Overview

overview

3

Static

static

1

dae57a693f...8.html

windows7-x64

3

dae57a693f...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    146s
  • max time network
    151s
  • platform
    windows7_x64
  • resource
    win7-20240903-en
  • resource tags

    arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
  • submitted
    11-09-2024 17:46

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    dae57a693f6228c3c392f97fca3c6d28_JaffaCakes118.html

  • Size

    5KB

  • MD5

    dae57a693f6228c3c392f97fca3c6d28

  • SHA1

    6bc6913eaddc5095bd79fffa5c348901426b425c

  • SHA256

    0b9bfc4f5f4116104ba1ccf4efd253a0b1fe73ed19e2f02a7c25e4fd01d69a69

  • SHA512

    b7ff834dae1ffb58ede55333b40caa2bd7969cd9d5eadb8ba929e548688c774ef562d2c0e1c8f493a4c89887f8e74a80f5b03bf451e1c0be0adea13e67d410d7

  • SSDEEP

    96:khVKSpjAmF9SSS0SPsQPxHBbFWNOH6MatXM6sQB9WUtEgNYo1krscIqagJM83pCc:oG0SZtFIOH6MJ6L6k1QsnqagWCpCqagD

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 44 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\dae57a693f6228c3c392f97fca3c6d28_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2716
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2716 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:1192

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    fa3ff11bcbb6d9e7b3f8fb77bd01be2b

    SHA1

    03dc0c8321d735c63da0b9e5ebbb287ae6eeca94

    SHA256

    f36db5cbcf0ff46affee3c18bff5c42be744f1904bd5279e522a1a1b855e4e05

    SHA512

    05a6e5e4da39a3a4669cdf4c583432377a3ff33b7ea9896f974731c98a12ed3dd8fbe21fdd11ce1388eab3b23de4a96bb820e8da90fb927d37e9d35542f9c7e4

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    9eadd014195998edab96dab66429afb0

    SHA1

    4d80653664aa1061d2ce8051e3b5c3950c6140fd

    SHA256

    eccab9eef3f998e17652d991160caf8be7373d61d38a9c3337f7039a9162076d

    SHA512

    ddafdfda1b9c4fe7debf22d8c1519e3abbdeb7c2919f66a8b87ae2800f59ea594c138371fbab8f62b00b4384f1d949f7dc6e99f2bbe97e10f3f1a83245afa809

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    f4b147d50a9cd59745673994ee8247f4

    SHA1

    d3f427f795e812fe6b53417eca04194cc150e62e

    SHA256

    0eeff0008d3bafb5e60cd9095601610bc424ba07ffef84c7406d5f2d419d4002

    SHA512

    e7e2ac6e2aafaf37db25e413d798384c78e3077266b2fc7982665f5bee91133a4cfd28e087112972d9a1cf3a1faa18920e8e063033b1ae3cda07f2a4badedae5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    b40d8499d54e4af23dbb0b15f34d7055

    SHA1

    16ad75d4ed9a2483b1af66accd36202715c447cb

    SHA256

    b1ff68097947534e6b29b5e7361a6cf7b1bfc8644f019d6c4bca9248d5638796

    SHA512

    3251c160aa95b48920894cae0a49a26cedbad27a0a52c71cd246d2e47ce90f3010e5f887d61013f57534d67af759a9783ce56a7b8b19a02383e8e34967691f4b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    8c667f484cc5f6a4b5e201c7b26e92db

    SHA1

    d2f0f92e3864f0ad5b2df428fa041a4bb0eb1c9d

    SHA256

    80becb2e81750d9056331e29446592b1d38231cb415b9761719b174c1d62c814

    SHA512

    300dd873993a8867baab2bdde0c1e23cab85043517be719122ee68621e2ed290ff05cd0403bb34f64aab4d159cc21ab85fcd151ebf623fc23866d072cf6b0823

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    c2fbe88d1d16b27a7094898a9b2ba31f

    SHA1

    b104a9de45746156656e0749b8bdd3b452122d16

    SHA256

    29d9d1a02af05252cad5b5fac959cc61deeb468e792af2d3988a51df65c1c920

    SHA512

    0b2054d68ac45b16b49f37435c341f23a0ce976a8f44ac3d988ef4d8069062443381cc2b13af870b0e09b3451f5545938a7ee831e063e1662e0ae64c7e0b60c9

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    03aedefbeb597d9050748327891bad5f

    SHA1

    be085055a9cffeaebb989109986cdeb2b292367e

    SHA256

    fc2b1e3982f85f96df7cfa28cc84a50bfc9050ab792dd505ee9b371bb8a5b91f

    SHA512

    629ceb096ef278f412a2f913726608effad3320e2b3f1bf1475210052cb0a1c4f372499c15afe55c4200002666972d7fc9644912347d582f862b4551d49ab290

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    2ce895bcc737e575c8131c6d57cde081

    SHA1

    927a94a66781b5819d6a014b9688a8088500a709

    SHA256

    a5dfe7ceaadc7c02b9f4f87fb4948dc57a4328cee28443083abe4de335f46ed7

    SHA512

    47844c1453696260bfc521970fa14a7aa86750d972e034912d2bb96867a7270f927dab04d9f257abd5321cca10d55ed6d9c5f4673dcabab2a14ccab30efaaffa

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    fc820dfce2b83a06f36f64e26e3cfa7a

    SHA1

    2244e7560bd066a60acc019ec1d3c060ed761434

    SHA256

    f10db8fd3c968c469e2ed799105b600b3e1af7fcd1e7d6f05e8dd5ef2bba4722

    SHA512

    6bde231aec07a37a51ac235f83bad56cfe2fe921bc7e88368fdbab142cf3e45fdb6f40e83ad70739f1b73120ad851b76ab36c3e480ec8d9529078ecfcdbe3b9d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    bac388f5d1e09e037a0632990bb40e1d

    SHA1

    661093091bd2f52c1b4719b2d94478bbc3c1b2d9

    SHA256

    cc4a7b457687fff5b7818697776a11bc07b8a166b0bd97920958119f003781b2

    SHA512

    b1a5e8f621bc3e2bcbca876bb65a2ea945fe4d4699a89869c595dde3f17b0b96c239b442e5537f00f434f1ab2dc020cf9cdb7549e5999a1dc869ccdc275d19a8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    a7193d972b2d36823b45f67711520dc1

    SHA1

    aad00319a2e40064ec2d9ce711841c89a27e5bc5

    SHA256

    6572f00c0725bbcacacd7b0ae2ab13576b7b9848ee2620a29d284a138c3cb263

    SHA512

    b30d52a12f66a6de747bf546f4e20836ec0081eeca2c8879165a49ee8a037c19a5d2b02c5c754724ed58770aba826a6c117614490d71514bacd64e65b7a9b7df

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    431418eea0325555977fa9b541b49518

    SHA1

    c082d005f685a4c3adb5da7c61bd075d37881643

    SHA256

    3f690cc4e7e965ea77afedb01accda6fbe1060f5b305c973969ca96fe9de4261

    SHA512

    a24dfd7ce4e84aa0f028a6417175b03e27634be7f4bbaa195ef3ee19e57fc3772879d05daae4f3724928d325a26500970ce50abb6429563b9e9e7fb9b9b3d0fc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    2a984096ba8852719dbc5fa2a344d47d

    SHA1

    62b1714b5708d4232fd2d84f6794dc77f7ca5b14

    SHA256

    cf918f641eadc61e1ff57d12e6ebc8f792a6a855771b22965eb88f25ec0cd7db

    SHA512

    4c628e994de68ec337df5cee5c085c96743d373125c1f0af5b6e697f25d84c8a6849629e5b53a10bc52736db7d44762fa6a3039bd87a9d1cc4c5ff08cc3b9946

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    4d6c0885b7002e9d5d6a247a4c838532

    SHA1

    ef5826bdec76a1f87b8db8e0c97bca1966cef7b2

    SHA256

    147ba4eb2c1162ffbd64bf3594a7ef89849842f52cd433d9bb4f0da738ed1983

    SHA512

    3b18023e596aac3a8171c0f6bd8f5a9de2411c53767f7403ed4b91d708d43a55c041129835794bc6f646d6422c0db163d7dddc44ce44d8de80173f7a241b80fc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    2443eca7bfa9486f93124a1b88b8a0f0

    SHA1

    7f96a5608775c31b0271efe52d39c7195e283ca9

    SHA256

    0e62ad38ef487937884e37333340221e8c2612927c7f1709cb9884dacdee550d

    SHA512

    0eb4fb021f204e909bddb96ac7c46fd3941bbf302b5a2fb5831e60c525087230ba4fbea6d0ab7ff33f4d9550198d1f5231c13ea636973149f8c4f0973f153bf4

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    1313359cb096ec41691af6baab845e9e

    SHA1

    1aa3429afb88103f25ebb1274aa33b99e226b46d

    SHA256

    c5bc969f28925c23f288c363eb860f246192c53a2d10a258d86671ce4ecf7a48

    SHA512

    8295ca32254514140a3ef021f5500a0bd0162efb42b225ea3710070494040a3798024c07db083e20dcb99afe447e150c4a954e98f9891717e370de082eca44ac

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    9072dc5653c6b16a235c783607d8f6ce

    SHA1

    9e27696f67eeb5caea826cbbb17596160e986c64

    SHA256

    cd9ce29046e3234b86cb06dfe5621af695d6df1b3bb37ff37df27033058535f2

    SHA512

    b2643a50806aa971fd7e18472a9d807366ebe1b8e95873a04e7f1df8579c7620b1bc6be112a9e864806f069b2c236ae2c27b153e7686bab71d7d3d34759a8858

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    e85bb7f4e1abee95119efa7faf9d6e6c

    SHA1

    03da6d225c343ee8834bc8080e7247397145cc5c

    SHA256

    1c7e1b9aedbb6344f58ab001b4a54b61cb9cd8ed9458c083dc3aab5aead068fe

    SHA512

    e2082108957957d7bc40cc1e1529913c34f9cc741cfb84716791a754c088340b11bc43eee6ded45d91ba81d46076a8719d20e98f5d2e25027b407889d8653e1d

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\NQU8S4LJ\styles__ltr[1].css
    Filesize

    55KB

    MD5

    4adccf70587477c74e2fcd636e4ec895

    SHA1

    af63034901c98e2d93faa7737f9c8f52e302d88b

    SHA256

    0e04cd9eec042868e190cbdabf2f8f0c7172dcc54ab87eb616eca14258307b4d

    SHA512

    d3f071c0a0aa7f2d3b8e584c67d4a1adf1a9a99595cffc204bf43b99f5b19c4b98cec8b31e65a46c01509fc7af8787bd7839299a683d028e388fdc4ded678cb3

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\YTZJPBOG\recaptcha__en[1].js
    Filesize

    537KB

    MD5

    c7be68088b0a823f1a4c1f77c702d1b4

    SHA1

    05d42d754afd21681c0e815799b88fbe1fbabf4e

    SHA256

    4943e91f7f53318d481ca07297395abbc52541c2be55d7276ecda152cd7ad9c3

    SHA512

    cb76505845e7fc0988ade0598e6ea80636713e20209e1260ee4413423b45235f57cb0a33fca7baf223e829835cb76a52244c3197e4c0c166dad9b946b9285222

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabFE8B.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar287A.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit