Overview

overview

3

Static

static

1

c97f50408b...8.html

windows7-x64

3

c97f50408b...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    148s
  • max time network
    152s
  • platform
    windows7_x64
  • resource
    win7-20240705-en
  • resource tags

    arch:x64arch:x86image:win7-20240705-enlocale:en-usos:windows7-x64system
  • submitted
    29-08-2024 19:38

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    c97f50408b4896253e960d893aa4fd4e_JaffaCakes118.html

  • Size

    8KB

  • MD5

    c97f50408b4896253e960d893aa4fd4e

  • SHA1

    7e213bfc80d1d6339e2469452acccca717dec96d

  • SHA256

    6b99b282934e707868c777a5ffd5d42ba993c966a9d5b4c7bd471bd798bbcff2

  • SHA512

    b5cf6930e344847dc0c3f3e4bb3e2210f0ac3987d198f1052bbff6e64028de58e6388ae00842ce0d2dfcfe2db9434c298537093ffd5734778c8059bb47459c45

  • SSDEEP

    192:SIxBLZMtKytuinvmQ3Frd5Xpd5Xje4Ga6:SIxa93xd55d5iJ

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 31 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\c97f50408b4896253e960d893aa4fd4e_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2672
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2672 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2864

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    8155ad747d8c1848fa984edc9ddb1bef

    SHA1

    54a551ae73e65d9895910a6c092d51e4f7e0b706

    SHA256

    6fb4c52f5a49aebf62cd834112e067a54d6d93577ba13718bcfe4e42904865b3

    SHA512

    5c1414f80657d6e26f138fe94d7b56d4fc20d148cbc686cb31caccf76eb50bf171fa04af9fe5e0b0e857c576e1c9bde1ebac916d44be166e6d70e566cd6c57a2

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    3435ca9b3bb4103e03c5d73391e14bf2

    SHA1

    da6e3ebc6d367e19d742f328cfda2ceb3db1fdde

    SHA256

    985451a925b19c5564354d88d2ae7ce647441fe8106471426f5b9b3af2b9d414

    SHA512

    78b3845183cc58505401364c6c07d005a90e1de23f190b0717e5c405730442b6d8dbf520b553d9af20b4c5bfbb798ddce07b287dc78bec190119d5f8421b3a27

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    e3fbc4e2bf1ad3c2d2db31196b7af98c

    SHA1

    a3b7ffa44a7592be7ca4de6351b7c03cdd38d639

    SHA256

    438050a06240b1101a54b758eee26b9ce3647864724f49d1620f7308720250f4

    SHA512

    ed25b5cad23b33d66b7725d313f08521c73199d69eb9148e0c31f94b035ebf1fa02708c34d3c39d3a0e52fd88ca01329964239f8c147651cba1f393654b2667a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    cbe0bfe63f5a1380630b0aa39d15b5fa

    SHA1

    ba54f363e91774a107a8318b25f1a388b84f0c3e

    SHA256

    2d028da1018fec5f7bc127d7122ebf5d63262debb71462ff39371e609757d56d

    SHA512

    4393152c962f23feebdce36914181d9073b2a1d3ea4ed4fb3d16f751b6f050a12ec1c9f11efbeff73070f8163d440e55b9afe9b6d9ebfb9ff9e732ac80bdef68

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    fe3fc87ee5d5d9896ab6670da16eeac5

    SHA1

    87e628e73334feb7fee31da43b9a2f45f1a4aaf1

    SHA256

    baee617ea8e39011628524e27d67943a4133314ec4cc6f9cae25a497c05925f9

    SHA512

    4b4c8c4c0ec0586df1cba4021c1b082fbc2a92643e6ea19070e4492fea793be984f5d2a6ea03b7462aee60e013135ce638aabc25b62df8555b6d0f13c172bef2

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    f67ba0328f20c914d222004d7dc72047

    SHA1

    b1438ee93b404f8e89195abdd7f52297b64130a5

    SHA256

    7482356367e1730f6cdc2cd10b72c01b21347c0e76f4789e3e786aa54d746612

    SHA512

    0b5e34d6e378da35393076f9432d4543a3c03fe847a83d7e1cfe78dbcdc2d4b34a170adf5f5ef1c3be693d473490a84da925aff9da524b5125eebf0d54e06a32

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    674dd42ee58077ffea2a319aceffb636

    SHA1

    066ac1ba3c26ae25cb81e476f129554aec20942f

    SHA256

    2fa400b2dd504184471d17b9578c85618e5b8c2b066f19cfca897b6a606373b5

    SHA512

    9b1f6b73f8cfce8983eab9761c155397f14c163b152f91f19cc9bdbff0295869026e0c3a360b62968bde57e455ca8abae3ce6d7e57663fbb0a470c3030e05859

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    eb52dbea42dfaeb3179e52befcfcd7d7

    SHA1

    3c7e0dbc55860957f1fa165732e4964c9473e6f1

    SHA256

    d2cf343e11aaf8e1cc12a6340ac54fa55c3e7960f36d5536537373a2804dab3c

    SHA512

    ec8adf688fbbf4383d3adcb32f857a6793e70069461dd4ce1dd5095d7b9c45f6794ce6b16a06c2dedc3a3d5ee55f7213bba1d4bd149c351b623ee618d4954cb8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    46504c65099979a4d86c7ec7996e013c

    SHA1

    a1379f9e1181c922ff5e3481a3ef0532ec91b6f2

    SHA256

    46dd91b60a762b08c2b1b82bc68bba8fd55a9b47ef23a345a0784dc358d03017

    SHA512

    6fa00b898f2660ad6faf02a1615a17952b160de0ea736bce7cf57b1bd3a0703b076186646f23019a5ecf09022f9a95fcc317d4682fab0f3f19829f82d53a77fa

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab23B7.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar2429.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit