Overview

overview

3

Static

static

1

a746ad6c8b...8.html

windows7-x64

3

a746ad6c8b...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    142s
  • max time network
    143s
  • platform
    windows7_x64
  • resource
    win7-20240708-en
  • resource tags

    arch:x64arch:x86image:win7-20240708-enlocale:en-usos:windows7-x64system
  • submitted
    18/08/2024, 15:54

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    a746ad6c8bd23875640a791f401af8ea_JaffaCakes118.html

  • Size

    29KB

  • MD5

    a746ad6c8bd23875640a791f401af8ea

  • SHA1

    b5d7d376191fb785a3c591db19614633ba9ec69a

  • SHA256

    2dada5ff0cb25a5042f3635f69966da451a33697c32fd736d1bb9186457e4266

  • SHA512

    03a62a9e33c8f8425741880060c3108944e8c7bfa1f305605bc19d905a68fe612bbd6d65d06cfca059257bdfa73ba2931763a3116ba53c31934178bb7503fbba

  • SSDEEP

    192:ykKFmh2dF0ExV7Myi+YdOnpGlD71iUGt6baYiF92oNTZi67P9UH4uj:HV5UpGlEdQS95fUH4uj

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\a746ad6c8bd23875640a791f401af8ea_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2680
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2680 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2412

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          883eb82be3f96af246419dfdd416c60d

          SHA1

          5cdef781b7c63ccc71687d237f703160bc1679ff

          SHA256

          4dcff8c2ccfb825add6d3ef65a4d21683d35e80a0873653305855b2a8dc9d70a

          SHA512

          05f15708fdc6c5e1a010326d4bac497d7594a0d93e20f6332c16b883e82b2e6969fbb4cdd822a636d1a8035c08cb1dfa4e03b63963290e8c1da3dd566d3258f9

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          03db2ddee4b7ed003abb88e874cc7554

          SHA1

          926bf347664d40831bd4e6c495d213d8c4a882af

          SHA256

          e7339234b0b43d6ae788841e99a14333bfabcf991993fe1abcb31dc03e1ff987

          SHA512

          1507af2f92ec807f2878becd17d391be2900435bfb83016c0e0d496912110a8937daf06094fd7b047a301c2833fc832089a895523129cc1bcefc0efe4e427a46

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          02e4ca96a2bde0a4528fe6168e7fdc55

          SHA1

          4079769d692ecf10602c9d5d032fa03916a4fb51

          SHA256

          f7ec53d20ea41d35dd6479173cad1f9d21516a87907b08ddc36759c8b89a221d

          SHA512

          7bd0647c50c94d439976e1fcef17ecf8e8b3412ba3a7ad5a21721bd8069c0ba7c822a032deda06f4f68b076d06833a468e97b5e5601a2e7d2061228cb8e8b4b9

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          b4e52417e747961db6c3d7adc81af96d

          SHA1

          fa5b2942f4317fb3a17ea941993e972a8b69b674

          SHA256

          5cf8021429438e94e67e79aba070d281902bd235b0ccb9f5440b6c4b112775b3

          SHA512

          7508e8bd634408c3ad4085a28c3c3c1166523419be1ceee35b8ab4da7516d1b88487461e77d842f73061e60b049276fad8f8a336cb5b472fae16b3bd257035d1

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          13388f3cd2f4af0eeb8e762f5e6c1e47

          SHA1

          813e97afe717db77dc6ff28b0f230a59cfde9af7

          SHA256

          02a2b0cafa756ed735eb7deea8156f494d2108c1c72dc7dc1b56e0c7eb325db5

          SHA512

          174629ae9d44c415dd943391ab052c0372550c79b19ce90017c76529265c7dd47d0a776bd9b539dbb4c222a24df6ff49269151ed6e2a7c84ce6090b131b1edb3

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          2ef389d409da1036177f170234f186c8

          SHA1

          6be45427f1eb22ff903ec08249b4e17a19d0dfae

          SHA256

          77fa1649c24715b4b670474963629c3e4583b396e8950a19898b982c3e58d710

          SHA512

          7267c3f1d9aebab0ec079e9122fbe035be0a156ddc4c12165488c56b177608f55a5db405a0b4bf415c150bb733db13fc04311ec3bb1389a5053e27b0d17b6522

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          c575696f211f086bfacc46d042fc00fe

          SHA1

          5cfdbff073044291be0ec3f26d021b013a2e722f

          SHA256

          d5d4d03f02e3c556ef0cd190d98e1d559c2ed091481b8c7a625c23f9745e8448

          SHA512

          ca0a0d5bf1f140ceec27cc592914df983cbbf8e51d412fcd701340ced9007fd31d1346d8cfe31a32658aa34c2072efc30ece43359208bad4f7b6847f0d4bde9c

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          c8c93f6f2b31888333fb2bb5cd796e8a

          SHA1

          2ad2e9b212e1736d9c41f6c2c325c60c02a2e1f6

          SHA256

          f47231e5fbfcc470e1bf17919f75f1cfd74c6606ce7a983e637f460b2286fcd1

          SHA512

          2c4fcaa1190dfa7b8fd1881a27610fdc7166731055444ae818ceaaa0838eab4869f411d72bd9be10af45221c467f52930735e295e04c7f6f169050ff9d637517

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          0d55be0593e325b0007f07e1e1017bfe

          SHA1

          91dbda210ee84c4b215f6c3d95949d9a8d36b21d

          SHA256

          216edf0befb8e18c78a9071013d0d829178f335165d7c9244ecd2573d003b05f

          SHA512

          d1b79c8066788b56a7bb8af025b8dd578018c3a7044a0a5403030103906d55b118f9dbdc7bb13dd5bbc9fb61600ac089e7d7819f1111dc0072ba49feb64c250c

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          623b5a645ee42b7421835cee60ac857e

          SHA1

          6d2cf29932a4342ae3ba4b963ecfb88531276d62

          SHA256

          4ba451ed2cef236047f87698ce739b4fdb2d3a3371e72f05183812181a64a10b

          SHA512

          1742398093891e45004bf057e4c906c9d228c2cc6d4fcf6790493c8f67957da40ec6575015167c268d3e0e1c2f6d0f051420dd29f1a8f2cae58220f72fa62b48

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          43cd4b467c8b2e467fd45978a07256bc

          SHA1

          c466ebee0ddd9db581e80663398e54a069fff1c9

          SHA256

          d5afe545954616643bc8fbe5a5c64fd1e913cb4faffa6955de68c854e79b92e0

          SHA512

          4b73fed08902ec25ee1e9c2198c20ef51902e5ac7d131cbc3351b3ef8ab13bea9e49d538a28e99b252b9e592100ad6fdcec024eb1bb7f33b4bcc5e92e0566727

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          d729f020220bd7e90dcdb0e5c90a7bdf

          SHA1

          09d002ff1a7b4a7f15efc2251beebc2037cfb890

          SHA256

          6fdc3314406b3ace4364a6e1d55fe18935c11c1714e41d7d5bb267acf67d7225

          SHA512

          b3cab5d4c233ee51ab671577342108bc76a066ba5d8964ba49db787142423b215bdaaf90e1caef54174dd745b411c6ebf552366d8d4e878f79c289372f22d83a

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          2e96e94890cd9a6a416d0c6de4778d5d

          SHA1

          dc02cd5142ca4d17bc2f2c1a438a0ba4407c48ee

          SHA256

          eccb0e86a43db0de936d78b8c60f1cc8863adac07235c180e04ec94cfbf0664c

          SHA512

          1921c0f900d9385a224677ebbd8c90271444f36fda27dd67bc5c753d8116742088ccfebbcbe1a214bdf528d2f769fe695dfa0994c2d8aeb691ab133a26b96f0a

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          81c9c97b61c1be7004ab8a7b91674cc2

          SHA1

          b0c56bcd3fa75713d4a112ec7b287804a62b62b9

          SHA256

          600fa9112058abef20a9e780ba5a989f61bc11f90a0174a83550359720b33ee1

          SHA512

          a8f8e221f18172a33be94804bc16d8f6a3132e8aa1f4652542f117064c7cc7de4dee89943b3819055757af28eeffc519a5d3f863b3b9d4538612a6c0cae95ee7

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          9a766baf2c8e066878ddc16d434ade9b

          SHA1

          5fc4e4ab15d98795fc7f86de53626d822fb67c8a

          SHA256

          d776e4725d0e026f39d181537fee3f90f74e06c03169629fb045e71d92828c83

          SHA512

          c948bae707ffc5cdcc156316e124332950b725030868fb6de9b0e58a03953dacb73d5b5c9126571a00dfefe8bc0ca93be74a0b3bc5e5967cecf04a2ba3fbcf10

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          a57c3da0932c143cf305aafa2e9a9235

          SHA1

          cf2853fb8db00189889d068baf3437e723c0a78d

          SHA256

          bec0de3184d16dd8641dceceffcb587b84241f971d066ff6efda8dba6e72cc9f

          SHA512

          77515cf022e0dcc8977ce3dc8b6271874f79cb364b899f6e6369510bc5a1c493b1f610e91fb692afbf0473d17c53dc948e6ecd5d020d8c3653f09ab4e8a11cad

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          6fe47b691b73613cd16a3d66a3ced54b

          SHA1

          3a0a9952a6b7686ce359a21db2beebc7929f7881

          SHA256

          1db6acd560e7bb2e866057b1e08b91b767e4ee26c3fa9085c14deaabf8d336ae

          SHA512

          02be43c5f016acd197b535e7981d293210ac04486e46df1bba478d60216a13e9f7d62cdb21a86694e164abce3d910eb8e97911adc77d7cfb8896b1130bc5594b

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\Cab7DE8.tmp
          Filesize

          70KB

          MD5

          49aebf8cbd62d92ac215b2923fb1b9f5

          SHA1

          1723be06719828dda65ad804298d0431f6aff976

          SHA256

          b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

          SHA512

          bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\Tar7E89.tmp
          Filesize

          181KB

          MD5

          4ea6026cf93ec6338144661bf1202cd1

          SHA1

          a1dec9044f750ad887935a01430bf49322fbdcb7

          SHA256

          8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

          SHA512

          6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

          Download Submit