Overview

overview

1

Static

static

1

3b922955be...8.html

windows7-x64

1

3b922955be...8.html

windows10-2004-x64

1

Analysis

  • max time kernel
    131s
  • max time network
    140s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    12/05/2024, 18:49

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    3b922955beb8e26a5936d02e2e875019_JaffaCakes118.html

  • Size

    46KB

  • MD5

    3b922955beb8e26a5936d02e2e875019

  • SHA1

    9b5a969372940681832c1b8731842c3b12352a0c

  • SHA256

    027cdf283fc39084498648eb59f8aedc21b973b3e65170a74d7f231762aa7460

  • SHA512

    a4cde2219bb42f242c0c132bdbdb6cd42c48175318ad616cb3143ed60135c600bda9269889888c9840f527fc46b54af14724edaf47bda4ec5234d7f9df0e281c

  • SSDEEP

    768:VqmyWd38bQTDpZbpR9ecby+2bcdl1MrOOLre/GBZ:VqmyO3RD/93u+2bAl1MrOOLC/Gn

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\3b922955beb8e26a5936d02e2e875019_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2860
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2860 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2564

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\24BD96D5497F70B3F510A6B53CD43F3E_3A89246FB90C5EE6620004F1AE0EB0EA
    Filesize

    1KB

    MD5

    84721cd35068ddfc92aa0a4c829fbd2a

    SHA1

    71d7e227e0f3fcbb585598d0f3757a8935b748ce

    SHA256

    bf8250097eb58e963c7cd636093d2a332647af517ad22ddebe1765703b8dd199

    SHA512

    f08b89715c28ae36927316d6fca1716dbd9e935edf9d7e979586c4e4610fc29c83514e2385dbf43e7227f8275603c5cbd85c2a098be6ada95aee1a24c5e23dfc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\3C428B1A3E5F57D887EC4B864FAC5DCC
    Filesize

    914B

    MD5

    e4a68ac854ac5242460afd72481b2a44

    SHA1

    df3c24f9bfd666761b268073fe06d1cc8d4f82a4

    SHA256

    cb3ccbb76031e5e0138f8dd39a23f9de47ffc35e43c1144cea27d46a5ab1cb5f

    SHA512

    5622207e1ba285f172756f6019af92ac808ed63286e24dfecc1e79873fb5d140f1ceb7133f2476e89a5f75f711f9813a9fbb8fd5287f64adfdcc53b864f9bdc5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015
    Filesize

    68KB

    MD5

    29f65ba8e88c063813cc50a4ea544e93

    SHA1

    05a7040d5c127e68c25d81cc51271ffb8bef3568

    SHA256

    1ed81fa8dfb6999a9fedc6e779138ffd99568992e22d300acd181a6d2c8de184

    SHA512

    e29b2e92c496245bed3372578074407e8ef8882906ce10c35b3c8deebfefe01b5fd7f3030acaa693e175f4b7aca6cd7d8d10ae1c731b09c5fa19035e005de3aa

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\CAF4703619713E3F18D8A9D5D88D6288_A7725538C46DE2D0088EE44974E2CEBA
    Filesize

    724B

    MD5

    ac89a852c2aaa3d389b2d2dd312ad367

    SHA1

    8f421dd6493c61dbda6b839e2debb7b50a20c930

    SHA256

    0b720e19270c672f9b6e0ec40b468ac49376807de08a814573fe038779534f45

    SHA512

    c6a88f33688cc0c287f04005e07d5b5e4a8721d204aa429f93ade2a56aeb86e05d89a8f7a44c1e93359a185a4c5f418240c6cdbc5a21314226681c744cf37f36

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\F0ACCF77CDCBFF39F6191887F6D2D357
    Filesize

    1KB

    MD5

    a266bb7dcc38a562631361bbf61dd11b

    SHA1

    3b1efd3a66ea28b16697394703a72ca340a05bd5

    SHA256

    df545bf919a2439c36983b54cdfc903dfa4f37d3996d8d84b4c31eec6f3c163e

    SHA512

    0da8ef4f8f6ed3d16d2bc8eb816b9e6e1345dfe2d91160196c47e6149a1d6aedaafadcefd66acdea7f72dcf0832770192ceac15b0c559c4ccc2c0e5581d5aefc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\3C428B1A3E5F57D887EC4B864FAC5DCC
    Filesize

    252B

    MD5

    686b1e28b44362adb3d4fc20a324fc95

    SHA1

    de3c991b56600d5dd688b0cdf245e3e354c05847

    SHA256

    f38f041e9ac9651730ab9ebb679ef45fa78c5a68008969c2d363971ca94690d2

    SHA512

    f55a8a31687e11b27c4ef88079f7203a037ef20d65b52aa71a6774f5be6a7c9e318a6c33c94212700534c36e81751b56838325313f8e0ac526feee6420d3edef

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    35244d7d52070bec898da6e9ca940405

    SHA1

    322406efdfea25a653bacca6eda7b908f7556dc8

    SHA256

    065ee75941b8722157ffff91e89b3f93a5bb2de010b19e6d5d55baf0ac0e602a

    SHA512

    704c896741b657fdec2e404f9c9fcb2410e9cba655e06788dc548dd65f4205b7c8a93e65f3ef548dfb6527afd93d121e310c5d9b7bf58e5bc05ee4b848a08de2

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    415b5e1f4617a5fbad767efad975ec56

    SHA1

    dec54d3d2aad0906b4fa6ef7b4a0762060dee383

    SHA256

    3dffb6a93a4fdeb0716bc0a6d25bd6aa627ddbda8afc968f68d2e0102d3ecf57

    SHA512

    eb7c4e511333f7511789379e6db8f0491a8282ef5923c71a8acd1aa5aafe75a3110f30018d75462964fa918475d60ec0695a0c560b91c9b54bfeffc9f870a2d9

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    9c8c276735f93428a24e3126c7cc2765

    SHA1

    c22e1e94d711b2715aa2068c26dc34bbb9e82cbf

    SHA256

    e615e14c2c7a569b798ad9826439076e4a1dfc5265bcf9df528008deb2c2b281

    SHA512

    aeaab757bd7a27fba0ffe6db71eb0d6ebdb08116cb7fafb33ef7fafdab73bd19b1579129a78772691f2440c710d03b3b68480b6f7f42fa98c142036b5bffb251

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    8248d3e9509954fb88377fd8fbeacf8d

    SHA1

    7b09e80e8f4ec14e0852af9f23ad5bdff3b55451

    SHA256

    b15f3010b4dc2ac50e29f70a4777926175e8f7fdfe1b6107a2a1f1752af114e7

    SHA512

    b6d328b99e7e61a420a550658a44e7f830ecb5c19345958265abf97dc0617140f9ea55ffb0b76483b30aea9b32c6f06ca19925bfa86be61ee315a1e13ec93f9f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    6f6efc2faeef425566292960aebc7684

    SHA1

    a842b929e4bca3777d3edf27aea66fa397e20070

    SHA256

    bf761fd72cff11be0c387d7293c0622de24d9632979b2694527266dfef05b8c7

    SHA512

    92ae31496b7e452a3560eff3d31c4bab0c31478845d58073458c5bfec9b95bf7371cec38c2df49bb7eaf023bf9e158cdc36c9082022112b303f942af450e506b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    95c0c02190fc5bb1e9420de7e8d04f90

    SHA1

    13ef6650296dc9117fa35587cec79954ba4207dc

    SHA256

    9cc717b92238bd2423877d97c20fc6fb609c11c7d7f3458d6eb9ccbda349dfd6

    SHA512

    ad61d6a1bf57172918e057c5000c6e90323ff7e7081a0813d3af9de753b09e229f0320f3bf2976065659ee8335e08efb8c408a2af66657530371eb6899af5d90

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    a8e1b863e4f6f649cc17f1c69a34d21e

    SHA1

    1b3b0b18a9d50469d1259d1304ba0fb54b98e9ba

    SHA256

    3a9db8a667a97a8dbec0c436bafbee8ea6ea8e6a195977f56d6a2677e0e80854

    SHA512

    b4567a1c47d001a304f4233fd2364b1cfa066b4026becef173fe75544ef5e68fb6b05d577feba23c227572e7ed3af159233b417c0370712592f27a173b1bf6bd

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    579e3db400049165d7afaf47f6bcb25a

    SHA1

    1224e20e9936f7871760911693bdbb57c9f875d1

    SHA256

    5bc99632ef6ac1fb9e0b65fb52e0f04ca479ee6674b8e4623ea183f8fe08ad1d

    SHA512

    7b3f67260d6903e3653acc9b0a5d08c1ce065f70e02dd254ca2a8f600e60293aa92dc4bf2654ad155e0158e477675b091ca150cc5fb6b818cbc3ef8650bfdc19

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    6a4c90d82170b55a75bd09582bff5877

    SHA1

    fb52d463384b9dbc613f8b93f76d4416966c73ce

    SHA256

    173b55b95c9da78f44951977226b00089d4af8a168046d2cad49720f88de8d8c

    SHA512

    2325f04ae2dacbdb2a3745eabae5c4dae60cbbc25c890648398e821644ad1a3fa680d2862ff3c57b6457e50f3cf24e8091e139e115a84a26546965bcf5e38582

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    fb9fed5c78715ca9a36dd59590e689ee

    SHA1

    71af0d6bd94d4dea327b565e47971fb08fc64270

    SHA256

    84682f3aec15769f6541ae6b4d7a37287bba23735c4241c402ffe3077aad6b5a

    SHA512

    439782ed1fb2936a0b60a74db70aad881003049f2c44066488c3e61fbdc945e6698d41e88c00d00303fd33638157d99a4ca0e9109e41ae37bed203218082763a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    f6b01cb79c4811dfc9174414f94c1635

    SHA1

    fa34edcd9d71704b38245f01d9c967c6c34ded0f

    SHA256

    78ee17e0ebfd7932e783ce6af9ed72353626ab77d22f8a28c9b06665997926ba

    SHA512

    ebc49ae8c939bf4ab4c8814703e1cd5114823c9133323316fd1839bf19c6ffc3add2e9b557033d31cf19a81f5e71438bb076420e2f943fb8626d2e2ebf0d7cf3

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    8daba385fa4ec93df42c1fd9fd324e5b

    SHA1

    5371bfe77e79e96853e93efb261bff3f2b827f4f

    SHA256

    a6bba19d810a7a89f9f739edbff43ba819d330099316f528921871732c1e204d

    SHA512

    bd3461f2c5dd560c34c0ec3545dd37ee56e81beaa80483ba9cddc9a464f3d6ac1b15a1fd9bcde126c23f3532ba692fe6419f29f6c0fd2c8df584f57c84296be8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F0ACCF77CDCBFF39F6191887F6D2D357
    Filesize

    242B

    MD5

    f833c777633b1621858e60e554e09cdb

    SHA1

    2c385b02752cb26cc6d452da1f06b267ad800986

    SHA256

    42800e9164b26723125989f0450f40a87067db7d99876c01559c4f6176598b38

    SHA512

    f5c3e836de55fa810fceba51455a28895e11710723fc28341ab851497b8fb1b8f10967ce1eb6741e631f85c2ba9e9c1326c6b04800f57506dda9a04c72440f03

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\4JZQ5QLK\cb=gapi[1].js
    Filesize

    64KB

    MD5

    63e5a0b45632b3dde3694ffcaf0e3f7a

    SHA1

    923736d0cdc308331d5cfaa0ea159bfedc83d53f

    SHA256

    889109910477919b3457416e7764bcd0add19fd959848253026125c7c35c43db

    SHA512

    5b886c4b5122d61f0209ede748aa84445c9388cf38813316c41b3dbd2308216e88394d9a45cfc27113c0cf3bc93b9c37d808f6d3c67888244c176ee095d42259

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\9ZQLLOZN\rpc_shindig_random[1].js
    Filesize

    14KB

    MD5

    23a7ab8d8ba33d255e61be9fc36b1d16

    SHA1

    042d8431d552c81f4e504644ac88adce7bf2b76f

    SHA256

    127ffe5850ed564a98f7ac65c81f0d71c163ea45df74f130841f78d4ac5afad5

    SHA512

    e7c5314731e0b8a54ab1459d7199b36fc25cd0367bc146f5287d3850bd9fe67ba60017d79c97ea8d9a91cd639f2bc2253096ce826277e7088f8abfe6f0534b63

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\OORQXHVT\3604799710-postmessagerelay[1].js
    Filesize

    11KB

    MD5

    40aaadf2a7451d276b940cddefb2d0ed

    SHA1

    b2fc8129a4f5e5a0c8cb631218f40a4230444d9e

    SHA256

    4b515a19e688085b55f51f1eda7bc3e51404e8f59b64652e094994baf7be28f2

    SHA512

    6f66544481257ff36cda85da81960a848ebcf86c2eb7bbe685c9b6a0e91bca9fc9879c4844315c90afd9158f1d54398f0f1d650d50204e77692e48b39a038d50

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab51DA.tmp
    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar5569.tmp
    Filesize

    177KB

    MD5

    435a9ac180383f9fa094131b173a2f7b

    SHA1

    76944ea657a9db94f9a4bef38f88c46ed4166983

    SHA256

    67dc37ed50b8e63272b49a254a6039ee225974f1d767bb83eb1fd80e759a7c34

    SHA512

    1a6b277611959720a9c71114957620517ad94541302f164eb872bd322292a952409bafb8bc2ac793b16ad5f25d83f8594ccff2b7834e3c2b2b941e6fc84c009a

    Download Submit