Overview

overview

3

Static

static

1

dc00eba249...8.html

windows7-x64

3

dc00eba249...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    133s
  • max time network
    127s
  • platform
    windows7_x64
  • resource
    win7-20240903-en
  • resource tags

    arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
  • submitted
    12/09/2024, 06:42

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    dc00eba249f71ea7c5212999e16d77db_JaffaCakes118.html

  • Size

    1.8MB

  • MD5

    dc00eba249f71ea7c5212999e16d77db

  • SHA1

    b32f5f54f67e5fe143f8fe0be0bb4e641d3a1aad

  • SHA256

    a38533c53df59591bd55fcd83fd35d582ba7ee11f91662a147236063a0c19d15

  • SHA512

    5034f7c8851b35c559f42efcf3cb4a0c1ef859dd2a73fef270ad229266444339ec289e31488a1527617242f6940ef584fadc749edc8967cecdb1891087905931

  • SSDEEP

    12288:W5d+X3poCPuzmrugwG2qMP5d+X3poCPuzmrugwG2qh5d+X3poCPuzmrugwG2qZWK:U+aDHsm/+aDHsz+aDHsjU+aDHs1

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 41 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\dc00eba249f71ea7c5212999e16d77db_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2096
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2096 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2228

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    a59c0e928c2a5faf02ba19e8ff7284dc

    SHA1

    db009ddb2d7e9566ffb2e2b26e82c0c28eb1ef29

    SHA256

    9d7f135a2408d9edf88454aa7eda6e9298e10c92a542e09428cae1572a783185

    SHA512

    cf309c3eb4d1c6e525efb5464312ff0727d050ea884681126d8f9330625d388f10517aa39a4685f94410cdd59048538a43f6eb1719b6232efd259d4a81f30565

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    32ba722b1ba50f64973f2355781571ed

    SHA1

    6a14652f27c4830f957ec0b5ac736c8c90714322

    SHA256

    e6ca6824669c465f6acdecadb86931023fb1d41eb45317e1a32b5208041d48c1

    SHA512

    5e3f5fa7d5c495d2cd5f286474f3233a9b68213ea99899236ef3663d0ca1033881bac1c7669ceb600cbf57c0b3f5c5a554ccea6bef616119c0e1e9e37f897f33

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    de8ab471fe00aba34510ef17aaa32080

    SHA1

    308dd7673a232b305f3f5b892fcd3a1154e8b816

    SHA256

    269431497ffb41964a181e4dbef72877598a5ebcd657ee040bc0e31fcdbbdaa1

    SHA512

    96c9e5f326ebcf160f37f1013ab2de8d84f5dfef9cb2df94a690a23fc36632fc06d0ae886ec682c52d574dd040a4f9de79bafc81fa2f65847006848331c80cf9

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    473dada7ce9cf651a519b39406f90c30

    SHA1

    8ef9d27101600a8e99fcb15d73ba1b65ee709b43

    SHA256

    47fbdf38270a2c28140c4d2c9d0bc23a57cbbb2058111b7f5ab2542c82b3ce67

    SHA512

    f34ca1b2886df8395c8233ed1cbd4f4c2d267b812d31368e0a0e7e8aef999716bc40a01a200c9e67fb67cb127a48667bd724f1eb402a223f95651fb6a4181ab1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    55b213903b138b4f6cccc7b957187599

    SHA1

    3e40199e6cf87fd7924ffc0a7a6aedc12251386c

    SHA256

    91b166f7363cdfa9de1e59d14ca688f4a12483696f28612031441a99e84072c3

    SHA512

    09cd5c440a66186ffb0fa6aa678235081df65d27365f1f290bc485b488117772d43a1559cdd7bfdc08175ed9a9b2b60d203f23d533e9132e4f4ec64bac9c3490

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    40f4363121f15065a32463038f55b697

    SHA1

    4823af38514dca03d10b754d090d1200457d8d3a

    SHA256

    0fbae56fa533140c8f484f4a298737a84d1171d566db84825065aec10e0f51a4

    SHA512

    b7bcb9ee8f4a751bbbb0ac8e8c1edd4653b88b9ddbf66d6f9046103f41939f940ce2ffaf9b147356398a3d6470b5ac4470c41aba8f38f1a1d13edfa54f20d50c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    dc91506d46241f400490dad1c8dc40c0

    SHA1

    68c3669fb66a9f3d549aa9b98b6faa6a15c5e199

    SHA256

    891f5bc6249a7bfe256aa91d64a02d06f78a35aa3b356da64322527f4a212be6

    SHA512

    8c38fafdd74736de754b0b71a0701cbf498c29147ccaa81e5ba0f931e28aa731396d4523e210f2915ecaccfff925b594f10ea24852e436e8a23c975f32aad5c6

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    90585494b8da2e78f2664433d9c35673

    SHA1

    871fca1e9dbb6801218cefd8306c95e43a4507e3

    SHA256

    c952215b34b0686571ce8cfc6ff412bc0e4e825e26fa1ab6edb71a5f1b078ac6

    SHA512

    8c7bf8008c01936155c580f3f66b3ccee70d3109f4f34f521947d24972c86a41cc46ead64e12a2196c4f9e58f6f96538d245ef9fea720d527e5d60314b149665

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    771cc620a9782139e578b0eb2becceb5

    SHA1

    375964656830e679a075360a112cb9a5d31391c3

    SHA256

    90a7de04ae21ec1d912a3f378c3070dcd9e89f210b9f084268616c8eb9b975f3

    SHA512

    836770405ba558f4de81b476aa95bf2c4b4086ef4e57ad8a85e20ce46f5b94a40f6788a6306df5dfb1eedb36e2472cc1cdf44c71b2281c2ed973a1505d42bb85

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    43fb078a60286bb36cb7fd5cd6fc2495

    SHA1

    de9d32a972f69ac966262a512224a4a1576471b3

    SHA256

    f40586718c295dec05052fb51d6f8601557462b639d456dcaa5d8133164b1a41

    SHA512

    cb7b679d6ffb70e25583aa67e64612c0a1c8bc920aaf3633934b5af58550d2152ec581d4f44ab7cf45e2f55e9b6ed9a68b610c9619456b1cbcb2d8342fb282fc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    0a64108e94224c21c6487c5ab805c4df

    SHA1

    057b679a46a027ca5cd83ccaa4ddbac3ad5bb53d

    SHA256

    d90b1782bff3e5225710d20b535ad2df71cd47ab59dd73cf0b9f6f3f74843350

    SHA512

    31b394d4a600bf87a844661c210957441d5cf2b540889635e2ac5bc320dc729691a7b1ffcd1b3bd3ce671444044166f8a89339b177fd38b476452454643990b3

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    87cf8572f1b68d8d72beecd343dde436

    SHA1

    5039ef413a2e2f50f77ff60d74f61fe8d4f7008c

    SHA256

    74cfb3db5d423d1bc8c68b459f6896047fd421cf125968916c8f77c5def5b0ac

    SHA512

    7bf8faf1687374debfe18b18bf26bc62f480a118a9b6f214c2bd87f5b9a6d495e58e43059998f63dc5520907a84e69ce83110a4976a4abc87dcaf3ddac4ed023

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    b98880a7d2dfba8898a3372ac3ea0f09

    SHA1

    69cebb678c09a43dd08342fc0488de54949bdd3a

    SHA256

    b55da957331cb0c4da5506f6dba57d3bdf2d173554f44f5a35533b62e0c9f632

    SHA512

    c1b724da13d881511aa54d221945cebf3966334065c41e03e12b84c5cecfca417428fa6cd79961dbed9ba942ae7d638573fa326b25ebc4d3fbbdb06d42a0cfb3

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    edc8854a06f8a9b40f0fa254f39893d1

    SHA1

    71448686678a10a66d602e6fe17aecde6286bd04

    SHA256

    78118e6db1c9ca33d5895dca92d9311fba954fe4388ba8717d43c6a9a7d5a682

    SHA512

    e8a18ca028bc9ec6f6f7c7ea0b82b2140d692a99602917f1a23a001166b1a5ddb5aff31c3cbc1d2c00a2424ef09b59803b3e74777dbb74318d313fb447877cb7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    bf4a1879e9552b3f775400f4d90f14c6

    SHA1

    3d7d611f67d7236ba846d0aecab52636184f8696

    SHA256

    cb1d8330100f5a32690164548bb8baa664e8682b901adcfc3e6f70e7e24cd9a9

    SHA512

    68df0ccf5eb4ddc43d3f80b793956cd566177b476b87d8e56b08317326146ba154c169def043cc3af33f985807f46ee76e2eb545eb9c027ad9646840f883cfc7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    0d55ff3b8ddc80ef9489f47d78d09a79

    SHA1

    11841394eb0531d8dbd303535077bf113eb49ec0

    SHA256

    a35d201affc7ed4346cda6097137fae1590252e2fd3891fdcb918d1853b1065a

    SHA512

    744dc2740c730fe2f7d2b11d9410dcc4f40e00f4b1e8e45e24809b62d7211312f8818a29c695823fb3d7328af2ffbe1f584811c636373fd2bf02aea66d2fe65d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    c16c68f24c18d0c39c8bcd5e5e1e9640

    SHA1

    70397ef220b62e6e0a21c30e3034e7abd4c55c3a

    SHA256

    53b8d5392a5a77852178d1db0f357acf18fd22e0cdc22df9a7cd6c804e30688a

    SHA512

    6147691fb6ecb5be69d90049b2d83dfe7dcf9993f3f54775bf9e8c47f3dc18418a9f8172c2091496a8d1b77b024165143b04be050023d3b66a199a0ccfed4a6b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    414f568693dd054dc6053b888c101818

    SHA1

    c375991f7c2d57e620b38274df6089ef145e0387

    SHA256

    5cb0f9f185a68c932d739d7fdfb204c1ec5336841a17e9f72ad623188b93bd05

    SHA512

    5de73d0a4b58f8906d659a83307c2a95599f0054d91e9b8d61a38a13f44dc7500137699e2ee16c6497976bc8cb6556cd5b51a7846c35c0b95b3d6315f88cd0bb

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    2e78ac46b2f9fe4d47bae05de412835d

    SHA1

    679d21c009eda78fb41ab6afa67f76bd3144162f

    SHA256

    baf6ebdc94aeab6e4b94349601b7f31584386037c57e24971f9911dbf8a9171b

    SHA512

    3675b17cfbe805c2bb3b1eec855be4ec2bbe7f94d49c0253fb99f645e2c508a368cb68aa81b47dab3447c932ceb1d91ab08377b647dd583d1734ffd27efce528

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab12E8.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar1387.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit