Overview

overview

1

Static

static

1

21d500291c...8.html

windows7-x64

1

21d500291c...8.html

windows10-2004-x64

1

Analysis

  • max time kernel
    133s
  • max time network
    127s
  • platform
    windows7_x64
  • resource
    win7-20231129-en
  • resource tags

    arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
  • submitted
    07/05/2024, 21:39

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    21d500291c7274aeb6352cdceafa446b_JaffaCakes118.html

  • Size

    3KB

  • MD5

    21d500291c7274aeb6352cdceafa446b

  • SHA1

    a5459ec6f3106f11eda56159c987e89ebdfccae2

  • SHA256

    cf777012869e3c26e114eaed8ec7ab4e8a929a654ca8d824aaf5ca96fe89b11f

  • SHA512

    ae4071709f0c9b9957eb1e00841f295d006bea465d0f688a486caa26c81a2a9e2c6bfcea42e64477926dc2c2df53965e84d94271e6a9ba21ce3c369925d7e239

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 38 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\21d500291c7274aeb6352cdceafa446b_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1736
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1736 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2172

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\3C428B1A3E5F57D887EC4B864FAC5DCC
    Filesize

    914B

    MD5

    e4a68ac854ac5242460afd72481b2a44

    SHA1

    df3c24f9bfd666761b268073fe06d1cc8d4f82a4

    SHA256

    cb3ccbb76031e5e0138f8dd39a23f9de47ffc35e43c1144cea27d46a5ab1cb5f

    SHA512

    5622207e1ba285f172756f6019af92ac808ed63286e24dfecc1e79873fb5d140f1ceb7133f2476e89a5f75f711f9813a9fbb8fd5287f64adfdcc53b864f9bdc5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015
    Filesize

    68KB

    MD5

    29f65ba8e88c063813cc50a4ea544e93

    SHA1

    05a7040d5c127e68c25d81cc51271ffb8bef3568

    SHA256

    1ed81fa8dfb6999a9fedc6e779138ffd99568992e22d300acd181a6d2c8de184

    SHA512

    e29b2e92c496245bed3372578074407e8ef8882906ce10c35b3c8deebfefe01b5fd7f3030acaa693e175f4b7aca6cd7d8d10ae1c731b09c5fa19035e005de3aa

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\F0ACCF77CDCBFF39F6191887F6D2D357
    Filesize

    1KB

    MD5

    a266bb7dcc38a562631361bbf61dd11b

    SHA1

    3b1efd3a66ea28b16697394703a72ca340a05bd5

    SHA256

    df545bf919a2439c36983b54cdfc903dfa4f37d3996d8d84b4c31eec6f3c163e

    SHA512

    0da8ef4f8f6ed3d16d2bc8eb816b9e6e1345dfe2d91160196c47e6149a1d6aedaafadcefd66acdea7f72dcf0832770192ceac15b0c559c4ccc2c0e5581d5aefc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\3C428B1A3E5F57D887EC4B864FAC5DCC
    Filesize

    252B

    MD5

    e9f4e540cd1350460d9a9e49b1f66b2d

    SHA1

    de9e06264830a98d3e90d24832c13d189a5ccc09

    SHA256

    5d2909ebf9403f608ebb139a3f0e19dc53035ebe7590c8b19914d9b6d19cbf71

    SHA512

    c133fd0e78dfe50abe44ce43117d707f77e6134cc086910be0b214565cf059f4fced3349ffab71ad573936648517fb5f4a3b46769afa45301efb34da5a6bbd5e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    eb485b6bc074562979f074c71fcc9d22

    SHA1

    25dae7be91f8e034f5419112b204ddcda9db207b

    SHA256

    4ee41f947e8cc2878df4fa5bf3e27a0ef0ed0190687acb2ad03cd316b9073287

    SHA512

    83e2b993ca5f2a57b3dd983c80a0ad2bba1dd4d0fa5bc161cded304698c45ef23fbabb9cc670e85f30d4c1d32a3b22f4732ae6fee82c737cae0cc003103ee8a0

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    29a9a286b4529e5b1f78fbe7518930ed

    SHA1

    e03f7b8e64d9de353b3bcd778df55513f1e2f8da

    SHA256

    a407791e2a4a8f5472c08f1dc91d215f5caee296e648c580b891ed546a7d10ab

    SHA512

    edf043b034872609b877ca47e1f0db974882c5d0ed6bf877b99ddb581b0d6a3ce320730c726d7e0c088eed63491b1367351ec595573ac04984ae91be6edc188b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    981883cbd173cde992aeeaaf9cd9f5ba

    SHA1

    16916f52c8182503e5ebcf1cf205528a0956a936

    SHA256

    263bfd74e8bf62690b4f31f47e33f4ca7a38b38602dc3211ca1616a165374f5a

    SHA512

    0f71cb0a08c9624813b56f2ac64956c4b0ce7187786fd528fc803fc20a72fffbd292059d3b2b590f2fc17a16ff02ed6d405af3dc6407bf95bad0eeb2db6bd8f0

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    cfe836a704b15362366c72ec461cc8ef

    SHA1

    18c6f1d748ce861b2e7f8a8cecbc6dc67054ed19

    SHA256

    a547e2f5f065c45327d6eb72827aa3531f146b4f53a57a74b9d383cec00026f5

    SHA512

    5ed4cc59acf7d248b4c9e03e460fa601adb1560afd551bae645c57417b1b256c573676732240cb2153e149eeb8a58ed090a8071875046814a4bf55e8cfc0d9a4

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    7822779b615206ff2cd668b0251fce7f

    SHA1

    19342b1e7643b464eacee85360e860695b263b67

    SHA256

    96ee7968bdc378191c8125cfa7dd5ea603384a3e9411506470267427175bb471

    SHA512

    4d5556de048a981d0792311ab338973baa665764f53af49e00700dbc20fc83237c2ccce600535a3a3500b87aa9001a4c03dec6d6a039ae11443fb1cb871b0c04

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    456520cfa1e71351befdbbd2b982f395

    SHA1

    06ae4fb4e8067ce5ae24e7dc4d6d209673087083

    SHA256

    95bd6e3cecb70481152d596d2933638265d886c92a061a93a8011678475d4f4a

    SHA512

    a77b5b856f00cdd4a7ce378b9b22e2076e9dac3674c0cb1f14b31bac29d761254461a139cbae60fcdf445bfc73cedfe02f814e4f0a683036d11eb8becd328879

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    3a76bcb9eb8fbfd4bf759486ba07d0e0

    SHA1

    5c21c80e4fc2d59a55f4addbde107251080324d0

    SHA256

    bfca7f9909f5637716fe9f9ec90f65d861dee1291ecf639af87591262f61ad8d

    SHA512

    2623db8070d0879430c7905003bce3d28d148966d66e7cb649be021b0feb5176f99d16b328e0c41fe7104635a3d80c941ce4c1e27c87fe402d7a29ecd4c4a166

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    20c6f7a353686008b2a97b958e8dc3bf

    SHA1

    24e17cc804d1ff9201032ff523c7b13a8d0b9322

    SHA256

    e15a21a67d31f832546b11598b3d45e1832a8420baefa739b07cb69f1e69f17b

    SHA512

    9e0e5082c3b059a6ede10eb6c9a0ce9811e9bf6d4a8426b3d6658a47249f34cc458412e9298fff79850ae140c839f54bc14c3da42d841b58353335f9f100aba9

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    fd05da67462a0a721913c713ba977403

    SHA1

    a3f3d17cf05e8bf2284a77920dc4bf7c5882673e

    SHA256

    c241f25fd763a2ac9b6be3a021eb0d63e966c75ee64e806ddc265e5576b9ec77

    SHA512

    78b9a4ab88f7a22ff893dee4b3a29b979f393527f5e545b380a916fd7ebc7b00714018081210e40bdc206c78fea695bcde3b3ea2a02b402341dff2c676ac6d0c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    7e39f53b77142958d4426440346154a1

    SHA1

    a57d4d720490d243e921d0f8194a900c2a52877d

    SHA256

    794f77416a6e4d0f8c77fd74cd28356da406e32a2f3445b08007819eaf00971b

    SHA512

    4b97217de9a380024e114bb74118bd0eef606b588c0f1225128302684d4f8270cf9928d7d5c879a11c3f9416cb402e9a7eaaec18f874ae59438db2c2ab58ea3e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    95fffcdaa6d32fd82f5c354dce5bf537

    SHA1

    3b300707b68caa75ae98c7b5cbf7c71098068255

    SHA256

    adb823ed324b2699bfa0ac593eb1665bedb591dad828a9a4d4f5a93ed1109220

    SHA512

    597babf30ad326709d473338d8dcfed73749f009ab4a6f96a0debdbd835b9989eae009352502f154311a0a6c8bad23b91fbbf77ef2a0efa56cf57189a478bfe1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    91acab406561c3322b9a7474e40b69af

    SHA1

    beaa8b9cd442f8d8d03fa58c9cdb2fe5fa36b8ac

    SHA256

    bd83e73dcbf6f55649043eeb34c741141f1fd162e8ea85492f6b39364f93208d

    SHA512

    ff18a069f58d59fae3ff9e7736b9615dd5d9d768fef43495893302ffc7960ec7d2f925ed300c9cd216db45484caf4d925328216fb356f33f242467f39491affd

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F0ACCF77CDCBFF39F6191887F6D2D357
    Filesize

    242B

    MD5

    d5880baf025046cd6dd100da0fd2b08e

    SHA1

    3b7601fa19decf3beb91c9ad9358c30ff12e4d41

    SHA256

    cfcb0872fe9c20b8fce03e54be6755f5c33b9430059430d046f9b351bc15a336

    SHA512

    04fbc4894a5d7f7be064611e9a9949236f5fe721b6c2bf3147f063f216c3f77d67e28b3dee478edb1ea74c9ab877295c2d5eb84817d2cf368755c0d9ee144695

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\Internet Explorer\Services\search_{0633EE93-D776-472f-A0FF-E1416B8B2E3A}.ico
    Filesize

    4KB

    MD5

    da597791be3b6e732f0bc8b20e38ee62

    SHA1

    1125c45d285c360542027d7554a5c442288974de

    SHA256

    5b2c34b3c4e8dd898b664dba6c3786e2ff9869eff55d673aa48361f11325ed07

    SHA512

    d8dc8358727590a1ed74dc70356aedc0499552c2dc0cd4f7a01853dd85ceb3aead5fbdc7c75d7da36db6af2448ce5abdff64cebdca3533ecad953c061a9b338e

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar3A48.tmp
    Filesize

    177KB

    MD5

    435a9ac180383f9fa094131b173a2f7b

    SHA1

    76944ea657a9db94f9a4bef38f88c46ed4166983

    SHA256

    67dc37ed50b8e63272b49a254a6039ee225974f1d767bb83eb1fd80e759a7c34

    SHA512

    1a6b277611959720a9c71114957620517ad94541302f164eb872bd322292a952409bafb8bc2ac793b16ad5f25d83f8594ccff2b7834e3c2b2b941e6fc84c009a

    Download Submit