Overview

overview

3

Static

static

1

d06a3bf52d...8.html

windows7-x64

3

d06a3bf52d...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    119s
  • max time network
    129s
  • platform
    windows7_x64
  • resource
    win7-20240903-en
  • resource tags

    arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
  • submitted
    06/09/2024, 20:41

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    d06a3bf52d71c25e75643677f644aff3_JaffaCakes118.html

  • Size

    10KB

  • MD5

    d06a3bf52d71c25e75643677f644aff3

  • SHA1

    75b8da10266030996823af53f628b821d84b99f4

  • SHA256

    4ca78092fc3ac46f2d86447599ca7920268f0996972f16119e4cf749a86ae241

  • SHA512

    b0c7299f7a225c9e9b154ef5802d77ccba97329dca33cb80440076cf42fa8d88c7f2049e4469fce2fc8ed0756b33814c9fdc01fffee1a9571e5129e0a1eddb0f

  • SSDEEP

    192:hwUeRd++jl/ZorCKG3XBi/uWOy5Rd+iE7RD5NU:OHVNu+KG3XUCOHINU

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\d06a3bf52d71c25e75643677f644aff3_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2192
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2192 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2780

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          b26d1914010b5cea4c4c0e5eb4697a01

          SHA1

          aef5e58c771d121eaf50496d3942dd2a850d0590

          SHA256

          e835330559854e5c679dbb749112885b4c1464d54486f4c1fce935ee0dcbcff0

          SHA512

          545d92ce9f2e16fdf378b5773677e96ee28977d8f33be6199b617fca89326584602e559a23e149cf6cf51244adc909389324082894f6585aa86a663afa01b381

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          3b9e2a3dec51e96da5faabc4d552cabc

          SHA1

          8b78e8f656fb1b0ca74cb10fd9a309860a61235a

          SHA256

          0cfaa080a9c2bd1dc45d50d1985dd5d9ca05be2f0a35accc4bb849a67d9e8476

          SHA512

          db88b15fd34007b392f443559b83a07ca1e18161da6c578b4fd65203f7f0a18bfcee6247d0cc39c1442d8d78a37045202b0834d05b6fbfd7a3f5cda75b07d09a

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          fe6988a26a7b79b3b2479f9fcf4ab775

          SHA1

          885f29b3f25d9ff2401eb80a82256df762052421

          SHA256

          bc5c8216b29cd5224c15b6233c058d119010417120d2b3cc07696926b38ba7ca

          SHA512

          97a6b44bdd76302976d8974188fdb9e166a70bd7b8a0eba402a994c6cabab351268a8a741de4780dda488f60cbfee1b0c57a2a6beedd7ac313884ad61766ef41

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          ff110161a750bfe431fd5a2f20906003

          SHA1

          e6e824758a975b4c366c813da65067e3119fc0b7

          SHA256

          5124414587b542c4f06e0ff0442cd071c9a29dcd7761e22cd511fc8671845e90

          SHA512

          3de1d3e18f4131bbc6e09ec44fc7781af25d6d552de5fe81edcc75d26afd8105f1b1c49fd81298332d2bb22568ee8236e7a48c3b28013c028b8a264c616eb31a

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          63280c2761c3591fa723de0b49036b8b

          SHA1

          c364a70468ccd8295b5c4f6be3a4094f24043e22

          SHA256

          34ea010ca4806f289c3d53b759c35b1a3527df60692036cbb2f9e94ae477c139

          SHA512

          ad7483162a955796f01f63bf5fecfdec80486175fc2e8444ca62286f7cb836d03f1ade17781ab2eaa0fd47e49df472cc80be91b3af176b143ddfc82f4dcc1a30

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          facd39d49117a881515c9912c9fec872

          SHA1

          cddb4190ec03d9372eb9f02ac5e79896a127530c

          SHA256

          fdd605de831cb653e4bdee06bb13983b866c358ca89a2c3bde0c13b0a089ba59

          SHA512

          2c962429cf2fffe843b01bc8ece5ab521470f40a25005dd5b3ffc52b8a4fc8cdc2c98e65f937742ce582abc5f726c0fa27306f2554b7d4963bf623c5040884ff

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          c3ef308d0e4a98f641911629600670f5

          SHA1

          875c4fcc8076b95cca072ed05f78c23afd07a30c

          SHA256

          28b4e79f66e5854c478dfb4981fd67f646b4dde4684bea1d203b5402f02a0c12

          SHA512

          0fc791a51f8d7e3a07290ea0503425d28c6320183834e5d9d6b7eef916fe697e98e0f7b74bd5753f20f7cd45e14a8f81071bf2543ef830c1e32010a3509746c0

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          1c7fdf78c5633e0b9709a052ca7ab8cc

          SHA1

          6594f83a8dd21e4e9bebefaf7d3e94a0645d58c1

          SHA256

          748dad95f2f7e1ddc9dfaf719cf51c19eace88bdcfa6b1f46fe2226063c7a85a

          SHA512

          415d52cac7821b70781710e528fdd97f0913c32c0da75056e09919283787ec1fdc4ae3b5d28d55dda29befbbef438237ac4a4d424bc7cccca5713c9b1d79d6c6

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          4238674214a3aebd5c118c85dd85e31c

          SHA1

          246f75cba3fa117ad3396dd15c0a6baa05d4e254

          SHA256

          8c62afd243f26e8333b65d46af2826cad5e8493faa445d28d68f5734d27d56a9

          SHA512

          419b6c93d84ba1102ec005ac9e718b1d3fb4fef318bcaa6c29eddae4a482759d0e1b5b63ff1c2d932313c1461f357fcce98a2bf548c763bd7b5bf2dbeadb9f1c

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          b4ee1ab3377530a98247f91238711d42

          SHA1

          d9c360bbcfd880f7ad9b6dd6c2c8f14fa9369a4c

          SHA256

          cc4845623b460658a23a17896ccfbea7941d91cb996b50b3a7f4bc915d17751b

          SHA512

          bb4cfe3e9db46d438bab07ded52b0392f7b6dbd992a5dcdac984590ebefc1ac9bb545170a8a0231a3a39cbbb4952b4f4a4a58f6aad1c55806cab54d50b0ef841

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          068d3e1acbfc5b9f72d12c1ec26de1a7

          SHA1

          d43770b3cdcd237fe71416c04dfb310e11af06c8

          SHA256

          a472cd996cac21bc6080b7ee8965df4b96a286d3788d70c73b13b1a39b94cbd9

          SHA512

          e9ccc4892a815d18332b3fcd458256d7c6a8ef3b013adf14cb68884dd87eb40fbfc47794b783542c932139cd40424f717111445cb0f58c42164352b03d3634a5

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          343b1100f3557fdf5fc7fdfaadccdd62

          SHA1

          31209b8d5aabb6695ef8c2ac0f69941af5eaba74

          SHA256

          161b33e304f6232f1cad090a154a0096f51231daea30120563f36c10495f5b50

          SHA512

          19504bf58bbc716318ead70c0ff03e5b3aaa4e8383834f016b67a6f48e689069a1316d85c049f8b0bc050cf13b48a7365232fc7bf3baf09a541ef2c07a4eb46c

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          ceab7ad7221e381643fb61f456ddd5ea

          SHA1

          7902cbe096997849078cfa4bfaf7008877a538fd

          SHA256

          ba1d63a4c682722ca36b56425d29bdc9649fba382a4bfe90bdcfcc9fd065e009

          SHA512

          83eb2b52eaf9955ed79d6381fc75f352b143178a6b3d228445887c9774564925b6fdf0ab015c9b7e42695d3b904b02c475c444eed7740bc564033e7674004a9c

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          353e656471475891fdf51e9db8a5e981

          SHA1

          196fdab84fcbfba5717c3f66cc6510f09f9c455f

          SHA256

          4b9d951ea94b10581c9737da0f5d9a0bf14d1fd058e6b3f8e521f5bb05b5709b

          SHA512

          0fb4771a1561e4863f0596e762da40e3a6affb370e502106ba5844866bb7a6fbe5243d2f5d7619e263b7d45b6ad2ee0db0fcd59fd0d0bb069e883650bc714992

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          209e4345f6f00dea54761e79aa075c76

          SHA1

          ac3aacbddbe655f4caf23d0c51dc6ca1cf7c5842

          SHA256

          ca1fd88537893f4aef6cc4a53b3cad1daf310fef666f4c6bff2bc1383b750159

          SHA512

          b39b679e026930d0fb10ee4eb1d4a0d40e443e7189bdb08296cbddd1862c4ec4cc50d244c60207fb32b5bda7980df70fb332155abbef9f2b2c4347423a453bb3

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          fa0b09778cd5d02cfc729c2d608ef179

          SHA1

          96deafb772909e5bec9a6637552f25ddf0cd70c3

          SHA256

          e5dd29a8e29ac9141729b76306ba99ab4d29f5dec61e7af902a98abef379a317

          SHA512

          fea969939c2f8d5801ac88e56754778adabdf309edc65cd299167c110f312119a9d7dcfe4db363c41522d89a4141e9504c63b2a689485c072336583de3100f0b

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          a9b8cb290c5fd13cc570dd5fa58f8534

          SHA1

          83a59ee4f67ce43ec9984460b78bec8b78aee26c

          SHA256

          9e0a5ec8efe7ec66a279631f892c5d73c6de990ecf1e3bb94609e95ce575bf5c

          SHA512

          39c3d9ce18cb6a1e5f4422906184ace3e0cf98e556d3185f2e71adc78765ce5e424939141f34ca560b2c83bf2aa59ce7550c1e3dc29f09a67c3799ced894d06d

          Download Submit

        • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\8452S9S3\RRYG5IXL.htm
          Filesize

          50KB

          MD5

          f1265959f2a11b46e2cbc28a380536be

          SHA1

          ff95608fe47e95d38c2f224f5ca09927bd28d312

          SHA256

          b1ba9c28e1460999a9e536944efb403395ac78369a1edaed8fc5e8322347bf43

          SHA512

          88cb33649d214576932e4840a1deab9d9f1b99fec3e21ddf7ddf5d512de06494bfaaa69168d58da33b21b2e366757855573a2f97dc812dcf83e4309924cd4e06

          Download Submit

        • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\8452S9S3\max800[1].css
          Filesize

          22KB

          MD5

          37280194f54861eccd1c5d41746f2af1

          SHA1

          a6e093938e187dd8c92e6abc4a4c2cb385692a53

          SHA256

          8b741d1c211a64f00c356edbacc8bf1d086b37533fa6a62adbbe64694f06429d

          SHA512

          601cc335bb64cbcb140e6261804d2b447c2c4a3c4ddc4b329481ca63e93e9557a8eb5397f6e2fa573d10775d97b3ed2860c7dfed5e338aa47373324a66f1e736

          Download Submit

        • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\IAE3FJ0M\royalslider[1].css
          Filesize

          9KB

          MD5

          a4774d1e99cdda6e3b99dea078fa800c

          SHA1

          7e1d0055e54f6412accf33a3d2f579244b15cb2a

          SHA256

          6e69c7b51b2a0ea0aacadcb57f7944602422d8e54fb314560591b1fd4bb548b8

          SHA512

          7deb6e67e60d7e0bfca407bf3c7f400ed01b0ef69338a9a675a669f2b9b6e4f2d9f2057c6e902c936d21d5eebdb27cb923cf8282ee69fb2e6bcd4c6cde994e3d

          Download Submit

        • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\IAE3FJ0M\swiper[1].css
          Filesize

          37KB

          MD5

          cc909436180f8fb0d91f12e86a2a056d

          SHA1

          a6ddb369ed716ecb49c890b17b5401048689becd

          SHA256

          7451261dcb96ecfa6b0301013ffddb8af1945174b2979c34a444ce4d6b347ee9

          SHA512

          5cc634d4407ed8e5121d01267fe13e866d15aeac9af3ee12b8aecbb4453a5dd25bf9c5b4911ae7da24a868f90272dbd76f85f3092b5dc3fd2ebb8059117d3ca6

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\CabF152.tmp
          Filesize

          70KB

          MD5

          49aebf8cbd62d92ac215b2923fb1b9f5

          SHA1

          1723be06719828dda65ad804298d0431f6aff976

          SHA256

          b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

          SHA512

          bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\TarF165.tmp
          Filesize

          181KB

          MD5

          4ea6026cf93ec6338144661bf1202cd1

          SHA1

          a1dec9044f750ad887935a01430bf49322fbdcb7

          SHA256

          8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

          SHA512

          6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

          Download Submit