Overview

overview

3

Static

static

1

ae2d34a769...8.html

windows7-x64

3

ae2d34a769...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    117s
  • max time network
    129s
  • platform
    windows7_x64
  • resource
    win7-20240704-en
  • resource tags

    arch:x64arch:x86image:win7-20240704-enlocale:en-usos:windows7-x64system
  • submitted
    20/08/2024, 06:31

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    ae2d34a76960ee53ec50506ddef5f38f_JaffaCakes118.html

  • Size

    6KB

  • MD5

    ae2d34a76960ee53ec50506ddef5f38f

  • SHA1

    b11b133dee27946b468797ef93fbcd156870ab00

  • SHA256

    5814710bd513c7852c42766576a75a263f5c94b90e8fb686d6c7e035ef165795

  • SHA512

    16fbac07aaaff2bb8fb59dc2be33c656891592e912d993eab0f1d2c77d3e74895364c8fe3160290f4c8c019a6d39a772778fec982df88026de00e3287d1f5824

  • SSDEEP

    96:uzVs+ux7DYLLY1k9o84d12ef7CSTU9ZcEZ7ru7f:csz7DYAYS/wb76f

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\ae2d34a76960ee53ec50506ddef5f38f_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2176
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2176 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2724

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          ef56f60c14f3cea0a050b87b7f74872b

          SHA1

          f0147c1c5c0cfa1e96301f1744e5cf921630ae31

          SHA256

          2f0c1821c4e6fe0d8d20f7c996554f5cc3250f7bcffa5c947dcbb277ba68891e

          SHA512

          a6462cc1e084a12981d22bf50b9db0738227cad5131fa26b6536d3415bb25cda92435d7985464736c46ebfc10b20e6806bb126b97984477eab2523c9218bcdbd

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          fd3a9a4a895939767d6ad21e3c293c63

          SHA1

          fe211b4e7fedb0c0d480c4c50014d977b441588b

          SHA256

          a842552373f32a3f7debaea6ac2466ce623afb90f4698b24ad33b84e45dce76b

          SHA512

          4fc81ceae2d946b79408acfc74c329f5f0d26941073cc422a4e70154663a6d2a0897784b6e0335aea3277e1d171389a9f6b1ffde725a863294a5863d4a32fc85

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          31a81694f9f5a2a56d9a8a407f005dce

          SHA1

          6a5364007619295c9b2d89a7c887f986034124de

          SHA256

          210c558561dacfd8eb551ac1a93d37433891e23aa5aed840bdea79d103c86c94

          SHA512

          854e7bab9083f9e0b26176b43258a6ace163fe6f2aae06baa8e110e4101ffd248b263d88dd338a3e031f6a32d40a82540d422959cf9ae327ab81bd90f0319487

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          74bb6e0372b61105caabc50ad92b9ec6

          SHA1

          f0c69617732172f09780f653b00f7697bd09cea6

          SHA256

          260d7e11b2927ffe497f5c0f14f984fe2cade3df29f6c0406debc8e909fb77de

          SHA512

          f0f6cdfbd5305e6d0c041da58aa06b33f7ec1ed641c4c4a2baa048910562e096d0ae811f815a7c2161856cff312e911d7fe1d903385b3a489dfc705af6e62952

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          1749f1eb30547917e887587a5700b5b1

          SHA1

          43aaab78b7f257b3f50991fa91e9f4f9fb033fbd

          SHA256

          b8301fd2a1f34891149624df932ee9f9fd039797e2954b56f8d1330b1c39fd31

          SHA512

          9d017e614f2b1aa833a691819b9e109d89c67147bd280f791a143e04608fe534f22ced04a75364bb27c440259dde14952913666cc5949c41c849b57dd29df388

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          b48a7c5918da7c8644d4618ba2c754f6

          SHA1

          2dd86424f33f3fb0d6201c5fb7356247f0fda3bb

          SHA256

          262b758a4d54f6f2d9b46b9a2d7336c8e2d1c74b088565e1f5ed807369b8501c

          SHA512

          6c0045d68642f1372953899e398f536ba11c86bde3642a74a483404169139bed82cafe62c5ccf47998818439ed1c5254c6f9a4136683ebc37760f10644b1f3f4

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          5f70c92ab193f896e73b528a02e696c9

          SHA1

          cf3999a40616fcd9ee1b531592b75355464ffd2a

          SHA256

          38dc6beda5010892fb9baeed5e11923860db5891613b708346f43a1b63a204c7

          SHA512

          27363b400de4e750104aae7b40a20b88e232682b9a18ebcf643c82513d8001a198e2191e5aaf006b2a46b6cdd7076301b01f8e8291029f76f2a2e07caf82988b

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          9490a40afe8864d255c5a010a06b96f7

          SHA1

          86370e7be402a6d0b527da58451ec4497a197e1d

          SHA256

          b3e472d9efecb25bac894623f64e93fa6998d662a7788149af25c2192c6ebb34

          SHA512

          ec4f243a3ee915d077c68030e1fb80f8c45f5d5537a9b762c5d9b48bef37b98086e72797e65620af278657cd57b13ce3aa5302756b2462dfdf7c7c3dae9e8fe0

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          702f767893f5972da8cd9182479cfebf

          SHA1

          2c59fcd25f15d405822edf97545d73a83a61608b

          SHA256

          d6075f28fcc04f6de2a01956004ca91c0d23c854d507f67704061a46dcc1f7e2

          SHA512

          31bbe32ec7639f8622f156c73049f5df6b0cb638ff99062ac0836463af97352db3be8b26d9d737e41485dd1f8ed303018bed27fa40583b919997d6290e370e1b

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\Cab909F.tmp
          Filesize

          70KB

          MD5

          49aebf8cbd62d92ac215b2923fb1b9f5

          SHA1

          1723be06719828dda65ad804298d0431f6aff976

          SHA256

          b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

          SHA512

          bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\Tar917C.tmp
          Filesize

          181KB

          MD5

          4ea6026cf93ec6338144661bf1202cd1

          SHA1

          a1dec9044f750ad887935a01430bf49322fbdcb7

          SHA256

          8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

          SHA512

          6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

          Download Submit