Overview

overview

3

Static

static

1

d43156b1ab...8.html

windows7-x64

3

d43156b1ab...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    142s
  • max time network
    147s
  • platform
    windows7_x64
  • resource
    win7-20240903-en
  • resource tags

    arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
  • submitted
    08/09/2024, 10:54

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    d43156b1abf911b794d8f6d202ef7d89_JaffaCakes118.html

  • Size

    26KB

  • MD5

    d43156b1abf911b794d8f6d202ef7d89

  • SHA1

    d4b9c2639d050daeb9e91d52b9cdcd19b003ccc8

  • SHA256

    e71e5c3ea5425848e654a5e72aba3e89e252958569b520a4f822752045504e93

  • SHA512

    f448b3351bb56f749c9db9e0a9952779ce255b6ea507c58087642e8cdc3ac6a108485c66171687cf6704a41ea90d2cd1269b182b0a91e5b60e84e1144aa0d53a

  • SSDEEP

    192:R13IMto7+uwH3cWb5n0SXCQ7qT2bGTD1nQjLntQ/USnQieN9n7BlnQOkrntmSKJa:Imoc9Q/R7NJaCKnUp

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\d43156b1abf911b794d8f6d202ef7d89_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1976
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1976 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2540

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    5b5133d3704a312a5f9dc3037b10def5

    SHA1

    9e73e8cd8f026d84d458d5783a3fcbe72795781c

    SHA256

    d2774fcdd506a3cb12dc30d81eff235ec452e5b68629042d871142a1bc5ad831

    SHA512

    f181082ce09c571056a0e420346604c4c802cf1c3268db616892e4edde4069a000ee21bd03fde62b4ea7dcb21a443f9fa6ca8a7f3086c8cd70cdfd2b76560e4e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    a8b9eb7ab67835db2255ea0c59de1e45

    SHA1

    593ca058ee91d5c4b474f26b63a82cacc7b72555

    SHA256

    b853780a0ff9cefa413f5b8cd851f5b3c2fd6ed0587a71ea86619d77d57e98b3

    SHA512

    49b1102bd72f48765ad3ce65106ab4c7c8d410f9e371be6e725ff2071e87ac8f497975d8065bf88e7482990f73a0e74df35275d3c24d240b136760a4b5224e1b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    2cea33260f0fb2e05f8baa39fa6a9cbe

    SHA1

    0f561e60d114ba23d6f916648aed0b10eca4c9c7

    SHA256

    67c7c7e13d59a11e8eac880f77cf11d529b4f0a203038f34822f9626ba014019

    SHA512

    1ade426e567a807143fe8e9008df2e91c22dda18d1f3f6cdf092aead9aa6b4084b277977b02f9bbe955a84932bf90d72a641225a0e61efadd32b20bdf820c9ed

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    70f49a83e36e42868f2338cf93a37dda

    SHA1

    a42d691315b953e242fa874e0a2b8367ee8fc472

    SHA256

    1c52425fdf58a4911dd4665d9d0e92dad931bced1bfea1a2efd552c1b9bf611a

    SHA512

    9c7317e9cf30d22516d0894b399f4fe3274bb4576ce93d216652b2bba4bd5981f9a840c54bb33fa744e96f7851437edd1f07f08bf4baf6cb268e7ab731766da0

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    d922b1fa56d5cea063af1b6b1ef02d28

    SHA1

    9659609c7b7cd3b927f8db781fb2416757339d32

    SHA256

    22c3b53b9e13f19f368e9d7512df082663d467f11625b7a51cb5205f02e8f552

    SHA512

    f3c2939cd6fc4da97f8d9439e34096cb49a0fa9271f49436c79552f70804068004e8009ff832b6330aecbd4268b50cc06eb9fe015d724ed3abf85be68c5f8911

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    43865b5ae3472c7ea1c98db0c80f1813

    SHA1

    75867cfdadb438e3eac41d94c3e0a2d6e683c99b

    SHA256

    067438ec294b9213939db8e998b8817425327c3892f80dde18c9decd275aa1b4

    SHA512

    7a224790314491e6d2a42c049c5fbe5985ba32a715e582d2a2e1d9bb2e1e7f2056e5f0f2eadf8b37d8913ce06688d775a44f762928479f2565c3173972cda8f1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    9d383fdfa614d880f3c77f173714e069

    SHA1

    cb5ba6419dffd683148cbbb9d56521841653d2a5

    SHA256

    ab6ef6fb8febd4c9b298bf0eed54f86dc55e863b7756778d10ea9c47d7d0232e

    SHA512

    040c9c370c85ec710b295bef304399e6823c1afc077b4c18613b5598265a3137e5d84f79e0663808b5818f8cebe3619f652e28abef77970e88929b730819d631

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    d7832bcba914067c61ed31aca8f214b0

    SHA1

    905cbe2ace066801737249833178bea69bacef53

    SHA256

    feb7a11b658b2e2b99341f644bf42f8b1f19d9876c744fcaf345b332e19e906d

    SHA512

    a9bf3ec69d54198dddd4238b5ff21933e1ec4d3543c21135b4319b28951656d703622f7f9e79d82fbaf48585d48624bc4fbad08f686de92e187b3547a7fd88ee

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    c72f5c8986e304238b52b65b7344b1b2

    SHA1

    d034f476e534dbe6439b9897995d068867e4a706

    SHA256

    736bd6f789d8d7503a94047461e52f8e95fcae6caa9d230cb7c6157bb0eec9ec

    SHA512

    0d5e46822fff4526246468a1e98ef0f8704c449b85ed441e113ada72b251b4687ff5e84457bec44c7ab614b0726e96d11fc8279c583f3f26306af62e3078f604

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    b0f3f29ebed1f1bbc9811cd8710a42f6

    SHA1

    2ddef42b00f50e964eb14dddc9825acec460baa6

    SHA256

    626e946d658587b2dfe50d6fffee00ca8e57f4f0fb51a51b857126cefdf2719e

    SHA512

    3364df4775a2b3f8c92911ad2026c4c9cb7182e9690d6ae82b492a32d15ab5d5a37df87b96030532a523bf2353518d162c391cbafdcaeb7d0baf29e63698db12

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    4de337650a47daf86ea23f26a714a5c5

    SHA1

    857f6fadc52e8fe8b109c84cb657eacb88c69dca

    SHA256

    96bc744a4e555a73bbcdc7089190837f0498ba996d97a2c51a5ef59e99ed100c

    SHA512

    c48e12d116a39ee042d56d68bc2611627c20f8a210517a9629f19cb38bf19dd3f99dc95a9c57187cf25eb20c822beee465bc2cd49861f8df0aa0ed130a15fe20

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    c032815eb2d798c68a5051b6c4e4ad38

    SHA1

    730a70ae79a1ee4e2877eab91b3dc9ef002d34ab

    SHA256

    5599b930eebc1feefb929558bae402fe357dfc7297430306a2e860f643405930

    SHA512

    f9a29939eea44d2f98da4b9fc1da7217517ac45dfa7ab5c3321ae08128cb5989bc83109481ddc629e1d5b29a9e1745b27e3a52912f8e5c45f11a2cb8c1bc046d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    8893ce59bb7a1b043bd8dae95790feae

    SHA1

    3b3b7392b5ed20b37447a799102c95b7cde67c4d

    SHA256

    33416f1413ed875472d281c5ed05107a39413df20f8019c8998e99538a685a9d

    SHA512

    99f9f016d22d9ad7f8f278c6df476e638309d21471136bb101acc87c7ee5de74156d7f8e206a58cd82a4e9f48d8c90cd446326215ae4d0ecd3bd6fa0471ea397

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    40b4e8274e70b8e059832e8f4a0e1519

    SHA1

    3f9fe5a2f56dd1102921107fc48d166b1b73256c

    SHA256

    d2cdece08a647ee5a96b762acee51d71256c9db9af508f066b8ea509fd2f59a3

    SHA512

    4489b70a750a3f0494a2463edba36fd17a05a6eed196cb72ea37c80e3f71d1a78905cab6e792f1418b6c8d69e06ef6a9c8a08d570035bf828f1731edc0a3ba26

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    dea7a2ce7e81f1db61b62e3a9bef1eac

    SHA1

    cc18e1816f09fb83b7323a8f48f23f776b7b65bf

    SHA256

    e5461902356090a12ea520757e3feb966893ee96ffef921d2d96e3a54869e46b

    SHA512

    d0165fd75c8ef9b576c968209a0040b22588f892060c6813f3d3351706ea5527a6724bf0aef02f45d081b1a0557a589722db7eb7678ea29a52b4fbac8d3cc459

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    311fd5468c667e35522ed104dab564a0

    SHA1

    dcbb6f4e28974cf1ac52678d764f021fa762315d

    SHA256

    23f97de6927b488b0e459adb93f450dba4df99b57d154b72a84f4f6dc1ddde9d

    SHA512

    d455574ad4f9203ab578d93e619d4c28a8abd4f4833943c8071486d2452c931b2627161406917ee9190b3fbb6c363b0619330ab0b5d0566a474d01cd9e47eb69

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    99ddfde4c11f0ef087eda8534e796b33

    SHA1

    ece125828467f27be61f862ed262e164539465e8

    SHA256

    b002233b232ba739951432fbfab47875280b0df3b44bd6d846489ba8b4bc8d82

    SHA512

    0f4e3c4e4cb436ac5b768b26beba9906d73b9d9b06f8f42f86462a1cd8bc44e0728509b8ab0be76d7449a859d5ad4adaedb4a84c908c56c025db9aa2a9f44ce4

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    70830e6862bfb3e95ea2ec07b21ba1d8

    SHA1

    d0f9404f4120cc450182221afe751935affb2d9c

    SHA256

    eb4fadc73b4ff9b9eb311b05022b0036e686a3120effe9ca5c06bb2133e5a284

    SHA512

    e7a4dabdde4a5104181fe3fc5782cd54a36e2ada57c5e2c17bf98ec6e45129a99043328a8efdbe6c943f5336e5c63c762b1e754d5e00974ed91b687cb84c976b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    a0c66a1b7933d01ecc30f954df99e345

    SHA1

    c7ce8d7606038c72016fc51321e3a09e5d7c5c9b

    SHA256

    c262cdfc8bc4d1382d6688dd8f667695a8ce0ec94568c6cbb3bb709b4bf30d5c

    SHA512

    2a5d98fd3195d0e3617e6e9103e705a733b426af441c0eca165266252fe8669e2c320c7b693f5ddb9a194c0790d6a29c1c8dd7cade1f58a3d12a2a2a5701691c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    c5282bda0f5eee05b1e9ad3cd0d75b07

    SHA1

    96198f2e972bb490ed7b69d78829b09ce52c4061

    SHA256

    3e86a48926020b29284baf2cb65bb8a095ba1126c51df3be2ba64660e5d71754

    SHA512

    590edc2a442f73a3094ea2ec759912024ec4b07651c98da2f4b009b48b4e4d89aeb784d8b100102e15a1e6289c208ff4d8cee323c6598f0a7d13d5cd5543320b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    a42596900b55fa1816f5abe196c84dd8

    SHA1

    348c4b9d1c4e23b9119769d74251e4dd9064cbf6

    SHA256

    a2d4f2c0ce1f72063ffa7ab15bdc8a654746eb8a225b4d966b2d81c9095c70cd

    SHA512

    ad1842399f7ff54c365cb8cfffcdc075ddce72eeba8023cba70efa09e3c1c48a5b83dff0dae92edab1645b45f13b16ee4cb9aa91c15ce1548e23276a8e121103

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabAFD1.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarB090.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit