Overview

overview

3

Static

static

1

a5580d7654...8.html

windows7-x64

3

a5580d7654...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    144s
  • max time network
    145s
  • platform
    windows7_x64
  • resource
    win7-20240729-en
  • resource tags

    arch:x64arch:x86image:win7-20240729-enlocale:en-usos:windows7-x64system
  • submitted
    18-08-2024 04:14

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    a5580d7654c324b736e8c8c00652d34e_JaffaCakes118.html

  • Size

    220KB

  • MD5

    a5580d7654c324b736e8c8c00652d34e

  • SHA1

    a4b0ee629854158e7e4864d7453cdd38ac3d1877

  • SHA256

    e138b82d8087c7d66530667c625779bfe0423d81c004406bbea608f84ad1a254

  • SHA512

    8fe4e8ad03a7569cb81187ee49f5f43e9259c21dfe3ec60667be7b3cb2e9496dcdd20f2ea4c136e3fe6e7b890172a2bb54ae490dc4c3b1e5aab49f9d3c42dee8

  • SSDEEP

    1536:pbMjw2fMk1D3O9Pj2fcP7bMHAicbXLVLHQ8DCcZqtd1rp:sFvSXLLDCP

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\a5580d7654c324b736e8c8c00652d34e_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2124
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2124 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:1632

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    019e16b1bb4a8740c6fd48dc7e448a6d

    SHA1

    e8f66872557dda5ea08559d1ebf921f67a0cf73a

    SHA256

    102f34fcb75b61bc81e4a7b45c4b846d0ce503809668ef8479a7d6f5312cdc70

    SHA512

    feb99fa95cdfa8580e78201072d8b0b2c021815a8fc46d4d68e9b68580ad88ebaad5582fb4b3d9770a363da2343a1d5d6ba6d85f5e4b760412ac8bd1e131cacc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    006a12d8716ab9a03a244f71d140c084

    SHA1

    5747d763f80d06f40b77b29e9a7f5b8e9747134a

    SHA256

    85d62dcb66f1e8125ee6acea819a67df9835deafd743a37f90cf21192165d8d7

    SHA512

    0e584d6e232672dda801fa371c888515c31239b7c0b8893a498e3de2ddbc490e19d5b2f1d47ec1216cec7e6a98124bacb56d83fdba6015c747d437c3b388b7c2

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    02648b65cd12264a6fcc30639c6b8d99

    SHA1

    a8dc0ac28dda99338f88a72855ca7d2be8617cf5

    SHA256

    534e3d94bb06965dec5bb7ecb73bf54c68cf4c3740955a362607b6d94a9c3654

    SHA512

    c2399dd62d190d454b673079bb97d2110f5ef7b33764eaa4695942fa78cccc803864a9173c5672edb2e506425de09b967497ee41ce9d16b7bec4c9079432b2db

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    7d7feb5e6791348f723e1257bf21c4f7

    SHA1

    56ec07c9d59900c8d804a4c708a1707e5873acb9

    SHA256

    768aa2f5e62f7c869024b4ebab1a5bd0e0e734e8ce7ea5ab0e9d40d3a6bdf718

    SHA512

    fc39802a4a471ca655dbec5577bd850ef279cdce33735ffdee675727cb8c6a40163980adb02d0aef3fa9e33adf4230a51b22b6d43bed89e45639d1eaf79c1809

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    1d16ade200d01115f64eeba01e4cb7a8

    SHA1

    359605e1a6d5748a0402fdb0a0c7d383b489d101

    SHA256

    0775249c6f13f78e4ba24d3cc0e5a07195c76115ec31b1c607021698748cca3d

    SHA512

    c019340d5cbac2c91e955c9d1bae69f0b5d5f50247147ed14b14d4187533b160b722c65bef528880dcd7b06d6b9d93f71f65ca28ef1053e70e1edca79d21cd17

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    3494a5504cac0253b0ba7148f8b5f30a

    SHA1

    236d68ed6683fbc1cde0b574952657c5a88c974c

    SHA256

    28c540ceefa7eac2c4211d9144a34f9e25b7f95cea3e05acb8788d5f0eb1de71

    SHA512

    bbc99f0bbea47cedacf07ea38db66b3130442d2e1aa2b00b9c0c665746dc0bc1ead73a9ba03f0e1afacffdc6d923d92e783dd975217e2a54eac7a249b022dedf

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    bb2f19f7c87bd3da878dd8ece4de3b91

    SHA1

    21e549419003f8cd6be25a58a1de44664f7019e4

    SHA256

    056374c0d817992f58745da379865cbe7be542d17c7c7c066405489ed4650c60

    SHA512

    60cffdb3447c37f5ea8b16f282422a01a74ffa2b34c1647028ea8d06a93428716b5d8efdd65f7f709c0ecd8ccc83234efd0ce649da803e8b1dc38ca19ad87fad

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    e4ae49fb9ad51a5fdf93a172db341da9

    SHA1

    3376886f62f0d51a455dc37017bf6f090d11cb74

    SHA256

    e02d786a723870511147c14aafeb21e3e7f6a7039408fe6d3db59bb82a35cbcc

    SHA512

    e1392912b37465157f5d4d3d4efddcf82370a8c80cb0dd797581bb4310bff2ee31900ae5dfe407f1ea430ff991d705cedcff8d353b8d6b95c967b3b12acf5ce9

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    c498355ed6010a4e57380c14990de80b

    SHA1

    cb0f0c03ab8e857ba0d1a2979d9fee0c762b11ed

    SHA256

    9bc1f28cafc1dd71ed9f3e1d08b67ee1793f1552a583eeea4a7f3af7a1ef76d4

    SHA512

    697b3bbc7a4e60c374549ccf30938a7c5cbbb0c683afe5f15cc5331751b96fbe8b9c7708966afb2c836ec6625bd7d27dce3ec908acd89cc5aa975f322852a73d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    7685e738d252a5a25c50c79a57ab4ecc

    SHA1

    970f5c0b6a269c2cbfd5ecc94b95ecab2713ec28

    SHA256

    afecb0102c3ee08693ba008ee0ae33f63818fbc142a91e41741d56d855d83884

    SHA512

    e5768d38aece5cbfd6dae28ab0e07e887c5842477fae85702cdf1bf7a9ff6ae347ef7866d13af2019c3184552cb1fb515c9b263d8ec08fb39dd1412c98f62ae3

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    e85da3b7b7360df772fe29f39d1a3d64

    SHA1

    b08040ebf5f86697c60eef80af0b93e81f0d7989

    SHA256

    c18d4680db4a49004f7a3047d66b30f32959458a25183dba480b01e13d7ba7b9

    SHA512

    9bc63bc939f295f5d956be26147a29f5a2fa5264559c8f452179667a8bdcce23c34ee6b46c57c1bfb065949cec7ede45a27561228123cae7cbd1d1f9e8e166ec

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    2ea6aff04b455089d7e2ba72c90d1c7d

    SHA1

    5655b03ef99bb6423a4e2da1e9ab15acae0ad392

    SHA256

    29ef85003519945beba475e689ba8a75be0c2d63288711cec6476cdf46447722

    SHA512

    aa01d1853071bc011eddbfd2ecf5f923c1872c5b0859b9f99142007cb465679d2e16dfc4b9cd5d4451b7543c68f6e577eafc0c13d60fa8b199e240d5dd8b195c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    1cbd6749b6f6176ba26fec0dcc87a9ca

    SHA1

    02bba39e97e3f303623a8241a73852278be2adce

    SHA256

    9bbb7992f2f28846c051f8f751f586ded43d1050a3956d7ec0369369a5ec4438

    SHA512

    0786bebed36384c0543f9ab65c56612f56553687c5fdab62d5983b937f6ec060c64634d7a06e1caa83c476435fa536e76ae511dbbc45868670502605cdd57c9b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    31677de3ebe93eff99b7590b27c2594f

    SHA1

    9e04e2b85e1d9db60e66f899229622cda79e3fb0

    SHA256

    e9ce7d3e93ba9e29fd3d3bcdf83d65fe3a6c3d537df774d8bac0332e344c3ca2

    SHA512

    fd5f79a165fe72562b102d864a849ea6d857b057b9765c5da75a61c03e821c71c3fa3cc586ced95acd159412d5ea6bf91857fc6735e9baeb8985e79c30b24717

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    76262acc9b36be2c063caf355dbae479

    SHA1

    b9c8e84b1bf64d0cc23b7867405e382a9c2d8cef

    SHA256

    025a5b230c712f87fad7b398af55ef2c8f1866b5fcb8573323525f5990840362

    SHA512

    dbad8ce5ddb2e2b053e6e7872c023c319c8007f735a1493835593442f9f06a056eeaf427997d676820e5ab2ce58190fc5b144973a0c9b88083c90d0647d2787b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    f6c445fd95df9fcec016b6b10bd81cc8

    SHA1

    7083a14964a9877f268c103ee0b7402f08e08fdc

    SHA256

    08d4472fe989f706868115f4772950b550dafc60ac83a9139dc5cf7bcd0d0c20

    SHA512

    f849b7dc7e40d679e01198f04b882f214172392bbca2ca7533f5d2585022aaad9bcd8b1f77edb24803fc48473dfdbc1e77b0c49a2ff587cbe0f7b01153d3b7c3

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    f7da3a9b3aa4aa07ec8d44537e1e6524

    SHA1

    83c31f7138654f9be7e406bca4e8d8c179825010

    SHA256

    d7e690064866ce03512043e6ea4e82820a0a068d38d42d528519241e1f6e27c0

    SHA512

    5dd30e6647c5532b1aac77992a0359168586d4a964c683798ca8617574a48b96983d4718b0dcce967186e2ed9e20a1d9005ac6ce146f47c6bc47a337e6e70e1b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    ecb37a9d34be13e9a84d7bf6820cf1c8

    SHA1

    82ab2d89e9ecdd8a3ab2fe9ea369ca79e1302127

    SHA256

    7fdf5d8a8b60c0582e611b10439ebbdc5609f41d637bb445f97670added690d7

    SHA512

    534eaa7acb8c1967cf7bbec30f40c8c0840d7ad3c42fc498dec0d81f8b4aa88c4310e2179b3e50c762f971d510a12ccf863348f4e2590463e4829b12629440aa

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    fba21685bcebf67d4536046279ccd372

    SHA1

    bd23f22afcad986f78c2dfe374af3c496c2451dd

    SHA256

    1e8a89c6bb775cde18c06d9b7d3aefa656df16049f9760cb67e2c2d9ac251a66

    SHA512

    9e96a5f1199c3d13381e0640ab0692583276957db7933ab5e8f25e1dce8b837c3853772eff4fd8fb903ca9d0357990e100a83dc5f744d1f30d21c6fe62008336

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    2a313d10e62f7bb1bce25a28bf54963c

    SHA1

    eae825d78913bdff69bcd250a18f12cc198a54be

    SHA256

    51e7c7a7f88bc62dbd751c080be26af87ecabedcc5e3327124dea6011fbd3117

    SHA512

    9307389be908571ce076a2260227bd599deef75145c3cf66b0867082f3d0111227ad4a234898f977df8b4ebd84481deb3cd38cbf5ffdc90a60062f25696bef7b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabE16C.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarE1DC.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit