Overview

overview

3

Static

static

1

b02357fdc4...8.html

windows7-x64

3

b02357fdc4...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    143s
  • max time network
    144s
  • platform
    windows7_x64
  • resource
    win7-20240708-en
  • resource tags

    arch:x64arch:x86image:win7-20240708-enlocale:en-usos:windows7-x64system
  • submitted
    20/08/2024, 17:21

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    b02357fdc4cf224194b4d48e3f288a43_JaffaCakes118.html

  • Size

    14KB

  • MD5

    b02357fdc4cf224194b4d48e3f288a43

  • SHA1

    2c91398139e616e3c1848920a808897d0f49988f

  • SHA256

    7aa0f45e9befb3738cbf2f462eff87bf2602a9562dca3266fc949ddb58701d64

  • SHA512

    0c3c336260dbe10cdf82f6413514df4d5f0b7dd85fdf216e012791b479b6743ce98beddc7f96547e16331e9f1a07251f62c8555501786bee22b7119b375e4bae

  • SSDEEP

    192:HaQ2659B/J1qajcPABm+VET2gwtlA8pla+bdoQBRFc:C4L7LXVc8/toIFc

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\b02357fdc4cf224194b4d48e3f288a43_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1828
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1828 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2512

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    16cfa5e2e59c104c61e2fe932516310d

    SHA1

    fe6721bba9a06877ec1a231065c4e4137e8ed5aa

    SHA256

    9327ffc77d31253b9ac7bee400dd65abc6578d180ffac0f72f2d3dcff4434f34

    SHA512

    6a35de3169e6dce29e8a41881059a00758dbb25474d984552e4718c458968a16e225e54585fd55117928753743e412c143af99fb5e9403975dc69c1496bf7fd3

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    c6bb21b08986161627194285245a071d

    SHA1

    b6623f851650b1a1456b4c1ffc3218fcd154b19d

    SHA256

    6568229882cacc3d07de8c8603ccff6a1b5d38491ff64dbc387faec1d24643aa

    SHA512

    29e681c2b952c0e44b648caefd382fc6ebcbdfd3d957efae63124f93325244f98823b199d0ed41970536acc29cffff33210576df9005f766b90a3e9fa8572f1e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    1c2775784c6bd61ee2806aafa0f8762b

    SHA1

    ba5a96b3864df4b7cbb9545e4805e0659146cb6c

    SHA256

    f088de8f0c1bfa9bad26b3467a86ee14820b0dcbe895db1a5f0c996e6f2b4fd7

    SHA512

    9aa8a8a71513b7ed63e414dca78bc76eee3dbec420760f34a52d534f4119f029d4dc2fcd3f06a71f7d3d52b47b71e6e680f56b5f13b6bda64577bb77818e4beb

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    b98a8071a316eb2db62a690a4d8fb900

    SHA1

    9ad44e2e760131dcb67881f492e5e0ce07d14f03

    SHA256

    1b49bf6f91ffc6b2503e1428b48c759926610cffe8bf273c333bd785b0363102

    SHA512

    89b246162d0e89c2d5e12aaf896c8cd9d8e82389a6a82cb2bb6042423ff5f91c6bcf2423080a658dd0fdf8a0d6252539fae26ded934d2b427d0d37ffe9a2ae71

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    a9db30d7082fe9d05efb2b16b89f3b47

    SHA1

    419c6c41d4d6e067c8b0bb3fcbd0937f67f14a63

    SHA256

    af454c096fe2f37bfa3229f50d8ccbe5df5f459e8f942e0263ce37385ff940cf

    SHA512

    c5f0d1985f621de39824f2b82a3b04c53088d105b5ce20a6d3d25ccedbc4813824763c87309842d2ec55e9c03145970326a685f36d4b6ee348f6e9944394933f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    7a34689927aec5a599b80de564ff5ce0

    SHA1

    915b4504992fa98fc6b083e0819a639f2cae7212

    SHA256

    bfcd563fe535d47ef8dfdf55d57a2b096482f2fa9eac394bc662a991e5ef8457

    SHA512

    9be71ccd345a960c9b01c63e1f661969597dc7aabf005cd2df5ecae6333be38e4cba92a1bccfcb9ba1c7078e5f2fe85c5c4a73f76bfcdabd86e355b33d2d8445

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    00b817c71a71c24a0d6540034275961a

    SHA1

    47fc9b99587d87e6083ecc0be90488dcfc9f24c8

    SHA256

    b11ebeaf1d53c4555cfc490713999fa3daede4ed2b6c39ef795eb8505ec9c9b3

    SHA512

    c7b5726276e389d29b0ef46a600f2c0abd7657b5431edb59bc32341d34bb48337cc0c26c9112ef15b870ad1bc689b0ea40b3706c2e108380505eeafc7182f28f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    bc42d66f599a19d3851084085b70a5f5

    SHA1

    8b848d58515c38b6e1533c1390ce0dd1efd1ef8e

    SHA256

    591572a6d08a576f4cf25b1b8380ebca4d3a72c089770fd4f8abb685bf8b15b4

    SHA512

    62c23a1c1b55eb8207673066897cefd7a1cbea42bfe46431106fa632c7e2eb1f62c8903e0a7a4660da5d14aee8f39ea4231727969b17dd517f4563223e653d13

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    d7a7820b83bdaeaeb212502839489b42

    SHA1

    87e9b9af771cdbae470a9656a5aec663bec9fadf

    SHA256

    df5dc6eb8f68bcd14625d9f7dc2f2b14575414c4653c3a2d92553987d6b355a2

    SHA512

    9f0625979a44e2e38bf8877000b3fac7a65fd9ef7a00d60800def50f0f75228cf83ed4764584b99308eb3d96a458f7eb80bb0c63955d535689372110ba0ca255

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    96b80d9a5380b22529d396506050c7c8

    SHA1

    6b0177bd72cc040a7375e57d9bcb5736e649216e

    SHA256

    f56bd226ddc12671b2078ced56fd99ac109c9c85cd72e234428962a1854b9136

    SHA512

    876d37dd86de51b81cc68fadfaf03470f9ae337d8b8f74d161c80e3a7eb0bff1e0d9708e6e21f1ba126d1eace9e2096019fc4aff6a5b67917f73daafcd8e2e2f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    d347c89828b0caa6752d0b8dfcea4630

    SHA1

    cea164bdf950afc591fa0527c0e57c29977dcb7e

    SHA256

    1b9e7b1c2b9bc30644cc0a2bab06f674c8e087b13aecec6ad42805b734c8a5ae

    SHA512

    a9c035160ae30f5400ad64a8d6221cca7090b9a038ac73cd3f44738d07c1d7093e0f1dea03cb8dfc918a0c5add6502486834a514198fa979b2d1ac94ccec530e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    da18b303d7af95e7528e3d2df264a328

    SHA1

    fa54992a5f4d248a8a6296b45b186f85d2c13643

    SHA256

    9f5c684de1b33d34284b52bb9b45e9bc1e7e3c7edb5ae698bebbf15d5c3c614e

    SHA512

    65a69a0f9ce95da7c6894d12330cd14231e87c545d117a577644191bcbcc85c73ff79a9c25d9fbfa768fbc9f34ef2cfd44ca983ebb213f03871de8a9d0ff4406

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    4bc9e014c2e0830819fa36149cf9c366

    SHA1

    6b1b3623d5585c16290220c8a8dd89e738341a55

    SHA256

    bacce9d49f3f832ceb7e3b5d853a70d5771a73f260cd12ebb3d169937c392b77

    SHA512

    2120e43cbff6fab723d2f9a61ede6661716bd99d2f86a807e0a798b084f3339525087848a138bd5f7d362d133be6a5149f4363e9da11161de757ea99c2c137a5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    963a47633ff09fe4271e9ad59b0af4cb

    SHA1

    219f38ff0612f6720b0d020ef891966171634eca

    SHA256

    b6ced72f750168368d07532236a9fcc3b945d2d62df5f939642238cdec0115b0

    SHA512

    d4ecb740aeba3406bc367926903aa3bf32f6be7581743f30297a39df61ceb7560bbc7ccb1b83656014be0bde09ab5d64e79144dba743e967297fff99d3887395

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    c649cf9b54b40bf2002e3a5836857e59

    SHA1

    a93200482dfe14946547ee7339cc9b0a246daa33

    SHA256

    ddf269f555acbc34bd145dfe82da071aee40ae00d78561441d981f753707dc4d

    SHA512

    215667b1859f34fa13514e33c40bc2a99f7c4f16dba5ff5fcc0bf23df06aca3de2957975f8216c260f6bd13cb12fd8f98623bd76f95e9673d38f5416cd1bd380

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    82bf5b28349c166afccffd3550441c85

    SHA1

    6b10ec3aa3f2cf31fab369aae58cc2939ea8297b

    SHA256

    7ae2b01492ccf78126cd6f6af493946c6544e69a50bd96e3803bacefee42e6bb

    SHA512

    800c2648968ccec884aafe09088cc3801fc6db7ba0aba6981ac73ca53a21a3f4b879a3b970acd82a15126a814b43890703184a01cb48e7c8679cc9b0a72c8387

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    011d51beaea608a7a86b05ec0bb40c6a

    SHA1

    769889021286b163b9ba2d6329c532a2b26a0fd2

    SHA256

    74eee4fd202cbfe91e954d6a7d0554c7ed9252403d0b988d74f73be04ba216ce

    SHA512

    0d5dfad010ce8a6ba4097a9236923d4867e499d768e26859af36c52726985d43c793f73dcc8a81ded4f885a96b66d5581c3e2be0580f5d7d3e8f178c5a82fd51

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabC95A.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarC9BB.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit