Overview

overview

3

Static

static

1

84cb867545...8.html

windows7-x64

3

84cb867545...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    146s
  • max time network
    142s
  • platform
    windows7_x64
  • resource
    win7-20240729-en
  • resource tags

    arch:x64arch:x86image:win7-20240729-enlocale:en-usos:windows7-x64system
  • submitted
    10/08/2024, 04:26

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    84cb867545bf20019963af60d95139a1_JaffaCakes118.html

  • Size

    1KB

  • MD5

    84cb867545bf20019963af60d95139a1

  • SHA1

    41d2ed236f88bcba727e80252127206118c94334

  • SHA256

    a2f34715455cd363bafa9308b904cd890ce110cef5c283a0ed3dc20ecc8ac888

  • SHA512

    3830b7104b6651b062e3dd9cfa8d2954ede505cb69d0bbe18c5b8af820ef232a1b68000143499f638b9d5d16d9168f566250e51a326ef4870b8e1dac1cfb0756

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\84cb867545bf20019963af60d95139a1_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:844
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:844 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2368

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          9178260c97e672d45e4ed501bb95fd61

          SHA1

          26a29c1d46456e673c03dd5c7995f93d074a3bb4

          SHA256

          5cc981bd82938bd8fd7887a4f6dbf04ffcc77c19655688c0b81c3308b63aa17b

          SHA512

          17e706fd023fd72c7490657ffbae53ffff828045bdee4bb54242ab8a3cb15002e4c17b22a241a7a13374c7f719b9203c8d7dbc9e7537645b7bb7540c59fa06b3

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          6f225d43c6c2421836212d3554866cac

          SHA1

          8f5dd2777510c1828168b4defef5977000478b52

          SHA256

          808df5cfa62fd21849d927613d453d1107acf7773c8043a4335b22fd5deecd8c

          SHA512

          5b3eefe0d200859de199dcb5843fa7a6e5e7372f15692e5c5c1946b7f1c2199fdf757dec8a7bd26d72e1d28b02df61309d22e83dfd61ac2bf72b91e48f69ccaa

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          784c52cdee0cceb10eee6e5c995c0b48

          SHA1

          4b7090aaa5bd75481c3e8b12d766c922b29903a8

          SHA256

          fb80f78bb0a0b6d7da8cabf4958d59584e7bf1f84f8360c32b34d196d8e7e441

          SHA512

          3782ae50db25d82f1cf4706630314ea4de975c68580082f5f6d16fb88a63195645044a44660078dea3ebebdb5717af54f1dc04baab21de358c76d9d7ba004ba7

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          a3e92c3a000b6d065f75caf817856351

          SHA1

          5aa5fa1cf8e6de0de62b6bdceec37f022e8e31f1

          SHA256

          c95203010c58ffc029fd705baa14ec88e39ac18d217a6761357619d1c17c75bc

          SHA512

          aaffa1316d214453f30b258d3670480206ac62466d16cb2045636e35334f7b96fb43b35acf4a1c873d1fe92bf388100ac1c351388f3314abe6619d5d8c0a3e28

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          03e751df30728029d755870af5914297

          SHA1

          81769d0c91eb9e6208960446b093682a1749a0b3

          SHA256

          494befd03fa86a0308153c93639e2d9cd0cbd642a8db2c44530814ef81dd6b8e

          SHA512

          d848551637d493676c39909f18ac53424a7c4fec4cd4e596b023deccb820662a2c238522709a8f830b5726a0a43e0a30b2e05cd0469f80d617a84996bc4b4153

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          25978be43230a5d1129fe716e9511b80

          SHA1

          ef43c52a414d49ae5502d6f173c4929d187067c5

          SHA256

          05de0fc1cd1bda70ecf6bbb2e03ec79abd9fd763a6b5744f36d6d72e55df73f2

          SHA512

          411cbd5dd8bf614756e303c8b9cd88fb784143cab808189959d7108de01df3987d13acb565f7d2e33a81942ed820da87825f34fd048d9e087cebe4bab85ea712

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          020c1b0d2c7bba2dd6b00988006f5fe8

          SHA1

          9569baa9861c892ae5a6f6bf2095942b1275314c

          SHA256

          81b9ad2dd937e6d6753b1d618fb7d376ac1f2e996f792e40402bae021be055fb

          SHA512

          29771f818de5ed109155e0b24cce33d53f53769a4f5f38cf8ca6b3329672e1dac8277aaf38f05f2a9820deb215d2d0c6d1dc75c7d4ca735741c481cbbbd11d59

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          f7740ae3993820a8fd2ae53d6b473c54

          SHA1

          8a83ab65af0227dd6513dc09b19b5ae4e9f190f5

          SHA256

          40cb6af679345c95e915277ab9e6cb1085fbd7350779aebae01c47b1e5823530

          SHA512

          d41427cf52954a94e81a1731b89704c310e59a111a563ef5ba5dedd09041f1468fe4fd9e808dfd2d8c38987d16368f25f202a65fb9607daa34f5127e442a6cea

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          6d04b9e76e5f0526109c06d8c1ecd4e7

          SHA1

          4d8c1d912e481eac304af44e751663b362256536

          SHA256

          6bda8edf8c5e166f00bac21c0c350f556703620bffc2d79863eaa6aa3480084b

          SHA512

          30dfdc95831616959a6a54a98be791592c54b5d9f050e613cbde9a30f01ddd1de9e8de7f46c238cf78d1f86d44859d6233831066262471838ed9656e058732d0

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\CabA6FC.tmp
          Filesize

          70KB

          MD5

          49aebf8cbd62d92ac215b2923fb1b9f5

          SHA1

          1723be06719828dda65ad804298d0431f6aff976

          SHA256

          b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

          SHA512

          bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\TarA76C.tmp
          Filesize

          181KB

          MD5

          4ea6026cf93ec6338144661bf1202cd1

          SHA1

          a1dec9044f750ad887935a01430bf49322fbdcb7

          SHA256

          8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

          SHA512

          6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

          Download Submit