Overview

overview

3

Static

static

1

ab1f70cb2a...8.html

windows7-x64

3

ab1f70cb2a...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    140s
  • max time network
    147s
  • platform
    windows7_x64
  • resource
    win7-20240704-en
  • resource tags

    arch:x64arch:x86image:win7-20240704-enlocale:en-usos:windows7-x64system
  • submitted
    19/08/2024, 13:00

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    ab1f70cb2ad0677bdd2ed14f0c1241f5_JaffaCakes118.html

  • Size

    77KB

  • MD5

    ab1f70cb2ad0677bdd2ed14f0c1241f5

  • SHA1

    d46d9374c6e72b8b92400249a0ccedec1a48f2f6

  • SHA256

    4401a1109b8aef9c331c67d0feeb2bb6bdfe9514b5b13aae8adfde26fe1bb049

  • SHA512

    8eee8392742b864a1c75563619f718cd1bc6fd7a6edfd74f4a99dbbf124461576de3aceb47bed9e11b096299cd1ad9719572e042feef03e5b51af38ee17acd01

  • SSDEEP

    768:Zcd9QZBC7mOdMAfpC5I9nC4CurBycuo9Pd:gQZBCCOdv0IxCGio9Pd

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\ab1f70cb2ad0677bdd2ed14f0c1241f5_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2512
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2512 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:3056

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          7d395fd679a3bd8725810b948e230dc7

          SHA1

          0109772acc5115147613b6199eadec0eebad38bd

          SHA256

          9b96f394d524a6f8d6b4fb35738a775196a955f0d3a60e67e4763daa077029ca

          SHA512

          c311aba4db3303e32e72972d39d878cda86ab495aa9dd7036feb92830ddd52b7ad98f5d1c471418b95964c55e13df54b980c5b95db9ae154628051ac6f40c3e5

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          66ca36f0739861da02f078090acc759b

          SHA1

          8dbbef1fd4187d1b6a9a699de05df50b3336f57e

          SHA256

          14c6618e1fa739896026bd4cec0e62e6d8474a97bac03fb46c6e7fb7d94ade3f

          SHA512

          51567b7257b288e00de886dd35424708adfce5fc9aceb9cc8319a2df5590b72b5aeb976f87df66fd5983624e626ede575175bb2dd5883faa3b6ceb2db5b6b6c1

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          77c0764ffe63f71497bf9a1ffd59c31a

          SHA1

          829fe91fc479e5d0e454bc17c78505f0992d3bb4

          SHA256

          673071c38fd26042f73f937c9d0c250fb3ef2f3be8ab132d171556c4b2c15bcb

          SHA512

          ddc85387531f71d9e832eb16a0a44a06468de5cf95f9a004e4bc661bb70783075fcdde94928c0256fd6fd421adbad1ac5a0af741a10dab603d5f7c0aabf443a7

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          6350838fcc286a222b7769472f243501

          SHA1

          15468a08e2f571376424c02405a7bcb93ba6aa58

          SHA256

          764757dc57c79fd1342331398b8b38304b97e3b532c41064dad3027b91becadf

          SHA512

          62f478fa7f046b913b71344b064db701f8e0372c87a71eb6ddc40a1a932d9d23d00a6c41845a3465ed4ed857ce9f126ffd2449c038ac95bcc47cb3be2c38e7c8

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          48e2d93c854ba0c042ebafca1043161f

          SHA1

          85262e6a9342fe0d3536656a463d365cb82e0fb8

          SHA256

          22dbfc42dc5de3cc036172a14d323ed83ca17ec97b5bc1bd91e32e1564188dd4

          SHA512

          9a83a5499e5a7e79c0bede366f6432400e82fa722df36db8993754df5ba5f8cabd42637b25a54042aa92dc8231f027257396022e5f3cd0ae6c4118ae0859547a

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          305b1349e16b9124f847c0c832bedbc6

          SHA1

          f41756094e1e3bbef27a91b074b3da7be0e2e422

          SHA256

          eb676b7e147591d8c453e5e5417d8ee649912386a7dbee392e77837ebbcca469

          SHA512

          70edd60137631366ab9f4d8187711e8a26540c87070f50e2c8fadaf4b510899e055abd1c4c3220af1e30b78984edb16c36d8683148bb76b0572c7b6672a70d95

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          069b94d2a2ab49d05651bac6da87749d

          SHA1

          419dd3a7f292a94e1da663277ea64b4a798054bb

          SHA256

          dc7df30f115903db45b51fb492af0f9e335e1a5d7bf7c2a51978c11c5c0dd7dd

          SHA512

          1f1f6d57e1a13089de0b2f9808488ad46e8cdb7d94fecf86f80b0b9955e024b074b54db8975db99dd982bc6ec87db04f1aa5103ce29908f2d8d98a29e0c71a13

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          51a731f538a6da907ae78e45183ce104

          SHA1

          126aa17e99af94c48011245738caa62b5d4bd7ab

          SHA256

          299d9ae0cb1682e21fb735d3dd61da74630d7387c1cccbcc4a5354a9e394a8c2

          SHA512

          5ab9cbb086a742b65138acc6d42dd950e849b3460ab5c5834ec800d71ee3aa349518df7fe61d4669dab55517c46c740050dd4f0e69f0326b168c661a4e4fda35

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          97401de6f53c592d73317d2253d08cf1

          SHA1

          644cbf8c9d1749914e7facd9c48a503ed138bf29

          SHA256

          6acddba07d5f555bfe7c7689e1251d6ed7d4dde1613b780a69e685adf292e27e

          SHA512

          b0112a64fe5df4277d9cea3dc388f02e7570380a5d4db99048173e67dd40fad7d375422ed3c473974601b0365013569f147f0e08fa25293a73c63c3152cd742f

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          734d17d9cb7aa939f8c311272108c4ca

          SHA1

          8903cf5c784399b56ff9a7cc4a43457022e52082

          SHA256

          d5d76a56d888577e91cf41238ed05102a73997779830c9f0c854eb9f8243c20f

          SHA512

          e9a8299633c25f0a24e60e985d4849c1194c7e87b331d0f7bebe927ada8cd5329c4517fb4e0c66abc67891937f9bb87524b1beba7c80ccc7f3b881210ca6bc93

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          ce600e7f8599827e101a6aca03204981

          SHA1

          f3d20aa2e677c345f0e63a04135db99a986358ac

          SHA256

          3c3dc5a7048679f3a252b8ac9e20f6e7eab3ec359b2e37a87f7120aa338548d9

          SHA512

          0defb05278369761100b8ac6d74c351e30c647d11d82be838a2c5884f3ec869f53ff7db6c3b3a2bcffe797f4b23abe472bcb390be55f55d6db3de8319c4e9bfc

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          acb42b75fe5ec81618a9b8f5efe015f4

          SHA1

          2d938802f900d9bed6a47ab237ac5fb428848273

          SHA256

          88a1d1a44bd9d29fa5478f9dc9b148134b5907dc743df83a13730bbc80266bf0

          SHA512

          74390a958af7b2fe7890ae9ef5421219c71b16a24d8953b8177e73022095c600924a08bbf827a6bf5fd83318f0fc448846c356e61b3f7ba966ebc7687cb2f4f3

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          d55e6de1735c5ba15f2b78e868e5026d

          SHA1

          e2198b0b46b00cd9f99c2a940a615719ce1f7657

          SHA256

          3e55e609d610660ad67d0562521837763f0c00eef6379317a1614a1f2d216862

          SHA512

          7cb351b19a80950f881f4c6d661c978291a6dc027d47672506e93d1b07b004f672feebf53172fd3f872870d721d274eabcdbca3abb034eb017f260d17a3bac62

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          8e41377393cd5ef07bda154b33bf550e

          SHA1

          80ff9bee1c3d8fa653d6295642efce6bb52746f0

          SHA256

          fa3738442663d7a77f4859dd2477ee1cf2fd1dfb4a8ceb7d38ef814d4ad31541

          SHA512

          49a2ddc9693dd7bc2aa166a477269c7b3a2ef6b38ce84b76aafdd4c4769235871650b4549abe20bba7495e1a3e5ee51f3e740d11be52f00ada1397cf7c624999

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          f3ad39f7e375af1ecc69b4ac4e4feace

          SHA1

          f3180c9b36784d55d7c4020882295259819995bd

          SHA256

          fb5f0307c092ea60e378aa0d3a73e2297792bab033be28ef863056f62b21472f

          SHA512

          41953d2ac657582f81a802ac50d605567d8e9590030ee027f703f3f057fa4c8b1fe6b25586a58654ec2adb9e0f34a86d1f10e499dfc5504e2b47dcc9c1e3aac1

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          0515ae37e56815a3241d781cbceeaf6c

          SHA1

          ad62bbf0558b379a099cffbfc581866630cabf2b

          SHA256

          72bde017f6d8476b1c8a3c5699f125c3b265b6b69f802a8fa5fbe3b62fc2bbc4

          SHA512

          0c035f1312dfce5cad2eb296a162dca625eb8bbabd6bd4a36fc96df4f0acebfc83cc8af11eef855c50bbacbece1789d119349790ff20e869dcb366ab59646cad

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          f0fc4acb7fc8421c78903ca70cb1045a

          SHA1

          168094140eebbf5bdad894034191a77c93996219

          SHA256

          5c2875483ea01db30a5be258658865c83f090c1e217d438689a0e5f826e5fd80

          SHA512

          e84cc40522f3f2f245b412c6a023718b97f94c488ccedc731a122d73985fff0429a648656dfdbb25a584351814e3ff0716bc0c45971a3f0af39bcc6eaeeb0057

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\CabFDB3.tmp
          Filesize

          70KB

          MD5

          49aebf8cbd62d92ac215b2923fb1b9f5

          SHA1

          1723be06719828dda65ad804298d0431f6aff976

          SHA256

          b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

          SHA512

          bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\TarFE23.tmp
          Filesize

          181KB

          MD5

          4ea6026cf93ec6338144661bf1202cd1

          SHA1

          a1dec9044f750ad887935a01430bf49322fbdcb7

          SHA256

          8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

          SHA512

          6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

          Download Submit