Overview

overview

3

Static

static

1

b9f4b2888f...8.html

windows7-x64

3

b9f4b2888f...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    122s
  • max time network
    127s
  • platform
    windows7_x64
  • resource
    win7-20240704-en
  • resource tags

    arch:x64arch:x86image:win7-20240704-enlocale:en-usos:windows7-x64system
  • submitted
    23-08-2024 02:09

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    b9f4b2888f8fe73ffd84720aedc8d3e9_JaffaCakes118.html

  • Size

    11KB

  • MD5

    b9f4b2888f8fe73ffd84720aedc8d3e9

  • SHA1

    4ebcac4d337e3b133811fb28ecb1ee9fb3940872

  • SHA256

    5bce23ffebe4792ba8243c47ae4d4403ecc57f657cfbf744d06508ff38b63fd6

  • SHA512

    075b3bd60be3e77d23b74afb04b4124bc07600a9b0915d4931f52ba2cfe6306760dd878d99020cb8b3f4bcb48eda33850db286cc8e4d5e479eacf5fb48468294

  • SSDEEP

    192:2ValIsr0r57M4hxasT8Ib/w1wvqa1sLOXuBuLbdU8d:salIcIQ4hxaGb/ggsLOXguLZ

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\b9f4b2888f8fe73ffd84720aedc8d3e9_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2112
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2112 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2684

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    56fa7397ddb852dbb87a50810d523b4c

    SHA1

    3d094db91fc7b15949ea86ccd51cfcffd5227fd0

    SHA256

    ba92cf8bc554782bb226f070ee24860a0c2c8fdc8190787079dc179649fd0bf7

    SHA512

    a255757f0e1b610cf33e2f1e998208707ea6a87dad01567d6348a5713edf7615d40a1d9865a72f0313f93603238db059a4c0491c73c6b5068f75e7c2cf554ba2

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    53d8cbc167acb50ea0858b5aca1af478

    SHA1

    f1cb7818e4517f68bc2775964b7ba1963dded615

    SHA256

    5ab22337b1fdac3c63e78bcfa134ba69f24de5e44089db30213a28aa75b71f7f

    SHA512

    aca9f348e9fd5e29bf99216bae0d7d29fd5dfef507f86bba0c22b2f45f76d04e5c3bf2a883f67f2c2f6d68c6efe05990dd407235dd18760d43fcdf2f29dbf47f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    fee4c609f03cf1a75e0dcd2fa6343603

    SHA1

    a3f6b43c9ef2f5219f92c591a3a03aa6607db2ff

    SHA256

    3157bfff1b300d4e10b1a6c0652055cd76425405f329765b4114ea430e1fe5d4

    SHA512

    7d4b3c9cb5819ac6a99e87bdf51c5f37605cb6498a891bf27448f1a1f332604ff438d0edb36b40e00f157ca4179056485d5d50b844f022b17d405f3e35187e0a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    d56c219874d262f8f6638a90fb853a2a

    SHA1

    e8608cdf153c58a428774e7d5cc3e70912c90dd2

    SHA256

    c68e77527d003b2a7a4cba5e897a6fb5445694e9bed51b336440b3f18fd677f5

    SHA512

    2f6474ced7b0655b37a4fc923a47dc2ccf0a1af8bd9ecfee3c238be1896a755741419557710e173f58db20ddf724f40b7efd2014b50d3b39e4e5e3360bd224d9

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    67bf769cdb457ce2d8013be71b2f6f2e

    SHA1

    abc418a9393cc51f2c8d0248307399870deabc8c

    SHA256

    b655130f65bbd791b5fdd578f74bc49a2d668ff3d8094424c23930ee416e2509

    SHA512

    d9a5628fc8a57396738433fbd9da363aa30f8964ca8aeffc01095bb98a505deb5f8a3c54a93b2a0dcfc61a9fa5e2a3c86d2ed71cdb281d15ae6042739d7aced8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    8d632c506dc5d7df5595bb645159964c

    SHA1

    c3b64be849316a38a64e904f415bb576a93b0fac

    SHA256

    afee66ed47f3b45868b8e5a18c9ab810635f08d19b2466c0a15a318d42c992df

    SHA512

    bc0d7fbd12a08d14137628fee75f1af7dd86167a77fa1d1e938fd7e237fe465cee2013bfa39b9244d40748b21418f7cf53286a9edc19f2fb71d14e5c148f2079

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    e7b8f93a866a52ac78d838b660b56d6f

    SHA1

    d264c2b06b102749d86b3c6663f0a309747d85fc

    SHA256

    f2947d8ef711884df84b0add3aef5db9cb4f8ec3334d6d6baa1fd0c8e16d9dce

    SHA512

    8e11b37c2380fb5628d9e851786302744774930143a5bb1565ffa4a29f3a5e4a832a0fe67bfe47c1eecafdeff8fd100dfbe6c971f6081b133036a6e0cdf1481d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    0aa606058e3f8b0157021b1d31cf5931

    SHA1

    edcfe823c94fedc227174598148d5bd8d4e79547

    SHA256

    9089060b13f4a54c6bcc76d2016fca3d029a97c5fdf51ae08de890ae9b382df3

    SHA512

    36c302644a768f70df2701fcfff5dcb37cadd8334d99f907f83e7b97344c5ab6b3971214009cfcbe75a49cec9a8c892552ba18ec7fd27e1657711b6a8ba0d43b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    a9c057128d6210118d042010981ee6e6

    SHA1

    1687e348acf673c119a3b459b1cb14bb9b05db82

    SHA256

    072e666a57b02ba0a0b362995f8ab78c629bf847299c624e61560c7130596a79

    SHA512

    c4d86b1281a52f296bbdb9567f18aa707983197416de4d4104515c71073071a3af1a87f3b0b586d6afb0d433523065545e65bac869deb4150fa9d868eacc3a13

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    d5a79e167a0ff2cf17382286984a0a35

    SHA1

    bdd60c4fa066f1d7e8112448e344d3b88b4f78f5

    SHA256

    79c78a57ef077ce2271cef3a13ce0501d1c23415924e2e4cda48412bf6f6429c

    SHA512

    8cf260da5ed9dd63a14bd86b30094bc36974d79df57853faf6b296a5e1836b5aff474e8baa9e7ef851884116fcaee77239adc97e4c356a07b7084a230e9ab14d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    0c92364dc8743a9d65d580ab8f360729

    SHA1

    4d7a014501a403d716d8300895c877f0ba215916

    SHA256

    fd7002b647a2f5a86adb7238b7406b64dacdbdaea4f5751b55d0c9126807e83b

    SHA512

    c56e895e2b5702345c24c3d67bb55eb8f545555e50618ef540e8b79b548ba7b2fbd7d4b9076fb3a796aec64a0705fcde3e181910f10683ae53e8f4d803b25bf3

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    a190629fa37b7fa13166b3e0b4959c07

    SHA1

    2c55f6b1f2430d41565797bb9586dfbe6bbb5a99

    SHA256

    690844377ca4396a280bf5c92eb9a3babaec1408bdecc9fd1f8c86cd0052720c

    SHA512

    086146faf32017a9fb49c1ad7e0695b6a28a952d97bcbbab2cefba89ed0db14c82e11ecea5487586cfba83de2e85033fe2c074a7db1ceb7a11a88d9be8eca1fe

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    399622a5377057d920a915a036575ac8

    SHA1

    e7d33b90b73af9fe7b0cb5385642884fdc50df06

    SHA256

    1da36997e00ba9785bac6f8d97d720fd24d8ad8f7b6ed50a6f5d13771d469793

    SHA512

    9f11bf40ae865a6b5acf357b66b8acd11f6cad55198a77614de0a23c7f2587887a159972e3c89fbda01ddccfb8842df70c7f3b270e020c599f5c370e0f58c8b2

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    11100be30a44955b9be177dcb8e7ce2d

    SHA1

    d6b4fd964a6b3bfd5f7449279a25c36a2b6d2c1d

    SHA256

    2df7db7ae72b2b389f1df30f8110f9ab416bd77edba5106f16fddb15f7645b4b

    SHA512

    8d593d375fcef42a857a814b31dcc67f4475b40f89267bc0614577a5d44fa3f4fe9258e0d661768b947f4a125fd2bed2f7725e2971164b4dea4908efee932007

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    3e35d9de2e86e2f6c542d2c22a2f7682

    SHA1

    0767710bb8494c060ab5dc9424dabf6934d58bab

    SHA256

    5017b29b3e4f1cac82f6c867f6e78fe9dfd34fd647215c351bb664efe821feb1

    SHA512

    c51f0efd0b8d8987db7203f6a52b7ae91dc87925b9fd91d268f2e4b1d7a526e9fa6a425f683483d954a81a1efc0b7d3fa37e47835bfe0c4a08258dd7cf0fc8be

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    d81e7069d131889076126cb354df8684

    SHA1

    39efc269f213b5ffbe3235566d02ea5347e5d992

    SHA256

    2193080a1099727e26ddd54e80302a62442c866cded5d5fce938540f58f042c9

    SHA512

    eee3df11517b825c49ae4d96eb78acfa414a84617751c1098d8a1b642696feefa09c94723e61e7bd7aa87f4161520b5849cd8400fe993009b6a4957c87afe2a4

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    ce17e2149fca21cb101ac98e2c889d07

    SHA1

    858253736fca3006e1ac8af1a3c9a0a748df4a7b

    SHA256

    dc454cfc22db8fbfd9ca7582218fbc6247386f9080a5cfbf3a10f61879bddbba

    SHA512

    47143e160f0495849e3240f3c04ac2a38411924051614e65fc997cdb9ae1a538d549a0925fa81d3f8e25608d621a420fc0b721fb8bd3dbfded68921afd092ded

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabABAB.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarAC2D.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit