Overview

overview

3

Static

static

1

de2ecc9d16...8.html

windows7-x64

3

de2ecc9d16...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    143s
  • max time network
    149s
  • platform
    windows7_x64
  • resource
    win7-20240903-en
  • resource tags

    arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
  • submitted
    13/09/2024, 10:09

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    de2ecc9d1633275286e9e0e3d7598276_JaffaCakes118.html

  • Size

    18KB

  • MD5

    de2ecc9d1633275286e9e0e3d7598276

  • SHA1

    b6e7fc07c450f1ac2863b9b49490d87352d98853

  • SHA256

    df0fc9c74f2f511a2aabb5f1b72cb6ddf81cbed6aca76932ec3dd382dce146f1

  • SHA512

    102c96e7db46bd8085887e692e600e30f5a4d23fdd4708ac503453f47be6fd5a38aa2b58a14e60c1c0a8fd2231927ee758c804fcb3b160e79ccc36b1e10ef667

  • SSDEEP

    192:sUupoHAvjwPP00TA7xSpsFsEFoEtul/jdBdXroPVJFKT9DSwZqPjFej3QQDmjmXm:94wPMxs6odShK03Ij3xgaidI+KuHQg3

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\de2ecc9d1633275286e9e0e3d7598276_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2504
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2504 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:1704

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    65838ebae1621e4e8febf1078c818bf7

    SHA1

    0fe52f85baf3fcbb78463043ddcd7b80ae670827

    SHA256

    0daf638008532619a47a93568140704357cae2d990b0bdd6c4e9ae40ef3c3882

    SHA512

    a5e1bc3463ee56aea61c141aae1e1b216bb0b9b71e09394d02a63c6736376cf920fba364dc75e293ccefff44fcb2c8fc9bb3ed249868a24f02d198aa5f95227e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    1c49c4c50c93b8f97e204ea700748b9f

    SHA1

    c5ef66fdb4b9e3763c0f683362043f4fa7677e5f

    SHA256

    310b66ad98a07b7cdd01a4423c85bb41fff057b00e0e45d49ace901d8b9b9553

    SHA512

    72a96fafb8864f56ffe90fd2af9ad971fa8d0dcb27228a51de99d1cbabdfbe7b9a7b89ec4d2f2622277ba1d27d606eed4b08ae2497bef2a642adae62b6d94780

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    3907f75ddae2ba61af5a33af1f005c80

    SHA1

    fe2862ab40b41d008107d4a53ff43ab7516e6c7a

    SHA256

    2dc348653c7bcf412f0720fce8260293fc84cced2f7f457e7cfc22188c81c153

    SHA512

    0c789766470f67fddcdf73ebb4310ef494f006380653abb04a49678afc43f1b065b462037df4a551f6c5a935d9e6a7e31517d1eff796611ca5dbf9ce993c3255

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    63180fe4da27b955067e82b633c2ecc2

    SHA1

    4484c4b138b228e45e8ae059303404ff611745f8

    SHA256

    102c60a9213e9b9a1a66366a6e4551f47cca01d97464e54b7a38d96adea0e415

    SHA512

    b72221ec97831c6fc734edef91ae9989f712d4b33f43e46de2b68eb415a1b856b53eb146da04f8eb5b534c67042b38e05b9475bcb820da72637d8176afcd6dcb

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    7339180cfe195e54d07c11f1453382f0

    SHA1

    d16f6440c081b28bc7b2f102090acfaab1d628d7

    SHA256

    502901c36bb91e90fffa99246adf91ce3d3f9ce9cc5e4e8978bafe46c24054b7

    SHA512

    8a2a5180b0a379b89b72258242ef77e01b0536832192d76d9185048079525b5b31cb255c7e1a55e77a3f1b112b87c642b752878d4c0808e5ba18f20d0945f92b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    99f2d80c09aa223ac586aa8a08f1ac5e

    SHA1

    79ee6977f9db253e584bb2ebda79f6a299115078

    SHA256

    cf1a2c23a9384221ba7903cb4dd362799e18e9c4003e63186682c8a5c5d8be78

    SHA512

    3a848283f84b83b810bf9d78d4124f5a32a5f45a461bd68fbf3a7f5619f4391fdbe7e5343a8960ae2b5cea0d4156b0603b8db48cbe6269f609a45e8fdfec5985

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    1e9483daa4af4f6fca7f23d8ee1a381a

    SHA1

    210adb0c46e4cd9049bf1396cb7e1b78bebaaf7d

    SHA256

    32c9630c0e48e6c29e6569bae8747172cc1aa7696c37fc4482cb22b2ae95019d

    SHA512

    86aff64beb8e76b3519cbd63481bb3687ca23d0ac41b7576dbf73adaa876c9fb99d531c4d8e94fc548ac43fea85bfbf963ce50dd885d38e7de66df6aa3c6c5b7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    f5074ebbcd5b6294be0caa285e7965ce

    SHA1

    efcb80c6a5935a4ecb2563ca97ea3d72e6df1243

    SHA256

    fa088207783ca198fceb68a45b0ad12ece03c1a5ef7aee6712d9a23e43869e8b

    SHA512

    e8652597955db31a4e48c597ac6bf3469dfd7eb3fee2e30cda9233a3ff15c1ea13c709c97c2c2f1c01232b236ff39c6a46f48c704017852ecc645675faf29827

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    b10bafeea3c390a351bfad2e318115f6

    SHA1

    ea4db62cf6393ab286c496dd443b500d346ca470

    SHA256

    215190fd1f058552d2124e30f8a1531cb70c194372fd86fef6592cde65ee2a35

    SHA512

    f5df13e2237d3096ffdcca39c26d0f40c868d133381328f291fb38c26a1e379fa94d86162bfee10f0adc96f81f998e4f73adec6a5d5a1233e64b2cde12067dff

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    cd32726c9b5c4672f7c1c68f6b4884c3

    SHA1

    b3a2e815dc0e251162c99f52f187871c303cffa1

    SHA256

    e212782289ad91c1e09e96c90e652dc9259079861f7020c9cc18c95d3f1c95de

    SHA512

    02d0d69c3511e57e4f00f878742e3be2d97973bd7e66b650973d46cae19f9b62cfb0c9075b9c3a3534bd319aa475caa7c66ba5015bff57f1ff9a5322c09d20be

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    3f74ea26f012fdfc7e71ca73ad8c1ceb

    SHA1

    e661d656f8777f4babc1c5f591769bd05d2df8d3

    SHA256

    f13e01c85cc342fba7ab1d362796baf4afebfab96252b2c698d39b394b5cc1e9

    SHA512

    c626d41ebf26145d0bb8ce8b264755413a8364bafef1a161c60b2ff9e5b6e0d983d62e4bd886e26303329228552bc0322092e8f226ca519f171dbdb5ec472c2e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    5ede43fa3454f053ae59e68fbdf38b97

    SHA1

    6064b291b4a864d6ee81f1471f0e8a956c23cf0e

    SHA256

    a3be4356f498a44662742bbc67b63d2df2deff5cb994ba9a94cd1398be09d367

    SHA512

    b7c1b913fe85354568794802dd151e5257a622f0b9b628f4df14506bb34570d76df63351e39758d271c272e88fbc6a4c328e78559c4d08e7b53ffd634912559c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    df642a7531d65f82a5df6c7b80b8a97d

    SHA1

    e1692a6a41d151baf4c7e9cbc82f04f1906d84ac

    SHA256

    3f0420fd565ce0a54d6e365569ebdd7fd90afe5b3f0212b208bccc635603c184

    SHA512

    17894fd7fd46610af3956a7852b2bceaf99c8d08a2358cb1d6b0b36386f4049bdc6e6fd535f9cd372d857ed06fa0f16c1184eab21d0d4e6ad35a1ce08b35eec9

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    d1bc91b7187c0f5d421070afe9090091

    SHA1

    3676f48849dd7a094ed5f25640a9e8f75b5b3eaa

    SHA256

    fda94a6dff0e922fed80543ae7f14795406c6e617fb667f82ea87c78ce7b07b5

    SHA512

    b9ac53170d76a7b2dba28e98d35a12d1527d09725c89c2e872baa98875e0e4d02db45d7c86a3f941633f16d689a0746a5789642a5d6663b150eaeb4b081191a4

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    b63fe5f5d169f3da28b63fbb209bb0f4

    SHA1

    77bc37dd7a1b0eec7d370231964ba724f337adfb

    SHA256

    cd257a626992a23b760f5f3864cca8c546729b4086e178754753d478d6c0351c

    SHA512

    2bf810ab3783d34f40e920b304a9f6c293fc6ece3296d1b480b75787f58dec63c124c3b23a8f4ee25a0de3097fde9271f1423913704092ab2e6d7e03834561ce

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    4c36e2c4ba2a62284b5fc4ce3544be48

    SHA1

    d7353fa71aa5953bcdb3e5d5a07512b4e50296f4

    SHA256

    998c6648efae4dae76a62c8e59bbaaf1e6bb66ad63e88089a7ab613e11f47e75

    SHA512

    e15d5f3ed273dae12b2693a1a2d6d7bf8ef18adc8b4bfa2a0a40b2a0d767a2bd495b0f87ab9cc79fbf89befe53738e53cb5cf7d81adb4c0b799f7fe17ccc8de5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    c1a5636d0d48afebd6d3fa545a9ec668

    SHA1

    ea06333c424433d4328ac3f500ce0fafbe4e187a

    SHA256

    976d22ea3d5a8707fb478153f1f3cefe781dc8b8728b0c928706c8a09ce0815b

    SHA512

    b64a51ba8b5fe43011019adc8645322a2ef67f9a15ad9fd5ddcaf58180621f36f6e1ae9f9cbbce5a4f9b0a5c0c92c19c336c2db2e84cbc7bb461f7334363ad6c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    2224cdf49f2efd9ccb561e98dc29828e

    SHA1

    cdf3acc236d5b2150b65a5cc45ce0213d96dd63a

    SHA256

    c004f4a9ad6412ff362897fccad3d95ccd5cc8f29cf7bc6db962de82030521e5

    SHA512

    d837da37696b7e49e2b1daf8326552b2658683b7d6f88cbb7752491a1e4795d5db2fa5a4b051b4996684797850c93d6556736db5c89a999b9644adccfd7fc2cd

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    aea1a944851b41165b1998eaa0ce2667

    SHA1

    4fbc34ffcd8c518b0c86c3987289a8f431e57df5

    SHA256

    2931e65983749d2f77686e8bc087ff9fb594bd2f28433d69e67feb290760666d

    SHA512

    9d03c1c2166991e3d9d8126e0bb663fbd2e74db982793067e54506dc6eec3998fde353c8f25c4a8ca21ba314166d32e0dd7c4c7ce71f0ec766cdffb0a172ee08

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabFF68.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarFFE8.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit