Overview

overview

3

Static

static

1

c7abffa7e6...8.html

windows7-x64

3

c7abffa7e6...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    149s
  • max time network
    150s
  • platform
    windows7_x64
  • resource
    win7-20240705-en
  • resource tags

    arch:x64arch:x86image:win7-20240705-enlocale:en-usos:windows7-x64system
  • submitted
    28/08/2024, 21:20

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    c7abffa7e636b679900e8743f3678bc2_JaffaCakes118.html

  • Size

    27KB

  • MD5

    c7abffa7e636b679900e8743f3678bc2

  • SHA1

    06b7bbdd6e070fc10945ce8d0d3791d9bb61bec4

  • SHA256

    f96c4ff532529a878046aa941284410d01b6d66d39d5cb8daf2fdf93bca23553

  • SHA512

    e56c9de29694d4e1fe9fe6bc356ff718819039d28960427c7b2d627950663fbf1e0232571d98e4875b2f72be2a80dd270311c7b3ae861a023e7f9425a130283a

  • SSDEEP

    192:uwvMb5nSmnQjxn5Q/JnQiecNnmnQOkEntrDnQTbnBnQ9eGIm60hMaQl7MB8qnYnP:PQ/qbwKM9SGpv

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 31 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\c7abffa7e636b679900e8743f3678bc2_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:3012
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:3012 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2564

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          817ce8829d502878c30972079ecb0d43

          SHA1

          5b3cfc6efc03ebef7d5ca72bed3e2c3548c66013

          SHA256

          7b1b90e102beff9cf759ac11d6f879f8053a250c69ced2f092ec65f0893f4ad8

          SHA512

          2d8f6802796fe3afc51a64f2d617002dcf1e1f70dbf23fd29fccdffd82bafbd89ac31d7b9b93418eabcd60e93992c39dae84fd11e928e7992a7a8753a1ec39cd

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          a523844b7ca06f2358a75c7d0bfa6141

          SHA1

          37cc36dbf70b5db895ea6c62e869740375ec1425

          SHA256

          e8228abd92805c01a98a65174911ad9f87782bd1fcbc2d2350f11f6e41cace22

          SHA512

          ef76b0a88937fd3fb1c32aa84a4e83f7a1ed3f7ada9eb2fbf5812fd0567551e31943dbdea27b67c0891e7d7fecfd2f9a555c135945bc5ad8e6e365e88800e7b4

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          e1dfc84043ecf18b0ea594468d8695e2

          SHA1

          e13e2f3a4e8b5110a2620bb1aec4bc605f0f6776

          SHA256

          92c371523aa8bae49725e246d0d8820a4506da0e48f3f9891231f9fd2ef40bc7

          SHA512

          45221314b182e51eeb3c7f1cba570f5340092a97f8538bd44e5215f3d6eb501fe4e1c81df464fcb90d04d54617c469c702183ec9ca617236d5836aa251736dd5

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          c183653c6e106e82faf8b4fcbe6caf2f

          SHA1

          bae387666fbfbca2a0cfa1ed134d17e7102f1085

          SHA256

          40dcd55b24d421fd097dc8a18e1c1a2034d7b747cc82ba81d3b82519b08aaf1a

          SHA512

          3d04b048df6f3b323c03c3c6e7bb0376f7b0f8218537f80dd1f9a85c631e28f90815529af901b850cfa38195421b5d71b572fd109945c5401f9033f57b88bec9

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          8bb7446427b6d815d6d4d7575e4655a3

          SHA1

          f672914736dc42c4f2fe46b4ac6dfac354110e95

          SHA256

          7f54c336803e80db454a90a04574e029ada3f6765cfdd79e5793afd2e6cbbf05

          SHA512

          2b46c874ec07e12b483351230b382d6a339feec6e86b8e9fa0e82ad706d1d4bd4b93d8d7866e5c4264a341e4e0908c52dbeb393b6ec34f7e2c45a4d0f42ac98e

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          f3728ff7cf670c96730352b69094eb5e

          SHA1

          5fab6152a8a339ad7346a6c583a2c5a19871c102

          SHA256

          b1c5a95ddb0a51f41c1825db1c890165ab8dc269c606a83f01328c9b484962cf

          SHA512

          714a165478b76d86a17b6849c9108b0996329c53ea34c0d446f5d6c562f603a8a7d46a00e7b4779906508bdf4aa3ad9b38b78496e1886a8ee21b5a583755545b

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          0a91ff0f8beed58c1676739067508d52

          SHA1

          0017ca472c897ad2adc21689aceff68c976e055f

          SHA256

          bf88a915f875a7f7998ff1ba47f96c8e0bdfa2089bc04447f71de3ae5128ed9b

          SHA512

          9f4bf921ac802475b5ce94c278eaa12b2e9eafe46c33f2d48c8eb173341050fbae36ec81341b461ddaabcd8175e5537132856739b03dce05531e8ed319f60e62

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          46793e613d0d6dd389f680af7f7be5d5

          SHA1

          8b5dab8ef10829552d7fb2a4732759166949e0f0

          SHA256

          f5894652ed623ec77c9c845c64fa9d29e8d5014aa03e7a98e0e8491914d54b56

          SHA512

          bbe5067bcb1b91a965636748bea792d908a30958a3343c9f24f3a5c346cddd622845e85e1335024ac20a428179033ee5c772ab84cf861b7b75a2fb3963c9cc53

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          b950098123c7e42d3a8b590475c212bb

          SHA1

          0cb797b05a4c6dacbbdb6e715649cdd993b540da

          SHA256

          22bc38b7bb4c6c05c7c65fac48ba8e2bf40edb4f496cd1011b46587c85d77165

          SHA512

          1b97e307f023f030161fa7797d9f78e306f2836bbddd8dd80ba661c28961adc46fbd3594d9b5d7df5201b9a6d276dd1dfafc05e921d0831cec3323c126e28fe2

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\Cab1E7A.tmp
          Filesize

          70KB

          MD5

          49aebf8cbd62d92ac215b2923fb1b9f5

          SHA1

          1723be06719828dda65ad804298d0431f6aff976

          SHA256

          b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

          SHA512

          bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\Tar1F29.tmp
          Filesize

          181KB

          MD5

          4ea6026cf93ec6338144661bf1202cd1

          SHA1

          a1dec9044f750ad887935a01430bf49322fbdcb7

          SHA256

          8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

          SHA512

          6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

          Download Submit