Overview

overview

1

Static

static

1

4ee36eba94...8.html

windows7-x64

1

4ee36eba94...8.html

windows10-2004-x64

1

Analysis

  • max time kernel
    150s
  • max time network
    150s
  • platform
    windows7_x64
  • resource
    win7-20231129-en
  • resource tags

    arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
  • submitted
    17-05-2024 06:55

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    4ee36eba94dc6b7ae8580355ca9dda52_JaffaCakes118.html

  • Size

    43KB

  • MD5

    4ee36eba94dc6b7ae8580355ca9dda52

  • SHA1

    fb4708696b443123ea75bf2f45460336721e4124

  • SHA256

    6c567ffa8b05e5a0f5f5c92c1b98c574d1bd0483d4af1c30ce9b80d018030dd4

  • SHA512

    740aea5ac8e60a989f23bb8b2e6af0a7e20405213b4d6de7577ebedfa812070efa15eab552ca2aa7ba9815c3f24d4e3d9d7aefed51fe250901cb0bc99847a987

  • SSDEEP

    768:R4TqFcsOoK9k1w88u3V0IG4ORfPX1P9+Xz3/6odoYilsPd9ZI97nHR/YjEFwQxyQ:/FIu3VO1PUXmodoZ7nHR/YjEFwQxybij

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 26 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\4ee36eba94dc6b7ae8580355ca9dda52_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2748
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2748 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2560

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\3C428B1A3E5F57D887EC4B864FAC5DCC
    Filesize

    914B

    MD5

    e4a68ac854ac5242460afd72481b2a44

    SHA1

    df3c24f9bfd666761b268073fe06d1cc8d4f82a4

    SHA256

    cb3ccbb76031e5e0138f8dd39a23f9de47ffc35e43c1144cea27d46a5ab1cb5f

    SHA512

    5622207e1ba285f172756f6019af92ac808ed63286e24dfecc1e79873fb5d140f1ceb7133f2476e89a5f75f711f9813a9fbb8fd5287f64adfdcc53b864f9bdc5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\F0ACCF77CDCBFF39F6191887F6D2D357
    Filesize

    1KB

    MD5

    a266bb7dcc38a562631361bbf61dd11b

    SHA1

    3b1efd3a66ea28b16697394703a72ca340a05bd5

    SHA256

    df545bf919a2439c36983b54cdfc903dfa4f37d3996d8d84b4c31eec6f3c163e

    SHA512

    0da8ef4f8f6ed3d16d2bc8eb816b9e6e1345dfe2d91160196c47e6149a1d6aedaafadcefd66acdea7f72dcf0832770192ceac15b0c559c4ccc2c0e5581d5aefc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\3C428B1A3E5F57D887EC4B864FAC5DCC
    Filesize

    252B

    MD5

    5e5e2c6a5cc889a6f46406d053518d60

    SHA1

    a89fb5be9f61ac660379c0836883c9c4660bb8d7

    SHA256

    c29e978bc1d0ffe404978a29709983566d0a74c890b0e08d3fcc3565e3e01e3b

    SHA512

    e119c95e235ced6a66bde345946fc0282d1e3480459dfa32a326424621a564a37b89af1e0900e31889a03f301abca13b8a82cd2e4de22582fa8282678920d7ad

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    1d4f42424c5d73eb87b9eba3b63d4189

    SHA1

    77c07437d02576781f012cabcd151153473310db

    SHA256

    671c760554949cb4c9adae1c9c92b03df36967ea68f5b8de91356fa20f9fc8a2

    SHA512

    25e27ad31cecf6de2c0ff886a996a95535835806188c94f5f717d9053a6bbee685684e92a708049a99c174db14c24c043066c59dc777b94f7f64b751cfb10248

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    c5df86eef2abb624b6b86bf1689b6bed

    SHA1

    96fac39747dce33cb79e9600be4a638002945d89

    SHA256

    6f6f3e71ca19727356994dee7fd70baa9e1ec1ec2c7407a904dbc05fbe32ba60

    SHA512

    1ff81f4fba0fd1f9d9bf448458ff759f7f4eb42030ec9695f28c12c7b13615e500180e8db44671de1d1b7e89e54b665600220e80f99a8bc04e78610f2298e1b7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F0ACCF77CDCBFF39F6191887F6D2D357
    Filesize

    242B

    MD5

    01d14b15482ca7d739bb36aeb5b216bd

    SHA1

    42bfe337824a776bf7448c5e7b9250807b7cf3e0

    SHA256

    a21acb68f381fc36be567113dc3c60eee94fd65817246b6d6cac23ee5a650205

    SHA512

    1f07c56b42a51902d8322cb1848b97d7a6943e7980503eb738838148c608c1e506d63f5e72bbb61ffcb7a429a5c11a5b2ddce3452b37c5b217f351366f805fdd

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab751.tmp
    Filesize

    68KB

    MD5

    29f65ba8e88c063813cc50a4ea544e93

    SHA1

    05a7040d5c127e68c25d81cc51271ffb8bef3568

    SHA256

    1ed81fa8dfb6999a9fedc6e779138ffd99568992e22d300acd181a6d2c8de184

    SHA512

    e29b2e92c496245bed3372578074407e8ef8882906ce10c35b3c8deebfefe01b5fd7f3030acaa693e175f4b7aca6cd7d8d10ae1c731b09c5fa19035e005de3aa

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar8CC.tmp
    Filesize

    177KB

    MD5

    435a9ac180383f9fa094131b173a2f7b

    SHA1

    76944ea657a9db94f9a4bef38f88c46ed4166983

    SHA256

    67dc37ed50b8e63272b49a254a6039ee225974f1d767bb83eb1fd80e759a7c34

    SHA512

    1a6b277611959720a9c71114957620517ad94541302f164eb872bd322292a952409bafb8bc2ac793b16ad5f25d83f8594ccff2b7834e3c2b2b941e6fc84c009a

    Download Submit