Overview

overview

3

Static

static

1

a713b003e3...8.html

windows7-x64

3

a713b003e3...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    120s
  • max time network
    131s
  • platform
    windows7_x64
  • resource
    win7-20240708-en
  • resource tags

    arch:x64arch:x86image:win7-20240708-enlocale:en-usos:windows7-x64system
  • submitted
    18/08/2024, 14:50

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    a713b003e3dd2698400cabdfd8b0e3a5_JaffaCakes118.html

  • Size

    7KB

  • MD5

    a713b003e3dd2698400cabdfd8b0e3a5

  • SHA1

    37877162f66d0e943ad98d4d977247844e312c76

  • SHA256

    209df133543713881e85fdb1743bbe92881a07832e86a728ede2ff7338478220

  • SHA512

    12cc1827f7e6670407d850c2ce1f950452bb799cd99ecc46f06d7e4c8ad664c0c9fbd18645d9495c67a5eaa1544d47994005f5a13dabccfa976ea6fa80767cfb

  • SSDEEP

    96:uzVs+ux7JSfLLY1k9o84d12ef7CSTU3wzfCwdxCDdCCpdACcdScEZ7ru7f:csz7JSfAYS/udOQZ/jZaSb76f

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\a713b003e3dd2698400cabdfd8b0e3a5_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2756
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2756 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2680

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          39479c1c3c3a8a378b646b303c1ab597

          SHA1

          8f0ef000e1ad740990168f57750a9d095a5d7901

          SHA256

          011064dfe8fa75e063d135ee92c37435ff0dc00ceeaa72d0b4432524588fa390

          SHA512

          42bce169540bfc16ff93d15b2591ddd10da3c6fe2438b209513e42786155b96bedd30a6ef69b3d6bf22f0ced08273c960ba02c2e15d11c12158c985ea86b5722

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          38a36a61ec5a9a0a045c8c625bf4112f

          SHA1

          de64c776ea6f0c08e2d10fe9177ef40811e9b5a1

          SHA256

          c169cc1c89cd31b440d63d9502239f1894cfd666eeb033bc267f8c761ff3775b

          SHA512

          cffa59a0e9464662cbe4f4359259cd930c98cbfe3e9b750f3cc17fe56d9ddd8c97550b82818f506a2e070af8524d480f4cf6e7d3ad8a5918c32e6d0da99f57b3

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          6307ea266de73d26e468d63f0f046445

          SHA1

          1f13d8e9d4084b61c79715a8f23ed80b7bfb4596

          SHA256

          88bad14d13477c8403871d4c5af4d5508d120574a57e141627fe8cb81e887cfb

          SHA512

          dcca83470a4978d99c98d3c098cd271759619f57d251ba2d1d132ca242f353b82fb8fb4e3c94086d1392613e88f751870f88aa898e06b414a851c853944fbded

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          7b160c2e606710aed35477c90c800892

          SHA1

          e1fe29fb135a071c9aeeeb58208599971496e9d3

          SHA256

          24ef27f4b6db85f7518698e5e88bedef4c9815d3a2605dbc7ad291535193498a

          SHA512

          1a1a8a318d9fd10ea3d63e5ec66fa898878f1c984f81e297405b4e545a2410f2ffa3c5dab7b3a3573c71f08414b02e6a88e39fa45c1febb6b2910ab23cfcd498

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          acc8679918ab82f04142afb46d96e90c

          SHA1

          b7d7a27a4425fa1f3c5782ba46a620a30c4b7525

          SHA256

          a2a96af620f1a0645db1579366f08798bfa0a2a3963ec7400836d0cdee2a4145

          SHA512

          a42ca988051ca1b18af08d1f3be4be72f67a00564e9df30919b4bae6889ad778c3656056deb413af78ecd42d91d519c85b8e9a4ec2f4f5373847f60c31e9d109

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          e38c1a27de45c814d9b55984b8b538ab

          SHA1

          4285a5bfc6f33279f9f8330895e3a498a9069fc6

          SHA256

          70b68a26e40213107282c008cafc650eb13f136e661921a1f896a3b36bc9d116

          SHA512

          ffe463c4e21036ded68a27d756e589947b528ee8f763a4b9b95359f1fe26b2ccaa989c97575273ec32aea0e3870b1582becc807e21c95252526d1c4660980998

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          9d151f8b6b79a1b46b97f0843d2c7a53

          SHA1

          06712dfda220251357ea2410f6e03841571af86c

          SHA256

          92b9873007e8fe39d0c55fabe8a861f211a1db3d754abb2c8dfba7bd44e18dea

          SHA512

          f99ffea61274530a64b0bae36858dde8e0712eb08a7799774af29c6a8da4652b8ecfc71f851b117776957827fe23ff5aee4eb6dfa4696f08968a669d8813a8b3

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          e77afeb0a34140944427d672a21c92fc

          SHA1

          7da1e8af8a68d499d179dbd35a306c1a300d88ed

          SHA256

          b818be692d26a73ae5499f488ed812aa86ab4e5fcd6fa66f5b2b5eaf2f1ada02

          SHA512

          57251b9a2dce2ccfcddb5d30993df8c57170a892ae42d3d4c9d89616319dad26deb30d49de101b4c922f55d2eec709ff7899cf90ea1db23f8a0928a15d5b158f

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          bfdb3db3cedfd8791b66491efcb92e08

          SHA1

          0aed3242f1a4bbd15dd4cd4f5d0d24a64f7d01cf

          SHA256

          d6082512b01cab4355a44c2a9bc24578dcae5f00727d5172c44120322ae536ff

          SHA512

          ec396a0ef2329fd6e4646983a3bc4be291740e43886d0ce4fccee3eee84c1633e54b6473072a718521cc262b1a88f8d6d42a55454d9ce5983462659d224e73e3

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          19840ea3160dfc23a49ad96e5a959fbd

          SHA1

          0b673990dd62718cbb63e3ff9f01a8bb2bb2644b

          SHA256

          7daef04392343e6b56775bcfedd623e0aab0bb4c239acab0a76262461062c36b

          SHA512

          541782a806440be520cdb6919bea1357634e818c6deb7946d8279dc44a1bcff8cbe082448fad9feb33e28f265c7df44c7ca725f8a8751556d0c39782e15a439f

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          b51f079db6b0b13f0f5aa4d76e253caa

          SHA1

          5f2e5a4a037882bae607c4e04e8b8a65ecf8838e

          SHA256

          d04b31862fba9ceb8af2983428f306eaaf72bbf602d4eefe293b538fd2febdb3

          SHA512

          4276b9799a3bd06a49bc9423e400559fea506a6d3a8c6c45041fcb7e9812891f3883ff175a73f4c38501bf04e6d218de994584b374bcf6e980757f681c80c846

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          feb72d373cc38715ee562d3bb73de99c

          SHA1

          a839e9dd162c5124682cef465031fde0a3ebd6a6

          SHA256

          575ff629a2036ad9593bfbe55d452777d70d90129d1a753cdee11694a3645d1e

          SHA512

          3c096abe85c31b954472722a260453452d2234dca8b3c72dba749a080d04ad73fc625c7ee4c7518fb6c9f9c527250210b7026283d76d3ec80d2f17e80a2de21e

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\Cab3BD9.tmp
          Filesize

          70KB

          MD5

          49aebf8cbd62d92ac215b2923fb1b9f5

          SHA1

          1723be06719828dda65ad804298d0431f6aff976

          SHA256

          b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

          SHA512

          bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\Tar3C4B.tmp
          Filesize

          181KB

          MD5

          4ea6026cf93ec6338144661bf1202cd1

          SHA1

          a1dec9044f750ad887935a01430bf49322fbdcb7

          SHA256

          8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

          SHA512

          6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

          Download Submit