Overview

overview

3

Static

static

1

b28c8829ad...8.html

windows7-x64

3

b28c8829ad...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    147s
  • max time network
    154s
  • platform
    windows7_x64
  • resource
    win7-20240704-en
  • resource tags

    arch:x64arch:x86image:win7-20240704-enlocale:en-usos:windows7-x64system
  • submitted
    21/08/2024, 07:12

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    b28c8829adb4e06aa322836bd63c98a2_JaffaCakes118.html

  • Size

    57KB

  • MD5

    b28c8829adb4e06aa322836bd63c98a2

  • SHA1

    0adc29b59946410f910c6cdf766d1239edfdb6d9

  • SHA256

    c0dc6bd60dc231ea695164ee57fc2588f3d1f6b377473ce45de25216a24a95a4

  • SHA512

    db7a4d1efd0381ce32732bb778846accdb313cff67a2b9162d793da594e258c45768144d0461ebaae70e442ec1d7ad6fc370bc80880f979ebcb6457491acc2fb

  • SSDEEP

    1536:gQZBCCOd+0IxChp8PfTfwfUfqfGfufzf0fpfZfVf6fufnfMf1fpfrfyfeflfdfxN:gk2Y0Ix3rYcieW7MRx9SmvUtRz6G915N

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\b28c8829adb4e06aa322836bd63c98a2_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2904
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2904 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2264

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\3C428B1A3E5F57D887EC4B864FAC5DCC
          Filesize

          914B

          MD5

          e4a68ac854ac5242460afd72481b2a44

          SHA1

          df3c24f9bfd666761b268073fe06d1cc8d4f82a4

          SHA256

          cb3ccbb76031e5e0138f8dd39a23f9de47ffc35e43c1144cea27d46a5ab1cb5f

          SHA512

          5622207e1ba285f172756f6019af92ac808ed63286e24dfecc1e79873fb5d140f1ceb7133f2476e89a5f75f711f9813a9fbb8fd5287f64adfdcc53b864f9bdc5

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\F0ACCF77CDCBFF39F6191887F6D2D357
          Filesize

          1KB

          MD5

          a266bb7dcc38a562631361bbf61dd11b

          SHA1

          3b1efd3a66ea28b16697394703a72ca340a05bd5

          SHA256

          df545bf919a2439c36983b54cdfc903dfa4f37d3996d8d84b4c31eec6f3c163e

          SHA512

          0da8ef4f8f6ed3d16d2bc8eb816b9e6e1345dfe2d91160196c47e6149a1d6aedaafadcefd66acdea7f72dcf0832770192ceac15b0c559c4ccc2c0e5581d5aefc

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\3C428B1A3E5F57D887EC4B864FAC5DCC
          Filesize

          252B

          MD5

          7e60adcd844aada857d431176a22d1c6

          SHA1

          3f4a269609a6ab3d56dd1a89392a8aa612aae2b0

          SHA256

          0bade412cba791526c4dad2a9af55c1f96a8817c3c4a881a2f2ec33db4e363bb

          SHA512

          d1187c1bb79c1280add485f0f1c45060aaac33708837cbec3727134e9005d9f8f4c43013cfa447ed5f622550d15f9396ac652df233fa96f80d73bad6afd5f02f

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          bff0e290af00842f5ceff192b6930194

          SHA1

          b2243372583f974aeca0c297ba716fe304d7d576

          SHA256

          10dc82e4aace378b422d77eb246a4efff4e237af8f928e371e078b49ff922cc3

          SHA512

          22be69eb15d80d5f0379b862b5e09c79c8f7a3e5057231e251917b26df376d556eed3890e890b8af81f0999c630cf95038e4f0872cb4e0c3c3ccc9ca2f2e90bf

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          407d33f58aa36ae65efd549b40069e00

          SHA1

          6304d58d9ae4df9c5dd0f8e3ba1622bdc503c486

          SHA256

          3ab2365b2cf97f48f648772c7e112846bac340ab616770a35dcd10bda51edeff

          SHA512

          fa1f5b120ec7e540ebd9e46086ff020a6d2c6869f62e19b673f4687798ae1827ea1f5134ba531f1fb5e77341837865770421edba42760d0015e220cfb74dec01

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          7a5360860ed7a97162cb1c69baf4c0c3

          SHA1

          ee595ba591146fdebf56df2ed3dc2ef42d06664b

          SHA256

          ece39edcb639cc8468b20c082a209a36d3ff0939a994821f3bfdc6cb7e0131e5

          SHA512

          85cae0c0ccdad8c3aff6dd9be6c16d348cfab1f12f952645420979ace31da73a115832ab1087d17d915f5d9dd9647326caa1776949b5a06a4ca68f86290ce7a0

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          a1ce65a350b28e2547f2c7a80802166f

          SHA1

          a0e792ba124ffa587809609bee3425b10ec60c81

          SHA256

          4b9ee28c79c0660be89c7d902261e67522355e9b5b411d49c90a7bbb83ba83b5

          SHA512

          6ae8c0ea6283438ac27a6fbd6f8fadb684128043a5f514faa50b7c9e9ff93b13c204836c5565b0dd0196281042ecd0272b4b50a8bca2d1cdb36a79414233f5ce

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          914a5c7fec8c03d2324e7a52f9105a1a

          SHA1

          01a4f834ea81888a51f042297a1f09e4fe2d2e49

          SHA256

          b268e3759f01de68c73083018667eb480a70a21ef3be2606ca4d0662e8b81dd1

          SHA512

          fb2565a7dbd1529fdb55e7f2a9126f316003fb5515688c1e71da98ead65ba5a81cd8846738d11b7c71aab285ea55f361abb5db847dc6519ab9987f5d0f406fce

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          2da6dd2db1525dca617c4af525e05f9c

          SHA1

          25acd5ab62d1a1c576992f6dedf55748c653e851

          SHA256

          4954dc1de0c7edca21cd78870f82175d494db9a69086e8feb37ad850e262c27f

          SHA512

          0e95a55bf467890c85a6dd7d96c0f4f6f78602ac2fbb2fe6dcd0bc14a4c2e253867ecc7ba1d4bac7c27d9c984bc55dc2e6f464ea0231e201ed722625ac83f296

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          ec6d21bed6feef242aa3fd3916580160

          SHA1

          99517b0ae3d14d96e512d9fc8563cf970ce80c2e

          SHA256

          1aea5d73fba7c69676f29e1ce88528c1a6a1249b1b5651a9e52ed338be8704be

          SHA512

          0ab84453261c1159023f12524efffd763da4ec11eca09b1ce757417f51538aedfd1f6e454c015f8555c2f20eb4787f97a0cabcc28eeb62e118106571b0d2b032

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          793c86ff181b43f536de7eb1ed03bd60

          SHA1

          dd57518a4b6304a99598aa25b078ae83cc974c3e

          SHA256

          5ae9d0b80b5cf4d3a37cdd92e73fc3eb0b24a9d0e44b8571eeacd56d62d140e1

          SHA512

          032d0991451631707761531282546dbf44c8e40d97e43f076aad7f0c234882bd3f7d0a89c0a8fb85be7aafbee1a201337a69c8e702de2bf0a895be52e02a732f

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          d9cf8b284513d8e823c7cd5e5abb9954

          SHA1

          e352aae40b70b294646bf7db3ff54c95a90afd84

          SHA256

          751271d1757af8c7febba5c91046bbc805b851ce6491280834b89821f9057be6

          SHA512

          66485f64967be976acc4dabc862946cb9ab32d57e706c6b7e674db6521625948bbdaaab05e3b58fde957e779e96652dfbf90497e560fbe19fec7418f1a9cf3b8

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          f7ecbaa2533922707bb3f76f3ea84d10

          SHA1

          b4e19c3b6aa5f4cbc28ca25d38e5992f6ad59fd7

          SHA256

          05d3dedddb73d8478045195cc69bef30941f54965e70a3f46a62066730fb5e0b

          SHA512

          b74e61a261c75157af517477ad331ff0c50970d3d9e715e0a8152f7d4423e42657e617618bd74bbd26a0ae61610dabef5964e8a90cf9acedb4c3c04188000f8d

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          7e2783be1aa015857fbf9b244b72feaf

          SHA1

          2b2962c40badecf23a0a7330a7d71dee8eed2ce8

          SHA256

          b17918e66827a27945b547ed51c8e81e9d4d7d252e6e459ef80fcd0e35c6e3f3

          SHA512

          1ee60f907af4c4269aa5fd914ada0abf0fd32c00f3dbf9de4f469423eff7393d8e2c245d64b6d55bf809b05ab3f23c59725ddf5b6807e946dc02e03f46fb8d18

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          55f59eac00ad3b709243205ecd7f8bf8

          SHA1

          4e31f81c1a8cea376029d3a1e2c801637aca5d8d

          SHA256

          5fc6c415f5f4c24c1e285af186484f7c56e10a090f3bb5f2f8118d160785e39e

          SHA512

          9f7240618be0a698d86bcd78b909b15c500ccce132db8dec204dcf65ed85426afc079e668e55c3630ed495bd1157afbeb2439a2898e9755e1d72c0a3de773b2c

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          5e4d22bfdc3f68cf7b75361ef7a75141

          SHA1

          af6e0d5a74eedc8cd1162dd4f0d00dd1fc6a4541

          SHA256

          52d390849cdaa7d8582544acc8354e3b1989e4d06877d46983c6e1b836720dd8

          SHA512

          64899d074fe5134e4908e70a4e7c1b144363bb28d6a75e4e9b2a54db44e9b71fcaa7b896d5d46701f5dfacbac13088525ff7a3ddb6281054bf7965ac4c82e539

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          890593eea19003c11403f4a565fd33e0

          SHA1

          e484784768fed86a0405b8712ba4297b8854bdfb

          SHA256

          6baddc1cd80bc6fcf1966119eb698624404c2ecfead7ea4bf81240f9edbf79c8

          SHA512

          c569e20a0b805aecfbf0301e25a158de69272fffde177f2397c81c1a2c0395cf2d022487979923e6a2c36fc3d618a2bfb5f5b1e4169296c226038ddb5ad9f869

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          54cd9cf1d9101a132bc694b78ae55c98

          SHA1

          65137af4c41d3bc695e70ca02b1aa45977c6d409

          SHA256

          14fa4b1b289863c2f7b6ed6aba6cec6e83e6e0e48e1412f78ed42a34b113efad

          SHA512

          66490d686cd7ff35f7fad9b99666d41d2cd7eb578e578d01f1a057332877c6ae456709e29d7da94690317b5646369b3cd37fbb3d7ac83400731479f246b4b1b3

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          e72d6010bd9966c88048851b8087e077

          SHA1

          a7f2b8c6cff65e341ada1e45860ecbceb7e7d8e6

          SHA256

          f0124c10d77be4212294b8d27cf327af27d604c424697097cdffc2f61af570d0

          SHA512

          edb3da90f2ff13c4895cb50ba7a138d6586709e7a639629d04978b93b44ba9738b1c9f94f6d989ae4112944922f85f1201f7ab4dcdeda3dab8302666d469d76c

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F0ACCF77CDCBFF39F6191887F6D2D357
          Filesize

          242B

          MD5

          7dabf71ee3d917b8e7fef8956f1392e3

          SHA1

          350444301d19b74f4c92a729f9edcf8ca1529f34

          SHA256

          6dcd8bf64b9f9b82735a6a7aa2e397a15c1cc2c307b044746b33f4f4e27a755d

          SHA512

          aa24eb168bb522fb91132b9c766e68da681be49a44a5657c0a60370be97c490b4e15c13c56b55d6cd78dddae2489c47178bca465264cd4fbd367570ce7493613

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\Cab1594.tmp
          Filesize

          70KB

          MD5

          49aebf8cbd62d92ac215b2923fb1b9f5

          SHA1

          1723be06719828dda65ad804298d0431f6aff976

          SHA256

          b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

          SHA512

          bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\Tar1597.tmp
          Filesize

          181KB

          MD5

          4ea6026cf93ec6338144661bf1202cd1

          SHA1

          a1dec9044f750ad887935a01430bf49322fbdcb7

          SHA256

          8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

          SHA512

          6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

          Download Submit