Overview

overview

1

Static

static

1

687f0d4453...8.html

windows7-x64

1

687f0d4453...8.html

windows10-2004-x64

1

Analysis

  • max time kernel
    142s
  • max time network
    135s
  • platform
    windows7_x64
  • resource
    win7-20240508-en
  • resource tags

    arch:x64arch:x86image:win7-20240508-enlocale:en-usos:windows7-x64system
  • submitted
    22-05-2024 20:19

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    687f0d445333697476f3aa5bdea2d3a8_JaffaCakes118.html

  • Size

    3KB

  • MD5

    687f0d445333697476f3aa5bdea2d3a8

  • SHA1

    f7dc4eefeab78d0886282788f2b79c1fd04e60a3

  • SHA256

    85377c90406d5a451bf506940bee54363775fc5f35cd06312d1a97d6660f90a7

  • SHA512

    0068784e446f97fa0a3fe25b721994104b5d3b1a600f887f8a6ac121b67ca2bc81daa515c87bdc51ddd315fffb743dd73eebdc09613367dda81f66f676a68fe0

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\687f0d445333697476f3aa5bdea2d3a8_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2548
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2548 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2412

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    d4c97629cd5da8988a67a83d3b01a0cd

    SHA1

    82038f49fce9899b4225e7a450fc6248daea2fda

    SHA256

    884e20591066ac1e25092d15829016d0e10c94c4d60989430782a024e3f9c5c3

    SHA512

    6b5990d4f44da964db61649e1248447355c4bf325750e93b12ffc20717105d39a3ddf996e2de261a64357049a08d01fdc571faac8b238ec84ec0cd4f12f12e0e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    e8a62a5e1417227115e96ded017abf51

    SHA1

    4a26719300844416e9aaf756ea539b1a7ce67202

    SHA256

    1f4ec87dd733dbcef7c7fe441c6c8377b9fd0c9b10d3456d2d2140790fb930d0

    SHA512

    6886c09c0eb7d4fb31aead3fe086215618d0f1685aae83642e8a1f6577a7d8f4deec5957c6180970409abcb12b96b27a00f44115ad32805fcea976b4f1276373

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    9b928dd11ac7d12c19b335a31fb9a904

    SHA1

    baaa6f893a70d465fbad89807bdbc2d746ef18e8

    SHA256

    11498da6a7563f2c3d87a0f446867e61134059d0526f93c5d3b440665b7ad390

    SHA512

    f16860dc6f9483e61c2694901ba02736d0ad261f1b308c91f862e26a51a8a0c5339d8e432130a994906528bfb1831be9c950c69ca41702cad6334129db5c2507

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    86746ccdade3816349abe72816f15cb3

    SHA1

    02a12b0df207a56817c0f308328d14c34666b101

    SHA256

    9b1f4fa9c24f155d24ef80f8da980a83b7a63eaa1162c61f631cfc7eb49cd1eb

    SHA512

    22bd986254f1d048f82a4846495519b457a3f11e1f16d7d8da29577df5fe7b51eaa7183668042726d36c5e61376c2e105701b9d28395660202086418a087334c

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab26E5.tmp
    Filesize

    68KB

    MD5

    29f65ba8e88c063813cc50a4ea544e93

    SHA1

    05a7040d5c127e68c25d81cc51271ffb8bef3568

    SHA256

    1ed81fa8dfb6999a9fedc6e779138ffd99568992e22d300acd181a6d2c8de184

    SHA512

    e29b2e92c496245bed3372578074407e8ef8882906ce10c35b3c8deebfefe01b5fd7f3030acaa693e175f4b7aca6cd7d8d10ae1c731b09c5fa19035e005de3aa

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar2793.tmp
    Filesize

    177KB

    MD5

    435a9ac180383f9fa094131b173a2f7b

    SHA1

    76944ea657a9db94f9a4bef38f88c46ed4166983

    SHA256

    67dc37ed50b8e63272b49a254a6039ee225974f1d767bb83eb1fd80e759a7c34

    SHA512

    1a6b277611959720a9c71114957620517ad94541302f164eb872bd322292a952409bafb8bc2ac793b16ad5f25d83f8594ccff2b7834e3c2b2b941e6fc84c009a

    Download Submit