Overview

overview

3

Static

static

1

dad080b423...8.html

windows7-x64

3

dad080b423...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    149s
  • max time network
    130s
  • platform
    windows7_x64
  • resource
    win7-20240708-en
  • resource tags

    arch:x64arch:x86image:win7-20240708-enlocale:en-usos:windows7-x64system
  • submitted
    11/09/2024, 16:59

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    dad080b423354baa5db50db7bead7d0c_JaffaCakes118.html

  • Size

    218KB

  • MD5

    dad080b423354baa5db50db7bead7d0c

  • SHA1

    c4b4272a4432866a24de536efa9095fb7acb35b3

  • SHA256

    d251bf9e3eaf7c57b43b124eb011f94d313f26bbdc63c72a96faffb373f68a60

  • SHA512

    7c5fa66cb378e1c7494002aefc9e248ce31c3ceeac4df2bdecaa3fe0edb22913cd992e2c0bae2b779ee7f857f1367bbeae316ed8f160fedc73b9a8048b96d3c3

  • SSDEEP

    3072:SEAzJQ4NvlyfkMY+BES09JXAnyrZalI+YQ:SEANQ4ZQsMYod+X3oI+YQ

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 41 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\dad080b423354baa5db50db7bead7d0c_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2180
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2180 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2412

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          3ec7f80e7d6347a3c02effab6759cd25

          SHA1

          c8af700d51b6e14872e5afb0e4558eed58fcb984

          SHA256

          895a3e241de7fc171d2739058b03255fb46fe1078f6d6c5fcf49640b4250685f

          SHA512

          08eee472a4f9bef0c65e7c6d1ddbf19fd05c7eae783a27b6f4e71e17ed73f29cfcbf83cc37c9d3c1c197b3a9f03f4b3794aefc527f9ccdf294eac160cfd7a3f7

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          0f554f01d2b41bd35f944e0bf198ad79

          SHA1

          c13c9851295789b00ed487df320134a3add1fc13

          SHA256

          40b03913313d9f7354e55aaadb055935ca93afb90a48b7b0d8d915e7ff80a4dc

          SHA512

          54fcb86abd349455f4f2f5e079e9d70e8b0ecb9f5136f5946cfc54adad89dd2a6e85d654978aece7b00a7c375799d80eb2fd276bcebf56222d950e5aa9c8058e

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          ee48e287fd36bf33bf220f4c2852e1cc

          SHA1

          487786818145e0805b8c3e41b358185b6c006b15

          SHA256

          e740a96e16e270541875b62ae8bbee2287a80ea588c3ad68ff662ec5400ee854

          SHA512

          58f2c024d86ae2fb63a6286c61c98c9ef03655f7e2628a8d15240ea268a865e77745da0ff0dd7d675ddb82667b1800c5544ef165aba21276ed1bb3e8708df907

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          81e88448671eff9a4c1e3200387bfca6

          SHA1

          1858197fec4e82ede85e6988b70242a4193a024b

          SHA256

          e037cd7584597857a01091ecad6a2e620d351e37f2ce54c18df164bd87b4d3e8

          SHA512

          de0f71c44ebeba34d9cf28e29d6c090ce1b473d1d729af481f88250e38241f33caf4667320f5ebf3806cb3b1c29e6d430d6e2d09ea1b786537db3d1a8f564d67

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          932a6088bca81c17dfb84110eb7286a9

          SHA1

          fff5d5cd6f9f4fc348ffeeb966cd85cba9fd5ffb

          SHA256

          2c1730e0185c4b4bf4616f89f0c015cc18cb880d79bad68013c439d4f0969ac8

          SHA512

          dc8b02ac7460726d4411aaf3955abe19bd25592dde20043cc699fb6b0ad3d337c7fae7e1691fbe8ee3738262b9a7bad3752dc177cff907c75670f12dd981521c

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          6421114dd1e46db3c0f45a9588471a43

          SHA1

          778ac3314c8089824be1d06f22a9160a09ab9554

          SHA256

          2f1bebee041afbb1708f88c042182e7298917a44b3b4bf839fd63ddfd566c9d5

          SHA512

          0da8244abe2d091bca0e2ed9d70dd22044b3084554677447cacd165e0dd40c0c1a779b7ee1bb92b9d8a08c409931cd154d6f755c94b7f7ee6de5ae476ad7ce10

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          9b4a73790b8bcaa9415e43c193ad5068

          SHA1

          8e2c396fa7c464dd211b25e882dbb00ae36fb62c

          SHA256

          62630546d3eaeba14a6a55ce18b65a72bd2acb5cf6e930ce3d49d4bf6f44fc8d

          SHA512

          959caafe4c0fcad3e58356bf871aa4fedd9ab5629115574491ad08dc25528b7b3b18eaf9830e8d2b13934445524d368178ffe78fa37408bc5c8627caab5f1b1e

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          9ec2e2d01e739b8154b11478e1600207

          SHA1

          0d9155f89ac7ef3e2a8ec060332ef73009e89d80

          SHA256

          2e27bb3222c7d3eb08df13e122c85fe54d4671b3c500aa4e75116bfe03488b05

          SHA512

          9fbd8f6ea737918e2e5738d40d7df0ce81733175926f8104949d6677dffd6d631bd446829bb3aa01b3a942610087e81bab21c1005d550f044a074191dc3ddea4

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          bad093a9ac6dd775dc14463b4b8c51e6

          SHA1

          e88181952150768d9c4a323f0cb21ee4047b0c12

          SHA256

          c70bce126e24e4b40824bfdf50c90f0a48a273fe8d146a50ae6d4a25b6a67102

          SHA512

          a7ee5ea278e302ec8a746dfb356377692ef00d8bd74a3d755b36addfe2d68d2a91d2b2fce98b55b5c221077d6a4966aaf5967699205c8993f637c63ff2152a14

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          acfab1d0644830804860302caf89a52e

          SHA1

          fb8623d83c23831d5c82a9b402238f712236848c

          SHA256

          096819e88b863d44508ac73cc3d42bf26b749b41e342ea4de87c5334e89b9529

          SHA512

          dc0f5a940b7b9ea81385ceb4ba32bbff9bfed40f23b8a12de58009ba93b5b467ed792882d4cd4b51a9cc02e9165429cbfef58a1e45b346a45b8c14e595f88eb8

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          9e5596cb540e67e3f4a6fa01f53c5647

          SHA1

          ef8aa1fe2edb5b10db5113eaea5aa631a64c06d7

          SHA256

          717e47d2a9af04e63b23b71dc5a515c84eb89498be5bbc2476c96ab02fd8daad

          SHA512

          f316a44b89cc1092b224978f4296b6b987b5807e277d431bf83779b8db5af489319e7a1cff7eb1f6a6b4fc3d064357ba0a2939c9b726aefee3845217830984af

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          9be8bb0a116eabfe4d681f88c8556591

          SHA1

          bb3100bd92db86a5e382be69b4be309ae02dd702

          SHA256

          7cf49492a17ee66c0c09349cff57b2ac8d0651b276c7c15944a8b89c88c274d1

          SHA512

          2f084bda7d41cc65ecd0ac2b382b83fad18fe4f557d812187595c9b3a99c03262bfa9f9475e7049c60a0d4dfdd08e136266093a9f0e577e3249c22ffae792f4e

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          f71c894e279b7df4fb12dc2538827ce1

          SHA1

          f5e4b838738e90cf1e7c9c97bdfa78baf5578873

          SHA256

          18ed5250df5474d0905aee2ad4809943ebae9b498dadb837ea0f9997050890de

          SHA512

          45283588b219563489688d7a6f2e43a3f29c3f4bafcefc86890164597bdf7f447c86a014cf8b6e0c6a17858646dff3e1b864a1424b299d8b15e31124d7dbdae3

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          d77dfeec775bd158788ed146f7ee7a1f

          SHA1

          a1b7d8b1032ed7ccba9d9eb065d3102bd01ba174

          SHA256

          cca62d2cafc75bd0c7455a91ee93272f618388c817937a7ff091d03331cfb8df

          SHA512

          34252e2dcee6f79af6df4050c837d10cabdd64e26b5be20940db7f5f24d3f45d2b42e581a594a3f10d112685ae0d56a8941012910753df1bffac4e4aad196419

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\Cab96B5.tmp
          Filesize

          70KB

          MD5

          49aebf8cbd62d92ac215b2923fb1b9f5

          SHA1

          1723be06719828dda65ad804298d0431f6aff976

          SHA256

          b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

          SHA512

          bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\Tar9E28.tmp
          Filesize

          181KB

          MD5

          4ea6026cf93ec6338144661bf1202cd1

          SHA1

          a1dec9044f750ad887935a01430bf49322fbdcb7

          SHA256

          8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

          SHA512

          6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

          Download Submit