Overview

overview

3

Static

static

1

d572c3546d...8.html

windows7-x64

3

d572c3546d...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    142s
  • max time network
    142s
  • platform
    windows7_x64
  • resource
    win7-20240903-en
  • resource tags

    arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
  • submitted
    09/09/2024, 01:31

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    d572c3546d75bfdb0f7637537433467f_JaffaCakes118.html

  • Size

    29KB

  • MD5

    d572c3546d75bfdb0f7637537433467f

  • SHA1

    8be2b9aad72597ee6aab1994be1aa16fa8abaa8a

  • SHA256

    04864b00a6364c8c540afa9f11379ef8a35afd010175248745166ab5f84a43f6

  • SHA512

    b0744c5ce18053d5b49dff738cd5a3838bc75c7dc8306494ec44231a4318dd08ce247eefe28a14a45dbddf14d4587b9d84e74ad929c1754b64ff1ab19b5cd3b3

  • SSDEEP

    768:Kj85MrOOLrf6foOQOxeetzMl/+zGB+LHVFLF0Fu2r3hcDO4pW:Kj85MrOOLyQeSlW6BuV9GJr3hcDnE

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\d572c3546d75bfdb0f7637537433467f_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2332
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2332 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2552

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    be45887f9b55b1ebfe88f1f78be4033d

    SHA1

    7cd421c7ad6652845a9826638470e45ee4fde20c

    SHA256

    fb7f14674c0f50aa34c4736c9de2a30ed0f52609ea152e9569907f0db08f7fa9

    SHA512

    f7d305fbf81ae785cfb8fe442751926617a8199c300e366dfa9d13bb9d8ea75497b4c7156db3028838df2e587b2e50915b45b746ae5fee3a64086761339dcb09

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    df1f70e4ac729bd6614a47a9f369db66

    SHA1

    42e8347f4aaf7ef689c0a7151d42bda3212e0e08

    SHA256

    c1e092101d1481f9bd4f930c2d07944b07fba954b13b64b668cb1758263447a5

    SHA512

    9a864f1d4775d6dc951e5b5a67c1a97a34641c05f2d1bfe5ba2439185d04f7b063273a4d96583d0f6b35af9d126cf344987a5692cebf04f673d317a653bdba90

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    77a815436b0fb4a87a1afbe973c5d951

    SHA1

    c2bbf7ed115e9e109e333bfef3bac42e462e8f24

    SHA256

    77be588569074b216b19f3e48dd37dcfd0a29489b052bcce4ed236c35ad7d727

    SHA512

    08fd51767b00d0d5a36d1f6c1055ed74e4f6675f46e92259cfaaea40d6528053e83199394338f97c2589966970b4576f22ca58b7545fe6ea12c745e3912871ac

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    f3d31768040f897f48ae8fc5f033a686

    SHA1

    fcf0cd7d773d77c68b08c840a28dc53949796471

    SHA256

    ac777a672c7dcb8cdf5fc1e946caced32c2143a67c17ecd7d8c74237f01820e1

    SHA512

    0c66ba2a8211e4289828f4c630293b23008f8229459729c652baf3948a5e4ecad1b80ba2adee4e859ac86b64a39bb4bc4988ac07595f3481b45b32291346e2a9

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    80d13e2f37274ccb7c0e81d5a51ef9b7

    SHA1

    a7dab1ea30a83ecfb3fae85834abb30665e6ef0c

    SHA256

    d2f7f90db723d1990ecdcb7be769153ce9793c939d392c5412609da5561defbc

    SHA512

    6ef2477fe6582df668f779370833dae8a7f2fb42aad0fa29d18c63d7f7ad1bb8a83985c0c6b2d5c2ad7abd57f82c9c6bb388155094934778269281c5cd0fbbb3

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    9f1cb58bda8ced1de8ea5e5862cbfaef

    SHA1

    43d28581c03a3d82975b7c7b347d6483d47cc295

    SHA256

    decde3ebee9319ff53fffc4bc888d8417a539875beb582313268fa6ecd04b39d

    SHA512

    39dd027f7ab7adb4ddba1a7aa44642f715d3fe75a847aa1d9a80dadf40ad307c259b63c54496ad24413581eee6c67666b722075b9f8731b510348781e596d5c9

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    f8db7a1021e273b20f4308ba048852b0

    SHA1

    4b710a0e6c9b5a4b213a2fc229c41721e903f9fd

    SHA256

    cfb0b6ed0805b4a6fc8e85bafa6973d79041ec9deeaf1cf603694e90825c1103

    SHA512

    a3bf25be160c2096137eccf7187e5882f9fa623ca9c3fa85142160e189511179afd70ef2716f6dad001b331ed393cb8cf53daf1510a8d2d314d2a9ef9b881041

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    5d3707418696421d33f2bd593fd76d15

    SHA1

    8443f4a0b5b5f684b47c5d3bda690724751ef30f

    SHA256

    e6c0eeb75ed7949ada140f06e3d7dc0b6c1cea453591cd9e57a5f94ac5c340eb

    SHA512

    40b894e1e494f93a85f33ce499181b567e7cf8a63e0663d6029ead16f83dd06fb5e30e1f7a66b0c413ecbf08ebf304acb1929049e0bd1e635e138a8f28fbe169

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    00fc117f461e68cd5b42a7e98ec2dc00

    SHA1

    f0672d6b5599cb5547fc8de827503b6024abea5a

    SHA256

    b4e4b8f0c8e982356fab01937d1044a82894fbb11d8b1d18ce4ec7bb3e56128b

    SHA512

    faad753a4824687162684a74f9857f66429a49f647a2c728875d698eb422490ea925273b3c53247d4049ac3f6a8e831576e1eb15fec7741124d429c93da790af

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    b46a706720c57489dd8e4f410c9dfbfd

    SHA1

    8d1833d5b22a289652d0423ce7e3345e92c83aeb

    SHA256

    879b79c2b6bc32bca4c702bc8ef6451047f703501c0e286d60ceff1e1e1a84e8

    SHA512

    8cdf7afdd0d17adb325c5769c83769c5752eeeea3a41d22ef1800339f0513ed0a553226775d1a1beeada5f28b13f0657866e7d9696cafcc8249bdeaf18c4612e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    58c4178f3f4eedb52b110260e68346c7

    SHA1

    b9299cf9c855ca1bd02d901c3210804cac8724d2

    SHA256

    80ae86838a8332b470d4c2e8a4068e0df1ab33ec048ae3a5ef3721b4c0f7f669

    SHA512

    d040452b2d07fb88ec89d6beacff748332d9a7c7dd847e0f89f8aaec875c7c01d9e2a09199573e8b23bfa9097475606b258bbcd330201ed16976d435632258e9

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    af91344dbb5e0d29022f65a4b736ac4b

    SHA1

    7c4feb95a8b04134c5abdf081ac1f30dca8bb491

    SHA256

    1f89402cc9612a36008d34c433fb00c8509d5b11bbebd4d70c76492adc5af9f4

    SHA512

    df07ad05eef8fcc31a43590db26707f35e03cebc7ded7ba99e0b1a1409c1ca1ca65b4720993a1bfcdb88cd2207f5075f69312c2c2d87c377efcd8412ee8f30b9

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    ca6c98aa8720db671bde92f6e088c252

    SHA1

    8869b6abbb989a0f791411a9c82429dfba69a2bb

    SHA256

    d89e08f8129b9b247b9ca32d407891887da67e8efa3fd7974a04c13cbf0fddf9

    SHA512

    f0916dc8029649a10d630458b09bc259bb62f9842ba0e10718cabc9ddc2ebdda90421eabcf4d7130a295baf67b05099dae682aa3b448d776d555d68408173551

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    364ae6436ec3f52f6936934e5abe4fde

    SHA1

    1508e049ce35299f5af38a7ce6491059585d18d8

    SHA256

    2d7bf5a95f11373246661b8360f3d0e8ab26c2480b7ecf04cfa33b70f680c1ee

    SHA512

    e8fe3f9716b2aa8a4781856978825347657f3fcf5b670ccffaf36c1d16d675753578b12cc7db2ae2d82795247a7b5955580fba006b88f56a8802b1777ec7d0ca

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    4c4d46b48e37f8c3152dacc555a30cdd

    SHA1

    5ff176fd717ec1e2a1f673a019b95d7d693f5efc

    SHA256

    712944a26b4e6d6d73eea935a06c6f1667399ecb8bcfe3ed83e56108ddeb4e92

    SHA512

    8e4672ce7d0997838f3977635f339e35e8c41f267949724a30870d7a52dbc767fe34a09a0d311d6f3f297d2f502daaf089e65f07df82b557c86f30991842183b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    f124cae2df94c2c872cbf1f4a330a094

    SHA1

    c0e4549968fc477c737d7a2ffa404a856415c0f0

    SHA256

    358d38df22aea2ac1b2a6ba2434e9b23ea168410638b072e00a53a0b7316062e

    SHA512

    c6ff7c2134eb7fa2741c53152df88c0ce822f59dc94a32ec32b6466326810639a5eac7d5552799ec392d7a516bfd1775dad1dd2ab35c742d35acf4b517ce9265

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    31dbbb1bb5f542da36de50a6e02e25d7

    SHA1

    0e60e9bdcdd475a6ee0ea617700750eeeb32160c

    SHA256

    7162b6417fefb18dd8cd71d45682100af4b2899eee7daa172ff7309138cf17da

    SHA512

    9a55051200467ed8bdac08e542c1870a67cf3b540d40a5573819b660d07810ae48c5e9244c2c137ef6a8c5c1f9ce96747fb1e899c4930ad159056285708cd03a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    53eb60d32e5768a9a737f87a94779c6f

    SHA1

    e905aac8d54e3289023a52978b87201fcd2c74b6

    SHA256

    e2291df143f9f35a34c776345679fc570a1306b5d94fb5e62dade0599057af45

    SHA512

    57c51add30a0e64c145c26d84b990e9c187e8f5f61fa6ca3b1d6461ec17a7b6273b6ae731e567bc463c11599e32f11d74c18764767c979ee740710f3b5b71474

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    66452a2d92fc48de15d78aa0c8029f93

    SHA1

    f8385dbb077eac7febf5e9e7d7aa109a7c0b005b

    SHA256

    aa8747a030e09249a1124964656f060f92e343cea670faa8754dfc6c9a57719e

    SHA512

    0810a79c83e06b96e66e3aed67059c192d24d3f3a789b392c657dc9c0dbc86a1c23e799955c5474ecd0f25d12872cdede41f9d98651b3304a7b0d502199f47cd

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\WCATT3E5\css[1].css
    Filesize

    178B

    MD5

    35a74bee9895f4c7e11488c261cc1477

    SHA1

    5e885ffad09bcc7e1f5909dfe2362e4cd6ec0ddd

    SHA256

    8bafd12f9f54f292c83b40f7cbff5e4e06f61814e53b401fbf05f719da55b88b

    SHA512

    5afa489d144817b788f2b3530cbc0547c41befcbb293130cc41bacd72c021aaa8df44b91951c3d1562bf64fa4edada79b6c7d35d5f7598a3b9790596817e9c9f

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\WCATT3E5\pop[1].js
    Filesize

    124KB

    MD5

    4e52b7473fb5439a4a6ae8b48d7e1c38

    SHA1

    f27853125646cd926bbfd9504e72aa98fdfdfdeb

    SHA256

    36b44b4585f42fd4af7d626e6549bb0439ad8ce858803e1ff513c432a1580480

    SHA512

    02163152a5fa978f2df90523acbde440e3f72dfdf446bc30e08a680a9f14405ff28365e20e48ae4dddc0442bc236f67f74b37941e5ce00038d521aebb95081c0

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\WUBCGJ0A\page_templates[1].js
    Filesize

    1KB

    MD5

    38930dfc21540c3a8ac8af5e8f44bb89

    SHA1

    1030fc1704d7ef849db7efe3140bd77309c09059

    SHA256

    18b098f659ecd7962db64b4f3869dc90397b7af9586db5b69e9978e381b0c94f

    SHA512

    3d90972c6d8742c0a4b79895c8c29a875a0cbf3440241235728e58d5106c1a4599b8ac134b6473f5c297c32036901fe5e7e0d0274e806e912bdf51a58104de00

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\ZOGPI1N2\xtgem_template[1].css
    Filesize

    18KB

    MD5

    9a3d9b8858833b78f17ef61277ac0f40

    SHA1

    bcc3e793a42f34da4d5e0e1ba127d765607d5227

    SHA256

    1a2a690c12879443a8e6f54c0576d8457c119a4ea2758278557fc5f9a9411cc0

    SHA512

    f16a09176d4b1a2ea1abc95bad34d475eb6abe37e570dce64f7503f72b6f9ca87e517ca8809c2f40fc736ab9fdd0f32183a21724b8c0ae093e749ec248007427

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab2109.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar210B.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit