Overview

overview

1

Static

static

1

95612b015e...8.html

windows7-x64

1

95612b015e...8.html

windows10-2004-x64

1

Analysis

  • max time kernel
    149s
  • max time network
    150s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    04/06/2024, 15:38

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    95612b015e8791589811129f61e4def6_JaffaCakes118.html

  • Size

    41KB

  • MD5

    95612b015e8791589811129f61e4def6

  • SHA1

    8070a7fb6322138d708cf78053c736c8f3fe4642

  • SHA256

    0d0d5e2fb38dfab8fdef1dadbe337f2ba1d8a4596e0de8dafa42fc7ee063b091

  • SHA512

    334839e0caa0d70e79b5605149807ed4cbec2b13f02dff739db55f6d37e13d9d1d6c4afc41b9a7cea435453b56e9bf5b47ad57484cd6045184bb393034b45abd

  • SSDEEP

    192:uwHNTb5nytynQjxn5Q/onQiezNn/gnQOkEntkqnQTbnVnQmS0xS3AzQkQQD/cXLJ:SQ/5ZRxoAk1NgkoJ4V8k

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 31 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\95612b015e8791589811129f61e4def6_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2944
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2944 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2076

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015
          Filesize

          70KB

          MD5

          49aebf8cbd62d92ac215b2923fb1b9f5

          SHA1

          1723be06719828dda65ad804298d0431f6aff976

          SHA256

          b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

          SHA512

          bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          fa3d5b638585c9914d30b63f0a9b4248

          SHA1

          eb46ea4ff0d90b9724d1b1a529c32cbe195c126f

          SHA256

          90dcbf113883706c039e5c6f0b4c8e60528bca07241847ec4720c565f1a3b7b8

          SHA512

          72c6dda7483008f967136f60d1e4a09f1151cbbdaad0a16243ccde610f1ec8779db052edb5085a554d9d277c1fd2b185cecb001a67f643994a1e4285c7363d92

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          14cd43af0883220fd7dd507e33caefad

          SHA1

          d1986ec5f45ff32a25fd9b16164f16e6fcf051e1

          SHA256

          829447931bca53971b8f95a0ae787fbddaf7ab11a3c92d326c84496fff2a894a

          SHA512

          0be53c908a79bdd9ec91399656b262b14ea57c766816ceb24ca640139b29d53ad3fede5876145a5cab8dadbd065c6c224db465403f6df6dccc5eee9c629f35f5

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          b1f6c572b852413539e8b95b4c8edb14

          SHA1

          2c3b1eb63d1def8ad1129bc3adb46573ad3c74bc

          SHA256

          b7f9fe28c4a7c718fd5dbf0d0583f0ac78c3027c8b2e621d5136825574954e66

          SHA512

          6e624517ac8b82e0f02ad57ed3dde658508e74ca95867016c79627887c4b3e6d10f7b60f3fdfe923a9ce79cb3fbbed7f3d892c1858058bb0e3749b9db09dc8aa

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          4e507d619a8bd9a7eaae2605c7a01ae6

          SHA1

          13a6d753927b538149d749e838f3a9f821bbe56b

          SHA256

          640d483b225b5a77e894d05a3fd5be27edf6cf1045fa22e1c95937e960f0e8f7

          SHA512

          198bc63601a6c9c95b5b29a41abfdb3f7e0efcb09c95b6669eb03da4c5e406fab0f294e64a318430a938d0ec154cb12558149d853a63b8aeaeec907f02fd8f56

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          42e88e89af33e7457927f47797cc2851

          SHA1

          eef86c1675b99b14904e374f4c5c09d50ab34db8

          SHA256

          6aacceb31a7f73d74fff86a95c1ef6e2dcc527a0030cbb30840c6d52d226102f

          SHA512

          193801c69736ea107834000c2264d8871df6148116b5e2445ce527b2eeda6af72f0e7437af2523d9d22a23b347e1bbe2ce67ab442d17f64cd296bd468cb90a53

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\Cab252F.tmp
          Filesize

          65KB

          MD5

          ac05d27423a85adc1622c714f2cb6184

          SHA1

          b0fe2b1abddb97837ea0195be70ab2ff14d43198

          SHA256

          c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

          SHA512

          6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\Tar265E.tmp
          Filesize

          181KB

          MD5

          4ea6026cf93ec6338144661bf1202cd1

          SHA1

          a1dec9044f750ad887935a01430bf49322fbdcb7

          SHA256

          8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

          SHA512

          6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

          Download Submit