Overview

overview

1

Static

static

1

63efc1fcd1...8.html

windows7-x64

1

63efc1fcd1...8.html

windows10-2004-x64

1

Analysis

  • max time kernel
    148s
  • max time network
    149s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    21/05/2024, 16:20

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    63efc1fcd14fd16a0cb08fddd05a83de_JaffaCakes118.html

  • Size

    61KB

  • MD5

    63efc1fcd14fd16a0cb08fddd05a83de

  • SHA1

    8c1a46e3b0dd261f1d83f371cf70eeda8a10f86d

  • SHA256

    9c81080d7bcb0aebc9cec2ea669a23d5af928c7f64e88e8526588f2d2acda3f2

  • SHA512

    fa32b07c0f3cf501c6d9d14fe659c8367df79cd17b8e0b0d6e9e94f1a34e44e85d66a8384af23b317517c5b92a00ebd1755e41b2c8377dbfcb7a943cc4321199

  • SSDEEP

    1536:LnUXKT4KpB3T6Shh4LdKjdiudNjdzor2q2qoR212e2b2T2F2W2GHSh252nOQ2u2I:Ln74KpB3TT87OWncG/84RNBD

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 54 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\63efc1fcd14fd16a0cb08fddd05a83de_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2972
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2972 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2612

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\24BD96D5497F70B3F510A6B53CD43F3E_3A89246FB90C5EE6620004F1AE0EB0EA
    Filesize

    1KB

    MD5

    df80f9ba75076db634761b6132e0d4e3

    SHA1

    07983946fb660752c7cccb2ef82d01ec4c9ecc5d

    SHA256

    d5ff96fd8b416de93a85783192206224cf8821c240cd8ff755f2e8270153dd99

    SHA512

    4ec734c5d29e9ce00b00e42b627253195e8c7a158433fedfcee428e692a6501981c33d7c8a39235f8b691f087145cdbe660b430493edbeedb12588c5cdd5a66a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\3C428B1A3E5F57D887EC4B864FAC5DCC
    Filesize

    914B

    MD5

    e4a68ac854ac5242460afd72481b2a44

    SHA1

    df3c24f9bfd666761b268073fe06d1cc8d4f82a4

    SHA256

    cb3ccbb76031e5e0138f8dd39a23f9de47ffc35e43c1144cea27d46a5ab1cb5f

    SHA512

    5622207e1ba285f172756f6019af92ac808ed63286e24dfecc1e79873fb5d140f1ceb7133f2476e89a5f75f711f9813a9fbb8fd5287f64adfdcc53b864f9bdc5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015
    Filesize

    68KB

    MD5

    29f65ba8e88c063813cc50a4ea544e93

    SHA1

    05a7040d5c127e68c25d81cc51271ffb8bef3568

    SHA256

    1ed81fa8dfb6999a9fedc6e779138ffd99568992e22d300acd181a6d2c8de184

    SHA512

    e29b2e92c496245bed3372578074407e8ef8882906ce10c35b3c8deebfefe01b5fd7f3030acaa693e175f4b7aca6cd7d8d10ae1c731b09c5fa19035e005de3aa

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\F0ACCF77CDCBFF39F6191887F6D2D357
    Filesize

    1KB

    MD5

    a266bb7dcc38a562631361bbf61dd11b

    SHA1

    3b1efd3a66ea28b16697394703a72ca340a05bd5

    SHA256

    df545bf919a2439c36983b54cdfc903dfa4f37d3996d8d84b4c31eec6f3c163e

    SHA512

    0da8ef4f8f6ed3d16d2bc8eb816b9e6e1345dfe2d91160196c47e6149a1d6aedaafadcefd66acdea7f72dcf0832770192ceac15b0c559c4ccc2c0e5581d5aefc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\3C428B1A3E5F57D887EC4B864FAC5DCC
    Filesize

    252B

    MD5

    01488391660de3bb76285dee1d7e0ea2

    SHA1

    20a2a27ae36e6b4f9a764b5fb00d74d7dd79ab3d

    SHA256

    0351fe89c4521f9e8ec1148e59d986d38d269bdd1ddc10034561786b552b8d1d

    SHA512

    c51065034347e241e9dd842cbe565541a1c2725ad0a146cbbc45aaae140b6d50d89d69fef6e5c51489a09e2f2d81304363ed354093630039b3b7c8021baad37d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    fa401379cf2a0e7fd0fc16eb9438a5ce

    SHA1

    7f66f876a9db1e5789d8cc9c849c568da0084123

    SHA256

    dbb93d061119c2f76211be76ed8e7cf2f969d597589a2f579bf81f9a8bfe4c0d

    SHA512

    ed166ebcbf09e4cb39b33e9231b528508a04cc1cb89a2bbfdd703ace4c82b6528eda329f90cf743c2097282caaa45f1d1c91842268552a0781b0c3c014fcd5f7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    207b77c2f8aee1c97f2d8f90a824e5e9

    SHA1

    114913fd80348a8bdd43542478ff6d9a3bee6d7e

    SHA256

    18bd10d801253e3569105a3808a18f151b1477d04e50d6310d6ab8d479b9c221

    SHA512

    1201ee47c0a67e61df2fdba2b42e6fa74f0f709598629e108def3fa890ce3cf0c1574fb9bcc91fd21b77a3a6186e16b5ad03fb1a895b1d53f3d97dad4c65498d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    a1985c2c3772f09e1ce9e8f07609eff4

    SHA1

    5d4bf971ae576a5f6de1176097173e36d2c6cf1f

    SHA256

    bce08eff6a7cc07e535ec27c87b30b577a93a8e0b1e5aee6a0af011174db4a06

    SHA512

    54d94e7b0b3ea2f46d0cd7a3bff50e5ba0dbe74e49b25f714be9ea9da766e2e1a665267e2c6f5099e3243252b71f9817a81c7707e19f61d85269cf956e387e70

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    93a98d3ac77d625b6fde3232628c414e

    SHA1

    52f6ea160535e20a93404e5148cd0006bfbecbce

    SHA256

    8a85948bee8b69b5a76beb19c4450c132faeaf6e236dd9a30cb5182c8427dbb5

    SHA512

    cbe745dade856e262b2dff3a6669877a38f2f7a9a4f4e12be2a0065986ad299de3b058b1c84b00343b4015c9933acd5b361c362730377dd0832ccff30735c675

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    70c85d337808fe0991423adecdc0a3e6

    SHA1

    ae08772fc83e2f7d6661de02aa3a1d3510f895c3

    SHA256

    4d2707b988237f49209f80fab94a7edd8ddb495829bc1ac6c4b093eccdbffdc6

    SHA512

    2fd439e2f10582f0b0f31b24bffb5de01fa5bcedae88304c70ca7f7393282f9c1ebdaf062afd3f8302b518e2a627556c27ffd1dec3795346848c881bbb4a6898

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    3280633b22b49d21af4d47a0aadfcd3e

    SHA1

    8839d8a8a9d16439a5c83180663e1f9ab13cdfdc

    SHA256

    1e255ad461f9e50d2e7d8064a21d79d9fa0315ff177d3eedb079cf82764abeae

    SHA512

    bb4afdd2b1db1346d5b6e5341f24f4c5f628838c74a98929987412c86627f5acfbc3125cea35e2ee29bc9e033dd8f7455302bde3220ecb4033a754796ed85c3f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    2843de2a38ad300851bb48654abb2123

    SHA1

    1f98feeb670acf188ba3511ff2417be542bc8ad2

    SHA256

    40c4c16fb1243e763c2fc0ee70ea9822166f9b22e9e024bc01baf98c783d9fe7

    SHA512

    4de91c866647db07442a313f8e6def8a6d84a1d0f962dcfbb70269eaae2fa7d757ba2bf541768ec38edda5a69259fcb00e80f5c87a1e89aaa5abe74ab7628695

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    3b2cd030be1f1b33ccfb60eefb61b411

    SHA1

    575b0be7c739d5b47eeabdf71521bd9287a7a235

    SHA256

    7545604819bd6c2b67dc32fc1a916b1d2277b11d68036a34526873570e7c4bc6

    SHA512

    28a653f6f9b137091cd10d0f77bd03ce4544384a2a3ae9360552f013929d7c36f98a8a88beaa536354d84f6d11305686a0ddc04115035679df57a347d5d48aac

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    f39fcca9009af756d83332e986154693

    SHA1

    94b347f0a886391934a9a7603bc1cdcfae682a59

    SHA256

    0aea7295926952b0712023d8f982f729e28f8a32322b63e14eaa8ef45435531c

    SHA512

    0d27dd023800421458a2dac663f3f51ef885a113eae367b4328e1e8ad78b7e4e3296e7c03a26f5e14a3b054167656eea94debfec2cc13eb333e8345292e3d8d7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    77babc8c7b8c06f786edac8437aca576

    SHA1

    40b81141a533ebacdebdaf5adba75e682f110c15

    SHA256

    cc63d7231d7894a6216ec3f8f3f160a8ef7b3a82ce089e1e3d2ea5783e80705c

    SHA512

    84ada8b911fe50ac93ce75e3a166183ae825350589e616b9454f03b55b50c0f27f4e2babbb70cf06f3eac05e0c47b7c79d5e2ec6e72b71a28ebebde53543fae5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\CAF4703619713E3F18D8A9D5D88D6288_A7725538C46DE2D0088EE44974E2CEBA
    Filesize

    392B

    MD5

    5d2ba1d7c5e56b036edf75b8e2487805

    SHA1

    d7ec4248928eff665ab00781c4b80146a5d8e875

    SHA256

    5eeff358a13947b2ea45caee5db22f2c92e5af8003efaf44bb62d2f05b73856c

    SHA512

    e1b4463cb66516b1c9d773914f869dbfb08c2c3a4917c0ac6d4e873b6da8d6ad59a211ac857407b65cfed599c558e39e876d3d5d07c34f8c6786167906f09322

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F0ACCF77CDCBFF39F6191887F6D2D357
    Filesize

    242B

    MD5

    e4caab3f67b7cc4c4a7e8465c48fcf21

    SHA1

    0b95684765062853c5d95ef1b8268b032402d986

    SHA256

    9338bb982596b5806c88ce2871a28a233e9c77f605a365d921b59e6630576377

    SHA512

    f15629decefeeff1996725a6813311579c5fb1c7577b8e880600c4f79301e573c7b80cff83fdbd57c58357576d024732a4ad3e5f627a0c3d2b7550b3b9611a8b

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\X2Q9HJCN\www.youtube[1].xml
    Filesize

    13B

    MD5

    c1ddea3ef6bbef3e7060a1a9ad89e4c5

    SHA1

    35e3224fcbd3e1af306f2b6a2c6bbea9b0867966

    SHA256

    b71e4d17274636b97179ba2d97c742735b6510eb54f22893d3a2daff2ceb28db

    SHA512

    6be8cec7c862afae5b37aa32dc5bb45912881a3276606da41bf808a4ef92c318b355e616bf45a257b995520d72b7c08752c0be445dceade5cf79f73480910fed

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\X2Q9HJCN\www.youtube[1].xml
    Filesize

    229B

    MD5

    3d9736d7fb6cd2dcc9c1b13f054a15fd

    SHA1

    012cb1630411cd2997f121cdf3527d2cfb4b3317

    SHA256

    c882f7c1a7fb069e3f5783d1f7653d7af7d5d7da3495bb4fca96700b59711daf

    SHA512

    491e7c5b4bea43e10fd6cad9c4e848080a14b5c37468e45e458d1b35ccc30660a4a543dd22585e5b95b4f263ab29aa6eed8f427b4b023229eda87f4e8c5d9ad6

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\X2Q9HJCN\www.youtube[1].xml
    Filesize

    578B

    MD5

    d44c358444f8cc1dccb0543e305df922

    SHA1

    2967a59c4bed475bf7e7b84630f78e66f4168a45

    SHA256

    532a58455aa69e4383ee980c20db482fdc8b698d7733cf8f07eb3851c4b6f462

    SHA512

    1be62e03a75d48328b718414797315dda6653e6d050ab49c221379be1dde0dee2aeece81732c9ef8b970dc21595127ea1400de198462e3bccf65e18c02d21779

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\JB8Q1DZR\cb=gapi[2].js
    Filesize

    133KB

    MD5

    4d1bd282f5a3799d4e2880cf69af9269

    SHA1

    2ede61be138a7beaa7d6214aa278479dce258adb

    SHA256

    5e075152b65966c0c6fcd3ee7d9f62550981a7bb4ed47611f4286c16e0d79693

    SHA512

    615556b06959aae4229b228cd023f15526256311b5e06dc3c1b122dcbe1ff2f01863e09f5b86f600bcee885f180b5148e7813fde76d877b3e4a114a73169c349

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\MPR7YYBV\3604799710-postmessagerelay[1].js
    Filesize

    11KB

    MD5

    40aaadf2a7451d276b940cddefb2d0ed

    SHA1

    b2fc8129a4f5e5a0c8cb631218f40a4230444d9e

    SHA256

    4b515a19e688085b55f51f1eda7bc3e51404e8f59b64652e094994baf7be28f2

    SHA512

    6f66544481257ff36cda85da81960a848ebcf86c2eb7bbe685c9b6a0e91bca9fc9879c4844315c90afd9158f1d54398f0f1d650d50204e77692e48b39a038d50

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\UA1HZF3D\platform_gapi.iframes.style.common[1].js
    Filesize

    54KB

    MD5

    7ef4bc18139bcdbdd14c5b58b0955a67

    SHA1

    afe44fd9a877f81a3c36f571c0fc934324c6cbd7

    SHA256

    192bc707852c5986f930528442d88a79e5bcf4513aacc2b722a3c5e964501838

    SHA512

    6c2920e80e4d5059588a32f75bc2b5dcc19f8d68224c0935d74f9fbf49476ca5b1ce43c279768f3d36871dfcec39f36db3fcad559c2f93cc540154cdbb04dec2

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\UA1HZF3D\rpc_shindig_random[1].js
    Filesize

    14KB

    MD5

    23a7ab8d8ba33d255e61be9fc36b1d16

    SHA1

    042d8431d552c81f4e504644ac88adce7bf2b76f

    SHA256

    127ffe5850ed564a98f7ac65c81f0d71c163ea45df74f130841f78d4ac5afad5

    SHA512

    e7c5314731e0b8a54ab1459d7199b36fc25cd0367bc146f5287d3850bd9fe67ba60017d79c97ea8d9a91cd639f2bc2253096ce826277e7088f8abfe6f0534b63

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab4359.tmp
    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar44A7.tmp
    Filesize

    177KB

    MD5

    435a9ac180383f9fa094131b173a2f7b

    SHA1

    76944ea657a9db94f9a4bef38f88c46ed4166983

    SHA256

    67dc37ed50b8e63272b49a254a6039ee225974f1d767bb83eb1fd80e759a7c34

    SHA512

    1a6b277611959720a9c71114957620517ad94541302f164eb872bd322292a952409bafb8bc2ac793b16ad5f25d83f8594ccff2b7834e3c2b2b941e6fc84c009a

    Download Submit