Overview

overview

3

Static

static

1

d244c1771c...8.html

windows7-x64

3

d244c1771c...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    121s
  • max time network
    130s
  • platform
    windows7_x64
  • resource
    win7-20240903-en
  • resource tags

    arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
  • submitted
    07/09/2024, 15:38

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    d244c1771c64f6a7a96f1067ec836dc2_JaffaCakes118.html

  • Size

    34KB

  • MD5

    d244c1771c64f6a7a96f1067ec836dc2

  • SHA1

    95a14635237f1016df6c49052732a98378c1ab06

  • SHA256

    4f4349092ed2e609c4fa3d500d5d41ad1ce8aab745341a4c53edbb7644615a83

  • SHA512

    3cb7029b71dad56fa96ecca4544928d8f236fcbb1efb5e0284f57ca427e89c6efacb1abcdc10632c06aea2d2fd3151586cc13147fec74ed7c7743cd5932dbf47

  • SSDEEP

    768:EWmF/TOgZF4w0aemMqOTSsKM1IRjJPovKnc12fIpzSAq4a9kaxjZ+/l:EWmF/TOgZF4w0aemMqOTSsKM1IRjJPoZ

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 41 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\d244c1771c64f6a7a96f1067ec836dc2_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1984
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1984 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2324

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    35024c05fbe22de0c3bfdc8a8fa82ed3

    SHA1

    e93b04a37b5db2cae6adab65e1696e8d58ec05ef

    SHA256

    0dde463ee71351c480f9df80577edb3da5f664d5f3d508e5c7e8ca0c94e3016e

    SHA512

    5f17c0ed947d2afc2f09bfca4acec8570cb5afe30fe6a0d8e69911f9a8f6f9c2b0408e7178907d52c3fe5fe4137e0d76979abf7e1b017abe01d38ca78d08e0f8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    e17be36a3d4e62c77b7ce814e099374a

    SHA1

    c77c13c92bb55b7da3b63a0dc0a36b27cdb05824

    SHA256

    67cf1fff2860d01ef2e7a471012014b3d783d25a52c7780a423f9046e523e080

    SHA512

    18b354db8a03f43341fe9e2718658661581f19e4ce420a07214b25af45d11866096726e45faaffbbe8e6295e86b41941f3cb3ec92b8a773ae0a7795a3f0d11ff

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    42e869236ff2f07a5f4a760e624676d1

    SHA1

    ab776f5b1aa36e5460c4f06aa31c33bffe3a7686

    SHA256

    f2fd148494e7716ef295c030cc0aab3aae6117efec8f185b3179a6b6723b73af

    SHA512

    caf858351bbd0307847a45e604a7e1c733bfb7eefafcb6ef94154499d6c33cf1bdb466047731b49e3a77cf86b8b940488b84434bd54b8c6904374047210e0331

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    b30b6677d390deffdf9c660d8ad53bff

    SHA1

    3bba51eb14fc49f88b057f8b31d091169c11593e

    SHA256

    7524c5bc7676a60d881e14f43ef81b1a715ca19f109bbf6f376a906ae169020d

    SHA512

    3efeebc79b817a8a3aa6b991c55c4649b1c40be1d192b063f76002ca8e00abd8a9b3b9c44f0a01dd7a2b4119a5420e06ebaa845af3248f128c3eecf289acf543

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    2dba38c4303ea9c6021793a3872bd22f

    SHA1

    9a8de7fcb646c383b365fa89d99f028813fe9cd0

    SHA256

    bb10dde18b63c1dd2d5e88bd03a66f9d59e280d3f0e9b71522bb61f16a2bdd06

    SHA512

    9d3083d65fce01800c8f84bb46ef3fef161e703a73717d334e149434a4382b11405c800f88a43ca6d25b39432144d1db1de6716da6fe2ffa7274f279cea4f095

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    e8f568a855e1dbb5408faf3167b64b99

    SHA1

    51d80feaaba288e8071e8c7e6b0fe0bdea73b6af

    SHA256

    887b3db81481a1b10b0e21f50a089579ff800cbc5c9ad41420e32b82a18f7f51

    SHA512

    63f6b0dc304de018c5b2c1601e54d90ceae97e0d3bb8cbb3ec41d4be284c33ec901ee16c861c741e174f0b3f6fe75e8e2afd001d828f6054975bcdf0f7c6d4a2

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    a9b4d0e9966f29f8216a496b4fe7ba4d

    SHA1

    7340ee2570958af6e585c9e9a8f222a333dea926

    SHA256

    123e2febc8460593882b706127e43a2acf6700cb894c409b4c1d0619e3772910

    SHA512

    8181bbdef0b8f40282fe2baec2740e454d2d3c8c39c98999b87a38c2eced85d18024c200375aed7e4b038331ea28199f1496faf8591ccfa83a781d25a15b9567

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    fd2f0d66e8c81af524e111b018ab6f57

    SHA1

    160e8b545f40b19ffe7d59ce142a989bd53b3938

    SHA256

    1b937de49ebdb32e82d709faeadd81d2a5d7b94926256da71b26f46adb466b6f

    SHA512

    07450600c2571604f67dc3079f3c63bbd4d56aed43e014583e14effaccff7c50e987fd224ca974e1db93f1d9349d8b5c9a3835bf60b25b3a2e24b7e0f200724f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    3561ca22fc38c17378085577fe89fb94

    SHA1

    4f77bcbe0374705380736332e6cb360a88034654

    SHA256

    7675e8463a9dc130b57b675eb16da045c61385e1a3a5663e1013fc4ef14f9b8b

    SHA512

    35f0d159e1ea4569d1b69b6e783545d79997ee879f8ac5e7d98c6964154d0f5a98f771c4e013af0d466169f29aa587c923512e28b1511d6866cd5187e24d00d6

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    acf8909bd951201afaf14ff95511540a

    SHA1

    067b0298f18e279b3985fc7aafd89869dfa3a932

    SHA256

    1e001baa2c2d45b8bc78e424143a523770b4787120aaed404df9a2c8ff92c8be

    SHA512

    abd9af34f6f1430e91f91bb9a106b8d963287814b3ef38a9238037f8c9e10b33ad4e085ad34ed50c8e778ea0be23a9fcc70929caacf7b38baf80c9689a06a62a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    72835989903bd6aec4f0d5ef05ccc8be

    SHA1

    719256c41db98376e62aa3b5b3e81d921ffac4fd

    SHA256

    9fed3135ac548f723eba75b6afadde4a115f082264a5faccefda3e1578e42d6b

    SHA512

    6c6d11ff12338914484791470d914600828202ce038fabcd3de3f80913de3e62d898bf16ab9a9c2c7d4adc691469809bb1cbc9645f6ea4ef8568950ba4c47a58

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    91ea59bf27aa9d6bf23cd054e0884017

    SHA1

    afc6153114e164b70e5e111a4c37f2a6629f232e

    SHA256

    d040dcaf9687c8253ef343b92e15c5e6482acf52e6adfd768fad96fc2e1530e4

    SHA512

    b3d6805860e9996bfefd70a8155a9753769e0c8510970e3fa416ae2475db2dd54e776de0e9966d803ff464462345b4bc08d59c8f4a5f6a227940e3f64dd96e28

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    12f51db8fdf0ec2e9d5be92af134addd

    SHA1

    28840e430741d2b2557c9459ca9360c5fa796d0e

    SHA256

    e80ad7476d68890baa393a6cdd5fa4fffa7f108600576e5de73c32315facb7ce

    SHA512

    0a229428496b5446708ea80b420d69c2d4036460681c4a098b020b90f05de36c34ad4c1df143cc4dd80991a78902badfbe2529c6e1ce38491b96c260f151ecb5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    a551be385c0d8356223df8d7ed72934e

    SHA1

    5024eb2475f3a19d2b75459ab200a321903dad9a

    SHA256

    9ce313213a4ecf13032839f22fa74d955d4d9bbf9f601bcbbe35d72efdf86739

    SHA512

    c70a75156d1714b911f1f22e9bab578e097d94228dab997dad6ebf14bef04250c5b85e0e6ff9dd9fb48a496a70a01b388b0f68e1bbd51ee292abe659e92f7584

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    dd55d0874efe7db7366446cd9d0f11bb

    SHA1

    f2277100c720ffee76e4f9febf4dccf4024dfee7

    SHA256

    2b5ed1f4dbb652848312287ef65bbe195bcb054bfcd540c905d38dcb06fc4fda

    SHA512

    56cd112742a8d9bfde3ff574586d21bea37377b8e36bb9588203df2334307cb01feddcd1a738506f0c1652e3e73705b4e7706266f9687ad3108fac1673d0d677

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    7d8104ecf862bb54080217ec2db192ec

    SHA1

    06e4ba5c10f96b16588b982f3f2511c0a17114bd

    SHA256

    f5e95fa8eabca6d39e55fba74c05052a45e58b869a2afb46155cc8c081a3c35b

    SHA512

    218498b636dc6a9a2829e5ddd793bc072d126007c55e306d8f82a45d636d32186961cfc7d5f140fcd395bce0260aa9e4da15d0bba17d5ebfe6cb3ceb8f8dcb4d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    0670a984caf602de9c963d5a77835212

    SHA1

    3c800d857e1bb5c8fb42605d479a487dfe14e3a9

    SHA256

    8ff55aceeb8325c0ca8c7001ba6681a52d8fa0be2abe899ed36e60f5f9356f51

    SHA512

    54a655f5dc3d49bb9db29be623a1c06e1bb6b19c41b1639affe84601935deef128f47ec7f03635beba2dab4f1b33d330066333fdcd69cbb21fa2de8ce37c361e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    d87ad2d106c14b424047cc2968c71530

    SHA1

    f3b16a27ae6a21b4165a619d7514f31b2efdcc43

    SHA256

    933f0b7e44e97432fc730faf188c6e97ad5da7be47b91981fef4b15cf7e4721c

    SHA512

    f7e07cb22dfdd48bd7afabfa349ef7553879184911c9fd18a42305610ef046ce3566b326f9a2f6d76d81dcdb91ef5ab60ca0254b4182590e3c22fd69372cb722

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    cc8b46cba6d4f8a6c9eb493b4335763b

    SHA1

    b3d94f2ec514574a3e7632cfd469ddbf6d5481c0

    SHA256

    74e8e0eccaba25b490e2460a12955f6c77571da5121298950e87cbcf004654e6

    SHA512

    fbaac02ca80e1f4d547db664be54c2f7d35fa215d4984bae40aa900a99b327346751f815009bec4e584fa82109987e9aae80307b3172f32bf1ed5368da751640

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    d7d52850a46c17efa886ba551be044a5

    SHA1

    50fce38e93d8a79a4707061f03add66eba9061ee

    SHA256

    5e020b2c61ada7a26215f811a854ad2d20be67a97d0d54a7b3bdbf1d20c4f968

    SHA512

    fa713a91c993812c47d9142791898f71167a1218b54b7cb2151ecf0d8d097a583235f5a929c8f30b139740e471cc9ba15a7789b9e084099fdfa16cd2ef9a176f

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabC239.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarC680.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit