Overview

overview

3

Static

static

1

c7d704c823...8.html

windows7-x64

3

c7d704c823...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    121s
  • max time network
    128s
  • platform
    windows7_x64
  • resource
    win7-20240708-en
  • resource tags

    arch:x64arch:x86image:win7-20240708-enlocale:en-usos:windows7-x64system
  • submitted
    28/08/2024, 23:28

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    c7d704c8234a0d98eecbcefd85a5d78d_JaffaCakes118.html

  • Size

    71KB

  • MD5

    c7d704c8234a0d98eecbcefd85a5d78d

  • SHA1

    1af97551a848e75a3c18cff59ee5795ad21caef4

  • SHA256

    72d60be5934c015c16370e1be23827292abfb363fff7addee6b633c239855130

  • SHA512

    eb43487287b04bb74ef0c145ab07354a934b7b5574253a0fb58c81b2b057a9da168556aa66261baf647c034617d7f690db9e4935b54aa1c2841c88cdcca0fc15

  • SSDEEP

    1536:euGW1AGWQIaAkP3huvpieUiesQe87ePqELY4W9reJeM/Afaydhg:sW1AGWhaCr/Afaqg

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\c7d704c8234a0d98eecbcefd85a5d78d_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2992
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2992 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2832

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\3C428B1A3E5F57D887EC4B864FAC5DCC
          Filesize

          914B

          MD5

          e4a68ac854ac5242460afd72481b2a44

          SHA1

          df3c24f9bfd666761b268073fe06d1cc8d4f82a4

          SHA256

          cb3ccbb76031e5e0138f8dd39a23f9de47ffc35e43c1144cea27d46a5ab1cb5f

          SHA512

          5622207e1ba285f172756f6019af92ac808ed63286e24dfecc1e79873fb5d140f1ceb7133f2476e89a5f75f711f9813a9fbb8fd5287f64adfdcc53b864f9bdc5

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\F0ACCF77CDCBFF39F6191887F6D2D357
          Filesize

          1KB

          MD5

          a266bb7dcc38a562631361bbf61dd11b

          SHA1

          3b1efd3a66ea28b16697394703a72ca340a05bd5

          SHA256

          df545bf919a2439c36983b54cdfc903dfa4f37d3996d8d84b4c31eec6f3c163e

          SHA512

          0da8ef4f8f6ed3d16d2bc8eb816b9e6e1345dfe2d91160196c47e6149a1d6aedaafadcefd66acdea7f72dcf0832770192ceac15b0c559c4ccc2c0e5581d5aefc

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\3C428B1A3E5F57D887EC4B864FAC5DCC
          Filesize

          252B

          MD5

          e3418c6ae6f802b84716ce4e848e3bec

          SHA1

          613925052621f580580ed761bebb2c2312f09d80

          SHA256

          2209b145818efa1141e2ac25c07d49eb6979ad22e41e83c3fe210357bf775bc5

          SHA512

          c0cd05f20d7f587eb1ee258477afdf7ebf9865324da9ee4c531ea7032fcdb0c5b72b1594d60bbbd55dc110e0878d706e5cc99ee76e10a9b88531564264bee9ef

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          9638b55f77b57506eb33c6955c3a9bf3

          SHA1

          0950077d215dcf86546c9ed12025504526a7bb09

          SHA256

          1d5e1ac3e46f37c8691fbbff523a63762f027d5c8203a2731c23c20c37bc847d

          SHA512

          2389b98cf1a3b640876d4d81b0d85162527107747d6ff3fcba36eb3d814ddaecb5983b202fc988836d075b24e7cd045b84fc9b334c5647130193a39f69ee0dd1

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          9bc78f641663dc1fbec422327e8767ff

          SHA1

          7e87b8eac2556ce44dfb933f17511614cb8e936b

          SHA256

          4fe4be0999fa49d8bc63a6c6057d5719cdb53e1ca56428d379e9e4c0b707a5ef

          SHA512

          366cf680b4ad59fa1d390a1576c8908c09944ffc5173edee8afc98f0276161bff62e2bdb2dc7831efc014dfe63c11931350400ee0712220ec59e147c3d6f4b27

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          657a20de944efb85df73129162dd8a42

          SHA1

          b972292b513af10e0bb20cdcee2168802398b867

          SHA256

          985c82de6f674f3631023031a61ccc54dd0bb4b49235178412685378435b65b3

          SHA512

          135864034419d76b10808bfa5622cd3f0e651841010201fd61c247497415fd3322f21ca6295349839e699230363f1cfee8af5dc5dc17ef2e653631bbe02f81e8

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          375ccd2adc2a32df41e3dd48707d6c99

          SHA1

          028d5d229b925106c95263bdb633df76272b36f4

          SHA256

          e60d697bd2c3b2098a5ba6a1a16aa78d7e952933d35c5e5bbb1da28f81bc88ae

          SHA512

          a585a0387b5b1a99e6fe34772a0779bae8f251b2c64a43d10c1c8132938e1d2805af6952ee702bc405fa71d1e1867345e0d6cc829529228de5259483f79aa9d7

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          0f1098d2ed853b96cdfcde2fdf78cf8c

          SHA1

          80a914bf177511fe9bb353fd7acde5e902f7cb6b

          SHA256

          2cbf1155a1c61e76e719698aae62c5f2d1a74551a9a2757b6622c81dc9666758

          SHA512

          9a2edf9b173b9bc0d4d7b5af48b696422408f7719b315fd2383b442201a168a8afdc2062d5b819a9ea81768023395121dc011973a1a6ca44c4bf40a26a75393b

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          c3581df981fc271110fc936cbdfb481d

          SHA1

          7ec4cadaf06410dad95d13a68e39d2c922cc5dd7

          SHA256

          b84299efb76dc577e9f6f53f942766548e926336d8f4783fc00f45d63062f9b5

          SHA512

          51ce6b6797a29dc00def1e09d80ee1f64d1db31092cac52840e4a734c0f3e4d245ce5d59f1bf35a0c8c8fd6291d7be4bf0ee44f19c1e0ed32c0815bb24f0aab7

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          9e4e4d10d7538eb9f6f114f4bdab12e5

          SHA1

          0050fe7c8f33bcde0a78287ed7848e45074d480d

          SHA256

          b917be44d7c2f883fe0284189274d9baaebe2d08daca71edbda0bf5b360f8b72

          SHA512

          a89fec69fcbbe3dae3dad46ffec7e82065ff8a7e77c0de60b190f2017af1ebc467e5371aa75ac96356d1297f91e0a98f6567facd163901c9ab1e19699bcd5501

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          b1fa6d67412eaa6b4d8d3dfed96ba567

          SHA1

          ee650cf977209f91e590420a8fdaebb6ea09b091

          SHA256

          128af99d2643b509bf9db3c89cc24aecf05ca620cfb6091144dfc0135fa6babf

          SHA512

          181f96217059629261722b98b8291a6adab2c61eb0d2e83d514bb63c8a70f5ba0c9824bb83b8744b6ec1a09e6230f161a4bbe066ac38a4cc02d6ecfb1267bdac

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          0233cb03959320452948efd97965a94f

          SHA1

          1c407ed254a0271f3e85739d21367300536f6bb4

          SHA256

          bfc639e3fba9501983add0ac77d06660f3232286b8c4d236ffb8dfa64bb7c2d4

          SHA512

          cba595aa80f90cb5fc9be6b66949a06baecf9660262da620087deb1fc210bf37a1327635c912848a70144510712042d8843c71553794927c68d39eb476ff545d

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          53681e8ec604abc74aa6b572b9560024

          SHA1

          58a37970e3b4e9191c0b06a764e7f7d605df4b80

          SHA256

          bb005d6c2c96c7d9dbd7812c3b9a4193dad0689dc4d4c5d7204633d88ee58355

          SHA512

          72515288cb98bb7ccd91ce4953ee7673c3cace33046a8b8043de8e64a63091580ae965ad5a2027dce6d88e3647bcda0451e6dccffb672814951c1eb52f8d4fd1

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          6ec80e6fad601ddc087d360634a9655e

          SHA1

          d8f4faa8c703b98104bb114c9e2f586c80b1a989

          SHA256

          f18466d1b6ec706e00b5279ed953878e350bcc5ec78be68f5eea5fec5d71ce64

          SHA512

          c10ab970e2e44182d8450cdececd79a2bf68da2cc3b1e6b15d391e1304831981d54cf1ea86cd04a03cfc6d8995010b68e8862bfbc35db8ae615d37dc62b22a9d

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          ad022b2a45f7a49b06baef042401e163

          SHA1

          e0dc0a17c5848a7075bb9fa8aaf5ac8726050071

          SHA256

          570534b16d12285c5779e77e4127c4910da23d34f6f18935baf1919fc6e5acb0

          SHA512

          6f01efe6d1e7166bdeb547184a0f498989ecdb8dc04c80096032c84e055dd7f6995f57d8aef3016e2153959731e60fd60d637ffa079affd855307a5eaea8a23f

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          22a81993a6dea4b8af064f5a5dfac4c0

          SHA1

          d2b234126de764fcfb9bad51af0bf5e6aac1f2d2

          SHA256

          735c107d316c9c28d8594a18d1aa57750800f4cb5b6ab2d644792c7a2ab58260

          SHA512

          9274cf430221890d7c2e6485c1b6a297b1b8d230d62e503e4a1f37297d494c24b9fc97a14dba533fe6448419e5268b8eb7c97f57fb46439e6adbc657165d120d

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          fc688a70917959c5726b9e4dfa691354

          SHA1

          bbfe4505ae5dfdacb037fa536b9d75e3ca898ed4

          SHA256

          193c487b14e087a9a46f83f50c409500b8f6ca65ffaf2287cba0f34d9030463d

          SHA512

          69bed840c22ae49a15370e6ed18dc9d0a97b05e659f579f9037d01c423f0b304e551c0d571032e18638cc17f72369053b0af55e1130bd19b4cefe06dea63722c

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F0ACCF77CDCBFF39F6191887F6D2D357
          Filesize

          242B

          MD5

          590064d419b23dbd78bbd12055da5f03

          SHA1

          0d6ed13a13056a7f86c148ff5b1d0e072150cb7b

          SHA256

          225baffa2705273589ed5ae0c2f2f47eb3b7ada0183b5244136006de39e4f131

          SHA512

          6b58c2d80c7d9a264025c3b3c447c37caaae86634c4d74ed8cb915809e3e6dcd49c3ef742f80f70b07d55d7c2adac6759affaf03bc03041243b64f4291c6a3f9

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\CabEA60.tmp
          Filesize

          70KB

          MD5

          49aebf8cbd62d92ac215b2923fb1b9f5

          SHA1

          1723be06719828dda65ad804298d0431f6aff976

          SHA256

          b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

          SHA512

          bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\TarEA72.tmp
          Filesize

          181KB

          MD5

          4ea6026cf93ec6338144661bf1202cd1

          SHA1

          a1dec9044f750ad887935a01430bf49322fbdcb7

          SHA256

          8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

          SHA512

          6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

          Download Submit