Overview

overview

1

Static

static

1

811715779a...8.html

windows7-x64

1

811715779a...8.html

windows10-2004-x64

1

Analysis

  • max time kernel
    149s
  • max time network
    151s
  • platform
    windows7_x64
  • resource
    win7-20240220-en
  • resource tags

    arch:x64arch:x86image:win7-20240220-enlocale:en-usos:windows7-x64system
  • submitted
    29/05/2024, 14:39

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    811715779a564ff051b7470b6f6e1f5b_JaffaCakes118.html

  • Size

    240KB

  • MD5

    811715779a564ff051b7470b6f6e1f5b

  • SHA1

    15e29790e9eca525cbbfb585b5feb12d05dfd72b

  • SHA256

    23329671ec71c5c42e9a0d4c641359452afeded9b2fc35fca1724dffcba268fd

  • SHA512

    c4ac1e2fcd551b9ca329f5b0624bf496c5e8013a96f02182283e8cd8a6b6027b3adbcf42522620e0342488c3bdfe0a72af2f12849dafd56a337fa8aca52f4f32

  • SSDEEP

    3072:dKi3a7PxkKmO8MP63vkxEyUtCuFP+7FEjfQV5b3w+s/6LqimUkI0C+o7:dj3KZkIPW8xEyUtCu0i0/gsLqiP

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 26 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\811715779a564ff051b7470b6f6e1f5b_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1888
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1888 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2196

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\3C428B1A3E5F57D887EC4B864FAC5DCC
    Filesize

    914B

    MD5

    e4a68ac854ac5242460afd72481b2a44

    SHA1

    df3c24f9bfd666761b268073fe06d1cc8d4f82a4

    SHA256

    cb3ccbb76031e5e0138f8dd39a23f9de47ffc35e43c1144cea27d46a5ab1cb5f

    SHA512

    5622207e1ba285f172756f6019af92ac808ed63286e24dfecc1e79873fb5d140f1ceb7133f2476e89a5f75f711f9813a9fbb8fd5287f64adfdcc53b864f9bdc5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\CAF4703619713E3F18D8A9D5D88D6288_A7725538C46DE2D0088EE44974E2CEBA
    Filesize

    724B

    MD5

    ac89a852c2aaa3d389b2d2dd312ad367

    SHA1

    8f421dd6493c61dbda6b839e2debb7b50a20c930

    SHA256

    0b720e19270c672f9b6e0ec40b468ac49376807de08a814573fe038779534f45

    SHA512

    c6a88f33688cc0c287f04005e07d5b5e4a8721d204aa429f93ade2a56aeb86e05d89a8f7a44c1e93359a185a4c5f418240c6cdbc5a21314226681c744cf37f36

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\F0ACCF77CDCBFF39F6191887F6D2D357
    Filesize

    1KB

    MD5

    a266bb7dcc38a562631361bbf61dd11b

    SHA1

    3b1efd3a66ea28b16697394703a72ca340a05bd5

    SHA256

    df545bf919a2439c36983b54cdfc903dfa4f37d3996d8d84b4c31eec6f3c163e

    SHA512

    0da8ef4f8f6ed3d16d2bc8eb816b9e6e1345dfe2d91160196c47e6149a1d6aedaafadcefd66acdea7f72dcf0832770192ceac15b0c559c4ccc2c0e5581d5aefc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\3C428B1A3E5F57D887EC4B864FAC5DCC
    Filesize

    252B

    MD5

    3dbd106a0be9e7a3158d7f5a2d19b7cf

    SHA1

    be09dac391b1b2dd6c2d0decff1d6813741bca68

    SHA256

    b00c9a7c1289df2552d72bfd75303b69a4f6328c7d2705c91dbe3975de28370f

    SHA512

    6828074bd467d356a4c4f4609d9d01d3a4082f453a26aca9b2449c0e8e6446e7115e699c8cb9da289477a29818747546b762c3e482148a2751c6fa012e04b596

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    47540da3396ca8914265089cc9a5a699

    SHA1

    595fd57df5027d26198270ed8a1b99307a8f97f6

    SHA256

    0b61b4c16d534e2c810e40b1c3cc1b2d5f18aaa0526013d98cb2bf08a91ffd0f

    SHA512

    88e05957ecbbb6085fb75847ec5abb0987973430b85336b709d39b682e2406fa55e91b1e0c046faedc2bad597b53b0e3ff189268d14f75b2c2d9b6b5bfd1805e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    c3855af9458df1018e6debffe3a2dbc0

    SHA1

    5d4c2529c33af61fbf4fe416f944747f88ddd2fe

    SHA256

    74a846fccdcffd11deab16f29481acd8c667ba2a95967e372251e4d849df467f

    SHA512

    e887197f554e737f633983ca67de93830aea918593e07c3b343c819212f9f0caacc449738c97fdeab1b3cde650129e26e5b180ae01938a06cd9948978b1c6c8d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    0afa9a5f72fdff703962371348d67ff6

    SHA1

    55a355afffefc18bf38f0af1fe0256755deb1372

    SHA256

    de4a182df86e93129070faedae5622cdc96e5dd7e403e231e4856d8dd979f1ef

    SHA512

    f4ed398cc40b296c474ba4c0d8d34572fabdaaa926dda9b42674b0a9e418b97954d3b03d507764ebe6d594dc5fc96155f4add238bf39900f9a6d2e8787769f42

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    04dd213dd4f8342785c0f9a5bd4ff27a

    SHA1

    33e0d8443980ecbf054f1333439ede86de3234bb

    SHA256

    4723af8cdced552be80e6b8f91176c0434be2b057ca1a366afaa3f1001bf0e4f

    SHA512

    03321ebebd26d7637a73977d8c13449919d20b5642560b966f72cdad59fa6fcc9b5b7cdb9b51f020f8742c81e9bac76a8031393c62a71612cd601d029b621c7a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    ee0479c5af4eb35d938ff794f243b2d2

    SHA1

    648f8f0e9aaf81c7d4038a05c94e346c6ab0a1ed

    SHA256

    c2a224f8c829864d799e35aae9479e39734495234bb8e267ca3c55276cb0bcac

    SHA512

    bd0c99d772119aa4432b91c42ae8a6422848a722ec0e76853f950fb4eab464027a96fad49b6c3fae1fc09f70833adf7ab5db2b76b17b6ad8f20a722be5ee672f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    6b3a1c5754a6db3805ab87893d7f760f

    SHA1

    411bbb903acf3bf7d881c0b98a9a0b76d22806bb

    SHA256

    084e1685292bf46edcd276aced7cb3ba28c12dda080101352f5222b259ddc0ce

    SHA512

    419d8a6ce5637d25d8ffb6470698ca3046c3e2f493a72d597f2e087dec114a3a0b2488a6dcc94334cdcb80d282f813c854569e15b10b805a6ebb2f1c65ede760

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    b39c6b8d65b851f5778ab20da27177ef

    SHA1

    9ad9a49bbf3709a9545eb227425a7084acbb37fc

    SHA256

    f9f950533fe1d4ce781a3e31872779da99fe758c64ebd2522564578f4eff4d8f

    SHA512

    fc6c4bee611331ea4f00cb625dc0dfda38e194541b295e8b6067bba31225df58849b4095a0925610e5c504a8115dce627ecf272f2913e638298741b996f7d685

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    b7eaec24b7563519bfab958ade364e25

    SHA1

    7505ee074dfad72bf69bbda2965824c7b337cc88

    SHA256

    3f46ed168355fb630d81060de440b76bf936d6fb12144228c3afd96b3c7d188f

    SHA512

    7b6c32be2b63839a051e8507a56c25ac3d44cac54874082d24b2e9d8aafe99f2a145480099fd9388d3c6f9a7934e106068ab549a3fd77aad4b26f5303843e554

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    c2f821516588e65cca096fab453286a0

    SHA1

    91cb39b1d3d4766752a739b3d5e4219a6affbe6d

    SHA256

    268eccd6cf01e4c096e2b2230d32aceb552eac7fef8aaad98922b28bbec2c6eb

    SHA512

    840472e6830fcac8ecc3dc87e70203c561c165d17df920cb856e7002b4f0f23078946bfd0176b409860f6bba5a6df66b9d83364441c2b46e7267d655ff65f85c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    a2cd8d9fde0a8ab413f92b7eb6a0ed2d

    SHA1

    b14105295a0f9f1fb59455f67c1c8dc8be5bba8b

    SHA256

    19c9aaf378fe38ce2ea59efdb5e6e51a080f6904a92021585a2457055e3f0fee

    SHA512

    1c5328ba792730b75bd8cc4a33e21ee44d5304f2e6cf8229b02307f4511e8e84157990609c3c614d27314064c369db40d1da372ddb38ba0fc7dd163d18d55459

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F0ACCF77CDCBFF39F6191887F6D2D357
    Filesize

    242B

    MD5

    467152f44794fc4e25c9c91a74d3804f

    SHA1

    0509bab138cf5c784154687951f19b20c2e0e1d6

    SHA256

    50d7fb7fcf7eabf6fe693ab0462e847b90c1a3a444865c5e29b6869c2f91d6f6

    SHA512

    d0045430efc2b148c1ebcecbf0808eb76e1bf798286cf0f39bc242b0ba77c549b785ae56d3829802ae283747c7b956e05cac8a8b864154f85fcff3887d9dc2a7

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\RYNL6UIN\ytl-nafi-wujud-sebarang-isu-kroni[1].htm
    Filesize

    167B

    MD5

    0104c301c5e02bd6148b8703d19b3a73

    SHA1

    7436e0b4b1f8c222c38069890b75fa2baf9ca620

    SHA256

    446a6087825fa73eadb045e5a2e9e2adf7df241b571228187728191d961dda1f

    SHA512

    84427b656a6234a651a6d8285c103645b861a18a6c5af4abb5cb4f3beb5a4f0df4a74603a0896c7608790fbb886dc40508e92d5709f44dca05dd46c8316d15bf

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab11FB.tmp
    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar120D.tmp
    Filesize

    171KB

    MD5

    9c0c641c06238516f27941aa1166d427

    SHA1

    64cd549fb8cf014fcd9312aa7a5b023847b6c977

    SHA256

    4276af3669a141a59388bc56a87f6614d9a9bdddf560636c264219a7eb11256f

    SHA512

    936ed0c0b0a7ff8e606b1cc4175a1f9b3699748ccbba1c3aff96203033d2e9edabf090e5148370df42fbfc4e31d7229493706ff24f19ff42ff7bef74a6baad06

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar13A9.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit