Overview

overview

1

Static

static

1

44b24eb9ee...8.html

windows7-x64

1

44b24eb9ee...8.html

windows10-2004-x64

1

Analysis

  • max time kernel
    140s
  • max time network
    122s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    15/05/2024, 05:20

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    44b24eb9ee67aede832b13f8ad84d927_JaffaCakes118.html

  • Size

    139KB

  • MD5

    44b24eb9ee67aede832b13f8ad84d927

  • SHA1

    2752e42e021f8e54febeae13fc15f80becb0bb93

  • SHA256

    d09006524522021883cf7daab471217993f42890389adb507364a211653c867a

  • SHA512

    d47b3f04d71d883e6cb6f1dc2b07f02069ad780feabec57183cf3e2124fa479a5f9c6f955c88a4d50a481d95cf5b3620b677ac3a088bae395211bac89140b280

  • SSDEEP

    1536:SdNsDrZlFdDWyLi+rffMxqNisaQx4V5roEIfGJZN8qbV76EX1UP09weXA3oJrusG:SdmdDWyfkMY+BES09JXAnyrZalI+YQ

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 41 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\44b24eb9ee67aede832b13f8ad84d927_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1464
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1464 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:1704

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015
    Filesize

    68KB

    MD5

    29f65ba8e88c063813cc50a4ea544e93

    SHA1

    05a7040d5c127e68c25d81cc51271ffb8bef3568

    SHA256

    1ed81fa8dfb6999a9fedc6e779138ffd99568992e22d300acd181a6d2c8de184

    SHA512

    e29b2e92c496245bed3372578074407e8ef8882906ce10c35b3c8deebfefe01b5fd7f3030acaa693e175f4b7aca6cd7d8d10ae1c731b09c5fa19035e005de3aa

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    b5d71de6e95a38e07c8e98aa98a828b2

    SHA1

    8f03e057f56140c5ed78b155df9ac00da1b53dda

    SHA256

    86fb434a02c3d677139eafc810d995e66f88f9f6694bbf446c11e26f3eb76c83

    SHA512

    d6db81c9dd5b7bdc8580d604df09bf6a32df27ec059865e34c7101573e19a9cfc70bae43549b2f74c786cd0ce067160894df6ade8215c83904da2dc167eb9822

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    05de75048c453efcf56a8f434c8e4e56

    SHA1

    3a60928f0d1c449db871335de6804bc5053934dc

    SHA256

    7989e84ec0b036b76b27317435ab12ffe7eaa5256ca59ac31167d8f59b909c0b

    SHA512

    2fa5778d2f5c8b40398f536a4b1bd92424ddab7c96239ce9d492a1283645c6cfe3809ce7284d2eb7c6d88707ec588601a84b1b3e4f46718e1d3d48e252dcfcb2

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    33ccd14ad371a27cb1cd574bb924204f

    SHA1

    0334684a6d2a8ef89c9e13cce122db3236d5e895

    SHA256

    90e1e157872feb7a4ef2404528570808fa8e7e3bf75722434ba5840da8995f81

    SHA512

    758a852665cecec6c4159f766ce37d8c123500537e17f09440c2cabd6b236662936cfe3c3a69209ed19c77e9cf7bb501f82a0f3368e4f2ea871990ab82e41bf1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    06dd1696c7e2f6bb892a8f33c57f7f3c

    SHA1

    0038d4ec1f67a5853b719adb4b31255a29903a21

    SHA256

    ff2bd86c21fc19bfc359c063605e43046251b4dc9cd651b8e8d6752d34d9fdd4

    SHA512

    a839e101d2f7928dea1a1ea9e7c50be62bf786673f817b6a61ea92fad0b422d4be06c39cad09b145f75d81dde29de9b4d3ed673848633e343a966ffb27a87ac7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    f4fbc8620d8fdc01b93620623acb7013

    SHA1

    ca9042c260828f4c9c8db6698191b637ef92f237

    SHA256

    bf36f2a2940aa6eacdf7204ed401f1c99d8c9da76bf8b5d566a3138301383df7

    SHA512

    a9d92b594deba7d1c7d5bda4a3f929b727b547bfe0b150b83d190a60f98915430afc62ad0b64212d5b2ea4fabff4b63c94c27547ed70ac77ce6e5870723cc597

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab28C7.tmp
    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar2A06.tmp
    Filesize

    177KB

    MD5

    435a9ac180383f9fa094131b173a2f7b

    SHA1

    76944ea657a9db94f9a4bef38f88c46ed4166983

    SHA256

    67dc37ed50b8e63272b49a254a6039ee225974f1d767bb83eb1fd80e759a7c34

    SHA512

    1a6b277611959720a9c71114957620517ad94541302f164eb872bd322292a952409bafb8bc2ac793b16ad5f25d83f8594ccff2b7834e3c2b2b941e6fc84c009a

    Download Submit