Overview

overview

3

Static

static

1

d12c3101e6...8.html

windows7-x64

3

d12c3101e6...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    147s
  • max time network
    144s
  • platform
    windows7_x64
  • resource
    win7-20240729-en
  • resource tags

    arch:x64arch:x86image:win7-20240729-enlocale:en-usos:windows7-x64system
  • submitted
    07-09-2024 05:25

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    d12c3101e6c97cca221ab6d93ec9b84f_JaffaCakes118.html

  • Size

    205KB

  • MD5

    d12c3101e6c97cca221ab6d93ec9b84f

  • SHA1

    b840b08e0d5f2c1a9ddbd415bf6efba31740382a

  • SHA256

    9ba55f34bbfc8f775e55dd74244a24da63be04aebd79aba8bbb3eb9623cf513b

  • SHA512

    d43ca39785897e596aac0eb00c9cd1d7ac3e4e6b3a35d2c24b9ce82e7cf52248f52bfc832e2a0fe9cc7506cf47ed2dfe41e3d72dcf69411952b2c64702cb2a14

  • SSDEEP

    1536:fpvTmori0LCVx4vVfjz//GyeS7pP5nVRVve/eaezeQeg1OPem4eideile9Kezfe6:frUEvNz//GyempP5fjxa6uGUr1lhY+bR

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\d12c3101e6c97cca221ab6d93ec9b84f_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2368
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2368 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2364

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\05DDC6AA91765AACACDB0A5F96DF8199
    Filesize

    854B

    MD5

    e935bc5762068caf3e24a2683b1b8a88

    SHA1

    82b70eb774c0756837fe8d7acbfeec05ecbf5463

    SHA256

    a8accfcfeb51bd73df23b91f4d89ff1a9eb7438ef5b12e8afda1a6ff1769e89d

    SHA512

    bed4f6f5357b37662623f1f8afed1a3ebf3810630b2206a0292052a2e754af9dcfe34ee15c289e3d797a8f33330e47c14cbefbc702f74028557ace29bf855f9e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\24BD96D5497F70B3F510A6B53CD43F3E_3A89246FB90C5EE6620004F1AE0EB0EA
    Filesize

    1KB

    MD5

    23b47f8284f2429a255898985806ea81

    SHA1

    3a839cd58c70540cf7c1473dafd044ab089ab54c

    SHA256

    9f94faf3b9c99edd5a6a1bdd64d96410b9c125fc1d384a47d80ea8b02bf09b8f

    SHA512

    70d4bee1d12812addecc226c4aa95dca7d8b173a4e2f671257707c767d4ac099dd2b8bfe68f01da227628a9a2a6401881ccc81d3fdf191d538787f5675caf6a0

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\3C428B1A3E5F57D887EC4B864FAC5DCC
    Filesize

    914B

    MD5

    e4a68ac854ac5242460afd72481b2a44

    SHA1

    df3c24f9bfd666761b268073fe06d1cc8d4f82a4

    SHA256

    cb3ccbb76031e5e0138f8dd39a23f9de47ffc35e43c1144cea27d46a5ab1cb5f

    SHA512

    5622207e1ba285f172756f6019af92ac808ed63286e24dfecc1e79873fb5d140f1ceb7133f2476e89a5f75f711f9813a9fbb8fd5287f64adfdcc53b864f9bdc5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\DDE8B1B7E253A9758EC380BD648952AF_F968CA97A68F4E6D5C104EC7FE3DFDEA
    Filesize

    471B

    MD5

    7e39ff496edfe3dfdb85dcd49da2a777

    SHA1

    32e828e1df87c0e0626525ea6614cb5cde671069

    SHA256

    5b443aa82793c5f4ce5ff89a5547b54a2a49d7d7babc473b8f0e6ba224c6d21c

    SHA512

    38b427b15103458361af67d3c2b4098d65cdb5272e52ead50f6a8dca319b05aa7c8cca2ddbbe10820caf2c55d9f9fe99a62d38fe38e9acbcabef857c74e338c8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\F0ACCF77CDCBFF39F6191887F6D2D357
    Filesize

    1KB

    MD5

    a266bb7dcc38a562631361bbf61dd11b

    SHA1

    3b1efd3a66ea28b16697394703a72ca340a05bd5

    SHA256

    df545bf919a2439c36983b54cdfc903dfa4f37d3996d8d84b4c31eec6f3c163e

    SHA512

    0da8ef4f8f6ed3d16d2bc8eb816b9e6e1345dfe2d91160196c47e6149a1d6aedaafadcefd66acdea7f72dcf0832770192ceac15b0c559c4ccc2c0e5581d5aefc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\05DDC6AA91765AACACDB0A5F96DF8199
    Filesize

    170B

    MD5

    58cf8f147af06c7f399384fc499371e6

    SHA1

    92460c4c5bf83fa300076b5f69545707a7e8fed2

    SHA256

    30eba491ba964e1d15179d127b8126d713815d8f73349fc8160170ba04338d86

    SHA512

    71db3db4695e57766e13247a19808543f78b7c7d4c6efd0f86a0c6725e1ea0a7bf73a7ba37088ade6b59d64b9f460b6df50b420e7d7b0e4209af52fffb90407a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\05DDC6AA91765AACACDB0A5F96DF8199
    Filesize

    170B

    MD5

    b8e52495f582dc395c56925b98cae44c

    SHA1

    f9cba5065de5c0d810be57c662f70174044db80f

    SHA256

    61c9884784534dadde6e4cb000479576e0fc24df50ee11d9c2c0284deadfe32f

    SHA512

    189212c665e09bb4ea36384689f0091450b4454ad15134649a60870cfb5dc5b1c9b91bcc567f70c30006bf468e705df7ab22da4af1d6db77e204f3c7f22a4a90

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\24BD96D5497F70B3F510A6B53CD43F3E_3A89246FB90C5EE6620004F1AE0EB0EA
    Filesize

    410B

    MD5

    e0dd461324a8df5f2f1217cd0801ed4b

    SHA1

    473d9150fc65ca8069f569ef180625bc2d290f76

    SHA256

    3098cbce8d22730aad9b6082568305835645de40ddc39987dc5c6ea4a35e8c54

    SHA512

    dfb46d7d85b2d416f754f005e3bff95228ac488c1d47604b8c88b77e54c277974a44d3fcb935affd34b12eef79a73a818a8a3b6fb68b6638de4313e8bf70048f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\24BD96D5497F70B3F510A6B53CD43F3E_3A89246FB90C5EE6620004F1AE0EB0EA
    Filesize

    410B

    MD5

    f56d252c4c0a6713ad0c23fecd174e0f

    SHA1

    1d19b6aebdb95d711872b6ad2ffe76f911b84be2

    SHA256

    14ff8cc4d81ca1cb18f61afeb9762d4b877209403a4938106518a76f9619b43c

    SHA512

    eb3c7a3df1c9b598a3c4e35878c5cfc384a9807cf904011d4ffe39690e8f5c64e71c4ea0e09a6291fbe468ea23f5ceea7f57c71e8d1a9ad43d5128515040aba9

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\3C428B1A3E5F57D887EC4B864FAC5DCC
    Filesize

    252B

    MD5

    73d98e238946e668a066bc807071fa65

    SHA1

    900a1d9f0cbd4d9c9f1bb78ffa22a96cee80551e

    SHA256

    96ae8974532e7f3b97268db3c6b11424bfa071df56717cdf8fd47d5e9543541d

    SHA512

    ed602194abcb9db4825167415254746f5bd5b0ff685b1e43e5537ec424d0a16fc3601e0c02889bb155c6cc6a4521b1060a7eb772d7466ed0a7aa91e61535827b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    ddae05024a397e3de8638e0f00d8f529

    SHA1

    6c974c353f000cd77c705536e8c1ea9aefdbd15e

    SHA256

    6369ddad18ad2e357feb2e7cee7ade9078fc21fb0901fbeecb98994f8495bba3

    SHA512

    82e80e9ae57ab48193231a14a28f8196ba0d13ea79642f3ed709fd8dec9d3b7c48ef2ad2038924281b5935ca839a594b5a96768b6b4f3d0498b4a42e9909b4ac

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    487de5979d68abfd9c4fd3e29daca7d8

    SHA1

    1e54e4ebde2b986ca488784e8ae39a02e4389914

    SHA256

    66d2e85a517fd6ad79540fc7f565792c889ebc8b4ffd3292edd50150204d5780

    SHA512

    885df5d7b54f85e45fbcd512afd0e0d56c96ccdf15dc50e04aa9a1547a3111cdac076bb4632390dddc30fb2509a63c7fea0a5fe270d1a934a1939508326d9772

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    971fa84acd9b1af811787c6e6b4ec90e

    SHA1

    0f11a4b5da94ff11a7c1a95e61649d615de6d277

    SHA256

    9f507fa8d24d7d3a4bc00d2d4aa40244a1ab1edaac189d441fd43260db17c8b3

    SHA512

    eb20fe47bb44e0f3a6f20aac19343208d3864d86fd6f9b383631a4bbdd02f4b95ab0da0cc98f05e0e5848e02ff332715159112ae02c56ab816c72b36786a8318

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    a16cced9b89ad68f8bb15a801796f9ae

    SHA1

    2f0a5142f4af08b5089bbd0e232e4c85427c2c82

    SHA256

    6ef268d05374e62d35372f836b66446f096e7aa41f1c9a34f32d12dc7d9c6afe

    SHA512

    846a12fd4eb48e629fbc02229270e25ab587882d1e8ee697e294aa581001b29bc6cd4af991db72a2d211702597d259eeea3df030cb03e6a4a6236dcc48648ccd

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    55125e38278b7838bf065b3121a3ff67

    SHA1

    b19cd1b05d7b9ed7f076b7ac1f4907961ce26870

    SHA256

    0a47bf028feee9b9f8abfab929371e015a9623cd00e040b8f2b8b3fb1ab88be9

    SHA512

    c36d57f85218379ae24e1a79ca21e9220e9c4cf7cc5caaeb8534537fb4d25c3863d11a9226e3fe49ebdd783405f17cf4cf2eb119e9ce752f999d2169cd764599

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    a2abf357e9f1c1fcf40d1cdf6928232f

    SHA1

    7060b7ea8fb78a037cb993c190ecbcd691a0dcd7

    SHA256

    78c7d5cf8398626660f7a923b2d624218ba8c3d588f06e18eb760028ca9befbf

    SHA512

    abfbd8f99eb6d71ddb1e5ca6de58b6d308c8967d1a6be49e34d2a3e911b38d2fdcb205e0399dd917ccc9b35c1849b29d67912868054d298e1440a298c9156162

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    f73103de93905b3aab875fa5ff20a427

    SHA1

    5fe7ab65cf654fadbb5be97193684a35bad525b2

    SHA256

    2b8e598edd1eba875f5770ef4e5b7cbcfa778f145aae63895de474649f7fbd7d

    SHA512

    eda337dd4f0165228602fa9a8dfdc8e9d26d652ebcf8db598903a64ede7f36466c8a617ec820689342566474cff402de38f86aeccf481aa10de149c5a57b2113

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    1f90f81cc906cc3bd5b540c07589fbad

    SHA1

    5ec7860b18079be413c48ec64288fe5b68322db1

    SHA256

    87d08077f04c8693a9da1f68cccf7dbb26e55fa18ac4cfba2c13e9267bef78c9

    SHA512

    102578829cb354d7003fb6f86eba82972f4ed0cd4cbfa58213057be685dafebdeb3f06401cdb13c8a767741c3cdd36f48cb267e52aeed87379fc1c19d430f730

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    da640ab6da605c9721c129599865bc78

    SHA1

    5b79f935b6f8aee8952d15cee318c7451d84bc4d

    SHA256

    389142e580b373f2cc0f8afd25129cd2e7c6787efa11a0d61b361963882eec4c

    SHA512

    bdae65fffe3245d1e2ac8ed8f4f7cf604d1b6585232ade6c7c440db326cb863a3ee3e3e6b635d20157381a4e997c965074c671184315d65a7443b736a709a124

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\DDE8B1B7E253A9758EC380BD648952AF_F968CA97A68F4E6D5C104EC7FE3DFDEA
    Filesize

    402B

    MD5

    4067310dca798ecab786ccb316adb36b

    SHA1

    799d011b36fbf7c429347ae0158e0ef99c922ff0

    SHA256

    1d5c515a3d35eb61d4489830bb7341a9243df4aa6c010d8a0b9aa50f150eae18

    SHA512

    96c7864015ffd9b76aad980d13da811f7784f1e384fc30fc42485e7cea2297146021fb68998f56e32162058c45ecea93d5e43b2c2ee97de6ed95e84bbf286a66

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F0ACCF77CDCBFF39F6191887F6D2D357
    Filesize

    242B

    MD5

    e4b42ebdada5eead78ceac836cecb8c6

    SHA1

    63d67464c4f4e33dc3faf229a9ad245b2ab39944

    SHA256

    6ffd0f52c2644a29d54999eb1ce59e8f7ea5d73b042cb2ed7275ad5e6be1cb24

    SHA512

    bf624362da30e0028bce13ba57807d1728267a365d3dce0d4551725b15e1068a023d461e96e407a2cb9e8146acebaba4813204154007cc81d1e02afa01f7330c

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabF1FF.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarF200.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit