Overview

overview

3

Static

static

1

c7852090e0...8.html

windows7-x64

3

c7852090e0...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    144s
  • max time network
    146s
  • platform
    windows7_x64
  • resource
    win7-20240704-en
  • resource tags

    arch:x64arch:x86image:win7-20240704-enlocale:en-usos:windows7-x64system
  • submitted
    28/08/2024, 19:38

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    c7852090e01e5ab627525d8f18aa550d_JaffaCakes118.html

  • Size

    119KB

  • MD5

    c7852090e01e5ab627525d8f18aa550d

  • SHA1

    4f60675275644d4bd764d961faaebc185b8684a1

  • SHA256

    61438206cfdf2dbc3a2ef73b4fcd9864579f555beb0d76d7608eebdaadb770a3

  • SHA512

    051befb6da9d059b434d46d7685bdb8b5f970260a5a7c13de9ba8710368a27cfa805258c28c7d37948c6bf63373aa9f289e504965d21a32cc96f1d0d6ec6a80c

  • SSDEEP

    1536:jAVARMdl0MqtFyEoYkgnhOMnXaOti7rm2ZDBKUY3oGee5mWs4Lk6lZrin844JqVG:jAVRUkahOMX7iBBKdTls6ZrS5s

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\c7852090e01e5ab627525d8f18aa550d_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1244
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1244 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:1992

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\3C428B1A3E5F57D887EC4B864FAC5DCC
    Filesize

    914B

    MD5

    e4a68ac854ac5242460afd72481b2a44

    SHA1

    df3c24f9bfd666761b268073fe06d1cc8d4f82a4

    SHA256

    cb3ccbb76031e5e0138f8dd39a23f9de47ffc35e43c1144cea27d46a5ab1cb5f

    SHA512

    5622207e1ba285f172756f6019af92ac808ed63286e24dfecc1e79873fb5d140f1ceb7133f2476e89a5f75f711f9813a9fbb8fd5287f64adfdcc53b864f9bdc5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\F0ACCF77CDCBFF39F6191887F6D2D357
    Filesize

    1KB

    MD5

    a266bb7dcc38a562631361bbf61dd11b

    SHA1

    3b1efd3a66ea28b16697394703a72ca340a05bd5

    SHA256

    df545bf919a2439c36983b54cdfc903dfa4f37d3996d8d84b4c31eec6f3c163e

    SHA512

    0da8ef4f8f6ed3d16d2bc8eb816b9e6e1345dfe2d91160196c47e6149a1d6aedaafadcefd66acdea7f72dcf0832770192ceac15b0c559c4ccc2c0e5581d5aefc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\3C428B1A3E5F57D887EC4B864FAC5DCC
    Filesize

    252B

    MD5

    4042a6abce214005e800d36f77ea3ccd

    SHA1

    30d807fc8d00b472dc9981d83ea6359c24e78ca8

    SHA256

    be6acdd52635be106cb61550f180861cd4b96688695a55debc68686e3555b150

    SHA512

    503ae3130fd977550a0f064292947182ed89205267534913fc1234ae50d785c90a0352b360286c8b68c5bd3bbd43b4e0c121a2c3f6b686be3db5a72822dbe8bc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    edd31c1c7580550ee6b42849f57fc7ec

    SHA1

    6813ce8be48604dbf0ef1359385cf35fc53dcb23

    SHA256

    dc03bee3faada602cb9cb5f2ae17e1495a2dee611805258c14b483dd60b88585

    SHA512

    d503c13e0e5afe88221e663be1da091c33168208481268be2690aca15cad2a29a84bc5eaca910702dc1b34566277e24bfbe03ed52b7d69a57b9e8010a3176089

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    15dde54e48794da00e7d358b45333548

    SHA1

    dbe7285d3a69bf0970ecb25ead28c3296c85216d

    SHA256

    1f3cf56668ae027ee1d699403539a05ad44cceee5c9689b2ab7039eb90d93cb5

    SHA512

    2c22796b63fc98f23b1e03ab9612de8b0224f69fac8a5b3df05982c4146475a3aae8d74a4c2e03b737ee5a18a9778534bb542b9ee3500e461b8a57d9f51f2d36

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    b45cc4d80f8ded2e2af86d4e8ff565df

    SHA1

    19e6cb0ddd4e33a4e9b8ccace065cd559f03e50b

    SHA256

    189b2d32a8953a076a9679c27323860ad549a90c72747df87df04a9052bd03c3

    SHA512

    96a4e77d09cd194c4e3bda8b681edf1ed03fb7e96757eae45617fc6b9e72d7313f89d1a1a711d6491ab6c968934d7b902927c94c57a704db8a033983989f3a47

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    31dad22c036f1302b89e170429c58a98

    SHA1

    1a5db38a355a3787b1446e6ef633db49bfeabf3b

    SHA256

    03a2623855b7af2ca90cc175f986aff2d7b55751517ad9aef38a5d9108cb746d

    SHA512

    1978db87a0ecd7999b229a6107b4f9c2dc11c300e7fc42b55187524c77b386d97457252b68dcc0e9f8fa467e8fad61d59de050292f315b2b3e88a12997ff7cff

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    3e1c3c3d24c79781be6eab3e018fe731

    SHA1

    495492966c4dbf5c7f0e5156db57e4fe911edf3b

    SHA256

    93d4a6c35940d7eba02ed188899a1121b4f38e3201d07c8e39795ad0284f9b71

    SHA512

    9fbb808d42c0c69638702c6923cf8548be34a910a5e8bd084cf6201483aed67e91a83851dd0256045557e9b34cf7da16211bbcca3629b509e828335737fc4d49

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    70da45550bd0ac37ec553b49979c12ea

    SHA1

    985fea4d0986ae58525f5348120d8e023e272618

    SHA256

    28a3d60ec37055c791596b5cade156c830c1bb7f11229d2d7376e7e11328b40a

    SHA512

    fad509f6b29877b1aa098b1449ae0f9547f4998770968f73b7ab056cf496d932ad72e87d528c40ce9171814096dea7c7bf680e31098258d9980199d021876937

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    61b69deaf6acd154e6e93a0b0763447f

    SHA1

    b3defb664a17bbe6b6e4a4c78668fa00a6512791

    SHA256

    2e3a6e96a2bcd5034b7089273b4532d64763f724d78f2038e44483f42f295834

    SHA512

    e7a66d27f9764ce2147576d67f3585d3eff0ba76271459374783437e74866db31d01da8beb6c6c4da34c29d1c75eb6c97d9034a9f7532852a55fc49a3d1a20c6

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    57aef6c9327a58a89b45bcdf022a5fcf

    SHA1

    88e070868150746026b46c311aa19fd86c4f6728

    SHA256

    736be05c029133d82340862c7853d626615a9a65eab08d439c805f04c66a27b3

    SHA512

    005be1a1f30e56aae2efbb53ab958b50e7262f8a3f15a4061678943c2aba239877366b91cc0b5365e7a609616ca292c2f8d8d3067348c25a10c1a7a396bd9428

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    94288fda3614e7d63d94a22460461fa7

    SHA1

    53eaf91a92b1b608f799179a1b3f7f4637301b2b

    SHA256

    311ae153c7664a6e8ae1143d7a79cee3a38347a318aa0025e5d49666bf8f1c3a

    SHA512

    3a427a30a24a6bae222332f25227a0aa337d680783bde5de9121faca7538e530858c3367cd780e0a06d89ae19c4d58f6d756ad635b5abb28dd4df4fa340f865a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    e2111eda8b5a805bbb4f806472200dda

    SHA1

    4df99ca30ddf7cbae89187ac2ceab5ee8f879fe7

    SHA256

    06607747a1d59197ac5ec53c8cc57aacd06a80d7afd8498fe577423430c9fb99

    SHA512

    d22531a18833ca30a31201b7b699b2cff1be48d814aa879fb28821204ae694c566a79500593e613a58b3b6d5197a17dfd9b98178a96fc7f71805c7ba2a6d150e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    feacc67cb0eef5554c83197effed87fe

    SHA1

    69cd9091952ce135db854bb8c95bd02eab428dde

    SHA256

    32e3ca9c565e2cfc4eeb60e46bf18d49342a5f8d4fdba586acca7a0a197da55c

    SHA512

    6a7defd29387606f30062a250968ce3abedc1e011d1181a96de439765a52573f0ca5cde772e1c7cee444819b78de67d422aea075bf9885e15f0d146da10de7bb

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    e515bf8d0e743c3c14db8cd536ca40a6

    SHA1

    43ac2eb775be5252ea729bda7fa366775204a697

    SHA256

    2210d2515faacbc031c8bd7678ce28b63252089aa770f577021a300910895c04

    SHA512

    4a8d99bdf36b9d15679dab3852c9501b6aea21df5e0946ffda21b6d9f349e881cb5a80e15379b02501bb4a67bd874e7b507cc534a696eb4e7ece77438ee7ce4e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    baa82e7f61ba771c869ae29ceedd3f49

    SHA1

    9b5874e9943697887700c99dd568937a0357698a

    SHA256

    d9bbb58e7040ba96c94970deb14cad53a570f3b20c53ba1b28b7589018042467

    SHA512

    10fbfd0a2fded0667303c6f8a64e2bcfe71d089a8893ca805362fa96f3c75ae5da41001973ecb8232cf1eef84ef944a7c7bab1b02b0361fc0ff80e5bb8a25e24

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    041c9164f3c6bc689c1214edb8660280

    SHA1

    da6629cbb172e8d304875610c5d8bbbf15390ad5

    SHA256

    b526658a5200ec3d99d8c8e308eae239b807726649cd3cbdabd4c9521550087c

    SHA512

    0febe424840c6919d8d889ba50d8ee1d067d210b19b6c07b95018152378a441ecac9502876184dad700878f0075a43114a27388ffdea52d64ba8b7a2e14bcd6b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    f8d6c9268c338abf7b96ebc692a92b62

    SHA1

    459ba468eb2839a15fd6356e8c475855eb1b7487

    SHA256

    16165adf947130f28ab642ce5d043320d1b3ac3950d053228e9d2a7042ccc9d0

    SHA512

    41fd65ccd56163052923c7ea1b2921e1c6223fb347608e0369741104858da07b7fa50e3fc38bc0cd17464df4ffe51c6b5e4ea073178855288b63e1f4edab0102

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F0ACCF77CDCBFF39F6191887F6D2D357
    Filesize

    242B

    MD5

    92587abf1508a7f86bc99c34cce6dd07

    SHA1

    9580bf9d3e9e9a4888417555e02fd72f1e77e102

    SHA256

    29c2537cc1d755a58044ac7af07478d0a8624bdc9703687a2e5646c27f8ff5b2

    SHA512

    7d2a2b5fb5520239c6863bdce675e5439766f54c15b2fc0d2323ff79842e5398f36f7bacd2528006627a5bd7a00053ab70b00701bd6b4807b107d4a1fe727fb0

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\4RXRX1VH\3638369130-widgets[1].js
    Filesize

    140KB

    MD5

    84103a698d4e9737f9d77f7e27af073a

    SHA1

    02f5b7aa518ccb652d70c321513e24acf6442a17

    SHA256

    300883c2df172d0406675649cc439436569d514e99a336ebabd44f8b7f79a8e8

    SHA512

    4aacf8b6b51eafe6d47acef8f185e694e92a7441276c9b9432eadc4507f258cabcfdaf684e079446d75abcfc6042d5b32d2d50ee565b19a9a5d5c641895f2538

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\4RXRX1VH\530446030-comment_from_post_iframe[1].js
    Filesize

    11KB

    MD5

    dd95a7a91ac75f0d6d0de608947333f9

    SHA1

    881e5d31e8bdebc36023ac626e11ee6516b9eb23

    SHA256

    5404d009c4fe03e466edeefd2bf72700ee02f516756c549d5df1d0cdfb5ee848

    SHA512

    6a0961c71185c0c7e1a4586836c30e18b8a1663a5d3a87b9efe530bf2c306cb58dc5eb8880012fe87305f40fb368cdd4bf84e28428be3ab7889c51e5133a9cb8

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\84EXSCRK\2549344219-widget_css_bundle[1].css
    Filesize

    30KB

    MD5

    1262fb3b6c8a66bb33af5bb8de15a59a

    SHA1

    7ce924780c5287c5dd8dbeae4e712775ea1f83f9

    SHA256

    d539a910089008f073b426d44a496f1952ba01b9ff018425c18d21bea42aa128

    SHA512

    59e35343fe3288bec0d002d1a321bff62d70ebfda1f06c73771bffeb8d1c60824fdce39ad3437db9de5df4f08e7f4322611efbbdfecd3292706d244909c61386

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\J7FHNNOW\all[1].js
    Filesize

    3KB

    MD5

    99541db6eada5fc4f27a30a1396b2530

    SHA1

    8f190108a9729ac2a28fe8f78771ce58ea78a3e2

    SHA256

    48189bdcf695a73f273e497ea7437a8090eb70b1fcea2c87e22214d81cdff26d

    SHA512

    febd3ce8ce54aaf367a2b1713b6a03ed98e3ef708ff439de43f8c0d90fa13c8b0381fa892e59873ac0556ed43742ad639205fae84a2f16c9af566ad4417f3531

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\J7FHNNOW\fb[1].htm
    Filesize

    114B

    MD5

    e89f75f918dbdcee28604d4e09dd71d7

    SHA1

    f9d9055e9878723a12063b47d4a1a5f58c3eb1e9

    SHA256

    6dc9c7fc93bb488bb0520a6c780a8d3c0fb5486a4711aca49b4c53fac7393023

    SHA512

    8df0ab2e3679b64a6174deff4259ae5680f88e3ae307e0ea2dfff88ec4ba14f3477c9fe3a5aa5da3a8e857601170a5108ed75f6d6975958ac7a314e4a336aed0

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\J7FHNNOW\plusone[1].js
    Filesize

    63KB

    MD5

    65d165a4d38bfc0c83b38d98e488f063

    SHA1

    1c4ed17c5598a07358f88018a4872aa37ae8bc07

    SHA256

    b1320e0dda0858c87971f7baa0d53063ad2a429d232fd06b0067bda8b9eeb0ec

    SHA512

    abf4c755d88193e7e05398b6f934fc561d8e2adbee7d2170af399e145e54a4a8a93988e4af4e28d6240c0bd1bda7035ae97f67a85a471088820baae8d89f3d41

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\OX8Z8GR5\css[1].css
    Filesize

    193B

    MD5

    f4fcebe323c632b20c15cfc2f1361692

    SHA1

    c7c3e1e308fc6b5fa2c00c9ec13ec0a9e0f33da1

    SHA256

    7d04fb38a71b80a7e7618502f13a594f040acadcbdec4adbac0fe6b40e1abdab

    SHA512

    c3e02620ce6ad229f3f08a2cbf875342a99f61c8e6eaed8e788170c56f0ce463b3b4454c6feebdbf07989bba013cd908d1b73cf6e031e5b564832b5ae24800dd

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\OX8Z8GR5\pop[1].js
    Filesize

    124KB

    MD5

    4e52b7473fb5439a4a6ae8b48d7e1c38

    SHA1

    f27853125646cd926bbfd9504e72aa98fdfdfdeb

    SHA256

    36b44b4585f42fd4af7d626e6549bb0439ad8ce858803e1ff513c432a1580480

    SHA512

    02163152a5fa978f2df90523acbde440e3f72dfdf446bc30e08a680a9f14405ff28365e20e48ae4dddc0442bc236f67f74b37941e5ce00038d521aebb95081c0

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabC7F3.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarC824.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit