Overview

overview

3

Static

static

1

b9cafd09a7...8.html

windows7-x64

3

b9cafd09a7...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    109s
  • max time network
    146s
  • platform
    windows7_x64
  • resource
    win7-20240729-en
  • resource tags

    arch:x64arch:x86image:win7-20240729-enlocale:en-usos:windows7-x64system
  • submitted
    23/08/2024, 01:15

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    b9cafd09a75a485a9fc8e6858e237b29_JaffaCakes118.html

  • Size

    26KB

  • MD5

    b9cafd09a75a485a9fc8e6858e237b29

  • SHA1

    ec198b505d6abf08c996c7c390ca340b6e478bd3

  • SHA256

    5b1d7ed79e05822b3110ae0b2e77898a36a292ef982509b3fd8a526a8cb42648

  • SHA512

    8d8761e5462dc6028899e92482ee01776003474ca73c77b37dc670b1de575b5894b4b073234d73284bb128d698a173e1ed8f19d0313fbae9269134dd51e11a5d

  • SSDEEP

    384:HglIcotg4ZR5GTH+1PDkStz+9ucDTGfJXcCM/gbSAguLZ:zR5TcdgOAxLZ

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\b9cafd09a75a485a9fc8e6858e237b29_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1316
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1316 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2072

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          be3964ac17eb1d271a60a0cecd469753

          SHA1

          d2ff853e19e07137ed8c74f37eba541ebd9374c2

          SHA256

          5c81cf05170b38040e3b6eefd18a3382cca0de03a6a6be7403dc83ba32599f1f

          SHA512

          e5d1d885e3c5594fde4c65f3bd3f52687082acd7b282f97104340339cf9c6d59c51fdef9ab4308967b668721decfe9b9d2d34c7b0406935795f5c99e497b4294

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          780e05485d5b14be6b193c703789a197

          SHA1

          9c3762f118f38b6ec0cb9ea074ccfc160cfc6a8b

          SHA256

          9360bc11c1ac74ae4390cafb845ab48192a4265c46ac1fac23e22d67d74c3857

          SHA512

          162cce3942330a95c7ec130ebe36a3282dd3da309b5f89208133655b33346a539f937483cbef38cf554396b71793262f1e96250a922b4847c5fc867c82e51282

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          f1ccf6bad98d57663b0d51031b8bb3b2

          SHA1

          38f483d74602c99d2fe5a25d64c280a4cfc29b78

          SHA256

          1c23fc2667e3a6b65dff2784b191e18f32c27eff1d6f3f4799800d8ca29f3b6c

          SHA512

          111a939571678fc67717fd10e5f211c1cd67fe04317fee97491d469af659f7e80de1dc9b1279435ad8f1c1cdd030b09b890e430a54e33583ae57f1810229c342

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          e4c193ffa44ccec7a742129c8d55ebde

          SHA1

          91f7d1d8c1a68131191eead3b2df310d724f2b13

          SHA256

          802cf5a56601013548c28c45656af7af64c1e85ec35c61d3be77267e4c84342a

          SHA512

          53778aa98fdd3ce459f4fe3bae2698f01dfa8b0be58befb14b50e1117b8572881b3f2040ebc7929289c93db886880dcd7ce338016e662cdd98e4b104c51a135a

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          8b5024a777f7a3789b393035e5c2aaa6

          SHA1

          611051be4c8c55fea1143c333fde2a49c10fe588

          SHA256

          85d050f2e4d1f780f7e42769c952ba91406d94bd53cb92bbf7518eda37e804d3

          SHA512

          5d2c8a9247a7863fddd32d533db2e2e15363433c293ee9214d9dc255a14df5952e0978e12c6b741e88985a6ff291692089adae03206903919578959b27aebed0

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          a0f0b5620d41abd5f0cc068ac9d06387

          SHA1

          8cf71419dce4a6a3744e93d61fd2447050cfb727

          SHA256

          40b9dedb09d58ddd97840c5461301d7a57dcd7523877e0258bff11b7d85b87ac

          SHA512

          2391b86a8d234c9e50e9e04525a0c1db149d8e3b1684c69804a4851c64185ce2bd4a795e818bbeda8ef5e74abd7945e9c90dad3fd3ca7f127f32fc858f42c4f4

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          9c7d0355428d8d0ba4f267bab0951646

          SHA1

          7c4b2ae172a015a191be1bf0e47f5315ad583519

          SHA256

          7e63f18b77bef9170de8f0b38c35cfe45e7f5606eae1387d187d7abb7072fbcd

          SHA512

          6c2488c07743b3f0655e7b791716010848d0d15b4ea4b57aa8ad65965d699c2a05c40e83388f1e5fa4f6e8d7f4bbeb1c200a325eec9268c94319718fee479c00

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          da04afe70b8f8dd05ce4d4395a0020bf

          SHA1

          41ed62cb6f8599fdf42a581b3f6729d5507bfab8

          SHA256

          6fa51af7ead3b4b5415f16c190f022d3d3f690b18eb8e129d542f9896e478eaa

          SHA512

          27c70f6948046a233921c8e479190cabd1bf030010cdfcc7759220aa654ecc365b071c189261e441eb1a03cf9b3510db73a2e62516761816eff938e0b1aa956b

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          e3b66f04bbb27d365c9813f82f2f1b2e

          SHA1

          ae2d282b7ef952099246e322d3ced81302a66f77

          SHA256

          d76f8b897c345f79b80d4af4da25db807d38b8a262efa4deb89fb460cb51e5b5

          SHA512

          8609f11ba65d63b7af3f89d9873329eb137c7144a5724cb656ad8e81a3c0e241aa5ff34fbc2f22805139a342362099989873d6dd7a26c6ed3a5ba77613ad52d3

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          4577fefc4b9e68558f24952f2f0b7202

          SHA1

          19f151a87362d0a5130e0b6a988ca538b70930e1

          SHA256

          4e55a39482f4f3b7767c12ba8ab333259826b78b68b1665bc7690b820cd53410

          SHA512

          1b32bee349fed22b07618e2c1af95346432c4307e8f33ffd566a1ea484df4fa100edf0e30e7cca8f2a74deae903d99a86de07016654ece0d2a4dbae0af25507a

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          8118bf810266df9de9a083955ab7a53a

          SHA1

          ac44a25f15bc3b5765a61ece22d68351af69da11

          SHA256

          baa0ba4cb81d4a071f6ca521ef9f3faa0e9ed22b9337ccd2b0644167c55413a1

          SHA512

          07eccae1ca299fceed06d625c586b2bf2b1ff30fb700160abfd865aed011859d70ea744ef0aa448584f3953947764e06efd76461a737b4e9cc41ecf3c234688f

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          1fb7ba41c3c979017542e8e7b7ea549d

          SHA1

          5731e22dc97d9a1928a51a58e8a8f9f2d758ad18

          SHA256

          18254d883c1ba1a882b13d2460f50703c077541f75d9bc5071888e58c372fca5

          SHA512

          2d16575672a8440062cfe8a4ff1f3d35e7da3256f7a06baca93cfcbe1906f065bfac22f46aa5ca29fd3091d7c407d7c0666947fdc6fd948d0856d63d4d6deb74

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          be8255579d823e0c6c6abc42046f0246

          SHA1

          dfe9924271e78b1da12cd8dcee2eace9345aa037

          SHA256

          47d1edc09c2a2af50f083e5416db3a222cbf2c3be99df96b41c568be2c2a139d

          SHA512

          3bbf703cbeb5000ee7b13cd4c2080e3d3e63c16bec943ee80b7558a48d6d211a5b1017b4dd8dce1721748d2e76aa333e053ea2f78add1c8630e36063e6a86514

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          4bd888ff065d1efded9d69b7d152231b

          SHA1

          ff204c2766cca338b1c6b47a0e29921359c03162

          SHA256

          2febce30f62d0477e36a9c98e9e79adad8506c6513038eedf41bd3f71837b7d3

          SHA512

          b5bf22924fb98945092faa3036d0157196616931723083a4c0a4a52bbb63e45021e40b903ff4537a5f1895f0d196d171f68de3fc44d62a79bbfbbf7b6c97b75c

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          5a438c8ca0d83a37c5d44ab27dce1e92

          SHA1

          050f12434d841e47bb50bfc937bf04db35323f07

          SHA256

          21c3ed5951dbddb9711c0da17f208d0d37928e80ca70d400d29fdf5956072520

          SHA512

          5f40b8c2173043891c8540b473cd48b7b47fddc0f42d56a9073ecccd2a7fe5f84cd25e9763798a195c2f7d73a799c88a839940bc68d2102ce9de5786ee719b2e

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          49cab561c67ba04505efbfb307f1e610

          SHA1

          777d1e83c0f8b9f21b7968c4a06e6a0e411c08d7

          SHA256

          a8e4957eb98a7301b9c8c126d22a8a4ada73de245dc7bb791f464d1b5488b952

          SHA512

          79de46968ba5eb02ba2fc94393b549a952b8ae5aae12a85fecf13e218fcedc934a75bd7d72372dac9ee72068c30fd6bb5c7348de7b35671b56bbe20c1cbb9e10

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          1777d1e3cf0c991efbec26b0e6c24e72

          SHA1

          f350605e2eb5951bbde826416da82f898376fb7c

          SHA256

          0215d0994810dc0d71a5d0cf77c120e941d95632a2eaa089d8ccf66d5775b886

          SHA512

          db92023d84a86486b960cea0e2b09f0576b575b92366c7fe7422a894d441c7f875154a8379d32e576e68175ee70875341b594334606e35ac02c7abd6ceb51a80

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          864d85bdafc4f8f222d3e0f789867fb1

          SHA1

          ff636e4d6622bdf6af2f52df25ef4a689af523cc

          SHA256

          ed6bafab63e3497480a3e2196f8a7d184ce4d6e3b9d122c7c091b92d091968da

          SHA512

          c017957895e6048ec0fb5c0c0844a90034f16da87a082e3d7b7071d0db5f7df2049ff3b9236f63618d9166255df3ad8ff5b7129125146dd4cad540ecbe8860f1

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          97dd46965f18d8c69dbd302ecae57216

          SHA1

          f96e98805c10c3958130aa2d311305aa8d9fac9f

          SHA256

          4bca81013334c58bf11d93e8ec2be360c660150539aef7db8d1e534fe747150f

          SHA512

          aade79428132bf16f8e8b44c72cd616cc5a1d662b315b04dd7932d3d836f0963ca1473f21d225a3fe5d98303100301bdf02920fb90fe39a007efbe674f02dc5b

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\Cab5F80.tmp
          Filesize

          70KB

          MD5

          49aebf8cbd62d92ac215b2923fb1b9f5

          SHA1

          1723be06719828dda65ad804298d0431f6aff976

          SHA256

          b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

          SHA512

          bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\Tar6000.tmp
          Filesize

          181KB

          MD5

          4ea6026cf93ec6338144661bf1202cd1

          SHA1

          a1dec9044f750ad887935a01430bf49322fbdcb7

          SHA256

          8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

          SHA512

          6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

          Download Submit