Overview

overview

3

Static

static

1

d26aeabe9d...8.html

windows7-x64

3

d26aeabe9d...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    136s
  • max time network
    150s
  • platform
    windows7_x64
  • resource
    win7-20240708-en
  • resource tags

    arch:x64arch:x86image:win7-20240708-enlocale:en-usos:windows7-x64system
  • submitted
    07/09/2024, 17:01

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    d26aeabe9d6b9e1c06a54d147f1da189_JaffaCakes118.html

  • Size

    65KB

  • MD5

    d26aeabe9d6b9e1c06a54d147f1da189

  • SHA1

    21375598bca1a63133e825df4120dad241057950

  • SHA256

    4ba79f28bd668c6e04f9e7c4354fb8141fefa20f29b888a8cfbddd8a49694bb2

  • SHA512

    85ea3a5f83df1aaa9963b76661c6c00fad412114d1a0f136e7ccb36015b14aabbd5827e2fd78b09371b2e35fd31389ca11d118e70adf50f42cf48d4b480ace14

  • SSDEEP

    1536:R357IAXFV2SGanMcpB4ODkciUh/AC9gYaAJocb7onzai64cVP5xPR:P7I0V5GanpB7kciswYaAJocIh6TVHR

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 29 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\d26aeabe9d6b9e1c06a54d147f1da189_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2644
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2644 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2664

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\3C428B1A3E5F57D887EC4B864FAC5DCC
    Filesize

    914B

    MD5

    e4a68ac854ac5242460afd72481b2a44

    SHA1

    df3c24f9bfd666761b268073fe06d1cc8d4f82a4

    SHA256

    cb3ccbb76031e5e0138f8dd39a23f9de47ffc35e43c1144cea27d46a5ab1cb5f

    SHA512

    5622207e1ba285f172756f6019af92ac808ed63286e24dfecc1e79873fb5d140f1ceb7133f2476e89a5f75f711f9813a9fbb8fd5287f64adfdcc53b864f9bdc5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\DDE8B1B7E253A9758EC380BD648952AF_F968CA97A68F4E6D5C104EC7FE3DFDEA
    Filesize

    471B

    MD5

    7e39ff496edfe3dfdb85dcd49da2a777

    SHA1

    32e828e1df87c0e0626525ea6614cb5cde671069

    SHA256

    5b443aa82793c5f4ce5ff89a5547b54a2a49d7d7babc473b8f0e6ba224c6d21c

    SHA512

    38b427b15103458361af67d3c2b4098d65cdb5272e52ead50f6a8dca319b05aa7c8cca2ddbbe10820caf2c55d9f9fe99a62d38fe38e9acbcabef857c74e338c8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\F0ACCF77CDCBFF39F6191887F6D2D357
    Filesize

    1KB

    MD5

    a266bb7dcc38a562631361bbf61dd11b

    SHA1

    3b1efd3a66ea28b16697394703a72ca340a05bd5

    SHA256

    df545bf919a2439c36983b54cdfc903dfa4f37d3996d8d84b4c31eec6f3c163e

    SHA512

    0da8ef4f8f6ed3d16d2bc8eb816b9e6e1345dfe2d91160196c47e6149a1d6aedaafadcefd66acdea7f72dcf0832770192ceac15b0c559c4ccc2c0e5581d5aefc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\3C428B1A3E5F57D887EC4B864FAC5DCC
    Filesize

    252B

    MD5

    cf9a963ef57ba7d66438d34873f72036

    SHA1

    e2e2314d784ea8b055c045c9fddd0a8488c38c1c

    SHA256

    0e709197ba94d617308b4e958d120296a8a96f4cce99f612aec4bfbac839be48

    SHA512

    36b7ca2fd879a8759d49882aa13d8e4696a3f5730543930f423fcad0e414e4305f337050436397641712adbf550feed31482d33a3c5bc63fcbdf665b84407e5b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    b4ea391cf6ef6df24846272a7efe4ef7

    SHA1

    7c0bc7e9d4c2e553cbfa4a8f4d00e5488829d347

    SHA256

    f97164c5968e0916938ce64fec751ad44dcf0cadcc3cead56d179dfa0573b223

    SHA512

    7dc61983a34e4aac05e6760ade8e36e63c31820e38bd8c65649276c0af4f04ae15f24e971135e1c3ed35d041dbe30b0b5fef86da4dc6b70857f933ec8a9bae8e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    e11f326ac2b04c49680ed721c68822fd

    SHA1

    c267d4d44257564c6ef5db6c2ce1132b48ca3cdf

    SHA256

    5e8dab5b63985668fc062eb61aea75d0278b1f2313930a370f2e2716cd347806

    SHA512

    8f3713bd796378a5a80f1013e9c52124576e6e10f3509dd4ebf06c4a86e9229b7457fc2dc5098915a56e42be8d28aac523609bc1aa2665752c58023f3d16adfd

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    2d9ee94c17a6f7a09e665bd982f3fce0

    SHA1

    3ba6e484fb0e97383dc1cc4d33863cf3a2f13c03

    SHA256

    da1287bd040b94ec6438986234b3bca1d6a188dd51e722a8bc2ecdc13e544d40

    SHA512

    d1e60842c6807ed8136232f26e0d78d2242c28179b85fff9c1312732e5e0ef945eba2f58d4b65f70b552f37d27a78ee48e67401924618e1bf4c82f42ea4c2940

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    80b587453dea7f2ad467273ca33b655a

    SHA1

    8e90b3f341de9ae3a761eeca7c79747131bc88a2

    SHA256

    e1c5138a5512b26ebcee4bfc7200961bf216baa0d34705556fc5db50151ac068

    SHA512

    08be0131d2d27303b19e53038ff78a4206034db2159fc01e0d59642f0578fb88829c646129c924d050ab1f90f7402afcdd19cf05dd4d5d6909068f81efe6d435

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    3676d79d96646c83f7b3acfe4a3d4147

    SHA1

    e2918705f0c84681c050eaffd415089b17cc0fb1

    SHA256

    10c1067f6a6af24f837b90534e0ef75f3cb3260a6266947d0c81628046ddb5d3

    SHA512

    7d453c8316ffe51fee70eaebb69e90b640ad6b6ffe0a3932d21bfbc708d0c098d40ee70f36240f4485e74d26443abc13a782652c4d5f324a79dbc9440ed97a41

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    8e83c22b0eae75b73ae395a31bc40d6f

    SHA1

    d9cec83b819c9ff75610c1b16f070fa142761108

    SHA256

    eba11e7e28803ae556c9cad5e30040476fe60fb96c4e4593528a32e368beb1e4

    SHA512

    fdab6405957fa0e3824a22665ed9509fb6f3d2c910514749ad66c8c5affb2506cf913659dd8a4815cfc6da6fc17dc2c89c1d6e29e1966eac40090a0d74933c21

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    6a9851f53c4784d222eb30f2ed499551

    SHA1

    b75c0ef0e08279d62f313242904995ad265e2cbe

    SHA256

    d6f30d4e48f633518048ca2f48ff4e0f8e4a6df0cb45bd9e791f4e17a42f134a

    SHA512

    c5ab4d2efe22a0879d57dd9cbf1e18deeaeaa518224f146720973e8d95e9f67847263acf9f06231db817d8697355ecb0438a64ec6a3957a234ae2d0cbe678088

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    e6d11231bdd10dde3462c8cb27718086

    SHA1

    95fba958462e5c0c14b944c6d00c1da213472db0

    SHA256

    3d6ba979a91a82bd55a9a94f568c8500abbd758d521c2ad7a85081ae6756bffe

    SHA512

    62b2b544059f1442296e456dcc514aae6dcd237cc9bcdf372a70d8186aa525a9d0edb144d4107fd59d2f4d4bafb5fa69cdbd8790df58091a4d3b9aa6af64e83a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    d231e3e5fcc298d355c8df44b28f5400

    SHA1

    bc30fce852313cf0bc171f037b2419a2a263887e

    SHA256

    c01c46ddd59c2228676ddc7b61113aa11412fcc1a3078ac5bc215ef156ab952c

    SHA512

    8f0efc5a255ed3c35769b300309c0ad83332905e48f564b46f4c01b24a773ac191d6fb2424885aad923f13401d198259ac151a188f7ac48361d3dc9a5697db9e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    8e60d896e810e647b3a01e21f5d99fdc

    SHA1

    7c4e4a0e1caa186333a59374f863db90dea938af

    SHA256

    87d146721c7e868acadd88216484efc61cd4a49209a5f284abd552562bb76d90

    SHA512

    d04e4af1238744414a6e847aa3adc0a85bdf26244412065401e73bf7e681e4442a686e8545b8adc72c4b3cab091826fe150e266a14dce9e089444172a47d09c5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    9f7f49309d5b73d0f7a087f0ad4c8523

    SHA1

    ffa924f274f062cb64d06ad34aefc7bb3a904420

    SHA256

    9f17fac3960d0dceab8794961a32afadc8cd3333898c19173427e24e19b5e97a

    SHA512

    09a5bdb511bba3abcd8ff651c146af1e10afe829f718dd3d63bef16b1d254e630d07e4190957706304922bd7ede4ba42ca4629e62d6301fd67b1ead2dae07af0

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F0ACCF77CDCBFF39F6191887F6D2D357
    Filesize

    242B

    MD5

    8ddc663288e1a8d027927e592a757511

    SHA1

    94236e784116eb63393c0bf96e3d01430978b70c

    SHA256

    f6119665cd73faccfe9e91aaba569b595d1dd9eb8773a9de710a088bc4065db0

    SHA512

    7d1ea3789b7453052d686a1700fee1edc0fd491e60a225a916a63b9d7dc77e043b023408e96694d8c074f35fc4e74fafdd681b0d83d40e6921263083d6bd8240

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\6XUZ2JLF\plusone[1].js
    Filesize

    63KB

    MD5

    65d165a4d38bfc0c83b38d98e488f063

    SHA1

    1c4ed17c5598a07358f88018a4872aa37ae8bc07

    SHA256

    b1320e0dda0858c87971f7baa0d53063ad2a429d232fd06b0067bda8b9eeb0ec

    SHA512

    abf4c755d88193e7e05398b6f934fc561d8e2adbee7d2170af399e145e54a4a8a93988e4af4e28d6240c0bd1bda7035ae97f67a85a471088820baae8d89f3d41

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\YW15VCHK\www-embed-player[1].js
    Filesize

    328KB

    MD5

    f1bba28df89db5ae5aeb200874be7960

    SHA1

    693cb2caa3149a71891a71e8ee4661b7e0b7c953

    SHA256

    5986f6d4c2f53e79f5b0fb625f68dc573370755cfbaafa7426a4378b8f0478b5

    SHA512

    069af34d9649eb5e81bfc66613b761f97b3cdb3e13a79189ee83f0e18ed935b16794a57ec18340b6400c5611f27fe43bc6770411bf62294ff9896d5a99ceb5ee

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\YW15VCHK\www-player[1].css
    Filesize

    378KB

    MD5

    b5728d6046b8b1e06fcd4516d9538013

    SHA1

    11c4ba6fabf067699c3466bf7067aa6c26bf8c34

    SHA256

    85b09e486828aaeee2aa44babe113e29db15009297959e9105342a762186646c

    SHA512

    fd6653bf535b651152d353d655bb9cfd4fadf7bd95815eab9314e966306583e0f7f1f3559088c89d24b31a8aaf3a95af74ad1f5e8eb553892fd690ac81e8aff8

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab1CA7.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar1CAA.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit