Overview

overview

1

Static

static

1

20f3f7b8ac...8.html

windows7-x64

1

20f3f7b8ac...8.html

windows10-2004-x64

1

Analysis

  • max time kernel
    147s
  • max time network
    148s
  • platform
    windows7_x64
  • resource
    win7-20240215-en
  • resource tags

    arch:x64arch:x86image:win7-20240215-enlocale:en-usos:windows7-x64system
  • submitted
    07/05/2024, 15:38

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    20f3f7b8ac861686b2525bb7a6a2072b_JaffaCakes118.html

  • Size

    27KB

  • MD5

    20f3f7b8ac861686b2525bb7a6a2072b

  • SHA1

    845f982803a14468e4597fd422eaa1ae0b1b6bad

  • SHA256

    7a9a24f57fb904ca2cd7882ed71566a874e295ff893b060650b8b14e59fe4263

  • SHA512

    73f3389ede49ef14badce16a8807ae00f282f75db9f746324c245369569b891ec44f3ad05cee4ba015c0a3ea06057b3ba1801b835585d235d71d7b350c3c2a10

  • SSDEEP

    384:V8YDwW3Vpmweurs1IQLmN6cQsQuIfPvqq4uXCPmlK3X:OYDwW3VpmweaslLPcQsQffPCzuXCPm4X

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\20f3f7b8ac861686b2525bb7a6a2072b_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1656
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1656 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2536

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\3C428B1A3E5F57D887EC4B864FAC5DCC
          Filesize

          914B

          MD5

          e4a68ac854ac5242460afd72481b2a44

          SHA1

          df3c24f9bfd666761b268073fe06d1cc8d4f82a4

          SHA256

          cb3ccbb76031e5e0138f8dd39a23f9de47ffc35e43c1144cea27d46a5ab1cb5f

          SHA512

          5622207e1ba285f172756f6019af92ac808ed63286e24dfecc1e79873fb5d140f1ceb7133f2476e89a5f75f711f9813a9fbb8fd5287f64adfdcc53b864f9bdc5

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015
          Filesize

          68KB

          MD5

          29f65ba8e88c063813cc50a4ea544e93

          SHA1

          05a7040d5c127e68c25d81cc51271ffb8bef3568

          SHA256

          1ed81fa8dfb6999a9fedc6e779138ffd99568992e22d300acd181a6d2c8de184

          SHA512

          e29b2e92c496245bed3372578074407e8ef8882906ce10c35b3c8deebfefe01b5fd7f3030acaa693e175f4b7aca6cd7d8d10ae1c731b09c5fa19035e005de3aa

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\F0ACCF77CDCBFF39F6191887F6D2D357
          Filesize

          1KB

          MD5

          a266bb7dcc38a562631361bbf61dd11b

          SHA1

          3b1efd3a66ea28b16697394703a72ca340a05bd5

          SHA256

          df545bf919a2439c36983b54cdfc903dfa4f37d3996d8d84b4c31eec6f3c163e

          SHA512

          0da8ef4f8f6ed3d16d2bc8eb816b9e6e1345dfe2d91160196c47e6149a1d6aedaafadcefd66acdea7f72dcf0832770192ceac15b0c559c4ccc2c0e5581d5aefc

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\3C428B1A3E5F57D887EC4B864FAC5DCC
          Filesize

          252B

          MD5

          48bbfa3f8ffb7a5795682968978ca153

          SHA1

          4b6a907fff8bd5777c056a88d6035a129bfac33a

          SHA256

          e039f8169c691721d36c2a25a61639de22e0f60c8d17f4441840219146c67c1e

          SHA512

          dfebe0bae027427996ee088fcdd9b8aad42a4d93d93713dd500bc43cb21768e1c7bd9963b40e65f4026a2bfe97588e43b66465dd541064e3b48f5aabf6bef59f

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          26f261a3955b560d1f903ba9db7a1452

          SHA1

          c4018a86f52a5e1f5b715e175001262b5b2ed168

          SHA256

          1de3f6f4ca1bf33485977b60b81b49e795f5b73a8e13a5b7944297437dbdf92a

          SHA512

          bfe3aaa98334106df35929100e4ab99ddc88089c3724a31df61431da3f2c46663c7eb2c04ecef0f297189463fb1d112039f33d50bdbd64c9f5527d687be12bd0

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          ac47b58f29944b3eb78cc77559eab828

          SHA1

          7e2ff423c60f91e5a539471196b820aa0176c4b4

          SHA256

          c3e20e6548f00a3199d11051dbb77e74cf96fa0e69649d1c9cc1c5f0de497160

          SHA512

          c82c912a1cfafe72785fa6090b7786f897ad4fb460e55eebb4ba297f591827525ff779643ae12ea1e39e9a4df56bbc64e1bafb22c6afb92332eab5f6601b8fa0

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          3a9638be55f96e19f1b40e7f2d068825

          SHA1

          b9619e188eaf5a2b5c72af557fce5e2b0746bfc2

          SHA256

          a8f5e45200a6ae78f5e9aaaa8de9b622b6fda89aee204cb93abd12fff96cfe0a

          SHA512

          5f2986b13da1ca6155031ac8be1a0ba6c7a74bd07ff5d52465efe84872481c2e5de9774383b81d8a8c397e80b26adf2853f8d44ea2c6bd70003bc394a09ff878

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          0081190d0355cd65a71581c81d8e2483

          SHA1

          ff0c505202adb808ef997acbf6d73c20570ecb0e

          SHA256

          aceec2eaf7c9e429aa44e34838c2ecd9dc20b1c28fd433dedb304fe5abd0518f

          SHA512

          868fac6f25f32ea03b3798ce6684d02408828ee1a175b6d604ce68427eee7ebf0f2c8d13d068b979ebc81e9b8c17213cbfa500b78cfe9157dea41419317ed1af

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          e5cb8c7c3d4bcc8ac1e1a46db31b9c69

          SHA1

          ef3086a92968c7f053ddf03c56d96e6f872fa0c0

          SHA256

          ad5874ae8a8318e927df06dd1ddcf53501967a82957292b21374f909ee71016b

          SHA512

          36ca88b42a7caaa33cb669561aaaf4fd69018c8215cc7f87eb135436384e880119fb629428d58eef2a56f8db925f384548dea58e968e89c4d37d16c0164fab75

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          c915cf4119cad912ca68530e82e79b64

          SHA1

          5cb8de2567cad6e08ab81b466f2f383f3d3e4853

          SHA256

          b4b1b319b83444b9fb3627a65dd7da267aae22dd951765b79f37d7efb393ce1b

          SHA512

          7156b2f302af1f51b6ecc15cd10d397a4779dce006a4e74b75e5549cc2375d5d19eb97e9c3b1b50db93e948c584239c308d5aecaa1f1b50f175765853f92db27

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          dc9e333adeb5a9e2621320121e53b433

          SHA1

          397e824718e4b7874ece140eb7253883ae40a060

          SHA256

          6c3a2bc82af1d2da5e514f0909940babeb8592d8ff057416e6c4f2562d9ca8fa

          SHA512

          1ea65d82def3d3e9b1f8629a92c2c94e9384d532231b56e1f7147b6b15c2362e177293d3bfad5fd6e9ac70a44212f909c455cdc707d8ba06409292b31355b641

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          e271531256117e9fba16c19b0038ffc5

          SHA1

          dc342c7c8ba6b422d11aa082cd38da90bba49a7a

          SHA256

          bad3ebcfc76d55e64f5998d6e98991cc35f7d1e909aeb479013e47ac6552834e

          SHA512

          8c0d89f24c32fb0b10f453884558e2f7c7eca6b159444c085841e7a7981b8f68abef9691c7cb1c6b68ca5b95f1df51cb8239e016c82e37203957dfc28b68d41a

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          23b3f94104113bb4e67a37f5ba7472ae

          SHA1

          c67373c6f05292aaca14eca219df48498fe0eaae

          SHA256

          53f615667e61d811dafeeff598995ae38c465c604b4e0f15e19bb82f2c2704e4

          SHA512

          c1bc13c58b4f85fa206e9163e233f7d038a5a21772f56677b410435ebad38546372334d8fbf0628d27980012fc3e14794a8c834ee057b0679644d9cff259f551

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F0ACCF77CDCBFF39F6191887F6D2D357
          Filesize

          242B

          MD5

          3f685bf4cd429fcf8d6c1226450288af

          SHA1

          bfb6ac564aed665a959608f0e8c67f2598bb8167

          SHA256

          eedcdf2f2fe9968498a7c60a46fe6dfa73c05e2fc439c33df21204d8ae503d2d

          SHA512

          3acd3a0599217e636462a418c85471fa9f6a37969bc39fc5774f7a1a35b8288bcd1a0d57c9a5e9d939b39c49a2dcbe5330b75a279c5b53c86aaadf365dc54bbe

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F0ACCF77CDCBFF39F6191887F6D2D357
          Filesize

          242B

          MD5

          0f4bf27c5a0521690f5b6303b08af61f

          SHA1

          f7767ceb3d88955ad55ac39dce64d9978444bcfe

          SHA256

          e87d40fd1c760a18a592090b5fdc472d535e9e00b51e5cb4514b0600e1df1384

          SHA512

          a144dfb64661d66d5ee54f793ba3b9488021e8a0fa51c8d42a62157640e4bfcd52b6a9af1124f0110dae91935a662c1d8b864ca2d98a60a1de64cb345015dc2c

          Download Submit

        • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\673IEUYT\3604799710-postmessagerelay[1].js
          Filesize

          11KB

          MD5

          40aaadf2a7451d276b940cddefb2d0ed

          SHA1

          b2fc8129a4f5e5a0c8cb631218f40a4230444d9e

          SHA256

          4b515a19e688085b55f51f1eda7bc3e51404e8f59b64652e094994baf7be28f2

          SHA512

          6f66544481257ff36cda85da81960a848ebcf86c2eb7bbe685c9b6a0e91bca9fc9879c4844315c90afd9158f1d54398f0f1d650d50204e77692e48b39a038d50

          Download Submit

        • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\IFGNZ1XG\cb=gapi[1].js
          Filesize

          64KB

          MD5

          63e5a0b45632b3dde3694ffcaf0e3f7a

          SHA1

          923736d0cdc308331d5cfaa0ea159bfedc83d53f

          SHA256

          889109910477919b3457416e7764bcd0add19fd959848253026125c7c35c43db

          SHA512

          5b886c4b5122d61f0209ede748aa84445c9388cf38813316c41b3dbd2308216e88394d9a45cfc27113c0cf3bc93b9c37d808f6d3c67888244c176ee095d42259

          Download Submit

        • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\IFGNZ1XG\rpc_shindig_random[1].js
          Filesize

          14KB

          MD5

          23a7ab8d8ba33d255e61be9fc36b1d16

          SHA1

          042d8431d552c81f4e504644ac88adce7bf2b76f

          SHA256

          127ffe5850ed564a98f7ac65c81f0d71c163ea45df74f130841f78d4ac5afad5

          SHA512

          e7c5314731e0b8a54ab1459d7199b36fc25cd0367bc146f5287d3850bd9fe67ba60017d79c97ea8d9a91cd639f2bc2253096ce826277e7088f8abfe6f0534b63

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\Cab1F46.tmp
          Filesize

          65KB

          MD5

          ac05d27423a85adc1622c714f2cb6184

          SHA1

          b0fe2b1abddb97837ea0195be70ab2ff14d43198

          SHA256

          c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

          SHA512

          6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\Tar20B3.tmp
          Filesize

          177KB

          MD5

          435a9ac180383f9fa094131b173a2f7b

          SHA1

          76944ea657a9db94f9a4bef38f88c46ed4166983

          SHA256

          67dc37ed50b8e63272b49a254a6039ee225974f1d767bb83eb1fd80e759a7c34

          SHA512

          1a6b277611959720a9c71114957620517ad94541302f164eb872bd322292a952409bafb8bc2ac793b16ad5f25d83f8594ccff2b7834e3c2b2b941e6fc84c009a

          Download Submit