Overview

overview

3

Static

static

1

68a440bcab...8.html

windows7-x64

3

68a440bcab...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    135s
  • max time network
    129s
  • platform
    windows7_x64
  • resource
    win7-20240705-en
  • resource tags

    arch:x64arch:x86image:win7-20240705-enlocale:en-usos:windows7-x64system
  • submitted
    23-07-2024 19:36

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    68a440bcab77d7289c010f627a07081f_JaffaCakes118.html

  • Size

    53KB

  • MD5

    68a440bcab77d7289c010f627a07081f

  • SHA1

    6fdfd80c11c02728f2006e66975b95293912c7dc

  • SHA256

    1c739a40c283ed6d4add8bbdb94f23620b65f69db135bba11e173c3047763441

  • SHA512

    33409f843a1aeaeaebbb15403b73a4902ded66be927e10da744e44e69b15b842f5d014410343214fd18efd7319a80b9d7534d29e3484e05ec0b3e6cbb0738031

  • SSDEEP

    1536:CkgUiIakTqGivi+PyUqrunlY863Nj+q5VyvR0w2AzTICbblo5/t9M/dNwIUEDmDn:CkgUiIakTqGivi+PyUqrunlY863Nj+qV

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\68a440bcab77d7289c010f627a07081f_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2436
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2436 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2776

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    751154d7cd5200ed47da395991fa95e1

    SHA1

    5ab8c21d2cafe41dc53b6eabd383ac025c58b6f2

    SHA256

    d397c2ee40aab281c635e4d5cee236fb48c5c3d353886b0f5e67af94e1e7e277

    SHA512

    d448d859675b88e1249c66442abbf414059a33b305ef15a03521e72c820129763805524d131b83c48641889c124c61fc36ad8cb3407f176d7d9d589982600a27

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    38b8c8f68c5ffc96f2398ec3509ad304

    SHA1

    a0f28e0c6462f1cd1f9e2ad8b92c78e8480b8ddb

    SHA256

    3d5e0e235121410ea9aecaf4ba3cfe41b30943683b4e715c80c1260c4089cdfa

    SHA512

    c573549c21e159f43548d4afb50389e67c760aaba1944fac73af5eb01737eca93b2a5df7e3d0be18be69de32f7fd8d7a2965f9e4bdda9956485d838efd72997a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    0eaa472fbc34eb3cbd26613105e89c01

    SHA1

    02eec39562be4c8417ab8aa02396362715f31856

    SHA256

    8b7c00f2f89273e41d323196c7bd8618b7a425b9a53ba0a52f46098f0699b434

    SHA512

    d51d8eb99896f99d7f88df4fd8a28558307a3e4c4c97c731bd429e65cda1772a8f206d1e2c2586ecfcbe4d2ad61d20bb36cea9c4efffb73b9198652271b81d01

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    9c7aae9be2bf9317d8c9cf38023b3a0f

    SHA1

    18f59cf7362729420fbeaea0bc39bd9ddd11be4b

    SHA256

    e79d810b8d0a551a772052b339392360c375fd77b63361487ee453b8323c6f95

    SHA512

    ddf59761aad0f89e5117d81d21219d45384f0dc58332e3c043d89105d58103edd89803a2061744562c0c6fbb312c06c962bdda1cc810c6a38caca1a2f20e05b0

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    300c2b272dba1a00c08680aea6ffe092

    SHA1

    0e2050e5984dec587ab616ce638f5779534ecb71

    SHA256

    14c51ee508adba723e042f88e1375cf56b46cee0fd32832e093c9aa81555967e

    SHA512

    f4d6624fd15cb0fc66a63a4dd8eb0297715019f0f208eae58ed78cb2e734cdfba2a9c01ec7b0b057fc426f0a672c0822cb40370b4b3742b99e6d3a32fb4687c2

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    5f7a4b257fc45dbf59e390131371d3a0

    SHA1

    2c6574b7ac931ec6f0e96a3ff712fce34fa05d4c

    SHA256

    daa2245096a176db20a31df533a5bfec08671c6d94379e4ab813ecc786ed0a39

    SHA512

    c5f14c5bec44ceb5a724d725f2045edd2d39ee46e273ed8cefdea0979efc1dda2127cf53cd533c584c503c6372d6184f3a2c7738ce813b538275f7f6d1d9a701

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    a4efd465742d9bcea8e7b138504506f6

    SHA1

    d2939a2d637868324f1061b4fb6b8e7d0faf863f

    SHA256

    054809a622fdb9038491a3440f334cbcddfb664dcfb742f882f9e28ab8079d50

    SHA512

    3cd63fe26c4fbe3b744d4201dace1580b4200e1163eb5a283edf5bc9118269471e7bb901ebc84d8940c83042b284fee736ecf3daf038ebb38a174a200f8720a6

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    bb54d85141ddd1a384c9812034ad2553

    SHA1

    565a9a17ad14bed2da7aa3a682266b5c6e69e546

    SHA256

    7123ceb06004502c6cfa4c542340bdd592e60aac91daafa0ad9c26bbf5382033

    SHA512

    500c1792b15f2b16dd6ff4de531db50613529b4efc5a8933104c15fddf3b33bb175b824f148f1c1356603f75cedab23c66e1779566dc2f26579272ae7125ec13

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    6f46322c7823c0aa10dd6015ab6ed5be

    SHA1

    bf14ea6ecb62bdfa9c93821e16594d4bd7ccac6b

    SHA256

    79e61c8491a88011f2531f1d6cb2ebc8ee43fa9974b13ee6bdfa560d561637aa

    SHA512

    e3f91516111cd3cd04f5e513c69a84e91d46ba79433e7620e2f44e58ee3e1e208378c6f14dff2195232737909b7e9c51e0fa95b2a92ac5940aba3c6b089d054c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    3340389d61a0e01c157078a38b17a21b

    SHA1

    22f3844da862cec2dc00fbd32aca18dc99850646

    SHA256

    a575433959046ea6f6a07bda00da7f188c5e5ee9a50a1e62c99a9557622a620b

    SHA512

    42791081113eb8a3e5a7713c95f29b9c42eb95fe8ea985c33b81c98aa72883f3a27cb59e4e66e46ff7a321eece910c8b91587f0d086e921ec344a95cafe1af34

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    313a23489e0f8b2c8be0030423835f2a

    SHA1

    330555be355864199f9380ae24ad7366a52c7980

    SHA256

    90b78ab252107fd5e5439847b5e0bd5e5a805006968fc6f694756e05c6a8c124

    SHA512

    94185291d56d8476b629c2bbe25c44c4d143cbb7adf1909bffc0af47732119fdaedebeed5d6389f3aa405c7e9d850af8dffb0b33b080ba6a8948c6ac70c3e6ae

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\KJ834MBR\glossar-js[1].htm
    Filesize

    706B

    MD5

    67f3a5933c17b3ab044826d3927d0ba9

    SHA1

    5957076d09bacaa6db8ddc832b4fd87ed8f05f8a

    SHA256

    97e800f4836b7030dd58fe6296294b7ff5ef1b5eb0e88353f230ea1608d2bb64

    SHA512

    03ba224055ffdbf32b7eea30c764dc18d66cc6d8707dc5fafab74e155b0bb3d4d691c5788b033a68f05299547297125122778fa7e3252f93e7343d918936643e

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab9ABC.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar9B0D.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit