Overview

overview

3

Static

static

1

a7cef497c9...8.html

windows7-x64

3

a7cef497c9...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    67s
  • max time network
    128s
  • platform
    windows7_x64
  • resource
    win7-20240705-en
  • resource tags

    arch:x64arch:x86image:win7-20240705-enlocale:en-usos:windows7-x64system
  • submitted
    18/08/2024, 18:48

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    a7cef497c9b7ad1e0f41101fe50c0b0a_JaffaCakes118.html

  • Size

    41KB

  • MD5

    a7cef497c9b7ad1e0f41101fe50c0b0a

  • SHA1

    4c24ec19b1c2f297521b98896663f71d389679a3

  • SHA256

    0f8af8525f7df2902c2b2b17ecdf1af2b603cd5a5c02460b49358053cb66dd23

  • SHA512

    407e781ea5f103c489e89d02ae638766970f394880735e974f406a45a88968bbf588768bcb10029151f2761ce08fdf17a2932d05dbb562967babac72c177de56

  • SSDEEP

    768:0xzmXLmbXi09UPDMvCTH5K+PeC9VwhXJ4cXLNYNMxrXFRMsc4YlbLn6dehskYmg5:Kqbmji3YvqH5bPeaVwRX/JJUOVZrttDH

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\a7cef497c9b7ad1e0f41101fe50c0b0a_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1432
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1432 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2616

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          5b231ad30630b705c5690709342495a4

          SHA1

          2fe20029ef2ea63b03a581840d7452c0d5c135e9

          SHA256

          68029b4581b9b211f490e0698346ea1f7362f2623bd70ce39822d299ade030aa

          SHA512

          a6dae7e2184ca454c7cf43d0b5e1c6a0e408b1d535399c1d4cc0b4de2ce50ac5fdf8f1ae91cd01543e426e1e890d08075f237343d58f041ab30faa5326758e5b

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          9b69fe7fb039777736d458af83f7dcd1

          SHA1

          10aef62d8fa183c12fc17896248ff6e9f4a4d3da

          SHA256

          5c4387313e3d511edacb43a247008bd1ff906456097e51c18e126cb4a51901ee

          SHA512

          ecc551bc9dd320cd309fe3575277d035207f6a8e1e50c41e414ab2ec6f5c5aaa2623ee685b1e654aafb4375763ea2d68941a3d7f824d98ac5165a5a2deaeb978

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          e184c64d8543a76db7c4056e3516fe94

          SHA1

          cd34dc9e1a7b8b70e7632c64791d9a56bc238d95

          SHA256

          b806a220fb724dec62a2ab498e12315b4fcedac540a7b7b9f411b4ddec879551

          SHA512

          d19a35cbe03373f3e22a7e4d08e9843c042611e1850c0332ba61f5855968c47ed8fbd7136af862f5ab719b80f3a234e3f667bbeab392cc65a2ca4fd1079a1f94

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          b75a810f82ecf1c1e4fb49b2521d93c6

          SHA1

          fba694a654466ab6a70cdd5d5673b3131ee4c8d7

          SHA256

          af14dd5bb0373a36e5b066f63e85cb6718890a63692e4a11b8bf3e9e09411f32

          SHA512

          48c539612b003f5bc26b68510591d12b7d003b1b504deceba09cc9a173d0ad8704efa7f979d5a6590649aac63e0be8d6221a616194c7f0b1d1c506eac3809301

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          723ed69d2e70c761444a39419618effe

          SHA1

          4e26c0c99db81313b600ca85876e05e34eb3a025

          SHA256

          95b4ac024813257f4f394f68a2283f3ec17e1d5184dce9be1eaff399a1c764d0

          SHA512

          183aa803a48d4d5cba71b5fab8d425a81c53f7c5b3447fdf2d43adca76dc2fffc026c204eb39679d0ff987aca692a0a50766c35f732ecd1d4294fe72c4a7ba31

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          6250eaad0f17ce0b06fcd547773a5502

          SHA1

          9ec84aa7d5dd21410011d03ac20d274e48611f90

          SHA256

          11343f774e2a4277387092244046722c54a2dfa5cc47387169e5b49b9f236ccf

          SHA512

          c6c843f7e2fa9d671975d9fe909a4256ee4c37dcb83a33cbf2aba5d1f8843dbb2dc7a7e67020296ba5e73cd594c331108827c9a42c669831222ecfcd64463387

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          7324a59186cf511bf49c62493a0db092

          SHA1

          98d1d9d5f80c7b711cf1e5d1f296a7318fa3743e

          SHA256

          4dd3df1651bd7aebddc7df5e5f5bde0d398bfbdcb7857f915b0a60ac9541b6bd

          SHA512

          bd33bdd00f4c899e34b6fe946ee5a54bbef1179614c58743a17c0bf1f51c4e88a792bd696d251ebb55ad04e2a7948ec8a993245e03f84a2d2d68b72e8b009858

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          1f9883c7e923126be4b1d8c5a7108437

          SHA1

          f1673d32a8690bec3dcb43c0ae6dc5852573a53b

          SHA256

          04a4356f192281f66b831b83340ead3844c9650a21641dae59c3bb4623958a9b

          SHA512

          9e4aecad7c14e50344f86039db1e7e4358f34cb05f65bc194a4b991eb7735f4b9331e2e2a7f98ac0267643578522ad89b4e69bf33014c6b6070facfa12d1b479

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          ecfd1dd562bdca7423981d05c4859379

          SHA1

          29651f848a74669c934a4113f15c30303a730da6

          SHA256

          9887b7cbe83e923b403858ad68f30f776df9812147e05d4cae91a2fc43aacf3c

          SHA512

          517b90e539ba993cb3a9563c715b5485083e8c86e85f6deece85e3d8b58075ae9c3fdb1c3a21df6b6f29ab507c2407011bb42a16b9d3962aa8f419dc9b3d4309

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          90f68d22d9e5f35d0f2258cb536f97bd

          SHA1

          01edc7bb69348b83c6c8d3e6b40a24bdd33bf6a1

          SHA256

          e4e3d2037033776c3e221bedc10cefac76637fb241141003ccfbeaf3656aa84e

          SHA512

          5c71604d5b9b5a59049a5ea4493386334155f2623c390ab9939c9a4ea165e6ae9831c56975322f5733c2f644e780020953e60cde721d8f13c740aec412463a52

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\CabF98D.tmp
          Filesize

          70KB

          MD5

          49aebf8cbd62d92ac215b2923fb1b9f5

          SHA1

          1723be06719828dda65ad804298d0431f6aff976

          SHA256

          b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

          SHA512

          bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\TarFE33.tmp
          Filesize

          181KB

          MD5

          4ea6026cf93ec6338144661bf1202cd1

          SHA1

          a1dec9044f750ad887935a01430bf49322fbdcb7

          SHA256

          8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

          SHA512

          6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

          Download Submit