Overview

overview

3

Static

static

1

a25079d86d...8.html

windows7-x64

3

a25079d86d...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    121s
  • max time network
    127s
  • platform
    windows7_x64
  • resource
    win7-20240705-en
  • resource tags

    arch:x64arch:x86image:win7-20240705-enlocale:en-usos:windows7-x64system
  • submitted
    17-08-2024 11:15

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    a25079d86d62003516b961de12adf743_JaffaCakes118.html

  • Size

    17KB

  • MD5

    a25079d86d62003516b961de12adf743

  • SHA1

    648e6f972ebd8705fe341f89e7358f6f4a70ba6e

  • SHA256

    22348782a4918945c3b09254de9d183baf706b4d846bb4417352cc36399f4998

  • SHA512

    77ea40949587e6490acc94b3d6b5b0d17c603e02a222a546be6a550cc269c2c29d0ab679c96ceea02f84bf25298c879a4f8ffe1eca9257d172558ae09c3c741b

  • SSDEEP

    192:1INuEr0u6jv5MDwHjp9rR86iESQ1EI5HTjg0RAMfzJxlsVQKNdzc00tLJNL4Rr+r:1IU5RFvTESQETZ

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 41 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\a25079d86d62003516b961de12adf743_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2944
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2944 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2360

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    4a70fc3e1955b9328552860144ad1e1b

    SHA1

    8b70c93e7e139c453a972e5a49d0bf73de93c8fc

    SHA256

    94869edd1aa6f938e838d0da94b4ea8c69c2c3b5c59fddc0f14de47e6ba61942

    SHA512

    0848165bc27a303c5047419a1bf5bbfc8bfd9864e6397240d9c6c78a16bfab145097ae7d500956976aab27da1d4514e842aabb5ed342681d5ee9dbd0bcdccb5f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    64781129fa34c91e7b88f6adaf17e8a1

    SHA1

    6828469ac3a7630f01fd73f8eef018d199155c8a

    SHA256

    055c1aa0e8b4310aa4baf4d6b85e86f8b193462902717e5e5ee1b94a5fce65be

    SHA512

    540dbf301961c9d50fdf8b71c4f7da30c098358d4e256e23096823713523a5c38d4279b7e28c2fef2fe306d7804612e9b26254f3870743499a1ad85c75a3f36a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    8ea1c94d492a876a238ca0191593d60a

    SHA1

    322504a2f5fabcbfc87c859d8e298c8de2bae0eb

    SHA256

    b5b68ffb53e590d253c3458ed37625a3ac7fd50a0b482cf5ef3cf52e3791a69e

    SHA512

    b0c942da53da45f1cad10744d4c61fa4fd03358cebe6438f8eadb97acc064a0ccaa1e2154bde96db266a1aa14fda0bd5655d0a2def143b4eadde3967ca6f8505

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    cc968e312b5c5fb04e67be8522d680b6

    SHA1

    c48d10e33c3c49b0e9af9fd7f101d9397d1f7fca

    SHA256

    cb414b705cfbc401fe5cc3dee2bc801264c04a959961c503fd4b6d1f0a1f9e5e

    SHA512

    99f6a41c4fc611db3545935adacad052e9889495d97d7fc95c6cfb33e45325314f2143f963eaa24154bc5603cc62240515f3d0df342d44b3af3ebdc1d0b2665f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    ecc1ab47c5eee30715c4cae9a615b30c

    SHA1

    723fe005b36caf473bacef8a4e3b1183fb370b2f

    SHA256

    8b2ad743a2d2b54da5aa501e840f5825b2238b7687d9a19808afb63b2a72640f

    SHA512

    e916d519fa96805dc2ad384150de3a7ab6d00312e4399d9d5fc227ec4eccb97694f50070f836a046e365f29243db8b70ea323d22dc61575ec6da92b793db37d0

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    4d82d90013a5f9482e9c3d04b6e43ec9

    SHA1

    feeb69a134d7072ed2b84d3bdab2101a367fe6bb

    SHA256

    c02e44222412f53d38f9be5aa8cf2ccf18fc055344a3b3093c34c15569448b81

    SHA512

    ef2d0f9ae8adc28ebbd82409d6c07eb551cd249204c5a8454967f138865803cfa6f3894262a5bcb2c7ea02814245aabca6ace0e098225b89f1a135588beecf57

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    9bcb8318f94f39ae627640f53e945a29

    SHA1

    37aa8b62797929f60747f952e73b9dc032ca8eed

    SHA256

    737f9ccd1e41e39ca869a3c65323e138b1fd9ca626379fb0a548f886fc919a6b

    SHA512

    63584636ce4e8924a52f53d077b08c8c95bdc49a9c981bb8d18e7b62197ac3f129f7878a7acfc74a426f4aac2ae174d2ab829caa24bf4a835d1c6141f3b64211

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    f0a21be829718bd5484900b764174726

    SHA1

    7f2c493e11f422d70b510e8e0f7472a0c5a2e2f3

    SHA256

    32017ce1d054df81ba6393f2bc5322b29c803a2cfb6151536c22dbf1a577134b

    SHA512

    5be724a3491c56a20d2edf46fc21dfe0dc560171404ccb7419d3234843c2aa8870203778648e4ac8dd74f5e4b88ad837ac869b77b27c4df4be932e16dfd8f312

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    b69130c19ab0415504d0739c2b6ab819

    SHA1

    b602bc7d30af342b163cd80439086436e01a13b2

    SHA256

    0c42ae16ea10a8c5f3d028ddb797620010249d0af804af620a94d9796319a019

    SHA512

    48585e3307cab595b610a07a34f288a5b7580dc2f1a780f25a3fa92499185a0cf9702d3b6cbece70f3b88168e2fda65a4705e778be14eb47ffa8c5d4a4492778

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    d0072db205f512df7b4ae3e2a5c74a47

    SHA1

    07f9cb2db3cb39724a821125c47f58cb0a0e00de

    SHA256

    6793a7a9213eceafd752c9605dcaabec09af6a2929ade0a63c49eb1a1f9f2a3a

    SHA512

    263fd89d1de0b922747c1af61ea57bc1486467666b0c7ba6f94d9aa10d52c9b59d18a0af89c5634d2023c2e03a20d804ec35e6dfe859deb2c69074d47b59aae5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    a6d746e55966447401a44870e178fd93

    SHA1

    0c1843825aa0024cbb472cfee11abf700bc9fd5f

    SHA256

    f9e64b106bda2e718813fd837819bda4e3a26ec946b79d7749e039a89e34b28f

    SHA512

    2a0e144aa89229b6c1b5a6c5266acd781ddc420b232223eccb6a4e2397a6172a1b05c09b5b280627670d2f88cd26363ff3eb7ede64fc5ff7cde0da625b024ada

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    1f252b951d2626a391ab790c1808bbfa

    SHA1

    8bba32a8360dcd1993ce5e360d055c1f81c70860

    SHA256

    fa8dbf46ae6a4185561cb8f3f298d351a1d2f7a5f9722553ac3c234aea6be68b

    SHA512

    cfa5c4d731f4e011f3b9b4844b052082e1342ae822d1c5453ca450603352323a77b871e8a4c1cf4acd204f312e62266869d1fd80af9f7563d39994a51db36ff3

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    4dd08aced6096a96c87c3372d0f713d1

    SHA1

    f1156cafc57a7f2589aadbcee143fa88aecff65d

    SHA256

    8effd589d89f3a4b87cd00002ee01ea7cbb9a0ea32bf1d2a6fef457b01a8d0b9

    SHA512

    ba9a481c20c1ae6a9f46f5d0e5260bec5c7f6ee5f4f941f528308be4cc18d9d08a746bf9be2129c5216b452167771cfdc457cca1d4b48c10278ab93a7e4f6046

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    9a36dcbfc9ae876669a2f760f80b23eb

    SHA1

    9657277bdb43f1bab12a57ed0109ba6b42a8d111

    SHA256

    7faa6a7da0e6bd291d5bc99c6c0561b0c6512b2e00630200956d4b3222d65fba

    SHA512

    a486496910e293b233f52c4cc37bec0810e82ea4b436357272436b3d39239cc4479b6a5c3696492729890014f7186f61e8b0885a6d5cda6deea36e99b64014f0

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    01f5a2da07320a48c37c0e9e2d9203b3

    SHA1

    c27134a2ff3681ec022491f4d86a9baa9ee33279

    SHA256

    d7a534a2d635fda43c6e2c585f9a540e0d3fade1688c07f01cce11bfe751a278

    SHA512

    5ef63607ffb72f46ebc0ac45a77c0d24921a587729ef48c8cdebc39014fbef06f13aafea2f23fa68f5f45b7a348aa99f5cc416296567c3cda4c03b738c5b52a1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    d968272a2b1b781f7f0df23a70a04008

    SHA1

    cf2b942fab89aaf20890fc9f99e8e282cec0b545

    SHA256

    ec6fe45d747112d48a1fa7597d2fe3f6620989dcdfbf519c46d76a268b65fde3

    SHA512

    b150767435fa5fbe153b60da1cb60bfffb06bb07e94a9db5933bf3dd149f970150cfa2a83a4b6720f6b0aba87d1bf5556fb64886e06612edb095ac1358f78f4b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    b3cafc25624da6ec8ec673dc53a4a9eb

    SHA1

    f98372c59a36784ec0b30aeca029e343bee4fba9

    SHA256

    b969cbe11d881a1fa1bc41c6cd8f149d7dcffc4d7b4d7baf31aeca0880345b26

    SHA512

    e29a0582bbc1a6030467488df0375e35fe407f49b0be573bcc7d7d249ac00111a03eae964e067e69a7eb4dc8e59b87cbb39ad497bc7f294c3374b725b4e84bc0

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    7b70022c89bf65b9cfc91d9bdc57aa85

    SHA1

    6f8b1793f1cf84e7391d89570e8a167d5ff96393

    SHA256

    e110ffa44f713ee15426d8609a4c6dd260692a189d63f3400d1b39a57cc0a590

    SHA512

    e19d77aa33294abec052bd8211eb6d0b913284bacb4ebb61c0f7255c65c1ca33a236d4781fb6f158ae0216976b5cbd7353d7f2811e62ab82166d47b9b0df14c3

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    14bdc63debba5a804acfca3735ca5813

    SHA1

    730f1d6248406019440aee60b25274c442726212

    SHA256

    bad01df8c283526ad367c3878bd1097ea90a7f8d29dbdf6f91540e76f4e62eb9

    SHA512

    789806512d818fb17ead0e96977d666da0954f81d7b52bcf5c40bd22ce1d4a266c762a8bd61ae32683c6073fb312afa2fff27a0fbe9905f2e7ad13ff86c582d2

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\M7GT0RRO\QBM7HURV.htm
    Filesize

    138B

    MD5

    7389d931c86b3d7bb6b8af46d8c4172b

    SHA1

    8d2a4760aa0b47984d11cd1a66448719177fb791

    SHA256

    301bd9f16f94feedfae7a946a14bac38cb73c43efe6117bc5586835af03d7d6f

    SHA512

    dd6d1511e4fcd5bc09d821ffe091fb5946ac9654c48664aed504e479e9ac20c1cad44b6df90f42190d47e28f5f96bfb09d24056df6b950243d68ee8100a9a889

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabD4A0.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarD55F.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit