Overview

overview

3

Static

static

1

bb7d262afb...8.html

windows7-x64

3

bb7d262afb...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    137s
  • max time network
    130s
  • platform
    windows7_x64
  • resource
    win7-20240704-en
  • resource tags

    arch:x64arch:x86image:win7-20240704-enlocale:en-usos:windows7-x64system
  • submitted
    23/08/2024, 11:12

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    bb7d262afbe56259236de2447088dd89_JaffaCakes118.html

  • Size

    53KB

  • MD5

    bb7d262afbe56259236de2447088dd89

  • SHA1

    3396165efc441fd6a638981d4580fc62a602fdb0

  • SHA256

    c858023eb9fa30f16eb71b8f8a51d3bdcddbd04abc73476064dc4d5a7befb36a

  • SHA512

    e3872e6f923521036155a25ae0a388d86ef9904257ec69fae7cf6470ba71d73770ff086063658c345e024f75f9a5f37f31dc04d047b022c46868723a373dbbc5

  • SSDEEP

    1536:CkgUiIakTqGivi+PyUXrunlYJ63Nj+q5VyvR0w2AzTICbbvoy/t9M/dNwIUTDmDL:CkgUiIakTqGivi+PyUXrunlYJ63Nj+qb

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\bb7d262afbe56259236de2447088dd89_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1924
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1924 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2404

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    feadb4e8b0b65707480cd5cee1039d32

    SHA1

    6863a907b75597e6525ea00ca3a0ca5746e32e1c

    SHA256

    2b165363409ebd1863842d2962041cf312e9ef7dd1cfb7eeb15feb8cec6c87d2

    SHA512

    b2a3aa2fe592d543d55916dcc181bc6c2aa8a0e97aa34e39b3b47a4646b11964a6cc762c3223eb60b8627031acaec25287fb358f731bfa553d18cd5c2f276ad4

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    5cc29e0dac67ae2a72325edad2d27996

    SHA1

    9d470852d373279f118539a4da3f5d482f120031

    SHA256

    e28a11c142fdea3991883198d68f4c6c7eaf6f71d9a9794779280fa6682107a2

    SHA512

    322d9336981cd25f45e55798dfd5f899c351e6db5108561501f71e62693af6bdef3bb76c594d5a70461cc6a57abf9e5566388fd8e5d44353d821af00221531b4

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    006c06af875e985b017ce7a1cf7ea6ab

    SHA1

    7be5da34a539b0fedc794314794fb04acc355382

    SHA256

    9505fe2a2c89d2062af851ed73a4e6b90c4a165c0f472abbb1a96dbccb96e9f6

    SHA512

    fb1b3d98c6fcd810b6e9b1fd4cb081a84ddff968e9720bf26a9479ff9fd11c714bf9f0fbfd44ce26529f8e77f2a2e73f8f3a4098923ae590b18d384e2f6c0319

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    112efb19ff6f8e3ea3eabb7aa2d0f559

    SHA1

    b256122a5f5a7c2556f775be38408d54f2673b7c

    SHA256

    cf3c62bf7a953a70173d5812185c6503470c497cf841c06d4fe44b65e3961445

    SHA512

    c01bad3199885cdf2c5781a04fae0df56968e4a405b4d9478da84f9a5cb537430208216f30881e4426f49be206d9cb92a2f4f1074ca4079315d0afc5d028e1d3

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    452db538299dd5c6c49c83ee17764bfc

    SHA1

    47d039ef59a8a8e926033e142b17b67a6c2c37b8

    SHA256

    e73cfd2d24d66f53a4ecc0a70a1cc5671a2b69df5c6bb05a12461ca6b9f4db61

    SHA512

    0e2831480d14ecf53f592f155f5a9d33ae84528ae5ad0b6b38bb86f4b616fec14acd561c978c4becefd278f50401c9850c109bf4a2a7ce1b46de44438e72a4dd

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    0d788b6ea325ab6b6695b9f0a87868b3

    SHA1

    8df1e9a32fde2655583ef16e1bbafa93842e34d9

    SHA256

    95bb9fd5fd531533272a0e44c7f5aafbc9f9e33e675d896fc9d3eb2fbd75a5ee

    SHA512

    85fa537fcb7256e01ddc4bd4572818063a570f7a5ea741555448c8f3a4f5658e14a273265aff8e14837b1ec3de0ea4f1866ba58f9f946c5f9611a519294536a0

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    45c1aca8b181d720331df07d16765345

    SHA1

    e0378c3aa7aadbeced1f564a63de0401b0596e26

    SHA256

    60cf0594ecadad9bd2911409eca385349b04305458410c15b1f1b4b787c48ef7

    SHA512

    d008b44c849ae50409351269e3a798392101842a9e0dacfab27ad66cf2c4f709974928abf3db45c6f00e90b5ae4af40c5c46f4926e68bfc5e63865c03e373d0b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    23b02bb29b2cf72d251ec8500a1c970e

    SHA1

    fc64be9c97c3e839f61b54e10c6097065dcd1e56

    SHA256

    7e03171ab90ceebcb479d8a0de5744a016539ddba8646f2f4ba369c234f0733b

    SHA512

    aa1d588aa8af493e9b2456f1e09bab99baa232b1318b7e5c215a2bc70b28dbecda12e2f7b3e0a8117e600db93a4e1470ccfef0afe80065b18b267eb7ab7360f8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    7b17de663dbc41c434259d182650b07c

    SHA1

    99c35f764618c546760e450383f0760a2a30f60f

    SHA256

    6825dc8c86ba78b9c31a5a4400988dcab777fd217009416cc4618dbd86a5c1fd

    SHA512

    57937c61e5bf127415a7ca563fa4f0bb3378bf65478243eedfae020e45e6bbaa5a3ef5a75f46760c758e335ce9037b225c1d6217625f931ec6aca1544031018e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    c5062660372e080142e0244b444a36db

    SHA1

    7d5fa8a62c3f0f4d241e71acfcd94c32c4816166

    SHA256

    70b9807f8a793d6575358cac6ea8caf290a5ca79fd083f96c8a8333c4dbb7b3d

    SHA512

    d19468117012af28450d22f6d5fde49aea1109374529cf0af4b897da6191cac0716d394da5ff3b987539b0af320f310bf2271c2789d7aaa51a97653b07d77b0f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    192cfbe799b8c7c652753b96b2d2a80c

    SHA1

    892868adcf89b4f1b17f33ad5e5ce59e61dd06e4

    SHA256

    437c980f545c47c4d59cc7957ce60a557c98b8fbe8bc7bb842a4990fdb3081bd

    SHA512

    7e1552327c5883b245e7bab89317116800eef61794bf086a547f8d3e2811149420001dd888f2275134eb7c6f2f4849520e80da625d3c31fbda398981c74595f4

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    0f1b4146dcf9d107e79ed3e8249476f0

    SHA1

    c1eba60b3085bd73eb7bcb0ac9b3f127472d404a

    SHA256

    2f5374ea243fbab1835d1e50e68a479e967bd26ad9136b798cdae93c97f94bde

    SHA512

    c38bd9034ed26bd860f4953f4d0d32a0434c0400b89b55a61b8729070fa278f205d079d770e308138fc8987e6c1ffcdbfe81464a1ccd4b1b5ac11850363f3e5f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    f32ecdd56cd90bcbb22fadbf15dc6994

    SHA1

    7193752598a73318cbe36fdadcf0649a86030983

    SHA256

    9fab4d1421822eafcab7186f1849de1b1fe6bc49775798a7dd7c0bfa2d494e41

    SHA512

    f9c5cdd11ca3a887373c6bcc7ca63e1f78fe17fc04edfd40193bde988bfa4211d94ef33df9c31cb802836ce188da01201c6a21585d3ed9ae465cc239532e09ee

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    e8f28572845dc2186a4340a769195648

    SHA1

    bf9acede89274fb9a79c425c6e7a3666b9b3a6fe

    SHA256

    c316b21183d54b32bfb1a6ee2612d47abe6860ea835976b493ca49abcd64aa8b

    SHA512

    ddf692f95d2f7a78956c2acbec3ee6ba115820567b720561f648fa6e228a9992cc960ebae670cc241f838a8d3ab8440a0e4ba032cc457098baf7cee262d28725

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    35e39b302188c36c5316e5d8bf351b24

    SHA1

    f2e193b8290fc40d1f51760109d759c5e7abdbb4

    SHA256

    7ffe613619b2383f03944b188e4922debb047ba75cf56aecca31b664ec903ad9

    SHA512

    5d347a248afd9f84ca3b9efe9677118b0abf31526bad14eb1a71286394729a2c41c43bb77e26fa5c5d31431dcca7523c623a10aa1817fa248de0c78d8034c579

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    dd2e4b9f495d59719ca48345267a8c85

    SHA1

    075260e4f730ef63fe79bd4dd16a4d669aede1d9

    SHA256

    eab23c6907cfb5f1d96ab8a46cdfdd8b20dd824614271c2b32779f9ab6f24cdc

    SHA512

    63e75c13f7832ad84efa5ad84e2e0c4d2a512ea2270e6a4bfb80849b7a9d03ad6d368d34fa07e3dc2e9f51d59191dfdff80ade75ac27734d908080ff69996b12

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    fbb8fe51df0b7578b348f21b5399582c

    SHA1

    94306259e83d33fc665df2f6e2989ddd77dda5f5

    SHA256

    0aad971729a9e342ee54b6bf156a6851dd140d67800471bd5edee61cd9b92ece

    SHA512

    15e3bb61d5945c0cdc59bf2a8d88fe41d3ba58c5516292e53dbc0caa94982fc158d9ea826b0672b260004945bef38d5f54724609862fa1d772b3294242bd3090

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\2LF9I1AK\upshrink[1].htm
    Filesize

    706B

    MD5

    67f3a5933c17b3ab044826d3927d0ba9

    SHA1

    5957076d09bacaa6db8ddc832b4fd87ed8f05f8a

    SHA256

    97e800f4836b7030dd58fe6296294b7ff5ef1b5eb0e88353f230ea1608d2bb64

    SHA512

    03ba224055ffdbf32b7eea30c764dc18d66cc6d8707dc5fafab74e155b0bb3d4d691c5788b033a68f05299547297125122778fa7e3252f93e7343d918936643e

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabAF25.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarAFD5.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit