Overview

overview

3

Static

static

1

b1085db03f...8.html

windows7-x64

3

b1085db03f...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    133s
  • max time network
    127s
  • platform
    windows7_x64
  • resource
    win7-20240708-en
  • resource tags

    arch:x64arch:x86image:win7-20240708-enlocale:en-usos:windows7-x64system
  • submitted
    20/08/2024, 22:10

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    b1085db03fbe639aebc573626dc74ea5_JaffaCakes118.html

  • Size

    9KB

  • MD5

    b1085db03fbe639aebc573626dc74ea5

  • SHA1

    4d1e5057b33672b2c4e980d2816a2b038e33c675

  • SHA256

    21544f7e899c4552259ef9889a8f1059c8b8a1f380fc69dfe0d93c40260277da

  • SHA512

    1ed2567892e53af622796889707ab0e03f856d958e26002faba951b824af2d3a848a930b8b0faf7330042e2d5add6f1e468fd81bf0eb9c147b4148cfa28326cc

  • SSDEEP

    192:LLLjJ+GaGt/vZANdbo6Eu62/ixXWLPfnbGPcOPsdeyXW31:LLL70dM4KAnbPzd21

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\b1085db03fbe639aebc573626dc74ea5_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1988
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1988 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2636

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          71241ceb3903a95212b877a2d0691166

          SHA1

          d8759c7c393b8ea3169135654e14777cd822a3dd

          SHA256

          be9660c9f583d37743d542b79596ef22376c0877e07e529e58e9e38f882c9ca9

          SHA512

          998115cfda65c948d70f90fb67461b05a59140fd73453af62fa78f4de07bed10fa2e2484d2f40a38b99b11d58c864584192486e559eb02248b286c69757e3822

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          fde0b6ab45c4bdd20ddec7afc94e3fe2

          SHA1

          9dc376b6cc7978b777b09c3d31860a386ea016a6

          SHA256

          8a3411ffa8d56d1c809373a0fb45e46acc67f78afd7875cb66a18a91b5e5f3fd

          SHA512

          ec21b45dfc4a9f711f6ab0e3de0ef66f618ef5823b26952e9bc42f85b1d2903834244b7f5aa86a3df23f609409dafb060ce163209514ee584e753f5274c8dc26

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          4a36df7bac5609442008f2316d57357f

          SHA1

          99716ecdf4f90c932b53ccdaf1da554bc761ae2f

          SHA256

          0d674a3519f7f4e4ef7f3c9857a14400ffa6e3c6719a0cd4ab5805f100f6e341

          SHA512

          23894f688abefedce14be56aeacbf61fd89aebb8872604b82a6bc80064c8d51cd7d7b90c30b9d5334dc94fd0856844b43cd55d5aed3457b7179a239ed16aabe8

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          f8f38ce3961381081a423379a5dfb1c9

          SHA1

          f6ec809ae137561d6a736db70886990efb1e8044

          SHA256

          3decca5b1cc0de90125ea6df5da6024429a90799cb16804b1bc0c98fc25141ad

          SHA512

          e98a70f8676ce104e1cab5ac8da989a21efeb24955ca97b4f18fac3383433f546f44dff7fdd66042ee4d58185b98d55cef8d153b3f4fa4085784ce8cc6e48b43

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          d6b0d11aafc840a49e729a76dd63f5ee

          SHA1

          f87bba9c72d935f93e84eb72f73899a11bb1863c

          SHA256

          ac8ad3ef6e348b5421e45683d2623bcb7325577992b8b44ee8af1550ff5b2299

          SHA512

          2ae6379ac49aba0df59c5443c267b844588c886de9dee200c7f6af801e330ab7535267e1119e4a204675e4b24e5393a6e0d2fc50405c0fb008f5ebf0113e92e5

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          8b664793037af3b68102b9ca059e3667

          SHA1

          cf3b15d7aca14bc1aaf70bea4837dd27dd07e20a

          SHA256

          ffded0a754130d3ff9f9f00b1b8eedd20770d1d405ebc600e54810591dfdce69

          SHA512

          b6dfb9d175da4ee270a5b84427a44929bce2a86d2120aee205944999caff59628b5610d986047f58141f75b4265a9c887fde9748a599cdbdd40e3c396dd2a417

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          ae3e12766794c59527b526509430114c

          SHA1

          be228c47fd6ca8035bb95694a1fcca5ef5606634

          SHA256

          045a694f50ef1767a375038fab997a0762f2e41d1609c4c265ca3d9d71528db6

          SHA512

          13b14e25c211084bfc19c09d3184b97136adb054ccc67891588cc77c8e3b32709a4ba657b7bb58ca0d736c89b783a89cf6abb4a364beaee4cb0c6539fe65999a

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          c6e510259d1031feee4c521cdbfc306f

          SHA1

          19189d0534b91ef4c16e21e1e76e4506dbea5122

          SHA256

          8a70d7b7cdd0bca118e44a5a1ecfc9aa245175fea43f4e6050457f0102b0b5c5

          SHA512

          c9d1d4ea493b1758e8e2e8df652c208fc2b3cd0b81fd819820f439d81f03391c162fde0ef65269f078e7ae088eb1a267ca2a064bdc97694a4c9acba608165a11

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          483212ba1422680e1a5bece596a096d5

          SHA1

          32c29bd111887d76b6bd3127c2c749caf09c1961

          SHA256

          f265299b17b030d0d9af8d493f2bd4ccd257850d9eeebcba86814ee3be867e66

          SHA512

          76038a8314a6c0eea9b055c10050e6a3ed0752c44e0ea9943ac6b49df43a86b95626d11a75c5a6c037abaad4aaee65b1b01d5e290a77de806571228ce15899ee

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          956e974dddd0977d298d73e3dc209b51

          SHA1

          d850bcb0c71affb5c50ad405966a3f033a2ce017

          SHA256

          5868c5d64c6a7a75162372763694480f61abc1044d94bc83237114dd5852ed54

          SHA512

          51709b4d400041876cb2085a0a18dda634f7a6503fcd0888b8879b27d2e5daed2947f68179ee05c57229cdef8616cecd1da45e93aa10d27605cd2ea1edcfd76c

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          f76aea00c87b20948d8719f35913413b

          SHA1

          219fc3614c4fb48162d4ae6621ca02a873d71e46

          SHA256

          fdbe96bf6cdf1ec7d3ff4115db96aa6df4f2638825255df693d11e3bd548cd7d

          SHA512

          ba333e758bbcc1c741b92189ec00d8d3c8891c324eb7c67f6ed53c9e3c4f108c5cdea747bf2d820ba35b60799425de8107ccecce75e0db7a78aed3364a6279d8

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          472c8a187cfc4ca2b1d4e7bb796d8438

          SHA1

          41fe5ec10825bf63550ddbcf5c2becfce2b28152

          SHA256

          01ab961e4ca722e459a10706844600ecf6880cef1d44a4445fd09f606d2e02d5

          SHA512

          da60d553b6de914fa2a0df92814c45784b5b2b7fed861b5a4a00b80842dc2a4f6c066251bf410096ddb48e6848b273366363dfe560f319dfc07599dfe2b50e7b

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          0a78d241eddb218cf48c6ac962c9322e

          SHA1

          ac7fc9a185b60a6efbf0be96bd73b8f2701861d5

          SHA256

          53f6cc8fcbbd7319bc207d7a5be06305380d2cad4a0ad9e920e0f6dcd450abc8

          SHA512

          63bf04f35f922ad5a5bb9a84f91cc1f7df422cb0218969db7898e302293ea63800ad8f6162e57626304da63382469c908c632718ebc1549d58bd15ee9dfe7542

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          f34109d5c86413ebb3b4235b1ae32191

          SHA1

          321d941d16569a85c90358316bd4496e0e6c0d51

          SHA256

          2aa67314949209a5d7a9bd9110ed2448e4197a186257b8e9a6a772c3598a3b02

          SHA512

          300ff557af936971c21a0d317bfa930c561b882de0ab1bfee1d96e5a7883c7fd0cc5992a044d77c15f5bf8e3b297d870070394eda956113c65272cfc6e5661ae

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          ea205e420aba04061c243fc51381b395

          SHA1

          07181bed1457af457ef784f2f740be00dcb93e42

          SHA256

          62d3caef12c1e6666e896861769bb3581f8543dd1df8f9a2ad618504ea6783e8

          SHA512

          0f886857bd174e57e08ceb507722bb97f495b93f7c2bdc9d5856fe92f04bf65bbe818e58edb3d3b22ebeb46383992a42f8a4d506f15fd5b737b960514d8412af

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          b87c2c04504b7eb92aa69c75b3fd56c7

          SHA1

          259d40e69a661cecf5f9fded713f5da01d28b9d1

          SHA256

          f5d2965cc38295053c4ac0d94886ffd6b41701dcc9920a6b96257d7be46ce853

          SHA512

          a72409950d452801f16edd008cf0c47b1f3b5b23750f49016131e3dd2937542eec72f164579eac8ef8108bae41b962073de1b1713f516ec978170d1c4c4bb1fc

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          e177f544126bf229f4a6a34f1150f3df

          SHA1

          bbd3356f459b131e6fc5fcd1096ccf97f9c9e1b3

          SHA256

          691b2e61e02e48d593689b02ba76fff2ca508f78bd3d5da31a8955bcd8c0134c

          SHA512

          8a54791b40e0f7a9487cf4592dac35f371fba9f423f4e71184d23be68dae94bd08ecdcb6acb1c893b699bb3f6716a18ee80813c448969c20d55f51a1bcea200b

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          45656ae5c5a0655a9e81af02e6410750

          SHA1

          a1b6594dea10280ae55ac5ba64b12d5a93af5026

          SHA256

          c011c217a3b168c3056d108d6de2e22f7a653305469f68119d953f5222d4f01a

          SHA512

          910b65d9fab9bc4d2e125c42badca791d9c99d9e78fb805fc68c5569d5bb03738ccc452b858ecc74d0c82f34b8b5f16b303d25b43c380fbfbd5db078773923d0

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          7171c4b312edcd6b7c34f8760370fe14

          SHA1

          da3bbea8cdb359d4ed40b43a088bc2f375390cdb

          SHA256

          398234caa213ac9a7e5331565d7ecb08e73389a64c1a7cfc1f8282a2010f0b1d

          SHA512

          7bc9d411754d27cdbfc277a41d18be55184ca96ec387f4e0d4eb225c320bf7b8d4cd1025fe45a0bdcdbeb75169d810a8100eaebffc37e7c74990e11008e36407

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\Cab2EFF.tmp
          Filesize

          70KB

          MD5

          49aebf8cbd62d92ac215b2923fb1b9f5

          SHA1

          1723be06719828dda65ad804298d0431f6aff976

          SHA256

          b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

          SHA512

          bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\Tar2F70.tmp
          Filesize

          181KB

          MD5

          4ea6026cf93ec6338144661bf1202cd1

          SHA1

          a1dec9044f750ad887935a01430bf49322fbdcb7

          SHA256

          8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

          SHA512

          6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

          Download Submit