Overview

overview

3

Static

static

1

c0058436bf...8.html

windows7-x64

3

c0058436bf...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    140s
  • max time network
    150s
  • platform
    windows7_x64
  • resource
    win7-20240708-en
  • resource tags

    arch:x64arch:x86image:win7-20240708-enlocale:en-usos:windows7-x64system
  • submitted
    25/08/2024, 05:14

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    c0058436bf1f91cf8b96ecf343c2c861_JaffaCakes118.html

  • Size

    158KB

  • MD5

    c0058436bf1f91cf8b96ecf343c2c861

  • SHA1

    7a55d5af941a4c114a62a34256ba3f3947bea01d

  • SHA256

    b8da068ae7a47de2a967fc37284745048210f5c0f9b1cfbc20090c4cf7dd483f

  • SHA512

    6052c07c30747386e1442b754adf07ea613fc9d5e0228e855b8a2b470352af4d7206baaa1739a2bf51feb6301ffbc0476e4484fc2274d21216a4e6db723fcf29

  • SSDEEP

    3072:SuQwmii9HcyfkMY+BES09JXAnyrZalI+YQ:SuQwmiiHBsMYod+X3oI+YQ

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 41 IoCs
    adwarespyware
  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\c0058436bf1f91cf8b96ecf343c2c861_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2704
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2704 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious behavior: GetForegroundWindowSpam
      • Suspicious use of SetWindowsHookEx
      PID:2724

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    bea861123f29644fb87603b29d8446eb

    SHA1

    cbd4d74c10ef88de219c3b0a3730051d0d06066a

    SHA256

    3182741ea72d73fd92eb99bf409665f25f183082a0d76f26eb91908517592dd2

    SHA512

    17bbc8a1b04a79687ca6921b6a55485b70c53ff49c6cb2f0b6dc5cde8869627a5042ad4d2682a85119f3b9fb1b8be31c0e6cf2dcc7ef7b12be8a5bb0f9821cdd

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    3e9ce5ab5025f5fad6b27502deaf14c2

    SHA1

    113c963535810f5501a306394e7b59613dfef6d6

    SHA256

    ed7407c2326e4cc4e632ffb42df3e193f7e48838babcba3d60a51937d52624b1

    SHA512

    953d715d29ceb00a7620502d1a954764109a2c3881260dff8a66d79b9a0ebc9031187cc85999ebae821e5ae63df6e121c9c7c72b0fd073b4a5fe31680a16ee49

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    5222149fa1bb330a6adde492158ee0d8

    SHA1

    dee9a8144392edb3a45f6883d79026b98f88eb3d

    SHA256

    db843cf75f7e3bb97717b66cf61aaa0aba024dab65620b317c95bec23eda8153

    SHA512

    a1cc08a9618760aaa65179f03560f0fb104b24cb4ffa2b24ee306313580301288f9ce5385786fea7c7307b035153a770be0f6edc3cb7f3571ddf6a6d194d2158

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    aa91dd207af908163465917ec2a6d1fd

    SHA1

    c6715dc56da918b9d33e25176bd761795189c717

    SHA256

    648920ece9e564f4858113bb45dd75b302e1a0ea1e75de723aad62253bed4909

    SHA512

    9d1adf5b4287a5b33d76cfb3d27733ad15210a6613b48409e3f28c4e6912ebf5aeda786948a90b3819ebd99002511d2f9ab6d3b0c87e07c97bd82e437a993b74

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    4166c9d8276d4e3117c3cb8296deeaca

    SHA1

    8fc25d4e34c8dbdf6a4c116f9422ee6d3cf9a759

    SHA256

    f2a086fac508b9fca83579fa0438bd0bea716c66ab6dd7933f8882b010bdaab6

    SHA512

    a0eba74a0f6db2a512eed27192dbbd2e7afd818d612f797b2d2bfe4b0f93a863c93f4647f65004aa46b8d4570cb8c7260f756d1fa7e17b273461911f8fe71c38

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    a8e134160bcd42d4f1b070a66c677d4b

    SHA1

    5b587ef29f22ce2b4ac4c386e7b7ed06e01a5e9a

    SHA256

    c9983ebf8211c7199065abfd1ed037fce47bd1a9f6604ae3f99beb8c11cb5f5f

    SHA512

    4a59f9b6d456941e53d50dbaa3903146159ca3f718962abad662f9516809f3c0cfd06d00cd18890f90f6e3e2234f85b4158cba86ef24387ca9469ded62d5878d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    c9abc9c3f45c87fbbdebcd4b03087153

    SHA1

    2ac24547e575807d7865ca4cd9553a7837805664

    SHA256

    7a41f86dba3b2a510c27dac8f8fd5433f6763f05ad2d55041ef158bbc015ffbb

    SHA512

    6e5b0cebcf4976c1d8b03e985ac5c8d53783e5ff170bc390441d16ec0588aa39b5d3ca9eab26be3f5d06cdcb133c62ccce3c3fdb0cb78da1e991ac6e40af0d5c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    b47d83252296af2bbbbe448e0f4de679

    SHA1

    a9bdd7a257a5b96d99b1657a6dfeb3cddc3e8ed3

    SHA256

    89cf381e4930af5ea47344caa435b057e00bef554be631e3f4c3646efb0d9235

    SHA512

    60cfe8ffad4be79ffbf4012b4d7cacf2c1cf080faa5bc68b89feb70403fb8996007af466b07bb7c0a08fb1e916ab2a9297ab2388add09cf7cbd8adb74f114ca1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    4feeeaa285c300814ff52929623e853e

    SHA1

    1756d7a3a319049584b00a74b45281c287515a7d

    SHA256

    8e5f189ca278b46daf66ed2e30dffee158b1f5a64f3a83a9e1ea1251cc546479

    SHA512

    3b213ce9cff5b9b705b9a94f37d3f8e0666db3d2086286bbcf6a482e3082d2e70e06bba6eb3263cf6c33cb8d69f2cf67b8aaab512bfe6bc616bdab44397c11af

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    9742e1adf89dece3df53f77269e58b4d

    SHA1

    ab53b510288d2b7ef019d353bd211a82ecc49bc6

    SHA256

    69a72887f3453313e0dd1307b6cb4c4db8a2d77fef51e74a91ef7f03023e55ae

    SHA512

    cf5d57d0836a0fb2d559ca7eb284269b65adf28860dcd9d73ab691bcb14f3e0f35012d6d4916a3ad25bdd9e1c7254a748c1f0c065ca0bb5e27c49560983b772b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    1d79e68dfe7e682e12b37d6c899bb204

    SHA1

    4115f43b9c5d0d1191981cb8a8e246e1f7d5aeaa

    SHA256

    c6a843a8c19d8d8ab2724964aa2c85b10b22c204fdf20793daefe2252a643220

    SHA512

    ecd8fbb12c25bbe8cceedb9cbc53afedeca8d61d5266daecf514d6734e39129a7e085a7aaf6b9ed3192a961e7f4b979fdb868cb0fa8de768b99de3e338fedbf9

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    5166c2e4fe5798054f60f796d404dc24

    SHA1

    2acc7e7061123f6192e5d97507621e5d2b99b580

    SHA256

    6c56a36e13073d356059f5e7ce7fdfa2d53cd006fe36d47a56f6116c137da3d6

    SHA512

    bac7a28c43a92caf570405bf8cb32aeb8a721a4d1f137301355def6f21cca1531f07f682bb351d3b2d29adc8b8ec391acd505c6e2e7cc1a973e5a66cc5450be2

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    accf9ba8031e83483483df4e11ce2edd

    SHA1

    a774e7c95db2ce8c231839639248a3658ad00266

    SHA256

    8826771b88c158c20d753eaaffffd1c7d3d225f9b674b1ecd25b06d5ce71a8cf

    SHA512

    6b8b8a30d8a941a885116d82f625f5246ac840599fa565e40b58c7245fc6d306cf14ff5776c5e1e5662ebf44f489cea4bd3d5e488e0390de84498b5b4bbedffe

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    c227c2bd3ff13990f5d0a2db3b4d64e8

    SHA1

    10ea73c254453e4a90ce318e4000f9e597092570

    SHA256

    9e08c726caaf10df20c13d6bd28d70a5ef03a7578d986626d1d1617c427ec7a0

    SHA512

    cd7dfc4c9915e0840a2e883692d2260823d738379e8749fca655f60b9b5e5a5f72d487c1498ca3068125d56e5b7d61eee32d6f50f15355ffbb160e44f3ec6c98

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    661d6e627b66ce391966fd1c94cebe8a

    SHA1

    a0072e66a0271d918b87440a4745c1c15f720ed2

    SHA256

    931ad64885e86882a91592b17c81941a5afbf9b79784552686aca8e4fddbf9d8

    SHA512

    39c09b496fd37e0744dcb50633d68f11c5c2ef97ac8204778ca8a7a08c41fe51b01cdcd352aaa0e089ffa585c11f9b30daad4cc2f233ae46a2ee429afd91fce4

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    8949a6c36c7c646df4b9aa63e663d877

    SHA1

    30672a3cfccece4393fc6d9368f6146253aa9172

    SHA256

    ae0b0d7638f22be0560ef78ffe54d6982807f7d529e65491c3b9438f6a572aee

    SHA512

    d86a8103ac7b65c4595dcd32770afaa84293f019021534f7e244abcad74d87f62a4d4001abb8e5e2215d603e9f4c2f9f869671b31131e576471fcfa0629b3ef5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    e4f42db204fdae9b176759d2a14b22c1

    SHA1

    c55fc69670c67c79d3bd5aebf49adad267099694

    SHA256

    bed9baa5fe639dbc735a12b2e5f1addcef933b9c5c27cf4738373c5ebf1f0181

    SHA512

    5c29f505bf93f80244fec7daa6a5d1de596a267564dd41b567926b514c1e4382ffa2690ebb035eed325d087bc9252ce09873f7539a6281f6670a735bf26ef6ed

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    fc8877310584def5f306de349ec1d6a0

    SHA1

    8eb83becf9cba42bbf4ade1a9ca7b83555496338

    SHA256

    2d1a9fbe306e2ba86a21d7f3ab1c11833db03bfadb1ded0102ac80ab52d1b5ad

    SHA512

    067accbceee93bc62f4267a269ffc8d5c689972ad96189a2bd4c54a3b6ead9dc214a40af0c32f49ce18c6905781c5915f06480b5fe7a9b2e32a61279cb666eac

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab71D9.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar7278.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit