Overview

overview

1

Static

static

1

b2d6a047ea...8.html

windows7-x64

1

b2d6a047ea...8.html

windows10-2004-x64

1

Analysis

  • max time kernel
    150s
  • max time network
    137s
  • platform
    windows7_x64
  • resource
    win7-20240220-en
  • resource tags

    arch:x64arch:x86image:win7-20240220-enlocale:en-usos:windows7-x64system
  • submitted
    16/06/2024, 09:42

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    b2d6a047eaafb03c8b8e9830d074af84_JaffaCakes118.html

  • Size

    214KB

  • MD5

    b2d6a047eaafb03c8b8e9830d074af84

  • SHA1

    244816295b5d978adf987abfcb1dbb67edfb0a53

  • SHA256

    087bebfff8bba8bc8ab50d196561a20a6dd8bc64194eadedd771a8572dd46e36

  • SHA512

    6db9323ec5431daecf0fd390698f613691282823e1d841f7fc6708e64a7fa83fc027b07d862bbefa22248c49773bded2ffe65a9ddbac68d0c343b5834fc7d100

  • SSDEEP

    3072:w0rhB9CyHxX7Be7iAvtLPbAwuBNKifXTJZ:wMz9VxLY7iAVLTBQJlZ

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 33 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\b2d6a047eaafb03c8b8e9830d074af84_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2092
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2092 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2540

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    1623a4d7113820e9e98cff98bb02d902

    SHA1

    a1e886a41b323b3ef0e69ccfe5dc31e699c906a7

    SHA256

    a582e852cde438ce3163bed59246bcebe13d110e73f7c8fe53533205d2c5710c

    SHA512

    bfd549d1afe648364fde0c65c373c413e3e53773f39a79f0393d31a916ad621c9b5cf8c3ab6b2a5bbafac684889466ed48d7a6f855f647ef98824c14b0edaec4

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    e1e05b49dcdb7ada3aed0b19849cfacb

    SHA1

    792711635da5c9aa6e804c0b5bd78d308cac3a05

    SHA256

    96d32db7b275414846b30dae761391fcb7eb3d276171b5b4731a776b72ae88ab

    SHA512

    5ce37dbb5c6e8be8fe80a091869bcbb9f1d50d245b30753f59b7ce2345409049c217c02f1ff9d91a76e3b29f7b926e78919242b0c96cf4eeeac963e1e4cb20df

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    d89ec04fa20d4e4549737567cc6b7cdf

    SHA1

    ec7e38c7856d1dd16a60b787cfa06e05771626a6

    SHA256

    aaf3913bdad84bd0837e94f4f634364af1a1fcd6bd41fa1b557fb301e9912576

    SHA512

    8b06da03e6733bd380256f1d4557144f0e8543048b6c3d6ee5ececb8d7647069f353f8d45278bcb2f428ad7ec678fe6a42923848a24a1fb7242bff0fadcf7982

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    522bbd1fa317636090c5d654e46f771a

    SHA1

    9d18209764563cbe8cc36be20aace13b6084c934

    SHA256

    0123b6914df1dbffbfc44c72baa730da6c7f0109863e8a0d86c35200d4080561

    SHA512

    964be0d0f541d76321442dd5483b2a4dd648a42a9644fc9aeb39413687ec865108c81491a26703bd1dc7b25e19214f4b28920fe873ca9687922d2a82d14971a2

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    52b1285bc20b0d5266f5bf796ce267f4

    SHA1

    5a56d33fa3a090ea4abcf705e5a9f822f075b678

    SHA256

    9645f99fc82ae7d0bad6c722ddc3a7d65077ced0ea1af5568775a17553cad2f3

    SHA512

    b69439c3a6bf52e7da17f5d3b4bbdc2c6b40190dba577e816f5a5dd19ccc1f4fbdf01cd22316ef0472eeedd9f0c39aedaa36b909068b2525274ae3fc1c53c020

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    4907043ab7b552c216d9af0d8d0c9a76

    SHA1

    d836c6fc70a615407166278762d47ad2b25b59a2

    SHA256

    5968a985254f588963d1eb6d08a6e7769e28ab97e9c08db3124aedcff412b8a9

    SHA512

    3b41b918e0c491bb56e341585508c12aae9c9385e9988add3e83334fdbf799c765895ae8f6399ede583480ae61d37712607eb9ede56c3877803d71f21d757eff

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    b3c913db0fe5ed8dda2f8809f7d36cb3

    SHA1

    df59198a273d054d38fd5b2f3e20af57ea9be54e

    SHA256

    abad6b8e5877dd6109c31db23fbb67329c40c2dfcb3dba173aea4ed6828c0bdf

    SHA512

    2016915034c2a1060e83414c615e2ced22f21352e4904530ceeae2f3a6c0bba7fd6e1d010a9f172507e30248cdfbdeb782bab2242bbf386f9bd5a2486a962a42

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab1086.tmp
    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar1177.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit