Overview

overview

1

Static

static

1

6f97525e0b...8.html

windows7-x64

1

6f97525e0b...8.html

windows10-2004-x64

1

Analysis

  • max time kernel
    117s
  • max time network
    137s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    24-05-2024 19:28

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    6f97525e0b27946755ccc6396b06c6f5_JaffaCakes118.html

  • Size

    68KB

  • MD5

    6f97525e0b27946755ccc6396b06c6f5

  • SHA1

    5be3a44c0b7f7b7ee7648baf83b1e8456de4cbd7

  • SHA256

    a1ed8fa67483af10796819ee76835cf64dda290ad5088dd0044cac892370a34c

  • SHA512

    562e32c60f423adeca0aa406349e490b6326b9ebfc36a7f19882edff8dbedfeb1f42525f42aae3fc58bca18045dacd1a5d1ef9145986d611398853c0fe30437b

  • SSDEEP

    768:JiAsgcMiR3sI2PDDnX0g6mj6f0doTyv1wCZkoTyMdtbBnfBgN8/lboi2hcpQFVGo:JbX406TcNen0tbrga94hcuNnQC

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\6f97525e0b27946755ccc6396b06c6f5_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2168
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2168 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2552

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015
    Filesize

    68KB

    MD5

    29f65ba8e88c063813cc50a4ea544e93

    SHA1

    05a7040d5c127e68c25d81cc51271ffb8bef3568

    SHA256

    1ed81fa8dfb6999a9fedc6e779138ffd99568992e22d300acd181a6d2c8de184

    SHA512

    e29b2e92c496245bed3372578074407e8ef8882906ce10c35b3c8deebfefe01b5fd7f3030acaa693e175f4b7aca6cd7d8d10ae1c731b09c5fa19035e005de3aa

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    6a276cf49ee34d4b711249de31776393

    SHA1

    892f49d73ac3c024806c72b4b56d44bc5b01dda4

    SHA256

    3ffc06a4a3e8a0b7a7a93282e99a22859a347c6cae99cc01bb9645da2d3e3ac1

    SHA512

    42572b488c952265f19bc228a088429ebe85445989538e1a3d446201a028ffc4cb2fd4e756ecea06c89d922ec5cb1daa019d03be7c225ada40310aa2b785c956

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    89524ec94ec3887ce2f59126b00a9b15

    SHA1

    8b6101975c3617363d296acdda49548274899a75

    SHA256

    6e84b6accb53c57e69abfda2e7c8fad1889dabb9cd0c997a1cf0512b08837e12

    SHA512

    f7da0f0334ad18f259603e60d82033acf275d0ead833c230812997d9289822abebe580bcd36ceebd77d0104c4af9afff6c0c0359ae6bd8b48830a8562c0c9cc9

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    ea8292f57895c06aaa8f36889a8970f0

    SHA1

    02459642b5ed3ccf09564d2c51a6d3ada13d0fbd

    SHA256

    fce08f8a6233726c2bd0482068f140845c8953a52448e5a171d0b96fe7e6690e

    SHA512

    af054ba331af691c9293abf9e9710b5c67947e283771fa4c326c5bb4a3b9a514b1d023b20221691c4729b761b9824ebd23077f870503f2cd679e33fc83565b7e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    1d054acca6545a7794196e7bc1504317

    SHA1

    4ba8013bfd1efd464085237ab4cf201faf679dde

    SHA256

    a198d1619f73a600f504615de32b054b2bce4a439cbbd585f73e055c71a4fd71

    SHA512

    a93e9140e15e9e9edfe1d3c00e8e17226b65db8c478466812da1fc15efe55a97be3c2a22f2652eed14289a9785cbc6a389170a85351d094a071999ec6ead57e3

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    8df1269380d42bbcd7c63e1c82abde99

    SHA1

    1fd477c503f52481de1f07d3a64f44afba8815d8

    SHA256

    5d8ffdcac9d9f421a99e1436a91a9f3db3595fa97422e5c8dd153fb4d0fe21cf

    SHA512

    bc2dccd59faba548eb5e17687ba5bcf8aa99623d045ee2e2004d66351cfec3a3348b71a6e3c079b8254b5bf7a5e341d130f94d2bdfb34f087a4bef4af9491721

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    32e20f9fe4417993f8336eca84f90671

    SHA1

    99211da642687eac772d502a4de07788254e9b6e

    SHA256

    7b12c65db3f378eea2b941b6cb86ab9097b8e8045a54dc1cce149083624f1dd4

    SHA512

    80e358cedb56a0fa28e1314f1beb564bd022cc4a3ba9a24f508eaf7d5c8b842763d5f847f15fb0cea50ea940e319f81890536cbc3696eb19ef71bd815b06ffc8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    1ab14b964a7ddfb103e2b96caf386813

    SHA1

    b4a9b233f30455a018557311928d31f73e874baa

    SHA256

    7b93af2fd0d0e157c36a518f526825ed7c3336fdd7196d69a401038a112167f4

    SHA512

    9a4cfec728eaa4085b28e0ab6defb57dec6084c330a80f4398623170ee7f50579620689ba1af71bd6970f6869c139218260a1c7f861177b3c14d322b4a6f38a6

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab36E9.tmp
    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar3962.tmp
    Filesize

    177KB

    MD5

    435a9ac180383f9fa094131b173a2f7b

    SHA1

    76944ea657a9db94f9a4bef38f88c46ed4166983

    SHA256

    67dc37ed50b8e63272b49a254a6039ee225974f1d767bb83eb1fd80e759a7c34

    SHA512

    1a6b277611959720a9c71114957620517ad94541302f164eb872bd322292a952409bafb8bc2ac793b16ad5f25d83f8594ccff2b7834e3c2b2b941e6fc84c009a

    Download Submit