Overview

overview

3

Static

static

1

aa5fc20b6c...8.html

windows7-x64

3

aa5fc20b6c...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    121s
  • max time network
    133s
  • platform
    windows7_x64
  • resource
    win7-20240705-en
  • resource tags

    arch:x64arch:x86image:win7-20240705-enlocale:en-usos:windows7-x64system
  • submitted
    19/08/2024, 08:57

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    aa5fc20b6c2508bdce09b8d0a1708a44_JaffaCakes118.html

  • Size

    29KB

  • MD5

    aa5fc20b6c2508bdce09b8d0a1708a44

  • SHA1

    d366e2cef781068be8955f0221bca1efbfd13c31

  • SHA256

    63aa588a09847bd6ea745b65e92482e069f756bd2cb7960ab7a01144f11852a8

  • SHA512

    817530a4df1390acb64a2f008edeb5d403830025d1636e3d74c98c78d779573199f58c5b7d64086e9b8a520a13bba747ab67abbedc71e847b2d0b8a06190373a

  • SSDEEP

    384:MLTeNiUQ41pCrcFON6OsX4RG9MqDNA/14kUqi6:8UoEpCI1P4RGeqDNA/14kUqi6

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 41 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\aa5fc20b6c2508bdce09b8d0a1708a44_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2088
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2088 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2292

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          fb5097002cc6d1fc3e3fb0fc6b41ac45

          SHA1

          004a84fd282df4e12777d7e0538c8fe5e3c076c1

          SHA256

          5bb651941adabf4cd053649e0a24c6ed7f81ee6766b86fb147aea33232e4fa92

          SHA512

          3c892594b5e83ad0c87ea1990973f0eb65ded799668387394e3622db382ee958aa3005758ba85b519ae76eda91a522d5f492c854c64235d33499c1f052f9913e

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          e532313c9b36368fd9821db74518ce00

          SHA1

          dd44ed80bac09a0635105ba5c49d8b6e7e32bcfa

          SHA256

          d8c1145a1319a9669171c1c73a6c68284b91bb0dee458364f1bfbdb5109e3e8b

          SHA512

          2ee8eeb70579846586ab0a5c52803d1de09b9f5b6cebff13a6d8ca3500aebe7b625f995066030c572b60c5a248b659985d3942957148a993394db96efb264e63

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          a932fc11b205586197ada7ec1b5f6e15

          SHA1

          01e9fdae04e9b1257ed1cdbdfc8e77fd9bbd84c9

          SHA256

          5cbfd066eabe77236b644be9d87f1b086d96b7ccf839e9c7bdf91885f58bfb2d

          SHA512

          7ac2686e930e3c7eed7d7850f4f7bfc46d2ee47b8b3636eab9b56780af43f5626ad430f0d43e9ad26e45e7a2805c09649054b61803cd820e1c7fd80c8af39708

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          fad074223d14961411947633d856b663

          SHA1

          a279809ac67869671c36e039934d9068feff1619

          SHA256

          a54a32aabc7040f007d899f3066a6c7f314ca9a3404f078ebbac410ce3d4a678

          SHA512

          82886da6f7c1f9c10e4121289e27f8920343eba153f70f7f763da29eb09b5201f35dc2145538910e236e279eef65f2811a216c12f207c0ab96010408879908f5

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          3c748cbadbc6f03e4eedbffdaca795a3

          SHA1

          d0cee69482081d00ad77d869ba3a2af9ee269294

          SHA256

          06ac56a0340a64a06b3bd9b76b04281c3e761bbbda93e83c6794a125154d09de

          SHA512

          8bb62b66fdcfc9f28e2d45e98411562129ea9c220ed522e78c7f9c612166c067cf666b0880502ad1150b18fe221fc97b9313f0d4758d8e729b3a05cc1e8c2f8e

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          24ffdd9bc6473d823bfa73a773fa3be9

          SHA1

          a79e071d6c73c4b3524a2be9c7199110b900a75b

          SHA256

          766c7bb3abe9aa240001fb47217f0b7bbb400a99554045917594297975f573a8

          SHA512

          998464b8080e9bea1fccac1ef2388f1834811a206159cc4549a1aa1cb05056ad8b0eddd08db9ad8e2299f78804cbed3386f757587e85a2dee0eb06916d5a13da

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          21aaa23c9739211aaedc8a9db8c83fca

          SHA1

          df8a96203f40d655c2658f0889ce0c7f3290aa0b

          SHA256

          d757904fe172f63bd17cb6162f7c111efb00d25570500163b708f2aa0d1bb7c2

          SHA512

          de72ed1041b2b82eb292d9dca3990ed0323c10f1f7e2f6d66362e9e33eaa953d52b92ad3b293f3f51d2a9891b57a99d022edb65aab13757e48f5dc1972a71de7

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          8641b4f1c1ee59f86bfd173da7421789

          SHA1

          c6bd3a3c078809e1c6cc6f6aebfb8fa6514ea82a

          SHA256

          368656797e090718a570f838256c97fbd3af3c0365f970967f8e1c3ebe5f8bf9

          SHA512

          91af4bc999ed00ec9aab02f5ad9114d3e284940e6e77424d195868d3377c5b49e13e703ab977353049da5e14106cbae7f7444585a5aa7f9f493513daa0945e4f

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          abf30119ceb8fda1afa30c1589a25d67

          SHA1

          a677c885dc04e5b24d15a4e7d778399b75b667b4

          SHA256

          b4902b332983a2065c5297d089ba967104d66478f72253b3a83468d59dba42db

          SHA512

          0e42ad556de0416c15e1cf2e5cabbe90e9b7c31117408ab5ca1821cb0e37c943b79a3358d472767065d378ebd16d26c0eb893d07817628021783eada0734ca0b

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          24aa0c0173e6481e512824bafaa205b4

          SHA1

          ff991802c2401cbee6af928453cbdfded93682cb

          SHA256

          322cac0b9624d577da94508922a7280b3913b2d1ba85c17b76cf6706308c4975

          SHA512

          3a8672ae7d8fb625d1327001980cad980f1ffcbbe4a276814bcf3f79702a5e71687742c4e38600bedcc01f6777a9a5a872d91c18ddc68bd3d84320bda701be15

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          944c58bea8bbcb50d855fa91a3230051

          SHA1

          99a6143b0b1d70423ccb56df80fe968b53dfc404

          SHA256

          13854e61a14eec96fea973bcb2318ce1368816be7687fa757ca1f22ec5e8c48e

          SHA512

          29b2b3229973568557b9a98c9b3d95828ad3e759676a5ccbf34c9729d0755f31db62355db16bf16caa93260cede3a8d9e0a472eff09286e283769852de2e4183

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          eb4b8735b48d7449f58fb49a18749f49

          SHA1

          8efdcd79d90050370f7bcf5d4138cc8b13c373ed

          SHA256

          f4c8319855466ac1afc74ea166f94278fc0ea58842b6369172db65e466ba390a

          SHA512

          80d7ea91edb42d8f378092174fac40ab5b00e7a897d20b89f94c6d0d4bbaeb0cc479b6e54e5123503baf3a1ef0cff1b04a0796b30a5bcaf354eb943f7f1d6e31

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          249c0e03e35fb4b86d00f1dbbccf0873

          SHA1

          0d05585b472b8231f0d5090a9c5b094961921deb

          SHA256

          60e2a7eb06b543937a8990b24ca2fe5719a4f931e6eac093049cf05dcb662d29

          SHA512

          054664dc309c3f0c9a47ef3840b3111701e0fb88fe78c6db7373f1ef9bcbb7b8b72e8d2060c00ee4057b1c20f5b82bed546fe22b454c265c160da4a32c1ecd38

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          67ccec578477abdb82c5906f1d0f8990

          SHA1

          253e30193764d98bffad6e7a8fc0709d18ab7e85

          SHA256

          9e1f0a3a211c74a1a318a2287dadd917f9391069de529424768ff13859aa6bb2

          SHA512

          432f4881f4b25c63916e66c36fb0857f44ec08d20c01c770a487719f9966fe07dccc21f2399c7e0178ed8057e9ae1ac3af1ee463a923efbf6c05f511385d5ea2

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          e2a22dbdf8953d8ef27ebf650bebde9c

          SHA1

          ee72050cf9e3167110d5ce806d649353139d7b85

          SHA256

          a2ee92c28250c35fe7028ed7daafbc2b3b375632352cbe9fa1df1229cc99c576

          SHA512

          0d58e879b3d747f25055221c779269cbbbf180c0ff96e6a1daf3999d22000203d9185759e38fd9ea2c85bf6f034ca2a8354311faa4881fd7ac794073f217fe9a

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          9be5f63c602fc6dfa077edb025a9d9ab

          SHA1

          0d3e635801cfb748360f41f06a2ac4186726deff

          SHA256

          07ce83b7c53206205a4635310666b280fe3a3593d62ef495d649d2d2a93405ec

          SHA512

          5b3ccbca6298809ceb7c622fa5f7183317c330c90db1deff48ef65d19b639c9bb330d432212ac8f76204a488faf39e1d25d547caf0373e46f1b71fc187e0907b

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          3679ff3ee709b3096f426a59da5fd09d

          SHA1

          6df4500fa54c84005288311715ef16fa09e67456

          SHA256

          3dc31ce2cd037e1660787544b4994615e770fcc16021b15243f0efaa2c32bc39

          SHA512

          45585b0eb5bdc15c77ee68c33aefbb38b598acda48d8bf4f3176a314af6eabbebe1b6c5fcd8c694afed4d092096c563f6dae34223a7e29d60fa99570670fc13d

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          6c5153cbbafa4ec7b6371be7b39d12e4

          SHA1

          4c3850d26326a252f8c8cb66215a4e479103e9f3

          SHA256

          107460b373123daf200a17e4950d7f4d188e2b1143142c873f61b6e0b8a59f5e

          SHA512

          df7ee5d1c0a812d6d25abe55b248cfb050743b75c1e48ff24d6b210b5a08e65eafefae552a9e81cc0b5e55ed710c57ed6740b509c36152e9c1727dbaf3cfad52

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          c3f95ad4d678c6118df3d51bf48eae94

          SHA1

          b6126a0c5680909a5481cc65833003b814cf3009

          SHA256

          84f2c93d4441439a41aa849755a59e601ead7656d7e3ddc565b4f8d711e5cea1

          SHA512

          dce65dc8d17a8a928ede396606c3a8888b4a627f9391e240ac092862bdaa8e9fffaff4a59270e7d95018308cc3151c818255cea55a50159ec3af1b9209403100

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\Cab1824.tmp
          Filesize

          70KB

          MD5

          49aebf8cbd62d92ac215b2923fb1b9f5

          SHA1

          1723be06719828dda65ad804298d0431f6aff976

          SHA256

          b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

          SHA512

          bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\Tar1896.tmp
          Filesize

          181KB

          MD5

          4ea6026cf93ec6338144661bf1202cd1

          SHA1

          a1dec9044f750ad887935a01430bf49322fbdcb7

          SHA256

          8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

          SHA512

          6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

          Download Submit