Overview

overview

3

Static

static

1

6ef28eda48...8.html

windows7-x64

3

6ef28eda48...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    126s
  • max time network
    128s
  • platform
    windows7_x64
  • resource
    win7-20240705-en
  • resource tags

    arch:x64arch:x86image:win7-20240705-enlocale:en-usos:windows7-x64system
  • submitted
    25/07/2024, 09:07

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    6ef28eda4808c9aaa794181548097885_JaffaCakes118.html

  • Size

    25KB

  • MD5

    6ef28eda4808c9aaa794181548097885

  • SHA1

    8d81dca736ddc0da4e26d499125a592c28b0cac8

  • SHA256

    965bb2778d6c612f09ab26e2a9207f497816dcad75beafbcbcff9814daa320d9

  • SHA512

    113fdc2689ec0e9916130b32d09061e85c3a7d6b5b0650fe66271e8f5550ff8aa31abefae21acbbbe8aed09138698daf845cea07673e2ee8fe2a83b125db0eac

  • SSDEEP

    384:zEglIcetp4AdGTHnXXyw62hHc9n6Z8Y/gRE6guLZ:8W82gK6xLZ

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 26 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\6ef28eda4808c9aaa794181548097885_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2060
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2060 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2800

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          1844e3ca7adbaf11bc2d7d022f6c524e

          SHA1

          e6db740e35659e2ff5d45425fd47920a4266c121

          SHA256

          ec88062896d59526d4e50432e7daf4c726ffb17a21981bb381ba7913d7d5ce2f

          SHA512

          7d2a9b928fbaafa93362c60c2d3098a3b7776f184a7c19fb02d2d769535ca880df018ecc6c48a9662d277b29932d69b795f9c47e1f8d9f6c57416ab48b5fa195

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          f2e59d3ed1f4cb8492b5ab01cd4f8420

          SHA1

          49b23bab58216b7e331d5bcafa36f949651a8a8a

          SHA256

          6c4b8a18824c5372aacb01428b3a25e120fa7e7c9dc79fc6e0575b1d55121428

          SHA512

          0cacd31d5f2562841f0c2416fd7db8741426071b915dbc6e1dde22512f6f5e210a91f15cefbdea0fc3f5eddfa22d0245f791e58575259c9d99369466c72c6dc8

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          1656e4c8d3d5ec053f1b41372ec28316

          SHA1

          1451e8e3cb1d49bef34892bbe999d42e463c64c9

          SHA256

          2644f4ba906635bcc52040fee6a62b323db5bf1a781904e3545d4e4f3f814b7d

          SHA512

          2766d487cd1a8b10349cebc539d093ec139b31eaac79400e21fef6ec716dedee835b366675850a8212c46b1424f9a8f28d32c81c4a7da3d05e589e8ed14cf9dd

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          7d67afa6a557b2d2402fd2cd91155b8b

          SHA1

          491199eb42f2e85842545af844be3104917f2367

          SHA256

          0196caf9cb68a541ed584a273d86afe977297eec3405f5c2ddec09cff24719b3

          SHA512

          2dac19b5e3521d7c22f02a899706ea482d6986c2f1fa373163eaf4b35adb05ab245eeb82789db14d70eacaa4d2567617973404a7b833b49003bb9644c4e961e2

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          e90d56811f7fc4f32fbbefa2fb918a16

          SHA1

          d7844ad9d9f2d706be44ed810d4053c4dc2aba17

          SHA256

          0622c13ac0a05525d8050648e68478ee1098636267bd7eea8cd277740d113e57

          SHA512

          903d9a713e5dc843ba7fcef22ee72988f7773cdc3a4b2bbd7e2d7a57f21c1fe639cb08c824d8c5196f84d7c6728002b0473adf84f125eb0b210ab3eb7af103b7

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          6697086d6db532fa0606dead537a872c

          SHA1

          2ab94846b054015be43bf9dbb5eefa73afe0ba3e

          SHA256

          a9beb73c13067e9b8cbf4b117fd0ca7e22acb8e686582274bbf411f60db792b6

          SHA512

          b2d90189dcc5b048f4a6ce7c2262115a9771c0f2d1e6bfef3706e10b683b598f30ae2a54b4fd64395df293e4d5a991fc11d047303790cc62f32104ac7d04dff8

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          48fca7022fe9a4833103ff36df22e878

          SHA1

          ccd43298a7546b6867b151cca414299b9cc55551

          SHA256

          11a31004315960ae5b9ff978e5a52b4922f36fa0851a80b62e8e80fe101546ae

          SHA512

          d846037370b1d73689e6afc8a891420c3d4fb40c9a0ec9046776fe6b20270770fa88c491d63ea49bf71d066e690c06335835eed32f4c787ae5369ae5fbbcac29

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          af1da71a996ddd8947c534f74cea132a

          SHA1

          28e00741a3c69d5e8139cc73cf2a9341809f6fc7

          SHA256

          e465a9679c9b3e474bd68d50f4c747c85816f0e1b9dc01baa5e3fb3c43bda8c3

          SHA512

          1163430b42ed3fb675491d499582f2487a63806ef7def182fd2304657633354ba139357c47716f3b3c2165a5afd2528416654298eff60dc2a330f2bdf5b84580

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          145f043fcd6ed92442463001feec2cdf

          SHA1

          95746475b2d8e7b8ec7292e2e2de1d33f2fd54b1

          SHA256

          c32db2fdd009787e801993383b277c653537c3e712afd7a1a18ebd33bc1eb5b8

          SHA512

          5a6dec9b2f433d9562b03e1f8b2ac2e4178c785c12b3ea96b5f9f525cf502f2cb13fec9e052ab04257071ecb8964bcde41600b1c3e71dccea3c1be50f7ac8961

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          e6d25511cd20a95a83a21350ca93fe3e

          SHA1

          20ea2be2ae399a6706ca86d22715e817d03f671a

          SHA256

          4683909281b0b3f6209dd9b3ecbb5f541544306204ce7f134b3b2b9ddbba5719

          SHA512

          6a19a16a6a66101cc8f671e1296fcb50a7a5544f8bb62971d329aad91238b8a7baab84f2fe197eac32a8e2ccd3bcbcf58ce2d3caafd5a28fd4d9c7d316c5d267

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          3019163bab4ee2f74d844afed96bc619

          SHA1

          088eadd0afc325cd5039e3153ad390a568e77475

          SHA256

          32302bfcd01862b3964f190d4a173bcff4eeb3ec31db7a8a0f55f1725e5dfb2c

          SHA512

          5a78bf88efb9b94ea442a1ecb6b9a452a281d4f705ffb1594b2c37d717e7ece5396ec89f18869ff280c16bba946ac43e467719a0889ca1a77c55d3b9c7970cdb

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\Cab66A0.tmp
          Filesize

          70KB

          MD5

          49aebf8cbd62d92ac215b2923fb1b9f5

          SHA1

          1723be06719828dda65ad804298d0431f6aff976

          SHA256

          b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

          SHA512

          bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\Tar6740.tmp
          Filesize

          181KB

          MD5

          4ea6026cf93ec6338144661bf1202cd1

          SHA1

          a1dec9044f750ad887935a01430bf49322fbdcb7

          SHA256

          8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

          SHA512

          6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

          Download Submit