Overview

overview

3

Static

static

1

c1dc036fe5...8.html

windows7-x64

3

c1dc036fe5...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    127s
  • max time network
    132s
  • platform
    windows7_x64
  • resource
    win7-20240708-en
  • resource tags

    arch:x64arch:x86image:win7-20240708-enlocale:en-usos:windows7-x64system
  • submitted
    25-08-2024 23:58

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    c1dc036fe5843d55e488a40c71782f04_JaffaCakes118.html

  • Size

    135KB

  • MD5

    c1dc036fe5843d55e488a40c71782f04

  • SHA1

    3b31d2807019bfe2dfaf9c4a963a1d785e50a1af

  • SHA256

    832bb591abf6baa896f28666267808ebff61ace6de6c43eb4e94e3e4c403ef74

  • SHA512

    5d3a117c643e1da9d4d41d4d868bc56b82d992e572731119fd856c180068b23f2af448f05b1ac71f0d5a174a410aafc8f3b895713edddb9d8e7f28b1683ab2bd

  • SSDEEP

    3072:3F66SF3V2UP13G4k5QhLpOatVp0UhYKs/fNbYaaLStR7cxWUu/v66sbsGon4G59X:V6j53G4k5QhL8atVMfNbYaaLStR4xWU0

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\c1dc036fe5843d55e488a40c71782f04_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1900
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1900 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2756

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\05DDC6AA91765AACACDB0A5F96DF8199
    Filesize

    854B

    MD5

    e935bc5762068caf3e24a2683b1b8a88

    SHA1

    82b70eb774c0756837fe8d7acbfeec05ecbf5463

    SHA256

    a8accfcfeb51bd73df23b91f4d89ff1a9eb7438ef5b12e8afda1a6ff1769e89d

    SHA512

    bed4f6f5357b37662623f1f8afed1a3ebf3810630b2206a0292052a2e754af9dcfe34ee15c289e3d797a8f33330e47c14cbefbc702f74028557ace29bf855f9e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\3C428B1A3E5F57D887EC4B864FAC5DCC
    Filesize

    914B

    MD5

    e4a68ac854ac5242460afd72481b2a44

    SHA1

    df3c24f9bfd666761b268073fe06d1cc8d4f82a4

    SHA256

    cb3ccbb76031e5e0138f8dd39a23f9de47ffc35e43c1144cea27d46a5ab1cb5f

    SHA512

    5622207e1ba285f172756f6019af92ac808ed63286e24dfecc1e79873fb5d140f1ceb7133f2476e89a5f75f711f9813a9fbb8fd5287f64adfdcc53b864f9bdc5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\F0ACCF77CDCBFF39F6191887F6D2D357
    Filesize

    1KB

    MD5

    a266bb7dcc38a562631361bbf61dd11b

    SHA1

    3b1efd3a66ea28b16697394703a72ca340a05bd5

    SHA256

    df545bf919a2439c36983b54cdfc903dfa4f37d3996d8d84b4c31eec6f3c163e

    SHA512

    0da8ef4f8f6ed3d16d2bc8eb816b9e6e1345dfe2d91160196c47e6149a1d6aedaafadcefd66acdea7f72dcf0832770192ceac15b0c559c4ccc2c0e5581d5aefc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\3C428B1A3E5F57D887EC4B864FAC5DCC
    Filesize

    252B

    MD5

    336c46459f5f89ecccc524a7969b377a

    SHA1

    addd2aa4ec9d01404632e4d979e3ce603aeba3b6

    SHA256

    d5af9efd5bd350ef438edbcd1bdddeca0f1d0dfbafbb4a97dca5d756726b2025

    SHA512

    b19c27f763b7b492c9c2671c385b98ed17444f65444e59b85a5131967ad62f55e7d7d026a61b25e692889a1b4391f73f83f3496e51bd249c8110e80fe89e2df4

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    2dd8a574a3bd129a61eddb7ed497a1cc

    SHA1

    925e43897e0c3350768a1dbf2961fa1f1bf79c4a

    SHA256

    cd9a36b6c38d9c8e1dfb046585e2d8607f7b6f2841c6f655b7266ddc9e72902d

    SHA512

    07e19531eeb61b40f8f0147667c35c59a1d876f70987ba45964eb350542ab7af47edeaadb347345e5e86b940595fa02fca47b38f2d098170d4f57be43274ba53

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    b1267f94e12384c90e593b0b1ee20339

    SHA1

    5a710eaf5afaa8491a383121c1e88fd76887e424

    SHA256

    9386358d6c877358a031d55713583532bbefa88e7ed302f38aff7e7a9ba2057f

    SHA512

    01d141f0eb3fa17d9fa58324b0ac658348a50d5c7ead72e3fe175897f5c4756eb4528de36bb0ea1688586cab24e5b5fc4e8f69d7c931c8fb51ee176ab6f15b40

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    e4e99ca475610c8e92082850c903a3c9

    SHA1

    6248f32b26496c6924293be828880d99d9e9e49b

    SHA256

    f3a95294167e1e83d72d4965ce2c7137a4bdc203c7427d04d6b9caf4edce5d35

    SHA512

    ab0b76c53c6e2d84296e8cd73ba1a45e99a6523d00544db0bd495aa9ea0cd9e015a65272387f0531092d3fbce0a8596ff544fe8334100c1fe7376b5ca540103e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    11d21376c68e5e8ad058aac72634d36f

    SHA1

    7ef806c97bdba148484b88ed7f1d9e17b8a0b4eb

    SHA256

    3fd9caff5b6c3c179a6fb5d263d8c98b2bef84d3da1086b668a528208bb8fc41

    SHA512

    c6f4c0a4bf30354ef0b0f3ca5d2e8380f464c77b49d8647512d6029e9dd3c9f24e7e1ba9b190e5d98f8586abfb87b6995d4dc8fd7720b8f9e4067b7dc91e4263

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    5f3c77a534555e74b17d0c202b557415

    SHA1

    aa5b7d2a6906acb09304bd1837d8416bc0c44003

    SHA256

    2793185ec53c1cc4dad4a2299a9f1598feff74e174622637a0115ff0e2313b88

    SHA512

    f47bd664de76a2e9c00c4ff4c01ba34eb3b9626c4e94e582ccab3dfecaabb993223588e3c35376eb85f7eee820fa658f9ec2f2959e717aeecaed3db5eb274dca

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    f1d9c88ae4b223976e6649e56b400a71

    SHA1

    a9ffaa999f6ac70f30b7c928c9431b720daf9840

    SHA256

    e0749ff8d040181b14853f618cddc60b480c59456e6a92519b76af81d433c9e8

    SHA512

    f0f08ca838ed7b7ad06c0a105ed0f3305343cc487862cfa652d3542880638a936126aad8acf44e06b27f1e7ea93ceeecffaf7013ced3442591e66f98c7e29bab

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    bb41aa57afccfc6f05f9a2210634fbcd

    SHA1

    07833b49bb5f0ab981c9c781a9c4d4b391ee04ac

    SHA256

    238ef4da5c90297ddb9f79760dc20528c8086adab9b437a6fe8759bbddfa378b

    SHA512

    83203e88bec2922d126c6145a08c11947a5a38f636b5e139b682391bdeb19548a6dff3405cf4ced540c91e79ba033b1ee301fd4b565be4a1ac761bb26fdd04a2

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    6440ed7d929d6d2fbdbf20ebcdca285a

    SHA1

    9823df0651a0126834b79fb0e184a4dbd84ebc8c

    SHA256

    c039f2eae93228c8ed09861a340ff0cfae214478e981b0d286359b08cb375ca8

    SHA512

    056f801b2e9ba8a9cea5da222b65b2b89f2da5a0a26d4298b9fe3f4208fea79fbbd40708f661fc4970bf3d81347482a460944f362fcea0be4f0c966a70b899ae

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    ccfb40c3c0a4a53e3fa005bc413d1908

    SHA1

    58a8ed0b34e9463909ef4552d57c2c85b68f55d0

    SHA256

    17ed0270dd7a31e2ee4eb008264627a154d2ef7a8f57abc8aa2c6aa7022b4476

    SHA512

    1b1b25dc1f889cd11c2d6a9e6d312bbcf7ed33d3d006916591dd66550501af85917e75c42fde9b338075662328c0c5e253a7d4315cb823e12f1d1d22df19b466

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    2acf7ee2f6a861f598628284fda1a5ad

    SHA1

    add16ace7df4eee85d771bdd5e22e882bdb9164c

    SHA256

    e8b27a512b6727e9f72b43854c3cd0cfd65fd2f06a4adae4df6ce5d9ff190f67

    SHA512

    d2649f1f985a038a607988de4855d9dafe7a78c1825e7907690cfcf201d7db1be7bff5c67222124361362c76c2b4cb01cfd8a10e13119ae6cf0bc48e02b581ab

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    daf82bfe62820cd5c823ebfb5541948e

    SHA1

    8e791ea773553ce3b3c1ff456b81281f254bdf2f

    SHA256

    c7d2f687a39e64069a1a29415899247ff5c333b47c3b7768b495ed10a4614b4c

    SHA512

    dbf757b732e7f9a8aadbd107e069dc968d0cc8734ccd5353343324a4e0033e02773b4fbe6ceea31b90b995035da80cd2f7b047c2ee3821bc92ff79fe3a62e175

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    e2218b7fc32c1b839a63dc629b93531a

    SHA1

    a8cb2d27d1c3a5ad5f85c509bc91ba2bd0408a98

    SHA256

    6d8b1d36ae7317920ee39dc69a5c6dc509763bfc779796ebdd78278f99520b11

    SHA512

    e56687e067cb3e7a0ee50cd3781f7582cb1b8c99095a089fc36e8146979b4e710404584af05ab3519f93534164c842fbb1e9e1408f74c3f7689829757c9ecd9c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    f23e3dec6fcae3bc3f075494e27039b2

    SHA1

    8205e5d574f3408bc22e624df4364d6f23822cd6

    SHA256

    7bead2af63208839ff95489847a3d767b92174f9fa63c1ab5702bf818af059eb

    SHA512

    11dc77c0127d30d616e212472aa7a8aef2bf40ad8dc8d0898e92ba5b8cae9a883e7d0b005f49c54f551cd88b4e2eea30ebfc83eef7bd1a5b0a8e0c242ee117f2

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    13588bd42a691f0c9579344703517f62

    SHA1

    a2b98be306f4699f57031af2425ccf2612c6ec1b

    SHA256

    51b8df17f7daeb3e4e934c87c29001b47d3e2610fab6acdb3fc7593f22f781e9

    SHA512

    714d5cef74c5cadfa556ac46af21604c79bea6a21fe866e51b64e106ea3a67c2d59648ff3bb206be144aeb5ac13065cc665ddd1423f785ea19d807fd290df9f8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    e7afed3342da9a2fc9fa6c9f9483dd7b

    SHA1

    37a02363c49d06a28cd66b29f6ee1af8c1c065ea

    SHA256

    65425e4bfc4c817e7cafe9d74978290bb1cee9ad8622869c4c60dbff9d087752

    SHA512

    17d39bdfbab1b18c00812bc7367c9ebc66a216e554f7cc03de3afc5c3b0fea515b930c9b05decc6701c0cfb844c0214d22966ec8522016fb525bc1075243aa21

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    1bca4e238dce1901296a584680c76ead

    SHA1

    c9fabb5939ea078d02a0bdd8348051eaa1d79841

    SHA256

    87b264481aed10a98693735626e2e53d850a7c4812408f6d64076c3faf319c02

    SHA512

    e9790624dcca39f87a5e522fadcef20bce754de09e486281032048968f9f2e70c99179c1a58758faf203dae6e1233d9b9b4e40ec72b25f518447057c244d92fc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F0ACCF77CDCBFF39F6191887F6D2D357
    Filesize

    242B

    MD5

    d3a7321f83326c7c26acc0a85e11bdcc

    SHA1

    95fdedc25ecb7c9a4d6e9a8f50fa55a2168484d5

    SHA256

    6f792d93782e9fee5e2ecb6ae9e0085efda442429236517daf7b754dea0ea4a0

    SHA512

    29669aa7d46269e0b45e99b1318f57b5719f20f37b74b07013162606dc7500570aa91e3abbff0b4f805f1d44538aaebefa274c973a4b75ff345d763a65f98285

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\HHT5LGG0\rpc_shindig_random[1].js
    Filesize

    14KB

    MD5

    9e5f0b21584389dc1c7b5da4a900879f

    SHA1

    191b84e0f5644398ba99e0aa141a6778c14b83bf

    SHA256

    3e21bdafa913fa25276358db1269238db3012ffd8748626cdad442f838e890e3

    SHA512

    c1720a420df680bcc46625355ed6d5c35ae280a813692a0fa293f3ba113a023808a781f1b8c9dfeb3ffba29606e1f4bb4be4233983089602e2d2c20786fb0427

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\LPQ313RR\1380534674-postmessagerelay[1].js
    Filesize

    10KB

    MD5

    c1d4d816ecb8889abf691542c9c69f6a

    SHA1

    27907b46be6f9fe5886a75ee3c97f020f8365e20

    SHA256

    01a956fa0b3ea8cb90d7032608512bc289c4170bf92759352e40062d5be2946f

    SHA512

    f534f057e46998bd1ff2c423ad2cf04a880c4a5259e95aee5c6ae34ce7121ccd07ad1bce5d4c3a51ad04f7411b0625da78808326b13d2aeefec502988e113113

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\UQFHO95Z\cb=gapi[1].js
    Filesize

    135KB

    MD5

    cb98a2420cd89f7b7b25807f75543061

    SHA1

    b9bc2a7430debbe52bce03aa3c7916bedfd12e44

    SHA256

    bea369fc5bdd5b9b473441583c46b9939232bf1f98c1cedf6bc2241c4f5068d4

    SHA512

    49ccede4596d1e5640a9c8e8be333f9c18812d58f02b2b15adb54172df1387439e9dc5afc4ccd9d8f0f75f092318bed68d3cd577338e88ef4f9373de8a07c44e

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\UQFHO95Z\plusone[1].js
    Filesize

    55KB

    MD5

    950e589a42fd435b2b6daacbdbbf877c

    SHA1

    78dc5743d4b541018adafe3a2b49b6be5f1c7944

    SHA256

    c5e3093bd5e8a58f04846013ead66d36ca25457a0475c9c72d8cde60e598fc0e

    SHA512

    cf2aa139ee4c2f79ad5dbca6239e4d5179a21f54cf2c3672c45915b3282bda5f5fa702c241d3b5c02805cdf1b48427d34e86b627904055a46ff6ef11be2b2104

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab930D.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar97B1.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit