Overview

overview

3

Static

static

1

6fb39440ce...8.html

windows7-x64

3

6fb39440ce...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    141s
  • max time network
    142s
  • platform
    windows7_x64
  • resource
    win7-20240704-en
  • resource tags

    arch:x64arch:x86image:win7-20240704-enlocale:en-usos:windows7-x64system
  • submitted
    25/07/2024, 13:08

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    6fb39440ce0905d04266098061d26c27_JaffaCakes118.html

  • Size

    68KB

  • MD5

    6fb39440ce0905d04266098061d26c27

  • SHA1

    fda1b2ad54c6b22216779fb98b40a20576642e00

  • SHA256

    597ebe234718591d6d3b08118b56c0f99de7b50ebfe21ff5b782d63bb2554f93

  • SHA512

    cbb82bb780f3622bae6090388e67b401387b8973bbeb22d2a410dba8eb0158f21bc2d1425bfdf895cba7014ff01378d7c6dc482a5a022b58dff420ef66537693

  • SSDEEP

    768:SK0hqGbIiP//mdvsYSgLj/DVWmTMYq8Dfr7Vq3t40MSxjfLD+PHgkyMrj3DZ+/Vx:S9GUIk/ktnwOHGGJGymGqG5GeucO

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 44 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\6fb39440ce0905d04266098061d26c27_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2632
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2632 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2804

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          304B

          MD5

          8757316d19ce394e8b1ad98e76a1e56d

          SHA1

          25c12274fdda90db649d70d729d04d762480adf4

          SHA256

          8c7ac64a333cf7f5310b63af456079e8b899e4949c82edf91f7837f57c77fb55

          SHA512

          b75ed388c15d3bf430402e8d6f4080df9e159e6745d7f8c73ace3182eeef7dd2081bb08b91ef0f953872833448ec9db0fbef0c40dea3b0127f280e80f49b4e47

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          304B

          MD5

          60897763e8f18217ddd51a1a9276da49

          SHA1

          7f99b11680aa0be17f5b503e07e2bff0edf69e6f

          SHA256

          94afc4dbe264a370f620153c18ed5e484c02cf7e912d1e56f508465c8085ae6d

          SHA512

          95a14eb3f66fedd249049f0a0cabaee7a164a13f12472ebad1d0bf9133f9ca3e4bc254fe7b2bf2aa6dc3ecc5ed2d3355ce3f6cffd86064af4b519cc0ef9b2ca3

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          304B

          MD5

          01307602cd0599583f4acb870ce0851b

          SHA1

          d0b5cd065e9810cf9273a941996bdd05847a9190

          SHA256

          27611f3adaeef72323b2aa32c2c79ab6e5e3da57e287e11b3c62f9d2b6ac3019

          SHA512

          03c45b3f653bd3f78560563284db7a9602b73b2ccaf2c89c4942630690970b9e7641c0c4384cc4fa593f6ae0eaab3d70298ab18e71f6d04ab64ad9c54e862f34

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          304B

          MD5

          f6c8393f6ddffc46d501e97b2fc56a88

          SHA1

          4c82c86571288eb9dbcb16f27befd722ffc989a5

          SHA256

          dcf4569aee1f73f173fe0cbabd50250e1bbb100053902203ac43ead18e98084a

          SHA512

          b37da948409d1021a1a90eef7150a947dae955690c49a5761819660d89e95a6bf573e8de8493a2a7b369e3b6b8809908f7e1cc098838e476ec701b54aad406b3

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          304B

          MD5

          90c15c0f5148a4402aa6fc38f11d3c1e

          SHA1

          d47b270c9fa35c2e94c403749ab16b5a518bc2d6

          SHA256

          31fb8b37f652e309ad2255a805ff626f47a8cb4306026484e638309056db4e4a

          SHA512

          59adff0a7b6905a1212c4c84a7b32bacbf53a82b7c3379cd3810f00ac4d7ec8a079ac5b3645953753d9282ab5050044524f0d904420fe1b522d6cf8da77bd5b4

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          304B

          MD5

          9e972592724d5ec95185ffda6dd023bc

          SHA1

          11472ab2bc97e05b7bf33cd065337e3ff30bcbae

          SHA256

          398c469a922a0fc3e853f1cccea2d1600e6db32589489f00b515768ba391305e

          SHA512

          70808af231dfeaba341f4ac02ad25ff0b41cd609de55fc90e67c3dca6f50678d03af63954505ad42694c0d51ac70ef096278caa97715925a2b02ffb1a2699224

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          304B

          MD5

          41ba9f99eef17bcc93dd87a498d83461

          SHA1

          497aac05a57df6836561fa14426dc6ee85f2b228

          SHA256

          39cb514b65364775c485c0037d0a64ae8540f6f45054ed701026c3694399798d

          SHA512

          c964f1b62e40e3ad8cc07dbda863814ba74a5f8ecb5d7d933c66ae93bd1be276b8f19fd454ea6bac939eff124f5c3b9c5cce18064ba02fa0d8c684189bdfcfe4

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          304B

          MD5

          c31a49e84cf3b474e043fb5aeff13732

          SHA1

          4e543168d33277747097e58e7c85bc3e66b2edbd

          SHA256

          ffbc566f82a5523677fd8ccfd776191c3ea2feeb0abbea7f99ce5b004c09cf76

          SHA512

          2c0b0f7749469efdba2225e36890f2dd14026aaebbd4a80d6b4834553cce1ffa3c328fe27a591094eb7a533b2e85b7e18848090ae17b63206a866fe2e31a6c3d

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          304B

          MD5

          204246a54e71a7585e02719efde57bd0

          SHA1

          94c646bc0f82d328acf43122181af631fa2e7a62

          SHA256

          48c5ddc699259ac6192f0744f1aea12e3af4b7b8627bc082bec5173912a97625

          SHA512

          084415e0564ef8e68dfb1a61ab28a64dd5b0dc8878604653f80f2d331e92cba1f0b3562d5dd9fa49a46c632b08669c37b9060f12c23450abd228d8cfc0765d16

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          304B

          MD5

          7a2919e25eb38e1c94c88dab761f36c4

          SHA1

          20aa311462ca293ccc544e4b12628a53ba774be1

          SHA256

          d7c8e8a58111a56a0dc5f46e3d6ed74023c44ab63600439da30091406846a099

          SHA512

          6d6761c3d33dbb64d1a808e64e4bd9072e7dc52f1303d6c4910f631bda7acce76e684bd9b6d445e8fc251c3388d582bf2e67b5fbafb1945f43b138ec136eb5aa

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          304B

          MD5

          73bde6f0e7593354924c152a6bfacdd1

          SHA1

          9f25bfb4288884383c0cf67ab997e4521718bc13

          SHA256

          772fd401920f82036777366ffc602343cb48029943e15ebd5e10aba86fb46c7e

          SHA512

          23f0ba36a115480bd8f9e580c547247e6b0b6f65a2c0b65405d5b1220b05e52b9cbaeb800c208af2e3e20a818558fa76d695b5cb76953f48fc457240483d8f91

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          304B

          MD5

          b2dfa3b0778b6b62085c9ae674b47428

          SHA1

          177f728ba7192cd4abfe2912f8a2d7cff15997ab

          SHA256

          77da667fa9d4ba0372ed18dc030b1cc6103457516434c7fd50cbb0d55350f8bd

          SHA512

          0df084d01149ec4316888f8c31f6a406ecfae45ff28d198e8e0670de4f51edb185b3d4e13153a6423707cb8f8b062ae16c60b488f9f2575db08d57d32b23b93a

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          304B

          MD5

          d12226238dd620dec9bf92ff2c0555f5

          SHA1

          2b1f6dad41f86919bd295194238531afacb3f709

          SHA256

          2b4d8a44a2f48eebdc29d8a8e1ff87a66c43ad5143decb188965eeb7aef8aacb

          SHA512

          d54329473992cbbe272e60ebccf89c0de975e4e253584f432877f8a10e5e7ed655501350d4314ed2ae1541a3923d32a203a4c1965fe6164deb2e65f455b06320

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          304B

          MD5

          422d91e2439e530bc2aa47d9d57790a5

          SHA1

          2630416cd863c636fc69ebbf4a43e15a54fffa30

          SHA256

          ac58cb4ebe18ba9a48a841f7c32b63b8d3a674304611b24f80f8b6b281aff7c4

          SHA512

          4d02cfc2069ac5ccfabf392a5b8a30e65ff9ca61036fc6f0b2447d61ad190ad4c037fc820200de9509eb0818911ebb183c481e47e676e3024b82d33fd103e4a7

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          304B

          MD5

          fadec53cec901e53459f98328fe7fc3f

          SHA1

          2e2e7b6bf5fcc961bc307d6ce3a0115fb529b462

          SHA256

          d40c0fe61adcf9a8980e72eb97571d70e34c4b97c9cbc44bad548b0b27984128

          SHA512

          15407e0bd48050f87f239e7a0880da88ac3f9be23341aa34014364dd113f86ab19260e4dbee58f48890b260a2ab4e5c8057651f95060e1d3442c769976259a81

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          304B

          MD5

          8d3bcd2f84ebfbbf86add2121291dc87

          SHA1

          63e8060bcd737ea624123782b1137b19cb5e9d7d

          SHA256

          648e969ee608478f742ef3b6580d1ef0bbf2e380a07f5cc0a74614c935356b93

          SHA512

          386582c1c292e811d46cfb7f8ed2078cafa7a80f9ec62627da35763d11334e6ab23ebbf33e5e49c4ae83a7dc36d1b572d766d42ff07796173374324b615357d3

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          304B

          MD5

          d38a1bb85041f23a3b0eb12f73665121

          SHA1

          ef5c3d6e4a5763cf4d37f0bf7b7da428758bcd2a

          SHA256

          0d453127694a04d924438b1b25cb2979544cb951d2db7eeb869194048a924583

          SHA512

          f2bd714427473e1a619d57dd3bc82ce4a31f061072477f2ae68869fa0cd4e25c5b9510f4cde449d7f085e6a81010081c9980f42408b1274571ade882c512ce11

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          304B

          MD5

          0ed09d988c6d2036c97ccc8c1f4777a1

          SHA1

          631e7f3a0b526b52cc9975d0fa5659213c3ad655

          SHA256

          536543f3f1ecf892090b7cdaae2b5f0de6799dc6b8919296fc6749b232547d50

          SHA512

          5b24ca6d8689700dcec082d842f56d167ff71cc108361bd916435648aa751f6d7b59cb63a88cf5ce9c3638e2321f46503950190fd1f021a29e282be7d7c165d7

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          304B

          MD5

          b2d56250d4b380def90385055a4bbb9d

          SHA1

          ff439e53995b3b255688a383a418c02230aac0d8

          SHA256

          a367a08796984b46abc54e79eb6ae4e77222445b52741067eff05d672754e29b

          SHA512

          49c3c331afa496f08098635a308cdfaae2c7a3b2e42822d5253d50bcec1bcce2aa9e753829fea194dd7d53fec9283b686f8f6199f0598a215a4e1bdfbe6d0699

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          304B

          MD5

          8262f629e420918bb3265aefa67a20e1

          SHA1

          14f493fef066e474b6ac3aba3a4ccc30437ea96b

          SHA256

          516bbb978615f6bb3035d5324148f7f727c10944d6233f195c8ba1dbcfe15b8b

          SHA512

          7aff0bc450e88728a20fb0ddb5df18d702a29ab034de91f18358600f3454bba7f3c257e64f3bfa7d5ff08ac54689c5c089097fe5aa14a0040346af3781b4af13

          Download Submit

        • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\2LF9I1AK\ga[1].js
          Filesize

          45KB

          MD5

          e9372f0ebbcf71f851e3d321ef2a8e5a

          SHA1

          2c7d19d1af7d97085c977d1b69dcb8b84483d87c

          SHA256

          1259ea99bd76596239bfd3102c679eb0a5052578dc526b0452f4d42f8bcdd45f

          SHA512

          c3a1c74ac968fc2fa366d9c25442162773db9af1289adfb165fc71e7750a7e62bd22f424f241730f3c2427afff8a540c214b3b97219a360a231d4875e6ddee6f

          Download Submit

        • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\4UQ4J2DQ\styles__ltr[1].css
          Filesize

          55KB

          MD5

          4adccf70587477c74e2fcd636e4ec895

          SHA1

          af63034901c98e2d93faa7737f9c8f52e302d88b

          SHA256

          0e04cd9eec042868e190cbdabf2f8f0c7172dcc54ab87eb616eca14258307b4d

          SHA512

          d3f071c0a0aa7f2d3b8e584c67d4a1adf1a9a99595cffc204bf43b99f5b19c4b98cec8b31e65a46c01509fc7af8787bd7839299a683d028e388fdc4ded678cb3

          Download Submit

        • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\69P6875H\recaptcha__en[1].js
          Filesize

          531KB

          MD5

          2ea96f82197c227ad3d999f6a6fcf54d

          SHA1

          dc1499948a1822d16cab150eaee16f4ab8c028d8

          SHA256

          e1d667d61bb50e0a815101a7d0d7f379b7219776fee856eedbe965a049db8d44

          SHA512

          dafee1d415487b796e02ef295073382aac48ac76e90c749028a9241bd44ec04ec2ee34163b8177f94d01e9e9d87577ec34c18d780a9f17b80923106d992749a9

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\CabABAD.tmp
          Filesize

          70KB

          MD5

          49aebf8cbd62d92ac215b2923fb1b9f5

          SHA1

          1723be06719828dda65ad804298d0431f6aff976

          SHA256

          b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

          SHA512

          bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\TarABAC.tmp
          Filesize

          181KB

          MD5

          4ea6026cf93ec6338144661bf1202cd1

          SHA1

          a1dec9044f750ad887935a01430bf49322fbdcb7

          SHA256

          8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

          SHA512

          6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

          Download Submit