Overview

overview

3

Static

static

1

a6ed7e4524...8.html

windows7-x64

3

a6ed7e4524...8.html

windows10-2004-x64

1

Analysis

  • max time kernel
    139s
  • max time network
    133s
  • platform
    windows7_x64
  • resource
    win7-20240705-en
  • resource tags

    arch:x64arch:x86image:win7-20240705-enlocale:en-usos:windows7-x64system
  • submitted
    18-08-2024 13:59

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    a6ed7e4524d3d377f17645ef4892a6fa_JaffaCakes118.html

  • Size

    53KB

  • MD5

    a6ed7e4524d3d377f17645ef4892a6fa

  • SHA1

    6ab9557186fd465ecad0425c3c5ae49993f9e22a

  • SHA256

    16915670c003cd87582ce1ecbde7bde8627986d969264faaa0a8f3fdc57c12ab

  • SHA512

    1e3d835a93ab657863f1369c4d0a18a8145247c9b7264132d28d98ab857418c2ffdbf21aa8312af750660ba77306b1d7e72a4e395a9bc7949f8754c404b7788a

  • SSDEEP

    1536:CkgUiIakTqGivi+PyUXrunlYJ63Nj+q5VyvR0w2AzTICbb1o6/t9M/dNwIUTDmDv:CkgUiIakTqGivi+PyUXrunlYJ63Nj+q5

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\a6ed7e4524d3d377f17645ef4892a6fa_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2360
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2360 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2176

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    b797750f283f301332e9a2684d61c95b

    SHA1

    deb06201442ea7fe71e9d1aace880cd311576441

    SHA256

    6fc6b20750821957e0208c1151fbc3eaa6bb6c297e738d9b5b5b8999e5b7257b

    SHA512

    3121a32a901e6fd871ba4e043e1e3a7619a17d63e595bc92a3e51026b0fec73fe2b7d0fe694aab903cfbe8ca15736ba861fb1bf13509b1fe5fadb22adfc2bec1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    10221aaed225672500706c61af0706cb

    SHA1

    d43f07742b7f5cffc250bb2b57fdadd36740129e

    SHA256

    f03bb28401f1f493f01a7b8566330198efdd9b266682addf119f74948427917f

    SHA512

    ee20608c2e757c6791e5bca7bf5866dd040b360c737a21897e5554dd77e36296a0d61d833f671bd219307621f79475234657c2c2e6be59f03ddf6e1d722dd306

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    a5ebc4cb3502a4beb0c079238e56269b

    SHA1

    dc44fc51e1fff5cb3e822f95ca913b7e0e1829b2

    SHA256

    d925441985faeb7c9bb95c9aa2ff2a94d2ba774e68e173be23e33ed8db72e9fd

    SHA512

    656e7c07a1b94fe16c6bf592a8c18713e849ab5962d0422787107a4aa737fd16270fe87ec0b628a2ef0e73e4276175ee2fa2799ac2b20222267aa647456761f9

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    bb1fbbebbf936fbc4aff49e8a86c61a3

    SHA1

    db39dfb5fd5398a9e78feb99e6731ecf7d5765f7

    SHA256

    0a0a7a674b92c42011bfc480d219fa503a053e59e60bed2e545d3287b4cd59e6

    SHA512

    7e224fca091fc1926c3752050f9aedc46c55efc7fcdb9460583dd43a702dd96234e8ef562eed824d63cc266bbf71c138d5f3f3775eaaceb7565eb60d687af5db

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    bab654702f205111f4742c920b1a105d

    SHA1

    61e26d968710ea80e181ae1d949b12c1f0203e42

    SHA256

    82242c9b14048c03242d199ace71e04ae35d9efd5519751b967a2af794bed989

    SHA512

    96f9d1b3e2a816e5f9c4f8706b7176b08beb5cbb903fea5f57e0c55f45424f7a5d00089e8df93c835b522c19933d343cb228fdb62253829669f127277ae4936d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    6a0483819d665713d6c991288afb338b

    SHA1

    94e7ab700b5e7192d1ec30684a41813f9c557364

    SHA256

    2526b0244535213c0b350d38a79fd1cac4604cb1b5e472d1b7388fa27526b46d

    SHA512

    d1e630b3e42d1dd67281722759ea70c48902b5e92afb34ea1e05f31a1d92045aebc14fbf9ba172ce053a42f9db97ae27090e36c4b8df6a67472aa9b18798d29f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    12305f1cb2641feb71cde2913b3089ee

    SHA1

    6cfc45e2be5efca1c0becafbe48c89fa4a018077

    SHA256

    bf7230382273f82a3b4437540ac1f0ed1b4cb17228fbb9242193558d66ee35a2

    SHA512

    9dc8db59c6e67860383d2a868b9302ceb6186489251cf426652c96b5d589cfe48e0ad1053243614a329eb3ad117d81309bd348d739fae91f940444dd26dd1ef3

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    011ca5bb19fdacd4096c61ee922b3754

    SHA1

    a351dbf302bc4ac31301ea31362c092b30ed4d99

    SHA256

    3aec19c3483772136ac6f8938a129478cacb80faa09deb39fed48d06358be48e

    SHA512

    2f2c0ccf7eb2eb48232b8a5fe3f337f245c7dd7d3837b8ddc5ef0c105d3c0ab410e6d5d2351e2f225239e93000a55b7236c28ecd922bb2dbc8e0bdddc3adda18

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    6e3866ab4671e5821a126ebb6fad45ae

    SHA1

    827601432ff1471f1ed944da99936f19db1d7806

    SHA256

    e3b3d5f1540370d4d7b9b6a3f9e45edd20520cd9f40759354b4db3a28ddd5e7d

    SHA512

    d4ef674b1eb56c32dfbb77c00a841b46301ffb4ae7094f073800bcc72627f8411434d12931a57ee46f7eed7d6dbd94f57db09d8013b95edfec0230fe5aa8724a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    15814652ff341e946749b2bcdbf04fb7

    SHA1

    0968fe8b19f3a5a76341284a03a862ed0b232b78

    SHA256

    e69e3ec505d35527898c88d440a5e75727f9062f7295e300a883c027c59bd8be

    SHA512

    b212918ceb00e357d379ad2c0f7bbf043c39814bd1eeb431ffb35e8db0ec29b7791239d2cc7df74f661bd3ed4acefb04b3d127882377427091a2d419507e30af

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    18f574f6687db72a0a6185e73e212470

    SHA1

    01b8c9d32b92cf4b0534e557ee59b8d7947fac92

    SHA256

    488cc64bfed2f2cbe8f2eb3d58673fa74808ae60d2b9a570006d0e1ed2a9c419

    SHA512

    03c66b1dd3dd3fe16bc3e3f0dccbcf277045380ce739f953db6e25a72c2418ade0955c735eeb38be7add563007b679c3524b90ae09ad45c3fb51e119a47a83fd

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    7447570c54bb2182af65a4f19073ed9c

    SHA1

    80296e64b0bb67291a15343a26e6c6f1919ab963

    SHA256

    348449c49d1a85a9b1ca6407cfb005b4c1a451694632fff268d88fc25983e6a1

    SHA512

    733f52895f366b3ec8f62a74d445284533a03d0426dccfd3bceff8e52b0bbe41d928a6b2389240883f858fecc05093dfc6fe2bb8e2e837bb82da4f7610d0c1a1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    b912c1e704fb7828fab3c4c7c32d96ad

    SHA1

    8433281ad9469d5584a39febe43bf2d684181e83

    SHA256

    d4a0d4be4a42329affe1a739c620ffdcbf7f6dc07ea9bf10769e8bb9b50f087a

    SHA512

    8c91d357116776875fd9f44461f19956535e2f8e618c11c6a8acc7a1fe1b53b86ac2093d7a937f8cb55ceaa0688b8db15edf27657f23fc82d9f44a6f6b6b15e7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    66779b429399d9c741d9b3ba2a55fba0

    SHA1

    fda2fd63f20c88240d742bd3fe7332d88aa66229

    SHA256

    adcd73281c21e44ab041d6e6e185d2a5fb8aa9f2296980c3f6c6a29439603826

    SHA512

    f4a8d8246edf3d0286c998e89fc0005fd8f759dc5f069d771f0d941754c546d7edac89fac1e480c2c313d5289e3db7f8e057f07376a333e39870c4c752dcd78a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    7d2be94dd6da468e2872d2ab413dc354

    SHA1

    d3c16c57dea0ee793cb15802e5fc01f2bc7c07c1

    SHA256

    e4d991e2ebe818208fdb60809524551688741a2961db4b7e490ef2c96fb945e4

    SHA512

    61a288bffceb2e0d769d8556917d64a7726875a057b551f9abbd8e0525b5e1056d49c886878fff2bc22643ee5d4469268cf1dbe6cb70ae3cb10a4101d75a70e8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    1024aee28c59516083ac86f259492580

    SHA1

    1f0e1f57da05f04751bdb09b8e4046614ef18af4

    SHA256

    bd6df3e25615fc09cf7789caeedf32bba6fffb6cea59c73538dc65a826579a66

    SHA512

    f72d3dc5f80a0778a382f578ba3fef9516666afa7c176614f364b6bb7089c91e46be3b09ffb828f0d46841beb2d09461a10bbb7758683fb1fbcfb67dbf172d4e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    55b7ebbade63e894410a3fe09c08983d

    SHA1

    f3620e242aa19bf33932c7db6594eac6367acb58

    SHA256

    d1c9516af5d2b12d8f43cd9b2417e7072701f0c51729f84e1d9d884983e91dfe

    SHA512

    7163c11d01b157f58815f5adef9ca45eb43833fc8528d7a5a63c0f51768bf8d48353f89a22677cf12cb0eef27d7ccc79fa14842ff71751a5e9c2fdba1f7fbf59

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    5f5a854d8b48423f7bc3dbabf952ede0

    SHA1

    db08e71796fb1931fca149566e53c7eef1d79ef3

    SHA256

    7fafd89f0cedd8297c4f16e81c805adb04a4d8b95a5c08f1ca458cbf31403a71

    SHA512

    011308aadd72dfac05b3ec06e3481e1961904d7eccd1bc2b6fc1ac06d36bf7fa5f5458e88655f4a7d46bb979ba3b1654b4c4ea38ec4fd47935fb4a50ecd9c98f

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\Z2D3H3V6\print[1].htm
    Filesize

    706B

    MD5

    67f3a5933c17b3ab044826d3927d0ba9

    SHA1

    5957076d09bacaa6db8ddc832b4fd87ed8f05f8a

    SHA256

    97e800f4836b7030dd58fe6296294b7ff5ef1b5eb0e88353f230ea1608d2bb64

    SHA512

    03ba224055ffdbf32b7eea30c764dc18d66cc6d8707dc5fafab74e155b0bb3d4d691c5788b033a68f05299547297125122778fa7e3252f93e7343d918936643e

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabFBA1.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarFC30.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit