Overview

overview

3

Static

static

1

df3bb14595...8.html

windows7-x64

3

df3bb14595...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    122s
  • max time network
    135s
  • platform
    windows7_x64
  • resource
    win7-20240903-en
  • resource tags

    arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
  • submitted
    14-09-2024 01:17

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    df3bb145951fb73ef768b2c360b190a2_JaffaCakes118.html

  • Size

    23KB

  • MD5

    df3bb145951fb73ef768b2c360b190a2

  • SHA1

    075f5ed0e7f36effae0ed717c8c65472aff529fd

  • SHA256

    16b693e72bbc5f9a105c369b73c728a0595fa1b439c8fc644b87c49d21065fd2

  • SHA512

    1a03fa35d13981d47270621eaacb7fb9015972578435ad035c94c2fd0b88e475bc4233324b068858b5e1d2e0dab7c47d606533779a09b0e1fcfd6c8fc79bc86e

  • SSDEEP

    384:OzXZ0wX9uOBiZEh58+J4JBJtLlVkYe3L68zHdq+aXQyhyG65cgFPHR:wXZgOBiZEDiPkT3eyaXfoG6515

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\df3bb145951fb73ef768b2c360b190a2_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2992
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2992 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:1392

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    d7669a97ad0b91af63d15e4952eb278b

    SHA1

    82c06033ba1e0e07a5c0bb2e1b01e83115dd9831

    SHA256

    71ceda17e42c7449d92a4fa58d155c1a911b2d79845d6f377338c04de0d5a4ae

    SHA512

    b9f5a3ec953712feb4f49e7305a25f0391efff68101fac8d501f43f954bf5db6bde3413f3df2808b02e5ea0dfe306c9aba46ac40212d4936cd1824a9bee42552

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    84022656ef3d181e9d86a6446df9f064

    SHA1

    f769ea15e278358690ccfe227dfd543161a43a8a

    SHA256

    1ab50ec3c00b5b17be4031bf141b34e223df70f24250a5018e1e9624efcae8ec

    SHA512

    e6e2f80de47fb31508f10d3ba6ac46125b3f72101041f8cebe68da5206340bc8f99a5d945aedbeadb5e3b54f3e73cb8cf0f31be46a605db00bdf3f5ff1ad8962

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    6dbcfa61943d7b9628fb41381bbbdf11

    SHA1

    0011351a9318f2debf893a7de1deef6ae7375fd5

    SHA256

    434ed703bdc72349d3357fd556d0b7e967228dee3babf2b79e73c0e1576d162d

    SHA512

    ca6b36effa65439f1ce51bec5494dc002513824e40bf7a422cab1e214e047b19ff7ff2561706d678184f9b179fdd4c871277c2df5c156525969d192d75bbaba3

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    266ee3741af75c1b9b505381d7778d92

    SHA1

    3197772500653afe69a2b4a63fcadd4176e83d3f

    SHA256

    fcd821e49469a295d2f549c574e0e3f8e6ae13e6a6f8fe566a4c7b118198e4e2

    SHA512

    f7b7a519f3512766bbbcd81051f8e5fdb2659017f91ee023269e645e8e964182bb368986bf34945d582fd3fdf18a9f41599d64c37015a64b754a585123b420a6

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    569b4819ac41e33635a240880fe40122

    SHA1

    6ebe4a257b8066ec32dfc2a3927b9e0a2b38c822

    SHA256

    7135a71541c3c71dfc94830042a95d08676dee28ebcd9ef0b91aab1c88ba51ac

    SHA512

    5fe87e0cf1450a10dadc52af449381f1d7ad7411ac6692bb24149ad4a46f68a674f02643bc7cb1209d262c42ab715d7ad74fa7f95201486ece4711afe59d59a2

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    8d3ef2b4b03ae62064ba9096b8b34e67

    SHA1

    173a721fb2ff9a34c7b5bde5c8129448997e7232

    SHA256

    f98d65f6efbae637eb221f6e43ce46ba22697b904aa938bed7535f3a16d41ce2

    SHA512

    027044bf7c46b9996e42eb9d0d0e94c103834be4f2d34cf030334502e95715f0b90a83de630d589c51cbd95f02da93305e43fe68ec7a346e0c195ff6b5dff9bf

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    24b3d7ac4d5154664adb20bc12ab69a8

    SHA1

    c19c820f17c1082e353648a52ec22ee257458622

    SHA256

    bd895d93f607a6762b90d7201661674055f35334d5e33864c6051413fc54a91d

    SHA512

    a32a452efe41b85a9bc34be134005939f0f9c3b455222140d57d9dc340b6562203458bdf2c392b1aca89fdaee60cd6a04d588c82f0ee8153915eea3dc401bb0e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    4fc6ad9619f98f3f20b0fc8e72e7903d

    SHA1

    b7431a6841958db950e274150c0ae500912f5598

    SHA256

    d8295fc9b708ccb1cdc54dc7ac207c2c916356e8d3d832d13676a9354fe14774

    SHA512

    402fd19ba5eb2aaf73a3838702260735d49040622718ce269c512bb83048ff2bc1a060cfe44f5554327ac18bf3eeed4a18afc7baae9252427679e34dcc7be6e2

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    76faaaffb291ef693b6a966ccd27714d

    SHA1

    8fa156395fb00b2ca2924ddea9b4a3ba191b723d

    SHA256

    4ce80d6bfc9f78cd52e638a5f0a3e8a3b69afe48ba47263f0ec75f251d2869d7

    SHA512

    23a0f40d6da0320feaa6fc0f90a98a4597e75f9ad318baa259abdc4a53d03b72e780d0d0975cf2433122d18966b8b610e06e27f4f455ca94b9c67aa2235df573

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    97af911e8978cad7fb425e97031ee0b8

    SHA1

    4c75b0a09042adb75f5f61523985671b6d0d1bcd

    SHA256

    4d7fd29fad92e74c574895a26410b1d8aa10a67c0c0ce99326f16177785ba34a

    SHA512

    e80d546113c4b2006b10ad47f44354556273ce6ca9c8156dee25afd09c8f57c1c6e27da3b6d86fbab79f3f2784bdb578a7cd5e444440d4579e2c3c5c37072760

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    171f007bee811ef43af9436e96538e4f

    SHA1

    7ed4f02fec48d640faa9e45bfb1d150693e1f2bc

    SHA256

    48224a47d520eb160df5a58d18f2743f45aec1cdfef28fcf66281155fd9098c7

    SHA512

    10014c15814fb2c1c61ee27abdce70067eb314cfd8e435ce5a780c4097145073f5b838dd1f4726a9c8fce44c8f3107f608c518a703ca3d530c6d81b884a7e2af

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    4868ff23d895f88011be99cc5351a39e

    SHA1

    5b8e62dc5640efb90ca9556fa5066004a9ac1ee2

    SHA256

    b5f1b14bb157dc735d32ba0833574e7aa5c09962f1df72647e67847df53268a8

    SHA512

    06d564d14704687b4f950d37fa1b8ab90a17fa8553a28d964d5ac84d846251b6888d1729176de733ec24588f1960cf711de7e2e23e4731434eb938c015557e0c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    318c5dc229acfe42e10db39d60e36810

    SHA1

    63492015a0f1d3bea084c7ff0de02835285b33f2

    SHA256

    18150c80c115c82d01af04076d2059cc8632bab2784edda34d31ed8a6f95acba

    SHA512

    ae8cbdd1be3a4605fd62d7c1bd0e85274ad4a37057afd5f680398ecbb93b3e5645f860d835c4c743b887ba00609180235bc248158a79ac7076b062f2996bf3f1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    2baa8f986b908688c16f692ed7201951

    SHA1

    d922a0456969a83be60d0fe7ff1faa4294cd2fe3

    SHA256

    1ee316af20b5895654c40152c85870a9905f10d4a06689b743115a733d72c55d

    SHA512

    326ce00d8971f1aa2b553ba37d8c0b644b2b5da84ee9f42b21eaa26a5aa20b6e8248192e6c1e26d51de5d6de85de00b622ac1aef9c03455177fb50eb86a9170b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    9ab73abd703474223098b2d0b7cba08b

    SHA1

    16666dd6326bb681da521ca40389df896fdd39c8

    SHA256

    01439e886c7974d88c935ceca296b4ba6c63e0d4e7cf3dcac0863fa3af7fe858

    SHA512

    963f3bb31558ee72cfbc58990fe66f1c901ba3353c6dc4bd7b039cb8dfa6426b9ad94a1d00ef86c2d26db57eaf9690816d702a89b2227687c44751b814f89ede

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    1f8f6b5d3b66e092c37228c457cefa97

    SHA1

    d652cd8c8510992d2a45cd1afbd796e3fa34e4d2

    SHA256

    8cf509aab54ae92e508c7f46fb1495ea923f9549535df0c6d270b80947d3a594

    SHA512

    3a211b9bb6e7937f9138e1f080b7ec9f386dd391f876978a0472ee47491197fb9e1cd44c37ace8da579fefa6330d0deca4b4fb74225ab71c02f46f38369817d3

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    2b6d03de9b4adcdaaf3502cc5ee026e6

    SHA1

    9a851b6ee261d4e9ac40143b9ca00926ff6e3d8a

    SHA256

    be4ba53302c894d2f85c91645247a530899572d830079e3045374f8b7de3e1e6

    SHA512

    4da7f02444f3a3ac2b543bafef0b21d679ca97564fbe2ea859dd27cf1e9744eb9ec5280b97f85ea82f669f5c6f9d279fc8aba2461e3e65dadb95da3a0b65d136

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    7793bedf244e9fb9dc13679a8266a661

    SHA1

    dd63733cef760cf7b8b0317a5a85c86d7ed9cb47

    SHA256

    61c512b0f8ff3a056bc37bcb0c8504a95d15fa1d234a6010c5047ad37667424c

    SHA512

    1ff270b6a89a26031b388881394dc84afd2fdfe14a3120a99656799db504ede7f1da09568c8d5513ae912b77b7020d1f180dbb43b9df9061da8627e391d5b61a

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabA0D4.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarA210.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit