Overview

overview

3

Static

static

1

b83c2e53bb...8.html

windows7-x64

3

b83c2e53bb...8.html

windows10-2004-x64

1

Analysis

  • max time kernel
    149s
  • max time network
    150s
  • platform
    windows7_x64
  • resource
    win7-20240705-en
  • resource tags

    arch:x64arch:x86image:win7-20240705-enlocale:en-usos:windows7-x64system
  • submitted
    22/08/2024, 15:52

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    b83c2e53bbe5820e9b8bb6005daf58d3_JaffaCakes118.html

  • Size

    189KB

  • MD5

    b83c2e53bbe5820e9b8bb6005daf58d3

  • SHA1

    9b4158c163c008a30d18d03fae4ecaadeae65061

  • SHA256

    74eafb10a7e75c3f65cc1920914db37fd09cdfabcb202122051e53594ce9057b

  • SHA512

    faf3eaeb87473a754e5b79a7637ea4485546edbbe281bfd690b14d41967de8b8f24d86b95212850f4a5f28c618e9f29dea3cb46ec7f094d1dd1d388e892ae959

  • SSDEEP

    768:drqWlFrNcajlFLbSmIRKvyjxGiIrjDBk95/hCVOMKtmpm+omyQzsgqroe8aWlm4M:drqW3rZjlFPIRKyU+50OzwYNGy7UdDMF

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 62 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\b83c2e53bbe5820e9b8bb6005daf58d3_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:712
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:712 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2640

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\05DDC6AA91765AACACDB0A5F96DF8199
    Filesize

    854B

    MD5

    e935bc5762068caf3e24a2683b1b8a88

    SHA1

    82b70eb774c0756837fe8d7acbfeec05ecbf5463

    SHA256

    a8accfcfeb51bd73df23b91f4d89ff1a9eb7438ef5b12e8afda1a6ff1769e89d

    SHA512

    bed4f6f5357b37662623f1f8afed1a3ebf3810630b2206a0292052a2e754af9dcfe34ee15c289e3d797a8f33330e47c14cbefbc702f74028557ace29bf855f9e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\24BD96D5497F70B3F510A6B53CD43F3E_3A89246FB90C5EE6620004F1AE0EB0EA
    Filesize

    1KB

    MD5

    65235b6b605c1dba3475b873f573d095

    SHA1

    cf3bf0526d6f32b0393d8e52f5218b37245ccb8c

    SHA256

    f483f7309c3c10dccd5fb1446d0aa45add9921b4037311cd71b17e857ed78e95

    SHA512

    03cba3eb6762176ed0e2203c8bd4910b904e33f38a817e292065bc04b1c75db84139f1b8b9697b2f646630fa040b0dcf5877b4ce2a59d3884ca1dfa5ee6729d0

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\3C428B1A3E5F57D887EC4B864FAC5DCC
    Filesize

    914B

    MD5

    e4a68ac854ac5242460afd72481b2a44

    SHA1

    df3c24f9bfd666761b268073fe06d1cc8d4f82a4

    SHA256

    cb3ccbb76031e5e0138f8dd39a23f9de47ffc35e43c1144cea27d46a5ab1cb5f

    SHA512

    5622207e1ba285f172756f6019af92ac808ed63286e24dfecc1e79873fb5d140f1ceb7133f2476e89a5f75f711f9813a9fbb8fd5287f64adfdcc53b864f9bdc5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\B3513D73A177A2707D910183759B389B_147AB4536A182B9FCE88E194D59F3B22
    Filesize

    471B

    MD5

    e19df013daf63239c1cdb59c121e157d

    SHA1

    a5591aea4bb3e1c2e3a9b01a285bfd887d5ec8b2

    SHA256

    cd5007ce6028f9719842b17389cc06a5082f2c75e0ca56caf95a348ae5b31bc2

    SHA512

    f41edae4751b68ed8b2a0519f930020cd1fe3a261071e5bd473817417a48ecbab6890d5dbfd44089fe1ced449b384ff1d59a43ca4fb74cd69535172939410e17

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\F0ACCF77CDCBFF39F6191887F6D2D357
    Filesize

    1KB

    MD5

    a266bb7dcc38a562631361bbf61dd11b

    SHA1

    3b1efd3a66ea28b16697394703a72ca340a05bd5

    SHA256

    df545bf919a2439c36983b54cdfc903dfa4f37d3996d8d84b4c31eec6f3c163e

    SHA512

    0da8ef4f8f6ed3d16d2bc8eb816b9e6e1345dfe2d91160196c47e6149a1d6aedaafadcefd66acdea7f72dcf0832770192ceac15b0c559c4ccc2c0e5581d5aefc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\05DDC6AA91765AACACDB0A5F96DF8199
    Filesize

    170B

    MD5

    40c43d9c4243eba8aac2da350c6a6663

    SHA1

    0b24618725cde4f3ca351f6f34fc24dc99979229

    SHA256

    b3bf96172f47b73803be6ae300a096a3ad1f9a8c4cda9cc766aeb7ccb88e615f

    SHA512

    d89c23069effc396efe3fcc549e505c86b2944c9fd2e937b764f1eb92c3305f498ee788cfc84b78429d00187bfc04dbbb3131edb31bb7303768fb32bcd8d0ab2

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\24BD96D5497F70B3F510A6B53CD43F3E_3A89246FB90C5EE6620004F1AE0EB0EA
    Filesize

    410B

    MD5

    acd089604d60fa02b1e6d208e52e1b27

    SHA1

    c83ce0e37daaa032710b2f2d7864444d78c3a8e5

    SHA256

    7e05504e34c32bca988d3f65832c07e38e8f2934f2030ab082031d4993c4ab06

    SHA512

    e6e03eaefd5c187faab63d2ec72c0ea84d4959ca1097ff066081db697dcdde4050abbedee7479f6892964bb92583373f238a1dc51535e6ee0088d63bfc35ca51

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\24BD96D5497F70B3F510A6B53CD43F3E_3A89246FB90C5EE6620004F1AE0EB0EA
    Filesize

    410B

    MD5

    896eeab7b5b02bfe7f638e2c9d1f1085

    SHA1

    e89ff16ec2d9caebf4aecc1e4faf41929ce6ac0f

    SHA256

    fa2734fee87e702bcbd3818ca654921022a2e242e3674a102fd7ec8ac50cadd6

    SHA512

    770f1268ffdd6db9495dafb0694d58348aedc70adc08d9792e6f0616775fc093c2073fec9ffd00e6dfcca97501b56ab55ad9520dd9ff5b299361038579598ac2

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\3C428B1A3E5F57D887EC4B864FAC5DCC
    Filesize

    252B

    MD5

    4ba7d4d8bacd55a898e3fd15e256fdb6

    SHA1

    1ca750682e2f8bb7b8dd694e1d74a1663d41d5c5

    SHA256

    809fe3ff93dc3127b909ee091d88171014ad41e74da0231049aac3ebd7430553

    SHA512

    4862940635b0c63879233f8a5baf9c0902f69f361a1c3d78e146a94125f3eab240b571b6d67f1e373727da611d8acd4f93e229a0b6bafa8087e09ff6470c9064

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    17c1c8ff23e2fa329d6a07e1785ed12c

    SHA1

    b9e67d0766fab489d7a09e5a6dfe59faff3edaad

    SHA256

    90d02cddd9b8a76e8397291303052f8b09d718826760d4c00960382fd1fcf306

    SHA512

    7cf8aba14875f55b98b53534ffe29b02ae38f23382a5e1ced2c7c860ee77ab7f747cb8f5214368fceba2d82f61d3f6d82feabd2925bf0334aad6b9245a234896

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    0f97091321ef90b4024ad8415258b651

    SHA1

    2ff2e70bc101cd539dee8a17510d04964886dd27

    SHA256

    5843d4c45bd000a79923189c82d0c9a6fdf734270388a90d1d8906ffd5434f61

    SHA512

    a2133e4466fc426f46ee99c46f985af1b5705b1b4cf22f33cf94d4349af86a9c3319412a26b931e948bdcbdf8a180826ac70626db499bbb72d7d9426e1f68653

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    fad034122c99c74f1c424ef1a6222752

    SHA1

    bc28e46671954192f0ef130769325bf1a0991a8e

    SHA256

    723c123a26d51860e8b3c92613f20acd6b0469be1a300da9e1f527cc886b14df

    SHA512

    01f0feaa656b9c30327a53e6a81727e050f7cb7e6caf5ef8bd2a27e15a6442ec1bd35a52d7a39d5f5706811eb48459e933e3810334dfbca292d37f0c720c0954

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    4391db127f4c399abad5261098d111a2

    SHA1

    77e770fca3705d7693da921bd8034bddfdfd7716

    SHA256

    920cbad2d24e704c2055ce640971160f645d45c862dc874a75f78f2e90e31f66

    SHA512

    6295bfad28717399fe3a46e910732f7094d3aec52e1b88c7cedcb92ade01e12a2552457eac317ca2fab364f9a031aa6a6f2ed50bffffcbd773745d894cc7ab65

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    5372300da46ffc97c5460e65b89b7789

    SHA1

    bf01b98c93ce6e9fc895d1658641e2501ab5c69e

    SHA256

    d9a92d7771793dc78da7bb6320fab8e1e76ac789e904a8a9a82247a279ab15ad

    SHA512

    8d1ce8b30142cbcaf30260081374e9db809217b2a3b00689a10fe7ba99437bee837b77b4b4bfa1b8a90282a7467db50d6e4dab53c8f742a82b75a33e945bbd96

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    2ce0ad475c03bd8d6bd8fc44aa3abc0b

    SHA1

    6bcb8b5e551f9af75b0467247e0dbc02f85ec14c

    SHA256

    5bd35e9a76c84af9912470b0525b741546015ea3a2b58e7cc68299ce81825d62

    SHA512

    7338d03bb0281c9acbbe2e8b54281f07a22b8d2c1ab6f5e54792ea40a6916bdc30314fe0c65cf610e43e5f4680d329d577076c624aaf3bf489d83fc506d9219f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    fb0f3cce85652598d12bca33dbcacd1b

    SHA1

    34998fd9e3bd405f83369f24ecdd4e1b59fefc33

    SHA256

    ff8280d62e2f5b2ad65544503311a89e74034e17f701632a240ddc9d2bb0ae11

    SHA512

    5ec702850d0f857e41607da55cfc578c13997d96062aa23439534b9ff236aa92b9a73010021a6e6a42dae8ce08a12c24924cc6b5861f4fd4c69da65a4e6ae7ea

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    49f4cb676483ec8b27ae8ab232cada05

    SHA1

    b22a9c3c2c96871a6cc61726760e0b07cce5a321

    SHA256

    0b6460a6f2d94f74436f1bea2b2f86d752c0a4211f5bc8304bad682a0c566faa

    SHA512

    21d2b8bd82355854e933c265b2c846438e48ad327d9a431303174a6eade47f7a7d6f8c620cbef4eb919a82cd95edf2bfc54daaa55c8b599e082910266833de2e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    7e2f5977b8c55111d2f52f035813d0b2

    SHA1

    de8dff079c2fb9c61a0c819c89fea21da0ee9983

    SHA256

    008b03dc72c11156fa90507bf404ac6a303d1e4071a452e4009ca372c783cd40

    SHA512

    baa513489ff11452e61e8b2ea1719fd7276c345716065ca88364a7d696c3f4009714405857db1f9c7c133c8214281b93beb09c95b2f5eb7abe0be1d6376fade7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    9d93c5aaa60f5816b3a8fe154481ff98

    SHA1

    0899b05bea1e52631856e11e3caf0bd37d44b169

    SHA256

    75c2724743940f1f33c6aff8b1119049b1054a19a73ba884dbd16e4bc895cf4b

    SHA512

    d9c93824f7a32abe1251d49631abe74fba5a42626f17b103e2fe836cd0ed0833168383c72d454f83048f41f4ecddc7ff4a4f00ee9bb17c6a96285831e49e1c45

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\B3513D73A177A2707D910183759B389B_147AB4536A182B9FCE88E194D59F3B22
    Filesize

    402B

    MD5

    3c41871ef69be9f625da6944b3b21639

    SHA1

    cb9e84ee37646fe4a7d94b0912b70b392f3ad08a

    SHA256

    ce72f4b1f5d0c5998cb80ef46913f35f5666ff50ed359a70b458a28a973a041b

    SHA512

    70d4cec27ed0baf61fb317041591fd14596f18a42a7b44d0694519844adb1c2fbf819fa31d8ae90ae74f2ddf5e18022d7f36737e5f31f8836630c0437da54f42

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F0ACCF77CDCBFF39F6191887F6D2D357
    Filesize

    242B

    MD5

    b6edc22fac2bdfa3052f34a15a60a71e

    SHA1

    cb7408dae82c59d29233d28ddea07323684723fa

    SHA256

    b7870f7a4c5ca408f7e2591d99ddd2094ddc49ea46f2976390c2e57c357dc033

    SHA512

    bc67ef5e98f55c58aad30998a31447590b3012bf4f202c6aeb20a606ecf39d9f06ca0a630606a642862b167dfbe7c027b6e7e5d1b0f3276bda3309d1ddacec99

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F0ACCF77CDCBFF39F6191887F6D2D357
    Filesize

    242B

    MD5

    da48d6e6ce0e645670ab2ae78383b856

    SHA1

    846de7a769882f571d0e1b0003e563bb7bfae3d0

    SHA256

    8a11bc2df5407d135496bc69a04e9e9564b1f45b05e756897aff843ec1b74b42

    SHA512

    b0c9cb0a04d5e8ed04a580a12e4b3ebabbf09a77662851b7b12bf2813f9be2bbde827408ccc9b12fd486f0b98c6c0bbc87c5dc8ee089a25513e6bdb245a77f9c

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\YNCJCQLZ\www.youtube[1].xml
    Filesize

    13B

    MD5

    c1ddea3ef6bbef3e7060a1a9ad89e4c5

    SHA1

    35e3224fcbd3e1af306f2b6a2c6bbea9b0867966

    SHA256

    b71e4d17274636b97179ba2d97c742735b6510eb54f22893d3a2daff2ceb28db

    SHA512

    6be8cec7c862afae5b37aa32dc5bb45912881a3276606da41bf808a4ef92c318b355e616bf45a257b995520d72b7c08752c0be445dceade5cf79f73480910fed

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\YNCJCQLZ\www.youtube[1].xml
    Filesize

    229B

    MD5

    16dccec7c04e57cf6f80251960c5781e

    SHA1

    14e3623a4ba3087cef3be2aae3549aae78b202ab

    SHA256

    232ff427f7101f0a59ca3fc4c719420fb7577837d9ffc9d9968078e4be61a04e

    SHA512

    d96a2e62eb6daad6217370e39d71609a385e5e2c4cb27e38bcd7b40c57403f3757e120a5c41aec8d735acda52f4e23277bb8c9b9f87c7bb19838a4c2921b414b

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\YNCJCQLZ\www.youtube[1].xml
    Filesize

    641B

    MD5

    992c8edac0395033956ec2f588cdb2d6

    SHA1

    52f822d2950eda059f90a84e22b5e6c9a405f29f

    SHA256

    425acad93c9fdf23e0774dcd314ae8ae41b4f510b18ab8b93176f5bb6693a214

    SHA512

    83732ba968d9ea11cf6722d34c92af535940aac4312c8da0cabeb507c98d30a1e17498700cd0a283ef672e8a28d3a3fe75a325095f8bdd70f172ea0a7a835a9a

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab9D4B.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarA20E.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit