Overview

overview

3

Static

static

1

877d614722...8.html

windows7-x64

3

877d614722...8.html

windows10-2004-x64

1

Analysis

  • max time kernel
    138s
  • max time network
    139s
  • platform
    windows7_x64
  • resource
    win7-20240704-en
  • resource tags

    arch:x64arch:x86image:win7-20240704-enlocale:en-usos:windows7-x64system
  • submitted
    10/08/2024, 20:08

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    877d6147223f8b940e5724885e19b98a_JaffaCakes118.html

  • Size

    43KB

  • MD5

    877d6147223f8b940e5724885e19b98a

  • SHA1

    2fa973278e5a0a409960f1bf555bb3284a878100

  • SHA256

    59d3957ccb3b9fc384837054554848128e55206b3c650073a6642004039cf6ee

  • SHA512

    5816b6d8e0a86fa549be23c4d80dd723d2a130dad190c8a4a57307957a429c9ed90c82dda0b1517e79241f58fc29e9caf6776332bda6117874747d3a65b089a1

  • SSDEEP

    768:Zcd9QZBC7mOdMpFpC5I9nC4uGvEj36QPd:gQZBCCOd60IxCvGvlQPd

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\877d6147223f8b940e5724885e19b98a_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2468
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2468 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:1848

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          304B

          MD5

          9cb262bc0f3925fd088b9ce792dbc5ca

          SHA1

          b9f8def4086f8c8907a7f70682149c94688dff99

          SHA256

          285daae3e2df8400040c1174a20023b53b7b4d3f371201765014d65c5d288d2e

          SHA512

          dccfda0011561d8d42bb0effbe6ff264cb53bf71dec6541c08db50b865fa5d748222ba3233a9e499fef7144625f28b25a40a8a576cf2a502aaeb70e2204f0fe5

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          304B

          MD5

          f3292e002a37ef375e7f3504d30478f2

          SHA1

          0295dca74be1d686f62020dcadb5af0c1fd6a686

          SHA256

          14c9bb2e3859d660f305b46de2b1d99ed4a4c4891ca6957b4b6710daf28d16e8

          SHA512

          6d6c24bde297f6039932761d9f93286b96b69efdafbd4128217ef151378fab3052111ce5a5fd39495a71cb433a5450c08b77aeda2ed21787cc8743567c3275e2

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          304B

          MD5

          78152109b4fbb7ffd1beeb502eeba5d8

          SHA1

          6ccfe1454175d1e229584426a0ced7d8f9e89878

          SHA256

          f133cadf63205920ede5fe6c51b0654081157dfcb11bcd83e967d23cf7d8aee5

          SHA512

          e2b721ce0b1b17b679611394a950563c96a4aa760ba6b2a0293c44b863e5c6cd62d4dfb8e2d4deb42d9fba41e0f00e6ca061f91e43d52f1fd61b6b01ead7ec9c

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          304B

          MD5

          648099cf126518fe8fa2e4f86a873146

          SHA1

          1dc3158f459c23eb6f6b9e736ea4ba18d719d58c

          SHA256

          83255889ee566f41bed58a3f5ce82559dac2421af1589207f01b6528a0618c9d

          SHA512

          9d626de96d7af31c9696bb527e59b6c9ed6672b23913a47015a84b2f701cd21ce3a2c2dad458ae80309da39abe871033624e30a51edcc039e5a1665c2567d492

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          304B

          MD5

          cf8a0312ad8e5c90e1f7e03e80826aef

          SHA1

          b1d4402b53daecdb12f2b6cb9fb7c5ced04df106

          SHA256

          9521aa630139468a64da181b61ab154a97166d2976fd1916209d153cc3115d5d

          SHA512

          a4c85e038f1356e35d1f845a7d6a8bbc23f8a05e4ae10e81713c4e24ee83a089cb13506b2d4242597987e9cd7cad462c2697f452e8cc975079d54390f93cebac

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          304B

          MD5

          c04bc590b703c48d0e7a2aa31749edc1

          SHA1

          c291da2b1a4e1ba9617d58afec9661c96ad81b92

          SHA256

          2b0e0f78fb9096501455d649da1c4fdfddcae52cab0b9274b496511d2329b953

          SHA512

          14fe210e9a4894897eb9de32b4b51cf42c9a412d25e3b15b865d294fefaf72ba69b0f0763cfcd8b05a3255546223e236c1d8f35a498a8f06c4ef39cc3455f55f

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          304B

          MD5

          c9e120e9575e3d25e21a8444df16b563

          SHA1

          d327ca0ad814f1a41df1d6df1c86576089dba54e

          SHA256

          33f251c7ed077f4b2f10f56f611be759d4c4781b0e11ed881d0cc80e8b10a411

          SHA512

          9976c5a53160febebd4992c687ac73bb4491e880d0e074e6c5eeb7ff168f6b1b836f9dac95f5ddb9445dd6f3453d1323fdbf5309f2a47e7992f89dd5cb9c548b

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          304B

          MD5

          de4d0a65e39a56ca80abdf5b145a5686

          SHA1

          cb9f3ff1ab21ad8954cc881a5cfcc06c30db93ba

          SHA256

          2b073a89c03a5fe81fe0b3adc9973eb92b7a1d9a7cd7599ad461901e83787b11

          SHA512

          0c381ff483055a11c00862998b81f193bf6e4675867c6d269a9f509a31c21ce33533eda52c08e4904a316a822f5fc6a955376ddcf7b4dc5fb4e77980422a1025

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          304B

          MD5

          23039a1c817a43112e685210c1f59550

          SHA1

          8878e8aac561a1b474a6df42c9cf282c7f75131d

          SHA256

          82feeecd429634dafe6346a08c62bb34d9dc07f4f538118a28bee42fc3f54c59

          SHA512

          160611e644b15138a62a17cccec09262da3f2c9a8d7b02e6c4c0a21846b7def321bcb1baf3df127d818503c027fe9633669c563629627cb907f982b388e33e00

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          304B

          MD5

          5e87ec598dbb14138ccbe0d91e3b21db

          SHA1

          303fafa2db33ee1ba373259cc8d692d5d4165b09

          SHA256

          a58ca4e1d905f25e4c11d188fecfc7ab20bc95d3df06ca801040244811083ff6

          SHA512

          04c17b7ecfb75800bff4b45df8feada762d7f8ce67d148817350c1994428d16e6a2d07315051c701bf39be3a59a930688dfda1ec9592e77aa4277ca85799d08b

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          304B

          MD5

          dc7ef4a524f35ac257d414d9d7954071

          SHA1

          e7092252f13788c4a46d78ed889de04177260fff

          SHA256

          2d275c3c192e24e745241630b26c0964261244ee9a3f8c5058b8c81133ffd01e

          SHA512

          5e1d0d5da4441fd15fdefcb40eb4ad50db338e350e7d5d25c9134bf4588827c640dc0a91148d339401b945df0bf87f642d808aa320022d1d36c43699a5b16530

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          304B

          MD5

          5164acd22803c123273eea536ee3dc84

          SHA1

          4bb374402bcc5ec93ae2eb80307ab4be48bdb688

          SHA256

          8c3945cf87560e6236670c66dacab9e918cbe0d0043465da2a0a5358a5d127cd

          SHA512

          c4589ae648ffb4ab988252a7c79fa2e57ecf75bf0d25834aed6cbf6cc88dd77236bafc8425c9076c9be59c4f1abfd7862daed8ab0ac4f3ba0754221ccdd06867

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          304B

          MD5

          f521721dee43f1a8cbfd870d89e588ac

          SHA1

          f58c8d627e6258c08d7eb4101aee66fdcc96aa25

          SHA256

          5f1a2a987c8fc8b9ba919b7db7e4b5e8c8cdc0b391438b93d512a6c22b14b545

          SHA512

          da69902b8a9eef254c3afa196fd7574aedcfc414ff654e7848b6c931afd414d1a780a98c5b33abe3d70725089e43e07e0db48965810b119fe793189898cb9801

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\Cab1141.tmp
          Filesize

          70KB

          MD5

          49aebf8cbd62d92ac215b2923fb1b9f5

          SHA1

          1723be06719828dda65ad804298d0431f6aff976

          SHA256

          b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

          SHA512

          bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\Tar11F1.tmp
          Filesize

          181KB

          MD5

          4ea6026cf93ec6338144661bf1202cd1

          SHA1

          a1dec9044f750ad887935a01430bf49322fbdcb7

          SHA256

          8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

          SHA512

          6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

          Download Submit