Overview

overview

3

Static

static

1

c9835a1903...8.html

windows7-x64

3

c9835a1903...8.html

windows10-2004-x64

1

Analysis

  • max time kernel
    118s
  • max time network
    127s
  • platform
    windows7_x64
  • resource
    win7-20240729-en
  • resource tags

    arch:x64arch:x86image:win7-20240729-enlocale:en-usos:windows7-x64system
  • submitted
    29/08/2024, 19:48

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    c9835a1903a95bc72facab9014a366bb_JaffaCakes118.html

  • Size

    53KB

  • MD5

    c9835a1903a95bc72facab9014a366bb

  • SHA1

    f25889095660ba5c011ce49fb83b3fe36bbca97b

  • SHA256

    ca782191a223f6c23e2bd81bc0cbe74b225953a5f66d8467b1967f787a3ba2cb

  • SHA512

    43116cf0b36bca86a18f2c9a15bbd2a215c47fa4961edda57d6067baee4ea6d8bb17bb5f861f48a06e90a9d918b6a6f104177d97a1707303c562dbae46b5dc88

  • SSDEEP

    1536:CkgUiIakTqGivi+PyU9runlYs63Nj+q5VyvR0w2AzTICbbioJ/t9M/dNwIUTDmDa:CkgUiIakTqGivi+PyU9runlYs63Nj+qY

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\c9835a1903a95bc72facab9014a366bb_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2076
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2076 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2332

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    964ceb8aae3244d822d3312e78e41c4b

    SHA1

    64d2b360cda210733bea4011e66f38835adf3511

    SHA256

    c8b0577a59016a8a765c905e7f839a6993d551dcf991c5a94e35746bc14d08bc

    SHA512

    82b18243a368513af0d2e5427525fc496ae71d285798d030cf3608dc918c389659977487c24937becddbe046e91e694064b684191c3a56f46aba7ae7217083b5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    64f734a69cd1ad81dd4c032b5e51e95b

    SHA1

    ad7037dcab914d4223872e116354bd1faaa8b323

    SHA256

    1346bfa30bf364032113fcc43530b09eb37d1c25e422caeed837be23fc7ad72c

    SHA512

    b52a913a24ab4c6edfa79bb477ea964e7b97196a418f9619b5ae681cd6d4970c45314d76f50eb70c04d61eb3cd470c762dac870ac54e9bb610d219aa863709b0

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    516f9dc1025eeb1f73b1a9900925c0bf

    SHA1

    7934cd10bde79a808cd7bb546320969cf4da61c7

    SHA256

    48fdf8a4d013d2ecc6c5d1dce5fe510813ca138a01e23f828feac454e6341802

    SHA512

    47f8b1faf9ef5fe65961cfd4577fa6e157a7146bded3913f5728b2f43839ef66f35eacd81207b1778f84f0d5bbd7702231d5b5f949c22727c327ca611b9113ca

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    baf71f07ee82eaa599e8575eaf725c3d

    SHA1

    322fee2f5e0903ae9e71c05dee3f93a4037284f1

    SHA256

    36f14aa71138dec8e2a04803bbbd62347810c7a9afc5e6cd082c46debc3b9f37

    SHA512

    87d4f7584cca30da8a071da969c549b985729ff91182f60def0d4adf5033ca61987dd08614a48b6a030b76580dad99c1a058a1374aa9875b07aa4952abee6a92

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    67ab755c1ab24ec05d70a41f02f84737

    SHA1

    bf6a8ea8e0268ae646d517e7dc5c1c199ecd5167

    SHA256

    424ca66d9a78a6dd703a620a461f714ef8f8463ed2872b98c98dd8e6a5426399

    SHA512

    49ca42503fd12067d364f10507de5cde73e379db3a961546cffaca499bbfff8aab78251129593e3874eaad2ecd4daa34ba11f031ae7f270e34dc7eaa0ea95f1a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    950c185ae9997711098a03dc70c6ea2e

    SHA1

    fa6fefe5a69071c817e92cf492e48a69c8db655a

    SHA256

    eeec530c0137f9ac0c01489de8794dd3a693a8642988cc2e4a68f0259a5465fd

    SHA512

    a5dbe74f47118878747301615e3b1f69d50d15e7f056646eb277bf09b1c055daf5bb163b3ba03ba3bb571fe36f56c9c6a984d53567218b7b5eb85da1bf04526d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    a54dd7c4884af9b0136b53eff0b5e10f

    SHA1

    a421dc857dfbf7216e341b9adde15c049dde4f2d

    SHA256

    0e9082fe41b7e57e051442ad480c88092a9f0e69b898b0ff532387a267e6b409

    SHA512

    9167e64255eab21d0d11f0b3867ed0793bc2cc4198e39a3bddd0df2ffd965c3d7bec635f46167bd058a0a958accc3e5c384b817ecf1058507b568cd07c7dbf2d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    2b8cbc2e0caf70878d3e4469e8f745cd

    SHA1

    c69aa3c8cef951fcb190541afc6f5d1e37e4d994

    SHA256

    20634abe5f5a0e99dc5aa50e2f272e61105494f7aa3a6009ba82116e4d76a7b0

    SHA512

    f892f8e97a19271fdd8fdf76cf7f7eafc5f000feb745b499e81d736802e1111dcb92e0170bad53baa2471ed8418cfed779cde5ebe9b253dbb2132ad51e23fe5b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    eaaec284ab01b43b64b5247b58cde23a

    SHA1

    76d465159091af95c7e3cdb481616d6049c23c0d

    SHA256

    caaad745b9102d2bc0dc7cf6438bfe1aff06f31f40353b4a3844dd7c48a5a753

    SHA512

    4cf933086306db4f2cc3d3df167221814f643d748f169c9732d976b39c18164e299b00eea7eb7845e5496c90267767b5c047b4ca79b9a6bc063dff7fa5c0f4e5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    b2f004a4039ae3a0ee2eabe89ae6ab1f

    SHA1

    b4778b1a6b4ad9ee3041aaf07cf6b1241cf93de3

    SHA256

    f1e03bc88294ee906b9529873e444d01d7d163a9931dac16cadee8d69bee7d84

    SHA512

    eacc2ffa50c711581474181bdc3a48a34119e95956291e57c16d9b4e8cf29d03d6379c869465cc4d4c34a31ab500f85b7d680c60a9a4e86df216af2540e8c3eb

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    23dbbb68e8548b0deec24c9e640253a6

    SHA1

    c1b994c8dee034004c46a6b7e594388d50aa9d63

    SHA256

    10c25f85961a8031be1d75ac47b0b29429ea9ef281a512e05e8ea5dbba3b0722

    SHA512

    2f19952734da855cf879c6205b9ca6035fc88e50513c6480b420a4e1a33dbe41f2e379fbac88f431da0390787f74361c2df5200201e44e100f4e7b4d25356170

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    16ad491b381c544f8ba4d9418377acd8

    SHA1

    9cbb84568f41e8efc29fc0ec0892cc6fc6d0ba6f

    SHA256

    b4b9f7e5999f91a9f9a1e6288fd9c548c95123be31493bcf4cac0df9de2e7e54

    SHA512

    8024d4cb24cc037ed5ddd0cb7519c1046e8ccdf5a8c72fc92a5ac66a57102885136c8cbd9683934f5b9589e8cc13316f9e7a94ef7ff9b024a40923a791aff645

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    0f910abe06871c20be527f34163a2dc5

    SHA1

    f5a84885f07d85a5add9b801f067f7b47c4f4cdf

    SHA256

    ca897c75c56567a06e1e3e62e94b464265b03419f2ea66c0c2220b2c5769ea73

    SHA512

    e8a613dd60317a8a6bf701145a6ee53ff9f3c898a00fa9978ad85e642402a2cf5437ad822b0cd8654ccc4a269789a954e1c46d3f5b0775e168da125064b2fbe8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    7723827aac639d06c0baf71c7b341a44

    SHA1

    0e94393dddaddd03442159c9f2bf1e8a15c30eb9

    SHA256

    0b1c45f87d1c7a3b326f8a525dfcae9d587dbd4b9a8b712e887ff5d25f9135da

    SHA512

    b7e6aa7803f3c0bb5b49fdffe1e21454e4ede073faf6a05dfe7e8dc0140402377ce5c473437b00e239835560cca03eae285bc8b4ba084b6234457cf46a422622

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    480aea7bd01a227b69de5013f5717b68

    SHA1

    d359878769be37ec46aee08b016c12b26ac141dd

    SHA256

    f297f36a3df0fa24e627ed001598387787dbaf3d12186958ea0c893b3c90a59d

    SHA512

    286b850d4c2b460a11f455f5cf8a113ecda7d606bcfff660f4dccad503097715c88bc0b1ea8f47d63889d3ff061b641eaa0f06cad26c9b5fe99c3c6060d6cad4

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    bdac7c47686897ae5fd8da3d51e9a284

    SHA1

    a1807a03b79cee099fb66f9abb40faed25db0238

    SHA256

    6ffc1146a81dfb110a558d2e720c986d87bd102ed614cfd1bdfa4cf7501e7a6f

    SHA512

    7218ec7bdfe80d8affcc0772fa6ebcbe0496ab78031a0528162072a8b2f1ede96274b54702f85eed5bc371bd9108b3c123fdd8ad10f2925f764bb1d6581cb85a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    9f1dbc82b1563bc66ea4de05b43b4174

    SHA1

    4513e92886b96e7785cb3f6e6c9442668628946f

    SHA256

    aa56623e187d9ec5cb36d4aa31d469d5d7989656000fd526d1fe4096f8813295

    SHA512

    6289e3d6918809ebdf9be29f17264890de74f66fcb26ad30e8d44f248583792aeee3ebea860942957b1173b22d22999442bfe43688d2ed6636ac6e62b188d88a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    070e7cdfc835d84deb932377376a4189

    SHA1

    b429b2ce18c96ce8d2ab10b88b560395397064e6

    SHA256

    d3fa92a8430110cb405b92507f904d4bcb9430f9aa2cdf9bd2f059f3b6feecaf

    SHA512

    1e2f7913f8881eec24388135479767595ea530244774f645ebad3c0c8fb3e275b57181f32c059e82ae617bb1395b106cdc1d178c8a683a00d9b75819fb68df92

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\40WV1DY9\glossar-js[1].htm
    Filesize

    706B

    MD5

    67f3a5933c17b3ab044826d3927d0ba9

    SHA1

    5957076d09bacaa6db8ddc832b4fd87ed8f05f8a

    SHA256

    97e800f4836b7030dd58fe6296294b7ff5ef1b5eb0e88353f230ea1608d2bb64

    SHA512

    03ba224055ffdbf32b7eea30c764dc18d66cc6d8707dc5fafab74e155b0bb3d4d691c5788b033a68f05299547297125122778fa7e3252f93e7343d918936643e

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabCE79.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarCEF9.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit