Overview

overview

3

Static

static

1

b416dc3549...8.html

windows7-x64

3

b416dc3549...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    133s
  • max time network
    149s
  • platform
    windows7_x64
  • resource
    win7-20240729-en
  • resource tags

    arch:x64arch:x86image:win7-20240729-enlocale:en-usos:windows7-x64system
  • submitted
    21/08/2024, 15:55

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    b416dc3549be4310e21d90fa7a9b5874_JaffaCakes118.html

  • Size

    91KB

  • MD5

    b416dc3549be4310e21d90fa7a9b5874

  • SHA1

    f876ef990ee41bb8121ebf8abb997cbbd9599b1b

  • SHA256

    4819d778d126023bc9e200ab1da12998b1b375836ddc01a71adef62d4d38bf20

  • SHA512

    42e9646a8e77b9ee6ca8cc8dfdebd5898685d402b7930cb0ba0d84e5048e75f9336421ba71262b71d5f68302c33f7158d3f54a14f3878e4e6c138849a86b5bf1

  • SSDEEP

    1536:lGajJRwAwQRRZh03C1/6cmjXOuZGi/alvQfTcZ59N9eHFsitn:9wAwF3C1yCulGvQbcZ5iFso

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 44 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\b416dc3549be4310e21d90fa7a9b5874_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1720
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1720 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:1448

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    bb86ef8b7403c75e48170b96b594c9ed

    SHA1

    7a8a5c7641ad49d0f93925b5429bc1158712e3d5

    SHA256

    3f187f35d6429d683e551493df33c38477a74424d96113cf6dc327fadf4f0707

    SHA512

    d937064f45770d6d4eb8b5b1dd08b8c13d2c4a2e39fcd2d9d0dcd87879356e6beb64f50f2d6995870cd19f2081999a49b9c1bb88f52770fa8ae866af6f5911b9

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    cb76ddc177b0f2041d16a3eb0473f85f

    SHA1

    3d373a259c592f90f93dd5e48afcc13f7cba8658

    SHA256

    a8d3bed4cb46bd8c233f46a6e02023ae09a7a0231709be74abce3e294abda9b7

    SHA512

    bdfda37b4a00c3068022a58755dc2ea719235a0a6e084c0a4f1ce7cc4f7dec95c51816c61b326104fc8ac89dfd013716b42df971b11ea811eb532510fa576df8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    3f1d44fcd7fa180a111aebff2f5b84f8

    SHA1

    96c76cf7d43e6c3c3029776968ba4a39b95a81f9

    SHA256

    bf26ae46c7a0416cf84ba576442a6e3df1eb7b16940c9b25569d1f427de53c60

    SHA512

    8c42d8a1754e7d56624cc69e7ccd781301265f479ae16c53e607f7bf8f8b1309c75ce1903907392c2705cbc829cc38a9c7d453e361a481409027eb204e80c4c9

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    26ff2e1702da8da3aaaf487bd8a2cf86

    SHA1

    fa23cc1255a54214bd5d31b86f0986a0a4ae0b78

    SHA256

    dcf3970428ea660319513d9f1e2d815a36383b8f710d21df2a7bd044b856bd0b

    SHA512

    42a0f915f1a2e6c0c3e7ab354db9d7d107e22a32beefe8b57770ce4da11c216211df7017ea859b1e22fdd581bde0a8283d0750a80ee983223a703a19d95cdd74

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    7b4ae7eaa050aaa98db51bc45a7e7fbe

    SHA1

    2f4b90744b821f0c3a952cf2ef377d5e0bc92e60

    SHA256

    a49aaa6a8aed3d1960837271fe3b24ed0a58ea2c74c70a0455713a79db2bb6f0

    SHA512

    1eae6b121bc4e1a852d0898b9ea511c2541e801eee87acf869ee61ad198fb28e5f36365e710e84da26b7b9392cf942196a400e8d43c6129e04a4572c2942ecfa

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    762f3924aa76779aa59d7c2682a6a71e

    SHA1

    0afdf066b01786492a3e66e9efb7fd7ad55c8677

    SHA256

    5f39bfff430728aad6e445bd415f2120a78c0982b40891a41d91b81adc0fd0a8

    SHA512

    286abba28921a188d6c4d8afaf8873b446302c632b9e39071dfe3241a59ca21cb384af63f87e976126ba2a200f6ff9a3555d406e8647888b5fc9736082cd65e4

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    f11727fbb82f4cb8c8382d871d0761ae

    SHA1

    b0abd9c73962e45c715bac1f718ed3c065359bdd

    SHA256

    449679c85a19478c003b5f1dd4996a9b28023dff11e1c6c916c330849b5c881a

    SHA512

    70360d6d73544d2197e684b935eed7e5d03210540bc690d56b66daef1be00c435742ca479dbe396f600f82c82535bcdeffae7db1094b713fd2727dcea8500d35

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    3e9fb7f5c60fced8e2bb5e41c5f2c250

    SHA1

    64bf4f0c71dbe0778ab605b38befd4b47cc2cc91

    SHA256

    75ca29ce0ea3d35e5b81494107fdd72f856b311d3a58c027574a41290242ec3a

    SHA512

    567d617b396d530de9cf128f32a0bcdd61cc09c282ed2b9e7469e4782291407490a04bdc13d57f8a186f796f7ad511775fc9f841b1a158e2ac1fce906c75566e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    167ee25defbbb2ec2254cd97f9a88625

    SHA1

    8182e1149aadbd174437985942e6c6a41a63214b

    SHA256

    02c844fd4284dde13fdac3cae439053637d13169d9b9942e3e331204b141d034

    SHA512

    084f9a35997344867b25b399c68cbff3946244da080fc200ef1be99b40442278bcf008db8e8304e84d62cb0ad7d721c937dc98e1a53c7d31c9823057c7fa4136

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    d4a09f72e2969a7e82a896ac85c4bca0

    SHA1

    7e5246c4dd2c2f35d5ba0ba9d8b884d2279c9eb9

    SHA256

    7ca127cd453b564e6933d6cff0f9392814ea74deaadd33019a6eb495768824ac

    SHA512

    4612198c9dd7e4934ee15147b9a3b2148b00bc02e396f7d7a91e40d239814bdc88b945a11a64c27d2535b9f5a83d42171ad1ab089d8f771319b229935ba5dbe5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    ecaf900d9d2a302df346e71e7b2ea065

    SHA1

    3a3340ddd6d807609c5f41b1fb4e6491db6a0198

    SHA256

    1f89c2e1bcc2d5ee99b32c3587d7e6bd4df54516811ddbc5422797004437958a

    SHA512

    c37928f5ef77ba345179752a5a5f113435cfbca923c709669e5ac87805684d7faf15faae2740522907ec4ff909ef2e38c5ad72a1d20027ab589b349fb31e3988

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    791ada8758641908f58192ecfa23d75c

    SHA1

    abe542d7ec8fdd3376e66d76be8de856cadec31c

    SHA256

    7afac96ee28d8d1f21079681607942bcbd2db307755d1e2b97e4d8cbad1241cf

    SHA512

    7a5a4deca9d7ac8d5c08d64eb957bcbfce5189e2b692a0a9258df5fbd29a6d53f8f024258fa4bc8f3517cdbde807b654a26d5e83e1c1b1ec706fd52190ed78a2

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    106b3086dc0a87fa6834d77d5d34e59c

    SHA1

    966db17f9c01e3b21da0f90a1d672d700090dfb3

    SHA256

    6041187d75e86f2f1e76d2c1977518477cd20726f95228f0c15f5966f1e1d4c0

    SHA512

    5524c6363c13e03bfe353b435dcc9565e4510b45eef21384118c182ab66305726add37bc3b14b631dc4d7d602e9241310ee298db6c54a513554044868ca30994

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    6c197be72ea59898679299826546c400

    SHA1

    bfaf827ac1cd3bc3c7c1bf90fcdec0d1bb9092c7

    SHA256

    957a14a5509c98d028b85438cb84e45842c492b58d715c9f27e2e4e0042b0091

    SHA512

    48083b0b19b61d36c49a467c400871a42d3877d7baa52c392a9c6a03c20bc21dee64e520d4013753efe72d2ab5f3184ed7f0726ab184be67dacf47446e56e1aa

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    14a20ed638c1b336b07591a247953634

    SHA1

    6d3993f626355b402b3e7218b0f931f1c8efb1b5

    SHA256

    8635a6a2588806c0aafae9d243081fde7ec1cf8e55a89724010bf8464e8e213d

    SHA512

    6857b91859be7cdd8f79b1e24343e99dacd009d9be4a61cb9be35518e5f827ebe1b9ac5c8e02853890193e939b86118343a2220927e94df34c6836aa22a39d52

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    79b9c1191e38cde63812bf78646ba89d

    SHA1

    90e8816cb63f71874f9b0699aa9452bb9ae3ed9c

    SHA256

    49fea9b543265fae5f0d4dcef093a3d30d069dc8a6e695c52777d28ea5267070

    SHA512

    3f04a6ab56dba7f858856369e706901a4510372867d5919303188dc51a2ac4a242df4c9f8a5a0fc79c6e401604a5ee2f1d6503a7f5ee4e53082df95a6bb24085

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    6f1ae5d1470ada3d52e7333c06b3a8a0

    SHA1

    e93f5e12358bd6cb13d68809fd0841969f654a95

    SHA256

    4afbd524efecd591a82502c194c96b0217a7939f71a1a6176e93953fb77c3f6e

    SHA512

    878d67cc3a257b7c18dd7c442f708a08d2ec0c4fa6bbf1c2ad84473eb0b36bb8dd373ae154a3d99b00f2cf0c363454977b4b1870ed15c6f487a5221727795946

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    373706c5479228691a2123ed91e036d2

    SHA1

    3a5b4519c7b8f1ad44c2d02d6a93b17dec7da91e

    SHA256

    16c9954ecd14067fc07b1c73e0679909476ab359a3851331b845968df86106e3

    SHA512

    d0f534a80f8b8cb988eb9b082bb6f484924c348d547f517b831fd65a6eed7925e91b02c4a10cd055a30655cda4667be25adee6e665dc1f4024bdec638ab6f54c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    d068dfb39b5941c69d75c9f961453769

    SHA1

    fdea2a36668586e1780c728087414b80cd3f8b7a

    SHA256

    aebc22c18fa4633f6222677109068fd20843b93286203337472d939c7ccab65c

    SHA512

    267e5a8f5d9ca51477cbc6757629bb1c11410790c3e686bd111b44140e1be56c685cdb2282deedcfeae08921dcab776feae220172e6f5786a2e5ca5ee3ef86a9

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    f8f7246ec1e9c274c45097ef523340a0

    SHA1

    a5d654e6f7d81630274ab3a02102ea7d63dda8b6

    SHA256

    433eba2ced28dcbecd69bdc8d329781dfe3f3124fab51c2f6fbdfa1cce85a8e9

    SHA512

    d35a1e17f27507dd213e6d181ab1b4ea4a4c0b40bf123a49ac46d5a7fd43bf49dabad0802269d38eb174c5654042bbc6d0858704fc5393b9591afe4fb48c539a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    2eb64231e46eab86147d28ed19de7518

    SHA1

    bd0afd1923721ffd2fda30a995d42f2d36e0c911

    SHA256

    59e31575b061fb2d764b878dce4e77d70cc485eb1712a1a6d5e1804793ce1d78

    SHA512

    38ade95ee4b061bba6ba087ee80b6ce0c4a097ea2e7236eac448e31c7267f04f7215f71dde211d87b125ddd5a5b024b70d8922b0b08f6d5657602726f4206109

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    fcb2f0fca700385554649b8f061b93dd

    SHA1

    a8becb4e70d32e2089486bb9235787cbf36958f6

    SHA256

    5bc7204954d2d3a51c33eafa70a76462bfdccefc490bb78983029e0604aed73a

    SHA512

    b837e8a14a93b5fb4288cc673f56cb430423ffe0cae798402b22218dbbcc1c027058651beb7b88fe43e2840057686372d9045bf5602486254620e70e3852197f

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\imagestore\t6u9s4b\imagestore.dat
    Filesize

    5KB

    MD5

    8249dbf321afab0596891d87c32ab368

    SHA1

    634bed524476c28a51fade2ffe7c9a1debae9489

    SHA256

    944e0f271dbce7c207de23ee90cffbc94d366a683e76cbc035ef2d3f1d8a68d2

    SHA512

    dab90b2b41a5008e99cfcdba7c379008e363420d3e0afb50262b52f81900db47740b06b8506643324443d958b55f1cfb83c380c3ff92e90867f0c56706da91e6

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\6GL24G53\favicon[1].ico
    Filesize

    5KB

    MD5

    f3418a443e7d841097c714d69ec4bcb8

    SHA1

    49263695f6b0cdd72f45cf1b775e660fdc36c606

    SHA256

    6da5620880159634213e197fafca1dde0272153be3e4590818533fab8d040770

    SHA512

    82d017c4b7ec8e0c46e8b75da0ca6a52fd8bce7fcf4e556cbdf16b49fc81be9953fe7e25a05f63ecd41c7272e8bb0a9fd9aedf0ac06cb6032330b096b3702563

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\K3JH4PQP\recaptcha__en[1].js
    Filesize

    531KB

    MD5

    1d96c92a257d170cba9e96057042088e

    SHA1

    70c323e5d1fc37d0839b3643c0b3825b1fc554f1

    SHA256

    e96a5e1e04ee3d7ffd8118f853ec2c0bcbf73b571cfa1c710238557baf5dd896

    SHA512

    a0fe722f29a7794398b315d9b6bec9e19fc478d54f53a2c14dd0d02e6071d6024d55e62bc7cf8543f2267fb96c352917ef4a2fdc5286f7997c8a5dc97519ee99

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\Q98GZSGI\styles__ltr[1].css
    Filesize

    55KB

    MD5

    4adccf70587477c74e2fcd636e4ec895

    SHA1

    af63034901c98e2d93faa7737f9c8f52e302d88b

    SHA256

    0e04cd9eec042868e190cbdabf2f8f0c7172dcc54ab87eb616eca14258307b4d

    SHA512

    d3f071c0a0aa7f2d3b8e584c67d4a1adf1a9a99595cffc204bf43b99f5b19c4b98cec8b31e65a46c01509fc7af8787bd7839299a683d028e388fdc4ded678cb3

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab7782.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar7803.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit