Analysis

  • max time kernel
    118s
  • max time network
    131s
  • platform
    windows7_x64
  • resource
    win7-20240704-en
  • resource tags

    arch:x64arch:x86image:win7-20240704-enlocale:en-usos:windows7-x64system
  • submitted
    08-09-2024 00:50

General

  • Target

    d32cfaa017f9e3aef1ec3db6bcbec3e9_JaffaCakes118.html

  • Size

    19KB

  • MD5

    d32cfaa017f9e3aef1ec3db6bcbec3e9

  • SHA1

    f66cb8f82dc863362db476a43a7b11f0f54535c0

  • SHA256

    6c6ed9e94fa37cda3d69c6ea80274e4d6a736442b1aa319f2fd180327a8dbcc8

  • SHA512

    68df99d782aeeecb87c7f44e20b8027ff02f1bc94adf035a38a2a91e4591ff51629a0775345357d81b8b59545349ebe31e105008ef82d88b47c5aac71222b58c

  • SSDEEP

    384:6GxTna6v8WF0XKfqfWfY6TPvvYMaTLb9yoo0KaKlExE9EXE/ENEF5f2hU1/n5iue:vLUWFlyutTPvvY74uhU1/n5iuBI

Score
3/10

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\d32cfaa017f9e3aef1ec3db6bcbec3e9_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2732
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2732 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:3028

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\3C428B1A3E5F57D887EC4B864FAC5DCC

    Filesize

    914B

    MD5

    e4a68ac854ac5242460afd72481b2a44

    SHA1

    df3c24f9bfd666761b268073fe06d1cc8d4f82a4

    SHA256

    cb3ccbb76031e5e0138f8dd39a23f9de47ffc35e43c1144cea27d46a5ab1cb5f

    SHA512

    5622207e1ba285f172756f6019af92ac808ed63286e24dfecc1e79873fb5d140f1ceb7133f2476e89a5f75f711f9813a9fbb8fd5287f64adfdcc53b864f9bdc5

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\F0ACCF77CDCBFF39F6191887F6D2D357

    Filesize

    1KB

    MD5

    a266bb7dcc38a562631361bbf61dd11b

    SHA1

    3b1efd3a66ea28b16697394703a72ca340a05bd5

    SHA256

    df545bf919a2439c36983b54cdfc903dfa4f37d3996d8d84b4c31eec6f3c163e

    SHA512

    0da8ef4f8f6ed3d16d2bc8eb816b9e6e1345dfe2d91160196c47e6149a1d6aedaafadcefd66acdea7f72dcf0832770192ceac15b0c559c4ccc2c0e5581d5aefc

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\3C428B1A3E5F57D887EC4B864FAC5DCC

    Filesize

    252B

    MD5

    d30d9b60f037e1a971621e6c6b43388a

    SHA1

    9e726d5423578c619a4b44131ad7af35835d5ae5

    SHA256

    b2aef82024cc31bdcb7528252f7138f52b67e42260ce879549d28178e5d3f995

    SHA512

    02cf78e81d6f76376db6b6fecdad971c50d6dff04745768434c561035107048920d4df666a32cc64681d114803df742266168e441f7dfda37fe1afd34adf0b85

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    0333f3777f487c912a0507b02e18b661

    SHA1

    93f7ac48c973d28c5dfcd90f4c256045eec3237b

    SHA256

    33213e75a5dad5b93e90f62b96e7862684c5c5d8d536f6400e51051e20303b9f

    SHA512

    8b6b42cf0b02e47fec440dfbf04f4f2b37bf7072097c888e5f80278d122d98cac2b717e8ab9bb70cc59d0c806b9b7ece377d93574df6976a1b32fdba8657a82a

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    2595dbc46e6d58b3f97fa2c3edac4e06

    SHA1

    81ee9e39f07fae1fcdac87bdbe89b8a7389527df

    SHA256

    b9946717fd5360e7905df6dbce129f2455d5ce501a52aa6f23d9f90f3fa3dbab

    SHA512

    a4d54551c1042f7344a53fa42a34e6e7d6137a24fbb955e6e58fc38ca67a1edcc7fc1546a34148ac866fac408a4b7b0745cf33afd8b7bbe379572720b0495605

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    a12839a52d88ee2ec7f9b95ed19b3120

    SHA1

    bdbeae1d8e395ee9ddb521b92cb40e4333daca67

    SHA256

    18848af6f1990ebc20f44a3ef76002a1b5813f91c6bbf272f245b402dd634db1

    SHA512

    1bc8c3bda2613ab1c1b1f0233b7fbe0a05e889a0c04f788580f6fd51e4616e4668f4e1584b9f4dcae6c97a1e8466ff88778c963f72acddf53cb4552c7f88de14

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    327c4e3ac95ef53ef40fd0040b674395

    SHA1

    26af5b156d40ebe2ffead92de97a9955b3fa09fd

    SHA256

    e41f9068a9db462f5fa3b0e708e9115192a2445da8c4ac06bad527f735cb8a15

    SHA512

    484f59cf3c4b298bbee35b8924453604564c5b5d998ddfb1a04dcc13023977afab8a1f3787e325bd393d3ab853037f9f5dbfff7c0adf4cb2bb8548f809824d4e

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    788e632c66911e6c6bc6226ab3b32778

    SHA1

    a18cc8eee40089f48ad22c5aff01cb049e83645d

    SHA256

    6b519b9be65b09a11d5e20be879bf9ed29e5c8cadb8ab3b116245f9d898c4a3a

    SHA512

    3979bd7a7ee4332d1db9e82aa4e0278cdac66c72c1e9f730defcd07c538b7a5951fb470ae4e5995ae2faf440e31246e9f3ab5bf72e9c67084c9402fe87f4283f

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    86525a14e40233c2f9e061d9d7a53158

    SHA1

    ca71021412f7589c4b7f9a81985be7ef90a1ad17

    SHA256

    8bc1565161cf65b0d4c534ccc6f02f28fcbb534fd74c67433677aead161c6d58

    SHA512

    8df2fb3a3169febc681b13beb3c9042b0c272b50512c43261af368fff1ebf69ae7daed82e9639cff66bda5d3e7ae3fde33a52ac70b6f8263490b91cf65d93a67

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    12d0326a37e11728715cd446e70843eb

    SHA1

    6acf7f58a739773fa232f3468a59194fba22b6f8

    SHA256

    d37a6bb009d9090bd54f75ecc3b95e16ae021185830e56ad1426848cae115980

    SHA512

    85e10d5ca2636ddf1ad9c584a4bd9ba900a334ccd476d509ef99c95efc05e0796b57c438c91364c5515a4717a6501002bc54e9617e06392dd254c804f23635c8

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    b4f4d91c9072c65ff773cb75a0217736

    SHA1

    69b5190489e668ce132e15216e220d6bc390fc72

    SHA256

    2af519f6f8e93916f972203d546baf21b50d5470d39f3e9d09c819b997cdb716

    SHA512

    c4a2ba28456ad873cb83308f1e7f0d727208d18a15a6383ec636f24dc68a25fcd549cc93cd59d096ea8d4b3a7eff1b1b22c9c89f76e50b70274b8d3649e5aa88

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    e779888882768d6f3b598834c1371561

    SHA1

    320b2c512447696c17a8962a848033c4ba3b8cf2

    SHA256

    bc1615078069cb4e4c50d5979e24980af017430b6b38ca252fe61c9eedab4ff6

    SHA512

    729aa8b4fbebfd553d67748b6fbae6909b2c76056b8d2b116d3cda887665fc57d788a421aea8e02d700aa50c3f804d299d8fe0e47f0cc988128205480dd9a8a4

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    09c0f2a66bbb36b574f2a2bad909825f

    SHA1

    f989401279a4d68f8973071733baa436f5d9cf3f

    SHA256

    3f2b87b0cae90321e9000f62c5fa68d806174796c902b0bf0faedf2c93890a3f

    SHA512

    8b36e4d73677e757f602251346286fc2afff020de45cd4bbe2087b12c6397ebe1dd52690db6bfac6627271a3c3a98d836cbc4bc3075941772bd378294c51a1c8

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    b4850d11c1f29f8945abf3fd9e621a04

    SHA1

    f2624a4160d1bb0834c55d7ed5753e31cd4385fd

    SHA256

    6516adc5c1b0aa782bba282955c76215cbb5a766a4bf9f1c7ce27592babf0ff4

    SHA512

    c9e520392843749f3516f68773ef82c9a1484fb647f539e378220ee932a370b1e1f53b644896bcd6dad104ee80bf0e922495229395b59783fadeb4dd755d24f6

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    8e3a3a1176d33e457f56fe8f897ce4bb

    SHA1

    9a733e7e059a749b6d3e22e17aa8b3b378fcad7c

    SHA256

    60af8f60b76f6d9b6cd8cdb6854da003196163590bad83e588fe0ba0ee609b50

    SHA512

    06948a085eb4c15b7e50e207d4853071888a06105074b14653869cfc1cbe2014549d12905d696aab1303b069fd59472cbe1f992db49448aedcfb7cc1b8057b81

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    0f3b476ba3769e6d1780a17870e16011

    SHA1

    95964d0967a24d5ec77d06631a692683eecadf6f

    SHA256

    b8a320943189d435879613e724a27ffeb12f19696e9316618420af6f5e390449

    SHA512

    a5aaddfa5794bf0f93223e240e747212a721005a3d0d657cbe17f2a9c3872c95c8558a2ee04476dab0c43b9ef8cf459dd1537b81fcd092a5a0b763c8d3edf5f7

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    2770798deeddb101cd75fac63d5a2992

    SHA1

    d35a2a3f352bcdbed1665e76eed91b0c5cbf5786

    SHA256

    0b677bccedbe91a1883ff90400b32c32a2217c64b678f4e766b5799d7dae1d3f

    SHA512

    7c09bd94f88b29cf1de03376118283cb632618d5239f2fe2775e0015fc41ac0cb52c8405d262d5fe3b4ee6757e0d23c86381f8d1aeee2d2852131ef7b0cf84a8

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    0f372f46194afa8d0ca784c6425ab423

    SHA1

    5d388cc68e16c8e2c8ce8f4c489f7128d7fc8a49

    SHA256

    b33cee9ec725a378db4af53adc2639ceba71b9fe612a8161c4d6e369126feeed

    SHA512

    4ffec5524deffcc440b834991474612003ae8799537a12f6f973f22788eb4142b58fb3a5acd139be01be4c44d18d28cd342885b0d8c1a67451273995c2bc9b18

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    5aeadbdd10b6169fb137e21e489e5402

    SHA1

    866ccaf28bf4fd77a55e623e82b1e0ec11525ee5

    SHA256

    cd9a5b41fbdd5d0b48af982afb70b0ee2a3811433a3531008a1a8e971575b540

    SHA512

    99860670bb3b0fb856ee5ac6beb5d60cbf81c86caef23457bcf16fc0005a5fc59ae0040e09d54faece8748f1703f9614d0f1b9c53688050dfcdc8eb5e7b66152

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    9b647de39b513a8d05bcfa316b01aece

    SHA1

    a18400d72e6f768db7b2db51841da73231ed3d04

    SHA256

    241ccbcff6d5768d00b1a8b89f0619610389137a47e175f21e16f4a8fd8994b0

    SHA512

    55d74b8d6c295b481026a6f82b3b9aa8ab08dbafa36f5d47527f7aa84a86b88cc5af3999007df98e80dacd21891afb005c4191be3d1a8070178f049e170fb561

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    851bb0ca3f68c7ffe442b2eb36c633cf

    SHA1

    9e2924bf8c7b23d6bfeec41e9018c24026cdf4f7

    SHA256

    a148ec8af8a86322e59da4f17ac08fab420eb215ea7f0c5c97296586293d3812

    SHA512

    51c53b92a7ade09b18a879d5869bf79ffe757c60a3a1cd1b2491939296c53825c270b2a8423f644f975877f492a92f7266dfa03e78ba21f819525a7b58769308

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    cf22b23befb54bc111ecb12e2dd5e539

    SHA1

    de4f4c71f5ca6d3f747aef7a8cf15da17620160d

    SHA256

    866a81812ba166857bfe0a18f8a04a2dfcac748946c0c26716db4dcc05a32685

    SHA512

    c4cf6003789cef4ad6f973603b91b6e9f6a3c37accde6bb277bcd42f85e686844c7884672e07fdee123db2b25724a9178b15a30180bd6d94538a5e5143ad7130

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    4f17b39f43f778b680dbfd64a0ec984c

    SHA1

    11f2b3dc26f6caa966e7ea47dca48c4616ffd2b7

    SHA256

    2238d3a3868d4415e5455f238898a83677acbc8912751dadce5c07e80a92f49c

    SHA512

    c8f355208d5e9e5c8ba5f4db66c0fda57993ee96c44a5aab7dfb7bc1a339b48172a41f5bbf7ce63d91cbe220cd6d33c301357a3b584af864e064078092134f28

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F0ACCF77CDCBFF39F6191887F6D2D357

    Filesize

    242B

    MD5

    261adbe9ea8464a2830e4278317293ad

    SHA1

    a31af681364945c64beb85b2bcb7591ea9e4acc2

    SHA256

    f4098b0041995ea74b0fa7603b2c8ed25027de103a6d0682a85beaa99f2c64e7

    SHA512

    e7fc1739be84fdd7555a116b67be0872e1ba1b73b9b13693e2ad6b37efb635dfe5700778298a5242a0d1eee8d0c69ca675c9cd4ca5b06f59ca41ffe72725282f

  • C:\Users\Admin\AppData\Local\Temp\Cab7513.tmp

    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

  • C:\Users\Admin\AppData\Local\Temp\Tar7525.tmp

    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b