Overview

overview

3

Static

static

1

c171555978...8.html

windows7-x64

3

c171555978...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    145s
  • max time network
    150s
  • platform
    windows7_x64
  • resource
    win7-20240708-en
  • resource tags

    arch:x64arch:x86image:win7-20240708-enlocale:en-usos:windows7-x64system
  • submitted
    25/08/2024, 19:44

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    c171555978e069d1ef1c3bd5c6571feb_JaffaCakes118.html

  • Size

    43KB

  • MD5

    c171555978e069d1ef1c3bd5c6571feb

  • SHA1

    cf8a375da457d894d3a1beb02bba2b436bb02ce4

  • SHA256

    5e78caa8059b256cfd279cc57a477d39cb078af03e0f44c86d30acc60c87863b

  • SHA512

    b27b50a70f9c6b0b78d4ef31ddd617a564e3bc007fcf1cb643f279875eebe109e6777bf04ef95811d919371de8f4f960780f4c81440c9771cbca07675b4b16fe

  • SSDEEP

    768:ZSv8nzxlaQc1O+RVp3fwhkc5HDYGz0aAwxnrj2tRrykYbzo8xI6p97SF6iH6H7NK:ZSv8nznWfSkc5UGgBIrORJ8xNp9rduF/

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\c171555978e069d1ef1c3bd5c6571feb_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2716
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2716 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2692

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\05DDC6AA91765AACACDB0A5F96DF8199
          Filesize

          854B

          MD5

          e935bc5762068caf3e24a2683b1b8a88

          SHA1

          82b70eb774c0756837fe8d7acbfeec05ecbf5463

          SHA256

          a8accfcfeb51bd73df23b91f4d89ff1a9eb7438ef5b12e8afda1a6ff1769e89d

          SHA512

          bed4f6f5357b37662623f1f8afed1a3ebf3810630b2206a0292052a2e754af9dcfe34ee15c289e3d797a8f33330e47c14cbefbc702f74028557ace29bf855f9e

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\24BD96D5497F70B3F510A6B53CD43F3E_3A89246FB90C5EE6620004F1AE0EB0EA
          Filesize

          1KB

          MD5

          2a381905c63a6b1fad304d628be7d487

          SHA1

          858cfc0a5cbd598280d705eb07a599469619b296

          SHA256

          76c8c927d286ee2f7f93b810dcf282cedd5de4fd393c3676f6cf4f36c2a60672

          SHA512

          bd12dc097d549ff5ecdccf9be1e0838bdf1695a71f085fe2f6cfe4c9f7bc6716d271d9e7a18a8efbc4c5747afd194ad36c7c2eb0e5b84b93b3c8c98e05b51f42

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\3C428B1A3E5F57D887EC4B864FAC5DCC
          Filesize

          914B

          MD5

          e4a68ac854ac5242460afd72481b2a44

          SHA1

          df3c24f9bfd666761b268073fe06d1cc8d4f82a4

          SHA256

          cb3ccbb76031e5e0138f8dd39a23f9de47ffc35e43c1144cea27d46a5ab1cb5f

          SHA512

          5622207e1ba285f172756f6019af92ac808ed63286e24dfecc1e79873fb5d140f1ceb7133f2476e89a5f75f711f9813a9fbb8fd5287f64adfdcc53b864f9bdc5

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\C02877841121CC45139CB51404116B25_9CE832D646FBAFC5C4ACFC523FDD84AD
          Filesize

          471B

          MD5

          4e36679b90f2b4bac0f6f68eb69c60b9

          SHA1

          c19f5f5a46e90073c676608d6b8500f0c43cde5e

          SHA256

          655b9ec49bea0f1633cb85af4196827a043da6e89febd48ac14b1f97f4081314

          SHA512

          58abbc2be83a85641f1022bac1968bd02cf34cbae8a6c812e6d222576278c172b1ede7f58c8234b780ec4bb47344d20a3c7310c0dafd1ab303fb17e747d5222c

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\F0ACCF77CDCBFF39F6191887F6D2D357
          Filesize

          1KB

          MD5

          a266bb7dcc38a562631361bbf61dd11b

          SHA1

          3b1efd3a66ea28b16697394703a72ca340a05bd5

          SHA256

          df545bf919a2439c36983b54cdfc903dfa4f37d3996d8d84b4c31eec6f3c163e

          SHA512

          0da8ef4f8f6ed3d16d2bc8eb816b9e6e1345dfe2d91160196c47e6149a1d6aedaafadcefd66acdea7f72dcf0832770192ceac15b0c559c4ccc2c0e5581d5aefc

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\05DDC6AA91765AACACDB0A5F96DF8199
          Filesize

          170B

          MD5

          d987ba0bbb41075336570e00b00c71ff

          SHA1

          667571f721b6d9b537036d819379bafe9c4d7e92

          SHA256

          37d7394ed10cb8e230f1e859292a6cfe4b113047e3c938dea367bc416b577f0c

          SHA512

          7f14cdf43f301317ad3e3d58429753d2526c8430f9b1dbac5a52c17321a3339f184fbb5dcd0eddaded9e14fadf433bc8270170276b44f254c72901e067001245

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\24BD96D5497F70B3F510A6B53CD43F3E_3A89246FB90C5EE6620004F1AE0EB0EA
          Filesize

          410B

          MD5

          12e32ba5a9eb693fe4622dd2c7d82b2e

          SHA1

          b288966bb83d3108f2c126520b6ddb37bca1d716

          SHA256

          0ec2c23f3ba7ca36c6278591de9a5d078ff71a82891492c1fbb58bbc5991676a

          SHA512

          edc9739ac992cd75defc8aeee234be8bceae06e0086d8675bc514d45524652ca66a1f183cc6119f498a77e1fb95072d2f9cd1fc7fcfe300c31cbd0304062feae

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\3C428B1A3E5F57D887EC4B864FAC5DCC
          Filesize

          252B

          MD5

          bda83a8ba35ca67b424837ff99e194b3

          SHA1

          699489eda69d4e6a15d67d261e9fbcecaae0a82b

          SHA256

          ac76c94b35548e942df2283374baa4e31cce6cdd19605d5db9bd20cbcc693dbe

          SHA512

          8345ed63b09fe03503e77c1b37c9f4e36865a78db4776ff676a0c2b2171264e8e55f0c6f609ce920e1f375e80573aee117652598c4dfc161f57d5fce899c7f21

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          563583b7c3d69daa28ea3194bdabb936

          SHA1

          c5f77482b96996523b26723e1025a48e96ae565e

          SHA256

          fc58dac9e0ca7a6ae85931e62033262db58502d521dd0a338d79c52882924e36

          SHA512

          60a16cb61a29ce5795156c0998f1f028f7ddb51cd1dfa5631ca64ce205ea2054deca869520d40078c7cd63e070cf329778355f0c1e3ca628048fe47ebc681b74

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          b57aa8b6e171100ece908125af76a94b

          SHA1

          08d83aba5a1f1e38a50700bd631affdfd7eb3709

          SHA256

          c9abf00264c3e4e44875db3c3abef0ac5201e48e667e8dbb62d9f3a296d94477

          SHA512

          8a3fd71e73ad28008ecd29b912ebb7101dbcd5c1778302dbb87d4a7b09172f47bb52011c129d63c05181cbb54c87bc65fb996017b9e189a447192080ae5de698

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          0625c28a434354243cc314ab393bbfe0

          SHA1

          ff0dbcdacb5e96d2a9f1a385cc8632b9eeac30e0

          SHA256

          8fd3efa5ccc9893e8b7b7b6d27631c44bec1431c065c291832aba1a481eaac21

          SHA512

          a9d9bd4317bc4d973e52c4c081e91ba24a8e4554c1a2c9dad985a3a312b2b4bc80cfb55bae13ad146c9f4d52238a628ff17fbc9d1ae677b332966ec8e8db7a9a

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          dc21ffbfe2f9e23791f75ccf3712c2d9

          SHA1

          92654b0a3db7adf1eaa0e359d41c04880bae6e32

          SHA256

          92cf5a5f88673d20d191e4ac4cfed1056313386d648ec3d79510a97e7b17381b

          SHA512

          f0668b31f61d131d7b6f51ebde8a85efa9d30adf5a940fe193bae4da380dafca0de76d143ea27feaeb07a5427cedeea452794680948cf0eb8858958c010b600e

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          1b4106f0f29f9aa8efbc23440798cdbe

          SHA1

          c7a999ab85d3eee1d9f3adb45675f0291bfe2985

          SHA256

          4841ce57037081b6fbdbc1f8dd8ed7f1cba0811d593a3a9b0e96b457a42f46d9

          SHA512

          661fb63c6476d955082787dae93da615b642d80ed62c193980a1339b87c93e4ea9f39137db8398ec438ab70dc0b30658e85e7e3c9923390a98bd14c751695bab

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          f80166f7c89571b3d0ce5f763d49043e

          SHA1

          63a648074e807bbe94fb7576a480ef2ac1f9b965

          SHA256

          916e4d6c2d6a54787d8a1f595f86f5f6ffd4c0f8264a2e42092c03bd24fae274

          SHA512

          bbb76a0235131d95939b578693c86bc35a8e090cd11f788a583597726c4b63e690816c2db50c12b91c3521b8b104a9e8db7977d07a644bf08a39af78963cc957

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          5fb471e385a81bee5607751ca3925237

          SHA1

          0c68af86e7e1f4ca9a29524c5447a518e4873e6d

          SHA256

          e20ce097324496053af5b857fd1970a8e8643071cc5e8ba7b9baf30481a4159a

          SHA512

          c9eab65fa3b16f7bbad080419c9d249e6b7b12f09c865f804d091aadace70c69d982561a18c54bcf6391b0c5888b2ede0773e65e32c7d01d878c898bb6bea53e

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          f46c49e3cbd6513e26bdc67df8dc53a7

          SHA1

          e062135aed5dee43bfa6320552b7c76338d9e32d

          SHA256

          f5da464265fc29d64962949e7582c4a9968fb345cfd756ccde0104108345cd66

          SHA512

          3b2d2e21bddb0c5f04351f11cf362d94410b799fa7a587d5bc89296fd64282b9e6017cf867eed43262ae1181e12df821ec67ed06c330a197146f83944b75c3ac

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          25743ed213044ed2d969cb09b0aad86b

          SHA1

          52abbf9c90ad46d2607fd83193d514b5ed4bca2d

          SHA256

          f4904bcd5a1e55fa2828b4c79de6a8f344a9b09a3426b410e3685bff1743b63c

          SHA512

          3bfeee254a11a4989cb441c6b7017771b82ab6c4476a21accc3bf8d8eca33ec9b56c3953095ae5e6ca1b0ce872b614d3a7d965bf0d83696c5c59bdf60663e81b

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          8fdf74833d6e5b7df27b8ebcac832e56

          SHA1

          17e57a28975d31d445a24b2b4acfa3cca111fc8b

          SHA256

          c332fd1741397877776dfa219061608582f5f5d12454c37d7af0972d34d49735

          SHA512

          e6863d4d21292310fc3eede8ac7920b4970adbd4a22173291cd38f6cdf1d008e96d8b0cd0445476384343f8efc7bf02e89c07a44d272464dcd458f7bb0d915de

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F0ACCF77CDCBFF39F6191887F6D2D357
          Filesize

          242B

          MD5

          59dd543a68441208df43ced64c23d7a7

          SHA1

          3faca500b2fec5d8b92908d25966bea1238d448a

          SHA256

          0e56566b79f9030b760ee0aec296f4eac3089aec038f14fa72af71d861d1d035

          SHA512

          c71cfbd504cd6e7e5d0ae2ec8db43a1a3911183a0b2d531712c59006f43c9bfcd09d5144f9328f7ac63183c15bca3f7fb17514d5e625ee1be094026afafdcc10

          Download Submit

        • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\CWSOWPAF\platform_gapi.iframes.style.common[1].js
          Filesize

          63KB

          MD5

          1b9ca0f9af3b9abee8176c44ca755b75

          SHA1

          f25ce4a3917bf3c41eb470587d5176656689711f

          SHA256

          b1e8fe91784dadefa5dccced4d2e515b5769e74615d8bd3f98a1621d25e39522

          SHA512

          d0f7f941038a547b211f092f856d74a83b2d140dd1c319a7c70dc0d442a0bf2816182a8e33921a4fd5dc6e94a76e33fcb4d73b906bca7f6dcc277766bf546ed4

          Download Submit

        • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\NT8UAXPK\55013136-widget_css_bundle[1].css
          Filesize

          29KB

          MD5

          e3f09df1bc175f411d1ec3dfb5afb17b

          SHA1

          3994ec3efe3c2447e7bbfdd97bb7e190dd1658f9

          SHA256

          1a2eca9e492e3a21e02dd77ad44d7af45c4091d35ede79e948b7a3f23e5b3617

          SHA512

          16164d66d452d7d343b1902fe5b864ffdee42811ee90952cbfe9efa9847c58c0403f944c8e29db2bc2384ccd516b629cb8765e5e51de37da6efd75962cf82530

          Download Submit

        • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\XY2E4O3P\platform[1].js
          Filesize

          55KB

          MD5

          45e854a35529759d934c731304a43d38

          SHA1

          a8df66d8d97fdaf183b3b8b806233b4ac0659eb2

          SHA256

          a545c66e7db300836d0f8e0c5c407c6b44baa277e32d744e08d331c7c3d6ffb9

          SHA512

          5efdd24697fc8247f9a1f8ac3e80df23efdfee54a25f8b63565276338177b36b90fb3a5f80c8654f91922e3f668798d37b4379bb41bb4059965f915287729e48

          Download Submit

        • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\YUF3ZB4A\cb=gapi[1].js
          Filesize

          183KB

          MD5

          ca75fc91442c6fa656d5f50112bfe09e

          SHA1

          9410457dc62d74c3575017439a5d3a9854e8a25f

          SHA256

          b0e63c5c5c00d350058640ee55c24b8a4c11cc8d1d04906d6c0e8392ac7f9e2e

          SHA512

          d0e4961fc994381800b9dd98161df04aaa183bf8cbe1542b40f37b1dbf3546337362067cea4ab09fbd4a7b62e847784dbeb968a2c1510a56652534c4498ae8a9

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\Cab80E4.tmp
          Filesize

          70KB

          MD5

          49aebf8cbd62d92ac215b2923fb1b9f5

          SHA1

          1723be06719828dda65ad804298d0431f6aff976

          SHA256

          b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

          SHA512

          bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\Tar80E7.tmp
          Filesize

          181KB

          MD5

          4ea6026cf93ec6338144661bf1202cd1

          SHA1

          a1dec9044f750ad887935a01430bf49322fbdcb7

          SHA256

          8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

          SHA512

          6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

          Download Submit