Overview

overview

3

Static

static

1

dec4a64bd2...8.html

windows7-x64

3

dec4a64bd2...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    133s
  • max time network
    127s
  • platform
    windows7_x64
  • resource
    win7-20240903-en
  • resource tags

    arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
  • submitted
    13/09/2024, 19:35

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    dec4a64bd21bf0dc0c704deb24203f1c_JaffaCakes118.html

  • Size

    69KB

  • MD5

    dec4a64bd21bf0dc0c704deb24203f1c

  • SHA1

    c35c2158d40f7290fadcab53a8a40b6e3ef36187

  • SHA256

    79db26d382474198be497f076e5b3e9aebd0d5c45a722baca8ca87e1918b6f96

  • SHA512

    fbe006114991385c5fc2bd026ca9ec72a54e317fc1039dd2fec54002b9d5f7caac285cf4b70a287e0763ab610fa543dbba135ff7ac40aa225901e5fe70a88e78

  • SSDEEP

    768:JiPgcMWR3sI2PDDnd0g6sfCpoTyZ1wCZkoTyMdtbBnfBgN8/lboiGhcRoQFVG8sB:JV/TSNen0tbrga90hcJNnspv

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\dec4a64bd21bf0dc0c704deb24203f1c_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2424
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2424 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:3060

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    d9dff7350d04c5ab34dacf06968a5891

    SHA1

    cf1828c3e41816076273c05d46f91c738becaf28

    SHA256

    538fbc7b1f9bd30981c9327625c1a03adb08a02ef8ed5af846111a58077f3d34

    SHA512

    5a76beab2526fafa01015c46538c6c2e9f4dd203149e133454d97b5cd886d14967ebb2022e2b3a0e95d0a1f5f56179c548faabd116370a9d2963f795ebcb2062

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    f9069299f957384c0b5e0945aa6b8a7b

    SHA1

    25948f788ca41aa16a5c207a67c08a3633897614

    SHA256

    31879e4b77edbb8c0281ceb11691671fe632c9925fc44748fb829cf9068962f1

    SHA512

    1fdb5f548126f723dd7b3ffcaf0cccdcf4ee73fdc66fe85bd8f5be430e9dec4bf9ce02063cee7eb2f62c801f0685904cded45f17fdad44094acc661815fceb40

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    6af7d0fa09ce821df192ddffff39c9a7

    SHA1

    1caa7339b4db9ef2661f0c57402d6ba58aad29ad

    SHA256

    8110b88d035dd9b80b14faf759c0504495699b457233ba64dd415b8dd731269b

    SHA512

    1a1925bc443ce5cdc69f0cca4646cb59248795b63ce34ceba357f548acdc4263ab17ec83c4b3788be47ac74e4b438ea5f7c41276abd401b828a54df6808dc878

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    3ce44acb738b67bc2c97a250019412cf

    SHA1

    93667265903900c43a67669085553d42cb182fa6

    SHA256

    161369b92a3ce4af7727383b84d2e646f6b8b65a9e7aedf7e32ee88866f53241

    SHA512

    32f071d5288e8ee54362c4000e8143a9352e07e6ac773f5919ad4ac15a880961f2d6d8df82389e0cd7f89858676d65e4d3d04d5d88f297d16939e949c592e4d5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    84430a947ab995452407d3e46015337d

    SHA1

    b648ddb9d9ecd43769181e1c7ec5c8f5acf49dd4

    SHA256

    4908660b241c948892347e95f435879bcefbd7c6b1622a6964ee1d79643a834c

    SHA512

    5708ddda51085dbdc821d5256f1b6b5b0dc78552fec977b5277e9c2c80d69fc20ef42b69cbb71d13a746435a3e0efe505bcd9b536c6d6578513398a38063cff6

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    7d951c9ff06b5d593682c88de49af637

    SHA1

    a51c15dee9f3a7037d4c8404c1d6cc10c8681f28

    SHA256

    f02099ce5c6a532cafaa001ad7f87de2e6efaa397baa74b928306498be670b85

    SHA512

    3232f26035e276d4c75228252cb4ed5ed0fa2d29d3470cc7d42ee5de259ed8e3eb418fddc97177b82b3517ccd82f5fa4f1cc489f6acb75f42992dd5ff64bb2c7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    f92748076ad51f411b30c1bb1d84bb86

    SHA1

    842c77602f125d008a190b41cd98bb8de119ba16

    SHA256

    84e51f4ca29cd63e136d94572a2d08b5102903624f3c1d2385f48a1412e97dc1

    SHA512

    feebc0e06a5b76179bf492ba676f9ca495b959a9ba37db54986aceaac853c1ed980c1da5eee56b9986907ed624e0436160758f180ed32980995e96e5043efeda

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    163ad03f5558b0244c8840108b8a8d03

    SHA1

    7b5d9ac9ec513fa6de33ffff7a8f674ffb9ab1e3

    SHA256

    9cc5b5f1415a9c77db7a506064f3a8de9d7360b3bd133d33abe54f770a08a79f

    SHA512

    994924b5ed4187791795ec92886f56ac73e4b3ec4a87ec1e50844f7efd9f0bfb8f1b0035416b6a315e1b58143b495c3f4559fc41058b3067af87a9de8d5e50f7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    e8b15af3c1833b12c5246d6ce60d6f55

    SHA1

    04d8f8848eedae9419f7ef753630d1c2e4ea3136

    SHA256

    0541cb26246f6f49c9c553c214a0dc278d94ad533e02867364f514e0c9abcb7a

    SHA512

    10fecdd8e5bbd0b6ffd49bffb2a0b92116cf26ab426655dbf0affe64897c2b599b8dbfb526ddbf1e01cb453e7b1daa1156b0b24ea8cf48dba146d3e5b2aa4b56

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    cb704f08af4abd45a4ccc2f99f83ee99

    SHA1

    bd4a7c57b2a2ed290a8c3e4fa2a241106acd6c41

    SHA256

    f09d9cdfd3551d22d00f789dd41a5d738ce1acd5763166eda02181a2c811a8d4

    SHA512

    c83888652da3d4500d437c101f17ad59759a6869a2b652936a2c292ad7a9c0f532f3a234cbdd4d364ed983e4832ec09386d00f9268b475887af3a9bff17fd7c7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    0bff4d3e6545a4ab13a5ede810aeb5e5

    SHA1

    e9a99eac3e9ee45ac20e4ea45fe553a82fd39647

    SHA256

    51d32713f6f589f2a2743687a5eae711689a3dd398e13760934c480a1b16da1b

    SHA512

    8c91bd2b6351457ed57dcfbc0498022c80ff7c127f84fcbddf7833c4a61d3b6ac03289d4b80b1c229a9e071a1a0d2bbf4737f1ae8c7c8d46d2ec767aeeeeb5d8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    99ea1ca580a93aaeead8c247171147f6

    SHA1

    e2d2aa44dbc5da194d294a3c8a6bf701a2e63a35

    SHA256

    b1c703d94ba1ff3ca2a42ed61e310fca6c9ab73421750ca999a40726db68356a

    SHA512

    c4045f9a1c182f8abee8bb1a54572a41f70f51bec06b7d49b9a50a3faa1d4440e500f68c547ff8301ec2fda5d2467ce6616b4f50f599afe8eb27ff654e22146d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    73c4f54ec19608453de3764e5581da86

    SHA1

    a50a663a8bc71fdb372f667ce9e88ca1957c2734

    SHA256

    642a00402d1d78d7eb82a795bf36f48b0a8e28de4562232cb6195430cab498f9

    SHA512

    c91847b93ab43b953f90da3c5d9ce1230dba717819a769b4610a565ffaa9d78a931cd9b8c9b2c4c9b190f0632101534eb9e435291084e1f45a4403ec76f0823a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    d99ac89dfa72f5f9246ed23f1f169a07

    SHA1

    24eff4412a7a0d0fec5bff071dd4a9a63ee8c9af

    SHA256

    76c10b994b1d8224f025a169c118d770e183da396ba94b647edae30486659f7c

    SHA512

    49593c27ff260948c49081b9b26e47dd19fa56366927565ee0c23f913929949a323a17a3ff99cd40308a4ad2f234ca62acd03bb9f46059529c662f888c47e6c7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    eccebe3047803340df9b306c2649f6a3

    SHA1

    1b43209ea12e46b7ba807b5a5bf02592388a3b8d

    SHA256

    3f196fbdfcc8eafec04fded5376a287857cedd301d5e55e969baf3c78284918c

    SHA512

    7429efd74940fe3ac97074b569496d426a1e8a4ae1caa7fcbbfc88328cff5b27007ea06dca86a7e929bdadac9c10c960889d342b5993d5f2515f4de56faffb86

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    ba4678c4a321ba83ea460322d0826bac

    SHA1

    30288e2c8893dfb0a111c7a1def5d868a0935cc7

    SHA256

    52845756f3f06351b0f22fc60d0bd0b8db5de0c1383d7f8f19be5bf974bd8be4

    SHA512

    531ba487d69837e2b3c813b4dee08c7307d237ff9665a9bea984b3fee2660c157b235db485fc97587ee9b8b37bcde174102156100ee7590d5f193250600ce769

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    31f4d7e952bc2289009ccf1e53fe9158

    SHA1

    ea56949379273968f13b0b5ce00e86bfecd42649

    SHA256

    b2c2e14b5c252f6778a388b19fe17da73baf5353300af54b97240ae2de544fa4

    SHA512

    aa00e2bb112dfa3edddc2ab4a9edce521ec3f042d0f33952a6b893e3f0f5c36c4a901a7dd64f6222f9ee2bca1e8381e734f0e23e6c6d01b3e0dbddb5e0e5f2fc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    386883650a21727f1490d5b697dee658

    SHA1

    50ea30084465ea50bf4726cd082cd5865e02f4af

    SHA256

    ea74382b5f746f7e315e8a9ec2287651e85c8d1040e53d8483d7d50593dda3e3

    SHA512

    2dd632241588beb8c4943f349a3330dcb4f1478996a59e952f443d9f1d5bc5335dead78e90fd01675c81f9e1d6a716c243a9eb67345874bd85d41f930c54b1a4

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    fe9c75efade0672c2686eaab481b96fe

    SHA1

    5a2487adaec71f11fd07f231494a7dac9416950e

    SHA256

    1164c3a06283d2285e2b36120d235d0e5680f1b81b3c02d2376e09b04178421a

    SHA512

    505ad8aba86a8c7ac2bd1a8f14966fe9ceac9b5bd9f7523ecb577a35221e18fe4ba01f6e3bba22484db2b1706983a79047377cb7ff9eec625d1e00a064196949

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    90d963dc9fba69f972f318ea58df7cb6

    SHA1

    b65178417b8ba0a2f18f14271f126888bf2a9d17

    SHA256

    2c370dc45660292b420cb57cda5381b93e69d2eaa0f687b6e0475d1f820d51c9

    SHA512

    8b488d7cb2847b77116a90ee3ef1a86eb364789015dcefc85da7b26aba5f11ac761c9213350c56db3004c84d1db74d7aa82c4814e6661de10af4c35dc8b0e82c

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabDB15.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarDB86.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit