Overview

overview

3

Static

static

1

de577c9695...8.html

windows7-x64

3

de577c9695...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    138s
  • max time network
    122s
  • platform
    windows7_x64
  • resource
    win7-20240903-en
  • resource tags

    arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
  • submitted
    13-09-2024 13:24

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    de577c96951ac3785f7b9812b91d3b00_JaffaCakes118.html

  • Size

    153KB

  • MD5

    de577c96951ac3785f7b9812b91d3b00

  • SHA1

    c44cea3c0c4c65eabf0a75801043f4493497b7a1

  • SHA256

    60646bcddf3ffc088921e102fa01f5e873fd49ebf6512397c94c519c77261300

  • SHA512

    8391daaf4adfe5f53c7eb8d353552a75bf8375701b30c1b02bdbab6ac3296e9b5597c2754b8c9f268957bb1177ddf00278fb1ed6728c4542863b83f543b84f57

  • SSDEEP

    3072:SFwZxW5IJhMoyfkMY+BES09JXAnyrZalI+YQ:SFwrOIIsMYod+X3oI+YQ

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 41 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\de577c96951ac3785f7b9812b91d3b00_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2140
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2140 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2736

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    d9c806e4a2ff7503e00e4e7be2fa20af

    SHA1

    6c7643e4f983b15884f0534d29bddd2c928076c5

    SHA256

    8ea650771e7c744e28a26265b8c38add96bcdfbc7dac1c1175594eaa29f6f9d9

    SHA512

    843c593e6cdd0cecc0be2b43d149860e755421822e59642d1e296f10d9f5a7d7bb579433a30f3efbee9d34074d98bb59cff812e67be276290b9d0a5f6de968c8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    04e2ff242166611a63fae0a8fca8df54

    SHA1

    e3a66cb30d08222cd4e769029c6cbe5dd5dfd115

    SHA256

    4558669622b61d00c0743f06aefeed09e50d0d7ab6a15d897f90ed045e395e0c

    SHA512

    9744304deeb22f1da503939b539a9003c5dbf63028ff728f196a91ca6b0e82becf8646934c8832d4f9a8883b709470dba9b3a2db52ae4d451b32656d07c6a8fa

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    6d818380a6881defc416da49d219da95

    SHA1

    1342bccffd57df05dacc08f4d7d1668edbe98a73

    SHA256

    343739711db17f0f32c21700a82809e36837adedda2c53d10c16b553ca27c687

    SHA512

    db78d2b96a30e1c38d89745f3f2226ddec782339b607069a6bbdf740b94d6e6689d7b8f3f971390f438bf3fb1d42a49d79126c70ced49082bc65bec01ecc3a19

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    37bf2ff7d2325b4c6100299049614e93

    SHA1

    45da7c99c4b47e79e109ce9abd9a2ff485d22986

    SHA256

    928dfbdc19a30a0a89fbbf715d5f2211e838ed76dc70291ae68dbc1500799fdc

    SHA512

    12bcd1fdd62105b0c59775b4b0a769f072cac0cff14583d2bc31efa55ec66794682abac79a320bab76016d0fd37d1d83a8a2469c80f5bf59a3c532c91f362980

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    721baa158ff5638ebe783d495be8bc4d

    SHA1

    460e150220fe23e560f2c2a56535b8ea39db31ec

    SHA256

    21475140043ec6dfd1df03997f6af7df198e39e599eca9b1323d8f75481d7e41

    SHA512

    b81e23acdded672c31741e99824530b6e5ca9daa597e97062e12c569930dca0d11965c3f9a17ca19ff161c6ee2a328f0a81e95ee26270ed6d064f3179d8a156e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    618fc72757fd0c33cec371e6f9e4a37b

    SHA1

    1589b90677b37a147e6f98f3f53b6c1bf3073177

    SHA256

    cbf9c5b9876bee2944950a08c194c8469822125fbbe4aa741a87508c6c877a19

    SHA512

    8a2b4fffa5a40e208ae8cf6679ddeac15cbee6f34a7e17f5f22f0223ac56080abbfb656439aec0e259e257f5a207e3d282680ff141ef49c605af7a34d1de658b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    4805ddf59041df3a8506e402c36bffea

    SHA1

    dbc31882209d6aeef62b425ff21a80daf1735c04

    SHA256

    64f5522496996a490381462c5a406129ecbf921d83238bca68876213c7f2288a

    SHA512

    4df800bbf5ad51484dc9c50bb1266f7de5658e12ff9dc0701123505059dbe11d8c3ac7e2e0f2a0402ada56f42801eedead4beccbf15018ae3af75800f1d2a498

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    41f90bcf6091b314d5ca53dec8baeeb7

    SHA1

    4e5c57e8dbb3c9fe78dd6ad0cb038abe296d7fc9

    SHA256

    78e49611dc002b79b192bc61dee4fd5f4be35070884628cfd2bf5e780fa925d5

    SHA512

    2df4382c898d7fe6267e1d9fc8f7754d7e9b9b36a823d847a903c134bf8da4ec0d13fa644c359aeb32f69a413f182cbd588d436d4b3511639fcbfd6e4465aa55

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    62310c067037ed4fe164e2ae767e2396

    SHA1

    da1df033276034e732b1014b4df7f177aab85b6a

    SHA256

    ff14b725e37bb1241dd80fcab910334cbbba49c61d1c152be6e967f79d907325

    SHA512

    52070328be69c33728dfd330a2acd610d6e547bfcf48f20b9f3a4c06b3905f8bca28e4745d2690a66bf91bc8373546f21a5c685cb4a4bba360a17aea85511e37

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    2b01cd0c08c75aa8a4dca57c0c474715

    SHA1

    b949478392c8da911e48c70f89715861936b07df

    SHA256

    8732a8da2333d55cf500f8845c3a4a2c4da63ad6be42b3d1160e8fa062d1dd6d

    SHA512

    24dd9a71dd3e9f1e47e991e9b654bba11b50707a14f0f491304fe3ef17e1fa9f27be4fcc333d64804b3caea36b8401846a8d7e2e1e8502e338cf749f1cd14958

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    a744c7e92d64db5377d42d771aa3d715

    SHA1

    403fd50c33d5178b00735384f954e067ba3db781

    SHA256

    b233f8256597ee88a75220282a292e6df54ca3933b82922217b5ab0aa6307356

    SHA512

    13e41bf8b5192d2bacad86f53d34ed33da9a51192f719fbb72b0b35388e0fa14d57c9d926899a13ac271dda9e61d1a3a9e070c5235d82b62f644c990b01e4f80

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    b63cd8206ed9bf38fb91c1aefd0c446c

    SHA1

    c53bf475fcaf9cfa897d9d38f253c174e92e6dc7

    SHA256

    49cb11a7812047acd9c667a0e1ef08fc8b3d5f6dbec24d88e82b742045cc68ad

    SHA512

    ac5327c82941c46c85bdd92dbaac4f0b114167b1ea898af65e4a332fb9639915045e073bf79a221bdf79e3942a02dcd71eeeee246f41632a6989748485803bb0

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    46f5cb022e363cf7d447e7fbdf7b8641

    SHA1

    2d3f46c3fdc8322a892c8aae8996109de1559293

    SHA256

    3227317312bf6bada7cdf4a444e8ac3fe37c59776f89ea6c22bb454581d77092

    SHA512

    1563834933a4c1869ad58151bc49902d562f1f2e741942c63dc16d8e4cc67bf05f09c19e0005756d8fe1c79ad9d775c8f1272f2c411d0c863377c17210fc37f4

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    d1e17fcd31a1296438c967a2b86f014e

    SHA1

    2a1844272b4c969963e81aa1e9e0def993b13d31

    SHA256

    5fad7cf8f4b39ac183145bda2ea2c55ca3b9952305a76027fdf99499d2090a86

    SHA512

    d04b795cfdae1801c057c91a4b425f9c199a3b643e1504ece3486ca9af6fc63b00769deaf1819d1ef45f9f50622620ee16be05d811e3a4d80bea73b498de1eff

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    077b6b41930dc8931b679bc53d1056cd

    SHA1

    0549440395d042224015b07427b8a92b1be37700

    SHA256

    bd6e5e85d8de08fc887e233daaf4443effa9de707582b12e11a50284eca3a715

    SHA512

    06fa683e02746d3c11b71cafad70d943edd71ba9ddd1263425a8fe7f1eb43940f6fc2437fd5dee2351be3287eadf58f4279cbce157f0244c1c12a2b66d476bb0

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    3a12cba534e9f61a2bd04f6d5ba0aafe

    SHA1

    be864832b27b7bc3a5ec72b6364b5a9bf14ac1da

    SHA256

    65cf82d445011fdf47ff5d6d867c9f15544005488713d9a87b5fe1fe4c7c9fa5

    SHA512

    ef8414decc7c365a6f9eac9660c080472cf0dfe10fa84727e3584d002a7090ae7b4762ada6d98c31341f6030d72a360cbe3fa31771085d2376fd9521aeff136a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    19f47dbb68ddcbb9286197d941053d5f

    SHA1

    af98d9c4531dace3b4786d857039fb42a5f0e482

    SHA256

    dd9bd4027eeadf7d96f9c158de5a5a152455b92c9fe92dd03210fc246c30b3ce

    SHA512

    5394081977541e1f3d1f5b399a4b66a9fda4fdc84293a44ccc4f16c1cb172bc4a64c22f520ad8a6d20f649cbf13c967cd526628aad96a823dc4ee73843f86a56

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    6eef16fc71db0584a17eab4aa0195893

    SHA1

    2e316baebce50a2468f33e0913b4c6f0f4ceaefc

    SHA256

    1aac1248fc2bf36a0a0d38ff94df60fc61f3fdd8f84a8ba2e360bed6cb251949

    SHA512

    73c295208bda0f1ea658e82f77b29e315a5ae265d94a17808f02cb4b2e63a6e8b438a090dc706a6177ff25047259d0a15cd6f836010af18b7dd0b324ce96e0f5

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab6F37.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar7074.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit