Overview

overview

3

Static

static

1

c9233331dc...8.html

windows7-x64

3

c9233331dc...8.html

windows10-2004-x64

Analysis

  • max time kernel
    142s
  • max time network
    146s
  • platform
    windows7_x64
  • resource
    win7-20240704-en
  • resource tags

    arch:x64arch:x86image:win7-20240704-enlocale:en-usos:windows7-x64system
  • submitted
    29-08-2024 15:55

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    c9233331dc5ce7412ad63e60a966ae44_JaffaCakes118.html

  • Size

    139KB

  • MD5

    c9233331dc5ce7412ad63e60a966ae44

  • SHA1

    43f8c5f0d58e148712e601c1c4bcbc2c2a1be14d

  • SHA256

    d13c2b82cccb6b61218cf8493e4970d248dbff352c285d6b497464c42d631050

  • SHA512

    3a6ab190a273fa3e268fd15fc35da8dca52d65aa1feb2c1b407f1b8b622f286908724a98a8bf8617839444f18a063f22be54302413f5c8b05b44acbc34304b78

  • SSDEEP

    1536:SKkv8FcAl9lsdISuzm64yLi+rffMxqNisaQx4V5roEIfGJZN8qbV76EX1UP09wee:SKkByfkMY+BES09JXAnyrZalI+YQ

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 41 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\c9233331dc5ce7412ad63e60a966ae44_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2304
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2304 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:960

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\3C428B1A3E5F57D887EC4B864FAC5DCC
    Filesize

    914B

    MD5

    e4a68ac854ac5242460afd72481b2a44

    SHA1

    df3c24f9bfd666761b268073fe06d1cc8d4f82a4

    SHA256

    cb3ccbb76031e5e0138f8dd39a23f9de47ffc35e43c1144cea27d46a5ab1cb5f

    SHA512

    5622207e1ba285f172756f6019af92ac808ed63286e24dfecc1e79873fb5d140f1ceb7133f2476e89a5f75f711f9813a9fbb8fd5287f64adfdcc53b864f9bdc5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\F0ACCF77CDCBFF39F6191887F6D2D357
    Filesize

    1KB

    MD5

    a266bb7dcc38a562631361bbf61dd11b

    SHA1

    3b1efd3a66ea28b16697394703a72ca340a05bd5

    SHA256

    df545bf919a2439c36983b54cdfc903dfa4f37d3996d8d84b4c31eec6f3c163e

    SHA512

    0da8ef4f8f6ed3d16d2bc8eb816b9e6e1345dfe2d91160196c47e6149a1d6aedaafadcefd66acdea7f72dcf0832770192ceac15b0c559c4ccc2c0e5581d5aefc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\3C428B1A3E5F57D887EC4B864FAC5DCC
    Filesize

    252B

    MD5

    b8c066e50d222efc6a4ba96bd84afbe2

    SHA1

    6237ad9907eb4db4282577883811ba5eadea0581

    SHA256

    affc02ab98101ad8b20f3154b08ae6c8a0227669d299f2cb62f7c02d22130b27

    SHA512

    49da37f8c73c8254f893f093e88e52e98d7bdda0a8b4e0bfd7755ec2b6ea454843f7a57866f4c9478548cd5cf411c8bfbc4506819f47f68aaeb7619e9f321011

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\3C428B1A3E5F57D887EC4B864FAC5DCC
    Filesize

    252B

    MD5

    7a9b83f1170f234a034c6321c27bc1e7

    SHA1

    544270f92c52af8242fda14771bfd71d225b80e9

    SHA256

    5102ef813d21ef458555fbed8494217a1df65cd1788529dc9272effc093bd48a

    SHA512

    d4bded52d0977c883bea0e47bbb9c90277a7bf5ded7154d88fa370ba04fec645a7579080fe9ccee98230f4d2f21bcc00d9f56ac069b4a7e0e2bb917559de1ffd

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    79cd34f10ea5fc690cad49d0843b247a

    SHA1

    bf4a99f180cb08355bb1760644b8a050f7e5a7c2

    SHA256

    2460af0203e980530b3623ce38b664c3bb2c33f7ecb007872227ba7f5e32fca1

    SHA512

    3a58b536a51745bbc73dfd64e51d5a684cdc9c9f70212ef70094691ce8af31de92d317a56738ac3540071126f21998e2411b1fb1e2d03f88e2c48659d758f07f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    c9f9c3b1b5dd44ca31d7aeafd06fa2a5

    SHA1

    1d24367814793359a780c15f56c41cc78ff26e31

    SHA256

    2e3ec0a126a4e6d327bb32e01f7e5ca27aee72756ba1c78a746814d166a79ece

    SHA512

    8ea87036d93fcb141040d04e235ddf06d62b4a34602c59f13924e79c87c9b2039156f90e579912793cbc27bb9bb31db07cfc5f3efd7504284127b5b5150c0a08

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    3cc148ddd66cc3695a99ac78513d103e

    SHA1

    2ec354883fe53c81d1df164847e4626a2dfa6e03

    SHA256

    13e644994e2f0fc21925120bd5b47d2c1f367b92bdcdc8320a58de9b3359ffd1

    SHA512

    83d759961d8e43a5c58da5108b2c0d3e0e7ff7f370d658b92c8d1b62a30a0ec8e67da980fe9276fbdbde6285d046ba7d2dc25d0151a79e7cea37b9588040e8bd

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    34ee7d9d9067d8ef200902bf41ad1986

    SHA1

    bedb665d7adef419a127a2225d50835bf0cef4e4

    SHA256

    1f1612c92401182798a60d203ffa4fa66972d929154ce2d6e540f139c919ba75

    SHA512

    ed0d5e31d03529e2a49dacb88a424102aaed642676589d75ca907136b9fd3d8dbcc49415bc27d7df9e222c66fc9b76ddf092582459596cbc3f152a3269d2157b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    a3a8ec861b0d1ff39ff90c87df1bf783

    SHA1

    7767dfaff4482654bfee7c20f0f4895c875a965f

    SHA256

    1f55b9277f7d3c32c94855513813e25a2035c47497ad628f4fd3fe409e3cde95

    SHA512

    0244ff6a1757367541f152e51b3509343d42d4fcf3931fcbfe400019ebec2d52ec98f945666ef6dda164e06e67a6ac7d4129b58ab0d45b24c1e9eb187bd982fe

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    3aaff7612531bdf7de462fddd13cdc31

    SHA1

    0431880b960f0d2be186bdb2ff0f3f171b7b6a44

    SHA256

    8bf2a17705de65ff84f719edb3066d2ed94fe711a8e173bc8db4bc4d5c8603b4

    SHA512

    b3112a67acd90f5a87832fec95b782749d1b531d5924e61ac50ff2e45f4eb0e00a0d6cdd5a38aa9c767700fd90785418102a22a4630ce1bfdd8cd87092016222

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    987a616b371fed58409eb40d48a69a0f

    SHA1

    2086b029d0e4033abe6221547b9cc794f034650e

    SHA256

    b04595207ea5aa643f7af26af8d68d06c115a0a2181918e851208fde180556a4

    SHA512

    6f22c84b17c73ce4711d6bb9470e13330db832c5c93e0f7b88d8f2238f36d0db13b0b577cef70be5357c72cf963a2273d3ef2a770feae4ef5dd18118ae342748

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    25481160d4a4fd39998539705fb6a314

    SHA1

    e8292b7965b41de48dd885fbce34966bfae55924

    SHA256

    f7b97ec7d47d0f4b8484bf9c165a9324cf19e1d924ddda8aa66fb53140d63134

    SHA512

    825e1c017c3490a153a2be8e66c308a0de912a81f5f0e1c04d6ce258dd37f488d29b74cd8826e71a8bff6fa1d7c720ef71329c654b3d42004f5cb0bc10386010

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    dcf78486bf7324f34b9c31e50a996c65

    SHA1

    294f765e21f267c1e9ebc4b278c47bba8c58b217

    SHA256

    9d528abed59aa3578f15226e4bf575a9005a6de5b16fa86917cb662e615907c8

    SHA512

    7330759d18280cc0207688a9c3bab4a461ed9effd65098bd7a8a34884e3073ca87c393108b2b4af95b1aa9be7ab606d7519d591fbaef2e96453d495fd4c05ee1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    9baa1c61496ed63668c72c9ed1f3f73a

    SHA1

    3b120f3a182c7854fdca19df86a6d02d0beaa216

    SHA256

    edd29e8e27120f9bb2a3cd7f3293c8e8b0801d51351d5c85601c0cac443acdcf

    SHA512

    e0726d25f5f51b6ae112c331219228d8b9bb5abae216933ece13cc942539aab2904b1bb1dab461d35f67a0d41b387cb0050332eae1a493789599a42836f42eff

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    6cbfebc9a9223fb79248303424787823

    SHA1

    f2e7d401fa8f0802dd4e959e827acc7a0b536a97

    SHA256

    4af074545389cc74724e1d05b1867d49bcc2ce83b375bf0f40336542ff24b366

    SHA512

    d5ebc434d7ba3b6b94214408868563dc6b545bd2c75fda2150427de1eb15483a918b488d169a698cee657208ee2fadb9cbb80dca5db7f207164fb74b0cdcb747

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    a8330db859bbf6cee2d99a9decfe3bc0

    SHA1

    f404aafe6cbc71f560278d6cc1d16693cc7c8d66

    SHA256

    10e9e313e293e44f6e0a210af6949c1d88f0ed61ef5704b154937f2736914b37

    SHA512

    160439045343512c67962698bcbeb557107cb85525c22e5684873b95d333a52ff23e2f4f175793fde023633b46c99427aeeabb193614378340088a6a2947564f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\B46811C17859FFB409CF0E904A4AA8F8
    Filesize

    170B

    MD5

    2058cee6c4c5c300b5cc68699ff212d6

    SHA1

    417e140cd645819f49c62c1318153b30ad66ec47

    SHA256

    4f2c02893b5b8df16dc92e2207e8d72d24ad1beaaa1ec9f360e8c6f546cc5419

    SHA512

    0fc3014f510ca30b3f7851b8108515f76017c09808214caf24ebefb87eba1e2f815a62e72b4b1310030f2f520af73007aac2f17e60e9622639b941a8f0558d25

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F0ACCF77CDCBFF39F6191887F6D2D357
    Filesize

    242B

    MD5

    58c47a0213ac9498b5fcea3cc9d0c2d6

    SHA1

    f1266abf070eb203925aa7bc4b7133291c4f670d

    SHA256

    fd466145aa2d572cd73f7502d72e796365d00c4f7a151b68196ce14b0a12aefb

    SHA512

    d4b27132cfd70ac602f044db893165ca63e1fd5ef15e2d5e2b4a131a49afdd1f0c4b856951534915ef7bd936b39a6117bbfae77fe068b6092aa21106adf44e27

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\NFAY0EOS\domain_profile[1].htm
    Filesize

    6KB

    MD5

    08740fbea50578260da2674759be3de8

    SHA1

    5234fc061b7bfe48946f0743f3f19940758a9fd7

    SHA256

    1096a906599e44d57211676c20b3074ea10758835863b5ad4ea7690dcfc352db

    SHA512

    e2497ddf0a095543cd80276e047f00cf11e3ecd44e9a1c1d4705dd7e30cbe33ddf5d2174a72d19bbfea0c8558809973c90d53f41e94dae39191b8f477070f85e

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab26D5.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar26D7.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit