Overview

overview

3

Static

static

1

ceb839c9cb...8.html

windows7-x64

3

ceb839c9cb...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    138s
  • max time network
    118s
  • platform
    windows7_x64
  • resource
    win7-20240903-en
  • resource tags

    arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
  • submitted
    06/09/2024, 05:01

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    ceb839c9cbc363f4de986ae817b3f379_JaffaCakes118.html

  • Size

    128KB

  • MD5

    ceb839c9cbc363f4de986ae817b3f379

  • SHA1

    d83d77d3c87088a0a54aab9b3b5ebe88fe6b9076

  • SHA256

    9c7070c7f22065701dafdf80bcb89c30256b2e882b5d2e0489989f9f28faa49b

  • SHA512

    17c52b77a76b2cfc4adb04ed804a463651dfbe4cb609c3919d26012b91ab0f1abadec26862336b97b4d6ab6a84a7137c07f61060aa6f05d8dd10e546b2e8e4a9

  • SSDEEP

    3072:SrzAZgZZZfyfkMY+BES09JXAnyrZalI+YQ:SrzQsMYod+X3oI+YQ

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 41 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\ceb839c9cbc363f4de986ae817b3f379_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2364
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2364 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2480

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          00a02f08bfb9f933eb93be80dc79f9bd

          SHA1

          3f83704bc7112952340e84374b0cd883ee3d27b3

          SHA256

          8525535164bf553aaaecd8f794caebe3f9f671161d4674cf2fc1a522fdb9fc20

          SHA512

          fa6ee1dfa089cb73868e3a8397cd5788c7de7043b49062704f26534ae88424edf98fa5f7a1b04136bfef751db14d739f47a7f6e6c7761eec63e63ba5efdf63db

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          d153c8b7ec8b3432d8f58defbac5bfde

          SHA1

          c75618eeb32545031ed0087a30c75d5714b249cf

          SHA256

          f486d4a06398109715b1c3fadaa79003a4bad8d2c4ed8334e005687ee1c08884

          SHA512

          408e53c57966c24d2195602fed570b2e6c38e82f0beff504608d58edc48824c6187fe9a7c180c9b0569d522f5ce3e589cc415010b1ee6861c6d88e72f82ca942

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          7c090f28f635751d16005750aef32da1

          SHA1

          41f3afe115c066fdebd56a8de71e3060e2583fdd

          SHA256

          db914dbc8ffc5e421701e759d3e7830a1c101960f90dec8fe6d96778590a22de

          SHA512

          ba956fbc82c8983ef661aa5154235f9c4f71fd1852975847f87ec87eb8b5667d155c0fe1b8db9daec812cc0217661598d0edafeb1eff81bf597724fcfbe7503e

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          80667b75179f43049ad4c2a0194ffa28

          SHA1

          469d6299fb89a870d97d375a8f68b5387e5f8421

          SHA256

          b684577b4a20b387b12f7624c4d30109fec1005e4a8aee5aec8fd59a854a2f58

          SHA512

          67728a6d5b3dc6bb2d5ac292ec987421572ccd655161eeb649d7cc2f18bab1aadcb190b43274d485111951290d2fa0269222a256920861b04207adf8008f6de2

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          0d238e4e19d5da90795b11746596ca00

          SHA1

          48dd3d24add3db9a609093bcff152491b0a402b7

          SHA256

          5f1d0d4cbe983d3b0eaf06062dfa9891d68eebf48ab54232a4138101a67aa831

          SHA512

          6c78215e171d49feb4567a8fab6837a14bffca64e7895a49cf5778d8de02c54359364c8ca4df4c5745a601ab2e09f334d92bc79acc8ecf33e7b85c6fdadfcd41

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          e06304bd09890c07f1f8238100c44406

          SHA1

          7cb5abd2b5c6b0de52e729643d31e6056eea0a24

          SHA256

          7406514f852d2d0a42591032d2dd61e96198af182be4431fb17e2ebeaab7806a

          SHA512

          f4a76e60c74b9fd0de6f1b6059d479aea607e655d4d838f4b840a9e083264a6b2dbb09ddd70ca784a054e918365cb9d293d459535c5e5dd838213472e0370098

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          0a4017e5c93bc691ab37cebc94d6ab84

          SHA1

          b72b05615aa500dd426df801842c9efc54a172ae

          SHA256

          d3a70912fc20999256acae05788384fa6441a790b8db1f0ef094ecb99af148c4

          SHA512

          1ae7255378d68352ac1d9039d5186c5b51a03de2a00c0d0d4bf6b5300ea9f445e5cbd368e42911c329641718997094b523c717cf7812d2347e92c3d427a770e1

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          bf0646a70ebff7104b1b1d5af99156ec

          SHA1

          223c6f1fccf037194c932bd81fedc9aef3661cd0

          SHA256

          2d5180fd687ced095ae277819297e2e3dd2a91ee8cdf8ea828922dc2f7d512a7

          SHA512

          861bc7742814b715dd3544761259fd7c81ef0fcf915a5b4895f7a453d5f77f89825c048e5efd47c4b31a1cbb6e2eee63d70916326865ade30738833ac7dfdfdf

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          ca1aaca5c953c4d29997cbaad34468c4

          SHA1

          efba134bf880a2c114c87e2cf25356bd16bed386

          SHA256

          ee0efbb344b262a1e4d330a4baf6ee166743c5727c3db56702e0efabdcb88cc8

          SHA512

          0f94e36c6cc3ba86f3a058c30cbfd10054c921deded3c7115581d09eaaa543b6c761bacc4950ad80803a7e6fd1c04041c84e7eeae73f835d790d9aac88e4c5c3

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          17ae0ba89b72a80488210435a72370a2

          SHA1

          3e13aa63a1ca2c6dae8855f75b50a1b9c1a0a606

          SHA256

          26015cee3966c499ddb74158c6b62a0396c9cc581f776306cdf05832c0e08171

          SHA512

          88b38f69ece6522245d935a08128d8eaab007662d4fb5c50f597747014d10e011339169bf4ea04905bc650671bb983e60b00c996ef5365165259c13339214b4b

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          c3f24220e590c14c08c6da4a9a19ebfc

          SHA1

          f1c5a3d162421c1fe019a6e0202527af5c8a0cd9

          SHA256

          334c1b4d5a01961d2dacb306dfe225468278ee3c0cd2ae76b6ca3983f0cd605a

          SHA512

          01abb3a3c21b0149ac8f34c18b06fd3440e0216f799880fb2875fa8263e761a4f5a0ae454c915ec46ac6b8c41556a30addb10ae1a2d302e18ddb219626810aa9

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          66332580504df20a0aaa8e8bd19d83e5

          SHA1

          beb3869dd2438c423f3a053805e14943befb548b

          SHA256

          b5d16c9fcb21276e4349c4a1ecbd84380bdfee1e5d9f3aaa9d55cfe28fb43eec

          SHA512

          7fedddd1c73e3edebd9965c74e30f2357f2ad7aa57c597dcc41630e5e693663b760168c349e935e9081c7b525905e583c367d5b3cada3744b41c75a1948e212c

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          cf3b71e20ea5920860a175ed212eb076

          SHA1

          72c06bbf4ae2db01ea3803e4ecd173ff582265d2

          SHA256

          cfdb40b44e58aca8a74963be6b372f88be79d3e77f210370eea4fad520d98b82

          SHA512

          d653ca62812823abdf3b52b752dca4cf876520395a5844b0da3050e0411900fb940159136e85bc26596ff9bccdb8157d547b3bac3e1a428419d00e54f3b8e56f

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          1a950094d340509fa306f502099457cd

          SHA1

          68f05127c72b76063dcbeae778a0132f2ca69921

          SHA256

          fae854339331542b521d7c6e998d8164d0e124776acd605736b416f376bd0161

          SHA512

          068107e8cd21326c8f0dd3eaceabf5794bc75440b5b7b27f2cc164fafd14f0cf6238d90815624b6ec4fd66a4ab79e27d7b7bddafc3451af52d336d5c4669ee4e

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          9b58d831212b7a6e01ed21b98c4f91af

          SHA1

          d95c03624c94ecced42286ab437426910acbceb1

          SHA256

          c826592257930c4087f875248cdbd5fc63e30e37b6d7817b493d518d35c5aa09

          SHA512

          e31d5daa512cd85db4a591e92be1a764592c23175f113c256c33313c078b32245864acc7164f4a3c9cac6e6b8978b04e77931adf95cb609c96fea72f6dc4fa7e

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          c4d25c20891b131e15ee42c915139cef

          SHA1

          8997f0ccc05e71188cd958a7259a9fd228fcac08

          SHA256

          1595d53e1c2337901633176cce890f8001665f6eeb4d24d06ecc6dd1b2f831a0

          SHA512

          4684c9af648cadba7ee5425c874be6cede1f0d63609e47dc68c8e723ac683f8f6ee4c85f28cd4c97d832691f86a2108a203ac6dabaf5ac185401c01ba5f2fc0b

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          52ffaff819dadcfd89befc303d3e667d

          SHA1

          12962d23d0b6f0f58f95372e3f664e97e58489bb

          SHA256

          8f9658c727abd2406ddd77f58f43ab8f30281e14c801cb164d3028ceead6c4ef

          SHA512

          df5eb7e26dbacc531ce99e0e7197a1b8d3b3e185b89db1db5a5e625758fba694fbd0789d771255fea7e979e6328ec71400391b3195b2870f93c3d6f589d62b7b

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          38cff44abcebf4ba3d1e58b19ed5a825

          SHA1

          93a612aeaaa7e50dab2d0e1fd96c1ffbaa184b15

          SHA256

          eab7e38fb83a1db6194b079791634843464e29358cf9f64fb935ea9e379f07b7

          SHA512

          e21fa4d1744d13cf5a2f736d513b29379a940a6bb5642d4c48c06afb280e4780378b10ceb89762402b23181dd51acc82490457ea7ce674016339655e31ad8758

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          18abfb9ee0e20e873b3fd217749e3268

          SHA1

          87b49e274980c8059f94f6f17f902f5b2f4036e8

          SHA256

          f41bee41b974f902cb39882cb3098f0db702d2bd73f892c5e1e44f61e5b9c6d3

          SHA512

          0c888d32c34333d986bb13cfacaef37cf26839e1b95cc2eb27b4fed47f6675e87b5fb08d1469095bf0208e164a52872a6279a129c23bdcd66cd5f3e8c0aea120

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\CabCE57.tmp
          Filesize

          70KB

          MD5

          49aebf8cbd62d92ac215b2923fb1b9f5

          SHA1

          1723be06719828dda65ad804298d0431f6aff976

          SHA256

          b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

          SHA512

          bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\TarCF07.tmp
          Filesize

          181KB

          MD5

          4ea6026cf93ec6338144661bf1202cd1

          SHA1

          a1dec9044f750ad887935a01430bf49322fbdcb7

          SHA256

          8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

          SHA512

          6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

          Download Submit