Overview

overview

3

Static

static

1

c1606ecba6...8.html

windows7-x64

3

c1606ecba6...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    129s
  • max time network
    140s
  • platform
    windows7_x64
  • resource
    win7-20240704-en
  • resource tags

    arch:x64arch:x86image:win7-20240704-enlocale:en-usos:windows7-x64system
  • submitted
    25/08/2024, 18:59

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    c1606ecba61c15a45c0212f3e635e318_JaffaCakes118.html

  • Size

    12KB

  • MD5

    c1606ecba61c15a45c0212f3e635e318

  • SHA1

    946a56eecb120233ada86738e328909cabeda287

  • SHA256

    59365e8671554eac595c31d2a26a8e8dc5139658b77e1a8220a433ecff5d5104

  • SHA512

    71361479ffb898485732889d60cfd9362ef8d1437bef66877f740e1b3cf2e46d348203fad9a29f83d3a507894f73d70ff45cbcef55f4e220bb62a0a95b8e767d

  • SSDEEP

    384:AZvVuZzvovPDaB0NRglN2Ovis9lK04QdgRzTfMMg8:AtVaToHD80NRglcOvis9lK04Qmz48

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 53 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\c1606ecba61c15a45c0212f3e635e318_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2672
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2672 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2680

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\3C428B1A3E5F57D887EC4B864FAC5DCC
          Filesize

          914B

          MD5

          e4a68ac854ac5242460afd72481b2a44

          SHA1

          df3c24f9bfd666761b268073fe06d1cc8d4f82a4

          SHA256

          cb3ccbb76031e5e0138f8dd39a23f9de47ffc35e43c1144cea27d46a5ab1cb5f

          SHA512

          5622207e1ba285f172756f6019af92ac808ed63286e24dfecc1e79873fb5d140f1ceb7133f2476e89a5f75f711f9813a9fbb8fd5287f64adfdcc53b864f9bdc5

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\F0ACCF77CDCBFF39F6191887F6D2D357
          Filesize

          1KB

          MD5

          a266bb7dcc38a562631361bbf61dd11b

          SHA1

          3b1efd3a66ea28b16697394703a72ca340a05bd5

          SHA256

          df545bf919a2439c36983b54cdfc903dfa4f37d3996d8d84b4c31eec6f3c163e

          SHA512

          0da8ef4f8f6ed3d16d2bc8eb816b9e6e1345dfe2d91160196c47e6149a1d6aedaafadcefd66acdea7f72dcf0832770192ceac15b0c559c4ccc2c0e5581d5aefc

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\3C428B1A3E5F57D887EC4B864FAC5DCC
          Filesize

          252B

          MD5

          ae6132adfa13cce3534791488ecd3b26

          SHA1

          209252c67b19093e2e8ca18e6c63e8155ad56f6b

          SHA256

          f6cb19536457205d1e7f81ef71053a67e9a596dd8135d020affe79405177b93f

          SHA512

          8e8692243d5f85fc0da6b48d2586bbf6051811705ad8585241af09d562341ac02041c85f5592a1d8f7f408d662bfcc5e31c326575ad79874850058cc51ca6f82

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          be3aadd86e1c15178ce5d89d6fbcab60

          SHA1

          610c646f1626848cc7514bd69aab32b571a4d9a7

          SHA256

          41b331a92a4b0a91cbeead4612c970d1c1b1f944ca95897acd5e8650a4712d75

          SHA512

          7f865cffb4a756ace7a012c9c367bfea69be4d9c423235df23f5a849448fc8d144b0a0cbd41f6a1dba0ec421efdb1c6dc6e6a5ed76388d0b65cf79007b7de3e3

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          0b401d8f61ba8613e062272c91330cc1

          SHA1

          e4b854e2d56c3fe24bc4c553a0fea619f95ee8f3

          SHA256

          a80f6f024c2e7f60c397ff4bd7dca88c48c82786d40bd50b6278f149cb88b4e2

          SHA512

          07c626d41aec855dd7edac43b5a80234d94dc785c2c598fef8500414bfb75c3a436ac735a794c036abac2b8a17a73b2fd3d28cf0da7fb47585a3c67906fd3036

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          12327f539b90e0cbf2eaa7cfabd8f9d8

          SHA1

          b207adb7582c4bf08e4605e461548fb12772435b

          SHA256

          13dae9138c98e1c953edb63a176960bcadce65ae29f2a2aeecc61414f99fb4ec

          SHA512

          7ae974d45312826c848bbc7796bb6cc4f74030c02a42865439862102b12e1a55f51d4e57837d02b67dfdfe23bb06a4e1d7e1ecec248a86aa19cc484d80f40f82

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          01a860b2953b9e60017cfc49f84bbcfc

          SHA1

          dbad8ff894da3d3a45caca3a529d2b8a307e9e93

          SHA256

          182e99b809121bc00231c9d05be67cb8299a3852f182a6029885576829674840

          SHA512

          34d288a7fe25bb9489009b38ddfaeadd4792bdf9eec7b48bebe560bfdd9523883a91c959e003509a6190675bcd5fa879f53c86a10d31dbd2cc471ad29d480fbe

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          6c14d36c66a4e375c25e53304f37a3f5

          SHA1

          401bad92c2018f4cd482dbc43b567b8dc170bbed

          SHA256

          eb67b762ffa945bf3affb1b90ebdf48b389c33f2aa77f4f3a7a67dea9bd3ad73

          SHA512

          40d5136e72486e5bcc262b151e4ab3b63806aa3217b724aa262373f283a0c1bcb78a4eccf31fde800e402b3b1f6bbc8e8b3a67043443de5cab1ddc369414014e

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          296fd92a85c8edec159a3cdbb1efb0b6

          SHA1

          af5a39354d252ca1a3e6e57d0d564f4b97a51f4a

          SHA256

          ee548fddd7e8223eb651fdfa4b826d383430c81273cc7a7b16fa4dc7c9986212

          SHA512

          0f9c5f1c41e76191da52d74e6c539530c28db60c8d625bb17ba406013f53a0e7d07ab1854c488f9d61af3e23dd0ac90e71982dfc996bc62634e0888515d07d19

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          8b711e9ef2a0d886bff09dc8c0dee9ec

          SHA1

          c425739aebff4c4b567440defdcdadd7b104a68c

          SHA256

          0eb9d8af7aced43a016e469be2cd28195b141fd2408c72401a719f9e2986269f

          SHA512

          dfea8dda392947a377e9b5914720f133d75c45ba33b0e2c5532aa119a08e76f543747f41a453406e86a1564e59355f43aaa942791ce36748012072a9a7fce825

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          6a1cf23b8ad97d97d73b7666561c655d

          SHA1

          547c403ae5540d2e852f559ea696ed8f2f42877b

          SHA256

          877d11c00e9a0fcef04638ed8b812a2ab9a4df22b4f57186e43dc641a1a9e4dc

          SHA512

          254403baaeb3a06e7fde344aa0577d9056cfaaae018c07fe594ea150a3ce1b60ae879cdfba65295836494d6a56c1bc63bc9c9e99fe31f45a5d9210c564d85e6c

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          29b7fb96abe66799b6ffb4f3f0702f98

          SHA1

          86aa2961f2dd831360e49a151029d5189f8d195e

          SHA256

          596a07234529acf8dbb889e378a74d16291044ee772910ed568d0b10f610a275

          SHA512

          eee74c9587127e63e3a1a63ade168a7629d40680770289e863343789bcfe5a904f1a8e631ad491e9e931900968e90be935b1097b0d48bc7f4d759bb14e542d33

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          7a40d68430ed0456eb019864b577b692

          SHA1

          2d35f649e6cf7b3f1645f28191d33f16913557cb

          SHA256

          1c7805e3d01290a88f33393febaa291bf57265bd36e3b60000cb16dbda83c885

          SHA512

          08c502e8879522aa0839b5f3dbf14f4ef3abe9591c9c41ad0d1be2a494c1c69f77a174221c17d3abf24106d8169bbacdd14c7c53cc8c65c4fc43a1863a0d9e79

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          4e805a71b9ccd44cbb19ecfb75560ef9

          SHA1

          384afda35a66ab88fb3d30fb53c014482e2e0498

          SHA256

          aa45ab4268b2e8c9708ab22033a628e2949bed8629e1bf5cd5addc249636d325

          SHA512

          26c603e25b15fa3029bbc1c4c7234e388d1841c3bcbfe02e37d254f84e10cf1a79b67dd14149bbb1efe2485f3c68c8dee908ca6cab4aeebe884d82a1fef431b3

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          57e95958648ae5a0f9670ceaa743d4b7

          SHA1

          3be658b2394e456e8caeed59ff781680440611df

          SHA256

          9af98d2a613ca12c7ee74210554057b6d9395c0ae9cf94471485a1804f7185c1

          SHA512

          c70e54f5d094e626c54d683f7796a196483a41f813c54223b844d3521a5ac507306d8a2799927ca3b55ac2faaf20984b833c1020dcf84109c528640d7bf833a6

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          ff871cd71fc34d788cba91c846cef4d8

          SHA1

          9673385e69e5e43a1b20f0758a0d872eb7f09eee

          SHA256

          9d52b552df707d2b87e1865eb91438ebf89a478150a3118a70b3498e845f3960

          SHA512

          e29acd04cdbb5ae10ff06bddd148c56d6c1e881a46a772341bc9aa7a69f1f2ffbf9aba6d731f51d96724ea9e80bf8516b88baefb2255a34a6e4edcdf9d05e4a0

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          a22424633820ebe2cadc4f476a843e5a

          SHA1

          8d280a2c5fd3a57c47ac49fb2bbdcb70bf34fd3d

          SHA256

          633af304b3be18bd132605e71c1180900348c719511e8e990de4ca32292cff5e

          SHA512

          d718229dce54484c8cdf8a61742047db77db32bec2629acfb5a21efc4591ab145a15b5b0f0750bfbd4856fd01b73eadac46f21bf608274c28325cba1f73a6a9c

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          0e120a68a4a75bd4410af037a09a7ee9

          SHA1

          ff68768258db9cfd6e881a3e7c77d86b4cb951b0

          SHA256

          a38325de6c9542d7f0fc63f69f36aedf1bfc47431226b4a21179b61a2fb1871a

          SHA512

          218ee4d0e8116c1fbe5a0ade6b2a314d59d4174596102d881f69c9d73ac3b24ded8a94a5c3990f406cafcd7d1422a6d9dcd484fd35b4a53c6a59cdc7ab52f7fb

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          73a44bdeb2e41bc09f907f3ca58b4964

          SHA1

          cb83208934b1027cc6b293968c1b6ddc199d616e

          SHA256

          0c439c0d4f8ab0014ed28b229b6e635c52a0b090576801e85b7b4ac21b3fa2df

          SHA512

          50310b1043924d17eba65aafcc6ce9d1747dfeeb01156bd60af91977dfbaede5dd0456e608c55fa0ae4a2ddc4d9f4eb2271bb139fca39a9521d0407c46c5f1b8

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          9dc2494ce77eb52be8fb6541ae91269b

          SHA1

          fda85c39a34ab7106606b95fe645bb0f01956645

          SHA256

          34ccc982cdeb10029f1cb9b412f66270b7e06a147f93777ae20350633e87dfbd

          SHA512

          3c594ddf08ec162be62581f43025f82af8064dd5819b264b4636f49d80abb2b1317ec3cd7b0ee973877aa6b30867834abae463c26f7cac175607a6a8fffc720f

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          587b9052b74af40d07de5f67a710cdfb

          SHA1

          695e6263964acfa1da1bd394ebc39ece7425b432

          SHA256

          bad76bf1889c9a6afe94da248a2015fadda33c7bcfd3718146f7cbd01e6b92a3

          SHA512

          457e78a2bd5b6de4af3c3f08a5843a16436a8d0bdc672844e17dec807de07f17241b0b342bf2eebf6af074db087c3ea50e3217dace66a1d6a3ebae589f07f1ad

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          d58eb11bfb4bac5a2ead962998b34561

          SHA1

          41be91d21644d8b5d71be9818bdcd175508b04ee

          SHA256

          2876375ae182da2d1d8b3c11c9813f1327578a019bfa6bdb776884a67799edc1

          SHA512

          b21da42fd4bc5c66a75493082cb36dd10d4ff50922ac96b41833947c2710120da875a23da8a92eec6cd467b9c41b0b7832550624b764eb5742005042ba43aa12

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F0ACCF77CDCBFF39F6191887F6D2D357
          Filesize

          242B

          MD5

          727a73f7caf20187681833dbde155887

          SHA1

          d9fca0ce39a74c8f69a22edea2926a6cb8a0ce24

          SHA256

          dcccb88058cfb174b96c8c0a7bc8ba6d72e4f22ef6ce82f259e2c0e3a5af907a

          SHA512

          894f7aa7ceb013ce9ffc4ef09d19abaa0e6aa6e0462d8b4767997c5b923d79ca91df66611ff1c498e55ca1ff80554f357a598d622dda8c1fa9cc141fcda45e8c

          Download Submit

        • C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\HBQ136C3\www.youtube[1].xml
          Filesize

          229B

          MD5

          7cd24ddc552fc1c3d679b907a0bbe9d0

          SHA1

          e240f9e610c0fe20d117e14251b8c853557865eb

          SHA256

          3a99711963ad07f6c380974cbf51ed81b097206804754e72e00d042ada9f0e00

          SHA512

          fda8205c7782b7acdd0c1e1bb55bbc558a27bba79cdf1cb0f01e9f0d7ab7396ad5b28b03fb9b56b609c3ba0b3ffab5d56db82c9f30f81e909a954b2c19bb9348

          Download Submit

        • C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\HBQ136C3\www.youtube[1].xml
          Filesize

          13B

          MD5

          c1ddea3ef6bbef3e7060a1a9ad89e4c5

          SHA1

          35e3224fcbd3e1af306f2b6a2c6bbea9b0867966

          SHA256

          b71e4d17274636b97179ba2d97c742735b6510eb54f22893d3a2daff2ceb28db

          SHA512

          6be8cec7c862afae5b37aa32dc5bb45912881a3276606da41bf808a4ef92c318b355e616bf45a257b995520d72b7c08752c0be445dceade5cf79f73480910fed

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\CabC60.tmp
          Filesize

          70KB

          MD5

          49aebf8cbd62d92ac215b2923fb1b9f5

          SHA1

          1723be06719828dda65ad804298d0431f6aff976

          SHA256

          b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

          SHA512

          bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\Tar2C41.tmp
          Filesize

          181KB

          MD5

          4ea6026cf93ec6338144661bf1202cd1

          SHA1

          a1dec9044f750ad887935a01430bf49322fbdcb7

          SHA256

          8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

          SHA512

          6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

          Download Submit