Overview

overview

1

Static

static

1

b049d9aeba...8.html

windows7-x64

1

b049d9aeba...8.html

windows10-2004-x64

1

Analysis

  • max time kernel
    150s
  • max time network
    156s
  • platform
    windows7_x64
  • resource
    win7-20240611-en
  • resource tags

    arch:x64arch:x86image:win7-20240611-enlocale:en-usos:windows7-x64system
  • submitted
    15/06/2024, 21:54

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    b049d9aebada2fa6a9f24d5f673a5251_JaffaCakes118.html

  • Size

    19KB

  • MD5

    b049d9aebada2fa6a9f24d5f673a5251

  • SHA1

    70f916d447bfb93483121c78295b1658feb02d3c

  • SHA256

    8188d11f86b6b0d5f487501104b498399df9eb9b15b898843aa259be1da1f763

  • SHA512

    e33bd1c7193b29baae3e713a131ac61dbe3d10ec00d848bb13cc17f18665fb1a9b3dc9bba27407193a0ce981e5b6dc376e2bd48eb88945f35bb77de0a58941e3

  • SSDEEP

    192:SIM3t0I5fo9cOQivXQWxZxdkVSoAIH4FzUnjBh3J82qDB8:SIMd0I5nO9HVsv3ixDB8

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 26 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\b049d9aebada2fa6a9f24d5f673a5251_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:840
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:840 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2660

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    e794f853238108d313166c4b117cd5c7

    SHA1

    b2da19972920b2bddbe6d333fd10ae67e05ebfb4

    SHA256

    f3bcdeed280da43cd8c3e470fe1a8343a7af5c41304d18e59095e8cac485729c

    SHA512

    95b648570a0749b6c5273c8b746ca09e872e788d7e77fa5bc209dccc0376bcc4788b95238d98faa234140209dcae8a520431da356d1fbfe1320198a93dfe74ad

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    5d65c88adcb15e35a4fd08ee77b2e096

    SHA1

    3ebddd3606f405234b17778a8bc4b7c015e3a4cc

    SHA256

    dadb31ba1b4abbceb72f1e159e043c25b12231ce069e226d4ea103aeaf5f4d9b

    SHA512

    b569c8f674c83928841d720088e0f5f87d1705692565416e2aaff87ffa0119085437043ac575ee590f21c04c8b9941486e294d716960b301c9eea35cf6166ba7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    2446fc65086faecda54994d0aa5345f9

    SHA1

    c61a7ebf39384195dfa85c6bc1c0c225c131c478

    SHA256

    02d73494f11ec4ff804c91460df627bfeec19ae7d46accac0eb7cd7eba32e291

    SHA512

    048f69fd6f750f25addfa80dabd492250f97f7c01486351650e8c23548b2073d21702554841d3fbd86ba65c8e447c4f62b5127c94beb04297d2a383198bee194

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    0c1fc55435289cc13faadb69b193689e

    SHA1

    168a806f07fcda28176ac31e635436644503ef11

    SHA256

    6477cc7b0b7d1de17b224e27b984fbd15f48f5644cdf107e32b7b7af908ccf0c

    SHA512

    d19e102f2ec75441b2bf3b8310c3600a259118a583379bb7d924220983be54ce07d434c8e6cf0e52c939b36df346242d03f82bd7704ffa567447da03a6f2244b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    550acada20da64bf6daf91365a20701e

    SHA1

    5ba27b7d63e7fd427d3263616bbf7e84a5c55d29

    SHA256

    dc1a26399dc7ffe6414c08e74d246211c49e0d69dd3143ea990ec6a5af14b410

    SHA512

    54e4cd8321d318b48b12f345c97b89fa9b1b0bee2c55e1047c9cf73b568c39da32343fa8705bfd997ef30d813158e9a5ff98cd75fedb631244827ca6abd8c805

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    76b705020d60f8b5100ef55be4cb4921

    SHA1

    d88f74a7e1324004119bdc2106753c7851e5e59e

    SHA256

    cf93d2cd5495fd5109e583a7241527749806c9955383b3d34fbb6922d56da469

    SHA512

    74b484f275186638fa55d6506278f138bc4bd54558e1932717b297b896c041c0ba1557a9c0c577183555b5427c765b851fd801e7c106a8968b602fac39864b4c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    4d7bcddc0634355e88ba68472e117b16

    SHA1

    be0454d7ce48deb5b0918dbfc75a50e6e5e32640

    SHA256

    977c4d13d113aabec4802b626248dc55f58f52daa571b97798dad224a1155737

    SHA512

    f5075b62d181b705fe3cb9a4bfd45774049095e8ed2290b214c195979f5ab1ead5a08665dc5e561668547fd092f630c5d68dd92bdc4f5eda41e9d3bb7286b652

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    b968fedfaa2c47eba94e741fff73356d

    SHA1

    b603383c22353d5fd805fe5e89b25dd99ae33b15

    SHA256

    ed6fea3f2b567387fd8f3e9606e503e5e7832cc7b44fb22e9a5738a27b7b8b16

    SHA512

    0fabaf42a952d998cbedebbbcc967f00b977e7fa97e7ade49132f4644dbe1f4bf402bca54468ec6376d0b2452ec3d18559003e7e1f794752e64f6f9396767dc4

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab63C3.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar6482.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit