Overview

overview

3

Static

static

1

dce4b5160f...8.html

windows7-x64

3

dce4b5160f...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    136s
  • max time network
    120s
  • platform
    windows7_x64
  • resource
    win7-20240903-en
  • resource tags

    arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
  • submitted
    12/09/2024, 19:20

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    dce4b5160f8fcdb2172532f42cf8187c_JaffaCakes118.html

  • Size

    170KB

  • MD5

    dce4b5160f8fcdb2172532f42cf8187c

  • SHA1

    9484cdbff009c1d2ceb4604f6e5ba39104c82d2f

  • SHA256

    a7bd9d410053e99c0699eccdfefc06b5896b87b7473ac604941c02c3c2093486

  • SHA512

    414aa73822d78f83aad07befb3fa85e40c652ae8f58feef81e2a1054bfb4a97c68dc9a8a76657417fa322b1a41e6f9d137b40c9f3df35d0f4817db974c8548f2

  • SSDEEP

    3072:SoDyT7J6FhmKQIpD5XZQASnxg1gf/0eIvSidCbVn34o6aWaUwJoAzyfkMY+BES06:So+T7J6FhmKQIpD5XZQASnxg1gf/0eIf

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 41 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\dce4b5160f8fcdb2172532f42cf8187c_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2660
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2660 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2820

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    b47b798aeb19c1bffdebfb6404d20852

    SHA1

    5ddbc8594333f320a79a205e34f1cabda6b36c24

    SHA256

    791952aa92e47a3822a65316a37854b443245d2904118f1cbe08c8958c530efb

    SHA512

    5957ed083352f1a4e9dd50fd106846ca56ef9dd3579c5fefbe937d3b89dfbdd4fc9fbb0d3ad0ad7dcc12ff600a6c64c02eea07a9a53db1af8ed3141a08075fab

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    d8446054187b4b02e731ef16a7fd9425

    SHA1

    1fd6c47e78d40e78f562250c947a7f2944830673

    SHA256

    847860417537b2173fc396edae2a4705fef9b48c6285197b68394708569b1fcf

    SHA512

    90db6d1e5ff8544b9760a82be1c01b4be2d415fa578ed383750644e352b9f9abb9fa311b8aa831e2467704f04bd0008c74fc3c2ae9fa3fbf61fe604e709819e5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    b15cfc0de8c8e7a3db29ae630b04456c

    SHA1

    c95d559a63eb88b7b36f6640600f763f67cd16b6

    SHA256

    68f3e0046544dbecb993748f03290ba6e50187a891b92c75d7fb6dc6ed2a9dea

    SHA512

    fc86fcf9f573e376161bc50be58a98cff879a6c43cdd98f4da83e68334263528ec9a6052b76c133e79ea335abeef1a23f76609c2227199dabf1f17f4d3d92ff8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    ce46aa143d2895bf24d7b917a57b27a7

    SHA1

    c13cb57e7c0e2086f644650c32f17ce5adf7bc11

    SHA256

    bb8e94c91a451bf88e75f37c978e01a456a8409db221d341a32a2b0b774e95e0

    SHA512

    58e4ece08cd07529ae6c42fe376c8b4dcc7cc59fc617961c98071a49c3ddf7c55ee13bfcae7188889cb0182f56b8a3501faab12ed81fd3acc170193b0002dd58

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    743a9609f00613bd7243fef71934824b

    SHA1

    7df204eb259f4a07f50e5688275f47ed6bb7a072

    SHA256

    a852be1bfbd9aef58fa2c9f2d93e8b6cbcc2ad55210f78bfb53f0e5f7af2ced4

    SHA512

    83f8494fe959f75918bf4990dc68f080e5ccc5dbd47c486bae9c74f4a3aefdf3c5438f923485d3997bbaede580752065f559bc00f8aae896f6fe0413acc05b8d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    d14c89798ab3c26dd092fffec79f6f03

    SHA1

    f620dc304b24e71b97873b54df3dfe9285f9b5ff

    SHA256

    a4cffc1db9f295ba5dba7801b7e7027157e775be8d9e39f70e0c7ffd665fcb20

    SHA512

    e816641893bab963c074503fe24659f0d943176b8c5dfe3d69f1666c3de8c026b4db75de386d5b7b0576a6238eaa6f207d44aa7b76afcdfabe834e628ed486d3

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    137589d622e6b1cb09f808be6eca813e

    SHA1

    26dbeab9d7991620e4d319196a3922c95f2ec72d

    SHA256

    345c3960e1405008fa2e0f8b93430dd98e8a7f7fa5b8dc1a5f6598862419fc6b

    SHA512

    d33d55d96a303d29d693c79b4d16f49a03a07934bc5a8c9c4e22116f36e4b90dbc5e4659d41c4e745b3eab6c69eb46ce54b4b891c8b39a1f53209ddf48478335

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    8bd3dd534d6a126f4d131d6b17c465b4

    SHA1

    6dbd745751c2e11e1fc617538c7749434d739ef8

    SHA256

    17522336c7f7663a0ef7f210b408e0f9530891aed4a64a51f5767a7597830cb2

    SHA512

    dc922a53315d7d3a4b2dbf511dc0425af47d79b25fb67ea0565038817628d72ec4767792340ed101d67cbaa6bf686e9c467e94bb59c4e6989b67e9b9170b19ec

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    ad23a9efbf8714d6d7fd5d3189d0572a

    SHA1

    4bce9de64fe87966301cf6c18b4a1390be362a74

    SHA256

    a71fa20af59b02516399c3bacd8f0b3384668251143165b55a788b101d0cf247

    SHA512

    525b90a1d029ee7a578caf43b4ad97bf38c9f914107ef9acc93a549fd53ee244eae22f7b330e9433d35205292bf085282848028cbacc286b77e40024e4bd0d47

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    32963d082e6ffcc4588a4d2d0b1ec06b

    SHA1

    d1464a115c177762f6274999761194b16188f0ca

    SHA256

    30d4cd3f9a08833555a8563cd840d4f29d24bcd448d7b37a6e573ff79d4a2a6f

    SHA512

    a3092e16648d1d6270d2d73e1ed6202a689090348101c0a75848d090450a3126380c45460db116b25ef31e530a492a57d274a429eb6c564ebf31904c63b704e1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    a29f3e57269aa88595773d97db16c176

    SHA1

    5c9735a780fdd5b5025f463b542ac8a1c2cd8db6

    SHA256

    a271647905c154e8e1ddbbabc118b2029e8017f8c00a1ed74d279a4c07db0ca4

    SHA512

    49aa4531c38b533523b38657a98851f0fcedfd935145081c5abe97146c2a8026fc6e36c30d1f424f947c48e160f6fcb97aa2dfe3e4a75d708c69d71d1e71a004

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    9d16ce277ab9e2aa6a293f3c0eae1fe8

    SHA1

    7a1ce0c418d856d892f7b0da10560e2685ee56b5

    SHA256

    5ad419efe8663b9ed7779b98f351eefe3d96606349f424c2efbf1c6c48a048a1

    SHA512

    1b55503d66df1e3bcab3e254eea1184f8eb67017d631e8212bf1067e1ce4085611d537dfbba60b5176cbd3721da496a034374f4b93e67165938afc127060f1a8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    42cb886afadb08ed4973b74713ae9d3d

    SHA1

    49f86677adfaea023e7fb7b2e5aff310b3617e2f

    SHA256

    a3c4000948f31be7b1f4b045586496d58e3347cbea0fc8e02d826a6b246a796c

    SHA512

    0cc8a25d64ab598c32418ab4cd8fa4ee9f762b42456e7347823dfae003e93f22da7ea81ac182387a876cec06e071be3439bdf33695e48a5c7fe72717761844af

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    c232fc7ef40844d91828e80387155ca9

    SHA1

    323b1ecbaf44929d2e8fac6baec128a696dc5791

    SHA256

    0403c796f3e675ea85ed7400218f1fcb4f10cacb7c0c2fc735de9d8d4c1136e5

    SHA512

    76808fa6473a7ec80958199cacc083cd64d0c4a212179c5f8e5a6889e61f59b9539a0d8b5cda1c0857114f4789c05117d1706b7c3efc692f96b43df7bed877a9

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    a6e71194a4e3c937ad5ed189627236df

    SHA1

    5c97efc25397e0c07a7dd889d7de36b4cb06dfba

    SHA256

    b93e35f89fdeab42891853ecb82d28057d20e1b07c70cf016fb3c7fbc53b31f2

    SHA512

    180d85bcee80b990cfddb831d5c5372b81479a0313f13835be7d6dcdd741aed4cd0c8ee1a4c66d8c3436f7d2be062a29cc39795a065721ec51b02a6e8545138c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    4382badfab5b81313eabe63ae41229e2

    SHA1

    22f5db12e0fd3c2b3e0fcaeba121b68d1dfb3768

    SHA256

    4be675d0baad73d9aeab25c349ea4ba285c87b410117d84d90d101708a7c8404

    SHA512

    9ac9ccc591251bba90130208ae1e155baa393f3203b0f9c620741b6882b3ba040ea8efd4fc49bd21f243d6757cdc04e03840e7f16e55de34f13b2a7ff48d1854

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    d666c40021ad215780854a552eb605fd

    SHA1

    6cdd38155ca7cef7a5269a79eb145a5869fc82fc

    SHA256

    b74640b61fb6bc1a8e99c6eefa2e3d06e7f7fdd92b6d4fe50aa18d5b096d9877

    SHA512

    ae5adbc1814b7bf9d51f77f0c557d9b84b4dd785b4bb399c1aacedf9e8a06ea6e734b9d48e91152366b758caccb324af404a1fc36aa9341dad10cb0a5c3cc28f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    0528e7e379e90ed9c64a19946848dbc9

    SHA1

    bfb8547e3d4dbd53e17f4c42ce663c5cc1349d0f

    SHA256

    6b696e2c22ed93fb05bc3f20ad030492ddce1b118032208f6188283e9f899d09

    SHA512

    d2c61f13d3059dd4eac6ddf58afb24fa67f5cc1f3a32cae43f17c3aca18851e6396556befb26e9d4efbdd9a3638218069a83e242e1b0749d7addb38dc6a3855c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    5a32855c3f8296b3b335c2d8f2aab1de

    SHA1

    cc8e2eb57bbd4c9e889eb9da7bb9af72508da726

    SHA256

    644d2a2f6fc4ef35068d70aaf46ce37e6e6fc0b616e9f4402b0e92158ec8db21

    SHA512

    bd664af540e1104a7dbcb8e05b0e957f6a974d2d4bdba25701bd4fdb45d0fd07b794df23270a188e4604a4a04e4314967a43b0216f6a72302ae1c26c71e57c27

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabEF50.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarEFD0.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit