Overview

overview

3

Static

static

1

6fe6a94492...8.html

windows7-x64

3

6fe6a94492...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    117s
  • max time network
    131s
  • platform
    windows7_x64
  • resource
    win7-20240705-en
  • resource tags

    arch:x64arch:x86image:win7-20240705-enlocale:en-usos:windows7-x64system
  • submitted
    25-07-2024 14:09

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    6fe6a9449244506b6ec9d85649b4dc34_JaffaCakes118.html

  • Size

    53KB

  • MD5

    6fe6a9449244506b6ec9d85649b4dc34

  • SHA1

    8e5182ba24ea57f8ed73a4e9a70911bb641e5874

  • SHA256

    1d809292087668fbe1e58f3299d49b74e71f0eb107b7cc63da4c1e853ccde71f

  • SHA512

    ee30348ded3c1e943bc1cedaf1c50bc82cda82d7f24cff1c6020472502aaca048957da4521f2a7a4e3f627f0e50bb6be45cfe55f56e14de02f340cc118354c2a

  • SSDEEP

    1536:CkgUiIakTqGivi+PyUKrunlYA63Nj+q5Vy0R0w2AzTICbb3oV/t9M/dNwIUTDmDA:CkgUiIakTqGivi+PyUKrunlYA63Nj+qA

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\6fe6a9449244506b6ec9d85649b4dc34_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1640
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1640 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:576

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    7387cd35e6108020ef7a49bc21e42db7

    SHA1

    b43ce81d0deeded70d77d1938d8d3eefda084947

    SHA256

    c9805038f20a84380e7f151d37dd5505c67233b6ce4ea7c8325fc757c4b2533d

    SHA512

    1d16de9b7d397c0b9808e5ee7e6c1fca7cb25de2a81300fef64479b067db202298a22f6499f85dacbc15a1952fa02887e172736e5e2b2de573e3a6acf5a61884

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    0e2f749e5225ed2db8e3c102059c7b40

    SHA1

    4d0449c2ecf75b57163132349c0b4385bcae72b4

    SHA256

    1f2eda3a88b4c6c1694b3cf188a57335f47975bce41fb84d739ae8b5d7af9201

    SHA512

    b29e4367730a38e63363450ee16b074f71736818082d8a486ed2fa2d0ac9737c43a747846289db95dd17db8e98b62319e1d595437d2d7f6d814866d5f0d3e7da

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    a878f8ea195cc3eecddd29231cc99c2c

    SHA1

    7b14b7ea702f3de26ea8e149182c631c4d5b6a91

    SHA256

    709f9c06e99e659e86e36742aa68237238474e26c8ea3209f15dffdc5dd7531e

    SHA512

    f178c6e74bfb1d0cce922ecf1fc649056dc9910c660c615645c32d5a60843898491e4be57ab1afba0afc0abdcdafa73d4f2e5c7745862dde5b21a38cfca027a3

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    124f26b133dde1e47b91a9d91dbba898

    SHA1

    1ae9bc176e1c1d528bade56328cc0f79b43e0877

    SHA256

    f980fa7be2ab11e4a50ad2e2e2d4e0965a87ec153aa4ca13487e6693aeadff71

    SHA512

    b3ffd75a1346791cb7800443270c00e4e4834f4a5e2f1bd50220998f5902da8aa51df0fbb9a4b1eaff7103afc415254bdd427bd1a6e1c12f9b72841763de248b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    0c9ed7062a1b4c18a7fac2a789882f7d

    SHA1

    298e502f14c89e9389dfe8bce70124e95db70e69

    SHA256

    097473d04f305d6f4c1bd921b5c5f698cf561547b30750f544867c4ea71f2054

    SHA512

    8c8f2a275141e3532ad7eb21fcb9f2ba80eca6b0acd6b59d81270e8efb16e4be84ad63186e472b5233dc6bb94ea5286cc3841e83eb05dd9dd835ee1be84e0ad3

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    f5076f5a212a5918bb27d61af3056947

    SHA1

    0fce208e18dd663eed28c88b5eb7158214039403

    SHA256

    417996ccde97c92c41887ca3590abc02f65408e92b59789defd59aae92d4a2d7

    SHA512

    6364b3120b9f53f112a1744804df015c149be931e7fb784c7df293068a50c509f7ff01975c4a42e04b83595c93e7a2f26f0cd306e9a8ae93478a610fac268b1a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    35c4fa57b8e44fe2c2c2e8349034a3f0

    SHA1

    72ca4ad1aa418a450fd9fe4b4ffe9d0e69413e11

    SHA256

    7ba2ee80a945ab16b37fb8c6f306b56066d860a06230096f8256b941accd72e2

    SHA512

    a772a04c4f96f14558b31021248e8c19bf5bef0e57d676bed6f9c243bf99cd0643c45498a7999888b24eeaec53c76204e72ca15ac0c3af990b39c55a73a1636c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    35f13a01fa9583675a6929af14b25e4d

    SHA1

    5a6d256e1ac95a1d74a2696d8c89d618426c131b

    SHA256

    d32b0073f282aa284312ff32e8af6dd09f70d382979bb4f213c9af0c636aabb4

    SHA512

    ab96919b17b891c0e0dfdd6129634764f2c081743ba10b53fc278ba5f95bfa68556f208283dccaa94f9259e7594b5e5c136037c028cdd275f6b9a3211762d732

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    224b697b27e88878aced583a51b581a0

    SHA1

    47b9273e892c5ba956782b663985a4874936b121

    SHA256

    de7b43cc11806d41ffd20db9af917a8a0bab3db48a24cedb6c9ca896cdbbf689

    SHA512

    fe225fdf954a4a1fe8455735f2ad117bafe0b302b97b7f80059e31b7f488999d3d330d5ac4bdf0637bae35ef13c689f86c22fc214b66c1e1a08351d2b3c715ba

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    b7df734f021f1ffbd3290b4aac138975

    SHA1

    c8a66db420b21c1deb8a8b5eb7b6eb083c6bd00f

    SHA256

    5801aa8f41f38f84432d545a13fecd5d40a903e18ecf6376039c16c6a8946ea3

    SHA512

    fec31f0df72b69a9d07dcde06370176896395f57608bdcf85984121a39ea8c5f5d1f41fef85d8b48fc76db35294ce1c01b858a217e749a4a807a2876b5ec2f18

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    4ca4b1dec60b637bac9ad63041c357ae

    SHA1

    7a37e7fe2fda3f526d11b11da3442456e766bb83

    SHA256

    6ead0a6c496a98e7a1fcfaf954ebf0ae9687472afd2662d2225d562af7712dac

    SHA512

    b73d6e11ce420f2183cdeff72a64c15dc71a88cc92907ada9e542325e50333e38ef85b08bec2d07247c81dd917d5daaab32a61243ab437b8192c85402b29f8c5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    b8e7927c616a5360aa0b55991ecda982

    SHA1

    bef1ba484a840cccf03d00a7ca308da8ad9aef05

    SHA256

    25771790492681c90a32890ddb91cec8292476749500949e33fee8fa5a281520

    SHA512

    e52714fe0831b92b6033d0df2731ba1ada7c873928128f9ffde9360b919be32cc6473d7513db05a7b5deacfe82b7ffecb7429f66315c5036652fcf64d0f80492

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    8ec9716c6fd335a3d993ffbec1e2b549

    SHA1

    5a5c2ad32b08fdc65e0c21b1fa5a82d58a9f2678

    SHA256

    432e741f5eaaa2f7bac19b1c1d7a50bd739149e3de209de79fb3f74472f7a2aa

    SHA512

    f400913011f448c56b297f2795c5f6407b19a19b4d969cc255cfd8d3c9e9fdaa5b0f3bef9df0cf31a94aff563f1c5996a339fdcfc12386afbb0cfdfba431aeef

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    0952968f8ca33e3f1909365a3b403fd9

    SHA1

    5b96f2757ee070fdc0296ce0dea8986783f41a36

    SHA256

    f00c7d825ee73087f1542e742cfb8aac0dde48442eb6c14b6def14a6adca936c

    SHA512

    2e635fae1399af0b7ed3d6b6b19807801cc8169e1770bd6b747860a0256815e6f93bd32aaf556f54dea2a05f56967240b4c1ed1027e9cb3f276c677e5e591cee

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    0cde7ef580035554b4d6a734ff9affea

    SHA1

    313b5ead9e146fabbe97bf274525397467f43e4a

    SHA256

    b0003ae965e010bec7e6721b00ba0d815c619f7fd99c9d2e5fde2653c578b382

    SHA512

    8cf69630f091c244512e19bdee3ea87fe8c0114c2faca5e21ba1163c8c371de4d1393b9de63a249441c377f0ee91760f5b356e285fa825783967a98739835d59

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    ad4c889c55c57883ab7b74e949b4cf1f

    SHA1

    d14f1310ee22eadeb612239f21c53ff93df3e91f

    SHA256

    a04ed6f5626d1cfc83ef4449d909956e2b089dcea5b95c0e126fa739e1216007

    SHA512

    6b6e3dded748ae5eb494bea2c5c1963ca894a3ae82b80a3c52895b8674188271d8bf0c2c8c26aae2a5c1d75e8ce7e8771b3a21fad76937873f51a0b9a7956001

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    88f079071c2a1ff59364332cd9bdf358

    SHA1

    1daa2528062bb270c9f72f8e6845627384db7dd5

    SHA256

    0947dd0988f1df79943ba8e67edecee31ce64d8590b203a02cd3e30f5aa45cec

    SHA512

    9fae8eff5cb40d552bc84e02ec1d43787d6a55f5d73ee3625cc636c709c13f4b6c1ef397b295af821721e544c8b0c6c983c12bf2e223965f3e364a3461e48cf5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    90046a09887819745f1d759e8ae5574c

    SHA1

    63b1f3624e0e979d7f83323e1a5b204111b06a8e

    SHA256

    d1f4cfa5b751c331efb5f5b2d160c41dee02cfee7405882456308af8bde70f2d

    SHA512

    e701c66b62c9b3c4810508c6bcd6283fd008972349ee5e56dd460adac20877c5e820856e1bd82b0d32a28b8b480db20fce9ebdc9c4147d1718f74e3147e7259b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    0176db6bf591b61cc05c4230419a38d8

    SHA1

    22a232e4f8933c8be8efc900696a997b45a8b37d

    SHA256

    7c79b3786cade6ec8adc6dd3449bea7e9d530c111873fbed7f5b2f9906627ea4

    SHA512

    890a7b05dc8d9a0a9981002fdd3be120ca8f362af9249b7c95b5a55d812c2cd6c9308b82dc04c3f895e88ecf3dd9bc31e93ebc595f3483c6918d11de8a620010

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\M7GT0RRO\wt-logo[1].htm
    Filesize

    706B

    MD5

    67f3a5933c17b3ab044826d3927d0ba9

    SHA1

    5957076d09bacaa6db8ddc832b4fd87ed8f05f8a

    SHA256

    97e800f4836b7030dd58fe6296294b7ff5ef1b5eb0e88353f230ea1608d2bb64

    SHA512

    03ba224055ffdbf32b7eea30c764dc18d66cc6d8707dc5fafab74e155b0bb3d4d691c5788b033a68f05299547297125122778fa7e3252f93e7343d918936643e

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab66A.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar728.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit