Overview

overview

1

Static

static

1

8f17597ea0...8.html

windows7-x64

1

8f17597ea0...8.html

windows10-2004-x64

1

Analysis

  • max time kernel
    131s
  • max time network
    143s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    02/06/2024, 19:02

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    8f17597ea02cff0f17a7495144b3df14_JaffaCakes118.html

  • Size

    46KB

  • MD5

    8f17597ea02cff0f17a7495144b3df14

  • SHA1

    efb3ee729712f64e3d701c5bb947d7353fe241b5

  • SHA256

    153059f7dd3b4fa56b7960bd14dc4bd8258b41eb1f436fc9fa5784639147e43f

  • SHA512

    232428a4a155ff8fd4c532b32dde0c37b9b2b2f04402a3c684d967f1a30a468fefcf8eba5fd229dc617fa2d0a7b36a09b7a74afb74e50ec44c2f915632573296

  • SSDEEP

    768:ewAbkclutnoEkI+OXVySOoxSvlDCv5C+cYwKMjsjGsziV3LZ3EA:ewmkcluTkzOFySOdvlDCv5C+cYpM2ziB

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 62 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\8f17597ea02cff0f17a7495144b3df14_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2224
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2224 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2900

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\3C428B1A3E5F57D887EC4B864FAC5DCC
    Filesize

    914B

    MD5

    e4a68ac854ac5242460afd72481b2a44

    SHA1

    df3c24f9bfd666761b268073fe06d1cc8d4f82a4

    SHA256

    cb3ccbb76031e5e0138f8dd39a23f9de47ffc35e43c1144cea27d46a5ab1cb5f

    SHA512

    5622207e1ba285f172756f6019af92ac808ed63286e24dfecc1e79873fb5d140f1ceb7133f2476e89a5f75f711f9813a9fbb8fd5287f64adfdcc53b864f9bdc5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\F0ACCF77CDCBFF39F6191887F6D2D357
    Filesize

    1KB

    MD5

    a266bb7dcc38a562631361bbf61dd11b

    SHA1

    3b1efd3a66ea28b16697394703a72ca340a05bd5

    SHA256

    df545bf919a2439c36983b54cdfc903dfa4f37d3996d8d84b4c31eec6f3c163e

    SHA512

    0da8ef4f8f6ed3d16d2bc8eb816b9e6e1345dfe2d91160196c47e6149a1d6aedaafadcefd66acdea7f72dcf0832770192ceac15b0c559c4ccc2c0e5581d5aefc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\3C428B1A3E5F57D887EC4B864FAC5DCC
    Filesize

    252B

    MD5

    cc3e2bda11c273b56a7cad5d706b38b2

    SHA1

    8c08e5d279c50e837ae71c7dc617c2bf8272ad1b

    SHA256

    915ee65051d519a8bb1b111614a93e5c557d749656fe846058c24f3129e4acc1

    SHA512

    4f0f2804bbd4d8fc22a4871fec24085ffe51059db7cb548deb3686e8d73f94d4edc03b42564b5ecaf47613358df203622be0119c793637e49ca5dfcb3419f732

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    14c97af2e4a0d1c483cf089d1c3bee2a

    SHA1

    6ecab97431936237ea910edcb358e4a6ff51921e

    SHA256

    f98c80c2bba08fbcf8838715537a730f77813edc77a79c9c3edadb89a7ec724f

    SHA512

    991fa0a9c03771bda0c24948d69d23db0146c3b03130133c63f8849587a364d674a189a531decc5b335e5d1ec1c269db67bed300c1c107ca9aa66eb156c11f3e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    d89b93c69f6c261e116df2cdb1261287

    SHA1

    95510dc7a43bf510c1c18a9c330f242f9d9745e3

    SHA256

    0f61e0d7ab55c742e90d17f459de3d27106487d87d263834a2e00805539c259b

    SHA512

    e2be7cc4a949d8a8c8836c2caaa7229e007d00b78eb958789d022efa02155d96f7d9845290ed74f4b7cb635aac293cc3054a450d44260aac924dfe0c4237565d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    a23d59fddf79162bdfdfad8e5cba1c38

    SHA1

    f5652b260748e438d9b28324b7bc2584a99b6dfa

    SHA256

    d788892ac17a48c71ca5cd08e3305eaf02ef72a23f30fb8cd6d6c916d02c4a52

    SHA512

    f310e8cffaf1431a6d204ade433b5ad3bfabfaff8a0098c1f64f067bdb2bdf7377512708ca8bc2b47c5c62c831fe0ae85c0fa74d8c4ac47f2c3e8ed647d86070

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    389c44015b7fd94db754e2f469363af0

    SHA1

    d661c708e187c20d4ba1a49a543dd45cfe36070f

    SHA256

    d6ca1b8040fb5e81cfa9002774ce516c3f17ab0badfceccd30a9aeb586502244

    SHA512

    fcac82b05772d7aafe5897002a85a3a2badc79b5920199781a8b987fc75cae2b2f5701b7a40b7400f39941993a9efb60396e2754290f6e21c9514777eb10bfeb

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F07644E38ED7C9F37D11EEC6D4335E02_827A2BD464611B5891D523F77B43FEB1
    Filesize

    406B

    MD5

    1907392e41452769a9d510e819b4e410

    SHA1

    4dcc46914fa5bbaa515166525c4ccfd9084cb77c

    SHA256

    7d90c6fa6a77d2a33b579acbf117193cd0c7c5f21ac6922683517770aca627f0

    SHA512

    b9fb5aa38775b3e6b0d9a547f91caa627be80a8a024cee00ce54d596998fa442241e7a3fed891e733db66aa83710482bf85a3374580f58082184fe30addef2e3

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F0ACCF77CDCBFF39F6191887F6D2D357
    Filesize

    242B

    MD5

    3b5f21d32c68f74d87e65faafefccada

    SHA1

    f5634fd6568014d29ee069bd1efba363ae788605

    SHA256

    1ffb92a68640bc0c4577bc22986ee6f0b3669aefd5618cb36bf6694fa35aaa41

    SHA512

    e07a34104e20805a779972cd53c159120700b5f40e164d7779a52ad02ee09c5d87f3774860ad5c949d6854d328cf4d059047efbb4c8815513f4e93d0519c600f

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\XF60HOLA\www.youtube[1].xml
    Filesize

    13B

    MD5

    c1ddea3ef6bbef3e7060a1a9ad89e4c5

    SHA1

    35e3224fcbd3e1af306f2b6a2c6bbea9b0867966

    SHA256

    b71e4d17274636b97179ba2d97c742735b6510eb54f22893d3a2daff2ceb28db

    SHA512

    6be8cec7c862afae5b37aa32dc5bb45912881a3276606da41bf808a4ef92c318b355e616bf45a257b995520d72b7c08752c0be445dceade5cf79f73480910fed

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\XF60HOLA\www.youtube[1].xml
    Filesize

    229B

    MD5

    4b424be3f1840a127944194dcb6e99f9

    SHA1

    89b4817b5bfb049aa248b78e6aead50b02e36fa3

    SHA256

    c6cf7f2bd62c3a442fc0e264e210aa990184d49d1928e3a0c265e0a5205cc441

    SHA512

    b6f349dc97eb9042e120e7fadb5406486bb87c1a07e36427961f33cd2b1a58ecda201bae9a43232ce08842699b7dd028a2c55f0cba6da6e8404acd91a85c1824

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\XF60HOLA\www.youtube[1].xml
    Filesize

    16KB

    MD5

    0ac93f6a4bfe29e2a37bdb5d3aeb38f4

    SHA1

    8d0a4dd3cccd98736c739aec66f71624c74f69fc

    SHA256

    d03946cfeca6ea4e9127ed2efbbb08d545c27abe895c9c8c16b96236add156ef

    SHA512

    b25bacf10a7d7e45f85f7014c7f935f4480c47a2ababd3ef529c9274f1ff110705e1b77ca5f887858e7073bb2b602619536703039c8190307a493d5165caa0df

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\XF60HOLA\www.youtube[1].xml
    Filesize

    578B

    MD5

    2d1bd11e5f3b654e5a09cf72f25e8ba9

    SHA1

    3addf05f34543866399a42e6511631e5e1201e00

    SHA256

    03aeba488e8157398cd7997e74cc21d3abfd382beee32609f99491ae36c0b14a

    SHA512

    201f0e4c34419301a89625ec937c70d0b19b9f7d80e45999ba562efe170aa80803fc40be3fab7c39b083c363acffcecec67b94906900baf0a5141346d7253ad6

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\XF60HOLA\www.youtube[1].xml
    Filesize

    578B

    MD5

    1177bc719df386aaf95fbd4f30eabd41

    SHA1

    ce63ebc11f79e8ba99aad668205f49ad37b5e20e

    SHA256

    991c152a8d6a48c5241f9f62315488197545270957ab8f72aca82e629334d170

    SHA512

    206bf2135e2d14aa402cdd4826853d201b77ffc86a8c57a3e99462cbc6fa400e019dbb0e94b3be9ed48451f77e8094296b99d193579b9a400591bda7258707b9

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\XF60HOLA\www.youtube[1].xml
    Filesize

    578B

    MD5

    af09de5a953e0b5d68828f3619032a1b

    SHA1

    3181ec68ff4cdf38bfa14ea957351c11de001ccb

    SHA256

    fc05f794d45784e32e966fa6ebaf6cf0a38d737afba19612f1a22f606d89694f

    SHA512

    95fa190ab05e3b3f932735bb622ecb68b9b9091dc12072280a028cc844285c8fb9752c11ceeeb23127d701341611c90ef1043c4cdf4c820205d18ed7787299b9

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\5DKX8QD5\rpc_shindig_random[1].js
    Filesize

    14KB

    MD5

    6a90a8e611705b6e5953757cc549ce8c

    SHA1

    3e7416db7afe4cfdf3980daba308df560b4bede6

    SHA256

    51fdd911dc05b1208911b0123aed6b542e9d9f04c94d7504c63d89ca259ef679

    SHA512

    583636571c015af525cddd5b8dc2ac9964aba5a7a9b0acd3908e4aeb4c2ee74cdfaabe49b0aa13d7b142748542426864e91e88e90d7f73bc647f0bfecb0ff7bd

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\9M0HR0P6\cb=gapi[3].js
    Filesize

    134KB

    MD5

    f9255a0dec7524a9a3e867a9f878a68b

    SHA1

    813943e6af4a8592f48aeb0d2ab88ead8d3b8c8b

    SHA256

    d9acfd91940f52506ac7caeffea927d5d1ce0b483471fa771a3d4d78d59fda0d

    SHA512

    d013be6bfc6bcf6da8e08ed6ff4963f6c60389baa3a33d15db97d081d3239635f48111db65e580937eb1ea9dc3b7fc6b4aecb012daeee3bf99cfebf84748177e

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\L9PN2QMY\2UOSF37H.htm
    Filesize

    201KB

    MD5

    10cee5c7ca893f614aa3e82ef22f6eda

    SHA1

    a415ee143ec60b00f1b8aad4f663ff9d75fc289b

    SHA256

    28d2a6eaea5537ab61bae6661da8ef8d990cbc2b4e18364add673e1388abb4dd

    SHA512

    4eead9928a9f3c7393cf4e8b1b9558b05ada8d86d83ca37e0dc544a4d200966128fe81766a21a66b9dbd6395f5ac1fb14fb8727cbbe0a7e67772d785807cee63

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\L9PN2QMY\3604799710-postmessagerelay[1].js
    Filesize

    11KB

    MD5

    40aaadf2a7451d276b940cddefb2d0ed

    SHA1

    b2fc8129a4f5e5a0c8cb631218f40a4230444d9e

    SHA256

    4b515a19e688085b55f51f1eda7bc3e51404e8f59b64652e094994baf7be28f2

    SHA512

    6f66544481257ff36cda85da81960a848ebcf86c2eb7bbe685c9b6a0e91bca9fc9879c4844315c90afd9158f1d54398f0f1d650d50204e77692e48b39a038d50

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\U8A9A2DI\platform_gapi.iframes.style.common[1].js
    Filesize

    54KB

    MD5

    682c26af19b240f98d2cb951721fa54d

    SHA1

    18e58b652c7f82a55ab4b1910693686049e25d62

    SHA256

    96428f0f585a874c185d560538ad83ebfad0365d760fcf9fcefe80add9e3c980

    SHA512

    078aeef086271b7f9cf0f6e3a1e7908d7e38465a1a7a4de6f2a785147e9130551a2995e80600824da9341d58e5425d4505518e90eea9ffe1c64f4f41825a9660

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabB5F9.tmp
    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarBA15.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit