Overview

overview

3

Static

static

1

6fc313a8de...8.html

windows7-x64

3

6fc313a8de...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    119s
  • max time network
    128s
  • platform
    windows7_x64
  • resource
    win7-20240705-en
  • resource tags

    arch:x64arch:x86image:win7-20240705-enlocale:en-usos:windows7-x64system
  • submitted
    25-07-2024 13:27

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    6fc313a8debf96382fe5a205fd15a562_JaffaCakes118.html

  • Size

    53KB

  • MD5

    6fc313a8debf96382fe5a205fd15a562

  • SHA1

    4488cf510904b8664b3d8d934be34c4fb2038ba2

  • SHA256

    c90b124f4428d6a6964f4bb6638c1f99383be6310a87bc5a3da49890e1431982

  • SHA512

    a6e87a8777ec457181ce4d698d90c42a06ff5faead13f1fad74e5926dd5ef1fdf77d29cbb74d74d366ec774389ca9ecd70731de5d8817e23d7236a1c5c4bd78f

  • SSDEEP

    1536:CkgUiIakTqGivi+PyU6runlY263Nj+q5VyvR0w2AzTICbbIoH/t9M/dNwIUTDmDI:CkgUiIakTqGivi+PyU6runlY263Nj+qW

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\6fc313a8debf96382fe5a205fd15a562_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2960
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2960 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2532

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    eed392d61ddbe048bc8e724a5541f58d

    SHA1

    7f69d2bbbd556e1ecd366934ca0ceff712904cee

    SHA256

    56b5c3c358ef3128c73312feda2a81536a982b2c51c076c7e50420df40421ebd

    SHA512

    718ba77b3144e3f14282bf3a377f48d6cd93b9a302968f7a707764740daf4f6ed2baed551bb9fdc064bafa84cbe9b8a48f3e8e2293d8638a76aa51f2068df5c9

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    354ad6c18e231105da50c997a58005d7

    SHA1

    9c1f3affb8452bc61ffe9b94e4d7c94368838b01

    SHA256

    461342f68cfbab769648125f4297bb5b5c29900b8fdea69c8fa7b28812948ee8

    SHA512

    df787a04060db5f351862a91ab1dbce0498eb5b0a17586dbf095547bf4af0fdd606901d8851767e5cfd30470c15b4137bcd983ae563b7cd48e91edc2c5daf4b9

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    43818e2203dcacf748cdbe16ef7951b5

    SHA1

    93a58222b4a3b4056f7054b3d4e9ee0da32ac986

    SHA256

    c611924b20ad0e72701ec24647600ed8dc74972f85b4246e6aab1dd26ca882f7

    SHA512

    3244042fa0aa05f7d3c78832b90c79781d8f5ebbb05aab6aba1cd752bc50ae211d9a0db239eef5d2278acae2522b2a7b0b860b846412aeb66d1c61e618cab59e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    820dbe5527c4cb0e21dfe3c62004ebd4

    SHA1

    c13c98ac65cc86834d01e4dd62dd1a8141b5154a

    SHA256

    a925341ac51417f11a1eabdf267d3f0cee7bdd5ebb5b5ce75781982dcc7c6fd7

    SHA512

    40d28b6190971bb6a94c4e27a4a4890e8ea06b532b2879d99df0397d1b9e9fee9b82f611b85dcf3eaa795a61f859b87174a2729657882b9314b1131d583f3937

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    fc8aff91be2da37b8b1844a9473cbf69

    SHA1

    732c628950ef3d33df71fb7c214205870adb1eb1

    SHA256

    bcc0932ce6ba9b40836a2ab08ed6c4cc55e23c3ffddbe2a1ab333705a6639e18

    SHA512

    09efbdb1162fb3ed9e8ff2de77470ce3cbd3f8c4906b076cf8e3b16aa2e793a7295338e67a96bc9019bcf87088818ea412818c3d29c78ce03e55eb0597d9f88a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    f46af44341b94a769f4f25f186ce49de

    SHA1

    166b01fa0e2c826ee237e7e07a2dd4fa662560f0

    SHA256

    39e64766602bec2b6bf2d9d0597af4ce2ab168aaa695cb7576ae04d2fa91854b

    SHA512

    7c457fa9df12e16b9ec4abb48009b90a600f4e99f007d9434906d2b9a2673d43cd6e2cc54b89df11e05764baa6b62dbcefd3a34554703fc45f212d89cc871456

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    83f4860ebd6a1f043fade8139ef56e25

    SHA1

    a4d5a8f6d181ec38cd7be984a257ea18d8f3232d

    SHA256

    10a404222d3d7b1d90a937b986b891ab8fd53e269752fba27038119d41b5e410

    SHA512

    c4fdabb387d7c7a5beec493e0cd2bfb84d5b88e9f976e79e1b9dd46d896c3729f39a3bd6566f6f48061972a89a4320f3a11deda8775a2bc986aa05ded55ae783

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    59eb018bd04d2320407e831810fa3e56

    SHA1

    8351bb37b9ca5470b472aeb6ccdb1c4d3073d085

    SHA256

    6d4db8d10824e2abaef4b43ea1168f170ec482216d9a5542457d10ae162b57de

    SHA512

    40187fe8071c25b7c5c0ebd4a7260f42b2ba530de3244caf24645ac15b585e44e00f21a73350d817855ffc8bb63cf90d4c6334854b362e91fdabdb605e322ef7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    0cc5c9e914d8668ece748b3700f3cb51

    SHA1

    faa17598dd99453eea11596db519e35f90704cc9

    SHA256

    867e173198fe2589a428c2b56a4e7e8e15e0a644985bcffcac8ad8aca76eabd6

    SHA512

    9d38858b9a6115a85aef43af27b0c51164d705a3ab44c549d80b38b2b1a8a91f030b65e77d238899b6afb797e9120726b7cc121cd5d89c1035d917ed76cc9ddd

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    4869f0a0f08fc2b27fd28f57a0d65d20

    SHA1

    2e8b9999f9711613af06ac93a619c927aa77d7ab

    SHA256

    4777f6d73cdc713e5d1fe03a8a495d5870a9fc127552304035591b38c1440d03

    SHA512

    2fc20c853431c7cc392c7c5cb9370cf0b6ff0304ceb974324f7c243923e3ea75091fd554fb87e5102583cb9f0a922cc1fb5302dd0b1c118d8e71634452eae445

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    09cadc3a83459928767d7891c0f06233

    SHA1

    0f2f87005330a5742848ddf06821eaba0c8c80d5

    SHA256

    4165491525a79da4cff225529a02fa94a4957636e9a1e47550335989e4be342b

    SHA512

    56d52d555bac528f48b7d228339105b0d665a34612f149839d846c408aee370fce64b39127b82fb5f8dec85ae5b4fd815da41a39ac2bbbdb36a7cccc2474b8e7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    dd3ce4d8f7c0bb13c0ad1d0b07acec5b

    SHA1

    6521377bdeee648858dca735e4ae51cdc0b7888d

    SHA256

    256f13729a8dc0a12b5f2790ac8d6ff1ee8467998e34552707dfbfe654475ace

    SHA512

    9e56cf75a776ed34c974293ab077ca208c019697a785c3296b1794e70f4090f8417238825f158b95366ee598af0626640f2a47fdf9a7f790d106ae82d307b5a7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    84acee5a383f249cea165020f2d2a383

    SHA1

    23b38c185621a56e330e0631da458d1eb2c17235

    SHA256

    4c421d4608b34fb6cc123e9a7546ca5c136e98837f3356b916da212aa796b537

    SHA512

    f92059666c46cf90ce514529dda6f2ee1cf181cb76ba91c8e8d7615619087c65c69c6709157aec158907da5bb6b0f1fce7ae98c5707cf56e342aad4671220657

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    37984aaa7fc8f7027e9453f3b0727f03

    SHA1

    123fbb147aa96edb26829d33c4e8e0a16751494c

    SHA256

    40854797a1e471f35d4651eab5f5f160e947cf1f364f955da1ece6d04978e0fc

    SHA512

    4217b509e020e35450b980bc72cb4dca231705f172b9df0a280348479d62f537a6d06a9ba48b77df0fb419d6270bdefd1b900d82fa79d856d5c84aa1e41fcb65

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    b6f4c02ea1e572f16bdfdd9b0752a17e

    SHA1

    2b9f16b9396825ecd8c67a4c3cc766b5b5881797

    SHA256

    2675ad44dca1a6d0753890438697a21ff38ebe9d3577471abecf434db65b2aae

    SHA512

    996c31e57068492a0111ee79d406ca7ce1b919df4cc950bbb2ac3fdc2c00925232b28c5b749eb760f90ff0443132d3becbf3fe75243c6f3c003a7171365bcb17

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    74345eec074d9ba503971f0e06f701bb

    SHA1

    f9db0c1ef47237b2f4dbb28bc19aece9594092d3

    SHA256

    50658ccb46874572b2eb079679acee5444cba93a6179e342f7fb4ebd99ace52b

    SHA512

    4e6579996ac9f67e9061bb8a70073426aa11d74d3051455d8534a6f782119f18899d875ac2232b346232be5669771267de2f400d412da8cfb52aab7d91218117

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    698e9e5fd1df732f07c70d13d0b38609

    SHA1

    447f8237d38e5a0d21e947722e4b0606bd476ae2

    SHA256

    da416a88ef36be37dc755c69dc42e4234ad9a74a88c5b8480e32e016e5d65856

    SHA512

    e3dc14ec6fc334799d182625fbf88d789b7a4a191025abd9fe601283caae8d5af34360e84db1741cda0c29713fdc9ee602f46d0807094d4f3bee6aad2cf063bd

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    8998e77e8539f94ea2cbe26b011eab0e

    SHA1

    0493159059d3777d4e5a97d79976aa8c7b134e2b

    SHA256

    ec321c6a6d0afba894c3febeac832b10ddd1589ef5d41b8ee158568777d84706

    SHA512

    3e457985bc241e6646b9b6759eda0f7e7a8a5dc277fe7a37972db4ab5304da81682e42e58135112db59ceb73f7be1e710eec4037f26875e21e8d2ee0b05ec61f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    e97fa6b27bfdcbd8d342d19dfa3d25f8

    SHA1

    1aea0b82ff59350577552d265bed7bd74d883b77

    SHA256

    e19966287fa128b04f0878af364e39725051b43a948cc75717f29f635b76112a

    SHA512

    89fe883226abee91abb596ffda5d7cb0f27f67f9b529b4ae087053e14e3c5ac0892a63cde806149366c4a03a84d28106b31eed313977e377a437902ca61beeee

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\HNGGU6NJ\useroff[1].htm
    Filesize

    706B

    MD5

    67f3a5933c17b3ab044826d3927d0ba9

    SHA1

    5957076d09bacaa6db8ddc832b4fd87ed8f05f8a

    SHA256

    97e800f4836b7030dd58fe6296294b7ff5ef1b5eb0e88353f230ea1608d2bb64

    SHA512

    03ba224055ffdbf32b7eea30c764dc18d66cc6d8707dc5fafab74e155b0bb3d4d691c5788b033a68f05299547297125122778fa7e3252f93e7343d918936643e

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab3B3E.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar3BFD.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit