Overview

overview

3

Static

static

1

9398357a61...8.html

windows7-x64

3

9398357a61...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    143s
  • max time network
    145s
  • platform
    windows7_x64
  • resource
    win7-20240704-en
  • resource tags

    arch:x64arch:x86image:win7-20240704-enlocale:en-usos:windows7-x64system
  • submitted
    13/08/2024, 15:05

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    9398357a615614d3ed0bd32cd5bd06bc_JaffaCakes118.html

  • Size

    69KB

  • MD5

    9398357a615614d3ed0bd32cd5bd06bc

  • SHA1

    512ed075a67a01accb11d973e0125943aee854c7

  • SHA256

    1e1623f3f95cb9670ed331d4040eeb5e4aa59f60cbfacfb5dc56051dce1b6c5f

  • SHA512

    6cbe5583b722c29cfdd116fe2f01c90476023ab31f3244342995714bb0e2e3c0d64a67cf25e80aa12f1c9fab333a2d31a8cc7a6ddec045212d0a7007ca0e5801

  • SSDEEP

    768:Sp0hqGbIiP//mdvsYSgLj/DVWmTMYq8Dfr7Vq3t40MSxjfLD+PHgkyMrj3DZ+/Vo:SiMIk/ktnwOH6oqsa8UQucS

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 44 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\9398357a615614d3ed0bd32cd5bd06bc_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2520
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2520 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:3068

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\05DDC6AA91765AACACDB0A5F96DF8199
    Filesize

    854B

    MD5

    e935bc5762068caf3e24a2683b1b8a88

    SHA1

    82b70eb774c0756837fe8d7acbfeec05ecbf5463

    SHA256

    a8accfcfeb51bd73df23b91f4d89ff1a9eb7438ef5b12e8afda1a6ff1769e89d

    SHA512

    bed4f6f5357b37662623f1f8afed1a3ebf3810630b2206a0292052a2e754af9dcfe34ee15c289e3d797a8f33330e47c14cbefbc702f74028557ace29bf855f9e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\24BD96D5497F70B3F510A6B53CD43F3E_3A89246FB90C5EE6620004F1AE0EB0EA
    Filesize

    1KB

    MD5

    969a6ecff7d9a0e126fafd531d694c6d

    SHA1

    7404e0524d8191002d5e51b6ac206320d185b1d2

    SHA256

    a6a1027aae2989531d384f8632460ceaf6bbb77b6d4fd09fe45a236656f4b0b3

    SHA512

    84ac49c7a1d46f3d68a6af4b5401837870aef8e5b6ef801b68e2615cf7dc89ae8f2fdbbfbdf81ed2e8ff531ecb9b22952448d8977c1200e9486c4ed4d2f19e9a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\05DDC6AA91765AACACDB0A5F96DF8199
    Filesize

    170B

    MD5

    8213dd3cbd41ca8f53f1131ddb831fa2

    SHA1

    ff05a4628128943a7d7824ef6cb5f05ef13fb828

    SHA256

    8ffb27923f0dd1b278f8773c110c930dd52be03fa580e1035d5c2d8f73ef8177

    SHA512

    637f5ae21856ac08f34d57da9ab5d80ea6f7dfa217a091bcab05283049a820d6cc50aadcd86fa12c95ec9e92ea8d8238aafc83c802b68e3688d8550c9f0bd7a7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\24BD96D5497F70B3F510A6B53CD43F3E_3A89246FB90C5EE6620004F1AE0EB0EA
    Filesize

    410B

    MD5

    f9d957518e4893aaac7a278a6a2e9739

    SHA1

    ea9e5d0503b121d70af3d5686394560dbd2a408b

    SHA256

    3e972c9aecae8cac6ad5492fb037a56a6c270dd0003d265a3df2c233eabd8071

    SHA512

    7410720c06b71d59628cb461e4f68419cd8b77fdff00336723e8860b80199343f65b68e9fc918c6721fe23c4c2e207927d7010ce2dea701450b8b6728328bf7e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    32ac8544ad71905b62e114b66f005c89

    SHA1

    74fdbce163a7065c332996ec9db5c694718589f6

    SHA256

    41e106c5490f82ef8db204024162814aa8d607890e810d0b18814c8fd5b72635

    SHA512

    45d4bfc929ccb6ba53c5929ad25a2c7872282815cbca67499a9dd334247fca824beccc42962c6a6abf37dab24d1e1fdc47966cb990cdacdd8d74632a97acde7a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    c3655977ba616f24f05843206fa8c395

    SHA1

    c82b1dced0012d473d31f930b06f653b3a1adf6c

    SHA256

    2a027eca84dcc0a9da32d004d7228cfd15639cbc313ddbd3307253234d9cc8a7

    SHA512

    3a0896e539ce0c6d3bbc065d552bfccbcc423fb9fe65c3ca437e9b2f0f22047942056e1f348221758474e79e0b77a970435bffcdaad3464d0f035fc609f116ea

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    5a52d6c764e5543129edbe6b515c6444

    SHA1

    330da75dba0aee39927aa38356f096d8ee9fc7ea

    SHA256

    5dc958ce2affa6ce5e28e5d03079c632f44a37b2fd4aa41ccd1a2b286188b630

    SHA512

    f5a66850fe4f9081e0cc273904ff0dedd3680266cc0aabd04ad205b634a99761c60c5bbb458ec57bc9b903fc5742763996a8f221ba94f988b6020218ba42aa96

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    73511b50ee5ecccebb4ddfb126c7048e

    SHA1

    fb8303307671e6cca4fb5af9576e98f025a94a5b

    SHA256

    d4d0e39c16a5a0000977d7919a93dae9caae2ab1b2273f615313cf84d80d6f3b

    SHA512

    d5acf5d91b974aa1212d5ff67c1f46c5aeecf24807d03e67319b935c50db3e69d3ce6485491eb8aad8d02d7f43b47c1dc9f9f4f5675620b8477673902136bd6c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    9b749b3221b51beb46af02022a621a80

    SHA1

    a8b30b56b0ef0df169cb65ffb46cd4416ab6e2ab

    SHA256

    2372ad0e1945ad369677830342766013156fefc4518f8891b5f5aab4232c7f79

    SHA512

    1408ef3616b35ba5f565abe4e046e36d49c76b5a9a2b37e0588ddce616ec47c979412e672fb55fb72282605cb47acb919abc3aa6399074a19b0d236d738017d5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    58d61e56bda9fc41257094dc2cddaf16

    SHA1

    75848b7a7155b6aa9a3a8df2bd19bcc2eab7713b

    SHA256

    161e3bbd24d7ad4a7a20300d75066cb13699183302a234af70738e9007f6f333

    SHA512

    574c2114bc17087a4897d631a7aacac6733c7e058bbeb464948c0d05a6d9f896c6e295842d5c1afca40f94636752f92e848d237ba278226d2cd8cb7c651c7559

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    4351238da4368ac4ea4cd4cdbf16659e

    SHA1

    cea0199a38f26830b38b7a3cd181a35d049f5705

    SHA256

    5a5bac21855ee47bf150f71118416017f494aeecbd48b34ad6c2db31eb5badef

    SHA512

    0a69bac9b737780bbfda0423c9264e9ccf568880f221abf52fb3eb99ea52d10e281480bdec4511c9fe2e6ba74ef934f309ff9a22d07ea01bf9d0e54e397149c4

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    cf3fafdeb3163a6d607efae86b452f18

    SHA1

    d3309d5f467bd5a0e7d510fea79ab2733658a877

    SHA256

    841161cfeea7d57709c82a63c2cde9a784945f5f1a905a91817abaf2f164b33b

    SHA512

    a3077c281190fdbee26676d19949b38b01b994a78e7ada26817327b6dd7598189a7a966eeacf462a28e8d9c77e3d84965a0cc42fb800b928768f7d226030c4e1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    d5693905afc087806b38a4960a122221

    SHA1

    27c0d5c002a6d9a091b0711eb9d3913cc9863310

    SHA256

    56d77dec63e00e2ed01aeebe0f7b2879483b56ed4507314e0a4824254ee578b7

    SHA512

    536ef61ec6171c3f3fa3610a5dec8ba07bd3ad2bbb3f82eb82f9a98a816d7faa02223bc829ba60731b61eef9fe827f7e8d18a10538557e77e9eaa257a811b9e7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    6125b4307d497abdc57088c3ee30c213

    SHA1

    49dae8c2b8f49feb7cf963bcbb286cf4b4766c56

    SHA256

    f7eaf85fd2a3d03421458bec919e44208601279f682e62a957cf7a02d8f907d2

    SHA512

    93921b303c77116a8ab9e357f1c38b3d16d179cd5f097fd4b4714574afc7968dc113bd2adf51ea7a6d48cb57331ee377982fbb731839823364f817a89f75c15c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    8c416ddea7432443d3a63284e7559dc6

    SHA1

    609c84d18dacb90bc7d7d9c51db992979eb3dad4

    SHA256

    e89673307382c51ad690534726b57f7d64f3cc72004133b254af3479191c1913

    SHA512

    a811e9d31c45c09b55c9ca761a8b29142d5dac21d3f063655b3e2f44248d2a390836446fa7cdb9243a4914e9c3d41cbefe6c5069796cf9631940fb2a994fc1f4

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    7bba073e0bd605b1b7b7746e3ab4fb04

    SHA1

    90cd424bed771a97cb7d35eaa383b5436944f32b

    SHA256

    8a3f389ec9561adea426ffee4ab5eaf9389f86f76d4b270021c11160bae32229

    SHA512

    cd95af0ea081e9bed3de5865836d7b400323c48634b7de1694f1f51570669d87b55074bb6a652187c5dd8df2782a1524759eb6f7ebf707a77b67eca465c3b7b2

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\3R6LV0YQ\www.google[1].xml
    Filesize

    95B

    MD5

    370e711c09b318439b2f9fadb34eb353

    SHA1

    ae3fd0838dbf010323303ea89c9a03129f391166

    SHA256

    db99e5e0af4c039df5792eb0c202ca1fe8a3f4dfaed37ef5afa1c2aedba90c63

    SHA512

    85058984e2c23a5464427f5b01e947032383b7344a21d1423118438a686244a12116532f70a394a6d992acf905abe4de36608d7f6bae579c6edf0a408b3d36b7

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\4RXRX1VH\recaptcha__en[1].js
    Filesize

    532KB

    MD5

    774dab3a2fa5d7af589bb9d159f86e73

    SHA1

    98eb3d1d1e59a1f92288b59003b9f459690b264c

    SHA256

    0579319097e8c725b3a3dcc597ec62fad86a379ea3c8c41c290deb379d3e6ee0

    SHA512

    c0b15929cf38d0b0fc07cf39299b23cad61af927939f8f676ac345b92b3f6c968b426208cfe4b629d9a8aa802ae1aa1462124c71f640519c0e68dd25ca8133af

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\84EXSCRK\YrhSEqBigngBm13P72zv5BqzMvKqyJnkT3jMiVTjS9g[1].js
    Filesize

    24KB

    MD5

    31515f0619dac58993216970a715b49a

    SHA1

    9a09dd56e972cbaea27a96528516a82b83128ae5

    SHA256

    62b85212a0628278019b5dcfef6cefe41ab332f2aac899e44f78cc8954e34bd8

    SHA512

    94b7353315cc5b0ceeb9dacaa04679e77608c1c481c8bcc42c5fcbeba2d072557a9ed553d407434fe9b51b1a6716c5227fb9e9601036bb9fbed3cced5f0686b7

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\84EXSCRK\ga[1].js
    Filesize

    45KB

    MD5

    e9372f0ebbcf71f851e3d321ef2a8e5a

    SHA1

    2c7d19d1af7d97085c977d1b69dcb8b84483d87c

    SHA256

    1259ea99bd76596239bfd3102c679eb0a5052578dc526b0452f4d42f8bcdd45f

    SHA512

    c3a1c74ac968fc2fa366d9c25442162773db9af1289adfb165fc71e7750a7e62bd22f424f241730f3c2427afff8a540c214b3b97219a360a231d4875e6ddee6f

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\J7FHNNOW\styles__ltr[1].css
    Filesize

    55KB

    MD5

    4adccf70587477c74e2fcd636e4ec895

    SHA1

    af63034901c98e2d93faa7737f9c8f52e302d88b

    SHA256

    0e04cd9eec042868e190cbdabf2f8f0c7172dcc54ab87eb616eca14258307b4d

    SHA512

    d3f071c0a0aa7f2d3b8e584c67d4a1adf1a9a99595cffc204bf43b99f5b19c4b98cec8b31e65a46c01509fc7af8787bd7839299a683d028e388fdc4ded678cb3

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab9E91.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar9EA4.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit