Overview

overview

3

Static

static

1

dbd72b0785...8.html

windows7-x64

3

dbd72b0785...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    122s
  • max time network
    129s
  • platform
    windows7_x64
  • resource
    win7-20240903-en
  • resource tags

    arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
  • submitted
    12/09/2024, 04:50

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    dbd72b0785f146e64b2989218243f30a_JaffaCakes118.html

  • Size

    23KB

  • MD5

    dbd72b0785f146e64b2989218243f30a

  • SHA1

    5e561f416727d0bc7975117c7943f56fd31e8834

  • SHA256

    e696f9fa94c52dc6345a51d6a06284ba4d819a93ec8a3a21ab47cc9337823787

  • SHA512

    772e620c94df1960ae4fa48c58ea3caea31ac7845ffe869b7d88350e438fa57ff59ee06f38f18009c52f2c945903243f912800d608aac8a3f868ad5dc365d2ec

  • SSDEEP

    192:uWP4b5nmenQjxn5Q/FnQiewNnQnQOkEntj7nQTbnxnQyCnQtqwMBQqnYnQ7tn+Yp:rQ/+aMce

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 41 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\dbd72b0785f146e64b2989218243f30a_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2936
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2936 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:1072

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    71856876181fd937d38fd44cbfde1281

    SHA1

    71c0bc3fa1c34b959555851a25a052449c541462

    SHA256

    4b4d889f93134b62b508cdbc0b11b1aea6465e3ffdc4b5266b707590812065b5

    SHA512

    78c1308319a4343bcec945e049461d0bf51d4bbffdea68c3c7dee6c4409313335d8ea4d831d13bed2d9f9a7762c2e5b3e0607be24b3930dd8007a5fa2a13fad0

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    7117c78ecc16a0e0941f616b8f6e4c71

    SHA1

    99f18192842357636c773b451b9651a2e1e40aef

    SHA256

    0326d2d963ed90c4ed66afc7b9677582dbd7114c086d13b4d8ad0ddb89b960b7

    SHA512

    f342f72f52582ce16aadfb6b2ee9bd8d7553a99dfeff264a71fd5ec33834206ae6870058922ebda8a7324cf53f611bf0b60b6540fa45ffa6da8b79730795f128

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    9796b03d0b812d8de4b2c80094749811

    SHA1

    e200f22f6d81b782fd520b344f6640cc543e762b

    SHA256

    a3bcdade87d93df5425b8569904f9cb1f2202ce961194054558bd00b677eb50b

    SHA512

    e93c43b091119f2864ca306315aa8fe357340971c9c9e7145ffb91984ec645c0585e016e86029c909af6c2f96c08fb656ef173ccf855bd71bf4469ef848443d0

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    cbfdb009669af6393b84c8b80b8fb47d

    SHA1

    dbe46424cabc6c212c81705bfff099cb456cc1f9

    SHA256

    ded264c74b1ff59f71e84b6798b406d63b5845e8bbbcb17f9bab773691c032e1

    SHA512

    16fc1a092353e7c97ff9c80ed220b93aab752c9f4964dc5b2d80807372b80dc8a39e39e565a4ec00e6c67b0ebaaf0197e62b49c072e015f94692e5bcdfd78b3d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    402ecce5c541e9815711203dec1ca067

    SHA1

    06fed639117279269890b157d53737d3ecd7308b

    SHA256

    8adb7261725f6797c57b6ff0eb7bea25145cbd489a39d685effffa53622eac12

    SHA512

    7f4dae2d9ea7a00158466c85b814599cd06f48e5b694307152e66e752b5d9691a473d6750a99cfd8248948ef69bbbc6aa660d029178594ffb418bc41e9741f20

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    54c9ffa72ad27f7bc1c9cd70c2928808

    SHA1

    7f08502b866da24710441253d2ec63149f090ae3

    SHA256

    e033c9802b53521d206cb7db6ddf6d14e7f093971d9eb24d93f6d00007ca26da

    SHA512

    7c04031070254550b39a7f991361c81356c549ee1d00e8d0bc635d68980e26bc98a95a12b67622a404ddf6df03c067ac7c5de4ae67dd6b3bce55521cb48626a2

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    bd76d2c5475897d3ebae01b53b1f713b

    SHA1

    9a0ad7e49fb5eca6113970356a649d9c498c5ed7

    SHA256

    efe2b83e660b78e91e8d03f16095f6ee3ed2bfe5083760c2e7ddab4d3aa759a8

    SHA512

    c20713a1b6d7a8d7640a05643f09fecb1ecf0e9b43e1a30e68669c390405aa87b48c89e06a3e71b9dd548f65d4378c904a2871567e4e0df63b901c9a1eea6276

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    279ff4bb4cef0070485342dc153533f8

    SHA1

    abf7d5a782d0a2aa3ca84123c5a0bd0f1c48dd9b

    SHA256

    d86502f72406f266c0967f5e87c7fcdc2cf3d7174c5c906447c4a9426af03eb9

    SHA512

    0c5485cd1ed54f0bd7afec3034d054fa25a4b35ee0eae9b5b6b5a70162316532fc5f6dfbc976a17185238ebbb4f337b87a6488800206f6d1cb8494ef87bcd59f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    e73a669460bdaba0233c23fc77d0dff5

    SHA1

    e678fbab206a89b4df7174237a585fbbc595b287

    SHA256

    2d499f084d6c02ad215baecda65f8dd595b23f5b820b4e8055606d1b81894d22

    SHA512

    2c06887ec8a73ddc9480b663412a4046f2aa5b59736a839e5b6279ed5f464a65f3c5a169c361ab85ea31dc5c3df9836adc3ee8c9a5bbfe500ce61069422705da

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    c9aa3e7df4a30f53fc80556512915206

    SHA1

    78dabf90c7758547ebe2f97dbc6b4aac6cc30291

    SHA256

    fb36a445771714e62c11fd572e7dd9ddfe4b4a9f8b451175ca03d05a0f70d273

    SHA512

    e88dea937f15d04bac443ac5fa0985a544b85672ad37bbdf4ad5a4a25637936cfc6e862faedf3d3f967c14923cc3002d8b775cbc9e6decce6b311476da05bbf5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    bf37ab8dbe6ab6d659aaa677b413cf00

    SHA1

    743bd7dae474b7a5181592c91dcd4bdf13e44da5

    SHA256

    8f0db3247e9a545ac37db5bc3db4b5fcf695ade02932f85c9f319de9e7175477

    SHA512

    5333f76e2b3e9c9877c7eeadab1acf9a89ec8dfc29f3775743e7c7340a9090e7438317eef6c60af200153a956016a03de42f8d2a2052c3023a3a04df6dae8ab3

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    f77990f73be88433b8a3447c99a6e5f4

    SHA1

    fa59d624d802458f7cff755d6d8cd6adb7961295

    SHA256

    309f215d5a350618e5862976ea65519a3ce226c9ba2d8ae377f3342c6435a4d7

    SHA512

    48063a8bb53698c51e4e0791043af0790140fdd98fe190852076ca660ce4e77a6b14f14f5ddf5b4d2ebfc465dd4f45087845f38e87fb967ec88146eb24030b74

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    95aaab251a734eae8c14e7ac1fd6bde1

    SHA1

    d60d4112a06549826960f146f24f4d93cf809089

    SHA256

    7eddf9eea5ca26095a9a33b0be30ec92b168a97efcbc0c52c7edb5cebf64b8c2

    SHA512

    f5ecf803b6e1824c7fe80a0f638cdfc933e5d64d461d8b9e46e2a4bf5f797dac18656d5313145b229bd2a32b66c833fba2c7f2e83e343a00ac6e22179fd0606b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    776b5eeae71c0c7cfe60a6b617ab49ee

    SHA1

    dfcb89270abc99526c151f9398c37ec2c6c9e37b

    SHA256

    9e128feb03859b0b3403fdbbaacd9b4aa5882729a20864b48c0fa495baead44e

    SHA512

    f897279300dc7ecb9a7e09c1e6f171445fd4e37d318ff16157639220c2af47f662bf7c3795fa4e40d7d265d4c07d12739cf30ecf14b840c4ae78ccc355206006

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    f493f0b4ef25da00772e085d88925da0

    SHA1

    ff64cd949feba289bc836dcedc811d1ef3a172d3

    SHA256

    3f69c94813343baae9df4b0b407d72430544fc5fc5b41dead830dd1db75281e2

    SHA512

    4f9e0441f60a8fec74901ede797b563a53606202806af37fddc20c864278ccf262906740d295b923c9c38a4eef6019dd6499cfc24c276b2c19121edb08b59927

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    91e142e11b2683057fb7db95857036b1

    SHA1

    25da8f689358fad6324eff3f9bebfb220e923b0c

    SHA256

    404064937eb94245ad54cf6ad181d6b1d8216a06e98a104cc98b5d53b39022b4

    SHA512

    1f3de27b5900336756a82244eeb04ae443e63a2ec64dbd806f0ab4e39f79c53e6416f00bc2bc10ebe05bc75060d339065adcab82fe595b11eb36995868e106ce

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    48dacbf00200594953d14b37427d0ba3

    SHA1

    dc0c227d94490dcd78cc0a6a80c623a75afc1582

    SHA256

    502eba0984c9aa3d840282bc57db5706ecb045e569c9c7a5f0365e0e60af9b69

    SHA512

    b35c2ce513e20c1bfc5c0efc4bc86df86cdf7e6641a7d2e8ed6e83ee44e1e7812ff46fa21a8abf21b2fd7dd901d7c3bb149359cd7d1b9feecedc3785c690e8c3

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    84988a3ba5b6c7e9ff2b935ae6b1b737

    SHA1

    d637eb8398121d75dcde36160d7684757be41de6

    SHA256

    b36da44d1d85b5b09813c8d7b31d54363b42657e0e2f6dbf9c08e408fd81bb1b

    SHA512

    b6dcc2c67d0fbb226cc9fda5330287661b07e77e4f541a4e7da9adc4cd00d6f6945c0ecf0cdbe11d4576d73152c1fa86a993499efab1154ab2158937cdd447cb

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    55d6c014ed96e5d02cbc6a49769acf91

    SHA1

    c21b8a14374c6f012f6df1859dfbc8d835f5fdc6

    SHA256

    0ea8cf1db670d17c0640892d4c6d0e3b7132fcb85386d192cfbc39305c5d5a09

    SHA512

    099c095f57b3a16a41fc92895c00529a5664257f605b93872e9f839054a1effa17a4044e394b9d1f231d76d7d30a263d7d72ed33d04f29d6634305b66243d973

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabE17C.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarE1EC.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit