Overview

overview

3

Static

static

1

bda47ec68c...8.html

windows7-x64

3

bda47ec68c...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    139s
  • max time network
    123s
  • platform
    windows7_x64
  • resource
    win7-20240705-en
  • resource tags

    arch:x64arch:x86image:win7-20240705-enlocale:en-usos:windows7-x64system
  • submitted
    24/08/2024, 00:22

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    bda47ec68c1e0a5c44c87d1cbe58e3f4_JaffaCakes118.html

  • Size

    154KB

  • MD5

    bda47ec68c1e0a5c44c87d1cbe58e3f4

  • SHA1

    4b72251199acc60eb200c8ef271e70549cf5bbf2

  • SHA256

    fa4ddfabe07e0b17f50e15f19adfbf75c8ccad301e45b1b47a570b9ce711ff16

  • SHA512

    d60a93a364170de8f21f715373c22e9c73733f84d49dfdbbcd19638058efcf5299b2ef5bab456a5dfda1dff20ba4a9323ca8c0de186d19e39cca85006be09490

  • SSDEEP

    1536:SKJUoVDnCgIclJ9pvK0ayLi+rffMxqNisaQx4V5roEIfGJZN8qbV76EX1UP09wee:SKDT1xwyfkMY+BES09JXAnyrZalI+YQ

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 41 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\bda47ec68c1e0a5c44c87d1cbe58e3f4_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2460
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2460 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:3068

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    2a132aa6fd8ecae1c0dfe894fe6d4361

    SHA1

    8a833687c8aef63d8004e5dededc86e53ba5fc3d

    SHA256

    6a535e0ecea3050b93bef91c185ab8159e1aa4ddd880c4f3066cf29dc46dfb60

    SHA512

    e0c2e8f7a0185f12f52d511e91e21bbcee6b0f5f1a3a8f818221284c996237195385672e29cc53963eca6cad1e5ab4c9f4d7f17e1719b8a820221ad592ceeb78

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    7494e58b499a82212464afb16f59ca29

    SHA1

    d3ba7e9c4b600a4da2ae3f96bd25005784b5f153

    SHA256

    93733ab097d8a763a109263622d10b50240d1857e5e5794dcea8518d0a26ce98

    SHA512

    7cdd8af349cb0d9f78b6c69c1b6e3e3cbf4d7a372182787c1db8970bb0c8c4a0fad4c861f5ddb02d2aaafd5061177344221d6cc63f8966a6691149a17c5e0998

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    16a4a380dc21e74899c44772fbf79bd9

    SHA1

    fbad990e8645d4d898c0960cf10e391254b8d43a

    SHA256

    c8b8de007a91fc70e44784dda371ea75265a852d39dca6a18cb1292d3b1a1783

    SHA512

    5d52e23581fdc6dcb774495c69331cbb248f9bcd3ab153e638eb3ae2bfadcea1cab876bcf5e6bfc3f8a39056196e1d21ce404144465c54f21d310ff94cf6e0e8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    c0927462ed9da9326fab83b3b11d7bcb

    SHA1

    a0d7b263b654b5bdeb9a396f4c360505efe2c153

    SHA256

    9513aced33d355fe8bb9dfe52505901dadfc7d5a118323129344c97402f15f3e

    SHA512

    d396a8f99412f61e53629bb2c991ec6cc8a2c8a88837ece74b3d011a5d8453f105ff9f3436f1b8d3497e0d1bd5c91cf79c90cf6dd8d0b7d044e722f24f81fe56

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    9612de7de0730cc6e43573694b4a32e9

    SHA1

    59e02f1815e03b85e6cae7b62a68389a15b34a75

    SHA256

    50d4c65a26882ac032e8d170f797996fe0fdc73105b0486892c2c81ea9482e6f

    SHA512

    2aaa4c6b815b083dfb64e3054c52a8c3f4a7fc372904debc8becec2d397865a00524685d611cb5cf8bc85dcaf534e3fa3bcc812c14da160ac6ac04f8b3aa2f67

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    4b20bc41f9447db33eae0bc919326b25

    SHA1

    e62f030ffb6d38f9eeb002e7f416fbff7a8a5473

    SHA256

    e27d1323df419d7eb1d8b6c2db1c65f3142e0a31e6ea30c4113360c26b31d58b

    SHA512

    273e4cb12fae90660e31371d76d9aaae5ef4bab4b66facf170c1f1bfe7cd158bbcc0013266a528c0187663476fa0b0ef593b95a3c43dc33694868b562442d07d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    f32350572b1a871be10c22acf8efbf78

    SHA1

    8357d021f694240dc049de690d3c554d8fead987

    SHA256

    13099a0d6beb0a4578092bb3b51e990147439161639e06576127f55b40caf630

    SHA512

    6e29c78280540d346f9a137d7fde5e0cd1cfbc6f3b1335dd5fabb2b4beb103b130d044a01059695b77f55d4232b0d5d2054d05b1528f2a272825c2cb64776c39

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    00aec730989c875ab1f0a44a3360a7ba

    SHA1

    5071677ff71315345c8c9809e1453ee74b6f290b

    SHA256

    4b0e91976558dc0104f38abde34ebbe33876854e1cb9acaf09f3ad0af24840c1

    SHA512

    07831d31e3cc6fcd186de80771ead61956dc3001057369d57b1ac9f134c79fcc928f4cfad9ff77e4f0d975b41f93297ef2e3fd0fc20bb41c3916e5d1aaeb94fc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    9ec0b4eb1f7c1a8bda31b653ea5a1746

    SHA1

    274ff25bd1d77d50fdbba119865ecf1d065b5d6f

    SHA256

    ca117f047becbbb0e372b1241b8f4a6fd9493e3b39ce54793901adb5877c2f39

    SHA512

    e1a708f395a66aa520c5678590af4afd0f83e0267c6407d08e0814ade3ca2359a52fb71df2f83becf075ff2aa684bb5236d82a54de8927075f17b2eeabf587c7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    d9c951f49e7e3d3ccd7ccb2bbec3fed3

    SHA1

    095ce88280a898c5685e9dab98fba8715ca224f9

    SHA256

    d53cb57067be01ddff98cadd733614b6c0a0c537e6ba1adb1c9cb03917c43238

    SHA512

    c81dd2730b4ecd1d127a847379954a303421d39c5bfd90418a90cea65478022eb90a624a3e20e36cdf43bb7b7b68470d5cf2a42146e9676fad5f7248b1055c40

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    ab077d84944af9fe0f1a8a58c12051bf

    SHA1

    323765ded6e5cdac178cb213906a6946d686d6ac

    SHA256

    66159a60743528c4226327b6f4e1757021086f82fe1b49ff7b128aa16a5b6e48

    SHA512

    98f923daf8dfba19071568c0ffabb50e617620780b602712f34858a6a5c9e467012b4efa6b962d90ee003932d09fb937aa25b7fb8d8560b255c5337ce07103dd

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    8e90c1357d2ac01a4f0cc950a5a4a566

    SHA1

    3188858411f4503914be7528bc26c29900b0d427

    SHA256

    04ccff34a1be94a00186d683dba311fce294a32a510aeac990a8bd4ad38c60eb

    SHA512

    92fe080024c97182ddf3a43731e28e534270ba2fdf9ebb506166fea9284d4229c53f82c592b62a327d8226462e3c85f3934c43033fcc7ef736f1fda56e7d2ee1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    f76cd7f26f54efdd3fd501100193d978

    SHA1

    bc1c23c73e93689313f970da9c0599d8e7048c8e

    SHA256

    f6c3604c36729d30c742f020dc511419db65f836b4abc26d7b428fc5856081f2

    SHA512

    52562c5807d58ca5a4af097fce114636014a94a88bd8ad82ea08907d10241fd6ed8c2834ea51dd9f81336e866f44f1a5c5118105dbb9a61b43ec4ba528fc395e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    fdfdad31b690b26930f840fb6c5a76c8

    SHA1

    38e493aea0c64853a8b35c4ac333b77673c6d1ec

    SHA256

    01e2f787df338a3c512729e28396cf8fe99b1d1ad0fd11946ecbb554aa5ac86f

    SHA512

    85bd216e1b448a9f316f34bf074be01b316009cd25a487b90a0a7dbfa60d931f60242b6ae151446650c9add65b97b08639e09d292e944c8420787dbfc95188c9

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    9fe8582f7d8a51dba9a9f38f12b8d62e

    SHA1

    00576723619d724be725c1eb61a1a9181de6214f

    SHA256

    99008db0364a11acf4bdbee529f4b1b3e2ca78f2b6ce5f1d82bdbb59f334e499

    SHA512

    db601e1904b80e3d3f4e62398d4dc9aec7a8cf864cc617b13044484ac4b1c68b276e5b4785c92e0d33e78bda3662340b36d853cc62786ae16e5882f27bf05300

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    7ce9d2dc85faa1ae07999337d7e99a6e

    SHA1

    6a4cf6db41afe9a390b3558ddfb5929981549549

    SHA256

    c362bc763bca2d44c07240bded2ee1591a181528089c0e5a3c6c4529d0128745

    SHA512

    efc1eca64d6d945c08aaf934329d90b47517d06055db35a7efa53de24dc74f0bbeaa3250b4f27642b26d443709d4b363e1fd0a21cdb5ffdd3dd1d66fa906252d

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabFD26.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarFDD4.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit