Overview

overview

3

Static

static

1

9feb1834b2...8.html

windows7-x64

3

9feb1834b2...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    119s
  • max time network
    131s
  • platform
    windows7_x64
  • resource
    win7-20240708-en
  • resource tags

    arch:x64arch:x86image:win7-20240708-enlocale:en-usos:windows7-x64system
  • submitted
    16/08/2024, 21:00

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    9feb1834b2e8d527a98498b2604210d6_JaffaCakes118.html

  • Size

    56KB

  • MD5

    9feb1834b2e8d527a98498b2604210d6

  • SHA1

    18cde693eda9ce460b2c91578fdc7a23f0fbb483

  • SHA256

    f6546ff52f386d2efa3ea63cfcade3657783add4f7939e1001c8e62d3918860b

  • SHA512

    359de6863dd2c3c44b874ca411f4130f6f6e5e23aed9c770f3d19c86605371e0b97cef625cc3164a166aae0e4e8dd2f48b7580b497248eb12e0c8782e31deeb9

  • SSDEEP

    1536:S4Wqw4CqtDpavPyIMbByE5uzFEfz2fg5ZZp+NYw3Fxo7C8EG0/iIeblt:Sow4Cqt14aBtylBEfz2fCZZp+NYw3FGf

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\9feb1834b2e8d527a98498b2604210d6_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2536
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2536 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2400

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\3C428B1A3E5F57D887EC4B864FAC5DCC
          Filesize

          914B

          MD5

          e4a68ac854ac5242460afd72481b2a44

          SHA1

          df3c24f9bfd666761b268073fe06d1cc8d4f82a4

          SHA256

          cb3ccbb76031e5e0138f8dd39a23f9de47ffc35e43c1144cea27d46a5ab1cb5f

          SHA512

          5622207e1ba285f172756f6019af92ac808ed63286e24dfecc1e79873fb5d140f1ceb7133f2476e89a5f75f711f9813a9fbb8fd5287f64adfdcc53b864f9bdc5

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\F0ACCF77CDCBFF39F6191887F6D2D357
          Filesize

          1KB

          MD5

          a266bb7dcc38a562631361bbf61dd11b

          SHA1

          3b1efd3a66ea28b16697394703a72ca340a05bd5

          SHA256

          df545bf919a2439c36983b54cdfc903dfa4f37d3996d8d84b4c31eec6f3c163e

          SHA512

          0da8ef4f8f6ed3d16d2bc8eb816b9e6e1345dfe2d91160196c47e6149a1d6aedaafadcefd66acdea7f72dcf0832770192ceac15b0c559c4ccc2c0e5581d5aefc

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\3C428B1A3E5F57D887EC4B864FAC5DCC
          Filesize

          252B

          MD5

          728b83697122df09ba88c17fc758aea3

          SHA1

          73762f9bdcd0724dd9ea9272b23619043353ddcd

          SHA256

          84bdcdfe6d6f4c80d0afb010ec995c9021dd7e3023c88dd328305f8e19f792cc

          SHA512

          3cdfe5759a7afe0c89249b7a41a6c846c0c99132fb6693f3debcee7eccca11b641bd3d472d041d53c559445dc51550fa5279b1bc90136df2b4465b4d511d9da8

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          b54d17a268f58ccbce47ac366531fd79

          SHA1

          c96794b3256bd3fd8a9fcf7a9423c5dc0f6fa15c

          SHA256

          1ecd2af0e998eec3e5428f0439ff4e53c978b5ed6223ed0fd659c928a08b14b6

          SHA512

          27f6161e6df2e44ec3a20752e24713f5bc378024600439ebb639ae95e6a959cecb74f06159f364da14d23c31fecd8800c397e1105a0765542782d9a2af491bf7

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          dcdb0721f87f4829141e874904426b22

          SHA1

          fcd8b954103c70913bd8425e14dabb0edf7bee44

          SHA256

          cd61b9eba42ef515b5930ea59355cd790e0bf35865816de41d129f2f9889e903

          SHA512

          482a2782b77c4e8970879524d70a69fb001b9aa619de698d3c4b986ae1a31e610be4c1a9e5615f8b1aff696007732f1ce0affd129a39c6e5931976dfe7afab9d

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          0bcf6e3562792089441215d557587a8a

          SHA1

          09318b843315604a91afed802d4241d3b020c41a

          SHA256

          bb2f0797d2091970344e84d30a5cc5a38adf4c30fc219507e767423e5b13a0dd

          SHA512

          6f32460edf1d9d3f60d015082bcaf68e3319507b1db0901532ec829b4a78728c03980e689f7c3ef6c0c0480a0e8a85a6f2c97b619e8c049dc3fbf4f8591b6ee5

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          710672b55aea0ca85382e5a71c6059f1

          SHA1

          d409cd0ecdd4470477a6e7f0d82393b4d286b733

          SHA256

          00ff4b5df66b8c624cc18945dfee9de7127d0a5b24e1784e1a3ec1c2f2323b9d

          SHA512

          6c4df5a21d247d988a7f83e2365c6e1951ce76dfebae1c741889ff45e962e79573e2dd78f9cc913830a6a552cfbff8794e9adc05eb42a9baf6888a90d8b9216e

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          77d9ca4bf241eee10df58eb375a26552

          SHA1

          5329f6b5eeb3d33c254530ee0f1f3b64c4c4076c

          SHA256

          22c278e2f97aa624a4c54b86404306bd0dd5295d120188ca0b5f29ed4b711ca4

          SHA512

          56df1ad374569ef8d45b16aee708df1fa065ce19b05abee387ac994aba2546d8ab8b78a1216e22f60c6cad5c6d5dd2f4971466f2387fc3b98407738df5b1441e

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          5acc19766bd1ffab1ec6667c2c899a2a

          SHA1

          29cb57d1ca5756f960909c97f737dd3c7f77f6eb

          SHA256

          fd8cbcec3b26393c7b5562e9b70e4429a970684fa518c97e746aca9425e2db13

          SHA512

          e488df4dacd72907ca2b9e011ab73173702b9118bfbec2daee3fb0cdb00226bfe98fc002aaf5c301b39d7b012a398b89c0a3d4f226a0d4e336ea0b5af52c0209

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          1c0440cded20d5642ab0868c2b2f2699

          SHA1

          f2d334992246e1629a1ee696ac99761b876bffe0

          SHA256

          dab0498362c3ac38a16a7325d7f9068cf84c4d400bc422b4c3894f4fcb32a137

          SHA512

          f9e83909ff84064973b2fd257a68b2430aab1194fa2a0f7bb317ea693c751be63c5405c95c049376abcf19677a5f1d6470a93e721cdd85a9076009043fca322f

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          c65fa42a639c8dcdae07bce43abcaafe

          SHA1

          932fca7d68c0e806f6d7ed07db5efe0dfc708deb

          SHA256

          098aad9b190311b17a8267fa1bd036383ab8d7977e0622dc128cb091d25a9852

          SHA512

          7904f5d87c926deb130eb999b71d208c06a2191eefc24925a2d4ea5b04cde6efd1c7d8f9b4f76291c3d057ac5a3ac172a4277d86396cdd7e5c4fdeb380c85da1

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          b0d3a16cd7ee09e32321480e5cc1058e

          SHA1

          554583221b29840e1a9e2d15e205f5a11df99b8a

          SHA256

          c15d02263c3cbecea962d47ce3318f5fcfd4824308fdd52c527ea483be87fdd3

          SHA512

          de547e1852abbd7b368bee330f7b0d7f95eeffaf52fba34cb7848f53375ee7a79302afdf8b4144ac52ceeed310701299e21cbe029fd2c532c497c9a952336caa

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          48bbb9df7da9ffb9a3db34b2327b297f

          SHA1

          f9b62bfdc65648d1cbf9eb9a1d99359a4694a1fc

          SHA256

          07fe1da4e6e622b35255f0a434a011ce6fcef458a9e67dc50110aa27dabdbf3e

          SHA512

          fd333f4970670c24a19e0f2b1f4f94aec724d6fff421f7bfebb2b95664277c4e4e95aacd4ad8b2ea0eab73db218e48ee9ab92814d8bd7ca208ee5846e23f513e

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          21a6e477d9a077ad4b5fc42fb979ec58

          SHA1

          435108942f5766848b04d8f371a4ceff342f7292

          SHA256

          2ddca8ca7475984f069e77de1b9da666a3ed6f5ed9a92d4f771c290a373bbfb0

          SHA512

          458dad6e416210a0f685e3b27ccef8a8e9975ecab45e7edb09e4542eb87dbf214453ee10285c1cd4dd1931d05e4f2ad367327c56f8f2e77a016b9378a69e1c7f

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          7c7038c980a445f92b0bfc7efbc10956

          SHA1

          8271db4e3dc58a9b9363c0dcb56b1da9ed61c24d

          SHA256

          3b1d7ab436ba7a9487d049385b17a522444bbd39bc92bbe87d7ea307b5f2cee7

          SHA512

          967af640cfb320081717b28103e7e0ab15433522234bfd5eebf5ee181d0c3bb6c7d4b1fc981c2ce58f3bbe2ba09dffe70ff10d1b7d0a241ef9891c69d973cd48

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          415be78ca5fc6fd99ca713a78bf35d3b

          SHA1

          30478b930860c807b3323f36a5d1f509bd253ad6

          SHA256

          9e1ab7f7adf95afd35d046d57fda2a5866ae4a4fd585541aa29e6165544ecd7a

          SHA512

          7d971c68985e1444c25fb133558adee2c5c429f101b87b53b0071f27e4ecaa60433e3fad3a5dbcb29bfb5a81bb381ee4a0a659b4a637805006ae81b50a460732

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          574c68e89daf2d96bcfafd4f1fd598d5

          SHA1

          9a62a31bd971b847742df4765cbeb8a76b2c2cb2

          SHA256

          0021e40ec069b1031914820c828babf5dffb523d647642a54703154186e7b2aa

          SHA512

          49037ed208f648595286578a6e05472e26ee11a11720fcbe968a9aca7186ce47edf95553c599109bff4e031d7c324326424689d5edf345b75ed43eb6aa27dc93

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          535aeb17e8b99859f3a8a730fdce4709

          SHA1

          816a14f76dffcdacb6066419ccd1ba783b42e0f2

          SHA256

          481146e7e616e524cf316e40158b1f61b18798fae15c003922fae93f3d735f17

          SHA512

          622d433285f17dda9d5d9ec5c581de7bdc4283e9aeefae433a87aa9da3a147c64b5dbd2e5597039dc7920879a34d7cc05c841cd9b6f6cb51cef2e4c596fcf5cc

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          aa6a7ddf0d2614d11dfedbae970c8d67

          SHA1

          14b882fd5c1a5bccbe5fd0e00e4d9f9f604ca88d

          SHA256

          2170ef874ed321be270274a48a8cd00e1171756dfcde524a01418e907b004ef2

          SHA512

          0a9f3fec86fbeb69d8e027483276da5d08cbd17c410ea0b69fca9046e92640a999201e991636c7b718a1cc81bd626119e3f860455f6d2ca9ce90b651ee0facc4

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F0ACCF77CDCBFF39F6191887F6D2D357
          Filesize

          242B

          MD5

          634b17bdabb50ec1020f69df941afde8

          SHA1

          eee3146f2d410b48f623ce67a329b59f2f6eedec

          SHA256

          1e641b53405c143ec0fb60c05dde67fe5614d6bf89ab62790ad6b065daeb4600

          SHA512

          682a2000cb11f395999946478bdd23d48995b8bb064d9f19683f79591361d59c863fbd379d8ffeaefa1ca7b88763db2d86d26e4bf6487bff84e58a8b575ffcc1

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F0ACCF77CDCBFF39F6191887F6D2D357
          Filesize

          242B

          MD5

          d57862a0700219a9983192b528e9b818

          SHA1

          a913d4f317b0596d87f1faa2ad929a517d1b665c

          SHA256

          a69609756e5f047906ce54a09242e105d59a1a36a194f99ff07c0250a6cea6c6

          SHA512

          0560d0945d9e9beb9b96aad1f388bdc2d02aad9fb2592ae790670192026e2b58db1656635e4e76bb6e2099e36c6ff5f47d9166bbec7acb61d9d18ac001d095ab

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\CabBD39.tmp
          Filesize

          70KB

          MD5

          49aebf8cbd62d92ac215b2923fb1b9f5

          SHA1

          1723be06719828dda65ad804298d0431f6aff976

          SHA256

          b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

          SHA512

          bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\TarBD6B.tmp
          Filesize

          181KB

          MD5

          4ea6026cf93ec6338144661bf1202cd1

          SHA1

          a1dec9044f750ad887935a01430bf49322fbdcb7

          SHA256

          8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

          SHA512

          6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

          Download Submit