Overview

overview

1

Static

static

1

4035fa58c8...8.html

windows7-x64

1

4035fa58c8...8.html

windows10-2004-x64

1

Analysis

  • max time kernel
    149s
  • max time network
    150s
  • platform
    windows7_x64
  • resource
    win7-20240508-en
  • resource tags

    arch:x64arch:x86image:win7-20240508-enlocale:en-usos:windows7-x64system
  • submitted
    13/05/2024, 15:43

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    4035fa58c81d1421ee75f2564e2f31af_JaffaCakes118.html

  • Size

    19KB

  • MD5

    4035fa58c81d1421ee75f2564e2f31af

  • SHA1

    e0796f6f38342d4a061555c55cdfb73574a34cf5

  • SHA256

    617eb2a85f0173bb6ac7af3b9ec4ebb365c0036a93dabd0db8c16e3e8b92d89b

  • SHA512

    3f292212d82106359b34c7a86cca131db8f97c508121f293b176ca1904e6f298a241b8039f9be1f57cbb30e4010980565f242ea2b04485d3d5b5e663d02c81e3

  • SSDEEP

    192:SIM3t0I5fo9cOQivXQWxZxdkVSoAIE46zUnjBhGI82qDB8:SIMd0I5nO9HTsvGbxDB8

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 26 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\4035fa58c81d1421ee75f2564e2f31af_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1612
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1612 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2996

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          ad2ee2098f1b6842dd8a74dfbacdd0e5

          SHA1

          1c08746a7f7b44c73ac07cd9f43f93f4f7bd2c88

          SHA256

          9e9981b24db2b06dd23f263b066ba2d5b5453dc8bf2124eddee7a8d2d4e78172

          SHA512

          1295eb2666fe7b7703243171ef243c9c6d4195bd6f5110eb3906446512d6af2cf02ce44a24506a9d174e4ec7577c21776d0608e0e881a1701407cf7b536e5b17

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          b19402e9d7dc4d54d6425b61cc429c1c

          SHA1

          ed906db8dd606ad75ef5155359831a5d55e3d5e9

          SHA256

          d1f32a83ce8a81a48fc0026e494f4c5328b61154cba1aca45dc7d82f5144929b

          SHA512

          4ce0bb02ee4da3178ac65f73c3d31c79644dab6098e236b0069e70bf5ed7442c7f399732c2ac1f3b8115c2412afb903ae4b01ed8c44f51ecc9c6c84f2256dd81

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          67904154e01eed7c83f8e88190d8b24f

          SHA1

          f20a4e7b105441cb59ef70e3d8cb07a9e149974c

          SHA256

          c750268ad17eac38f95daf3ec3821c57dc52330dd6683045eafb78ffd4a1dac8

          SHA512

          1174f6320be0d187ec452c18232dc3ec431a0d7a67320c8649910b78d08b3c7ff6eed9674f622723fe1c7bd6555e811af068306d1e8eb2260e79cf13ad55f55c

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          337e1dae6f13bed9ee569b2a9914843a

          SHA1

          2ba053e7545c27a474e8d46a0408274be1d907e8

          SHA256

          c4287982ef2b13f9f32f74645f8d97315f497a3cbd367e75740617ed29a5d521

          SHA512

          db8b0fc2ca2d85b8601534222cc0d695bc0be62f722ae29c11ae07b236fb3dbed29c9d1510b42ddb9b0f8ff4708fe72d3f6619f0d42acf9847d127a6ae2001be

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\Cab1086.tmp
          Filesize

          68KB

          MD5

          29f65ba8e88c063813cc50a4ea544e93

          SHA1

          05a7040d5c127e68c25d81cc51271ffb8bef3568

          SHA256

          1ed81fa8dfb6999a9fedc6e779138ffd99568992e22d300acd181a6d2c8de184

          SHA512

          e29b2e92c496245bed3372578074407e8ef8882906ce10c35b3c8deebfefe01b5fd7f3030acaa693e175f4b7aca6cd7d8d10ae1c731b09c5fa19035e005de3aa

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\Tar1106.tmp
          Filesize

          177KB

          MD5

          435a9ac180383f9fa094131b173a2f7b

          SHA1

          76944ea657a9db94f9a4bef38f88c46ed4166983

          SHA256

          67dc37ed50b8e63272b49a254a6039ee225974f1d767bb83eb1fd80e759a7c34

          SHA512

          1a6b277611959720a9c71114957620517ad94541302f164eb872bd322292a952409bafb8bc2ac793b16ad5f25d83f8594ccff2b7834e3c2b2b941e6fc84c009a

          Download Submit