Overview

overview

3

Static

static

1

b4d52a00c2...8.html

windows7-x64

3

b4d52a00c2...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    120s
  • max time network
    133s
  • platform
    windows7_x64
  • resource
    win7-20240704-en
  • resource tags

    arch:x64arch:x86image:win7-20240704-enlocale:en-usos:windows7-x64system
  • submitted
    21/08/2024, 20:01

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    b4d52a00c2c12257c8affa07b987580d_JaffaCakes118.html

  • Size

    18KB

  • MD5

    b4d52a00c2c12257c8affa07b987580d

  • SHA1

    df0ff827729f5005beef634b6388d38d7e4b87ab

  • SHA256

    b8d361deaf0db7c88ac91b29adefa4f88b75644adf54c916e0e18fe1a694ba9a

  • SHA512

    f17ab7217d1400cbddc281b387f83fb7cbefbf44ebc7073af5aed15438ace1cbeddda4febf4fc8a46675eef1252faa508a5f881f12dc0aac773dc6fe1449f7d4

  • SSDEEP

    384:l2HDs6QYbaVFJwJXS/9wqJm1EiUWd6HmIDt8eWWdx0:l2jswuFJwZS3Uip0

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\b4d52a00c2c12257c8affa07b987580d_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2256
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2256 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:1964

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    3f187826bca6f24c0e89321613b7eef7

    SHA1

    ef18925dbd03906289f448fa8a5b0531a7210686

    SHA256

    6d924e07cabbc0df34bb8a78f1e94bbd7f8251d266b032418562964d3a3e0b09

    SHA512

    bf876edc4b60d7d08d9eec6b9cb5d5b90f7595807c5b94d668458ed55cc13ae20a29fc68186ae138631c1649a078a641c1979ad4fb2dc779328d2d47f4fa3710

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    bcb92b74ac277d93aae9dade013f16cf

    SHA1

    83217fe63a8aadcfa5e9818d552d39124b04a3e5

    SHA256

    64e9eb36718cc658d4f5322beb6fa9685570d423da5f2a32f315d2c86ada58a7

    SHA512

    3c7ed00d7ff8d3bcd35ddb7f58c4348d844795073ad2d9c1324ddea82202f94ab60ea0a2c921a65814754d6e10aaf1defc381007a0e2bd754506b689af96e710

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    f79ef075670cf5711ffba5a66d668d86

    SHA1

    fb7164efff7c8350e481fa2e5d0cc22fcb1dde29

    SHA256

    f0213590c5d96a4b8b32474285d93b88afa7e0ee873d5d566e389bf674e3583c

    SHA512

    8b10c967488b0c9ab897355872a0d5373c3c6c76bcb70c480422d7869d80cf39d5a144c2a48205340a644653225a1bb18880aade8f036de7f56a5f61471dc2b4

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    cafab9a24eb9ea6e335a640c7f1647a4

    SHA1

    c6d9134bf458948476c847ae0eeada59abdefcba

    SHA256

    db72770ffffc4c628fa203bb49cee6a8ab4c3515384de504d1da80443c3eec0a

    SHA512

    e59e79ba6c72a52bb86a2d693b8362ae17ed01721c6f63df4ff9c8b3db98ef1616a6c387da06da809842c9d46fa8c7724be806da2021c258c6f2fa77f458602c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    860b3c2b8233c0c46ad38692d9c2909c

    SHA1

    652906b460834b5b1e600b0c61eff1113df88386

    SHA256

    99bc20b55b923eb8d68ceb6165ad65382f601bd007bf88355fd1b7dbee1eaaa1

    SHA512

    d01c69feb04e62badb52e0de78004deebbd22d5409dee2c9ab14b44c5811a7c432c3892fff64a9393647e1f11083ded60d7d5c2591586d499044215f362202dd

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    3a7dbace1ee79da65a9525c8c7b6ccbd

    SHA1

    993c6aa133c280483f3f24294f2ac19b9a2cce3b

    SHA256

    e8b22ade53a95956c951352f7214125e723c4ed5f38ff89027bc444f730eb444

    SHA512

    5e4319d2f20a602bd4428d31425846d4d831d297334f376c3b99d8a361c4c8cf175516cc4b6c735cf01cf90a18c0dc2f60e2cf82448222f6f22167d03a84227f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    1c1217fd2865797925a4dfae750eb33e

    SHA1

    73afa0eb8d6e995cc294743093a3d44229c316a5

    SHA256

    90e31a3cf3d7897b86fb4b27be5a334c6135c7e173cc1cb068f4a87fbb87079c

    SHA512

    29b8148ed1f95680756f65744de9ed9494369fad4076a9fce8ea003eee8159e9e79b6b62f11451e59bf6ca8513e3d2d301d33244fced30a0145cda69ac299e91

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    d5bfc38140e4b1cbe0efd356e9b71b99

    SHA1

    a1fadcb62fc4141e7acd70bc6da96aed5ab4f299

    SHA256

    6224ee7969affff55530c441def2ee839f350da10181f24f8ae6441d82b5e3bc

    SHA512

    bd3e7b716459edef0cf4f641410fe9e774eacc9dd3dbe87420be876c2e7b37d9617da00c9988b54f7690391e26a45f8f3e84669474b4842736c3861167c6ef45

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    2d63f3e4143c20cd08de39e1fd82bbfc

    SHA1

    429658fa9fd9865825e999802a87a7b2437b42e1

    SHA256

    be1e0b9097c0c6ebf552c3403c64c7383193348a7e739d0f9f72075535814a59

    SHA512

    e0d8eea5ea7e30d1e60f1ae8fc8c0c46e1bd5072f1ca1c470487315dd66dba0089ed7592c01c2e9b511eb605a773e3772bc30f42f521b4c8f42f6a730c318e48

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    198d9316f5832e91ef30ce129284e77d

    SHA1

    e45f1957b241b16cb34baaf3476b23f6123b8757

    SHA256

    f3f935b8176670f07eaaf50619a21f6ee3f997dcc9a4f54c5e69b913ac6795b7

    SHA512

    501ed04760783c018b71b973295649296111c2c095c2f660ca345bc20beff3f05efc16d2b98946a1053e213d801b9bf6017e58ad76e3225e5842ff0aa4286c76

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    f37d0ca9d9fea4e0f497f943e4d812f4

    SHA1

    d4dfc0e484dad1cc0d009e13cf8662b06dfcf67e

    SHA256

    08974c6bec6bcf31ed048225956ac8793e76b722981c8922058f46e3a599195e

    SHA512

    443021119a6350b83a8fa5c20dac0e8605b3d4173b166092b16038a624301a57298d48aa6bf8aea392e3b71383e50b546016a9815184797d8b8a821a79ae8d1b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    f89c89c8649e8ece73084d10570bb72d

    SHA1

    e0cccb49ca9ec2625230c616417dbdc674c9c17f

    SHA256

    5359eb614e7eefd21a0e5a82b5c7eef4d8d6670d5ff4f55ccc9f0cb0e2590b96

    SHA512

    c8dedf9b4718662a94f30cacb2e91d1761277b82fba10f0cfc6e80991bf2c23976c9fd5f03dcc1d8fd66b30dd5fa45deca0f07f2ac0aa5a1ee51c8171961e7ab

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    bbacb5e732b76387ccddea4be7042db6

    SHA1

    de72f5e85e313679d262ef9143167e380281ea91

    SHA256

    070756f37ce9e09f0b83164f312bd5ef26fa1701e252a5a1cc919e566ca0a5e6

    SHA512

    01b36e5499d1d349caad54b8853b2cf5dfcea7e177ffc035ac3bc9cce598d9eeac8b1e6207633d2c121668e500fa9b6f9cc874fd57153469f37a42a119adc694

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    af9c5e30122bcc8734775814810626c1

    SHA1

    e1526e6dae53a53a33df59e2473a5595f13028d6

    SHA256

    0d5010d651a61b5dd6d7e5f307f2bea3da2fb8c075170667608e6139b1c875b7

    SHA512

    9ed9da134715721089606f7d5b56ddd9b9dc51bd978bef77670094e3c0a40ac9e2efcc9875a8d9d3774fe2996db1c55cfcb7056e8cb617da58794f6f89a518bb

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    877be4dad9cc3fee38901f77e771d033

    SHA1

    5a3a55a28c9d0a994d3c20a1522a6fb9cf7427d8

    SHA256

    1ca2a754a4dbb14aed20eac209e32095fce71195aae115ce48ed8dd747a83073

    SHA512

    f96ed142a75ddaba496cf27f468213040209ed0061edbe309cb8e5b0d70f19147d8a7eceb2e7051dfaefcd8f4beb9413316ff09cb3e8461d9f8ae5216c0529f8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    fa1329faef168de21e4b5ec8ab31314a

    SHA1

    0a6fb9779b957fb0fb2c94d59d8fba1e5594cf76

    SHA256

    057c6c04e2ec7185354255bdd7cb4b7a29f0e0f58baa2ee49f16be764cddb302

    SHA512

    f3e8c96d4dc7f4458fd50d56fa93a04b4ef91150bd7c540579170b2a3a71a1ab39f5441bb563202d93e5ab5d353e735e970d043e52636d294e18d7f3c65fa6ef

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    27b3b07c99635e732b47b64719c16644

    SHA1

    8e3fcca33fd6c3dbde4f018043e450e5e40de879

    SHA256

    aeaec553621667e18f76b8e1cd3314f4e2e51ac7be89e79ef305b723cad8fc8f

    SHA512

    b5bf83e606b4ca8e8dc7b8e16a369b76b415a5d0071bf685edb402716b3d1510d0a3f0c1550195dd8db56a9e8424b6dd30c1675d535685dae59ba482c568e2ef

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    daef7dff9f3a9bbec05b4ba7b7832980

    SHA1

    081440d6e8f3c27736f97ef6c359115493ecc1bc

    SHA256

    5e1554526c5103734e482834fa81bc0b2d9ad4dc7052965b9cbb20bd4506e6f7

    SHA512

    a95a2a646c038dd1f245b8507797a3780c5c51f4b03476433772f3a94e5b5b6dd0043b3117f31db7e3dd3212fada36cb7c0302fa2269565c9bee516fc0b10167

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    e8e36d89bf13c32bd09376edd746e3b9

    SHA1

    76480944aa2ee8f6aa4e71d32ddc25ae0d51d864

    SHA256

    11464f9fc27be5ef45babaf55aba4bf84bc2a118ff9817b5c53df159e1972a7c

    SHA512

    b659f65ec93d4b53bf8bc3582f08557ada148b12f99f2a5b3f6ac48a79dc1f7c6374832fdb471c86d09ff231dd80591b16a5138365e039eeb50bd3b78ca56d91

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabDDD3.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarDEB2.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit