Overview

overview

1

Static

static

1

49bc9ab617...8.html

windows7-x64

1

49bc9ab617...8.html

windows10-2004-x64

1

Analysis

  • max time kernel
    135s
  • max time network
    134s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    16/05/2024, 06:10

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    49bc9ab617f848b5ef286a5d42450fa8_JaffaCakes118.html

  • Size

    231KB

  • MD5

    49bc9ab617f848b5ef286a5d42450fa8

  • SHA1

    9dc4446a8db7683f8be4e91030529dd19c43716a

  • SHA256

    c6a6b6cf5737d859bcb86f57ece21aa6b480b2a963f0024ef72ef640816f4cbd

  • SHA512

    85c766637cc8d278781f4c762fcb990268b0a09154227598846be8b01e7d0ecc19cb11dede6eb22c5881cb5984c6c2b48176c6e488730ac031b5e3a403e77134

  • SSDEEP

    3072:8wasfGyfkMY+BES09JXAnyrZalI+YuyfkMY+BES09JXAnyrZalI+YQ:8hsfDsMYod+X3oI+YLsMYod+X3oI+YQ

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 41 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\49bc9ab617f848b5ef286a5d42450fa8_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1688
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1688 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2856

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    46a7ae34afb48c8efd33971a5e7e6c5c

    SHA1

    e383a0f11fb163d0f24479d71d7046b2e4dbaaec

    SHA256

    c3d9b29ec7a0e72523a3d8a07a75ab18603a6c74383b463bf2362d90b067153f

    SHA512

    2e0877d99582c4590e5437997129e3e1523c0a0d49c5b321a88772d6bf523232ec7a769b6ef196d7751216bc249ca41063d3a0622bc9cf92ff99cf6d70a1a640

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    d18de6c8608946e2ccd2d67ea28b10e8

    SHA1

    0cc3f30481ca246c0d1eb98939c22492e984c76f

    SHA256

    af5c6c5183dcb6152d553ef72cffa690196282d33059567fcf2382a258d3b164

    SHA512

    85fe6baad7d3d4f6aa1c7e3097baaa19c5ef2acbba4faa44e3c03ebf40f9e7c746eacd8611f56b436c6166aae2af33ce7116fd4c335d1b7c093cc98285942c0f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    485e8a5519ed823b3b7fa0001f4082e1

    SHA1

    30c730bdc8dcc6ce6750e322c4dd86a2445e0839

    SHA256

    0f6de229664d27156ee798dae7615cc1302be7082ed28ddb58c5ac73aee2ad9a

    SHA512

    1be8ae6fee78a03341a3da40ceac55ab6da86d6bd72e746b590392fa11853529ca04d231ce0f2a8ce1c6d1342a528cf1d5b34d4693d96009028c462ab1bbd35f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    c5326a6c3068a809b84ec41d797bd78e

    SHA1

    5bb81e64f7339c7379be99f3560c30cc2a00606c

    SHA256

    e90f80b89e9b4039ecc40017d88101cbf6351c71d25b2d4540b9e7fbdfdbf2e7

    SHA512

    8d83a87bb41f526197e37331122968b5574933cb0b89bd3012b35aa175c0a0eeebe59129926ce5d55c322937e4bea9b784f8713239c93d1bbe27c0f22088aa5a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    423e200f988f03112349850bf46486fa

    SHA1

    2fbf1ff65755200aa6b9aa99439cef29650bcdb4

    SHA256

    4a0ebdf57c20cb94be9956d38b0e95c0c5cb71a4eee1f9ebc529c0d77d92fb91

    SHA512

    88acbd5cd3ebb5f0d90b6d2f441caa74052babae2f1888b83e2badc5ef811ba42306c39a6a4a1cbeacc9db9c6811177d6b382840646162a276b8eb47e0d9fa56

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    bfaf89198875cc49d1c868e01b5c63f4

    SHA1

    5c2ac6c684156d46551fd5c7227a62102fa8905f

    SHA256

    6ba0777081baf6c3477db68b30cca197f6642e7be91d73a483c9b5fa97634ffd

    SHA512

    5a927be949e1c72a6d9299444e95e4ea014a9af2736c63a97d9ba14ce7bd8480207722b35bfe5d5f1fe9186dc6373a56f0b6b39f2581ed25672a9af626947bfd

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    0c45e6c439db99d56065df93afed54c7

    SHA1

    8f69167434b8880759c256ce11f1db508a059c15

    SHA256

    c7a99f2990a9f6042c110c04f4497e6003fdea0511c00a54215b7fb0ca2bcace

    SHA512

    e9dc0afce2128749738313af2e92817ffb92d8a4a6b5e32a4017a8c77a110a684baf304fe6436b25c285bbdf08d893e82bdbad2096d6b04747be7d60cd49c8ef

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    f55006f3d88561c40efe69c1d270dd47

    SHA1

    8050a8afe5d75e166fad8274f5b9c43c552e1323

    SHA256

    e66b4f6e8cf504e82c5ee54b75a99ee843a491631b89d790e9a04a34c4cf2d9c

    SHA512

    36667b30067669729d2b799c241fe785ef12bc835d444b4b9e07f5b9a2e26dcf44bea69659cb5bf311a9d4f4524f9ed331cfeff9e80491bb2484edb48bfb2221

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    8b8ce7806f538cc52f5edfe00a0cd010

    SHA1

    92c3363444259a2d987d8e142a9bf3bfea665e03

    SHA256

    a00912a3611ba6323bf1927bb5f00af1be020f7ec5eefd3ce7eb24187480dd56

    SHA512

    5ec1cf00fbbdfbd3a12097482bb872b9fc893753658dcbccc68b9efeed5bdf22643c59db63afbacb334be86f9dd8bdb6448a8e712f093c4316342012231071eb

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    e8588a3c4088ac2abda75c5bf14ca2f6

    SHA1

    92883ce01eaecf33df552ea285a251016a456571

    SHA256

    a3afbc25936966b73a6b36dc8bbcca42749427d725abebf745876a8e884e3f2a

    SHA512

    1300354846b3279f26a61d69bf669992108a0aa4b0f8df2100d56c75ba3e0cb1b83fcf65866282aff6c795f5a41a6f62ee06d9b615d85bcaeb9fcc337abfda3b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    52d53c03dccabf77e58c2980dacd2d9d

    SHA1

    13e73cac0636216fd9af3bd6e06fc66ce74a6dd8

    SHA256

    a43155c9f8956221b9d2762066e385f817a3eea2b09df1537eca50c6a6ae29e4

    SHA512

    8f5e41d5d4a3657134682f871b38a47887a930a63dd0b3bc3add9ae1bf67f0b64efe24aa256061f2e5747c46d553ff725a6a9766b9c391bb37c1036cfc33908b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    6c67b8e62de1a0b6e118edcfa3a295d7

    SHA1

    0068d4016ee8021a7f00bdf2a238c48ad4b60b85

    SHA256

    7c34e13217fdb02aec05ccfb8b9ad61dab2f9afbba99cf6edcf30eb005f5c056

    SHA512

    d4ae4b3c36135d17cf884206b30ef20755bba6b31db85ee1d8d9a3714a090c961c11d8596e22a41de003517087cd36614411444355c01ed14b487f2eda6e493d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    3e5c985f4e1b6a425423686800576083

    SHA1

    a48c9aa8776e5bdf06063628e238707c3f12335e

    SHA256

    fe340ce2a25041f5d798f4cebd51c1d518e84a7448aa40446d93582791476f25

    SHA512

    8bf341d348cb57e58f9ca1a500230866723353479d01d7b7eda478bcaedcd8280e490b83c49718cd6628dcdef7d950428d3af70059d6e55c38ee7fda47e085b7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    fd14b187f496ad867a4bad49071077b6

    SHA1

    55320e1e02c92bad58b53859bf88fbfe69c4b844

    SHA256

    9cdc1151172e011efae3fb37e8ed5f99e20a6680712fb5b0bc9fba10a0344430

    SHA512

    ff059c54c91778274e76e9809a50a5e256d9489bd6b63a6e69f26c7252c122e6d3bf2d6c08741a773e8d345286546ff1b089ae1df7e5c84370bbe0f7ac38a1ee

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    41d882b675e0d1473dd9d8b7ffe8f1a4

    SHA1

    c09e986ca990cce38c5669fc0d4f6b56b46a7878

    SHA256

    516b640febfa2ffe5f8b57c6e3aaf165b89ba9efbbc9a9a2402977600b13a037

    SHA512

    8ea497d350d5e4f8f9478a03868ff1ccf8c2bb071bfdee88a27d762b8655586da7761d44bbedbcb0ab5c6b93a77401981dcb2357b515680748be827cac51290b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    61a8a2f2c9f2c7b4109315ba46fdcaf2

    SHA1

    054b936112788ae8217708f97171f1062d5f75bc

    SHA256

    3cc9079d8df65e6d5c38c196c4f820440d3e746f27a7da5d0b34505810c37eee

    SHA512

    dbe608d2fa11dc5f5b3383ba2eb03a4dd0261f1314ab03de569170029c2311b1f472a41ba4e8cf3a790c035e58fe6bb1370c67547eb9dac29fd04199a7890767

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabA749.tmp
    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabA826.tmp
    Filesize

    68KB

    MD5

    29f65ba8e88c063813cc50a4ea544e93

    SHA1

    05a7040d5c127e68c25d81cc51271ffb8bef3568

    SHA256

    1ed81fa8dfb6999a9fedc6e779138ffd99568992e22d300acd181a6d2c8de184

    SHA512

    e29b2e92c496245bed3372578074407e8ef8882906ce10c35b3c8deebfefe01b5fd7f3030acaa693e175f4b7aca6cd7d8d10ae1c731b09c5fa19035e005de3aa

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarA86B.tmp
    Filesize

    177KB

    MD5

    435a9ac180383f9fa094131b173a2f7b

    SHA1

    76944ea657a9db94f9a4bef38f88c46ed4166983

    SHA256

    67dc37ed50b8e63272b49a254a6039ee225974f1d767bb83eb1fd80e759a7c34

    SHA512

    1a6b277611959720a9c71114957620517ad94541302f164eb872bd322292a952409bafb8bc2ac793b16ad5f25d83f8594ccff2b7834e3c2b2b941e6fc84c009a

    Download Submit