Overview

overview

3

Static

static

1

a093f86a69...8.html

windows7-x64

3

a093f86a69...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    135s
  • max time network
    128s
  • platform
    windows7_x64
  • resource
    win7-20240708-en
  • resource tags

    arch:x64arch:x86image:win7-20240708-enlocale:en-usos:windows7-x64system
  • submitted
    17/08/2024, 00:47

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    a093f86a69f76673d36384c72ca4bd3f_JaffaCakes118.html

  • Size

    53KB

  • MD5

    a093f86a69f76673d36384c72ca4bd3f

  • SHA1

    3976cd6b2e17de1aca6677d76c60721391c35eb9

  • SHA256

    44c5d5c7a9b1ac315ab8d7ddd5cf01638cf25bed4a8d4874a8321e26ea375971

  • SHA512

    09716b9bf916679adf3fb7dc48f2e3e61e05f251d65c7f6a1980bc8b937d0bb1af78d2b92fd5f5166f9c1ff6485393318e4081cfaff9b4d3d1c90be37f409656

  • SSDEEP

    1536:CkgUiIakTqGivi+PyUtrunlY+63Nj+q5VyvR0w2AzTICbb9ob/t9M/dNwIUTDmDQ:CkgUiIakTqGivi+PyUtrunlY+63Nj+q7

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\a093f86a69f76673d36384c72ca4bd3f_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1976
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1976 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:3048

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          17610863cef91dcb5d40fc5688575edb

          SHA1

          564f747064cefd7f1d28c184f6c02339fa9bcd90

          SHA256

          526789e6461f1d4f2ee32b87e3f04c4c8cbf5602cd3f046bdefd747ce4a58fb4

          SHA512

          a70d4ca73f8fed2eb223c3cadfe49fb24807ac1af15703de7991204a025ad028807917e0714860a8e38e1bd0a25732abadf79328f0c380e11dfb7fb3b74bbee1

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          1cc126ee00ea62be56712f247a6873da

          SHA1

          29c557bb3f9d5fea3d3f0d0497e1bcf1e02708f8

          SHA256

          388ce0feccdcea1535cca9377c722f01ec422793cf9458d21d4eb4e2638ccaad

          SHA512

          608611eaf77c1db2819f798581d24466f37a9a589a81985ed1174cbb8a271dcdf326891f513c33a46fd81e932d657eadbda4250a7df33d2e371dc75fee3b76a2

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          24274daabc11068a85c4e49b91cf9ffa

          SHA1

          f4f77c84cc6665687174fece2255c5825b6e3e90

          SHA256

          d0b56ec2e701d2db2df0a57129f621bb131d9a0a72ed64493c0a5404a385d5fb

          SHA512

          31a0413a09b9364f9bbb86507bee1109cbea676519c6e28660132b2b78722a949391de9813257c117f2521ea9b2370b43ac584fbb8352a7c0899468cb552e796

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          5c41bba40a1212062ebfccd725616b68

          SHA1

          7e2bb4e00970b508862d6a7543e3dccba37d6780

          SHA256

          005a9494cf621225394facebef4e6eaabe3b9b4a8a0b8f8cf4fed6076baab30c

          SHA512

          58cc1ed6039cc9e1b87b06e65029318ce647acec9f62a90dd4fd1f1c9d4f593cffb70797756d1587265f218bb3e5aea27c3728685f52474553c8c6069b087785

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          509d36fd6bafeff645b7d59d66498929

          SHA1

          cb795c6e68cebde28ad0d944d268cbdf01a9deee

          SHA256

          4f08511e48ca427358f2e4d83ac6a0e5b0e436e7bbacd565371e1a101c5ecb09

          SHA512

          98865439d7016e09d27938e16927d6432d79e0d885d3f79b4f9e980b755123610da037b8deaecc308920aebfa689727eb61bf97b8fd026ac3895107ae7bb5c60

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          e9568dbf127a945231cfadd0ac7203bc

          SHA1

          8cded857a0eac0ecfb0783ea5b750762621189fa

          SHA256

          ef101a930143d6e4a6e4893e29e3c97e5cde2094571f87f0dded16bc30dec935

          SHA512

          2ba607cc2e4b374ffd9ad43a6184efaa737df001f1025c4ae16bb823434c72423beb0c69a749f98987e2da53829653251b439f6d708acfa2101b160c58e42276

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          c59aee24cced369289d566ed8ce2ddc1

          SHA1

          580d0af1f0322c3b4ed05c4d1f930e9730f554b3

          SHA256

          8f1d8ef1bec9f8f786bf2f2cb7f633512b111011094c754100232915239a9873

          SHA512

          9e784aea8d248e6a556751104c1b776fc825a9048572eaeaff15b949f2317d083db3e8846a21b51da53b8e520554bdf5479ef156a9216b14f1c04a5e5323f3b7

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          825e90baeb946b7534d290dfb9588ce5

          SHA1

          4db463fe4db296571bb78ee355e695fbbb834c45

          SHA256

          bc8a84c00f2b1ef06404e50f16f8fc3457735650319fcd6fa77a1de5a9b9a3f8

          SHA512

          4f35cb97276c1303171116e0df53607012702c681d294c3243bea963be49bdb691577bc5cb90f70915378d25d26864908ec709677cb4ab5e3acf1061a488bea0

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          8378290d1254b2c75a5dca508febbc5e

          SHA1

          dbde09c59fb5551c096b6c73dc571266d03418ff

          SHA256

          726c93f80a99a040bd06f016c1afe4817f03aeb931176540b8977d7b1cfa9f72

          SHA512

          65dc2a306f96ac5f1ca2162790a2c42bdc42074c0c8ad4e30925591a119f73dc097270e94722af45bac8fdbdbc6533e81ffeb00c7e2a598368fc3806f580c28c

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          6f3a50ea713ad9a33cf6c6fa95a3ed0a

          SHA1

          3a75db3e2b246a7a69d0aae73f1f01f8306bc4b5

          SHA256

          0a55f4cd59b478904e80110c7f2a9c7d5818080cc0db960130afc1cf1723dad4

          SHA512

          72f7c3c66ea1ac108e3a38853b0346690e93c694ed588f3f6fa0bd6fcf908539b4f2e85eb59565d4be14c376620e7677dfab2dde43d75d70edfeb499dcf0e8c2

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          fd1c4a696b4a2c99a60b8358a426ec93

          SHA1

          f6c1ab23cb3fc30b56732fe808fbafdeef13a758

          SHA256

          43502c2959acc9a43e5063e88a84d967d24617a71987054fa485958d7f4254f3

          SHA512

          8a875bb35fdea61ecc0844709ada0f4ed6dceeaaef321a1adbe3c24aa40db1c3ae42580d8d9391b2e3e477ce2873910f7bd6ef231f36cd4074d47addab80208a

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          81e5131bb0b83223b9824db9af4321e5

          SHA1

          5438fc0421f02bf53681e165ba0c2b6f73e042ae

          SHA256

          557c0d8ded93b826d4437e8989da43508a4bdc99f5ce0859aeb8d6089b369c74

          SHA512

          f64a48725b278fefe186aea9f4f8b81c035e11c335835c06866e824dc50dbe5966fabd5d2564b4828a5e291b2db33111f20f4f7f41a261b372443e870f2542ec

          Download Submit

        • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\X761FPIN\glossar-js[1].htm
          Filesize

          706B

          MD5

          67f3a5933c17b3ab044826d3927d0ba9

          SHA1

          5957076d09bacaa6db8ddc832b4fd87ed8f05f8a

          SHA256

          97e800f4836b7030dd58fe6296294b7ff5ef1b5eb0e88353f230ea1608d2bb64

          SHA512

          03ba224055ffdbf32b7eea30c764dc18d66cc6d8707dc5fafab74e155b0bb3d4d691c5788b033a68f05299547297125122778fa7e3252f93e7343d918936643e

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\CabFB22.tmp
          Filesize

          70KB

          MD5

          49aebf8cbd62d92ac215b2923fb1b9f5

          SHA1

          1723be06719828dda65ad804298d0431f6aff976

          SHA256

          b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

          SHA512

          bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\TarFB94.tmp
          Filesize

          181KB

          MD5

          4ea6026cf93ec6338144661bf1202cd1

          SHA1

          a1dec9044f750ad887935a01430bf49322fbdcb7

          SHA256

          8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

          SHA512

          6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

          Download Submit