Overview

overview

3

Static

static

1

d2ba4b67af...8.html

windows7-x64

3

d2ba4b67af...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    135s
  • max time network
    128s
  • platform
    windows7_x64
  • resource
    win7-20240903-en
  • resource tags

    arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
  • submitted
    07-09-2024 20:00

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    d2ba4b67af8af5cac4cbfdd54b060b25_JaffaCakes118.html

  • Size

    53KB

  • MD5

    d2ba4b67af8af5cac4cbfdd54b060b25

  • SHA1

    5cda5d21b3a416b41b13687804353b89e647c2c6

  • SHA256

    41cb90e9af90d4ffa56ef371e3328d0cc5f25bf3eff4a941aac92fe4707d5c46

  • SHA512

    e07966eacacc8e8936735bd4ca4702de680981a2f58293f91af76ed0238ffbab0df51aa1ef1d62957659042727421e3a227151fac7d5c9843942465813bb1e66

  • SSDEEP

    1536:CkgUiIakTqGivi+PyUMrunlYG63Nj+q5VyvR0w2AzTICbbHoP/t9M/dNwIUTDmDw:CkgUiIakTqGivi+PyUMrunlYG63Nj+qX

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\d2ba4b67af8af5cac4cbfdd54b060b25_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2100
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2100 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2400

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    d0bbc3dabf5a3a7de422bbbc7c0a4975

    SHA1

    ef42448bd4ea3f436ed40f7a35c88eade41a510a

    SHA256

    5986172762dad4553275062a3fd417618cf811da03b09a33462a9a6c94ae8415

    SHA512

    f9193c96fe15b357a2f84c85b93e418c872f2e0bd92db3866b6a65e120d94c2e194270f923409163f0e142bfbc7817a66dd9e111a8644480366628ccae634f41

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    f16ba945eeac293564566fea35c42c3d

    SHA1

    029fb6c749dcf4507c2e59a85138f802fa280218

    SHA256

    93766883f5a9e187fa8507ee40afec3196c7fe8988f72f2023f1fa9bb25a9bc2

    SHA512

    206c8120bed976cb0da9ce8b6b47ebb7ca3bb120053ed8400776de1d6212214aa5121d239c72db88c0e7e5d9bfad57fb66da8ad9491e0e1a9743cd1d52941ad0

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    7630b59e158a53c236b1b771e3f3e14f

    SHA1

    1a50df6eabb093cff12b5a8c39de355b376e3d9e

    SHA256

    1b625cbf58e750024099732ce8dd5a3f433c323d9b781a5bd4f0d011e9fe1b56

    SHA512

    8e8c29d3a2e9091b38b66d4b9cb62c0796cde30de987529d1a88e290299f6d9eec9b355e69a2c924025871690e5abecce47d01e015cfbd03dfac7a682cc62a7c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    450f580df018883350ef0f17176e84b1

    SHA1

    3dc8fd7c091debadfd239a76e907665c68ace680

    SHA256

    76b281fb0464e44a7007a231c322711d43bc6d50fefa6884959c24078c1a7b15

    SHA512

    0d7439e9611ad695d66a78a3f3cbe99a07977f34823213a97d511ab3e21a6be909cfe7cbcce8848fb52815b11ec78fef2a6b6355ceef630b72583bd3b377a228

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    0d488031e10185982ee5257b4a760a92

    SHA1

    e9c2a61619a71f3a0c2f345e0ce28cd641177994

    SHA256

    c1f380d90ad5e1510e17d556076b43b3fc756eb35c8fc07d5a32be90722216dd

    SHA512

    8eb2ca6965a4bc99b10a8fd3160f5d49586752c5c12787aa0eeb14609f35ad8022c9985662eb5e92a1183c5bf88344f901eee7f6757cd0d89244f979f84d81fe

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    dffdf3786cff68ccb2db0abe4572e88a

    SHA1

    59d96d9f91a16904344d67ec0e7b11bfb733e25a

    SHA256

    86d5722b89049826471c969e15025f57304d5aa723a95d54bdd17441901eb8c0

    SHA512

    cc2195dcbbfc606b7b5a6d5b539d0c0b68abe3e2e6521deff558f08790b5391fc0c791006010920089a8688b0b929e8cd217b475b380786bc2363d0bcb62facf

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    04fd7fc2e55949be240dcff15b0408c0

    SHA1

    7615d7bbe91255a8a710ecb53dd58d608de8537f

    SHA256

    130cd00fd780a0bb7d02558fe4c58d7f49bc16b5c6cb76ae4f1397500fe0503b

    SHA512

    8b958a8bd7fcb7ec62c72d3f092fc6bfddaab644c947faf84d3fe557d2e1b67383b6c865de0baaa94983b58062e70bc1884a4c40ab3eeeb0cca84ff3d04211ea

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    d63108b281da4d0794678bcc5067a18c

    SHA1

    010de788d509986adced66e834cf6ff911f3e1b7

    SHA256

    569a7e90e16e1765279fa1131307528e474917ac9b5ea5b57d7041e3187c48fa

    SHA512

    071638f62923ce7b3995db2ba033f5139f0ae9ea23a6422c01c66506b84cb635408b92dea869c759fc104673084f4020acb71047761a2d970a2c38ef6db86540

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    c44b56161c1ba7a3048077be102267f7

    SHA1

    9014564e2663fcd2c33ad5bc0717599ecc520fd0

    SHA256

    b97f9cffe3ae6268055931df48e56dbb53194f5bf6c4dcfd75304d16d72891c2

    SHA512

    488248ed7d660445cf377e1f00b7e0c41cb7895070e365b6f2be5da130328b4323027a38c95534fbef2c6812536dc7b1b1269e555b91e31406494925d64feae6

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    3ee0cfd491d5a3ae7a154d2882452c42

    SHA1

    37beece86515090beb69faa4994fa27ee46e6931

    SHA256

    8232b884a4d85f9e212358f2f267e59377caae611b56292823d2dd6b04315a4d

    SHA512

    9c16c985d48532d317248fa49fe406de4b534c6592d06b9a6a7c9d69e028fdbe831bbc0cb9f60cb4ec2a75b0930ac5e29734303e7bfad8a25f5b425b78b0218f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    58f031b850d5025ef73e338dc8ac95c5

    SHA1

    f66f41bd8245d295fe52a9bd432506132d81a940

    SHA256

    8bfb36444818f815f0da1105101842cfb9cbaf23331a4acf4b77c226c2d29873

    SHA512

    cb07fc651a5463fd5545b572ea6d79a5e25a1a7c04de3dd00e04059611d7b9408bfc4dd764666fbdf16fa47f62db3c0047a18e743fa6cf936eea1add73e47922

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    eaaefadc60b86b81b085a7698385dd4e

    SHA1

    ac9329778fb3b19285ec4fec2f67035a8ef40c6a

    SHA256

    45b7761468bb9f894585a756076aed670c8668be64006d909d69554c12916df6

    SHA512

    90b4de865f2daa92d00bf82da34fb8a1744ca66c0cf19867d4675088e4206f39bd8f29fbc06f15e9a9138d17d63d098e919c7ee976c2a745e4e5c6a77767e29b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    9ec6f75236114b54f13793e1410cef31

    SHA1

    91367652a626c672188006175e678a505a0beeb9

    SHA256

    c9d67ccbd86ce5abec9f7644aa4407f62e5913801678e0909c7ed7f2ac745330

    SHA512

    510fe731c785f9e3983a6d51b4a3173073f3f81aac9f746e47ec57ce8a2e534faa7198c80496da207bc2ee34a7ff29d94d1e287621e548b61e8becd39a865cb7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    36bcc52f9f3c838711da0af0bfb44181

    SHA1

    7d1dffda69884b1feeb52d04e89e5973295535f8

    SHA256

    8d53e9c9e2dc9e079c07709c9dccbd4e2ca2065a2718e87b6690ef1f3b3e0d02

    SHA512

    7ec9dab23a79325fd1bca5290015c83b2293535e95aefe29a847cb5cd5ddd6dec29bf6834e0ffb4a7fb4c84c74720e69ffc372650ab33bcf698a787c6c625778

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    1afbadd4d6278a85976329f1ebc9ef90

    SHA1

    9b0786ca46401678ca508db2e02bb348a5389338

    SHA256

    82d4328203da8b9ead5504366e2edecc48eadbcdc561f5d234814abed3575e7a

    SHA512

    0f2a09e093cd06676589044435a759ec0ec6f27d0cd7dbef660a47fa8ef04bab8c6b0d0c84b3f37bbb3e9ed0c68920614ed40ce54edb6774a9e79598157aea8e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    08910de1b7652e8b87f9747d01729995

    SHA1

    94b96095bd577e01991b986c54870742f288e743

    SHA256

    db7516ad8c7ddda9587b1536cc2543bce084d2048704d7b0f7992c2183e1776b

    SHA512

    7afdaf8139e19d1a4a52fe675a1f1d28bede565b0d97f374245a393bc52ca6b6ff4ca8d6bc7f22895b6b7f533d0699dc659bc802012ceb64d878dcffd8a08cc8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    3be4545b550a7e09371983fd1a4b3d79

    SHA1

    ca9ca698230261bfec21c094adc45b8d326ed52b

    SHA256

    14ce7962abcf4cadb1e6997196dace960d12f3880e89d199c9876e27bafea45a

    SHA512

    827fdc3f40e82f6865bfa90d5b4ef84b0baf5c6ef440219649eeba5fc10ad3ca4f29e9caae32652c8ba8c86042924dc7d3d742fb867ac1f8f487adc55dea6699

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    3350266929724e4ddf81f227c0334d6a

    SHA1

    68d4a93e8e46d9e13921df3339af73d9e319b1cc

    SHA256

    450855eb658fdfd3b132900a13a76ff908dcfdb1c885f85bdb00969310b8f036

    SHA512

    7d1493a2f351742968b2d905b090e05b99a2b0c710714f8ffa250a4fe15aa1eb33da7f487e05739538a00717bb85981b2cf717757f40b4120ace94ac6fc92fc3

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    92cce0e795a75e2e34aafec55bed6c10

    SHA1

    79e8c404408b15da7fca5e80cb1b3dcf4ea0078d

    SHA256

    be70ae348f27daca48218a676ef19d38b923428b46380f667d3e06eccb454984

    SHA512

    26cd456fd97e0ddfc49de42ed58688105fca8ffbbf1eaf3d5644b953bb2b35f6275e0ef987231c757207fa34c1ee8b5ee5d46bd2e500ddce644a2d60467b27a8

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\Q0WBLVJY\print[1].htm
    Filesize

    706B

    MD5

    67f3a5933c17b3ab044826d3927d0ba9

    SHA1

    5957076d09bacaa6db8ddc832b4fd87ed8f05f8a

    SHA256

    97e800f4836b7030dd58fe6296294b7ff5ef1b5eb0e88353f230ea1608d2bb64

    SHA512

    03ba224055ffdbf32b7eea30c764dc18d66cc6d8707dc5fafab74e155b0bb3d4d691c5788b033a68f05299547297125122778fa7e3252f93e7343d918936643e

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabFC9A.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarFD0A.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit