Overview

overview

1

Static

static

1

8b577b3a08...8.html

windows7-x64

1

8b577b3a08...8.html

windows10-2004-x64

1

Analysis

  • max time kernel
    150s
  • max time network
    155s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    01/06/2024, 18:20

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    8b577b3a081cd0501432db941ce2b58a_JaffaCakes118.html

  • Size

    26KB

  • MD5

    8b577b3a081cd0501432db941ce2b58a

  • SHA1

    c3c06ac6c1c20f7dd7408b43a4b9a7f3a46c5402

  • SHA256

    cf3e379640177df212cffade79f48698e51595522decbf7bd9e60e3651a6a2ea

  • SHA512

    b117ca01e97026fdde3b48370f5273914da988451fd5e5acebf2569aa03de554c2403cf3c945544b94f375d3fb382f27c45f8b3653c45b1e77f891b82d574a60

  • SSDEEP

    192:RdyVasoTp8560qNb5niLAbH03wnwneAcnQjLntQ/CNnQieVMn2hnhWnQOkrnt0V8:K7oMrQ/f1OEYEaD1+3

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 26 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\8b577b3a081cd0501432db941ce2b58a_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2256
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2256 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2632

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015
          Filesize

          70KB

          MD5

          49aebf8cbd62d92ac215b2923fb1b9f5

          SHA1

          1723be06719828dda65ad804298d0431f6aff976

          SHA256

          b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

          SHA512

          bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          0e47188331b7dbb947d126d46deecfae

          SHA1

          44141adb36b637a380b06e8b56287d6e0d2fb650

          SHA256

          ff6fb9238698d52eb646970b0762459ef093efb1e7a90ba49c2ccb0c0611c5c8

          SHA512

          912cbe975b1309dc119f56a0fcf948ef0fefb73e8a828d1b0b7cdc646c377e19e6cbbd0fd64425863dbd9e93b5a8deb9a5b69dee05b7e83dfa052664fc2a1642

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          031cbb50881ad447d6c4dcf30eb614c6

          SHA1

          b37c99d62f6a71291978500dd924b9e23337c9c5

          SHA256

          b351ddca7f84a85bf5bd020b1f346d5b1a6fa123a53798ebf55a8dd386dc1943

          SHA512

          3392dcbf6fce13a0da12c9335aea879ad0cdb811e6ebfe40cb91209997c7f5bc5365a07ca190450731e072a30823ca6ae2b9b85d2d23f3e667502ea15ee097e2

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          72c6ab5a21c48b4a943a9b0bf734b4f4

          SHA1

          4be551959900decb2e7b1b683802ba79fb6b5382

          SHA256

          2096bcd08f76564ed93772243108be0955a6437ad2bccaa126754dab63c96318

          SHA512

          4b728c6d64c71eb527697840d76ceb32eea70f27bbd693f419139e2d940d8308e76e643ded8fc7c18b457f9e71fd6ae7e8f54c11b45125f84d1e4148ed6ad86c

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          e2e6b6fe8ddad8f8afb60d8540a6a26d

          SHA1

          22ba93c84b113b17f173f76e8074d65bc91cdf0e

          SHA256

          4a6a68ec24fdaf23a3770ec1cdf5965d1d078df4370ebf7f0a50a852d5507746

          SHA512

          799f4b0a3100deffb73f5554dad01066fb48b66305a8e10f111187e33e6becbabaad7ba195fe2148e4365b98b42ef36a360ac762550f182f9d02bc5fb3fee0a8

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          00d9723228ee47bce132ae2830e7b2b3

          SHA1

          f1858957b212a288b62c1cfe3e0ddd08f132f6cf

          SHA256

          a9617e92c99c211e590915567e5151d0ca10ce5111185725ea0f74905599a791

          SHA512

          90c330d07a954f5bc6b42c91ca7747e68ed4032a15e229608be53508b796077d404e0397ee02ddd73b0b965ab99207d9c7181db4e664cf65ba6bde87397a2a72

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          7a4189cae2c28a5ae36e45ae66ee09d0

          SHA1

          5be416a9c1391e474c4a97f0db6281ed45fdf646

          SHA256

          28fbebf6a8d6163964d54f764eca939731942828d4575687d1ef4ed66bdc536b

          SHA512

          ee67dd294e99a5952c5492ebe1e3262c7885b955ec3e7d3bcf87230458973a8200e4147b1ece6887a4bf75b63bbd4fb97d3fd10161c60f84b7e29848dcbdd55f

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\CabA517.tmp
          Filesize

          65KB

          MD5

          ac05d27423a85adc1622c714f2cb6184

          SHA1

          b0fe2b1abddb97837ea0195be70ab2ff14d43198

          SHA256

          c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

          SHA512

          6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\TarA7BD.tmp
          Filesize

          181KB

          MD5

          4ea6026cf93ec6338144661bf1202cd1

          SHA1

          a1dec9044f750ad887935a01430bf49322fbdcb7

          SHA256

          8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

          SHA512

          6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

          Download Submit