Overview

overview

1

Static

static

1

20964c94ab...8.html

windows7-x64

1

20964c94ab...8.html

windows10-2004-x64

1

Analysis

  • max time kernel
    133s
  • max time network
    145s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    07/05/2024, 12:39

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    20964c94ab6d9bf15be56adaf6b1ac71_JaffaCakes118.html

  • Size

    143KB

  • MD5

    20964c94ab6d9bf15be56adaf6b1ac71

  • SHA1

    6a593963e5cb10461fcc6b49d895e418f8f99778

  • SHA256

    7523d19b0713e610cf14d6b468cbadfd470b7384e2be10b69ab57c3a88e17e72

  • SHA512

    071c65da050c3e9fa842920edeb2481cb6004dfdc31394a8974e164e0871fd839f709321401b87f1c94f97aa4635266b7b3d3fa1552277b34d0eb17a547e450c

  • SSDEEP

    1536:SfTeEmSs1WYBT8E3ATVhx76vuyLi+rffMxqNisaQx4V5roEIfGJZN8qbV76EX1Ul:SUZWvx7dyfkMY+BES09JXAnyrZalI+YQ

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 31 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\20964c94ab6d9bf15be56adaf6b1ac71_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2768
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2768 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2888

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015
    Filesize

    68KB

    MD5

    29f65ba8e88c063813cc50a4ea544e93

    SHA1

    05a7040d5c127e68c25d81cc51271ffb8bef3568

    SHA256

    1ed81fa8dfb6999a9fedc6e779138ffd99568992e22d300acd181a6d2c8de184

    SHA512

    e29b2e92c496245bed3372578074407e8ef8882906ce10c35b3c8deebfefe01b5fd7f3030acaa693e175f4b7aca6cd7d8d10ae1c731b09c5fa19035e005de3aa

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    2ccda0fb1ca1e170a26be1b430c98d3e

    SHA1

    61b42bdba29bf15a17351d78ffe11b1b4bc8cfdb

    SHA256

    b624b5627145cdcc3a4e3bc9cfe2d4dc39a08ea7baff9b35a909f1d39cf05820

    SHA512

    100b0f7c288062dbeb3c6d7525513ae771fc37220382cd2d04eb327821ccc59ac8e45486714cf39b01ccdd06c5661bd586489affb4d51b49cb5105b8a052b9e4

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    b11d2209c644645e31c9a3b5f2fa417e

    SHA1

    7ae223191ae79a01277c49466443330c485c2cdc

    SHA256

    c212719554c3f291187b88430984982687b07ab6a4a5dd01f12cfb42935b8af3

    SHA512

    a1f11d346eba89d6d8c57f7498f0c58ea9a85c33612c143b3ea3833aec1165287312d522f0948e0f6290d2becd390bc7cb598a03e3a803321e9c69af424f4162

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    c0012086a3a4e8695c4c75e2dc5cddf2

    SHA1

    2010d0f6745750ba76951618113101cac2495373

    SHA256

    ce6eb0349c9ce6ad00eec5aca14172f8c97e37f0892c4ccc1cd506e399c40a37

    SHA512

    bb2a9a7bb21472c7103adcb135d3f20e979d09581f89c5e5896d77197f017a41b6df611dfae7c4a617989386986e7d2af55d786f7b9e62306aa24f5cec2b4f4f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    93b1e86e1e87f984a8367bf2c102df11

    SHA1

    ef35d79c073034621921825102bbb18af74c513f

    SHA256

    8a6404611f6a16bdf350e01e22c3d4d918ac444ba38de796d828000f03bc6b12

    SHA512

    4b53a9f3498a512e148cc9c949b6563c0990df84b7ee9d01ffaef0d8564400abc2e572ac9951b9aec2843a71e563d2adb5e4899767ddc468a808bc7d50f0baf9

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    b61e13f401bfeed651f756a234b93177

    SHA1

    085b9c6a0e63594de197570f8eb5225a573e99f2

    SHA256

    f69523ea940e65681d79a80db20f7a719b0378f197405a317f43ed8088c556ec

    SHA512

    925c6f499c78408502fa0814a74e536b27e70161627b6125e68e2d1cbbdad25bfa38510609a6c3557910d1f5fdf0a7990710802b380ff0318bc2fe9d2350bdbd

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab983C.tmp
    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar9A36.tmp
    Filesize

    177KB

    MD5

    435a9ac180383f9fa094131b173a2f7b

    SHA1

    76944ea657a9db94f9a4bef38f88c46ed4166983

    SHA256

    67dc37ed50b8e63272b49a254a6039ee225974f1d767bb83eb1fd80e759a7c34

    SHA512

    1a6b277611959720a9c71114957620517ad94541302f164eb872bd322292a952409bafb8bc2ac793b16ad5f25d83f8594ccff2b7834e3c2b2b941e6fc84c009a

    Download Submit