Overview

overview

3

Static

static

1

db318c3631...8.html

windows7-x64

3

db318c3631...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    128s
  • max time network
    140s
  • platform
    windows7_x64
  • resource
    win7-20240704-en
  • resource tags

    arch:x64arch:x86image:win7-20240704-enlocale:en-usos:windows7-x64system
  • submitted
    11-09-2024 20:50

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    db318c363136a191596ca92a174d1efc_JaffaCakes118.html

  • Size

    295KB

  • MD5

    db318c363136a191596ca92a174d1efc

  • SHA1

    30ddfa80a48716837aa629b9ac3c27c9853e1ddf

  • SHA256

    9f01b5ce5068a29043f4dc1f7073bd9010d3790c4b4983d6ad49bf22ef18ea80

  • SHA512

    da704be5598206567e07423d778d1d9d3d27bce90a9159bb4abfef856176dff8c3cbf85eeeed3a880d2e699d6401ff1df1893bd31246edd5dca6a0fdaa072ca8

  • SSDEEP

    1536:4D+SbTTF1SjTl3NkltM/jVII3IbIre0ZGgBmp6ov4MJLnvMuOUPkI3Q9dE6el64P:O+SbTTFM3ItCVI2ihN4ucqiTCH

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\db318c363136a191596ca92a174d1efc_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1232
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1232 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2088

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\3C428B1A3E5F57D887EC4B864FAC5DCC
    Filesize

    914B

    MD5

    e4a68ac854ac5242460afd72481b2a44

    SHA1

    df3c24f9bfd666761b268073fe06d1cc8d4f82a4

    SHA256

    cb3ccbb76031e5e0138f8dd39a23f9de47ffc35e43c1144cea27d46a5ab1cb5f

    SHA512

    5622207e1ba285f172756f6019af92ac808ed63286e24dfecc1e79873fb5d140f1ceb7133f2476e89a5f75f711f9813a9fbb8fd5287f64adfdcc53b864f9bdc5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\F0ACCF77CDCBFF39F6191887F6D2D357
    Filesize

    1KB

    MD5

    a266bb7dcc38a562631361bbf61dd11b

    SHA1

    3b1efd3a66ea28b16697394703a72ca340a05bd5

    SHA256

    df545bf919a2439c36983b54cdfc903dfa4f37d3996d8d84b4c31eec6f3c163e

    SHA512

    0da8ef4f8f6ed3d16d2bc8eb816b9e6e1345dfe2d91160196c47e6149a1d6aedaafadcefd66acdea7f72dcf0832770192ceac15b0c559c4ccc2c0e5581d5aefc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\3C428B1A3E5F57D887EC4B864FAC5DCC
    Filesize

    252B

    MD5

    a2e488616fe832bdbd04dfc88666ed59

    SHA1

    21b7fe40532f7b3052b25e9b25c6b46823341c01

    SHA256

    79b1ae73fa3f3a5f0431f38b86918b10e406f35ded238df41b08e64edb11892c

    SHA512

    6546de153a67c4d9fa2e7331bc44f89b17b5e73960da11650e228974da6fb1126927fd9481fdc4f54ea6b5c810ca73597f3b49c910505256f771bccfa618273b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    826cc00dd465dbf70e5d7df0e1c93a97

    SHA1

    1a0401e634435976aab72a12b9b68c4c3a8c6004

    SHA256

    9ad48090c62a53026616aa733ad4094ff9e58f8b686a2f8bee0f73db530247bc

    SHA512

    433407f471e4a6f45c003ebe21dd08ac713c1196a94e74ed8d1c2e1ed17a20abb46c7b0c508e5763110d4a6231303ffb736bca82fbea09fd5fcf51904ae7803d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    af99ebe43183eb7c7be5c11e670d663c

    SHA1

    94a5d7eaf7af58578ca37edf63a30f0795d45812

    SHA256

    af1f2f0e00bbad4136981fc60a541db9c35045a9c39b9907f5948f8a80385690

    SHA512

    c137906f0dea1f524e7d5d3b57d36388a121ca458f95ad8d8ecc5211bb8c8f20ab47433f25ae2d62eece31ccb44411ac0536935650253db574188a37e149b679

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    735c4fd618e118da17379db0bd73c0b4

    SHA1

    37ca6a843cb8cd019bd1fe69a256de7f51c61b78

    SHA256

    413898fdfb552cd9b86024c3474a199733769c5a464c49d85126350bb8bd4bfa

    SHA512

    ab4e8963ca360b795447f8c55554229b70e15c9fdf57157fd60eb6412e7a0b6982af4aed4022d67be8b7c30dd047645b6bf2245fbbaa1cde48e25ddbcd7aaeb3

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    0e6ca5255f659bdc9f44fc454a6947ca

    SHA1

    ad099f41bf38b78e6bfadeff01ad37adfa4c8a40

    SHA256

    f4bf012a2476c9c25480dff11d3a34b34e523694e3716bd81f3d6e4e9c08ea15

    SHA512

    c2c920beda4b4b04e3da64fc2ff36c25675514dba6e0aae8513abc379d8e36942742f7b09fad80151dd12783cccc85869c716a430e0ed907452676acedffefc0

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    1e9aa4fe0ca50c17892575683943d444

    SHA1

    e3f70c750ea14f6028bead573a3fb601e247503a

    SHA256

    fb3bc4bcb81513bdec19166641326771088dd61e813c3c7cc43aa59a0e3a760b

    SHA512

    548c6509fe5cf9698ac0353d441ad3c9b0abd23c64ce5add4f9c061aa88ee4dadee6cc348b7a3e5b3f6f1377a298fb5ae7e5eab777434afad222ef82f02cdf13

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    1c584ff16b0b4ee1dbadfeef75cd3517

    SHA1

    c1e79485db1b433ebada6a6665dc59c3c57f6f8d

    SHA256

    4be3a67c3afd286665e04ba4cb937e701cb389e5d7c619c8bf0ff2f0cfd474ba

    SHA512

    4c6dd1a055f86f9847387860823fff9a869667b9ffd85b8dc63b3c9d2027a2f1d7acdda1807eb99cf0a7e4a54ee5089b74844668a0acf87a17d1357857c6cf0f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    598adab4ac709ef71976dfbbd8d7b5df

    SHA1

    c9dfda56aea81c7f1f3d68b6ca63882cf2e9714c

    SHA256

    77fd40e2b289d1dd95c7af19ed53a9fbd6f368c2dff893eaac3990e21869af7f

    SHA512

    4bd1caa9c293bb32c29e3b44a67774d6af6d49ac65cffac016729c2969ba02afe9bf6a22142e4e5e029175868165f939100eed5f523a940ba4712753696e2341

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    28d9c7d1ca7845bec971e35d0dfffade

    SHA1

    ac024bef9adb9575077bba31112136e8c0027c35

    SHA256

    2e75fb7642e08f2ef6fdddb473adb786b13aa554ed7b10ee2648543de717563f

    SHA512

    e322014429adbb81872bf4c8d151870ba4b737a8171cf9a88e0e905c8b3835f94d18d22406c3cda181ec16b04b0cfb35edaf114e2433f8b53d0285579a7d2c2f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    10023068b02945892ff99763ec5d1418

    SHA1

    6cecf1c5eff6ed23fbe08c7a9f70547704d99e7c

    SHA256

    1a79c6084bf02899c29b3ed87214509b38b872cfb2ff935f48b0583a153b4c8c

    SHA512

    f6fd886bb49fe4f4bf6af8cffe0bff2facc7585f71876a2c584beb2fa91f4380f123573d03f05480ea56b1f2e6a6a2dc7dab64651734526d9fafaf70a73ac251

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    2b6a1cc40d8e78e844c55a0bfced4ead

    SHA1

    71d399e4b1aee760b0ec57de3098a77a14a2a2c5

    SHA256

    f9a005f99ec0603e19ec29103a3aa4dfbf777f4099469cb2c76704e2ef631b77

    SHA512

    c3ac337367eb94a266b7cd540d58e299e92b9b1afea657eb61593b19b9e594caa5ae5a10a57e067cda71a28452e4e1ab7b2ae1864704a1404e5e74f0c2b7b92d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    398fa6a915588b36480d64709aa81b55

    SHA1

    b18f7a9f3f51fc968c8f8aaef962e91bae6cbf89

    SHA256

    60059d2fb0178d29e914104bd2cc11c476d32591827778a7d07d80256eb0dd40

    SHA512

    d8fda008f3eee301673f513e385c1eed18dc40f2527f9de32445209d495a7b4a47e0041284ca18720eadd774da9cea7a8429ec394d5810b2bf9e0c46ca02474c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    b1c0d589cd3ee1d076579480bdccea94

    SHA1

    ca6a3e967e5af95e457f596fca619e2fde84999e

    SHA256

    1e6ee853f012b7bd9dce509ffb6f245f438af44e4633e646f5f64f381c0355c8

    SHA512

    001ac60cf4a7f342c568ff342cdd65fda6383604d80b33e8e686218937c7c31e2f1d49eeb26d0e1a5aa863423921dad2079fd2e0ffb172a706fdaa8a5fb5dcec

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    61b081576456fdfb7ca49b792408d622

    SHA1

    6007f3bc2e4843b3cd72066f531aec29895625f6

    SHA256

    f62c0055d55634d9ec244080371073b5c896423f85578092dbe7ed81501c0e1a

    SHA512

    1922879356382ed2e515c35c45450d36794deca7eb2e70f0a66b746754069d7c756ab26e655459434975796d95bc35dfd0d6de7578692de967f9706743c6bcad

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    bab3d2958c4466c2e22f8f95f20a6907

    SHA1

    95f230895190e792727dac81349882b326d096aa

    SHA256

    35f79d46d0d144c6d38917994cb60f510aebef41def26d0d84641335995a881d

    SHA512

    f944e31b8b9461ff58c79711b1e099d70a3507e9a303d9ce849e527fc9198de5fb0524089e6d4173ced784964e47998d6b66d9f3f000d53d32553bf0238c19bf

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    5a24e618b2b283e57e4dd88a5f01049b

    SHA1

    feeca52875603ac5e62733ba04015f80e08ea9e8

    SHA256

    2257b4cbc4702bcd8c8589044ba487aa3ad9fc626222f6f484faa696965d8b5e

    SHA512

    0ae48a3e67987c05aa5f14029bcd5fc4c9144cbc57e34a038cd462fc2572f5949bb2c61784e2d90bb3259ddd750223a279511eeee4e0ce868b304ed49fe3b7ca

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    7a597dea32493066957cb5ec2759d2ea

    SHA1

    fbb4b5fc0cdac991253febeac2e10e2b83099e94

    SHA256

    6a8f3962e48ccc29757846301ccf32c0b45ceba7b3d7d89839c8685cd0954393

    SHA512

    0bb233e546ffa2188e146e451a9dde7736ba9bc1766a849980ccb6ac2a388741fa1318cc03dfa5308d63e4ea5323afa4138933d345226f86915a549baa9d476e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    f8d5f7e467bca7ac5087f79d1239a053

    SHA1

    7d2e2c1a95d15eb12dde761f6755fa738e0c08f5

    SHA256

    9eaabfc282985c55a386616ebeee5970117fa03c02d121c29defaa4d929197d4

    SHA512

    1d22b0a04421693ea5746ea5402469702b04c295279e06c242914fff4efcdbd9deb6dd384df4c66fac4268efad8a0f53ff1a570175847559f7192a94ddabec53

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    c0e2d795006b878b3848c9b338614781

    SHA1

    9dbe0a9c94798f9e79d79085dc8d171de0be183e

    SHA256

    cfd9143239a4a74b7e5d0a9dec69e107184bc7fc244d9af453b73b7831b836c1

    SHA512

    94f3e8f6b969095264399a717cfecdaadf189c500d53993b3b7948f7f9e4a8169cb724b948a5fbb1f1adaf46389de6c4cea4b6f3528c1aee5f4166e7675f57bf

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    c3d20bc4462e5e25c22fa33cdf2d033c

    SHA1

    9892cac4c4234779168b06248755933f213f6241

    SHA256

    55dc507b8be7aaf1873d5ef939f44bd75a97dddd65f82dd9a26be1cd5fff318b

    SHA512

    ddc5fbdbe3ebff2f2263c84651e0cc94afce16c4f768aeba67fa82534374191b33cd1e86d622730aed8783d6bac0993cef28c9416d77aa7bd8e649b12ef32755

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F0ACCF77CDCBFF39F6191887F6D2D357
    Filesize

    242B

    MD5

    39a5ec0c28ad63bc4e6c9e494ec14c48

    SHA1

    95ca461e852a23f3cdedceb60b7b384040294953

    SHA256

    5f00b206ab5b894881054943ba66e4a651bb4aa2d80cf192add652f619d1c1d0

    SHA512

    2834724d7f36ce59bbaf4321a6a47a99121ed5e1d8cee9b5314a02bdc3fe0de12fa34bf9a0cb6ea214c26bc6abfa31d3c9ba63f6a9f8d14ffd9c7760c7264939

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\4RXRX1VH\1380534674-postmessagerelay[1].js
    Filesize

    10KB

    MD5

    c1d4d816ecb8889abf691542c9c69f6a

    SHA1

    27907b46be6f9fe5886a75ee3c97f020f8365e20

    SHA256

    01a956fa0b3ea8cb90d7032608512bc289c4170bf92759352e40062d5be2946f

    SHA512

    f534f057e46998bd1ff2c423ad2cf04a880c4a5259e95aee5c6ae34ce7121ccd07ad1bce5d4c3a51ad04f7411b0625da78808326b13d2aeefec502988e113113

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\J7FHNNOW\cb=gapi[1].js
    Filesize

    67KB

    MD5

    ed72d618fe48f6fc42c19a4b58511e72

    SHA1

    80a2da4af91d56ec81c7b672afaaaa72c83a4414

    SHA256

    5bfd37a756bc7772aa6c520102870dafe2d3b808c562412e30f122a7908f8ad0

    SHA512

    5378b71a33f67309f788b9fce32daea44051e7e9a6aa326bdd783456ee9eb2f4817aec2ad1e837afc1853acba59080b0114d32c040ea731ebd703f0a84dd7ae1

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\J7FHNNOW\rpc_shindig_random[1].js
    Filesize

    14KB

    MD5

    9e5f0b21584389dc1c7b5da4a900879f

    SHA1

    191b84e0f5644398ba99e0aa141a6778c14b83bf

    SHA256

    3e21bdafa913fa25276358db1269238db3012ffd8748626cdad442f838e890e3

    SHA512

    c1720a420df680bcc46625355ed6d5c35ae280a813692a0fa293f3ba113a023808a781f1b8c9dfeb3ffba29606e1f4bb4be4233983089602e2d2c20786fb0427

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabEA12.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarEA15.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit