Overview

overview

1

Static

static

1

6b2fbef505...8.html

windows7-x64

1

6b2fbef505...8.html

windows10-2004-x64

1

Analysis

  • max time kernel
    150s
  • max time network
    150s
  • platform
    windows7_x64
  • resource
    win7-20240508-en
  • resource tags

    arch:x64arch:x86image:win7-20240508-enlocale:en-usos:windows7-x64system
  • submitted
    23/05/2024, 14:08

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    6b2fbef5059dd7f19b648a8f679130e0_JaffaCakes118.html

  • Size

    41KB

  • MD5

    6b2fbef5059dd7f19b648a8f679130e0

  • SHA1

    8eca8bfa7f43867ec7cd15ac4e85a4655766de6b

  • SHA256

    08e60fa8a39c014610cafbc79ef443e6015c82edfd86317d7de53a61ab028826

  • SHA512

    fba4a84859c2d4e2cf3460427fcc6a61790d53f293dbb88466e36c023f0e763606192b1ed5a32e22175cff692eab2a2161d4168a940764731405f3d5d01e130a

  • SSDEEP

    768:2FDIYjGHgeT3PBjWvlogDvn1eVC7CO4WFGxKIQLkZ8fk60Vs7CEqMABGctBWwD5v:2FDIYjGHgeT3PBjWvlogDvn1eVC7CO4t

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 31 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\6b2fbef5059dd7f19b648a8f679130e0_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2420
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2420 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2772

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          1ae2ad801b4822f0af1036e8fcc45d0f

          SHA1

          d1ac34a494eacaf278fe6704dbb952cb05f20077

          SHA256

          31bd0a3e295a43069ab23f3f6acc6ce03e28b47d6b50be3d801357e41fcaa051

          SHA512

          a7d40f56d6e88dad77b94051e5cf3d75ed53b254dc0600f51047d2e73574ed4ac3a5926241f6bf44a2a219ebc5433c080237b22c1dd6a25c2f7a093062d4e758

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          6bfc2b07637aec2357174c8079935aee

          SHA1

          366c1013673715f48ac5781ecc47ad25f26b52cc

          SHA256

          54a98810ab5ac3d17cec5c4380bded0b2b14a222c3d140433f1fd7235d6f38ee

          SHA512

          acd3b6b3bf4f339027f6caa5a48f8e72cb934cf4e892b2d3bee3e963174bba9c6a2b1885e99753c37f4d6081445cb76a13342fae9b48a57e85c3682846cb388e

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          c08bb92dca1e2ef6a34e91182c6ae88a

          SHA1

          3b9b99753930a8ddd4705f37328bfa17affd6a7e

          SHA256

          73854d893b842dc3b7f515e7c41f400cc57b9ac685c3b3d31c3af0da3ac9acc2

          SHA512

          2cf00faa9674f776a8dc869ea223ecefc2dc8df9f1fd1210dcbc5497f42cce2e2f40c6e22bb95c58e605ccf0ec9c92841b6e8e316a2534e5f38ac6b64dc529a0

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          2a83d34e6e34a366bd95396627b7475b

          SHA1

          64e869de5450ede1e6a3dba49f3dd122ea903b1b

          SHA256

          2f6885e6e779b137373195c96af4ecd5810d6c7bd41249ac8bd6bb7f0e238947

          SHA512

          23433e465a0726e5484bca3d6726f3a075a292bba8167c01396d08920c22cc658e3eb09654b53fcf2dc4e42cc97b8526175942c4124a894e6218e9e435125029

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          0c8ad158605daae7d467d63baff0642f

          SHA1

          f0b9f38ffbf289ff5a1a81a7e3c40729a02624dd

          SHA256

          7f3bf01ef8265a1f6e9c154f1a19d5d1451d61bc219113354f15b9c5079254bb

          SHA512

          dca36d3ba3d5454dfecd4fa204be2b51c1f47dfb5bdfa9843aadd196d13196eaae711cbd963d177ac62e2a5975cfa1d1150d2944e873bf2cbbc5de264c81dcf3

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          b5191c4b0681eb60f0a47239f65263ab

          SHA1

          f2a3c4a6d270bcfc7815076dea66c6aef2e17866

          SHA256

          0f04f097c86d499a99e2f88d514b17938eec85875b6a2bcce5b24189983fa338

          SHA512

          30ad489c6186bc021fab1a09cb1041301a0441aaedd4cc896809f477f9fa44407c666b3e54b9e383d4e463e706174291385be27188fc00215c49f671a143e464

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          e14a92ec95563668d9ea23f8661d0a23

          SHA1

          40051097e5a46aa05d1d599b5dfa655357e45d65

          SHA256

          99349fe033a2e3270b178be218ed53a4fbf02469996450fa27a5664fcb7d8e36

          SHA512

          8459911956b519dfb5c7a8958831761ec21a90897722e1b5f57cd933f0428fe433c9593f93c26648c9d5b73df75ca27b6be01a06ede17275c1d3f9edf367c00c

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          344B

          MD5

          8e319f4d9cc71dc6dac129433d412f46

          SHA1

          ee74bb21fe84bfe872b2c3e569b5534643f832a5

          SHA256

          912da2dca80a039081156ee122c310616c19141972de8f5a4c7c197d7f6f1e8b

          SHA512

          1918d00757c0ab0c0168e2db80574cae9a1831b15919e9a6c5a73da6176c5fcda562d1e1cb3ed6b47f6cc886b64697cbc09b5d24a11a36fb3d85290dfcaf9d6a

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\Cab17A8.tmp
          Filesize

          68KB

          MD5

          29f65ba8e88c063813cc50a4ea544e93

          SHA1

          05a7040d5c127e68c25d81cc51271ffb8bef3568

          SHA256

          1ed81fa8dfb6999a9fedc6e779138ffd99568992e22d300acd181a6d2c8de184

          SHA512

          e29b2e92c496245bed3372578074407e8ef8882906ce10c35b3c8deebfefe01b5fd7f3030acaa693e175f4b7aca6cd7d8d10ae1c731b09c5fa19035e005de3aa

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\Tar1827.tmp
          Filesize

          177KB

          MD5

          435a9ac180383f9fa094131b173a2f7b

          SHA1

          76944ea657a9db94f9a4bef38f88c46ed4166983

          SHA256

          67dc37ed50b8e63272b49a254a6039ee225974f1d767bb83eb1fd80e759a7c34

          SHA512

          1a6b277611959720a9c71114957620517ad94541302f164eb872bd322292a952409bafb8bc2ac793b16ad5f25d83f8594ccff2b7834e3c2b2b941e6fc84c009a

          Download Submit