Overview

overview

3

Static

static

1

b7d2590200...8.html

windows7-x64

3

b7d2590200...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    135s
  • max time network
    134s
  • platform
    windows7_x64
  • resource
    win7-20240704-en
  • resource tags

    arch:x64arch:x86image:win7-20240704-enlocale:en-usos:windows7-x64system
  • submitted
    22/08/2024, 13:30

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    b7d259020031812f0d501725622fb221_JaffaCakes118.html

  • Size

    6KB

  • MD5

    b7d259020031812f0d501725622fb221

  • SHA1

    c069c2b1b805091b86e1e4bda4e118e55636b89a

  • SHA256

    e9db9772f43a5e7078fc9d88f508be3ef3aa7191913101e5b4e7e46723e020b6

  • SHA512

    f2f26d841c533f2c056e3ede12f0468f6d03fb00bade02e65c5ba8492f00bfab057cd0347891f78e148d2d14a85ca3cb60557f3f435c47ec5b68ddc05ddf153b

  • SSDEEP

    96:uzVs+ux70FLLY1k9o84d12ef7CSTUOIcEZ7ru7f:csz70FAYS/Qb76f

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\b7d259020031812f0d501725622fb221_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1292
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1292 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:1264

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    e0d1525468422dcb8fa6d25a7bc42c06

    SHA1

    63ef64bcbe3ee2c533d512cb26fad4438a000b9b

    SHA256

    8c837bf33a207ab32e3f8356f46cbbc3d08c9a6c426653bbdb36d7b546882671

    SHA512

    85d23b98cbf644017e05f3d98d351ecc701c5ab9742b12836859c9f2fac0dd436aa7d1b6da493ce7c8eb1e12669c99f101672864172e4d5e09bae498a56f4fb3

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    3c58129c6ba92c146f0f47c65ac0287f

    SHA1

    fbc3d22788efec8994fcc81ef48cf83b091ba100

    SHA256

    8e3a6f82b678f89174452b310eedc6814e3acedebf521230f71102f9a3872143

    SHA512

    793c7745e3e5350fb0fbfd5041193ef10ec4b28ad30ee3b91240a594badf171ad0827a64462a4f34bd2eb525330698fc90c7f38c7c936aeba09e3d0702e27b1b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    4389c846f3fb121b0df40e0a23236c07

    SHA1

    55871c2842adca46e72d8fb0a07fb681c417e75e

    SHA256

    338ca96bdda7335efffdf02d1d416f5a440a6e65e4ad36e42eb6cdfe150dd59a

    SHA512

    7e00d6212e46ad130507d6b1f54e018d49e97c2173b03f398d91759bc8c9ef8fb3307ee1b511ff82f79a85c0b17019f72ce7a77f5c902b2bfb5e1f0d8a7c50fd

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    0e6b6a0b112ec8c1800a81e71e3d1f5d

    SHA1

    613753abe40caee524111bb1b9ffcb65f4319e33

    SHA256

    7f58a039d118392c623ff28d669117e1f3da52be991f82e404bebe1d1d938f4e

    SHA512

    5cf19a25370a6fc0f016b00b67938326da6b1eb347e968465f3446025816949e499ca28356d5fead8118bc2ef6a69f75921d0184d37d0abba7d484ec3a4e099c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    07a6c01c18fe018fa579b267a32496c4

    SHA1

    0a2e5433a456bb53f925390b64ebbec36a62103c

    SHA256

    f6635f070f943451258d60fb43089b0707387d10c59c7b18e100426c09d906de

    SHA512

    b2deac9291b0e620dcff6ec7fef1a85b83d6a5af7e9a47451d1ceed0290795dcc6628578e0b9b13cd1e3c8bfb6dda6aea13e79129f849bf71ceac4fc18d8e976

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    779791ba34631b7c4f43971aa9df1ba2

    SHA1

    71938bd50a89da4e4bc1cd4dabd50d6141af5cbe

    SHA256

    d7f6bf82aeb083d96f61eb5179154657f615997ea47223286b3be8184dd95405

    SHA512

    ef8e4e1f445d04e8a5ac247a29b71c88b75dcc4c28a172b496789686e5b0f0ad3bd11c80303793b41a1062b40cb68e76f5b5a4bb580caab23b5fceb80e8833ef

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    da59eac4d9ff8477054a4f92ba8ad3ac

    SHA1

    4626cc6f74debf3ce3ba8684a9503a9ac5a24057

    SHA256

    fff3368372b6502b922395a30ae4e1b5f29d830f7dba572f97b9f9f9aa18d730

    SHA512

    0ea1924bb0d083a7ca7ef95cf956c4907667daa96c25efabd80f49240c846f8d2fe3241672ccb10a970c597d20fe7376c02747159ad259ddaa0eb835f0ab8069

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    c44e189509f49cb7e394e4a71398fdad

    SHA1

    2e92db34189ccb61fd98e59da493056626664ca2

    SHA256

    8260a224fce4ab38034c78446c235b024c924eee38ebbb761d22b42ffa1289ba

    SHA512

    4ac095bd685335dcf026b67d1f53c26e90fae36e5c09c182282a1d178b6346fa13d168bf4ddb74ab17b3638b214bd845961cf972d1532103a00a12da9608fd15

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    37e3ddba8a674d2d0104bf8a19df57aa

    SHA1

    8c2e43ac3d2c52b19331ed8ebceeb757116bb987

    SHA256

    80f86808386aebd04763474c197afd7764ac3e8b5577f9f7550560991fc86ec7

    SHA512

    f3bd61b9ba7e9c06746a67b4c4c34de8ed437c319ab8985d54ce90de36731efae8826bc7c6baa67f01593414b1515885c50e46536e3f2d142a3c8ae8ebc71e4c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    5d1223b75f5347362b0d3b6f7deed10e

    SHA1

    716119f2021fce47e69921a3ae696ce35e1a9409

    SHA256

    631bae52ddfc7b2fff525b5947adf3fdd45a9e4fdce2b1d3298a5ae997f45eb2

    SHA512

    4974b7a903a1888905a4e1d9f11fe14ef71263e685690ce4290a3fcb3fb4164e6e07cd418e5ff1eea65bcd7d40bc05d70d19c06bb7757eccbb7831949f6766c8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    8dcfd064eeee8c7efd500744fb143aa1

    SHA1

    ffdfa1053e6bd567931ea6c3126b04f33e6365aa

    SHA256

    cd2d3344f133d941a443dedbac6d941223843fe562d6586e2f585fb175931566

    SHA512

    64d51b75040f4e0dbda1a9013d9b06f35bde68eb035bb62e317205535859e14e9f154fcbfed2de1e4b9a7a97d42f507d98e1872f6bf4ea03af08ee66fcf7f4d7

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabAEB8.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarAFD5.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit