Overview

overview

3

Static

static

1

8704b01b3e...8.html

windows7-x64

3

8704b01b3e...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    117s
  • max time network
    135s
  • platform
    windows7_x64
  • resource
    win7-20240708-en
  • resource tags

    arch:x64arch:x86image:win7-20240708-enlocale:en-usos:windows7-x64system
  • submitted
    10-08-2024 17:40

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    8704b01b3e21730469b110f001641b03_JaffaCakes118.html

  • Size

    10KB

  • MD5

    8704b01b3e21730469b110f001641b03

  • SHA1

    33eb3c33916b7939104149444d61fc814e6015e1

  • SHA256

    311682a3709905f98803a1f135aee55a6ae11b06e634d02b764d79305d3bc57a

  • SHA512

    2df39e70999a69160097484a85ee79ee8b2b61ceee8047e105b242e7f6a1e91b71daf53a8fa8ab6e788d9e0ac485be8c7812b42012103ae1c74fd7a62f76656f

  • SSDEEP

    192:JB/tI6Bm7cpvbOSKPbR5tzw+GgOI/HIQFqTHioEwAEYx:JDI6QwpvbOSentzvNOIYVAEYx

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\8704b01b3e21730469b110f001641b03_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2372
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2372 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2748

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    39fd72993f5d4e7496ea9881951308f0

    SHA1

    f61a1a1ebd15092c3f910f6fe152d6246cf19679

    SHA256

    1cc4fab771e61ba2d7a59d9b7d808ae4a08456d8d3a27d0be5466577b52ab0fa

    SHA512

    62150209a15a5e1de488e8497637a079e46f102fe82ae5a640b48d46af289ff638013fc64b9a65feeb3f8d9f85c978f67e0c2053c0459f4c76cdd60e4a448bc1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    9363b695f23f63a30a703c7999485386

    SHA1

    26f54048f31609aef0dea3195207aac222d6a1fc

    SHA256

    c864bf9a6005b0ec61c0344c50af6d30f7c6c0e7043a4d99309d36257495f283

    SHA512

    f8a76cb8eb72120de7ced408fde74d05beaea8a36f44b2f8c5a6c957c455a0b29dc5aa33062dcf0a9d070553dcb6d431300b1bb948ee7b42cb2818e65cc54a5f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    f5e8955be667d27e81ac8e6dd03fd54b

    SHA1

    b4ae91256e19f556e9376c73b15875dce4c86c18

    SHA256

    98781a4f062498ec5bb4c0a02072af9540a569de99b52ff1f8b53b3c35868a78

    SHA512

    014d1d1d267c267b341a5c829d88ade1b8d9f44ab7fc57a23aa2dd02bf25c2ca9fa39ea10c0879eeb522d9ee3b8bc57a86bff8823cf667fe62c36a90f12fbffc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    07a1405872e1423cb711d9514c12c3c3

    SHA1

    fee09944ef72cd298da1211691cf1b57028d1625

    SHA256

    ab463ffddf4239f287f9d6f6914b1ee73b6b9b2c821d834bab142d5aef217d05

    SHA512

    6b4c4e09ec85fdb1bc4b873addb48a1b064f0db0c0fe0c45ace53a759c246579230d88ad7383cb35d27b770bd7394967feb2cd25cd2ce732d0d3d97a491a18cd

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    e3cfd01460ee59bd89b77c0138654607

    SHA1

    897bdaef1828cf52df420abce492834a5f4c0384

    SHA256

    05d6af5b9451c44142ba75b7213732a78fcd5ead42839161c5a075bbb5711e25

    SHA512

    48ee7d7787178aac9841c6e9772c5d59bcffb892de4cbd057ff6e3942089c93de0bbbc3e6216106f479aeb952fc03a8f14f49a03e76d69ea4d951860d8a7a7a6

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    edc34029404a44188151902cdc65f05e

    SHA1

    5ce7c396ac5cb05f60601d018ee069c4e1aaaf02

    SHA256

    a98df3d7999bff4502a62d7a000caf54a1b60f4db22c9a10da986cf00a54ac94

    SHA512

    c63c8d3ce537cfa64929a7f01ffa1e11abb93efab3c89b2610bc92e3ffe5531aafad14bf45ea770f4dba7173e12d4416dafce73216cfc706f05be9c91eee7fc3

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    a2fbc710e6f5057a2e902acefd8d86d5

    SHA1

    d2ed251f93abddb85e011e4f8ab33a5f7ba30d59

    SHA256

    f8e8b3a594da233b0011ff4d7ed9ed360e1e3843afd5350cf8f140f5e822c05d

    SHA512

    e4abea809d8dcd7f28ec32ddf36c8cad26649814191a34971b315beeba79a50bacc9ed76244a55c62b8524252aa447ed21e8f97d5529a08e4b2bbaeedf437f67

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    47443ce5cd6ce92834aef8b3c3f54612

    SHA1

    a173d169dcdb6a9ec2b97dc887ee4f243dd51c60

    SHA256

    0fe206634170b697a673c34f99c348c83b3667060b219e7abc1a6cdaac402b2a

    SHA512

    e5ffd9cdfef7d3944ab78ab9ea6f7dfe6f5e965ee952ea085eb66c02c875d54d499bf7860c2b8c2ee2dd30018938593031bc5a02df55ddee0f2f034162225bcd

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    0e7b241a74698161a98293fdd6ab40fc

    SHA1

    1d2b20ea4069232b79c8250f8eec6c4eb249c106

    SHA256

    7989f26c9a7300e08a4013ee7fee97c62df79b931d50dcae4a7d765536256f94

    SHA512

    d376e06d2001a23db79ed4e90691c4d311de1778d766ef16e9086412dd648f884c02cda7b80ea8da15935c068c904762c4662e885581b0e0f6277eb64b74327d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    f5af8f663306616a21f934312cf1d051

    SHA1

    2d3097fe7cb389e402819b8f8eae7cb51d50b087

    SHA256

    ad9b115ea8aee8f343529ad92d19664bcc3ab2788cf29f8d50ee9f0eac9977bb

    SHA512

    2b998bebdf19831375b44ccabe3ad00d58839f08ea06ca19c4313b3906fdfbf7349a07ee0268f7442cc15dda66696b1a241874c16b700a1340ca03484d8284ca

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab2F3E.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar2FAE.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit