Overview

overview

3

Static

static

1

be76ac4586...8.html

windows7-x64

3

be76ac4586...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    79s
  • max time network
    140s
  • platform
    windows7_x64
  • resource
    win7-20240708-en
  • resource tags

    arch:x64arch:x86image:win7-20240708-enlocale:en-usos:windows7-x64system
  • submitted
    24/08/2024, 11:07

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    be76ac45863a1669683d5c75f4f4ffbb_JaffaCakes118.html

  • Size

    36KB

  • MD5

    be76ac45863a1669683d5c75f4f4ffbb

  • SHA1

    766ef0d4ae6d5714d7b38beddf47790442a26724

  • SHA256

    6cc97074669dbf17f9daaba5fa3bf7506131583cc6e52f3cb0e3654678d49bea

  • SHA512

    bbe93099e28748a0589d3015e4fd11471a402f014b2f3dbfed25a6e58890cbeafef464ef024f4f2fc16e60c03e3c1b0beadecbdc9653131fb718ac6d8baf0433

  • SSDEEP

    768:zwx/MDTHT788hAR+ZPXxE1XnXrFLxNLlDNoPqkPTHlnkM3Gr6ThZOg6f9U56lLRP:Q/nbJxNVNufSM/P8+K

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\be76ac45863a1669683d5c75f4f4ffbb_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1092
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1092 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:1856

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\3C428B1A3E5F57D887EC4B864FAC5DCC
          Filesize

          914B

          MD5

          e4a68ac854ac5242460afd72481b2a44

          SHA1

          df3c24f9bfd666761b268073fe06d1cc8d4f82a4

          SHA256

          cb3ccbb76031e5e0138f8dd39a23f9de47ffc35e43c1144cea27d46a5ab1cb5f

          SHA512

          5622207e1ba285f172756f6019af92ac808ed63286e24dfecc1e79873fb5d140f1ceb7133f2476e89a5f75f711f9813a9fbb8fd5287f64adfdcc53b864f9bdc5

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\F0ACCF77CDCBFF39F6191887F6D2D357
          Filesize

          1KB

          MD5

          a266bb7dcc38a562631361bbf61dd11b

          SHA1

          3b1efd3a66ea28b16697394703a72ca340a05bd5

          SHA256

          df545bf919a2439c36983b54cdfc903dfa4f37d3996d8d84b4c31eec6f3c163e

          SHA512

          0da8ef4f8f6ed3d16d2bc8eb816b9e6e1345dfe2d91160196c47e6149a1d6aedaafadcefd66acdea7f72dcf0832770192ceac15b0c559c4ccc2c0e5581d5aefc

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\3C428B1A3E5F57D887EC4B864FAC5DCC
          Filesize

          252B

          MD5

          f0fb055c26ff5116db0ff5c135ade4ed

          SHA1

          f589880490d89bed51a77085ab1b4ada7d060e65

          SHA256

          8be99c2deafa21e2bc46ad0ea4a05af2db3a39f6cc2bc3d68598c506466f70c7

          SHA512

          68e667034b3e0fd12f7be4892006625fb3022e36092b2858899c295677aaa2901a226923f1bc9a82c879d02de33bc652bbd689b86e86c233798fac9a5657c218

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          c67579a99870fe72c7564d216076a4d4

          SHA1

          b5f3f2aa1e92779cf0032a80b831ac2d693ac692

          SHA256

          7da079b7b21f72432a320b281fecba956da8f14e10df5b3af8a8c10424e8755e

          SHA512

          83fbd42931aeec37416b87b613d813f5b9639e7e425c0f6f313da3000a6ae617b2c0e75e4c82364281895ffe4bfd9d6c1ca78844dca506ff398faf0894c04475

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          7bcb4089f37bdd26ecce0df32f06d1e7

          SHA1

          8e98db343f991f06d2c6bba0b036631eaa216f2f

          SHA256

          75652f3ae02f2ee0a57e6b1c75ae1c626a38e0aad410e90fd91e9ce33260ed91

          SHA512

          288c24e56b39bb8bcb39a22eacb964c8974011e2f0f786e9eb9544140a90fd6b542f43917f6e62e657487f0336dc80d1a3a4ad7c488c370cdfdd64bcab36a218

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          0dcbf166b2ffe34b7dbcd60c077b586e

          SHA1

          fdd880aa1b74921ac801987979741734f9340291

          SHA256

          b74451741601436d52027bd70768d59ffb283c0427a542d6b6e5993488ce7a50

          SHA512

          daeda38f0f2fda9c749d8892834b1989bdae24107e88db6f4aac846b071adda6ae0c676290d35031da2b587e04f9eeef0a7ee26a95de7871db3233bfd5bb4bc9

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          6af6dc4b4f89d99bd69463db4135ef44

          SHA1

          50f266f770f1464b4695fe0ce4f043ba01203602

          SHA256

          1dd451ffb931d355fbff6d82b43b926fbba888f7bb70df9e81492a0184808366

          SHA512

          d775a5eb3fba790064f91c77ed2c507a7c847065c70fce7c2138d4520f9b65ae3ed28c463cb8a5f6cbdc88fb3470e72ba3f9beabe19c50d9f5f3e297c0857fe5

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          2da8e10875c97efddae927ac5e217c81

          SHA1

          ab8bb9ff43695614ebc3c73229d7b3354233ec7f

          SHA256

          573c949ce9a34e4d6852dd277c60966976491451ff1be4efd0032354767ddc33

          SHA512

          c2d4756ce44ddb4efa06ccdf3787b7ea7628408c8e3f5ad27f593355a8d848a24e1de97e9a754bf59d2f97979c7af2c75dcc133d8213edaccc74da4ee8696cbc

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          0a8e407841301128aa99bf3c1e632916

          SHA1

          851583e60895570f175ac911a6b1ca6fb28bf674

          SHA256

          c9f8f460abdeffc047bc885e885cb82ad7c5728f5f4cfdb25992efb627f024ea

          SHA512

          0387c5d8188e43f3588af694ca91fca63a8e816b7af47cb3bb6b869f46ba045d7defbf5ae155bca470e48399408d3f3e377a1ff4968b0e7881cd85adf58eda6c

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          bd7f47934668651e6e49552b049c5c11

          SHA1

          7e6d933a096425fff30c416c689bed2f509c1204

          SHA256

          ee6641f906e2319b57932e4c1a0c2e0446d312a2b173659a0506ed5642553de6

          SHA512

          e17b590ef9394c6ab74c0fee7d359ebee04990869f3eb789363fbbda1a3f57146e57a47d26b3f71d3aae592f004693e3d842e4a8e2ca65e4ffc38c40ad88a037

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          504cc3e55fd93d2e92c56031678baade

          SHA1

          43a7c535c4e183ff93b8e8cd7c7a7d6ed781848a

          SHA256

          bad9e01b287401fb86a70c235b9bde9b87c6bf284b753b28f1a4d251e9f3519b

          SHA512

          8525302c6022fe966e203c9d1e375df94b098715be89184a76a69a9c673762811c9c84d20057d4c9f7bb7f26d186e29e441c39913d4471ec3613c7eed9abaf4b

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          cfebb5df5ed433980a19d030ead5b8e7

          SHA1

          ed748ed23193b8d94bf9683c01c7ffceed772028

          SHA256

          15bd052b157472ea4d8e587937f142a2de3c4aedb5f3cc8ce8349f91a1845051

          SHA512

          2a9643ce1437b981f3c748a3b0784521c0256f1d57af1ecc6c5d7cf5f6c97067e771f9145979808ef4d01e0eaaafeac88208393d5b57544539b98b463a577994

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          cd9d5c1c29e63fd1ef461560fc8b87c3

          SHA1

          5572cd22f84ce740984111ffd0301ad3552ae61c

          SHA256

          759d12fe9f101867cd8688ecdd8f75ef00bd68e84eedd32a39a8407cc59e84a5

          SHA512

          55ffd90e05b4215868eab9f2428b2caad787dfc78a9d2c7721d6b9290e909eeacac8a5c692820e208d123b2942aa8ca2ee298bf9d0d660510ff5b313d19fba31

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F0ACCF77CDCBFF39F6191887F6D2D357
          Filesize

          242B

          MD5

          59f94a52887398c44959f02ce8c228b0

          SHA1

          21ac22f2daf0ee1c1e4f4ea88af593cd9ef3f82e

          SHA256

          8eaeb2243d7e16a32bae155397d98268139ea1a7331f4c81e4c2ec8c1b2cd26c

          SHA512

          3ff4026c36388ee0c12144aab5ae183bc8723fe6023a7b833607869c16fb7bdc87f28bfba0a38cb65aeefb61ce8f4a8d14f98674ba3923fbfb1fef823a533018

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\CabA0C5.tmp
          Filesize

          70KB

          MD5

          49aebf8cbd62d92ac215b2923fb1b9f5

          SHA1

          1723be06719828dda65ad804298d0431f6aff976

          SHA256

          b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

          SHA512

          bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\TarA0C7.tmp
          Filesize

          181KB

          MD5

          4ea6026cf93ec6338144661bf1202cd1

          SHA1

          a1dec9044f750ad887935a01430bf49322fbdcb7

          SHA256

          8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

          SHA512

          6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

          Download Submit