Overview

overview

3

Static

static

1

dbc6a700d6...8.html

windows7-x64

3

dbc6a700d6...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    147s
  • max time network
    154s
  • platform
    windows7_x64
  • resource
    win7-20240903-en
  • resource tags

    arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
  • submitted
    12-09-2024 04:02

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    dbc6a700d62c7932576d8b7f30038d04_JaffaCakes118.html

  • Size

    38KB

  • MD5

    dbc6a700d62c7932576d8b7f30038d04

  • SHA1

    5d74d95379f995bbf11a423fd6a9001415382777

  • SHA256

    6211f6b1fdcfc95b2ce53eccbe73566005a9f387064d19497ac1a8ff6af6d671

  • SHA512

    82cbc846edc6187ca22ddf5d90d1296163ee252c6f6f59eb70933123886e4ab29bfab80917716c439a526aa86ada1933cdba2b78046f2461d904d6a5b3906340

  • SSDEEP

    768:oyBq/g/VbuAfukunuDu2usu4uMuiuSfu0u0uQuYuruUu5u6uHDi025rXl8tE8cLI:o490Kux0xCsuO6D

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\dbc6a700d62c7932576d8b7f30038d04_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2188
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2188 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2780

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    c1d504d759fc2a1e6c5bb724111c3700

    SHA1

    bfa47f860a5f1958e9d8a488bbe8eee36b0d0700

    SHA256

    9fe123e37ee4b2b4ce65b546fdaf68f8930026bb98e7eba1dec2858a255ed8ab

    SHA512

    a4278c770783d908b372baff9c06c89c724bced8eca86eb7e380234b8ee15685ce3bd5bce209cbfca3e19c1b26be8fddf801d02221db009be7cfefdcc5f543a3

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    7157cb59f8e87e628f36cfebe9c3be94

    SHA1

    ee8be841715df30a941f6bf7a4427774f716c882

    SHA256

    a18f8a99937b30d91a61f34f5711c20fec83756e492d96ce17efc540a54f6924

    SHA512

    a6534588d957248048d680229aa51debdd332d69ce4e4d6a1167d356c0f6ad2cf261a9d96fcddb08a517908606ae5b6dcfa6ac32038ef39e7828ca13d7005164

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    bc851cbca3076fd6aac3077dfca9a86c

    SHA1

    4fd5bec4b7dc741bc10c724b44155db02623eac8

    SHA256

    d859ea238d48472997c8d834df3280a56acc565340955456da66d05936e8386b

    SHA512

    e7151568da9d9138ea3dc47f534b50a57434f1bcea0fdc5634f11ec88ad86ba661af73e8abff905d607bdf80aec699f8c0a69877e03227bf953c2eae0e8ca239

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    be32fee2197bf551cf6459c81a956a2d

    SHA1

    77af14ad2b9f423244f56ed0591d154c3c4b6c8f

    SHA256

    ec7c14aff057ebf333d4d3c9175d4f8e8b6cb1ae5fe9f84016be77a13897ac97

    SHA512

    d6c9bb40be3257154d6e1c828c364e6d13af15aca1e90e1374d95511ce7a24f8a8bdff50dff390e8892fb533f9a54af4385d51d0daba467aefd457027318a688

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    95f6a7a69158859677f96774dfc6dfc4

    SHA1

    4b22084328d1c1e3db6b9d7b40504adcf649c8de

    SHA256

    4a15d6cbad17544c155aa8887062b3d9bd09485fca79d30f5c38153c5db87aaf

    SHA512

    fd5d779e788d875385e74decdc6c1fc4ab8f313e34cdb327b7bf9d98a56c163dc698964809431ebeb161cad3ae2413c3784db859d5a6fad14136b67b9a6bd9ea

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    1f869233bdd255681e6da72178481a63

    SHA1

    4283a742bd320699caf22b482111436b99fe077c

    SHA256

    a621e71143167d9ef6d3d23b05a668c03848184b20cf47c415ba3f37fcefa7be

    SHA512

    b7d32dfd08234f7edfaf3070f4559a48b24885b95fe3feaf2f29e6e2ad39057631749d1daf3d167d3afb1925f2aa35951d3f75901985cb7819bfd5586b45dd0b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    8fb72545d913e4c2d82817c0c774f558

    SHA1

    6e1eaa6f7be00b78c296a9c06a8474afdbbcb563

    SHA256

    742bc07491d3d77e00347b22d7c34faa0f710273d90d29269a579ba322a230b4

    SHA512

    ca793212bb3ff46656fa0f4cea868226102189e3ad31ae2ebdb9d2f3c0fa66bf5e4d203bade75c0edb2a07626cb13e911476b6bda16a426cee00df7e7d7861e1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    e61e397382c5588e5d0da09ffc612ba7

    SHA1

    7f4a8549e876a4c12576907d80a28b8d9e8c2744

    SHA256

    e650bc509ead98b0725e37afa85d16213f3b6bfe645bca73c35c530c46970739

    SHA512

    ca302981e80052623f2a341529cece6af94b87532698cea2352fb737e66ec13c30e096a7eeae9f4bf8ccab0b5236eb9d64af31bac86ab8515e7da8c96e9233d1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    8a36e2f974b0c19968995ce66485aee7

    SHA1

    11464965524a05a415c7720e4938c591a86178ce

    SHA256

    b39c888246f1180eda6574828d605ce434b53fc05f50ee52d691a5d8fac91699

    SHA512

    626b8063184951889a463cc1e3de23d022a511b0399bb01daad16f342a5c4545592d5772fbede2ce7fb01118403ef619cde15cf77c86ed8e3f7f21c49b33756d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    ae2c615dddb5370139daf0a68cff4fd5

    SHA1

    e02147d830dd1fb22e018439af6e38a186637b05

    SHA256

    930d3e4ab72652419a4a6181a0062d82248cf7e263e095ccd0960e12f935276e

    SHA512

    330c8b0bebafbf240c0ae493c2539bb1f15cb0b842afac1ee4ad43706033f3e61980258a21ea0464993084e54dce40046a1c82abc554395014cb558541bc5add

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    c66a92b607daab074ee9387d1eaea6fb

    SHA1

    a0b91e56022abe6eeb48f9d031058d96021b10e6

    SHA256

    e4b7d3f543c90e86a3a9b70f24c8a1db2bb5ef327af5104acca1ec2376597b67

    SHA512

    8397be01ba2f74596b57bed519aee4d47f2d701275ac3001072dc431cab50629c9ce01b2f3b292e4fa3e9186261a2362b73a5ed50fb226b9d3185f89a145efa6

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    5738a3c20354ac66afa0cfe9386b1bd7

    SHA1

    e74ecc33b83b6365531b393e67eb2ae814715213

    SHA256

    c6703fa9e4155fc3f67e06648e068166e159f5a6a92d231766c286abfda4063a

    SHA512

    020e56ec12da45fee9b78909e940194b45df46b894c414a7b6ce7e18393af9d465c31aed8847ddde954e2e98f9cdb79470dcecb44d1829d29cd616ad31aaa3b6

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    1ca23a998d39bf1ec0c01ec69cbe11c1

    SHA1

    c843338df5956de61af77efaf3714339deb2cf84

    SHA256

    21e633aafa192acd1bdbb44c9b09c975c21ad96382c241bc5a833a085b84e1c5

    SHA512

    9ced78bb9674337c816b583e61c0f5ed2be89fffd8adce93481c296446bc1b76cddf243cfde1becf8a0663e79263a829f5b3a2f7a5d2af205ffd4117b796936f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    b244f6689737dfde3c3471fcf4014a52

    SHA1

    f6bc4986ab602b68ed38394f4e84c9a5628c3c08

    SHA256

    50dbd32500cf160fae22c61236fbb84c51af9e57744ec30bcd2677730f5dd1a0

    SHA512

    8388f97bda9d02a4c99cad6adc956a59e6dad355306bd47f4fb842e0ba690dc6604a19817b1f6e4d3ba617aff4ff59f02a7125dfcf32761e2a26eaa69b95d758

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    3253b1e06e6d460ac3b2823017ebec36

    SHA1

    03816bd8ddc18ed5b2d597913ad7c50a0698f22c

    SHA256

    d50fe522555f356e626ac7100685e733d86f6ab9ec111119e42bc6c27145c587

    SHA512

    04dd6e590470a2d1fd3f651916f1f3ab8bd14eaa760b355b53df75ce8fae60fc60d432e70162bb5c2b53ead63fceceb383b1d6c5a486e481cc8c155358fa9a1a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    e426b3b55b9c4f8342011804d8feee59

    SHA1

    65d81a44fc28e4ec15aec8b8e1f736d67236350d

    SHA256

    f4b36b632ab6f12137236fe1350225979b12c154cb80ca63aa396f8e1530a206

    SHA512

    521917fbc574dd91b927df04474117fc73c498061ce421479601fad32d898343d104be2e8767063acf779f35c6e82329c187eb056bfefef4d4bbe8ffdb72169f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    567ba2399b8d0e22fafae60c996caa93

    SHA1

    0944f9863d8bd55abf367bc614993a9f03248ee4

    SHA256

    e9e1252d327c7e6ac760b50823637c436bbc4aeda1388ea5435b0e0f5ccd829d

    SHA512

    7a5dd19cf44417480a7efb5c02704ec3259537b4de24e40c9b5d08e53d28205ca402170ea69744371b30f54e7d96089a8c387f9ad780ff8d13401b18839e448c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    0a26b260f77ceb70e46ec9918f17bfc4

    SHA1

    371ee6ea1191bd7f76224e92540468fdda6a4eb8

    SHA256

    7e78b17823f238a24300b774e4eca781ebe46beeef1694747c7b2f7ff00ae6ce

    SHA512

    e76b41c42d52a0f9c770537ecef3f787f571f644d26bd9f78f79e569c43c23beb6339a6d7dcd9a5488db178249baf5d359de7ed655195cf440c018ac711d0c5f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    e6db25343469f471057e516191aa72d0

    SHA1

    75ffb0801979bac84909349fc7045e0f06b42b0e

    SHA256

    e72389be99ef6be21564ed82dcba65b186f0431f77057881f36274a26def21d2

    SHA512

    c6bb50045efb4a44784b22066858af7d3beda1e62467ec6e8b34528a5981c50f424f5e1fc95710323d50c3c80efff2388c77126806e3776ddc487094db364a8d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    52cdc53ead584058a5650589328c1a95

    SHA1

    08379f2e06368bc6dbe7be5b43c10763d4e7adb6

    SHA256

    5be587472fe4d2c714e8479101273c24d3d1231c5be5fcbef87f9b0b96463ed7

    SHA512

    92679932b02337d2721bf0a7613c9d657b80562acc16df7444afe98db802f4ec5451d0db9c7f4efd9f7b8953c39dd0aec5a68c71cf34f3c9539035856e194191

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\1LNUKNV0\cb=gapi[1].js
    Filesize

    67KB

    MD5

    ed72d618fe48f6fc42c19a4b58511e72

    SHA1

    80a2da4af91d56ec81c7b672afaaaa72c83a4414

    SHA256

    5bfd37a756bc7772aa6c520102870dafe2d3b808c562412e30f122a7908f8ad0

    SHA512

    5378b71a33f67309f788b9fce32daea44051e7e9a6aa326bdd783456ee9eb2f4817aec2ad1e837afc1853acba59080b0114d32c040ea731ebd703f0a84dd7ae1

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\IAE3FJ0M\1380534674-postmessagerelay[1].js
    Filesize

    10KB

    MD5

    c1d4d816ecb8889abf691542c9c69f6a

    SHA1

    27907b46be6f9fe5886a75ee3c97f020f8365e20

    SHA256

    01a956fa0b3ea8cb90d7032608512bc289c4170bf92759352e40062d5be2946f

    SHA512

    f534f057e46998bd1ff2c423ad2cf04a880c4a5259e95aee5c6ae34ce7121ccd07ad1bce5d4c3a51ad04f7411b0625da78808326b13d2aeefec502988e113113

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\IAE3FJ0M\rpc_shindig_random[1].js
    Filesize

    14KB

    MD5

    9e5f0b21584389dc1c7b5da4a900879f

    SHA1

    191b84e0f5644398ba99e0aa141a6778c14b83bf

    SHA256

    3e21bdafa913fa25276358db1269238db3012ffd8748626cdad442f838e890e3

    SHA512

    c1720a420df680bcc46625355ed6d5c35ae280a813692a0fa293f3ba113a023808a781f1b8c9dfeb3ffba29606e1f4bb4be4233983089602e2d2c20786fb0427

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab14C9.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar1559.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit