Overview

overview

3

Static

static

1

8807eff78d...8.html

windows7-x64

3

8807eff78d...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    135s
  • max time network
    130s
  • platform
    windows7_x64
  • resource
    win7-20240708-en
  • resource tags

    arch:x64arch:x86image:win7-20240708-enlocale:en-usos:windows7-x64system
  • submitted
    10/08/2024, 23:05

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    8807eff78d39feb67d8f550984b71eeb_JaffaCakes118.html

  • Size

    53KB

  • MD5

    8807eff78d39feb67d8f550984b71eeb

  • SHA1

    77a05bc0bf934fbc791d8f392410a520526c048c

  • SHA256

    9016b6e3ebef786402ef3af3e3ce21c7d570be5944ee7b06a6a6beec084c990c

  • SHA512

    b4f73a34f9330b66006c0e300250ea8174da4ba5453d33f3578cd9210e9c3735a2bcf1330edc7d71b9a9d3689ad8b43d0184ccbf17b1aeda43be23e5a9b289fa

  • SSDEEP

    1536:CkgUiIakTqGivi+PyUHrunlY963Nj+q5VyvR0w2AzTICbbeou/t9M/dNwIUTDmDa:CkgUiIakTqGivi+PyUHrunlY963Nj+q5

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\8807eff78d39feb67d8f550984b71eeb_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1872
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1872 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2468

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    f9a9f0076a732cf7ebafe21801263865

    SHA1

    202b6108650fc51685a12ed4eb2e404719e63686

    SHA256

    e8dac250ecff3e0f34d536bc7bac8a4c99551adbdb42da75b12495f5d6ef13f6

    SHA512

    3c6d1d346b52681cb607439e18720fc9f8e97574617319306094d8138ca97897429a20fedf018e1ed3a4a42877e1ebac11c5af223b26fa4d37ae5a6f8418eb51

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    47c3b455fc64d9c08028ce39b4ad84a9

    SHA1

    0313727542fbc2acfc80540f95a192548fc6a824

    SHA256

    635168d798b606675f7bcf2314fe57d8e298ab3f2a1839ca24f6aaeb32198a26

    SHA512

    16e698c9205a6f48cdd1521dd796f3bdfc9dcf398182fea7889c2cb9c91ee9e7f92e91cc3e71d77c7ca5aa9bf25e32496b1e310a45b48fd48f159e84ce415707

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    27ac6666a7598e94d476b18567868102

    SHA1

    eef2b1a0125b4b775917444438512333d11b3712

    SHA256

    30dbb85c6c9be3f038f1ec788b9a844d8fb91c396e9f7cd2267b4f57873c0b18

    SHA512

    d2fcf7566f65b2a3b8a3297de41c6049060408c34f5baa29cf5a305431f5271a4320b217169ea3751fcb1df09c86577666fbeec684f9250a4e886d38c496d88b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    d1e7eef495f0dc7eb08678e2cd44a814

    SHA1

    ed2e24bda9469371a2c3febdd8a3aa88608fc92b

    SHA256

    decf9dbf96267ecb3b5f472c503f7fe5a26c009d8665535c02913dfb3ccdbf0c

    SHA512

    74803724045da1367cb09fa24ab977ce2a7e60b7634e30ff9f4da2f51ad3f2ec82cca8349d0d296037cd64a03295d2ffd32851e3d1845ee12843296f2651d0a9

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    5f55df7db3c06f7c456013cac437ac37

    SHA1

    77bf9a11c63ad2b295d4cc1ff74bf13062ab88d4

    SHA256

    60abd05398d921cb301cd107818dd8ae7a7886669a3a944d0a21f529e62dca61

    SHA512

    b112934fd63b4f53e999cc37ec41775799b77e81815baec496fb50c47c5e2ee5441c654b53a1b70acb5e0c3330abd256303fd95f986d2e552d66804c2486f87e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    9a0c607e01c9e7653c623b9c981f0d89

    SHA1

    ff025e028f5e095d57f2441ea1e09bda8cc20388

    SHA256

    dcabfae1f7bbd00b0a4cb796737d80fa6a8be1ca51fb1158dc155c3f7300d884

    SHA512

    216edb094ac14f33dfdbca3c7a7a4dd6c9ad6dd8ae0d014602785d8b7d6807759ae875058a5090673b066414613508ec5d399cc6c0d0ff9c3be6d8d07ecf3571

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    a2e9a8a3f0fa3ccca1effbf3eabf2bac

    SHA1

    0094ed6f79547db7f458ebd74e398d0e27740e61

    SHA256

    45d1296fd74d574423d26ed0d91df3cce5cb629541c2c13a5e06511b5bc00d3c

    SHA512

    ca5e818928540bc75193962c673fe1c35fe61bfedb4263003126f412ce9cfae03b2183f502d1f17fcf03382ddafc43fa00a2949678b8b754f2ac773620cd1a9c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    450934d4c046fc650f7439fefdb36d0e

    SHA1

    8d8fc0e5121929247b0ee27a7c20b6cfb8550266

    SHA256

    98d54da781081b82c99ad06f724a658dff0983bd4378e2f08109483461ead154

    SHA512

    3ae0c566151161490b70600dd7a83bdb7736045f5510f821663915f08f775e79eb09359dfa1f3e40e4d0e3f093aea24e12cd59d30ed10a33644009ada76fed09

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    3ccfe06c3186e327874fdf6d16c5e9a5

    SHA1

    e40da0b5e1cdda70dee5baee98fb89925ca86aff

    SHA256

    aefd0b1863454f7573b70ec9e80e1ec0c4cb72d2a51158d7b434078c446df672

    SHA512

    78cf302aa3e5ba0ede949a41297537a118487f07eb84c362384ad0ddda56e8b720e8338c4df79e52659583dac9227d82ceb95ca8070f962450b4956f93d524a5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    822195c1cf9abcd20ba0efe7c31c182c

    SHA1

    4e63e1347939bc8d15fe2f63050215b947b45b5f

    SHA256

    648c97f1db337b73795ccab173e4c25bf197868ec1ceabb1ee22a648963c8839

    SHA512

    820af6fe06b657dcb88551b6a7b92ef210d4023ca6be9ff70bb505beee502e7a100acbca206b96fc6207a790fe3f79a5b38cd1940683b23a93f63f01f5b6017c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    3fc5a1351b36a3484324983b58c73893

    SHA1

    b483a1ea1b2622a5b72615e9d36e6aa19f82971a

    SHA256

    6e46e2cfe3d1444b92921954ea6e1dfee060a59b81dd7d7b0e5540772d882ef4

    SHA512

    d0bd74e9d5612d661c8929cd69fa51d87b5f68d7d6f151d5c9ad08e86d947748c3cce6e99838067a41f6754453308ab304f1f71156c311f19ff1f41dd032f41a

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\X761FPIN\script[1].htm
    Filesize

    706B

    MD5

    67f3a5933c17b3ab044826d3927d0ba9

    SHA1

    5957076d09bacaa6db8ddc832b4fd87ed8f05f8a

    SHA256

    97e800f4836b7030dd58fe6296294b7ff5ef1b5eb0e88353f230ea1608d2bb64

    SHA512

    03ba224055ffdbf32b7eea30c764dc18d66cc6d8707dc5fafab74e155b0bb3d4d691c5788b033a68f05299547297125122778fa7e3252f93e7343d918936643e

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabFF1A.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarFF8A.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit