Overview

overview

3

Static

static

1

bd390cbbf5...8.html

windows7-x64

3

bd390cbbf5...8.html

windows10-2004-x64

Analysis

  • max time kernel
    118s
  • max time network
    128s
  • platform
    windows7_x64
  • resource
    win7-20240704-en
  • resource tags

    arch:x64arch:x86image:win7-20240704-enlocale:en-usos:windows7-x64system
  • submitted
    23-08-2024 21:28

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    bd390cbbf5df1877f27f81fdf3f4b477_JaffaCakes118.html

  • Size

    6KB

  • MD5

    bd390cbbf5df1877f27f81fdf3f4b477

  • SHA1

    78e59171909385a3a45f9fbf884a372663ea6cec

  • SHA256

    2f3c9c08c409b438aef285b4b9988bf63f47cbf33815998114888409a17da2e7

  • SHA512

    f9f022fab651975f88e4a454b7dda5f246c0c59b6eed13ab5d5f1c983de100c9d9a5357b4bbbb3263e8f3b134f383cdd5d073416527b86d9ac850faba4f8ed89

  • SSDEEP

    96:uzVs+ux7zHLLY1k9o84d12ef7CSTU3wZcEZ7ru7f:csz7zHAYS/u0b76f

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\bd390cbbf5df1877f27f81fdf3f4b477_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2636
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2636 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2888

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    c6f9b14a634e24474db743591e7967f3

    SHA1

    7129eda5a069d4347b63385fad46e4da83277b31

    SHA256

    0da11fb210122624c0a8910995ef7be44b69f3f694c0921953a7d614d6313524

    SHA512

    ac833acc8c631591d7319f7bb60d81d3ec284133d68f31692ed2fffddeb0ab6d1190bedd9f88b87cb4530833a437e70150d2bf13d236bed111e03923065243b7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    80dd4c1b5d29d4b1860dd95e168ab2ed

    SHA1

    4ce16b781cd75e57039dda68080284f9d6576622

    SHA256

    dafaaa5ad8193e3167cca3a30844636b03b21c83fe8f66e0d3ebba75b6b8d47e

    SHA512

    dd996bbe18af3e4e990c537e5eea9ced9c80d99754edfc4b4aa4a2a5e1484878ece1a1df18167cdaa4b38e75985e9495e39309f50955f948eee9c8ca3537aa3b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    676468b76e00fe6d6f5a49e973110fb6

    SHA1

    24354da8f6789dd924446d6dd96465bbc301bbb2

    SHA256

    9cfa424ea755908f1abd7be673ab01c6011547310df7e16017134694d8c4a688

    SHA512

    cea0074b0e7e25e8f3fd16fb46a3394d18c7e51c419c43acf7e1aefdd03e63b5c8fbe04f2d9ec4970800ac6ff12d3795a324deab4d8fbb99e85f8813488b2fc4

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    079b0c8433aca5a2e6103d1095435c35

    SHA1

    b482d02606c8e2841bdd26844327c0c24ce05695

    SHA256

    984ad4a96aa71a470db1d03ddec30008e21d630d5e766547c8f39e1a66bdd892

    SHA512

    f046b36e4dd97c6a68619c90bface5a950e22349956d798c97e501311c6d333d7f0ceaf730eea5596a5341c389e8715d7ab6fdda283095237a59ccc6f400e9a8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    b9832ef5b8d44693e59d9b9f5bfc812f

    SHA1

    175f68fe7342da3215ffe7e37cb407ad7415bf43

    SHA256

    679cfa455d29ef338c8c85553681780c8a4125019b555bf4245bfd57ba30e88d

    SHA512

    08718f431adbd4fe991f5b9f39a68889b7e05ad8f15a4915f53dd9eb97fe7ab78d12c5d20681dbb124b88dd85ad9859fb411022ebb2c87bac916f48361b9c32c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    aa530b372a13a98586acd9426e3c6882

    SHA1

    5088a48b1ef47ff24d71eb954790df084aa63bc8

    SHA256

    237289b59316f54e706e29d4bcb7024b1ca58997b0d213333b5f085d86af59c6

    SHA512

    a3248602488d4a1979395d7124461ff02501d17762ae4770dbcd73f1e428a0135b87fe20112709d792a4986efa2d061d1583d50c29779cfe0f609c58a6100711

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    1e29562b54e6330ded55d0d7d51919b8

    SHA1

    920ef366305563f2f36a499c6d159a6fe807ec1c

    SHA256

    6c979d8a6e0cddbc5bb64ddf42397c22b0da5c7c5b046348e1fce8b772105b66

    SHA512

    7e8741614c67d1a148e4ffd6c142346a4b7706024e8f3480fd88cbf76c08b6c9d2d3d1a65f3d94782b5df9675d949c75ed2f5486743c1b1aebbe6af55a65aafb

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    de47f7d06c9a78e4dea44c8235632bc9

    SHA1

    31360350b6c26b0b8676ca0f5f3519c121def30f

    SHA256

    c71aba1b75b3a043a8708af1dea9c3b3b3deb6ca3e1425950fe070e675ffb378

    SHA512

    b123ed21a536c69898fa349f48709f1d972a7c053510f7585cc15d41a8a4751beea98fef5af0879eca6b3c3676fc5772b89de465d6e16561cee4c75c520bb7c8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    86eededb4fc7899112a5e95d7e81cf45

    SHA1

    811b49633926fec34a388764084463735f34550e

    SHA256

    a01674b1cf252d77af8542038b38c64b3dc925c28d6371ce77751662f3c8e02d

    SHA512

    07e351a858a9462fb186339b3234a0323c4aeee2066fee60d9fdecce44bcf10fd7335218abb06b9001ca766d3e365c535faf6eb95cd5de4b39cff7bb78e2ecdb

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    bb15499ab8e7addd66d709e7cfcdefb8

    SHA1

    180a00caa6b84bd47f7e359c89ec6429fe4f8fdb

    SHA256

    c780b98da2473a097bf00aec908a3d1e3d5b9f13fd644b184e79b10117451076

    SHA512

    339b2824c54445897231e988c748ddcee1f52bedef49b3acc859ad6b4531c03c8ff7c0aa7e3ff4c7da9654cae3ca090ac0b2e5bbc8524f414cf24859f04388c5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    93a8f23c60c21665c960ef782ebf9210

    SHA1

    8ef2c3617132e2a85502ba41bbb7533f10f8d1fd

    SHA256

    237fed1b6e5008632b5ace394e33413c8ac373d79745b2c8eccf276ef9757fb1

    SHA512

    4d7ef536824c0cd36f673dade9eb902bd81ec0a8d37b8e94f483204b1a4c07d6fcb494ef9234b45f55746170d2ab79a5c6ab3d0ea5db2ed7e5f4204310ade591

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    806e5d89400b9e673e10c6c8d5af961f

    SHA1

    35ddf28c2cf1f6897581ec6ccc47c0b63eb0035e

    SHA256

    d7d21c72e39cfeefbacd5f04d4e539bd48116be8ec1087e8c50816b8329ad7f8

    SHA512

    d1bfa1d319535172be3d0a2398ce8ddae4b91934df2d0fe02009c360ecf18c27af4cbcc50193dd8d5334aebdc6a0f01407f6135d242578d7de8e44a36a4e3924

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    0955e296aa0e8513264e27b9e017e2d6

    SHA1

    90481c000156066f1ba03f25eb89b9c90fb27dc0

    SHA256

    172a7b8f14ec5da5eeedf929346e7e6d92870292fb0bd1458aa0c89dc681744d

    SHA512

    dd620ce622a8090010b0e44f04dadb105054eea4dd10de05c177841161e01beefb8604bd4332764e7758c8d0fe32dc3f0bc9a7eb30ec63387cc60191c4317530

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    7a53e9a79f280639fc8ada7afa3ee361

    SHA1

    791c45f6a77becf17baff5558a2a1f2b51eb955f

    SHA256

    97b8ba103fe1af631fb73c5f35b8bfec097e419fce97c204c83c962eef26dee2

    SHA512

    4dd2d97cb381951010cda5235f766595fd2e369c77331bb999d570a68e73290173a7e065fe68ba5f29f85efbb1b17b6cfbd9fd2c07a5676b690099165656afa5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    ca55448590893ce0b324371e142ef767

    SHA1

    d001a028bdb4780a6d0144c25b1312c6f095c8dc

    SHA256

    51179e4726a727b9c80ec6b93e6a73d14edaa951f113c180471d776f7ce2b8fe

    SHA512

    afda112667eec6dea289687b0e9da850f0416c76b6099daddcf03baf19b599e41b78f8455e76c846578cdd7247aa1cbff9c0e3f42da76c2badc3ccaa524e5c5c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    735170d6ed4bd2f51d442af04a09b00a

    SHA1

    254deb90544d67dd5154dc460386091b927c544f

    SHA256

    88194c95c3dc98f56dba4309f40888b46cd2cc3a9a283d38bd5ab2dc8dedf2ff

    SHA512

    74ac69893bb99de03bfda12cd9f0a346099fcd9b75a9af86c87959a1a3e9143a5e27209bf44daee1dc9e5c351f9455016b5b9848c95719f7b83628d4306f0c50

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    4b07bffb3617e1d12736390282708f36

    SHA1

    8b4d0a8c7bee6545c23babc741e882ae157f1ee4

    SHA256

    09078031e1c6a47c4de43d2783d2a0358d56cffad15dc167a28b63de4de696f3

    SHA512

    e0e1a6fc757322bcbb7814247271b3994d9a36aa1623003084ca9ea9c369d06410ba291cc59f5151399f77372a4c457b979e6c3a4c112fa0b67081be8fb1d24a

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabDE9.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarDFB.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit