Analysis
-
max time kernel
133s -
max time network
143s -
platform
windows10-2004_x64 -
resource
win10v2004-20240508-en -
resource tags
-
submitted
12/06/2024, 23:31 UTC
General
-
Target
a2f0b7d9b4cd7aac14bc069dda5a6f12_JaffaCakes118.html
-
Size
72KB
-
MD5
a2f0b7d9b4cd7aac14bc069dda5a6f12
-
SHA1
fe982b7384f06bb91ceb39990c3c98e73600b1a0
-
SHA256
d45dff7257adbbf43cc71839fb2179ccfd61058953ec1e97510522e29786bc18
-
SHA512
2d8c8a3eaa8d9b20950d3c73dea78e3bd60a793cd40d0917dd125159efbfcf4ec37a2bf06ba860222aaaf06a2d5eb7c16bab0e51dc001a9ddbde986c603d0a5f
-
SSDEEP
768:JihgcMYRdsI+mInDD5BLd0gGezZXAQ/3OpRtroT2jwC2aZZGMdtbBnfBgN8/lbo1:JLR/3OuT42F0tbrga9nhc8nhVW
Score
1/10
Malware Config
Signatures
Processes
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --single-argument C:\Users\Admin\AppData\Local\Temp\a2f0b7d9b4cd7aac14bc069dda5a6f12_JaffaCakes118.html1⤵
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --enable-dinosaur-easter-egg-alt-images --no-appcompat-clear --lang=en-US --js-flags=--ms-user-locale= --device-scale-factor=1 --num-raster-threads=1 --renderer-client-id=16 --field-trial-handle=3704,i,7012731823941922179,12386606396608877869,262144 --variations-seed-version --mojo-platform-channel-handle=2836 /prefetch:11⤵
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --enable-dinosaur-easter-egg-alt-images --no-appcompat-clear --lang=en-US --js-flags=--ms-user-locale= --device-scale-factor=1 --num-raster-threads=1 --renderer-client-id=15 --field-trial-handle=3804,i,7012731823941922179,12386606396608877869,262144 --variations-seed-version --mojo-platform-channel-handle=5028 /prefetch:11⤵
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --enable-dinosaur-easter-egg-alt-images --no-appcompat-clear --lang=en-US --js-flags=--ms-user-locale= --device-scale-factor=1 --num-raster-threads=1 --renderer-client-id=17 --field-trial-handle=4248,i,7012731823941922179,12386606396608877869,262144 --variations-seed-version --mojo-platform-channel-handle=5320 /prefetch:11⤵
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=asset_store.mojom.AssetStoreService --lang=en-US --service-sandbox-type=asset_store_service --no-appcompat-clear --field-trial-handle=5356,i,7012731823941922179,12386606396608877869,262144 --variations-seed-version --mojo-platform-channel-handle=5468 /prefetch:81⤵
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=entity_extraction_service.mojom.Extractor --lang=en-US --service-sandbox-type=entity_extraction --onnx-enabled-for-ee --no-appcompat-clear --field-trial-handle=5472,i,7012731823941922179,12386606396608877869,262144 --variations-seed-version --mojo-platform-channel-handle=5524 /prefetch:81⤵
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --enable-dinosaur-easter-egg-alt-images --no-appcompat-clear --disable-gpu-compositing --lang=en-US --js-flags=--ms-user-locale= --device-scale-factor=1 --num-raster-threads=1 --renderer-client-id=20 --field-trial-handle=5884,i,7012731823941922179,12386606396608877869,262144 --variations-seed-version --mojo-platform-channel-handle=6708 /prefetch:11⤵
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=edge_search_indexer.mojom.SearchIndexerInterfaceBroker --lang=en-US --service-sandbox-type=search_indexer --message-loop-type-ui --no-appcompat-clear --field-trial-handle=6132,i,7012731823941922179,12386606396608877869,262144 --variations-seed-version --mojo-platform-channel-handle=5536 /prefetch:81⤵
Network
-
DNSapi.edgeoffer.microsoft.comRemote address:8.8.8.8:53Requestapi.edgeoffer.microsoft.comIN A -
DNSapi.edgeoffer.microsoft.comRemote address:8.8.8.8:53Requestapi.edgeoffer.microsoft.comIN Unknown
-
DNSbusiness.bing.comRemote address:8.8.8.8:53Requestbusiness.bing.comIN A
-
DNSbusiness.bing.comRemote address:8.8.8.8:53Requestbusiness.bing.comIN Unknown
-
DNS8.8.8.8.in-addr.arpaRemote address:8.8.8.8:53Request8.8.8.8.in-addr.arpaIN PTR
-
DNS8.8.8.8.in-addr.arpaRemote address:8.8.8.8:53Request8.8.8.8.in-addr.arpaIN PTR
-
DNS8.8.8.8.in-addr.arpaRemote address:8.8.8.8:53Request8.8.8.8.in-addr.arpaIN PTR
-
DNS8.8.8.8.in-addr.arpaRemote address:8.8.8.8:53Request8.8.8.8.in-addr.arpaIN PTR
-
DNS8.8.8.8.in-addr.arpaRemote address:8.8.8.8:53Request8.8.8.8.in-addr.arpaIN PTR
-
DNSimg.sedoparking.comRemote address:8.8.8.8:53Requestimg.sedoparking.comIN A
-
DNSimg.sedoparking.comRemote address:8.8.8.8:53Requestimg.sedoparking.comIN Unknown
-
DNSwww.google.comRemote address:8.8.8.8:53Requestwww.google.comIN A
-
DNSwww.google.comRemote address:8.8.8.8:53Requestwww.google.comIN Unknown
-
DNSapi.edgeoffer.microsoft.comRemote address:8.8.8.8:53Requestapi.edgeoffer.microsoft.comIN A
-
DNSapi.edgeoffer.microsoft.comRemote address:8.8.8.8:53Requestapi.edgeoffer.microsoft.comIN Unknown
-
DNSbusiness.bing.comRemote address:8.8.8.8:53Requestbusiness.bing.comIN A
-
DNSbusiness.bing.comRemote address:8.8.8.8:53Requestbusiness.bing.comIN Unknown
-
DNSgo.microsoft.comRemote address:8.8.8.8:53Requestgo.microsoft.comIN A
-
DNSimg.sedoparking.comRemote address:8.8.8.8:53Requestimg.sedoparking.comIN A
-
DNSimg.sedoparking.comRemote address:8.8.8.8:53Requestimg.sedoparking.comIN Unknown
-
DNSwww.google.comRemote address:8.8.8.8:53Requestwww.google.comIN A
-
DNSwww.google.comRemote address:8.8.8.8:53Requestwww.google.comIN Unknown
-
DNSapi.edgeoffer.microsoft.comRemote address:8.8.8.8:53Requestapi.edgeoffer.microsoft.comIN A
-
DNSapi.edgeoffer.microsoft.comRemote address:8.8.8.8:53Requestapi.edgeoffer.microsoft.comIN A
-
DNSapi.edgeoffer.microsoft.comRemote address:8.8.8.8:53Requestapi.edgeoffer.microsoft.comIN A
-
DNSapi.edgeoffer.microsoft.comRemote address:8.8.8.8:53Requestapi.edgeoffer.microsoft.comIN A
-
DNSapi.edgeoffer.microsoft.comRemote address:8.8.8.8:53Requestapi.edgeoffer.microsoft.comIN A
-
DNSbusiness.bing.comRemote address:8.8.8.8:53Requestbusiness.bing.comIN A
-
DNSbusiness.bing.comRemote address:8.8.8.8:53Requestbusiness.bing.comIN A
-
DNSbusiness.bing.comRemote address:8.8.8.8:53Requestbusiness.bing.comIN A
-
DNSbusiness.bing.comRemote address:8.8.8.8:53Requestbusiness.bing.comIN A
-
DNSbusiness.bing.comRemote address:8.8.8.8:53Requestbusiness.bing.comIN A
-
DNSimg.sedoparking.comRemote address:8.8.8.8:53Requestimg.sedoparking.comIN A
-
DNSimg.sedoparking.comRemote address:8.8.8.8:53Requestimg.sedoparking.comIN A
-
DNSimg.sedoparking.comRemote address:8.8.8.8:53Requestimg.sedoparking.comIN A
-
DNSimg.sedoparking.comRemote address:8.8.8.8:53Requestimg.sedoparking.comIN A
-
DNSimg.sedoparking.comRemote address:8.8.8.8:53Requestimg.sedoparking.comIN A
-
DNSwww.google.comRemote address:8.8.8.8:53Requestwww.google.comIN A
-
DNSwww.google.comRemote address:8.8.8.8:53Requestwww.google.comIN A
-
DNSwww.google.comRemote address:8.8.8.8:53Requestwww.google.comIN A
-
DNSwww.google.comRemote address:8.8.8.8:53Requestwww.google.comIN A
-
DNSwww.google.comRemote address:8.8.8.8:53Requestwww.google.comIN A
-
DNSnav-edge.smartscreen.microsoft.comRemote address:8.8.8.8:53Requestnav-edge.smartscreen.microsoft.comIN A
-
DNSconfig.edge.skype.comRemote address:8.8.8.8:53Requestconfig.edge.skype.comIN A
-
DNSconfig.edge.skype.comRemote address:8.8.8.8:53Requestconfig.edge.skype.comIN A
-
DNSconfig.edge.skype.comRemote address:8.8.8.8:53Requestconfig.edge.skype.comIN A
-
DNSconfig.edge.skype.comRemote address:8.8.8.8:53Requestconfig.edge.skype.comIN A
-
DNSconfig.edge.skype.comRemote address:8.8.8.8:53Requestconfig.edge.skype.comIN A
-
DNSnav-edge.smartscreen.microsoft.comRemote address:8.8.8.8:53Requestnav-edge.smartscreen.microsoft.comIN Unknown
-
DNSnav-edge.smartscreen.microsoft.comRemote address:8.8.8.8:53Requestnav-edge.smartscreen.microsoft.comIN A
-
DNSnav-edge.smartscreen.microsoft.comRemote address:8.8.8.8:53Requestnav-edge.smartscreen.microsoft.comIN Unknown
-
DNSnav-edge.smartscreen.microsoft.comRemote address:8.8.8.8:53Requestnav-edge.smartscreen.microsoft.comIN A
-
DNSnav-edge.smartscreen.microsoft.comRemote address:8.8.8.8:53Requestnav-edge.smartscreen.microsoft.comIN A
-
DNSnav-edge.smartscreen.microsoft.comRemote address:8.8.8.8:53Requestnav-edge.smartscreen.microsoft.comIN A
-
DNSnav-edge.smartscreen.microsoft.comRemote address:8.8.8.8:53Requestnav-edge.smartscreen.microsoft.comIN A
-
DNSnav-edge.smartscreen.microsoft.comRemote address:8.8.8.8:53Requestnav-edge.smartscreen.microsoft.comIN A
-
DNSbzib.nelreports.netRemote address:8.8.8.8:53Requestbzib.nelreports.netIN A
-
DNSbzib.nelreports.netRemote address:8.8.8.8:53Requestbzib.nelreports.netIN Unknown
-
DNSbzib.nelreports.netRemote address:8.8.8.8:53Requestbzib.nelreports.netIN A
-
DNSbzib.nelreports.netRemote address:8.8.8.8:53Requestbzib.nelreports.netIN Unknown
-
DNSbzib.nelreports.netRemote address:8.8.8.8:53Requestbzib.nelreports.netIN A
-
DNSbzib.nelreports.netRemote address:8.8.8.8:53Requestbzib.nelreports.netIN A
-
DNSbzib.nelreports.netRemote address:8.8.8.8:53Requestbzib.nelreports.netIN A
-
DNSbzib.nelreports.netRemote address:8.8.8.8:53Requestbzib.nelreports.netIN A
-
DNSbzib.nelreports.netRemote address:8.8.8.8:53Requestbzib.nelreports.netIN A
-
DNSapi.edgeoffer.microsoft.comRemote address:8.8.8.8:53Requestapi.edgeoffer.microsoft.comIN A
-
DNSapi.edgeoffer.microsoft.comRemote address:8.8.8.8:53Requestapi.edgeoffer.microsoft.comIN Unknown
-
DNSapi.edgeoffer.microsoft.comRemote address:8.8.8.8:53Requestapi.edgeoffer.microsoft.comIN A
-
DNSapi.edgeoffer.microsoft.comRemote address:8.8.8.8:53Requestapi.edgeoffer.microsoft.comIN Unknown
-
DNSapi.edgeoffer.microsoft.comRemote address:8.8.8.8:53Requestapi.edgeoffer.microsoft.comIN A
-
DNSapi.edgeoffer.microsoft.comRemote address:8.8.8.8:53Requestapi.edgeoffer.microsoft.comIN A
-
DNSapi.edgeoffer.microsoft.comRemote address:8.8.8.8:53Requestapi.edgeoffer.microsoft.comIN A
-
DNSapi.edgeoffer.microsoft.comRemote address:8.8.8.8:53Requestapi.edgeoffer.microsoft.comIN A
-
DNSapi.edgeoffer.microsoft.comRemote address:8.8.8.8:53Requestapi.edgeoffer.microsoft.comIN A
-
DNSgoogle.comRemote address:8.8.8.8:53Requestgoogle.comIN A
-
DNSgoogle.comRemote address:8.8.8.8:53Requestgoogle.comIN A
-
DNSbzib.nelreports.netRemote address:8.8.8.8:53Requestbzib.nelreports.netIN A
-
DNSbzib.nelreports.netRemote address:8.8.8.8:53Requestbzib.nelreports.netIN Unknown
-
DNSgoogle.comRemote address:8.8.4.4:53Requestgoogle.comIN A
-
DNS4.4.8.8.in-addr.arpaRemote address:8.8.8.8:53Request4.4.8.8.in-addr.arpaIN PTR
-
DNS4.4.8.8.in-addr.arpaRemote address:8.8.8.8:53Request4.4.8.8.in-addr.arpaIN PTR
-
DNS4.4.8.8.in-addr.arpaRemote address:8.8.8.8:53Request4.4.8.8.in-addr.arpaIN PTR
-
DNS4.4.8.8.in-addr.arpaRemote address:8.8.8.8:53Request4.4.8.8.in-addr.arpaIN PTR
-
DNS4.4.8.8.in-addr.arpaRemote address:8.8.8.8:53Request4.4.8.8.in-addr.arpaIN PTR
-
DNSbzib.nelreports.netRemote address:8.8.8.8:53Requestbzib.nelreports.netIN A
-
DNSbzib.nelreports.netRemote address:8.8.8.8:53Requestbzib.nelreports.netIN Unknown
-
DNSbusiness.bing.comRemote address:8.8.8.8:53Requestbusiness.bing.comIN A
-
DNSbusiness.bing.comRemote address:8.8.8.8:53Requestbusiness.bing.comIN Unknown
-
DNSbusiness.bing.comRemote address:8.8.8.8:53Requestbusiness.bing.comIN A
-
DNSbusiness.bing.comRemote address:8.8.8.8:53Requestbusiness.bing.comIN Unknown
-
DNSbusiness.bing.comRemote address:8.8.8.8:53Requestbusiness.bing.comIN A
-
DNSbusiness.bing.comRemote address:8.8.8.8:53Requestbusiness.bing.comIN A
-
DNSbusiness.bing.comRemote address:8.8.8.8:53Requestbusiness.bing.comIN A
-
DNSbusiness.bing.comRemote address:8.8.8.8:53Requestbusiness.bing.comIN A
-
DNSbusiness.bing.comRemote address:8.8.8.8:53Requestbusiness.bing.comIN A
No results found
-
8.8.8.8:53api.edgeoffer.microsoft.comdns
DNS Request
api.edgeoffer.microsoft.com
-
8.8.8.8:53api.edgeoffer.microsoft.comdns
DNS Request
api.edgeoffer.microsoft.com
-
8.8.8.8:53business.bing.comdns
DNS Request
business.bing.com
-
8.8.8.8:53business.bing.comdns
DNS Request
business.bing.com
-
8.8.8.8:538.8.8.8.in-addr.arpadns
DNS Request
8.8.8.8.in-addr.arpa
DNS Request
8.8.8.8.in-addr.arpa
DNS Request
8.8.8.8.in-addr.arpa
DNS Request
8.8.8.8.in-addr.arpa
DNS Request
8.8.8.8.in-addr.arpa
-
8.8.8.8:53img.sedoparking.comdns
DNS Request
img.sedoparking.com
-
8.8.8.8:53img.sedoparking.comdns
DNS Request
img.sedoparking.com
-
8.8.8.8:53www.google.comdns
DNS Request
www.google.com
-
8.8.8.8:53www.google.comdns
DNS Request
www.google.com
-
8.8.8.8:53api.edgeoffer.microsoft.comdns
DNS Request
api.edgeoffer.microsoft.com
-
8.8.8.8:53api.edgeoffer.microsoft.comdns
DNS Request
api.edgeoffer.microsoft.com
-
8.8.8.8:53business.bing.comdns
DNS Request
business.bing.com
-
8.8.8.8:53business.bing.comdns
DNS Request
business.bing.com
DNS Request
go.microsoft.com
-
8.8.8.8:53img.sedoparking.comdns
DNS Request
img.sedoparking.com
-
8.8.8.8:53img.sedoparking.comdns
DNS Request
img.sedoparking.com
-
8.8.8.8:53www.google.comdns
DNS Request
www.google.com
-
8.8.8.8:53www.google.comdns
DNS Request
www.google.com
-
8.8.8.8:53api.edgeoffer.microsoft.comdns
DNS Request
api.edgeoffer.microsoft.com
DNS Request
api.edgeoffer.microsoft.com
DNS Request
api.edgeoffer.microsoft.com
DNS Request
api.edgeoffer.microsoft.com
DNS Request
api.edgeoffer.microsoft.com
-
8.8.8.8:53business.bing.comdns
DNS Request
business.bing.com
DNS Request
business.bing.com
DNS Request
business.bing.com
DNS Request
business.bing.com
DNS Request
business.bing.com
-
8.8.8.8:53img.sedoparking.comdns
DNS Request
img.sedoparking.com
DNS Request
img.sedoparking.com
DNS Request
img.sedoparking.com
DNS Request
img.sedoparking.com
DNS Request
img.sedoparking.com
-
8.8.8.8:53www.google.comdns
DNS Request
www.google.com
DNS Request
www.google.com
DNS Request
www.google.com
DNS Request
www.google.com
DNS Request
www.google.com
-
8.8.8.8:53nav-edge.smartscreen.microsoft.comdns
DNS Request
nav-edge.smartscreen.microsoft.com
DNS Request
config.edge.skype.com
DNS Request
config.edge.skype.com
DNS Request
config.edge.skype.com
DNS Request
config.edge.skype.com
DNS Request
config.edge.skype.com
-
8.8.8.8:53nav-edge.smartscreen.microsoft.comdns
DNS Request
nav-edge.smartscreen.microsoft.com
-
8.8.8.8:53nav-edge.smartscreen.microsoft.comdns
DNS Request
nav-edge.smartscreen.microsoft.com
-
8.8.8.8:53nav-edge.smartscreen.microsoft.comdns
DNS Request
nav-edge.smartscreen.microsoft.com
-
8.8.8.8:53nav-edge.smartscreen.microsoft.comdns
DNS Request
nav-edge.smartscreen.microsoft.com
DNS Request
nav-edge.smartscreen.microsoft.com
DNS Request
nav-edge.smartscreen.microsoft.com
DNS Request
nav-edge.smartscreen.microsoft.com
DNS Request
nav-edge.smartscreen.microsoft.com
-
8.8.8.8:53bzib.nelreports.netdns
DNS Request
bzib.nelreports.net
-
8.8.8.8:53bzib.nelreports.netdns
DNS Request
bzib.nelreports.net
-
8.8.8.8:53bzib.nelreports.netdns
DNS Request
bzib.nelreports.net
-
8.8.8.8:53bzib.nelreports.netdns
DNS Request
bzib.nelreports.net
-
8.8.8.8:53bzib.nelreports.netdns
DNS Request
bzib.nelreports.net
DNS Request
bzib.nelreports.net
DNS Request
bzib.nelreports.net
DNS Request
bzib.nelreports.net
DNS Request
bzib.nelreports.net
-
8.8.8.8:53api.edgeoffer.microsoft.comdns
DNS Request
api.edgeoffer.microsoft.com
-
8.8.8.8:53api.edgeoffer.microsoft.comdns
DNS Request
api.edgeoffer.microsoft.com
-
8.8.8.8:53api.edgeoffer.microsoft.comdns
DNS Request
api.edgeoffer.microsoft.com
-
8.8.8.8:53api.edgeoffer.microsoft.comdns
DNS Request
api.edgeoffer.microsoft.com
-
224.0.0.251:5353 -
8.8.8.8:53api.edgeoffer.microsoft.comdns
DNS Request
api.edgeoffer.microsoft.com
DNS Request
api.edgeoffer.microsoft.com
DNS Request
api.edgeoffer.microsoft.com
DNS Request
api.edgeoffer.microsoft.com
DNS Request
api.edgeoffer.microsoft.com
-
8.8.8.8:53google.comdns
DNS Request
google.com
-
8.8.8.8:53google.comdns
DNS Request
google.com
-
8.8.8.8:53bzib.nelreports.netdns
DNS Request
bzib.nelreports.net
-
8.8.8.8:53bzib.nelreports.netdns
DNS Request
bzib.nelreports.net
-
8.8.4.4:53google.comdns
DNS Request
google.com
-
8.8.8.8:534.4.8.8.in-addr.arpadns
DNS Request
4.4.8.8.in-addr.arpa
DNS Request
4.4.8.8.in-addr.arpa
DNS Request
4.4.8.8.in-addr.arpa
DNS Request
4.4.8.8.in-addr.arpa
DNS Request
4.4.8.8.in-addr.arpa
-
8.8.8.8:53bzib.nelreports.netdns
DNS Request
bzib.nelreports.net
-
8.8.8.8:53bzib.nelreports.netdns
DNS Request
bzib.nelreports.net
-
8.8.8.8:53business.bing.comdns
DNS Request
business.bing.com
-
8.8.8.8:53business.bing.comdns
DNS Request
business.bing.com
-
8.8.8.8:53business.bing.comdns
DNS Request
business.bing.com
-
8.8.8.8:53business.bing.comdns
DNS Request
business.bing.com
-
8.8.8.8:53business.bing.comdns
DNS Request
business.bing.com
DNS Request
business.bing.com
DNS Request
business.bing.com
DNS Request
business.bing.com
DNS Request
business.bing.com