Overview

overview

1

Static

static

1

823f3aa693...8.html

windows7-x64

1

823f3aa693...8.html

windows10-2004-x64

1

Analysis

  • max time kernel
    150s
  • max time network
    149s
  • platform
    windows7_x64
  • resource
    win7-20240508-en
  • resource tags

    arch:x64arch:x86image:win7-20240508-enlocale:en-usos:windows7-x64system
  • submitted
    29/05/2024, 22:58

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    823f3aa693745119a63c57040b4e2019_JaffaCakes118.html

  • Size

    32KB

  • MD5

    823f3aa693745119a63c57040b4e2019

  • SHA1

    7f9c312a850129311713a4a4f70abe44275bc69e

  • SHA256

    9f6fee6203509e608ba6f0e5fca7713fa46934cc12ef5c65ac95a57f1cc842d8

  • SHA512

    3c523e829524646418a28aba97158d76b4e426047d13b184bbaf718dc79f0b69f5cadde7ffaefec3f07bbe7f60647fd6f5005a0b709a728fe943fe1021c16fdb

  • SSDEEP

    192:uwzUb5nubenQjxn5Q/WnQielNnJnQOkEntOwnQTbndnQmSoxzmCB/L3/tcBPLQCx:NPQ/GzxZz/scQogCYT

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 31 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\823f3aa693745119a63c57040b4e2019_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2964
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2964 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2184

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    5b649a7924736c8a198c927bda61fc32

    SHA1

    d12f79bed94cb638d0ff461f0965bf8c4e89a6df

    SHA256

    a2ec308198c31e1650183c4ed85118689fd8a9ef5d6e91198a9e501515e1ab75

    SHA512

    9f4e0df1b7cd59b7ceed5c69715d7fe506f9a9da955ca182e5dfd838d86a2cede115795c0700888515450740d4f94326ac1bdaaeea3373fd1bc0b9070d29f5bd

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    a77ee8249aa7c3b8131d1578613a2fd7

    SHA1

    b5965d7f5927de3096057dd7a5413786c0758e98

    SHA256

    f61ee90ba61bd88a1d37b8576879452996290bae8ab77c0bbc33c8db506240c7

    SHA512

    60c0008daccfa8cacdc046153aa7f8832c7bf5df9902b9fa39c3a50cd90d9c4db7b9ce4f66dce45b764b9b23731fb9852596910fcce69300806639f711e50a00

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    a26ce99c56b37e311a169964f3037d49

    SHA1

    13ccdaff7f4fab753af6e069cb1f866b7341a711

    SHA256

    8b862f17c1966e5652a4fcbedc2088923d69a63dc05fd60fe308788f01963685

    SHA512

    946553470f22f2f1317adf5ea336e5b1fc2a7c8772b2021e782b484bf9afa3f5633a9f74205ca4cd133fe410358dc5f35d449050679bd645d2ce06ef660c5a2a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    fb993c4d55d652ad090c68bbcbd92f3a

    SHA1

    9f2e33c2d30bcb9d1dcca7519018756d706bfc29

    SHA256

    3d4c7a661f598bf0bd5ec706927e02b78d3fe3e7fcaa9d1ca2649fb2d1e095a3

    SHA512

    1a04e801c896a1d1e657f1a3582a4d05c1c914ca6ea4c57247d812860b1abbd5e974f8eba85ff31a417a7240edc4c7b5ae569ec9a2e0d7fa24a1505b9172156b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    0cc4ae3d0d89521b01563df92b62cf8c

    SHA1

    a29296077560f8bad302927c5d8c1e491f59cf7a

    SHA256

    573f04334388f0e2247b691281875595216c5f58d8d36c7bb31182408e9db1db

    SHA512

    0bbfee762002d87a22d16d9239b3e609934694a42c41737b79ddbafd13dc99568aca2407b6d8b92f13bea4354bb6191f160ea62ec405f88587fc61be5042cba2

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    81ddcee48100425864ce641ed01b3105

    SHA1

    3c2e0f7f3df5090b490e3a2ae5c02476390b8d1c

    SHA256

    b0cafeee00994cb7ab8aadf16287712b2ce91415e97d5c4e5ae32575b36f3466

    SHA512

    e16c8632a6475972e9d762e0d760bc54c07217092cfd61258070554e8985a6021daac89c95f2ab3f7b198ecb058099dbf338d1e83a18836e8fb8dad05ad4eac8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    1413fdd5b6c4f88b4251cbefb608e52f

    SHA1

    36ee2a71ceab51d5e21bd495d2b8803993ea82b0

    SHA256

    0096ed476962a49e3f86624a69272338d1267dea51f087cad1a60f06ea566895

    SHA512

    c4c3bf41a87f18741b4070059af4088523394b3aec28d2899c6235e10effdd8c4228a5395525b4ae419c0aed21e93092e9088ed3d2cbe26efc30bdea82e0518a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    111289fcde4f096ed6de516cfd55cc86

    SHA1

    d24e2efc7b8b0f5dd13d104c01926fe4e617c8b5

    SHA256

    233390919a01cd4e2e11ae2431fe32df6bb8aab7c034f3cb3511d8fd317c625e

    SHA512

    87c90e31b36430939ff084c23c4c37320cec5b369518c9f412933549cb71e2f890436e704041a29bbbb461e340e672b4b35f0a8f51747558216d4410f108c781

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab22FD.tmp
    Filesize

    68KB

    MD5

    29f65ba8e88c063813cc50a4ea544e93

    SHA1

    05a7040d5c127e68c25d81cc51271ffb8bef3568

    SHA256

    1ed81fa8dfb6999a9fedc6e779138ffd99568992e22d300acd181a6d2c8de184

    SHA512

    e29b2e92c496245bed3372578074407e8ef8882906ce10c35b3c8deebfefe01b5fd7f3030acaa693e175f4b7aca6cd7d8d10ae1c731b09c5fa19035e005de3aa

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar2371.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit