Overview

overview

3

Static

static

1

d622e5fe11...8.html

windows7-x64

3

d622e5fe11...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    122s
  • max time network
    135s
  • platform
    windows7_x64
  • resource
    win7-20240903-en
  • resource tags

    arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
  • submitted
    09/09/2024, 10:33

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    d622e5fe110964efc8a4a692e34dd514_JaffaCakes118.html

  • Size

    65KB

  • MD5

    d622e5fe110964efc8a4a692e34dd514

  • SHA1

    d9c463e6643fc85fe0aa3a0221d7b05ea07f0958

  • SHA256

    604b3ee96986676a0a8656013708ef8d16dc76184ae47154f1c5361833ef347d

  • SHA512

    1f59af2354cd6ad1f0f737fc0575c2f132d2fd29eeba8511a51d7a196d04ef361d8ed97ec3eee5fcecaf5a9ea48292fa842b3185959328cf6425fc5e7ce783bd

  • SSDEEP

    768:JihgcM8St8tN99OIsG0yYoTymhCZkoTnMdtbBnfBgN8/oyo8QFVG8sG/IjkK5nnb:JBCfTNgec0tbrgae+NnzAC

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 44 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\d622e5fe110964efc8a4a692e34dd514_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:468
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:468 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2708

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    054dee800bbff34c88aacf7ff0386765

    SHA1

    a929afbec2e6ad3ae3f02fa4706ce97b952749d0

    SHA256

    03a533533be828be8df62d531a4819223bd84081cfbdb6bd113dd1f0fe643e2b

    SHA512

    3b507ebb15de3fa3333033ab07bf99444e9ae5945d8d8f0eafbf2216863ba0722bd200f818fce7e88c8d94bec8b83750a63bf6dfd1315156df0e383fbe39cb52

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    d9f3584982264d9be19f5591b365d46f

    SHA1

    d6781803984c5501f0ebab188b20c1a505e4643d

    SHA256

    33263d2fb5c7958dacd5674a4d5e449f8864020bcd0698656332497e72984e89

    SHA512

    f3d431886d70cbf21274de8e84e4c3fbe74ada66fb9fecaedab734f0a8308231dd984442c1814642281aab58021a0f873a16580d70624b2784a1b1fe8f6fc3fe

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    df452498197877bd9272588f00fa065d

    SHA1

    ded9cba6f0605bbcd38b9e454a37e91fc268f577

    SHA256

    006e8c312c10eba528c25badbd4f7615e7fd97834633c1b1fa69ea074549afd4

    SHA512

    9c51887f595c19fb7f1d6f7cf76f2104a1e41f3d2356ba6337a84f8c00f58ebc1840ef4d5af360e772b4dcafdb820325cff592d2288a17aaf5216e32f6832cf8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    3d4f4e2b5306b1d989016be3a046df3c

    SHA1

    b2bd1c101e38699bdc2f2b693f6a70ac043386da

    SHA256

    9fc060e502404f59d04e9475b492b27f697372f3057ed44a1d70f629bd2081de

    SHA512

    7e6453f673d94d55e5e996f4a61e2d4c7bd032b5c6881a490b09f1a9ae9e3ebce79bb9e3d0a96fdced58f9d821b55d6d0c044d520a59e829301f8f5f36aabb4b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    fe0e1d2863a7a553f0aad31c0fa0346b

    SHA1

    12eb472a2e612923468c361650ca43d6f6dd9a6f

    SHA256

    a9dc2c79ad577a7d256ffdeddb9364580e27d07bdad50f445518b13dc93c841b

    SHA512

    e4cb85ac8491dd815541d3ce78e4635323064598dd0f4afeb1da9903e5c20c070485b42393a9d332abab0e508b1232efe2b6478cb768d261e4b0106f259ba067

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    b716675a7ca2ec1e915403891359cffc

    SHA1

    80b0324942f7c881edb2dd88ebd50c0b02b8558a

    SHA256

    f4e4dc1ea51a6a1b64ad76e04097f99828155853d729e5194641a15dc53054c2

    SHA512

    31afdac45862b617c4b4edc8a72f5518e0d7a748a34670d9ea93d41c02a71120c69d65269ec50e34865b973d2940d3bea1e465c252f6e81c19b8cfcd467cdfe0

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    ff6cdefb9334cbc37a59472ab3550826

    SHA1

    75f4a3d6c0d1f40c5a3c4f19172cee3e28ca0669

    SHA256

    195d4c54b435f92190c5875b860af9edaff49a3a63ad76e144963b0e5e35b712

    SHA512

    f5401b209798a883ee7e4d91b0a659131a23ec7f75db549a3962125f572665b5692661c78db0116b9f9fdff24bc3fdbc502d30c87a7ca9b7ea4f3672ca0006e0

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    5750e08b1bb2fc4bf54d335475eb223d

    SHA1

    9606bf3bf31b618cf03792f5dfe005ced6fe610f

    SHA256

    42f8da7202e15f4d659deab8e4bf541cded090d1d0c0b23f0b8ae191d16a2ce1

    SHA512

    3e28c0af47d08e36bbc815bd4dd7defe6b86a0db811cf70104d0fe18105f1fc453d6458e9e535b21750581cf7492abb138686bcfe65843f56a3a631894af6119

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    58c049d9c6c647f01cf4ab7cc7922f62

    SHA1

    5e04e869be209f9a851d47d584e581cc22873051

    SHA256

    a72f075dc25c6b91295d59a4051786b8f4c54c0faa1c86841402abb3ee4117ed

    SHA512

    0bda0612b2314dd6bd3d20793576f04ac527334b9682d63901d48409bb22079ad0abd06f07ac5d4f4abf3a0d4825d0af151cc877278f3fe0194f2bf29940f572

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    bba6118ce525b466d217113c0fef0dc7

    SHA1

    7f27510f307a4c452c72c090c3a05d1c6a5d6245

    SHA256

    b8cb0d6ef4f3eef8b7d23ce7d360d8680ed251123e300203656293aefc1e5a6e

    SHA512

    c0cf229c437902d6475227d53513413aebd5959c9594bab4022d7054af92df7e49c23e2f7d9ec39f2654349920f9271170f0dc36df6bfe2449e9f392a53e0645

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    669f80d5a55955a3124e3ec75b5ab2b5

    SHA1

    1a7718cd628217a6927de55757cb6e77c5ccb349

    SHA256

    34aa2ee4755d535af623ac8c5caef5ededa66dcc2bf50af30693925ea3a4d1f6

    SHA512

    da4e13b905ff9185a7fd6b5c3d8b96ed3873534c7a3267129b6ab9eb8873f0870e8d61ad347160cf2c7562a337e108c49c0fa2fa5866c35f69905ff8d40a4328

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    cdeab5c78f761b9e4ea31462ea7f7e28

    SHA1

    7ccd20aaebfd1d8aa6e6e2b0332427a869fc0f4f

    SHA256

    5498c2827160b673a0496a8e9805cb3eeb686c1ff5a0a3fe34da37467c27111a

    SHA512

    e9afac2d2449f61a5446c53bd2ef80a46c7de008858e38a32ad2f9bebee2aa30ec5dad1fe47f2c72da3e64f4670357b4bd80657b7d0eb16af65246dade293dc4

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    ffb541bebebdb7bd046a5ed51bdf288d

    SHA1

    6512bfee5085ecca933ec362355e21e02c89a860

    SHA256

    12c0782a08e54314eb2d68a35ed6afa5ed742b6bd331d2f5a17f346a56db7a2b

    SHA512

    46c78b74536f61fb7eb1463536b163a3fcad5884e7355a80cfdb9ab138565a1abf9e51a62a35be1d158b2eee4bd0eb4de8b5c417c132ba1caea934ce4724ad22

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    a97e211404c73f4400a4e90ee2b180c8

    SHA1

    650ab1011d4c02ba9132e8a496c165214508361c

    SHA256

    43d43d409365015bea783802422c7120928d1fd76910f8b94cab2910c0d2c83c

    SHA512

    0a94e4184c48d618de3e38fc144137cd2a90624309b5de6324215053e8ce27b29f3b591d9ed11907016dd61d06edd211780fc8986aa3f46c69f63243e86c16a4

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    ed358fa805cd669dd6ee30fa83cb9e26

    SHA1

    a60aba7c476761dabbe2608e9c2187689c3c7b48

    SHA256

    2f8e441914efcf09df16075b85d1f616a1194b86bddd25fbf88fb0d1a411e357

    SHA512

    bb02fce58618ff4bbe3cc819bd40561c55677d7b9ff363043dac9752777ba643dc4ccf20ed6fad3751bbfe3005c6ccc0702227017fc9e558c533abc5433a998c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    4e51e95c9e4a63c0a0468e43d4052fa5

    SHA1

    8c4264bff60d121f01a1bb4f8ec2f25723a9259c

    SHA256

    9022be487219f541099820d72a88f4b4415c054bbd2feeabf029d22b1c85da16

    SHA512

    69cf5c4b28ccc1157a45805042052b9739e5023e50e53a0a5793409d02f407b71a5db724df0a3c46697d0c4efef0205721d1b06430e3de18a04f1a598f032a8c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    8ac57197011d400abcdadf24633ba051

    SHA1

    99e34391b960d4bfb71ad32d2bef74655e49a5b3

    SHA256

    ef88e10b7628f9329946facb18905ee60c81dca6ea28d15e0f2702447a64c565

    SHA512

    afb3094edacdde5067b86725ee546cd8db45660244839480f4e5a501f931adc8f7ee8cdcb838ec7eb776b11acd08540358cb1c432cef5f3db4ba02201ffa7787

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    f80307206a18d1a657d4e3375c34ea8a

    SHA1

    93852382fab69f335f13f5f89870e243e8c1b336

    SHA256

    a0977d37e6e05c420e88d4befd7d870af151ff916acb828588ef556effe831e1

    SHA512

    26ff233e1d9b6991799a07b72f8b3ec61ea5b6e0c4b9bb29e6523ff889a02c31439116e914f13177feb40618cdb005362369af3f08dbef4ae253983bbf47a63b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    589e9dcc41ec039c8a6e02b24bc82ac1

    SHA1

    ef340fc2e90688168ce5cc1023ab05efb776effa

    SHA256

    4ba23c7d0be2e7a03a541ad297f3be596de985500bbd613f79b693aa0f423a1c

    SHA512

    dd1b670308c402aca3abba8776f4cc4d1d1cc017469dc772f65d979e017f7165272eb35bee994ca7883f86e4a5a6c6c1a199c000294d070e9de1947641bfbef6

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    51fe2270ea0c643ead6df183477eb65a

    SHA1

    e60aa55f26d36273b02be1e445139e19745b863b

    SHA256

    35de31905c6f7a4599ae77b31846738a69cb1e61dd177689030c0d1c310334af

    SHA512

    11e66a44e0895f39151b96e2cd1004c49634b34a8eb6c764f143a24d3f7939bad98e80c0ec94200af7011a9eeb333dd535e7e10157600eca3cb61be5fe49f249

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\8H7UVK5L\recaptcha__en[1].js
    Filesize

    537KB

    MD5

    c7be68088b0a823f1a4c1f77c702d1b4

    SHA1

    05d42d754afd21681c0e815799b88fbe1fbabf4e

    SHA256

    4943e91f7f53318d481ca07297395abbc52541c2be55d7276ecda152cd7ad9c3

    SHA512

    cb76505845e7fc0988ade0598e6ea80636713e20209e1260ee4413423b45235f57cb0a33fca7baf223e829835cb76a52244c3197e4c0c166dad9b946b9285222

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\YTZJPBOG\styles__ltr[1].css
    Filesize

    55KB

    MD5

    4adccf70587477c74e2fcd636e4ec895

    SHA1

    af63034901c98e2d93faa7737f9c8f52e302d88b

    SHA256

    0e04cd9eec042868e190cbdabf2f8f0c7172dcc54ab87eb616eca14258307b4d

    SHA512

    d3f071c0a0aa7f2d3b8e584c67d4a1adf1a9a99595cffc204bf43b99f5b19c4b98cec8b31e65a46c01509fc7af8787bd7839299a683d028e388fdc4ded678cb3

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab8F95.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar8F98.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit