Overview

overview

3

Static

static

1

d67e17ac86...8.html

windows7-x64

3

d67e17ac86...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    133s
  • max time network
    144s
  • platform
    windows7_x64
  • resource
    win7-20240903-en
  • resource tags

    arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
  • submitted
    09-09-2024 14:19

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    d67e17ac86ecfaaac1f9fcddaa36e242_JaffaCakes118.html

  • Size

    56KB

  • MD5

    d67e17ac86ecfaaac1f9fcddaa36e242

  • SHA1

    0cfa528da5f7f18e5efc08af957e1675ac752baf

  • SHA256

    8d80ee5006a7a5d3b07fd33bd2a13b12936f7e608593c9e0aa594483a0eb8939

  • SHA512

    af64b8aff0b3f9bf502a9bb5b4e0bf3a9f0da252ba60f33618a3c8194c2e382e4c80080c5935ac9d2852f00cba4ff063ace8e9877d0ce8df2dd2d21910679de5

  • SSDEEP

    768:hnQpcVCWGJ5w7bw7u61SocHltqA7r6n3q4gdiwWdvPN2SwUk:hnQpp5J5w7bw7uJDtqAI64gWdvPY

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\d67e17ac86ecfaaac1f9fcddaa36e242_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2652
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2652 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2760

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\05DDC6AA91765AACACDB0A5F96DF8199
    Filesize

    170B

    MD5

    9817c550dea42ed75618c3cbafd7343c

    SHA1

    ce079d2b02b00b4bea98657d30ac55971f9f2f4a

    SHA256

    0f99c1f7b85e47e959c2c6b7b78549bd680ad368416da7896863d501e3a061b6

    SHA512

    8d734b73b969e108f04a835e33bb7c2f7d3135b43147f9eef9936e02a9f6a2366c2f2227352a6045e43d4c3bd52c4faa55e69e755728d8a7bdf48f647296b83c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\24BD96D5497F70B3F510A6B53CD43F3E_3A89246FB90C5EE6620004F1AE0EB0EA
    Filesize

    410B

    MD5

    6cb88cddcc47b75e625fa623a1e8fa24

    SHA1

    33a88c3d1768212244a92bb66c8ff2c9710534f6

    SHA256

    4b42a0090798d6cc0b8f673d3c7f65a0a4198d7d63e5ea08ec8b19b3886fb82a

    SHA512

    0104e1ec285816d8f7de1ecc91645c7f586028b3af0ebd27f81995d67a9554fef0a13468509c17aa3915ccf02a805c2d54351d67a325817ff19e125ca5d4b0f0

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    c89b87f83b01a4103391cbef661ff906

    SHA1

    c999a181ff8799b88c5b1cadc70a33a5549d4115

    SHA256

    8aacc5bb28a118ef4f95f157d623a964b75806b0c16db50104e551a19004b386

    SHA512

    3782aa02dbae7492a187a3ed97990338dee89801aaec6ec977b1808c722f10d5d8dfa0c29d4d92c4d24db4d0c7917b9664cd42db9d04a1a8ef5f0207e75c923a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    5017a8169274ff77d65e09861e938c12

    SHA1

    59975370ed227d18ef8ba0162412649d665cd939

    SHA256

    4a76807bd2e27ff851c52ba03c136e5a275e0e77717db99de0105a00ec2658fb

    SHA512

    09ad1c6df6d7b29136589f8fa6af0e4dc57b68b82a601d127032c467d878c9a4943e1f78d26cfdab869c21e2444e0019dba8478096a004ff699871deb802ff4c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    3f5d236aa1ea1b8552ed9322dad4586a

    SHA1

    a9cde5da75823c5946ad9614d4366b5bb921b159

    SHA256

    d1c2edfe9c092831ca32ef63fbe3b007f23bcac4c3a4394ba1ff924ab4b66552

    SHA512

    99ba97687fa1941ddb4634c0956ae37835172e9d5e669840eade55c047a73a066a71b98ae93a54e8281cfec24493baaf644e973c56d4b25b3efbd9fd69fc6f4c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    e0ed71f2ba5eb3922df9256794b4558f

    SHA1

    c16295a53af98c360a1773ed700edcc7ae055127

    SHA256

    abb841226337cb78d1b415423efc3c29c7f868856e711d9a754a0a456fb8a091

    SHA512

    bd2ee7d905c54fa27d9c27f459b0be30f5e2f5eb7582e26d88eb63e48170b73ead1299a9f50da0895737a14a4bcae78eaa2f9725acbb6fc4873fa22f68639637

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    6ee4a155cd5c69372000c7ab0661ac18

    SHA1

    9450ee2aa95b3cc909ac7901d0589511afccbc46

    SHA256

    762e322a38ddb4e72f11b0c5af802c43d1e408c8497ffa8329f052d3b8b97527

    SHA512

    72fbd97211638e604632e975d90dae9f73aff49e99cc3a86449cf191a78b8242a8f395835867b3dba079cb211d09e91d90b94cc485db8925bba9a180a58d29d4

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    82f172f2147e7e2f2f3410df1ba5c310

    SHA1

    f3cac2123bf84b8dc7e608f6c4b4d6c21723d167

    SHA256

    ce2c7b7371ff5f3f6a391a5d7734b7bdd74a4084de3814d780b728361e4a8f0e

    SHA512

    448aeaab598362f17adb8d6bb41fabf7787bdf1e59d46cf92d9874fbf26910c1fab92e7caa389e9d70882a67f434d719db61b7d909cc2887eab651414b6b0308

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    65af1438d3c67497f9c5f144c698b7c2

    SHA1

    e8b30a53f56c0564b3d0b903af6a6ca7c430fef5

    SHA256

    0accf88714185e290b0b51ed16121df54384c48b918e6e363e07bb3f83d8e825

    SHA512

    f0bf019ba26ec85f376e444a34fd0831165b87068935b2608523106d84bf4af35294bd4ecafc57738d1e13c6d97387e24ccf7ca56926b353006538a66f3a4bf1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    799c72d42643c7dbeaf8967b55d47fe6

    SHA1

    7b72ae7e9f814f71326cdb4aab57b8dab8710191

    SHA256

    8e77f21ff6764dbc7898440fdf7e9a628188ff0de87938547776bf2e6345b0dd

    SHA512

    e0a3f69e897afaf608771b3152ba589f5f67b7fd4d7f474196d8e26d932276a2d11d247a3ad4ebbce65e102505fa98021a366399ed464a9d624828efb02cf3e0

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    93626deb2e78875434f259df6f279d36

    SHA1

    4c7a43cc6eed743805e52b1dd609218b27030a80

    SHA256

    7244ddf0c8e5c59e1a562d5087b35dfd7eae03c8703816df8f6cd8fd5783ee1d

    SHA512

    b1362ee810355ce341b369869f21b06793b7423fe8d4a20ef784951c4783eca6b02df1dfa7becb42c46a61320a5bd3ff20a823153d34385ce83f31cb553a1969

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    592e4b54973314869babedf7adec3d49

    SHA1

    1e4fd88814ca4c0435cacf2e86aee24498cc0232

    SHA256

    05b7a3bd23684a99a05bf9aac21b33eaf39b695cc7178a48da8b590eeab75a36

    SHA512

    d7363dad493e1ded64bf842ebf11a17b73b28527bbc1e030d1cbc618c3b314712c3b26a83dca7a112bb40448e0d3e93d49cc3df09b1c4a0631e46e58e5d80c99

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    81c559b9f567452de8e4dd6ff4362e1d

    SHA1

    5aaf9ca516dcbff28a38d275b53d36ae38f9ffb3

    SHA256

    8b1b1392ac315681ef91546ae143232d34eddb23d60de6c403196bf267b14a38

    SHA512

    99b61cafdaa3454f802736a3319092fd3d74d89691a3430177d094eb5fd94065a69a5d71dff5d3d7a342539110bf99ba77e425e5e3f4bdca47d68b01620f1330

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    e63486123a2d098c15f4c0edc315c200

    SHA1

    f4d0ae5cb5ba4302c7d59bc1b4e8ca9b18a3a35e

    SHA256

    35483ecd49276b5792ba9aeed2f47b25885f5391166e30d1915559acdefc2182

    SHA512

    90134ce14244cf752254788bc0b3aba0a658f614764d4059d923f8ce47e5496a948770e8f7b0a62263142241b350e78475218169e93fbcd5646ea5ffa74706b6

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    724b267a4c032620ca9e3a94e29b20ab

    SHA1

    44c89edf14a4e463e35534dea5edaf881722f96f

    SHA256

    5eefd155e4da897f2d85f87dcabacc1145db379df75948fb4ee9f318a5eeebfd

    SHA512

    6c68f55fc9efe931ff7eef3d0f2b53a65cca0dde1c574800b9bff2e8b923b24acc6d3af9b5479959751f43b4f43fdc627b8d256d83de31cc54f1be9836e7071e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    30b9208aa21741b58c6d28e9d8e1fcf0

    SHA1

    767900fef37523cd800d4fc66df615454d69fcec

    SHA256

    4fc3369b2d7b956e76fc4a1d2448b654218a730cbc68c7e40f1289e78edc6967

    SHA512

    8c80cb6787a23f16e9410ea74c91cdc5b8e91be47222c78b9da6cb893bf852fdb219b465c0d8506f54c161a5c7854e60149730fd903808a42d1b6e226fe3c5c8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    b8533425df21f965de040c79648f24f5

    SHA1

    ec0ec656513160c63f149f5ae479062b1916731a

    SHA256

    fe0d47b6d2c4da59242f87a6b984bfc43571eff2304f2bc18d85cf2cfa664ff5

    SHA512

    70201ac630eaa399f5a9b6af7d1fdaea69c43f44ac29b6d73379e452803924b103c1e809c998866832c8e6b50c4f3652c6661a89c674ed88c2678dc6ff7ccb0a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    f0f815b501741036344c05b3a21d5cac

    SHA1

    66d17e5d3dd7c3d40bf9b5d2c7e49206aed7c3ad

    SHA256

    be4b1763a7dedc37e48e118d62b4dda0d6ee3f6b965653474579521b730ca987

    SHA512

    3e740cf54c772fb651397f499c30befa1f8ac0c78e91c4faa3da47f199bc74e8aec5f6ad79ae59ea2922a8dd372024218eb385ae46539f3c39a391f2b4c6d030

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    df0d655c36215a916c5965fde850f126

    SHA1

    1423b01542df794dbe1a60725f3f5217f57b5539

    SHA256

    edfa868bd34027f39d1cc6c38326d8dcf930c55e5820556d21b5f556f6c7260c

    SHA512

    8ceca33393f0600348af3d49c1a2ea30119d53639649c7e0d5055e91300edafd0a24be1522930fdff6147eac36276a75162b854c86b5b658e0759567a5ad3ae0

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\01LB6K3J\plusone[1].js
    Filesize

    63KB

    MD5

    65d165a4d38bfc0c83b38d98e488f063

    SHA1

    1c4ed17c5598a07358f88018a4872aa37ae8bc07

    SHA256

    b1320e0dda0858c87971f7baa0d53063ad2a429d232fd06b0067bda8b9eeb0ec

    SHA512

    abf4c755d88193e7e05398b6f934fc561d8e2adbee7d2170af399e145e54a4a8a93988e4af4e28d6240c0bd1bda7035ae97f67a85a471088820baae8d89f3d41

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\0I0VVMWQ\cb=gapi[1].js
    Filesize

    67KB

    MD5

    ed72d618fe48f6fc42c19a4b58511e72

    SHA1

    80a2da4af91d56ec81c7b672afaaaa72c83a4414

    SHA256

    5bfd37a756bc7772aa6c520102870dafe2d3b808c562412e30f122a7908f8ad0

    SHA512

    5378b71a33f67309f788b9fce32daea44051e7e9a6aa326bdd783456ee9eb2f4817aec2ad1e837afc1853acba59080b0114d32c040ea731ebd703f0a84dd7ae1

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\Q0WBLVJY\1380534674-postmessagerelay[1].js
    Filesize

    10KB

    MD5

    c1d4d816ecb8889abf691542c9c69f6a

    SHA1

    27907b46be6f9fe5886a75ee3c97f020f8365e20

    SHA256

    01a956fa0b3ea8cb90d7032608512bc289c4170bf92759352e40062d5be2946f

    SHA512

    f534f057e46998bd1ff2c423ad2cf04a880c4a5259e95aee5c6ae34ce7121ccd07ad1bce5d4c3a51ad04f7411b0625da78808326b13d2aeefec502988e113113

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\Q0WBLVJY\rpc_shindig_random[1].js
    Filesize

    14KB

    MD5

    9e5f0b21584389dc1c7b5da4a900879f

    SHA1

    191b84e0f5644398ba99e0aa141a6778c14b83bf

    SHA256

    3e21bdafa913fa25276358db1269238db3012ffd8748626cdad442f838e890e3

    SHA512

    c1720a420df680bcc46625355ed6d5c35ae280a813692a0fa293f3ba113a023808a781f1b8c9dfeb3ffba29606e1f4bb4be4233983089602e2d2c20786fb0427

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab23E7.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar2477.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit