Overview

overview

3

Static

static

1

d4956d2743...8.html

windows7-x64

3

d4956d2743...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    148s
  • max time network
    150s
  • platform
    windows7_x64
  • resource
    win7-20240903-en
  • resource tags

    arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
  • submitted
    08-09-2024 14:38

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    d4956d2743fe5918bc283db31e959e74_JaffaCakes118.html

  • Size

    12KB

  • MD5

    d4956d2743fe5918bc283db31e959e74

  • SHA1

    d8b3026456539637b2054ae5d6897c55605601fd

  • SHA256

    97315c029dcadc75525d02f194cab9b7804a3c80dbf2135bcb134433358e128b

  • SHA512

    678ac3942be6591ae9488c3491221ffd2949ce3e26da7ba991f205d1b3f0ba44a1b9b24b8ee667915e617f404c1ac8d095e3594750b051ed41e2d3b879461283

  • SSDEEP

    384:sFlIcFVdjxfx0/gcFBGZ2naP9G908LOXguLZ:dg/87ExLZ

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 26 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\d4956d2743fe5918bc283db31e959e74_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1852
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1852 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2968

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    a4d1c3047fa24c017b7a5617833bc6c3

    SHA1

    652d7ac267b8e678076d66a51789ecddfd914533

    SHA256

    d1782d1c8364f608d28d25ed0344e638374c7a21708bd7101dd5b4093adeb803

    SHA512

    cc1583667a17fb5a20929d3d9556fbc6840a3ffc39c270ef5121065706ef4e92a4dc2db1fb873c7d2bfe024b287c48fe7475011c9d37d6ebe1a200fb24a3e050

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    1bcbdf68a54ac8889923235cc8bc4d82

    SHA1

    b9541bd7615b509f7ee0159da54a495f433176d6

    SHA256

    f3ca65f64ce40b318c4b56a0ce61b211c1a8efc54c89523a7120c972e86fcbd3

    SHA512

    5275b71ee3a9da3b9d2f7e4b5f046aee780ebd4a64d61baad264a390d5b9cd79d6ab80b680818ca03b4a41c628e4ac726e1941eed64c52ca2630836d34f6f82b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    8baded3b399d1ad636d3fc8e9e368e98

    SHA1

    090c7d9c22795b2b6433c967d25d3da8cbc693f2

    SHA256

    3018c44e0327c472d8beb811bdb712aeb19e13be5796145479c3b9cd38685ebb

    SHA512

    c2deaa4476ab7d2f12bb92e82e7cbd127eac36c74fe3f259379f0a0d6c30d243a34f03414bc696ab55cb1df339eff24bafc1d7473b80af7c4d6b43c5ef08f59a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    c7bb857c27a63986b28c84c114a29cb7

    SHA1

    db04547743344eba03ebab7df87088676606b8cb

    SHA256

    90dcb466d5d213838e138aa3a06b0d063dd0ede37cdf0dd2a6d64d78e7102d68

    SHA512

    954323ddbe602f20aaa852350d1cb729323d72e61711817cb969ca8e1ee46a8db93ed820840181fa6042aa18cc91963b3c12cc11551674f9eac220d0c1cc6c23

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    3f42bcb433a379726357216c431eb5c9

    SHA1

    7c7781e72e9396c0758fd5c4bef63f5d8f9e9885

    SHA256

    a0750097dbdb5b50b2feb763aa62e851f585c32ba8c99d9b7ee5061d0d6c55cc

    SHA512

    933d4a47e482d6b3f1f16f1e96f5d7066bf6bd82f5792d27127998f6510566c093956d983ed153fa08358e6ceed3d64b5b7a935c1b5203e62ecdc8d769f542d9

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    27aee769e4a65499a2e96ad54d82124e

    SHA1

    126715458d733c70d2b09559af33544a3e2b12a4

    SHA256

    64c2707fdcb15db101093cbceb0860843e39fba84b0bc022c6c795afb89054b6

    SHA512

    7ece327ad8039fb0eb994f1cd9e8f9cfbb96125bd8fa582256988849c8e8fd3d1222255df4425ea8cfd4698a748b6f03963dcf7efaf313ae7e2f872c9e4a261c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    4d4d25da3d1607069174f8e4343ef5b0

    SHA1

    dcca853f383446dee8304ea73b6696ac3f9ca1ef

    SHA256

    49c43c1d50f534c9c634512d12e22c4429f720916d44988349e58af0dbde2f12

    SHA512

    8ba72cb3d15bd64a886a40d14b0f4157ec14270d2cd4e1006bc777fe9ce2115b32068ac4d9be9f03365b72e9d4fc4f5b8d8e4498f07d8153f5c2b914403f5901

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    b9220eb45dee0363b8a190db46fcaf22

    SHA1

    a9505b7410983e8df01b6df976ff748f449b5de9

    SHA256

    c66d4c566177203e6b8fac69f68508982831f5a56afeede7be0db27c0d112f62

    SHA512

    3fb8fbef75e013dca1c81d4971ce0a92b1d07def75096101623dc1f50e2efbc26930dd44b4770ecd253c51b6e7d8177103da2394a3fd580c9671507b3a09eb75

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    3a8d95cac0227e4de30c1f0cd568234d

    SHA1

    00d48322e7e3c744ce21c1b19f7bd8c86009f74a

    SHA256

    84ceed88f72b70c4b6e6c08ec6fc9ec48de54a282ec1ab9c0345ff2e343b4533

    SHA512

    e677237773f35af2eb455e214ef89a44c83d61e6935377e9fd825ab8c55824595d29479cc9728dca16c8f7550a59bdb9f0107edb0dbc509efee5ae7efd11e23e

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab59C5.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar5A84.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit