Overview

overview

3

Static

static

1

d21cef6b25...8.html

windows7-x64

3

d21cef6b25...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    117s
  • max time network
    135s
  • platform
    windows7_x64
  • resource
    win7-20240903-en
  • resource tags

    arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
  • submitted
    07-09-2024 14:08

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    d21cef6b25bec56096b953a1392e1c76_JaffaCakes118.html

  • Size

    79KB

  • MD5

    d21cef6b25bec56096b953a1392e1c76

  • SHA1

    c4e2db033254ebcbd036d7b0d346d73a4a281f1f

  • SHA256

    c3374f7f3ecc2fc72101b7016e2df615389dfa1ddf0334e46fe71b0c7397ed2d

  • SHA512

    4d32178fdb80d71ff85176e27dccef21889b39e2b6e23cc9121e096a8839bc1843a255d75e894a5959c39854133497575d769863560e6eab46ae0a5b053280e7

  • SSDEEP

    1536:8+3x9PUqX7gyO3d9pfdS2vSGpvUiezqX7gyO3d9pfdS2vSGpvUieJoZ7:8+3x9xUxHF1vrdUxHF1vria

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\d21cef6b25bec56096b953a1392e1c76_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2824
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2824 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2832

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\24BD96D5497F70B3F510A6B53CD43F3E_3A89246FB90C5EE6620004F1AE0EB0EA
    Filesize

    410B

    MD5

    4376e8e5ca15c1599ab7673a8d5ba695

    SHA1

    66b13eaf43662ae5d91efaec27261b8bc027fc13

    SHA256

    1dd2b8e18763a7521f3efbbe26393530919eeb41590c81c694d29051757c1f59

    SHA512

    b32052b856c4bae120aa3a07085f5b7cc04314f894acc99a500ad32556641d065dd9016882c81a04af01efbfd736d82b8c2ca41108b778f90db551d1a098250f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    942e33e2b9e0a11e7cb0562b46e20833

    SHA1

    4d20e23bfb9e5518ef36e132539c867f96107d3e

    SHA256

    6f872dad2af3905daf72d861ffed554bd4d6cd2c040557e3544a6cce0ad5e245

    SHA512

    7b45bc471eb2666be545f7573cf1854cab432cb09f43c4e470616991f66e05877d57dbe6c5291dd811f90233275db43b99cad845e1e8d30d6c90df9579d9b474

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    0b540cecd2e4dd5f07aa7ed31d0e2709

    SHA1

    d93d424acc9c9ae57b86d8194b30ea1917271772

    SHA256

    15a8b159f7af9b0f0f897bdebce30c39a554a0c32bddb0d616fc7b16ac7a8239

    SHA512

    e2d3b9401d31518e25d35da4e0654b3db24861bb1f970c0ecdc35251b86ed1a754eb897ad93e585864bea91448a31798e85aa48536998ac5a56795729b67cf35

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    e680863345e29689917235bba0e13a14

    SHA1

    43eb8cdad62a58d8639436214f3c5d19cdfbd245

    SHA256

    7a08ba527f58a9dd10d9dc2e28e1cfab38b32041f0cd35c881481be9d13496fc

    SHA512

    606c55952206352f4977f716301e765f88d72c7587a02237a5126ea9fded8dd55b567dd122107ef6f01f1e9200d9021517799f2d8cb0b94b56a79d20bed1dfed

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    7fab328655689c3419545da941a687f0

    SHA1

    8ef4ffa3d325eb10dcfed5da438fac66b1537362

    SHA256

    2ee7635473ad8cb1e64b16f736e336cda793a81ba41a3e9a1acf76149e49fae4

    SHA512

    dd2748e970c0df7cea89331eb282d5e23786b286b463313e0c3a3f05cd0283122db17f0f2ccbfe4ceb9bec93c14ca4ac8be672f4625cf2dbe5b67890e34c31c6

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    e4952412d7f98294d08f11c431802941

    SHA1

    b2c94db45ce6d5aa2a79fdafc7fb5724ecc0599d

    SHA256

    43c4ff83b6fb25d00b90baa5d92d02d6b2e8e853b2eb0119cb543bf1e59d33c7

    SHA512

    00ed679c90638bbb41d75d0ea2178e4e1210334c720449fc0e095c68447503cbf8281824b3aaa974f06e9734125a8d19c5f3a2857b55959c98cbdd2addd750d8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    510b103ae5aa5f31446378aebfa50612

    SHA1

    720d38fb800dd3c692b58155b25881852ea76b55

    SHA256

    3634b757e676971f5f337e311818a22681b44a095cbe899da13ced92bf42ae84

    SHA512

    d56353a850e15ccce704223c7cdf17a3d7901d085ca10a27ef6b2938eaa085b42c31156726524e7ba2e0ff0960cedd73e7201d6c21d35608416895958b740d43

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    156c1b12164657aeae1ed19ca20bc8ce

    SHA1

    c62fdb1c8a746d9fd4c9dedbbcb4b746f22f5423

    SHA256

    e27bfa8f36699835354f10ab0e720298418f5847564cd022ca33056700b9ce85

    SHA512

    da57c9d348fcb5b31d79cf6f1b173605a6f8d85a2b1bf98325c031a7789588de49c69efc79f0e6f7a018f11a07438c815df39a33635ac6c261da0d75575bc21d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    eda38f751b5c309e937405e138d9003a

    SHA1

    25d570d013c10eb3fce809c13af51c222647d36d

    SHA256

    ad41ad3464eb5a6337e4df8fd187ed0dcb808abc0e8e606387f62714e2af29ce

    SHA512

    822674e09259126162900c8d30f02da1d30e73c20ec771867d4526b89c0a169088178b3e61ab0542049a51f986833481a0a73db3a0ecf1642c122f1aa23e26f2

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    053bf8455aca3b2b07d46a5c113e5df8

    SHA1

    ab97eddbec3d9230fc407792e648c8e34c2c6040

    SHA256

    0e10ab824bc1599f5415793f1e195fa2634302b7443da9492b63113bd3fdea3e

    SHA512

    146b3bd1a45abb6c620b0c4b8329099e339c0134613c7467b4138f73274947fc07b51b37f41dbedd69733d051df3c37848616808ca764c133c87d96a4623f0f6

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    8104b4ff619521e04dd6ce43fc23ded4

    SHA1

    366fb86718b859b52c1d990d897504dcbe276f32

    SHA256

    996abd1f22d22e3f9fc0d3a0747aa2a6b4decce0fdd0f89c8b1fc8e86e221231

    SHA512

    60011abcbc378de20acdc311fde5e78ca61d7198b044503160231ffb9a80ff0b8745703f37df38dd43d1a28f1fc72765470e794617ddbe31fbbdf4ceef580b20

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    83a87b31b121343b0f310865e05720f4

    SHA1

    1251ce10409dd0b7b99ef98eae00013bca2bb2cb

    SHA256

    c00f409e981f958266df3a608bfc942acfff655faf6b82ac95ab0d394796ddce

    SHA512

    fcb43e7706677228de865f611aa3026265d998474b8de12e194daed94455d623f4a0d3ffa96b48b9afe56825bb0109ccd5d5312cc096a8d996f220ce0a96239f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    7e58aff0262ff9e8e91e04b2c636585b

    SHA1

    88cfd3ed1a4750bac1d2302f13624c7e2cdffd04

    SHA256

    f5e0aa395e8b2f0d85a11d3ab0e813140eeba0664dea9287aae9d309e6edb060

    SHA512

    218c5d57d8809930bbb569a5d0f86a58e43b643075b5b9086feb2485cb4632332d361b45837fb6254db638abfa877123da4f618b3e35a3c0351f6dad74e256ca

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    95bf592b8348237c52c17264ba9d4385

    SHA1

    38d4fffc4f8e4d7bca9fa0e6bbc026b48570da2c

    SHA256

    c56ffbd46e417d7bebe0e5a02351ed6b0d87d1ad662fcbec43f37c66bf8130c9

    SHA512

    71366cd3b525a71d30dc4361f10f696b1198c80725e0a02c8f9e27ea5443b2de2aca5366bd138fe95cbcb8802b3ca1f267637c5bcf5f33a1aab3aca0b6acbfef

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    5f346c6f64609511a4252081ed961ef9

    SHA1

    324874a4e591bc4bd8d945c3a6eaf5e90c351fe8

    SHA256

    67e273f08cd7357181328f97962492b7b6bd68af0829d9db826234eeb22076df

    SHA512

    eda37d791396507079a599c76d93d9e910e826c55fbca206dbe92e5bac9e87f370eee1f641877d6e61accf45a6ecfdfcd4e477fad88229158f0fc5d94ef98c48

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    ee5aa237375b7a73b07f53603a98b671

    SHA1

    c09ac1386c9e873845c8e115e5029506b8ccbc24

    SHA256

    69fd2944749c9ad4c0e7158602243f1447fe860e8ff0fbb21be01942354346fd

    SHA512

    5e46f0902f8306ec6292c9febf0b1e1790eab4a49f412f517b79a15be00e29306c9f3af6043b200eb8a752a5a813ef6758644c60cec3aae92f4ef55ad0c8f5dd

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    a24f4cc152f7c90459d2b6ff533c521f

    SHA1

    6edd9a32bd459f05131f1c3643dc68da67fcce2b

    SHA256

    4c3d1cfbff7a82866e72f0ab0f702401776be5223a63af290816f9bc20ba6d2e

    SHA512

    514721f8c5392a5f156797c871655ca10f881d9a6b5b124a796fd8c5175c9f22e4dcad27dfdb1abe44d81e48049c962cc52380ee4a62827813fef1459e91037b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    34b61307eb7734e0c63b74d11ceaae3e

    SHA1

    235d2b978b775fd6e1c5310aa2a1c83b91a2e0ce

    SHA256

    51836b4ff72de8074a6c6b7d66311e98aec265b10c7a09c8fd9c296212e14a30

    SHA512

    1832b671f703c8c0460484ab684b6d6b78b5a41ba949767cad4ac286ff7e9d65414128aa2809287eae217a7639e108fd428c59f94fca5183cf37d2c28cfefe10

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    9b6b625984b4f13f054383eed2382ed0

    SHA1

    2fdee5d9d130a7b81a957797c7ea38e509deaa10

    SHA256

    5d36c3b5ef48cd894e2e521b0816286638d2556942223adc74271d0ff30ddbfd

    SHA512

    1818db318522be8fa82fff2b2aaa0f4a7707c6492ced8b4692eee69cebed87cb144ee49636584f935aff8787b464779b245f861f953ab8a47c481c4c32cbbd73

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    30bab3d0ade225bef70ac91717ab631e

    SHA1

    33ca5ddf79be3551fdfb25591fe26e7d67825f91

    SHA256

    c1da2c1365fbeffcbe2125f8a84938fbde0b7937be5f318cdd2e256c13647dd6

    SHA512

    53a052535990b29f3d0eceae8adcc3df5420d6061e8399fad4c91b124920d420a040074d2400675b76b9698c49e6d361f4a9081f40650fbc01007974b7e57d2d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    17929b35761bf5ea1bd4875c79527e8e

    SHA1

    ba096d0cf0cda09d5e0140ee410f17083d52e3b7

    SHA256

    4c4e2d5a76854923d08e73c25ff8d1111b28ff42a3bfe547532027d8fa6b6bef

    SHA512

    bc203c85308cf323b51ecd6e2beb8e4e5585d610ab3f19d96b41dba6b5ac3e88b0fbdbeaf2155d6a6249e34faf57ff98f59967498d0e11de9a89eecc19598745

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    95d2d854711f9b75d9eb7e327bd75f9b

    SHA1

    67c9996b510dc53aa13580ebaccb4a9ede6a78f5

    SHA256

    5af2440d845e996dff7b23407c40f3e3e9a7311a432d107693b8d9cfb9c0ba01

    SHA512

    a08bcacba44c1e2467ee9009cbc05abb4a95a034eb6cafc8eca22b6439b52fc34a93169ce7867980aa1fb6578c36dcc0b1bd76f6860f6e38bb39138fa5de4c04

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabB3B8.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarB3B7.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit