c3c51ba9d316e536f922c3a911ae10da60c922376bc5e1bd71ba4d05f562a0d727a6e329dde6cac73139b392836ce0522a653471d118f0568c95b8f937b1

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\F0ACCF77CDCBFF39F6191887F6D2D357
          Filesize

          1KB

          MD5

          a266bb7dcc38a562631361bbf61dd11b

          SHA1

          3b1efd3a66ea28b16697394703a72ca340a05bd5

          SHA256

          df545bf919a2439c36983b54cdfc903dfa4f37d3996d8d84b4c31eec6f3c163e

          SHA512

          0da8ef4f8f6ed3d16d2bc8eb816b9e6e1345dfe2d91160196c47e6149a1d6aedaafadcefd66acdea7f72dcf0832770192ceac15b0c559c4ccc2c0e5581d5aefc

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\24BD96D5497F70B3F510A6B53CD43F3E_3A89246FB90C5EE6620004F1AE0EB0EA
          Filesize

          410B

          MD5

          c105a86af51bc529d516c5052c3b5c1c

          SHA1

          b6b41a07c6d8ae8db70a4ac7fd377d0abd8a7ca4

          SHA256

          35351458216b7520d3695762f259f7fdb6d75d811880ce23d77ef89adaff8208

          SHA512

          c71ce3c1e3e9ae3f6b5e0ca006c7a49d67929cea2c0a96b5b36542febc31857f956deb0d2c9d1ce8c22ecf9b7001836c79f82e1051026d2681f565c4f23eccac

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\3C428B1A3E5F57D887EC4B864FAC5DCC
          Filesize

          252B

          MD5

          2385e1a12ab0e92ee1b3f0dee248a6e3

          SHA1

          d818a53460bf097b89616ea12ec92226b44b721b

          SHA256

          f56e0a93e2cc6ec0a082ac9ec31b5a99aded40c483eb7b07386ef8582c3fd7e6

          SHA512

          d28169ce4d1227d4cd93574e8dc94396f8cbad5ad19ccde426efb2f54d01ff988411290d0781410ed77ad70a543a0ae0dadf20f9cef9f5a92d2f4d77a605a67c

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          0b173fe52ddde16591d8b8bdd9bce230

          SHA1

          471eee4aed65ae57472054e15e86c08fc1cb3b04

          SHA256

          ee8fc6ecd02772c14bbe940bb9c709e01556e53c576830c5513c1f036bc638ea

          SHA512

          774c8604ddddbaec46678708a16cae771715f4e95962839f26aee949ea827853ebe5d27f217044fb4dd69c99330e2cdfeb84acbc4808d5abf2cd468c9e32a9c9

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          251301029717af4b0098ed738621a187

          SHA1

          f843c3413b1896b86f0233808050de5515bddc95

          SHA256

          83b9106d4bc99e07bc3f4df7adf02c5ea6b961e6047e37329e5ab0f93b14eb28

          SHA512

          c7c8d36e9500d5a317a7d92a27fb9f21edbc0fb123757d9daf764176f77db8548cae265455190112f71854f2e579dba615360877ae2ff74c739eb51fd350a6fc

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          506cc3d2edc4e733d45de9d3c4b8cad0

          SHA1

          5c085d33dc9b812d05cac3ae53112bf97d2fddea

          SHA256

          c77ac28a231f96f325235a6b89aa119947ec5a90a2dda6231113f31497c3043b

          SHA512

          80dc39ab2604b673f5a3ecdc042568cff408ee9ef088da4f300830780c43073520071b0014c03860314ea98e9297a4053f01c18f8f692526618102e82e93f77b

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          7c9aafe4d14ac04de449e857e5490dbd

          SHA1

          20193a9b6328948ac257530a26159917af09f62a

          SHA256

          acf11ab0f4512ddabda7362642579e9d4ffcdb769996b7b50bc5795e203718cc

          SHA512

          9d76282d9143a437a9f0e9fcc2af487a45bd487ad5de36996bf4f9980dcea1dc859cfec4d6a691e2b6ab333f4ae7b71466eec6b4894ac36ce79e97bc7432d1c8

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\CAF4703619713E3F18D8A9D5D88D6288_A7725538C46DE2D0088EE44974E2CEBA
          Filesize

          392B

          MD5

          23c986c23df2499377cf2f8d75afed5d

          SHA1

          0b5359f66ab6990f3f210a75df6c3f367d50f676

          SHA256

          f51feed93f5b82cd841d2381b56e81d461352596717cb53fb61a1da789ac96d5

          SHA512

          8543ff9cafd354565c609f1a986738482f6bc4d301579b33f357917c2363b3b0a5fd7b520bbf4afb66a7fec181a524dd128d79d3e4117aeb4de00c7cfe58bc86

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F0ACCF77CDCBFF39F6191887F6D2D357
          Filesize

          242B

          MD5

          9eeefcf0613f4973f2f70a9fcf3a377e

          SHA1

          498c4a857854a833ac6bc2f5465f8feb9faaee13

          SHA256

          96d1248d76de4533ed903ef5274ef923282df610e64e05f5b19bc3c98e1c0875

          SHA512

          9acd85f5dc85c94f5d951c0336f17dafb6b5ad4c96e543c7b872102ea0ca4069d1ed015f39429bfddd8b6f686e44c29b3f88e3c59136a108234d26b9654c4646

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F0ACCF77CDCBFF39F6191887F6D2D357
          Filesize

          242B

          MD5

          141ed14f32107256e92eaca1038c2a04

          SHA1

          139bc583bc8e01edb1a4d7d732b1752db9309a71

          SHA256

          94eca64c673320d1c43fc26695dc21013af37c5dab6322b64e3f746740a5343a

          SHA512

          631044304ceaccb48c47fd89c65b368df5237a5c47f8d37e866775762b9764ece8199b46af4b16ab9f725bae0d75b1233e2f48fd44cbf30225b793d790f11688

          Download Submit

        • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\5OCCPTL4\platform_gapi.iframes.style.common[1].js
          Filesize

          54KB

          MD5

          f0d50a9a90ad59daa2f877eec130c234

          SHA1

          7d06b084efb04f3ab882d07f70bc2cf15a80aa43

          SHA256

          533e36742f3669952d3d943143d569f1681c0329f746f36f4364e73e0d5db5dc

          SHA512

          db48d8f4852f27f8f21fab0a3f6bc685099ef943e63c746a2ee3c470dbddae85f5e38f0f37e69f7eaf52839e697dc5e8082084bafe6a01eaf5864de795223517

          Download Submit

        • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\EDQW9R5V\cb=gapi[1].js
          Filesize

          133KB

          MD5

          dbd627c28e97cc5bbe7be0c7a75e386e

          SHA1

          7bb367b5d18dd59a643a8bd4122b37a8a33bb9e9

          SHA256

          97c5e5f7f3c5a1b36449b765e533eab96dd3ee4bb806d0c42d33b2d1457958f2

          SHA512

          f09a05f7ea69e67124dc61acf324769c07e31bab781592988bce009e951480de0c7f310d4bdda3867f5900e91ffde031b48338552a47423d4e59622301bb354f

          Download Submit

        • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\EDQW9R5V\f[1].txt
          Filesize

          35KB

          MD5

          353745151549fff783615f451ce51b82

          SHA1

          c1f5f98a1aee22867e84b5e0283102c2e3a9ca1c

          SHA256

          f2e86e26b06c611a638da85ad6250dce7f92694c9ca81cfcbfdd2bc8ae6de2a8

          SHA512

          1092c99e933bbf88db5a78b9143ea359986fd585fd5538f839eae0b8ee7d2d3ddb6cf89c6344b84ac4d3ed04809fe7b9d6090d9bff7637bc8b4f3ce315082f7c

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\Cab317E.tmp
          Filesize

          65KB

          MD5

          ac05d27423a85adc1622c714f2cb6184

          SHA1

          b0fe2b1abddb97837ea0195be70ab2ff14d43198

          SHA256

          c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

          SHA512

          6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\Tar3646.tmp
          Filesize

          177KB

          MD5

          435a9ac180383f9fa094131b173a2f7b

          SHA1

          76944ea657a9db94f9a4bef38f88c46ed4166983

          SHA256

          67dc37ed50b8e63272b49a254a6039ee225974f1d767bb83eb1fd80e759a7c34

          SHA512

          1a6b277611959720a9c71114957620517ad94541302f164eb872bd322292a952409bafb8bc2ac793b16ad5f25d83f8594ccff2b7834e3c2b2b941e6fc84c009a

          Download Submit