Overview

overview

3

Static

static

1

956529d851...8.html

windows7-x64

3

956529d851...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    142s
  • max time network
    143s
  • platform
    windows7_x64
  • resource
    win7-20240729-en
  • resource tags

    arch:x64arch:x86image:win7-20240729-enlocale:en-usos:windows7-x64system
  • submitted
    14/08/2024, 08:50

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    956529d85129f385c6a7ba41fe6b4b2d_JaffaCakes118.html

  • Size

    68KB

  • MD5

    956529d85129f385c6a7ba41fe6b4b2d

  • SHA1

    d77695d81bf2842745a68ecab4bfca2c0010f2cf

  • SHA256

    1c55c0c4b16645dbad4d960731edfe5be8038dc71855c84c677657cb75e250e6

  • SHA512

    ece8cafdb7f009e53218750a03d24d80a521d656732754026ddfa30a3864f330c872c07d8312ca37c4a3e1e7bba02b1a79278f6c6be89c9ca4f314d719ca9371

  • SSDEEP

    768:Sg0hqGbIiP//mdvsYSgLj/DVWmTMYq8Dfr7Vq3t40MSxjfLD+PHgkyMrj3DZ+/VT:S4Ik/etnwO808OucV

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 44 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\956529d85129f385c6a7ba41fe6b4b2d_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:624
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:624 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2632

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\05DDC6AA91765AACACDB0A5F96DF8199
    Filesize

    854B

    MD5

    e935bc5762068caf3e24a2683b1b8a88

    SHA1

    82b70eb774c0756837fe8d7acbfeec05ecbf5463

    SHA256

    a8accfcfeb51bd73df23b91f4d89ff1a9eb7438ef5b12e8afda1a6ff1769e89d

    SHA512

    bed4f6f5357b37662623f1f8afed1a3ebf3810630b2206a0292052a2e754af9dcfe34ee15c289e3d797a8f33330e47c14cbefbc702f74028557ace29bf855f9e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\24BD96D5497F70B3F510A6B53CD43F3E_3A89246FB90C5EE6620004F1AE0EB0EA
    Filesize

    1KB

    MD5

    d18c24a773128e81dbbaeb770cbc0659

    SHA1

    808046a236511696c76130ab4986bd04d219c74e

    SHA256

    e326b3826f303d268986da725944ae2748c8e1e8d706b2a6ea8609773c2c4d0b

    SHA512

    a2b633ac3135ade6626f16ca6041cad03e2699c69aeea9d11d16b3bbffde88b1c3896f0d3133f391215b5d393aa7dd0d0fe7193a6d58df527259f679d19da2a3

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\24BD96D5497F70B3F510A6B53CD43F3E_3A89246FB90C5EE6620004F1AE0EB0EA
    Filesize

    410B

    MD5

    595c3ecc5f7fc6177204bf3d50167ec3

    SHA1

    b50f8cdf5021aef147f3eea94c23bdc840bdaf67

    SHA256

    e3efdd436b13a834ad90367a88ca39e9fed815f06261cc41b60bf763b7c75e78

    SHA512

    679165aaa027535bcb86b68f828ba3b6b30dd592def1d8c28a8935cfb1c7e818605f2ac93539d9b9a91ccda276834c0c24f9a24d5c4d550864285af703f395db

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    c9d72b74a3252a08b7a7ef6976297af3

    SHA1

    ad7bceec4fe37f02000ffb4b3e6bd3d5a4baecb8

    SHA256

    a09e48c6334ac5a7b35565fe4a1f433f1ea2dff7fcd6f180db16544aea915d8b

    SHA512

    d3bca9bc70ceab99346216407f2d7e656bda165d90337e795f2fabaf3b66a1c514f41200d19cebdd57686da203c723f8d71f6a41963e27ff767be62fb2a23a43

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    14297abc5da0c8310b931701d931bd37

    SHA1

    e4c21c352c68cbb6820c59f100cd7573d94b4bd1

    SHA256

    169f163c9b2c0e04b60c0600b7b61e66f3b6741c6a8d6ca43ecc66c5f377cad4

    SHA512

    758c6ee56f110a42deee16069bf9815f039c6b9286eabeb7cf5c957f3482399a6cf690da98511033a34a0276567322bf97d5bf45741a644a8b65f05df6da4c65

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    c9573a95d3e82f9bf16c531ca58dd46b

    SHA1

    ef6f5defaeae0666675842f050e98858ceb2ef16

    SHA256

    d546d064e34249d603d053d1f466ea6792cc0186381fdfd6cb1501cd7765ef38

    SHA512

    d1597bf95e021ec68595fe2b460c108797652922290ef9303dd41a5cc7612ad4b97365147124b9e4f0a727095ae5f78a0883460f01de4967b9a063c79b4af6f8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    082e0b63de7eceaeff4ae45417503938

    SHA1

    0f8e8c3d74d534af325f7419111955411039b29d

    SHA256

    00f6e185459c500409daa902542b8c257f0e8c1ae3a6267ae684fddc0c6d03cf

    SHA512

    6594f6420f9684b82d9b6219077358a2d80e87f94ff5df7dd8f7549cbe36807cca7f319172fbbd32c21d9d1117784725728d6e12567de5f763b5bc87dde5f6dc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    e3dfaa41ba8e0ae9d59b008b684f956b

    SHA1

    542e8d08c3a9053fce01edbf2bf87753625e65b0

    SHA256

    ca747da6870d9cc046636dbaa548cfca0d7cddab7e945ba76aa29cfa219dbc54

    SHA512

    6c5ee5b011e9dffae1dd078766a91cd8b78389cf26481bf86daaeba8d8f69860f7cb0872384c0011ad42cc67b101c84285ed3ed648f6c6553eee8d6009d18b03

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    7ec94bce6257ada89590a7b3d8f21f87

    SHA1

    34a3c227bc254680757489cf8ca6cecc5599c2ad

    SHA256

    9740dc1bd12262b212184624314ed36c561ad45203c6c1024a199f0bc5e691d7

    SHA512

    358a463bda62cbc6297b25eddbe91553686de951509e91451e62d452d8ceaf45a61697e8c52f9fb08cb6d9f4333275379619ad5afe5c5ac85fdb224d128c2aa8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    b816be9ded12f53fd7cfa0f9bf5e902f

    SHA1

    6cbad593a9bca8492de72030d1fb54a8d13a8b05

    SHA256

    31e51e6c0268578324340da24ca51b33850e3db5ea3f5d820ee8a5c6e2eb35f3

    SHA512

    16fa05ce1febe15c4ba33b11abe9558a1822872b3f774fcd38c7e32bf01f130bca9a4bb7977faac007e996bb1d0bf68977b4125bb4ccd9c57d6d305e0f8b181e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    f1556816587c5aa812ded97fe221797e

    SHA1

    9d0550ec45a654923e60186ff3b72a3e9683c9bb

    SHA256

    4e5d852ad779ffd70eeaa0ad4831d7b19e5032eb24ed00d1a85333ced3f1d286

    SHA512

    e8adfc7af132f116c1be705d1130a94c7c09b0d0a969725207943138ccad76d7897f549c1cbed27012910ba0ba259a69c4e7c2027b84f10809a30d3ca987406f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    ef0068d577aac85ca382b65c5fc8622c

    SHA1

    ad183a01d6e4dc994a0cecc327c6dbfb6fb3671d

    SHA256

    7ec217277fa97a431bb4b627f53c1a01c4eb0654d13cbe3d79fa479a55cba791

    SHA512

    0adc2cd3c875cae4c9f2be571c14fea8af4d7be8dc5bd3ca09700139a5ca579b1a2f0ceaec3536a67bae60ac6ab210ef56924fd23b45043edccdbcbc39839ded

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    2e9a1bcb8a8b4b866e5bdfe1505ff2dd

    SHA1

    020c186ffc9470162382c2a7bcc2e7b899b5c5c1

    SHA256

    bb1358874ffc498e1486ebc2e20234fd82fda0cd12e472896e50b5c7160ece04

    SHA512

    a384b6e07d0e5fe2b2af6543404bd6a5a255119c93d4d43bdf2d6ea81769df40f30d57235259d80d99245462768883205016b4e049361dce7264b7e54dc67926

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    b07401fbe2bce254ee8bdd786c3e7649

    SHA1

    e510e486b5d5d28361ce5dd39220ec4ad670c4c8

    SHA256

    2749ff38d6bdb77e6b38fa4fd0aca9502b77a7a9ea1fa93efb9cfdc0092ee889

    SHA512

    ae51c5662cae826d56745c0f8966b470cf436d28061accfe681700ff2b51cab14eb9615724fc4fd2e7cee15224fd22913ee372e84aaf941f3d4a4423cf07b726

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    7a7424cf42e897988e7e304cca96562f

    SHA1

    fedfc8e110e5bdc8520ebfafed7f3972c71c9b16

    SHA256

    495b8e168e25573f0ec087a99b3b58c89c074abb9bfcb55b9cbb689732df9e05

    SHA512

    55bfe5a68bb91bde7831a57ee4550fd39badbe3a8bb0fa22ac08680ca7c7f957a5a0f43602ede96148409a9f7f7d03d5ba7d0c15cec955dead1e0a84f65a52a7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    9996fd8ceb19198c2edf47e845fd2d5a

    SHA1

    8a186e76437fc268bc7f367781fd898c3283ed91

    SHA256

    275c1ac705daba62838ebe7dd7975a4ffceca9eb86a3523002c7d6e901d969fc

    SHA512

    dada8690f11ec95ab3e875750400fdfc79765550da90c4c3af7b1a48a65af523584d970aabafcc3ddfe87ae694f0257d41b16a2dd4759bcf194b671e9143e144

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    1f260616bd7665fc7784eadb342a1727

    SHA1

    9facd2e3abba36d8c132c270352d4138d10dac26

    SHA256

    ece9aea925f61ccd27f9cf4a8a67efcff944bf51b11f7566167da3f83255e014

    SHA512

    d1316974a06b35dbe2ece358b59b3c5c453ce263463fe73946a2007e999a5dfa6868bd9913e56eb1d0a648a6be9dfbd244405fafbf9928f4563fc595b87a1ecd

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    b909d8fa570d793a860bf27f60aaed17

    SHA1

    52acc425802c212ea3d8ed6b957922b93d91ce18

    SHA256

    b3b5d10a0e9c01cd0a3592f4186ba8eb9ae2ef4fb0a7e5e098085e3101251e6c

    SHA512

    f8a9dd37b9c3ffa834240037f28ed3e3f4b80234a0cbf30f313df030e93b345dfe3a667c21d861bb8d3e57107634dd4604979d243684530ac5e11b0d424cd36b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    69e4c005818061b890b4db7cf61f2e0e

    SHA1

    f522f1ea59032dcf40efbdb998f552a6b8c501c3

    SHA256

    900c1e9fe0f74f6562c1013a3f30204325429aa41d9909b17b7a8f87cf4ef52f

    SHA512

    e6e0b4df570d9e5c043d92a4491600b6075064b285d98151267e7c0e52dd77c357f0050a78e3efad4a5cb9388643e13704039b98d5bb3d32782c966e0693ec86

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    bbaa566e9e0f5fc84b8e0fadf5b873ec

    SHA1

    34ee1cc1a64b3ad981678d625370fca59970db7d

    SHA256

    5111dd7f0ead08fc1c6ce259713acae0a31fe00f92e04bc0d55924a17d12518a

    SHA512

    b4d7cd8bdc86780b719316545c958e94b127cffc66a2e0041cbbb647e9e586a53e1f812d0cdc00f0773a2b577f5a51a71ed13633447d1630f20ed898dfe44ef0

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    77bb42435d5b056296a67a2fda24a02b

    SHA1

    b92c895c39e3e11d6ab04747daec33d21fbf4650

    SHA256

    7438e05f25b44728d8647a5b85597ad6771dc1862b6755e03339f4cfb764b1d0

    SHA512

    114f5ba20e9504547f14debab47df4dd2f0bdd0eac6afa5eee17f8aba230c0c074dffdfa28b4a44ae76d4175e5bd6519e7811fcca49c312c9c1956430a6bef3f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    e2920ad6f324cd61cee2ec6370e9e203

    SHA1

    e9e0f37cb24f2480641f4c17d5e93293148d885e

    SHA256

    1150a1b44f5804143fbf17133dc8b059739f1fc83257a11c81633d07ba66398c

    SHA512

    57e388a44141fb3d62fc4b31896fce204da386b7a9f72eeb0777049a9f9a983a820dc1bf78b57924d8d5b25feb10fba6069a0a6160967f99100cb916ae28dcfe

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    c318a44efbfe06f54221677f1ee1c7a5

    SHA1

    31cf32c6f0eb9a53ab92f21b7ba6ac82573b34f7

    SHA256

    58896008774fd0141dd98b1bcdaca5176ddef1fecca618e47dca581630ddd478

    SHA512

    ee217d62cbe182a2be38868743a62ec44f4b0b3f1eb1c0db525f7ae2eef543f71d1e8ee6c2840ccc923c364b6da237980e62af170c20b0879315f7ef2ae9e887

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\6GL24G53\ga[1].js
    Filesize

    45KB

    MD5

    e9372f0ebbcf71f851e3d321ef2a8e5a

    SHA1

    2c7d19d1af7d97085c977d1b69dcb8b84483d87c

    SHA256

    1259ea99bd76596239bfd3102c679eb0a5052578dc526b0452f4d42f8bcdd45f

    SHA512

    c3a1c74ac968fc2fa366d9c25442162773db9af1289adfb165fc71e7750a7e62bd22f424f241730f3c2427afff8a540c214b3b97219a360a231d4875e6ddee6f

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\K3JH4PQP\styles__ltr[1].css
    Filesize

    55KB

    MD5

    4adccf70587477c74e2fcd636e4ec895

    SHA1

    af63034901c98e2d93faa7737f9c8f52e302d88b

    SHA256

    0e04cd9eec042868e190cbdabf2f8f0c7172dcc54ab87eb616eca14258307b4d

    SHA512

    d3f071c0a0aa7f2d3b8e584c67d4a1adf1a9a99595cffc204bf43b99f5b19c4b98cec8b31e65a46c01509fc7af8787bd7839299a683d028e388fdc4ded678cb3

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\R4VBOHSO\recaptcha__en[1].js
    Filesize

    531KB

    MD5

    1d96c92a257d170cba9e96057042088e

    SHA1

    70c323e5d1fc37d0839b3643c0b3825b1fc554f1

    SHA256

    e96a5e1e04ee3d7ffd8118f853ec2c0bcbf73b571cfa1c710238557baf5dd896

    SHA512

    a0fe722f29a7794398b315d9b6bec9e19fc478d54f53a2c14dd0d02e6071d6024d55e62bc7cf8543f2267fb96c352917ef4a2fdc5286f7997c8a5dc97519ee99

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabFA76.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar14FA.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit