Overview

overview

1

Static

static

1

0f55427e4a...8.html

windows7-x64

1

0f55427e4a...8.html

windows10-2004-x64

1

Analysis

  • max time kernel
    149s
  • max time network
    150s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    03/05/2024, 01:14

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    0f55427e4aaef7c9540c0f99fb87b63e_JaffaCakes118.html

  • Size

    119KB

  • MD5

    0f55427e4aaef7c9540c0f99fb87b63e

  • SHA1

    61745cafc3a88d893762ce885345c280f8d767bd

  • SHA256

    5e7138662e9c11ee0bc519bc58d22006eaac33df9bb0b0e2ad61e53015ccfaa9

  • SHA512

    e015c38788e2433ff8c6f6d49b76c964734b209ffb4fa36e9d8751cbf110e44f6fc6c673accd0f1655500714e10f325ed13b5dcfec2f5e88009263936a019b60

  • SSDEEP

    1536:SOULyLi+rffMxqNisaQx4V5roEIfGJZN8qbV76EX1UP09weXA3oJrusBTOy9dGCY:StLyfkMY+BES09JXAnyrZalI+Yu

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 26 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\0f55427e4aaef7c9540c0f99fb87b63e_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2528
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2528 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2912

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015
          Filesize

          68KB

          MD5

          29f65ba8e88c063813cc50a4ea544e93

          SHA1

          05a7040d5c127e68c25d81cc51271ffb8bef3568

          SHA256

          1ed81fa8dfb6999a9fedc6e779138ffd99568992e22d300acd181a6d2c8de184

          SHA512

          e29b2e92c496245bed3372578074407e8ef8882906ce10c35b3c8deebfefe01b5fd7f3030acaa693e175f4b7aca6cd7d8d10ae1c731b09c5fa19035e005de3aa

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          91390d8c4a43a34831455f75cca3eba5

          SHA1

          79d41519de3383ae7ee2df4250c9b60e9e858b90

          SHA256

          e0388f3ebd06eb5904e96c282730d9287f4516ce0d8d4c6cd746235d0003def0

          SHA512

          c80a01cf57347f74002aa58876c9ca7ee5898ffb6f877cbd8a58acdc8505c85d406a34fc0e277d4780fa645dd798e548bd2c88f0f85a189b0007ff02a7129d35

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          333e6263b334f5750f71e08f9df2f479

          SHA1

          3ab354a43d44a137da7abfa24058343ff085fce8

          SHA256

          6fe550b4294a3607bd7cf88f26b45d906e0d036539a4b84b5e848026d1d2723e

          SHA512

          689d4c3428f107eef00e57b92e5627f9ee68c17914fb237d3a0707d3ca7847e00026fe3ab6b3cf8f31762fc10e6e2adba691cd37f8ce44e840e307a7c28e1dbf

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          6b939842ad115c764ac9f1b94435f9d6

          SHA1

          8ade7d10acf0296da1c61bd72c75a7b82526f25a

          SHA256

          f10a12f031e0e5f6dd7404ffa9237cb31bf353b3b5b8d0066dabbd2e80d52845

          SHA512

          df54ab6c87d3121ca6103701a7e96be8c6e1b04172ce9f81d6dc7e992f9c1287a748bab707dd19c283a54a0516a827b3d4d53beae9ac87734e1dbcb42de78a08

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\Cab1111.tmp
          Filesize

          65KB

          MD5

          ac05d27423a85adc1622c714f2cb6184

          SHA1

          b0fe2b1abddb97837ea0195be70ab2ff14d43198

          SHA256

          c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

          SHA512

          6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\Tar15EA.tmp
          Filesize

          177KB

          MD5

          435a9ac180383f9fa094131b173a2f7b

          SHA1

          76944ea657a9db94f9a4bef38f88c46ed4166983

          SHA256

          67dc37ed50b8e63272b49a254a6039ee225974f1d767bb83eb1fd80e759a7c34

          SHA512

          1a6b277611959720a9c71114957620517ad94541302f164eb872bd322292a952409bafb8bc2ac793b16ad5f25d83f8594ccff2b7834e3c2b2b941e6fc84c009a

          Download Submit