Overview

overview

3

Static

static

1

d147ce55cf...8.html

windows7-x64

3

d147ce55cf...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    94s
  • max time network
    131s
  • platform
    windows7_x64
  • resource
    win7-20240708-en
  • resource tags

    arch:x64arch:x86image:win7-20240708-enlocale:en-usos:windows7-x64system
  • submitted
    07/09/2024, 06:27

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    d147ce55cf509a1660a7c2101b9b8966_JaffaCakes118.html

  • Size

    21KB

  • MD5

    d147ce55cf509a1660a7c2101b9b8966

  • SHA1

    ee7a7fea6b8695c633381a2d5539980f76d024ab

  • SHA256

    2a4613b068673d13d6dcb48929498df01a9853c164b94d2095f09c96efab12d0

  • SHA512

    40890ce23fe3039f4ece1e9ff1b3bb7647c579a237cd1b7ce294e8ad17124d9b8109a27757e13404d46bfd01ac65612d714c81c69cc55607cacda6c714b99d96

  • SSDEEP

    384:3oZ6eeKFeLmqKnmMbL+Ir7qUjqsqYNga4zrSJN7VBWLDTR:xeeKFYzKnmSic7RNgRaJNb4TR

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 59 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\d147ce55cf509a1660a7c2101b9b8966_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1736
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1736 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2132

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\3C428B1A3E5F57D887EC4B864FAC5DCC
          Filesize

          914B

          MD5

          e4a68ac854ac5242460afd72481b2a44

          SHA1

          df3c24f9bfd666761b268073fe06d1cc8d4f82a4

          SHA256

          cb3ccbb76031e5e0138f8dd39a23f9de47ffc35e43c1144cea27d46a5ab1cb5f

          SHA512

          5622207e1ba285f172756f6019af92ac808ed63286e24dfecc1e79873fb5d140f1ceb7133f2476e89a5f75f711f9813a9fbb8fd5287f64adfdcc53b864f9bdc5

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\F0ACCF77CDCBFF39F6191887F6D2D357
          Filesize

          1KB

          MD5

          a266bb7dcc38a562631361bbf61dd11b

          SHA1

          3b1efd3a66ea28b16697394703a72ca340a05bd5

          SHA256

          df545bf919a2439c36983b54cdfc903dfa4f37d3996d8d84b4c31eec6f3c163e

          SHA512

          0da8ef4f8f6ed3d16d2bc8eb816b9e6e1345dfe2d91160196c47e6149a1d6aedaafadcefd66acdea7f72dcf0832770192ceac15b0c559c4ccc2c0e5581d5aefc

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\3C428B1A3E5F57D887EC4B864FAC5DCC
          Filesize

          252B

          MD5

          253a7d98fc2f75f142b2e8761a111efb

          SHA1

          7f0de46f1f99c74215cbcb6f784d9c9c472c2355

          SHA256

          0cc9aa4a4c900752a9f385fce8b350a207b9a8b459ea948ed49ccff792ab21f3

          SHA512

          b8f6ebc36efad3a16cc077afdb377dc3bacf1695b7ec005d267bc7c5ed888e068abf5e6e431a412ba6790a953215887b97293c45130e4bb629202d965c596057

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          835e8d1667dd81de4c15ebc8af627b37

          SHA1

          5725057306236d7e5538b7a81a4b2426db631ad2

          SHA256

          e40807fa1eb5a16cb71c2929ccf6df2d84b1a786be7e379e782a0ec6336e30dd

          SHA512

          81ea849a34c42e382597db1138bb5b641e2cd788e5c95db864e579c579da8cceee8194b44cf4c14d1ab5099b0fe893847616cc1dede1f863ff81f502292039f4

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          094034f6162ddef92532d82b283d6bb5

          SHA1

          693d209dbd2bbf3c1451c59288cc57d04b64ffa9

          SHA256

          df31745eeb18689316d8e0ef5fdb8b2d0f9a6563ef12185fcd7751fdc70cdc82

          SHA512

          8a4a782795ad533ebe3a6e9ef928962651f77372eb379f63559c9b48c9a3e683da2159d23db6e79d56948af520fd783debe752a6e14a739863e1abb4e9700fb0

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          5daca1506c42d050f6ae81f447b47fff

          SHA1

          2cfd3a9a04d73566a5673be404dd50f3ea97d965

          SHA256

          0a6f73ab77e900681f60db2029f9a16c68f0ff99b4de91ecd5ce2fb988013db3

          SHA512

          6de3980de0a8d057b6e24010c33069576ef28738c630320e9a6181962cdd4ccbcdd492ac15f5bca7f920e1ea0d02574843392a423522b6d4e4cb68c82b64c293

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          6b8aca753d9f6c0871329b90333157eb

          SHA1

          ab3da6748ce6bac50362520f96f05d1a22a0bf89

          SHA256

          6cfa5a9ebf93c466d85f83e39b4a57d74b8ae0c28c02652b8ed186345b6ec2ce

          SHA512

          50395680804c15d2256311ac9d8a55bccfd6417fcc859fc5c96bbfbf25dcb5099a0de36f367be73a7efbb9dc3de915ece8e8dbb1ebeb95af8307b10f7c273309

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          5c962bdec7c689f31ea10d13f3f68420

          SHA1

          41a97133eab43dc908951d15b20b3fd17f6c5e6c

          SHA256

          a99a42be4ccf9c5f6db8bdcf69556152e73849faa8d52b17d148f2d8ee8e09ee

          SHA512

          dc03a85435b4517d3675265ee446356cdc9cb75f7482288b0c82a9b087307b6aef3904f36e9b882c535470de75bf125ad6dcbf82df6db99e91a6223e4f3f5a23

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          8f17bac47d125b502386fb08bc0e7e00

          SHA1

          8368eac5f47c0a6c0d6290cd71d73072875d7d20

          SHA256

          4fa47ee76e84f9755c4e207d48ecaef4b07af68c4562bb8b0514b84e2067d7e1

          SHA512

          3678e170f0369c0e43469ae27aea63953581615863da3f328bd4ff13f15ffa58f28419e68a32e158f8dc860cc2515b461d94ed86ff2785747d9c25b291602b4f

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          4bf4ab54bebb4bd241b6bd11daa5d211

          SHA1

          261c73cc7e6bcc16b448b6bc2b6cc25049376770

          SHA256

          e9a79dad31ad29d8b54c480328c59db91ab5421d438935079c7e3f296d304933

          SHA512

          faa496f7be76f497da7c0abaf29dc37c753a32910041a1c73b23209bc2f45dd684e1e635d30ca1841c57d4cc810d1b26e5ac9482532e27255fa66b70b59eef83

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          9a0c867ea27e9addbef9bc03013c4c00

          SHA1

          dccbd9db85b43d45c30340d1879b40a24711db30

          SHA256

          60ccdfb495645eef6008b3a17a1ecbda27c9e6ffa7c0a92115c1a6c325f973d1

          SHA512

          06be9d7b6961d41251c2c0e4ad261369e5c821da563e2d7fe779428c38818851b7c741f17e69a4f194ea17c439836f964dc910269348ff498d00bb20c8606918

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          f1e82a31f3127813139b2cf4096aac3e

          SHA1

          f42ffac7ac2adf08e455208727b148575b2dd30e

          SHA256

          4273727ffaacf770912dcf21b6df7851e4a816e5365c807bf9ccd5b036978ed1

          SHA512

          45a7814acb98ac1fb426c58c3c6a13e5117a3477fa2326e1918d979b2e8e6d99e423b43b30eb5165a32f32c8797f634d9dd57412ecade866e9a8bccdffe98dd4

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          ef087b5bf4fecd8d3042e6f90f62844b

          SHA1

          454bda8476564aeacb279277ea998de26df0a8c6

          SHA256

          4b0ebf0aee55cd25b3d14b700b0548e9574372b157381ba6d62767b3a93b24a1

          SHA512

          584aa05b40a007365b604271caa3d012e5ac2cdd2f70fe6ad427894fd3647b3c161b99f6d94dab7f6db26861227d780bf69e94b44af26a8347c45ed2efedebac

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F0ACCF77CDCBFF39F6191887F6D2D357
          Filesize

          242B

          MD5

          0072b5ad7ff081c8e9591203bf26d5e5

          SHA1

          e29ede01f1d2a199c94fd141362f9fe60bb5ca9f

          SHA256

          351b64e93a75a73288de3d82ce6532d1407e4072e2b28c9a446081632f9afc2a

          SHA512

          8c8c334659b357f667cb37dee6767c98117ff0b3b857a9e990d3a4c7f657142dee34d55a075887c80f07e76c9fb302d6f4568a081274c802f53f6d2698e8dfb7

          Download Submit

        • C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\EF9P8SRR\www.youtube[1].xml
          Filesize

          13B

          MD5

          c1ddea3ef6bbef3e7060a1a9ad89e4c5

          SHA1

          35e3224fcbd3e1af306f2b6a2c6bbea9b0867966

          SHA256

          b71e4d17274636b97179ba2d97c742735b6510eb54f22893d3a2daff2ceb28db

          SHA512

          6be8cec7c862afae5b37aa32dc5bb45912881a3276606da41bf808a4ef92c318b355e616bf45a257b995520d72b7c08752c0be445dceade5cf79f73480910fed

          Download Submit

        • C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\EF9P8SRR\www.youtube[1].xml
          Filesize

          228B

          MD5

          75117c106de265a4b88e4de80ac95cd2

          SHA1

          0fa35f2a9e22fe0eae8378b71501d8e2d714f70a

          SHA256

          c445b13b9f929d7cf06f3669b267e2b50b73f296d1bb28fc5452287f5e9be485

          SHA512

          ddf3f594fbf6cb1ffdbe197056998dd368fdb5a98a3c34e159f6ba0b41d9b95adafc9eaf80cc8f6cd487fbc3666b0575c13f047a2a69002f911082769d6ae5fa

          Download Submit

        • C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\EF9P8SRR\www.youtube[1].xml
          Filesize

          638B

          MD5

          e349b292ca3fca69215b0798054ee81a

          SHA1

          0a8e1b574e94ccc8d9a33a2f254c75824aa6f438

          SHA256

          3a04473e84944093e245d98e16ac55317e836fae9a16aef3dcf2db0a4d930451

          SHA512

          25b94927f8b07f488a1f754d89de4683aa525b5523329b897c5c71f0bc26b43e060d738ec95923a2219e6567a582b6f023beccf9ef479c49154b738b5981a4a2

          Download Submit

        • C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\EF9P8SRR\www.youtube[1].xml
          Filesize

          810B

          MD5

          ff96fb9d25f014668ef06b11308e0767

          SHA1

          273a3782a650702b17c094b84f2aaed77a23a270

          SHA256

          8f5f1704eb92144d66cd44e39c9930b3f5cce85c3f059c8a7f1ab77bad0c19f7

          SHA512

          86a2756793d1d7691a464b61f0486f6e171da8f19adfa0f06db19f9fe1c9a9bc3d0ad0aa46c3d1628906e2b29bab317ca628e9c61b94e1f6c7810442eecb3e81

          Download Submit

        • C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\EF9P8SRR\www.youtube[1].xml
          Filesize

          985B

          MD5

          065cd85dc5306540803489500d36adc3

          SHA1

          25f1bf4029381dd7585957638bb0948253667de6

          SHA256

          d0bf6ff2c6da98427fc9aa8035c22bdd65cf8515ff28242b4759d182fa440101

          SHA512

          9e97e75a11e67b75a30acffca69c4bfdb572d0165748e2f624b7f92be116f9d0255369d111c05611d256c3b45efee43a6599c735f0f274f1930a1f83c5a11480

          Download Submit

        • C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\EF9P8SRR\www.youtube[1].xml
          Filesize

          985B

          MD5

          1200c88f7ab110e034093a911c809e15

          SHA1

          c66c7f4b2fce966a7ef97fbf28ccd582804e1f61

          SHA256

          c31a4da293d077e6c418f39dd8e0ef6172c3cd9e5e5cd19185c8364513f59b61

          SHA512

          7fd287b14a20793fe67cc282e465fc4f0b64d01c4da9a0fe93c734e722277c1c7c30189939aff45010f413a7bc0ccf0907289f7f2a4ceaa37a8f461821890121

          Download Submit

        • C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\EF9P8SRR\www.youtube[1].xml
          Filesize

          985B

          MD5

          90e193d3a0a564be86fa4114b99530af

          SHA1

          5a35e79886dee80479b01b6776b2fce3211b3062

          SHA256

          41d71c60049845f0cec576e3df3df88fe3c2b922b22d9a7ea3fd8de7e97a7a9b

          SHA512

          76ce71e6410cc10c848dbc8ec6c6ad3597b6de17323e0758ee8dbc3e23675ea828ee10ba88661792dbe39311b1565bc3e638dc024bbea266f7d69529165689f6

          Download Submit

        • C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\EF9P8SRR\www.youtube[1].xml
          Filesize

          985B

          MD5

          ed4b58569f4fcbdb6b2ff7e70ce9b3ed

          SHA1

          4028130401b0cd3bb3c7c0681ac53d705467c3ce

          SHA256

          ff508c77d570cb385b2682818bfb5a73686c9d12091a68d608609b77231c083e

          SHA512

          7040900f5dc35b5b431001ef0e07b7aae05873be89f79c9adbbd338b433900723e2b411384d6d477477ce6ca127683813deebc072d5804402e220d5e6fd205c6

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\CabDB44.tmp
          Filesize

          70KB

          MD5

          49aebf8cbd62d92ac215b2923fb1b9f5

          SHA1

          1723be06719828dda65ad804298d0431f6aff976

          SHA256

          b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

          SHA512

          bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\TarDB66.tmp
          Filesize

          181KB

          MD5

          4ea6026cf93ec6338144661bf1202cd1

          SHA1

          a1dec9044f750ad887935a01430bf49322fbdcb7

          SHA256

          8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

          SHA512

          6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

          Download Submit