Overview

overview

3

Static

static

1

ab28752b2d...8.html

windows7-x64

3

ab28752b2d...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    120s
  • max time network
    128s
  • platform
    windows7_x64
  • resource
    win7-20240705-en
  • resource tags

    arch:x64arch:x86image:win7-20240705-enlocale:en-usos:windows7-x64system
  • submitted
    19/08/2024, 13:12

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    ab28752b2d8f501d44738e914a7b9fc2_JaffaCakes118.html

  • Size

    37KB

  • MD5

    ab28752b2d8f501d44738e914a7b9fc2

  • SHA1

    de2de7ba433c3c59b5a5916e831c07780a1dea72

  • SHA256

    dbb646526fa2bb8985c1b32c0a3218790390d4f33fb4387627aa6120953f0937

  • SHA512

    053d15eef7d56add336bce1303324a8583a878c1c8a5daa0c6bf8968dbed1522ea09ae234d44255f7f2e9c4fe5b410854409935469cecab86a3154b948fc9153

  • SSDEEP

    768:rmIRIOITIwIgIJKZgNDfIwIGI5IWJ7SBIRIOITIwIgIiKZgNDfIwIGI5ISJ7SpOe:rmIRIOITIwIgIJKZgNDfIwIGI5IWJ7Sj

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\ab28752b2d8f501d44738e914a7b9fc2_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2548
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2548 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2336

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\3C428B1A3E5F57D887EC4B864FAC5DCC
    Filesize

    914B

    MD5

    e4a68ac854ac5242460afd72481b2a44

    SHA1

    df3c24f9bfd666761b268073fe06d1cc8d4f82a4

    SHA256

    cb3ccbb76031e5e0138f8dd39a23f9de47ffc35e43c1144cea27d46a5ab1cb5f

    SHA512

    5622207e1ba285f172756f6019af92ac808ed63286e24dfecc1e79873fb5d140f1ceb7133f2476e89a5f75f711f9813a9fbb8fd5287f64adfdcc53b864f9bdc5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\F0ACCF77CDCBFF39F6191887F6D2D357
    Filesize

    1KB

    MD5

    a266bb7dcc38a562631361bbf61dd11b

    SHA1

    3b1efd3a66ea28b16697394703a72ca340a05bd5

    SHA256

    df545bf919a2439c36983b54cdfc903dfa4f37d3996d8d84b4c31eec6f3c163e

    SHA512

    0da8ef4f8f6ed3d16d2bc8eb816b9e6e1345dfe2d91160196c47e6149a1d6aedaafadcefd66acdea7f72dcf0832770192ceac15b0c559c4ccc2c0e5581d5aefc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\3C428B1A3E5F57D887EC4B864FAC5DCC
    Filesize

    252B

    MD5

    c85b1a3d314d7b47d90535bd43331576

    SHA1

    2c092e9e66dadbb0b38e07d893b923a56d926850

    SHA256

    c224e009c1cac3bc06fcecb579d9e52c978e61799f44b86510739f06714f631a

    SHA512

    444852ab990b5e091ef2fac5c93b8a7e17f00a2505ce77a3cba1293bddcb3297aa887c83234331dc91d507cd8efa8d5b821e01e1f569dcc50b6a88309ecb17d0

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    5152e6446cb962ef59a3eca63cb5dee4

    SHA1

    ddc9b7e41c2fa471c2320e8a0172ad069fcef7f2

    SHA256

    1d0cf4a27a340b99cbb8f0c5e5ae01e0cf7b560fe5db0a79f5fb4bd59881c213

    SHA512

    0d4dce055fb1342bb521dca7e2472339d81779af19687b9cd8f8e8d1b236bfedb88dd2d4e2790ccc2ab4785975c3287533849523229afd4923e12cc3d0c0eecc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    52c9a20cc75e74ad1e84f8ea5a076730

    SHA1

    0a374543b97b1e3d3af4221cdbc6f4516ccb8b3c

    SHA256

    c04f929bf9fb49f6023f503812815f31f114211ea59ef1387f5a6623bc432b83

    SHA512

    b2360c8afe0cdd532b886f927a2c530e54bf62278e8c33512d43d3ce5b9d93309dfa325c9f85bfab56045c255fc370dd46925f9516308610bc0606b163906107

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    5f4ed3de8f11905c70e514516cb0b991

    SHA1

    6c730167c29db16582526dbecae66d1f3c38e670

    SHA256

    8ff3cd76a5f264b877c507ce9213ec41f1341ef2347b949219b86be0a3d844c0

    SHA512

    7c4847e8445e1fe69dfa1e46fb670b49b3740b52d11c8e802f7f73563282668d901ef6f3dc99d0cbcfc943bb793d0b4044f8e521a950bb526cb6bc1bd22d17ce

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    5437a74a47c58588aee22aa583681fdd

    SHA1

    04eb640b3083e6c23eb704d30ef2a0f228a538de

    SHA256

    04b78bd6b1dd3be127b5e0c1e715f000057cd78b899f74951f75f1c7bf38b334

    SHA512

    6b76489a868199f91d0172d9a05462a6614acccba2bb903c0b505e0a524170e6fdef5443afdbd56b01dd6d724654b06c0cad82470b5904b8d9d4d093f475c1d5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    ed991d74a37224c25f6ed6df1b71af44

    SHA1

    0f3914bbbbf7c997a69b5114fa46772bf4fdefc7

    SHA256

    1ae3a4f97f9850bb9492777f54393239f5f244fe905734c55339fa591202b8d0

    SHA512

    6b5e679a05aa17daa131bf5d73093300aeb45c0e90ca77073009803ae65cc963b780de7661bd02892e03e571da320f9e4902500b165799ac89cfbf4246250a4b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    85b57cfb0228d85f5611134773b17a99

    SHA1

    f1b47ae26991013884532be429c5cb0b32d0d966

    SHA256

    b647add09542172a2398d3dabaa550e86c9e8dbf717cb26c52979e1a644c3180

    SHA512

    02eade9e17e5cd702bb24a40bffdc128136925fa1b187bf019294c4b705588d139a5b587199440418c4ac9719a988c20a483782be3950a51774f43665c53b733

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    dca7fea037c8485e87b6a99c8242968f

    SHA1

    da6be0a4bd6a849d9bd371ee5985d45f59d03168

    SHA256

    1ebe371d6836ceae587f391becb61942b66a3369710fe00ae5181b808fcda710

    SHA512

    6ff95f63b76c7e2f1f7bc21379c1fd99e6d27fed1f9621eb5cf1b4071bceb46b6dd3d494942e9fc13caff291c7f404d43163400cae79338b1d1810307ff4cc99

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    ea9213dd59bd1820418e15e0ed784b58

    SHA1

    31dc89f4cdc92cab7ddf47994ba1eac32149ced4

    SHA256

    677dbf2a1ad1b94e245041839175fb98ebdfade531d2727158ae25c5add63011

    SHA512

    5ffb0c9c84699e96d2117e01af90fb4ded26307a133257a25bc365952dedd0f986ff80299f6fd70ab049fe79c6046fe43ee97aab8876fbc9b893e6c48c1d651c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    2c62db9b2f40edd466968efc15d143ab

    SHA1

    34468609d06e4fbfd01387bc6cb12e6283068d81

    SHA256

    723a169c2c800f40085033dda6bc4ada7857079d6007d3df67896cec4c9178a3

    SHA512

    18d871a17ea4a05d65214c040c723225d5f2a0aaac955fda931f6c41417397436bb00e994af4b32c79ced5dd398bedb6a472682239af74c2946fdc14a3d4a2b0

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    02fbee98ba88d917b8f729d3daeffa99

    SHA1

    3fdf3312265e3e60b55de57e5710aa1554d73f86

    SHA256

    4bae59f211c550206165a1afe0e2a2053ee4928c787726c7d333ac40b5961bd6

    SHA512

    009e9fc2e37f3bff1035c60cefcb0b881c64962e7b79d4adf241dc9c4a0e79e05d6b5224a4d1b25fdc92df228b5648d33d2ad7cee8065e4bd7c2c318e49ea594

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    df5b2bbd55fb1eb0f7f27e4d44a3ab42

    SHA1

    6e6245a15fbbede47920f00b1f01f16253dd627f

    SHA256

    41abab97339bfb9b162764d46ed75fcf831a4989cc8b45dabc2c5ed117413ac2

    SHA512

    1810899238cebf6451310dcc943e912a1658dd8f2ca9ef23c897cf5b38e09d4821df80ac85bd55c8c29ffa19b0d1290df7ec253cf3e4429432ce7a8cf55c8901

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    7f01b9a7f4762de73366e39f6c36cffe

    SHA1

    79188ab84d2fcc40a9bab02d2267356f55162bc4

    SHA256

    2c84fc891ccc5c9df52465842cddb1158244d11d70ccb16f9c628f3163b47af8

    SHA512

    b94862ffd8e3f944b695695af9e8f1628026dee27a5966bd7e48a3550e76eed17615e8544e88a2a24da247ec7a1886244717b5f78886112f9d1f0ca6935499aa

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    596bc9db1eb8bd64c7aa8941ebca085b

    SHA1

    58c9ad263b39aace15eaa594f6fbd09a71944abf

    SHA256

    de450d2158f9801840d76dd930a62a93478afd84f191cbdc34397043359b08e1

    SHA512

    9ae7021da45efe24faa0414760d39163f767a2c5f09b21be280ea5a3425ae9debcdcdc7585f1efe38cdbaa8b580a170935f8e10adcd2ad7240bd2a688e5eb20a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F0ACCF77CDCBFF39F6191887F6D2D357
    Filesize

    242B

    MD5

    fee07cda644177c3743f9cafa28d628c

    SHA1

    394bcbc2044aa62ebc9bf9c35b8b168369fe0743

    SHA256

    fc694d0b6022afb1efa1c5f837bd30bc9c72d6ecd8e94e293e05e2ccd38f408f

    SHA512

    90c6335ecbc4f185234fa92907522f5dc2139b46d2fd80829b20aa35a4f30410d7831def081bea9046c8aa57611291422a7aaa9ff2226e61353ffe345df252b7

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabE63B.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarE6EA.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit