Overview

overview

3

Static

static

1

a35d8dcdc6...8.html

windows7-x64

3

a35d8dcdc6...8.html

windows10-2004-x64

1

Analysis

  • max time kernel
    146s
  • max time network
    148s
  • platform
    windows7_x64
  • resource
    win7-20240729-en
  • resource tags

    arch:x64arch:x86image:win7-20240729-enlocale:en-usos:windows7-x64system
  • submitted
    17/08/2024, 16:56

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    a35d8dcdc60813b400c6d402c71412a5_JaffaCakes118.html

  • Size

    47KB

  • MD5

    a35d8dcdc60813b400c6d402c71412a5

  • SHA1

    f29cad42ea84d74eb2363707f02fad05b9498cb6

  • SHA256

    60356edfc91539056fe3e1fea11827e8d5be9c36074b3c47d6778c57c14ad69b

  • SHA512

    05b6b083cc60d2664ed5c206d342497a6ca271556b1b1157b83faf4daa79d90fe04e7d5f0eb665a6cd3d1e19df35d9ffb177f71a3adc7e91a075e8f0585ba22d

  • SSDEEP

    768:KLayHHvPWloh8PFe5fd3bld3bZAamJelrF41VaZpGJhkEyJnJPPfx4eAUK:+3HH2lu8PFe5fTwa721VspGYnRPHK

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 34 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\a35d8dcdc60813b400c6d402c71412a5_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2572
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2572 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2132

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          7836fceb4bf857d7c3dacc5759ae7c32

          SHA1

          b79a8c676d4a4da1b650a35225444e5f4b6a4422

          SHA256

          c3e15c7aea8201803d111e1f2ea7d526d09b36969a3435057115ed0847d807a3

          SHA512

          8975b123582830468d800994fd678cc220101057e99be29a4c667250d037030c22ab85029c1ec746c6efc05afeaf6b2ab5db092dc5edb33927872ea4bee6d904

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          14c5c0b4ebffd83ddab0c7d54f5d83a4

          SHA1

          ade970812b5f3f205081d04a57787fd7bcfc0b33

          SHA256

          cc6b0beccfe2b623e674b54eb4afc285d1a516bab996af03d4838a14cfc942fe

          SHA512

          0a810168e628a012b1e78b6573212bb15b4ba575a82df9f45a6d5fcfc4bda873cb465a4967c747a7bc6f3fe1462e31d1f2e4ac264cbcbcb742df769cbbb1dae5

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          94699cc5754e4c6ec55b5537699a20ff

          SHA1

          915e4e68575ab46d0b37eb79747a9b5c7ec177e7

          SHA256

          fc44e8a121e94ff2c2c21b13dbe42af9deb033973ab105549969c16f5bc20a75

          SHA512

          91545eed8eab06ff47cba2a4dc4cecafb0b87e0c0d3e4323eab8e991b9e0853129e263723f94c39d93b08197e4cc5554779a76545c532fa1148c2189e2e93596

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          c07ff6a3efa92d60184cdfd7324cab72

          SHA1

          fcc2929899c1708229486c2975fe0a0a522b4b56

          SHA256

          26e9b67ccde458df9d71df4f5525f4582e2dd1cb7b4821782669dcd2d12516e8

          SHA512

          77544ed81de51394da3b2055defc288df67d73a3ff177620ff2e480e55b2b765da3e83d9c6ef353d4d5916a1f95e8e4a51fbcb6a4b55e3a8357ebf98f1711a2e

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          1df2a963246d71938595506731a4e424

          SHA1

          42399b1986da00fb1a8db90f5b7f00be2108d67a

          SHA256

          afb891d00a9a6cfa5ad25b52225f1213d86facda291df7b08ee86b53059b509b

          SHA512

          0504bea22e9e4593e013de56fe8677d9ebccb05de50aaf6824b27ffa93d9507bbfd7210f8b36b5224c374f805fe45557e82f1266ca8c86558cb0a8d3397c82bd

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          f1a15b59e4e302a529a6b1447bd43a3a

          SHA1

          d2937f0df9f606fb026b65d80f7c29c315be024e

          SHA256

          a12b33602298a1c1dc8b0a7dacfcff975deb77db5e4c55f5b4f68748b8a3545f

          SHA512

          81189d441919470d73a4669098ff7bbfdd049ae1cddbec156782b4c52db5c9c1c0d368283f94c4c2ebd184ec0ce354ad17a64297c98aeb400719ad2088617bd9

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          7a186da2d822108f4d98a41d41070f7e

          SHA1

          b341f7c9c6152b6243b89daa3bd7be41f4b2fd85

          SHA256

          bd8670eb6a601d26e874dd3c220fe752a63fd190eaaedac926bed9a504e3dc12

          SHA512

          3c383d90b834579ed2f9d2c4bdaccc62208065b431d6f447a7b68bca7c2ab426949edfe2e94beb1647172f27f22b12aa15f39659a101493c38b74f0568893ad3

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          d4b612459d2a22a0363085b92fd5c22d

          SHA1

          d24ec2895e456482aec7039205c04beaefa1bb6b

          SHA256

          ee5291b2eac7ee57cb4fa22ff4c249f91931d1deb62bb1c5bd03d44b49a55e57

          SHA512

          b8310735a35bc818af3fb094084cf70e05cf4ee20ddbbbbbd02d69c71f05c69ff4633a74b0bb2f20d6ad2ea47cf4f7ba7b5d9501969fd4ded0f689e0f63084fb

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          6692b981fd510537ab703e0735d6b08d

          SHA1

          b6bdbf8d874ca8f76e1ec132adfc93963f05d966

          SHA256

          a9e136f8bdf70701c8cbf990fc5f59f1f4f1f47113c3e48f2a0d215519348096

          SHA512

          60027a21904b20e83857d497811bea2fde6dbe1be5e4d44df55aefe03d2fc30cedbdeb62e011c3bccd13059e1b65d70da861971366de8dcda0952d05db176613

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          da81e18a96825e4d0ffc91cb8755704e

          SHA1

          1e3631396a59022cdb872418caad93392012b570

          SHA256

          d5a9c2ef6fc7a65aff77f0152abfb61618902782674612c060ac4c54a9efc4d5

          SHA512

          2faadcdf8bfd918d0da345e7929a381f84e6535f8fd2dcfad0d69db26baca8bb1aa456e737969b61eb5f31d684bdac263577f1670707bfd4fc5a5f806d99c8eb

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          5f30c11757e753a42e207139ea48445f

          SHA1

          48e6c9f2467e8397bc7f851bd7f58aada6dd490a

          SHA256

          9e4ae97b8634f95c5467bc55389fc702979c21ef9e732407207ffe25eb51a78f

          SHA512

          a69d9cd0af7cfdb873466621bdf99adc086d81be9c17619f628fed44952e711d70ed8a069fac986fa2ce713e9f6ca461c8de292ba6d1e81ea1448addd6e0f822

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          6a9740131788e60a0eb85140071c08d8

          SHA1

          0b8b6979850a6d88e2963a3db91e5be9e52ec68a

          SHA256

          22832f4757cd0b92d4aaf427c547760024c2421bed95a1c4ac55eddb46141178

          SHA512

          418c88858f7ce56601e01a3a430051e3b295f2f55841a43fd0d58ed0b3a655af38f01c948cd59ffc59af11664c8c7cb98729bcdfe22b669079af4de3af2368d8

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          1d2ada01ef49dca67d0f2b2bb99e7dc4

          SHA1

          ab2b2e34adf6d43d94f46c6b02f8cb6581d3ba68

          SHA256

          1ba57f3cedf6b6bd4c470273a984950cd6345a827309baa2f5d5718b69e67436

          SHA512

          5f580115eb60b314c6ddbc9ae7f9507f7bb0d6e0131cfa9b4fbbb265fe3ae9f695db270b5571a03ccf9c6c9d99ceae5f8825ee7af2918e501602753cc641f55d

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          8bda122bb0679abdc091f1a3c553d66e

          SHA1

          6dbff3cd4939bb3c8040faf56a5f4f72f40e17ef

          SHA256

          4380df9ef871fef02495bd74ae19883ed0aed237f849efc3065727f586d34422

          SHA512

          60700e7f4f9d51184b312590025db043e950517bdbd0c43b62f97d87453d6e407bda7475f41f569b8a178b0642435cddf14e81e0a3b8917e946d957a099ba011

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          291de21a9fc0f66b134282bbf9c998e6

          SHA1

          19ded159187880309c3e9082612a6fe4531b731e

          SHA256

          622ad0adcfad31a7d23699c028ddbe0685948bf23bc069e77f5d2d9279d849e5

          SHA512

          b40ca91ffc61a55a9b894cc675891e9679d6f36cb316c7b61b02ac5dbad7e75c4bf44b70e1da58c6040d6edff5a3e477fb189ecca183e8c870ed9593ca279249

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          51ca93bcc40c29d30d59b16ef2a54abb

          SHA1

          1eabc807244730d202a0904f81fa0bc3923df674

          SHA256

          16dc851b8611e6b326221a075e0b217e9c1ed589358350a7e7ddcb05a202ee3d

          SHA512

          832381d84157ffee95fbb353fb255135c0e0bb8f44433669b304c7c0825aa224b4bafc2f1e8278ddea3a0a475925087661d8c1d13b006017ef0296717f5b7e85

          Download Submit

        • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\8B420DKQ\plusone[1].js
          Filesize

          55KB

          MD5

          950e589a42fd435b2b6daacbdbbf877c

          SHA1

          78dc5743d4b541018adafe3a2b49b6be5f1c7944

          SHA256

          c5e3093bd5e8a58f04846013ead66d36ca25457a0475c9c72d8cde60e598fc0e

          SHA512

          cf2aa139ee4c2f79ad5dbca6239e4d5179a21f54cf2c3672c45915b3282bda5f5fa702c241d3b5c02805cdf1b48427d34e86b627904055a46ff6ef11be2b2104

          Download Submit

        • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\LW44N8OS\cb=gapi[1].js
          Filesize

          135KB

          MD5

          cb98a2420cd89f7b7b25807f75543061

          SHA1

          b9bc2a7430debbe52bce03aa3c7916bedfd12e44

          SHA256

          bea369fc5bdd5b9b473441583c46b9939232bf1f98c1cedf6bc2241c4f5068d4

          SHA512

          49ccede4596d1e5640a9c8e8be333f9c18812d58f02b2b15adb54172df1387439e9dc5afc4ccd9d8f0f75f092318bed68d3cd577338e88ef4f9373de8a07c44e

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\CabEDD9.tmp
          Filesize

          70KB

          MD5

          49aebf8cbd62d92ac215b2923fb1b9f5

          SHA1

          1723be06719828dda65ad804298d0431f6aff976

          SHA256

          b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

          SHA512

          bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\TarF137.tmp
          Filesize

          181KB

          MD5

          4ea6026cf93ec6338144661bf1202cd1

          SHA1

          a1dec9044f750ad887935a01430bf49322fbdcb7

          SHA256

          8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

          SHA512

          6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

          Download Submit