Overview

overview

3

Static

static

1

b71af05d5c...8.html

windows7-x64

3

b71af05d5c...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    149s
  • max time network
    150s
  • platform
    windows7_x64
  • resource
    win7-20240704-en
  • resource tags

    arch:x64arch:x86image:win7-20240704-enlocale:en-usos:windows7-x64system
  • submitted
    22/08/2024, 09:19

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    b71af05d5c6e3be085e1fffb84611d8a_JaffaCakes118.html

  • Size

    11KB

  • MD5

    b71af05d5c6e3be085e1fffb84611d8a

  • SHA1

    2280dc383da853182c35ddc257003ade678ad0af

  • SHA256

    17e415bb31a9ca90d1c02e00a0ec7892de3c1f5337088895ec56950e06508e83

  • SHA512

    7986731e9f9fb05de920fe45cdaf7a004c655c47c3e953f4b9bb29d57760e61f45cee0cc18c4dbc00386f97159f97491161703cc5df908a4f07ad27df5068b1c

  • SSDEEP

    192:/kjEay4retHH1KrGhX8+ay4rzfay4r4WpMQBT/ltSIoay4rxeOay4rtj:sjE0kVKShX30zf0jpMQBT60D01

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\b71af05d5c6e3be085e1fffb84611d8a_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2468
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2468 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2472

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          304B

          MD5

          9b5be1bc6f06e294acf473a158a40923

          SHA1

          3046ede53c5f9e26399f0c2c4038f45f6d298a61

          SHA256

          e14b1939f407cb6493b773a5649d83ae482ad0c94f03629d5a8fb20870752720

          SHA512

          d6b569f2b8d82f2b39a323499cd47d437fae120d7cde267b2a8c5314137e4a8f87ce8fa9bcd43d1c9e040aaa035818cd3e3c78f04566a132224d0313aa664d42

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          304B

          MD5

          8238fdfa5d6f4c98abae572babbe054f

          SHA1

          da57d0023b2b981000c4708be0df1ed6aae36564

          SHA256

          186c5c413f0423b9bb2c82cb99f32b604980381dcfd7a92d365d7a5c13e3fda2

          SHA512

          8c88a4891a608bced53e0b3b41654ac12356e557fbc11d8eed88238c3463d20a7feffcadaf7eae55348ebf3bea77eb07bba3c81414532c0d9f0653b2840cd4f5

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          304B

          MD5

          58ac775492921da9f27ade3ac8d7bc2e

          SHA1

          77132a1350b24d1f7fce82b7cb2fac5ba66dcf28

          SHA256

          4bf00b94b3d038271afd22affd083c052355fee99fe86642b8b3d587c456d97a

          SHA512

          c739ba645d2081e4b6a8216f184c9d3b4f634b5904415c584b89a280b0e49700ce7496e9971c0afdfcd114c16ae60c81b8c7d60f441b4348a74fc63d276d164a

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          304B

          MD5

          cceee3287080ad554ba8aeb601c3a580

          SHA1

          df66e310b76e3604af89e617e987eaefe5d8f56c

          SHA256

          410f9bc1bd620856b48f7fef9ce618a15120e3985511cab6a24d397b63b9a9cb

          SHA512

          6d22ad01fc01243fbedab938bb4e747fbc269510783a6f5cd93dd0f1d683c778f26b905bc667440529b2c4248d11b673748924fe466358c1787a120ab05cc669

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          304B

          MD5

          c16cd501c882a2979c249c5b22c93af5

          SHA1

          1126bedc6e8d48ec140f32239644bc76946082b0

          SHA256

          aaa0bd7917841a7c064298f9eb166fdc97152f35569cbf91f28954345f43abd9

          SHA512

          ffda1ac79a4f3843670ea8dec6eda292366658f9169f3e0ea0af0dbaaffedadc8fc5e23e4aa266925ac771f6e8cb55262ea5f57c161a724976aefed17b942e13

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          304B

          MD5

          f3c032a5693f9a459aa6c2e1740a1b52

          SHA1

          04e3d8bcc12bd086d78b69bd35965c2824130d30

          SHA256

          7e016d2a5df37701f4651b80c8370880c368db1d7b28e9b44b04da548fc912b5

          SHA512

          8656add18ee8f747642830fc807b35f0cd7192cc836b234b728dcfb0b423918af88a542c62f8e11e6eb4a8af0a73d4b6ac2aa7f8155f561a7e8770386063742a

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          304B

          MD5

          b39ed4d6f19fe80584bf1fce258f50b8

          SHA1

          7a7412e7e736db80bfbfa84cd972eb9d7819209c

          SHA256

          9c34a305bd2aaa62346f91eaa2c804714fbb736236e8c1c351b0c6889958e45d

          SHA512

          c8ea97770b4f5c69a3d941c328ef251fc6c3f44a85e9b4c40ab252bb126b146221ec115d65d6b8a495d4485c58870eea4779fbadcfff5b2987bc8ebd6a76372d

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          304B

          MD5

          77b3e6a0fd73c8f7af71406d4a73eece

          SHA1

          ae9264785097a7c33f76c125cb4e8a34ef5a4514

          SHA256

          860a6350087503536450e71627c4fdc63678c45fab1b137987127ac906bde6be

          SHA512

          e23095718645a7aba2607d0de61b2e72e60dc7e0dc4f2df9909ce72eb891f752962228c6b1ebe0e15301cc27d27a617e279ca1683d083f9bb04af91b17e0230e

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          304B

          MD5

          751096f97db9b2732609b3e90dce1848

          SHA1

          c3b0ace821a7caf64d4c49be64e215746a49f9af

          SHA256

          f33fed18b6fec6752a877a90c11b0a71d003ef84df8b38d701426695a0db1d1a

          SHA512

          b429889345322e347158116d6d89a8a8a3888b5f735c2abddc399ef12e7aa51ed768303e8381605789b44d0f2fdd7cffa0e3967d831852b602ea83d130b078b6

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          304B

          MD5

          68d94fbc5eafd5de2f0b78981f9180b3

          SHA1

          eb6747ba2aefe0b07ec69406598163af3ff73929

          SHA256

          ace2df9468ce1362e51b6d394732b901bae164b75c713864b5747e32ef5a4259

          SHA512

          86760b07066dd9943190154bc379d5f084d8a8f7a166ee99c3a68b62b7173c2654e492e02519a317c6079da5839bb3eb302e69a2f975f9bc563512a11089a697

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          304B

          MD5

          b7b4d06d6ae8d3e5d6498609c053c980

          SHA1

          719357b1699e41d8ed3fff6000f64398485d22d8

          SHA256

          95ae0e15d222d0088e53b1ec48eda959f36560d359a4642ade5cea2ca76a9371

          SHA512

          a1ab4f5e9173f1a09a635a7054a3043c5c7c3f7f9ac05a56f7ac2222e8074aafa710d59f2cc1205b64efe321b2f4ee5b40feaee0f5fe8b9f043ebde5711c2abd

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          304B

          MD5

          1d128b8efe5f5adecd5dc740768dcf87

          SHA1

          9b54dbb662166e8cffdd444214e0285b2ecf862a

          SHA256

          eed06ba3537353c2bd2bb801ae07c08860519b0c0fac7bd3cc270c535bc9b279

          SHA512

          5acaac75c34dba6bc4f94f9de38504c0715a6ef67487776584a749d2e13196ad391049c0f6a351c9f4f0cc50be5f726b7592fc03b8a945404cceeffee0df5d17

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          304B

          MD5

          8169addfa8728785c4ca851280904b80

          SHA1

          0c3546b54b353d82464801d07262a2529aa879a4

          SHA256

          e5d1a0e89a6acf31e3e52b3ff659565a6dd3d7a37160239f1c1015b702ac9c93

          SHA512

          3861e9d07a6af2fa0052a4cf1b0c26b2e889ff256adbefdf9546f31fe54080958b24450a623cca3ead1980adf30f6f28b2919649cd06c7fd778da5d280c0f30f

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          304B

          MD5

          f090f746d8d70cf42bf0907cc5eb96f3

          SHA1

          355211e7d5ba32daa71ac34061cfdbd00f4301a1

          SHA256

          5e90777bf9e7f380aecaa9bd435ecc9f9c990959096082a12327ce6c215e9be3

          SHA512

          12dd0103d214055e092e10ad18a947d2b76c8cdb2fb90832735add2c02ef077e76254b555de6ec97be892375c3e9f882135627a10e385f26ed6d7187612502b5

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          304B

          MD5

          c3d4a209f3beb433a21ead30eefb931c

          SHA1

          117145e46b61699293aea70128f38e375fa1d436

          SHA256

          2df290673b22c83c5e7240c0258e52dac6ab163fc65fba2256652274cf417d4f

          SHA512

          111193966f4c50d6ad85256afa6d07c0a387dad1631dbfb0a4a4dc1628e522c153a5debc7db1685e5cac6d93df5b0d444a4344375b3b8b32fcf6cd9456193f44

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          304B

          MD5

          03db1081c44c5fee0fcf1174e5712146

          SHA1

          b3d0cd24562b2a8adaa9d9e6f39d8301ded9809a

          SHA256

          93fb12cf7ebbebbe3c1c88360ab3d3f33e2a30cc5e3be9a5828cef04d686cdc3

          SHA512

          86c615019e00f19cb2d97a82b313ed8717c124723d3c1906edc25810211c164d679f39bb1b568cbe0919e1a2490748d901cbf61eb4a1222c263d790164d862ed

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          304B

          MD5

          ae4f28172ff46bf60700cfdb59f5f920

          SHA1

          34135c1418fbad8569b03b9a8f33dcf0b4004fc4

          SHA256

          c1e1e10f7bc6caf8f265a9b9f5d05db9535a6390d07c8f1e8061550155847354

          SHA512

          76d23f4f6be3fe04fffdbf9005f0a7840c9e9d09fca9479c5f06985c43345f35b03255c7cf568134877e02920159d8716117a30cd0b8e417dff3a1b30f789917

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          304B

          MD5

          eb99734cf57975da8165332303c89590

          SHA1

          5ee9acf0a8fb60fa128ee71413b38bcb365e2cec

          SHA256

          e51ea25ed417eb1b9869892352bcfba030cce2037f7c887ee2a72a81a1c3c07f

          SHA512

          d1828a93ecb81ad5091768ec7f0bda0dbb1aac2c239c78876a39f380344b326d9575d4d329c88e0ae987d877ec812e28cf1a4198e8660f0f7b9896eeca18a72e

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          304B

          MD5

          5ac929cab21dfd8d3dd84b15b952653d

          SHA1

          bed06c7c6be3c5293a17e2dd485e96b10672292e

          SHA256

          1b553b9d74d2797a99bc71aa1b609adf045d445c662c37ff289e4e1a105462e0

          SHA512

          eabcb45e9b9a26c7a269ca0691e7452043f5f183cb5b7d37c0a661d2ae5a7e00db6404abc1f3020dcb748fe6a81a20c1c9134c4be01294e16bbbf121b89d0674

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\Cab3075.tmp
          Filesize

          70KB

          MD5

          49aebf8cbd62d92ac215b2923fb1b9f5

          SHA1

          1723be06719828dda65ad804298d0431f6aff976

          SHA256

          b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

          SHA512

          bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\Tar3124.tmp
          Filesize

          181KB

          MD5

          4ea6026cf93ec6338144661bf1202cd1

          SHA1

          a1dec9044f750ad887935a01430bf49322fbdcb7

          SHA256

          8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

          SHA512

          6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

          Download Submit