Overview

overview

1

Static

static

1

4de6f1bd41...8.html

windows7-x64

1

4de6f1bd41...8.html

windows10-2004-x64

1

Analysis

  • max time kernel
    118s
  • max time network
    130s
  • platform
    windows7_x64
  • resource
    win7-20231129-en
  • resource tags

    arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
  • submitted
    17/05/2024, 01:34

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    4de6f1bd41158d4abf9d9ae76834b504_JaffaCakes118.html

  • Size

    76KB

  • MD5

    4de6f1bd41158d4abf9d9ae76834b504

  • SHA1

    80a79db206886b079700e8d25ed2616eb4ca640f

  • SHA256

    3603271eca48ee4221e1197e63f4e12bd85c3fc31771a929851e1d5d733defb5

  • SHA512

    52dc73831691c30d49e6f7ea6df0489f6cec4bd269ccfccff584c579eb7ef65f39283f9e5d8ada27a27353f6fa2713a655c10d342c283f00519ad601569fda81

  • SSDEEP

    1536:0E3Xa1vQ2Tk67Gb5cFXh4xevEG7/IREd0HqoVSxYsYBy322y32C1J3cB5qncaecC:73Xa1vQ2Tkc4xevEQ61dckHKDunJu

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\4de6f1bd41158d4abf9d9ae76834b504_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1748
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1748 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2340

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\3C428B1A3E5F57D887EC4B864FAC5DCC
    Filesize

    914B

    MD5

    e4a68ac854ac5242460afd72481b2a44

    SHA1

    df3c24f9bfd666761b268073fe06d1cc8d4f82a4

    SHA256

    cb3ccbb76031e5e0138f8dd39a23f9de47ffc35e43c1144cea27d46a5ab1cb5f

    SHA512

    5622207e1ba285f172756f6019af92ac808ed63286e24dfecc1e79873fb5d140f1ceb7133f2476e89a5f75f711f9813a9fbb8fd5287f64adfdcc53b864f9bdc5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\F0ACCF77CDCBFF39F6191887F6D2D357
    Filesize

    1KB

    MD5

    a266bb7dcc38a562631361bbf61dd11b

    SHA1

    3b1efd3a66ea28b16697394703a72ca340a05bd5

    SHA256

    df545bf919a2439c36983b54cdfc903dfa4f37d3996d8d84b4c31eec6f3c163e

    SHA512

    0da8ef4f8f6ed3d16d2bc8eb816b9e6e1345dfe2d91160196c47e6149a1d6aedaafadcefd66acdea7f72dcf0832770192ceac15b0c559c4ccc2c0e5581d5aefc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\3C428B1A3E5F57D887EC4B864FAC5DCC
    Filesize

    252B

    MD5

    3d2811f5e41ea23151a4a70187e7029b

    SHA1

    28d2f6d3eb63ade9f5667076f45099f4af4a5455

    SHA256

    a3feb8791b4eeb23e8545f859f07630a3065297fc315d9dabc1875fd595d9ae7

    SHA512

    e19d32d76ff3b793e1b787fe4d0ead2f73d2b15de8490e36b92de50154cd011cb88c33bdc6d2286a6ce8a05a32b23dda2d26d8b3c7129e4669f524ab171565ab

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    6f1df00dc658061abf9e39f93f0615d8

    SHA1

    e06ce6a5509f457467795d7dfe87cd2f478dccda

    SHA256

    0ee02ec1e969ea70adc2f384c8f9eaa9bb070eed98a50047af69e7e48abc4a98

    SHA512

    494fc8dbf7cc11204fbbad4d0449406f75c806510a328dab34db8782b9f052164bcfcb5b6fc504051959b613b1998f6b78ef9bfbf76b820edc24d542480b2def

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    b7f5d9d1ef7de40a2eba7aab026cdac6

    SHA1

    76949ba4f66177b495bdb64c70f0202e60ff6441

    SHA256

    bf6b21e5a6ebaf7c27f9016cd0b368a03f003aee403c49872b9794bd806ee2be

    SHA512

    9cf898f22811b68eff2785436d1b97c7f09126a9d0201f1c1025339a596e2b8d206e5412cd8b0262e4a99ce70dfb1098abcb25c448d6b77eb962cc702030e26b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    c86d1f6b102ae9ed470274f17983690c

    SHA1

    feac3a44a5d38bf4a74911b7e8652fc6ff6f5e4c

    SHA256

    139d9e811423dc6e2b72674403fa81ffbb59f3d5d8564b0867cc5342fcc9a1c7

    SHA512

    a21ce79ab7b9581efc38f65707fae00d693d20d4938ce1779452c2ee37765686067f563df58e41015a984930ca19a92d65151b91dd6527a00011316ca52e4d14

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    394a10379cf52722e2899a98a2ecc582

    SHA1

    3f68a9b6e45e0d6044b977b0f1472fa9fd32db44

    SHA256

    ba96f755a09db596a9ebc4edcbfcde230d6e9ebfdc991f4c5be95518b25b10e6

    SHA512

    09857a56fe30c09dabc0bb8c3233c944ede555d778c6cf5fcf6d1d5101f6baeacb68f6673b46bca1060c2e2f8d44d753027db7ba8ef3f5348362a160e26de1e5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    cce838b29ad54ea14ed3ac7efbdc8012

    SHA1

    1249093ed61ff5b61073cdab9a32e206df998454

    SHA256

    249c0074b59d3509191cd3c48d1540a8b1d9a09b0dc200c3cdb968a89fc64145

    SHA512

    795c4ff4cb29873712f3fe5e207724051429e7440b21fcee3a57eb1d19a8edbb2adfbac2e67f48b4b1fdb77484d24beea3e661d70223652c5df28149510e1e92

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    bd8c7f0bf16518d144ac284e768e082a

    SHA1

    ea631fc4a199352cd50b64781121dcd9449f3e66

    SHA256

    b6191e5e56c839f135a980ea435c559a70ec6d315a18d1bc6f83c95838b7c272

    SHA512

    00a91a9d44b5826ab9941eebe896b083169239769e0852ad28e6aa0c38c8ce6968217cfd118def9e90690b47fe3b0bbecb3a7d770e692c3c993723ade911fed1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    5fc046a54a754758369d20aadad8730f

    SHA1

    56438838217cb91728d529f0f0c93dec4fe54d4b

    SHA256

    66ce311759b97f030f3d411660dee252b93fa6d7eeef7a5e74658737fd5a2176

    SHA512

    249618ea44a5247df512fece10aaf202180c427ad319726f1300342801dc67f018175d8c3659ab091b596f34dc649b80a5d9113e745971a6d129857866e227d2

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    a74621be7bdc56956480934daf3c8b02

    SHA1

    b47af7a20b3883f22bb5aaeb6467a9a116a2bcdb

    SHA256

    b1c6c4c9784f84c6f5578d33b3a59c327b8842b4d42390d97da3be5f045acfb7

    SHA512

    5e969371e204b03c296b2da312c4928cffb1b16954aa7e165d41730d5c15854a97f0e6605b3c6b48747ae65cc1d16cde4416bfe5d4be2d20964ad53049bfb30e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    efa8a421db034c08d7a1ba0d9e97baa8

    SHA1

    e1c96320c6a03aa25e7155f90a1da079907a79e3

    SHA256

    346c53079b415d8c5d36b0cbaf769790571aea3b6d68937c17b2ae6fd0258f74

    SHA512

    22ef25fc85f93ef374500f1cc69c688f7901c6ff99c1418ec0cc67704195ab3664685c8f694064581d567a866d416a6c7922ce5a0a6d6590fabd3a6c0e4c1f89

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    0235d3170fa01bc97e251878cf2fceb5

    SHA1

    86b36927914fe6714eaa1115cd6884ac71b968ab

    SHA256

    49e57197676cc714696aff492fcde9b2a0b25615df8cca39ab889eb50311c7c2

    SHA512

    a35c08c0f7fbeca07e8f89610c0754ee56e101e5568193da0b47f3dee6d396961ce6ed108a4c63b23abbe2d94a593a20dca81dac69f0c98124b26946cdf3be65

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    5e1966bc22ab9babf82d428df7964da4

    SHA1

    f36624ede9839829a695771528b5d6b648e8cf2e

    SHA256

    96f3a05e01f57d603b87bb663b24ea79c1a97e0d474a994d17958eb876009851

    SHA512

    a19ddffb1200cd0f302885659f35fb394d3d8fb20383c0c1d7fc900eca407424ff3d5be0a21b538d2d2724705d2854fb649e74d8440576a96330d9b293e41fa1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    f7a4ed5d33fa54431ae67a39e96cf625

    SHA1

    da1bf9a16a4f6eb2c2c060d7d978757c3f890dd9

    SHA256

    55bf438209da8d853580dc462af89ce56c5f0adc99bd29911b94f9abd8bb8d6b

    SHA512

    59596dc42fd865483a1a34795f463fbae4a65c64aa89d6b49da6430e01dd92a2e31a4ebeb4fd922c3451128f81447c865337f58485e914384c4f54902e6fa5e8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    14754ba041abaf8b0bbb96aec0c77d9a

    SHA1

    829f65a628c609da79f810f1bef4af6314a39f68

    SHA256

    fda3ebe941455e7764a07f28d83df00deb4148a98b9ff7c04726600ab999f766

    SHA512

    ec57d6f75926eea409e2daf5fa8852401a8ee4eaafa44a3efdc0d1eb8ec2dfcc16393abb685eda719daf48b7c0ad51bd7675e5566032c57175f2f2556b52dcd6

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    52dd05dda2b3a3e7f1cfc855f09f46f8

    SHA1

    f744f279f67eb5fc4a6c5ab686f0ee0c4b6d7de4

    SHA256

    16efd3b43b7ac67908440e45826e29cb790fb0e72237c6b36c0cd3115ea90f7e

    SHA512

    e88f2a6ec0d3399123a542fb32cae079844dbc8201f3499ed891b455bbe52180412e9aa7ca95c330e31c0e2bf17df50a4e06362eb6fd60d9c2e491cb598c6b9c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    b9e39bd9327240a9da2a35be3c43a5b7

    SHA1

    b1bf0727692a2abca764e770a663421a2e844990

    SHA256

    26dd234c9d1b5c42494caa6c9339b2707ba3805ab6342ed46ae048a0dd5debcd

    SHA512

    1c553c286aa2d53509077deeb527360e21d7957da2690d0ca1209e385c9c55c150cdbcdd6b14d29af34f25d124fe55312ed0ebed2726f5892a0a0aebf803b429

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    4adff68d7c472a604956f3b95d129452

    SHA1

    fdcc5490690c5bbd7077e04a1220a8ca1c6b25b3

    SHA256

    a87c899689441b8c1071729ec30f3bdc5809ee964fdcae591bdf9710efbe569d

    SHA512

    45d4418d2c2e5c079691d6d9526c656afb1b177d7eca491bc99bdf9cb132cae56314e77377f3928366e3682ae31654569117ebfa1a291065a59a673f4d0584d2

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    1dd86243582f891666b304ee0d73bbee

    SHA1

    7408e5cc4bdf2b0e54e9f007571a70d5aca802b0

    SHA256

    932ee8e86ef024e87420e669dedf9ccb32da30c5900ed66c513cc50eeb315597

    SHA512

    3055b9952f4b9f70a19aa8074a1875c78b5976ffb769904334002a49e1cb24b7619312c8bc35c76479d770c6b7329b56af59c3a7b5e99a364499ae2cdffe688c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    50e87c72e3a19a67b1bf2eafba8b3500

    SHA1

    7a61ccf058e63ab62fbbf86d3eb2dd03027252ba

    SHA256

    8834eb4fbd3fba9236b2e7b00363604d718b286d6ae5995a4e490344827f76b1

    SHA512

    bf335f9c7c43bcdc332c1119157712b437dfc0d9bc289c2698b79e5c9f4847f58d568aa2354512c847bae9c0f44383ae7944b5ffe939187f0aac79af46193ac6

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F0ACCF77CDCBFF39F6191887F6D2D357
    Filesize

    242B

    MD5

    ad56fff0bc2c40a384512b528fd9e69a

    SHA1

    c15fae03d3f8e35c4cc24d111ffd173bba698dc0

    SHA256

    c1bba452ddfe98a93caca8e9b79838af68f405c4454dc2e9d91503cdcb0417a0

    SHA512

    58532d61d443007c750035dc2abb9643895ba870c29b21d5f501c6a2331fdd6cbb0a2251d9f3845f1b797b49478f299022b443b0b45f399f34fd27c842bca5e2

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\Internet Explorer\Services\search_{0633EE93-D776-472f-A0FF-E1416B8B2E3A}.ico
    Filesize

    4KB

    MD5

    da597791be3b6e732f0bc8b20e38ee62

    SHA1

    1125c45d285c360542027d7554a5c442288974de

    SHA256

    5b2c34b3c4e8dd898b664dba6c3786e2ff9869eff55d673aa48361f11325ed07

    SHA512

    d8dc8358727590a1ed74dc70356aedc0499552c2dc0cd4f7a01853dd85ceb3aead5fbdc7c75d7da36db6af2448ce5abdff64cebdca3533ecad953c061a9b338e

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\6F3X0WLF\cb=gapi[1].js
    Filesize

    64KB

    MD5

    63e5a0b45632b3dde3694ffcaf0e3f7a

    SHA1

    923736d0cdc308331d5cfaa0ea159bfedc83d53f

    SHA256

    889109910477919b3457416e7764bcd0add19fd959848253026125c7c35c43db

    SHA512

    5b886c4b5122d61f0209ede748aa84445c9388cf38813316c41b3dbd2308216e88394d9a45cfc27113c0cf3bc93b9c37d808f6d3c67888244c176ee095d42259

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\6F3X0WLF\rpc_shindig_random[1].js
    Filesize

    14KB

    MD5

    23a7ab8d8ba33d255e61be9fc36b1d16

    SHA1

    042d8431d552c81f4e504644ac88adce7bf2b76f

    SHA256

    127ffe5850ed564a98f7ac65c81f0d71c163ea45df74f130841f78d4ac5afad5

    SHA512

    e7c5314731e0b8a54ab1459d7199b36fc25cd0367bc146f5287d3850bd9fe67ba60017d79c97ea8d9a91cd639f2bc2253096ce826277e7088f8abfe6f0534b63

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\6X4YPPFQ\f[1].txt
    Filesize

    35KB

    MD5

    290bf6c9abb1a05bc3c00cd93845533f

    SHA1

    488c9009896d9113faab437ae6d0e88d99fa3c14

    SHA256

    71497c3ae3509355bd39e9e163e997ba12cc23e4bd9b018831a5be8deb2dbdeb

    SHA512

    a144ea78b1923c2e32c71f8710f61b52dea5c6681289f865a791572ce7d0986af1f6c182e238290d2e562f0079e8067f27f19ad2c9e466e5e0ea17401452362d

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\7GCUKTD1\3604799710-postmessagerelay[1].js
    Filesize

    11KB

    MD5

    40aaadf2a7451d276b940cddefb2d0ed

    SHA1

    b2fc8129a4f5e5a0c8cb631218f40a4230444d9e

    SHA256

    4b515a19e688085b55f51f1eda7bc3e51404e8f59b64652e094994baf7be28f2

    SHA512

    6f66544481257ff36cda85da81960a848ebcf86c2eb7bbe685c9b6a0e91bca9fc9879c4844315c90afd9158f1d54398f0f1d650d50204e77692e48b39a038d50

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab16DD.tmp
    Filesize

    68KB

    MD5

    29f65ba8e88c063813cc50a4ea544e93

    SHA1

    05a7040d5c127e68c25d81cc51271ffb8bef3568

    SHA256

    1ed81fa8dfb6999a9fedc6e779138ffd99568992e22d300acd181a6d2c8de184

    SHA512

    e29b2e92c496245bed3372578074407e8ef8882906ce10c35b3c8deebfefe01b5fd7f3030acaa693e175f4b7aca6cd7d8d10ae1c731b09c5fa19035e005de3aa

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar1931.tmp
    Filesize

    177KB

    MD5

    435a9ac180383f9fa094131b173a2f7b

    SHA1

    76944ea657a9db94f9a4bef38f88c46ed4166983

    SHA256

    67dc37ed50b8e63272b49a254a6039ee225974f1d767bb83eb1fd80e759a7c34

    SHA512

    1a6b277611959720a9c71114957620517ad94541302f164eb872bd322292a952409bafb8bc2ac793b16ad5f25d83f8594ccff2b7834e3c2b2b941e6fc84c009a

    Download Submit