Overview

overview

3

Static

static

1

f6b76d6b7f...8.html

windows7-x64

3

f6b76d6b7f...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    122s
  • max time network
    134s
  • platform
    windows7_x64
  • resource
    win7-20240903-en
  • resource tags

    arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
  • submitted
    25/09/2024, 19:34

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    f6b76d6b7fdcc37c16a261a971c93a0d_JaffaCakes118.html

  • Size

    6KB

  • MD5

    f6b76d6b7fdcc37c16a261a971c93a0d

  • SHA1

    a8a98487132d8d9aca2ccbd0533b834aa92962c3

  • SHA256

    927ba6f0285a64ab5cb8d7921e2b1c10b0261ccee4e5c3fbe3cea2d6789d9356

  • SHA512

    e1dfba271ba2a3b113e87adef94a412aacb17ef494dab6f2ebc322c08534f8f49f777411cfae067633b8eda16e1e2e7f140f0e40f34e9fdb863060fbfb96c83f

  • SSDEEP

    96:uzVs+ux7q6LLY1k9o84d12ef7CSTUnccEZ7ru7f:csz7q6AYS/Bb76f

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\f6b76d6b7fdcc37c16a261a971c93a0d_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2464
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2464 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2636

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          d85469c6bcd669090e030ecfb65838db

          SHA1

          ff776e5c5bab22dfd7688a544f12c8f2ead42791

          SHA256

          f7b991910a1e6a39df7da68708253aff5fe7da0be59f288c7271e7730a4ef915

          SHA512

          633cc9f361945cc055ef2993bdc9ba05767fecaafd58edd590a7295f0b80eb5ec057d846b92083d88a277bab4848d846c4f1fdad2c3b0743f643444f27b6e68c

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          0cbbfb375c708cc2422af1cce4866b6f

          SHA1

          756b2b473810b9430c6c449b23d642b4c7b11699

          SHA256

          625301e9f32b722d8124de4581afc184f0b280ca4166996b6ce4149072ff1ea2

          SHA512

          74259461f51a7322c6b45d3d6c77127d4e1179f4cbec21ebcdd51ff25d53959b7615a5e1a5dbd9f315dfd5665eb86eb204242bbe0d55c2bbf977b06acc7292c1

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          6f7a137eff814001290364e380aa3e6d

          SHA1

          02a74fdace2e30f0c04e026d6c950134b4a087b0

          SHA256

          fa3fb61674c4d00e00dd096d8b91aeadb012f1699152a4e761dadfba2ddfc4a0

          SHA512

          05f5a04e031a58d40eec73b88235c64b007d020d151437f7cf01b513083cb8fbed81cd4b1202eee23540968f1249a49309aec09926c4248e37d1708ff4aa9113

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          d92b31507d1a2f4c226e04030dd23b6b

          SHA1

          a965a561d20aee39bb6819dff9ad10b54eccf6b0

          SHA256

          69e1803f67e75b416244686eebcb08714b2d0042cb16323b4d28ad8bc1297cdc

          SHA512

          c70dd04343f30c4160b7e086c853786992ecd76ee3aa23be6bb7d6ad8842fe86f5e827303aeae0d7640f5ef24463c5f43fec790a3c496ea06cd29d0b7d3df4e0

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          8c0a963003981c2cb7a70ec83b82e9d3

          SHA1

          6d4238c8a476361c5e1515824f6afaef82990c7b

          SHA256

          b1a3c50140dc10374f25d252704610db07b3e47782f5b816e4b7facac7b59373

          SHA512

          1696a9a43628c86bea5ff28b6f3d96fff8455444f851e96a8b5f7e3e04cb33d0253b12c7839fcffb2762b8d5624e8b2cc5a6f9a42b5bae9f46d2a4c25879da87

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          f615e39de8e990c99ff5b71f280780de

          SHA1

          c150b1e8b2777fe99c8b42a21df9aafce161aecd

          SHA256

          84f23dafaef42205d54202e3a162abeaafb184a2c338d5d098676089b2838012

          SHA512

          b78cbe4ecdfb7be47c82a70fbd67e8bfc7335dddce7b26870d625036502f735208ee6359c63bf1454c9fe16ce099222104af1111dc4fde5ee978888795d1bb3b

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          8802dee68fe0eb86bbc994d7268f0a7b

          SHA1

          a7fe82c0cdf50774b58eaae660f875262a906542

          SHA256

          9b0275cc43e585e2ee42deae22a76b4ab68bc1981a763178ad41b9ede93f36c3

          SHA512

          658a09cc09721c0a681a48250564c4e59b933c53aa399f81477d3bd0d38d8c6d225f09c439a203409d97901d8f19df86bc6257a0833cb0abce721d500cc43815

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          b68af83eeacfcc1daa09d7832ccb82c1

          SHA1

          f6f9c506a7115fa7f2b32829153b04cf4b1a5bb6

          SHA256

          22f22a74c8a062bf1659bd788adab209fab8ca819bd4e6d5fcad78fb269a6774

          SHA512

          699a9370dd591a1469c3a1efe26ac1d90eaba2c375c55c5f6fbe980185deaada72dcea32a82f5b98389ae2ea39f7e9fff4a68da2b63a23837565c570a1f888eb

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          cf82aab2355daf21cd38242f30dd7ed6

          SHA1

          b8cc4f2256447983aadebe159eb447b486fe9094

          SHA256

          eb7afc94c3f682f61236a6a8e05af05126f7a6b74cda0c9551a61cc6bdafcac0

          SHA512

          5406e99c47cb5c5dd1109ac939ecb19d1bb7e2085fac63fb56687059bbd1c2755828c797678709971d1c055764132bc712b2239c95fd66356e8da22ed7c6e721

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          ef93ed9526cbc18e3b0522f469c14d48

          SHA1

          a89690adea50b50b2c16b040472fce180001e964

          SHA256

          f2c42768390af2993344413f077f0ca7dc18ea3d26c638315982c4163ddaaeb5

          SHA512

          dfcf0812b81c2767425eb3dbd3868ac5bd405ad50159eaac73558db460098e8c2b884a840f0933526d023bb528b67d0759f7f4106e8f1e20bb57ce496378c45c

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          fd5e048c32b90124067fdfe409ae465b

          SHA1

          37a3396182047e1fc59193044b217eb602355223

          SHA256

          324fc20b552e6e8e1710f9d6e435909f768ba2f95b511a5c623befb38862f984

          SHA512

          e347eb14553350c8f54fedc11f7f2c019f9a19d1fc6dbc76aea25ba65ffa0af7a046fe46ba49bcdee672f48084a88e3bb09ad3acc0bf30d3daf1f37937e2f347

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          4f7b026e291e202d78f468b933b6c87a

          SHA1

          8333ca7081f4411dbb37912260b34cf7b2dcf478

          SHA256

          71399decd9b1462f6b53e073a217c3fce520220cc3b233c91ae51ecaf284de00

          SHA512

          05ac7073df49096bef1406a09bf26c60e0689daf9876e9cfdd123b23f7bdbf43c5ce175bbde3dff4c46d54ab069d2c5bcec5db5bf6ce3b18bcad671ce609e013

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          9c3c721223aea36ff55c5ac49b74021f

          SHA1

          aa47d9a382acc89ae7c307c691233c3526c13cce

          SHA256

          c38ece735f9600c971528ba4510149ff302a95d0bc3831823034edbef84fce15

          SHA512

          68cc93c9dd3aa3169ab824c360ea624522ffd857883877cb0b03bd0d7a8ccea44fe65e146e63ddc2483bd966a177d3396b4f66b47ab4f3a4f117378cfbff9a67

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          cae07b58ad578726f04aa86c74b2e02c

          SHA1

          2743a0a4833bcf1017a63edcedd0b30454f60bc8

          SHA256

          c71cdf01881d3cd3fbd75f9a62eff0e1fc783d69bda10b46e1c6c58f9e6c0328

          SHA512

          f083e8da6747cb758b2a4fca85e96c358b5c08b834deb4a64baa6b0c307030cfd80daa64f0d95908bec604cd53cbc7298ee3225a4f1f607284a2f5513b521bcb

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          08dc23fcf6a9b7a909e7d5dae389ae0d

          SHA1

          a3951f01e5ed82186add2df88198b33b5430f800

          SHA256

          aca749c7d5c6af4a307e28590c5a3a7326c09c88b9d82f58695dc64adedf49e8

          SHA512

          aa6be05f80dc39c62c44b7d9667323d98c0aa621ec5a3c076ba1d7bd8706dbcd56bc3788c236134947952ad002648f94c59c7c284d48f2ae2515b767e01d2e18

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          0485fa858bd8d5b971fd32ff648daaf5

          SHA1

          455148e3609c760942719ecd889a402962ff1df5

          SHA256

          70e383609619eadbda8c2287e2aaa24270e0784a04115fecd621ca30e1c62a70

          SHA512

          45aa7de419d34ad77f8b378be970d40ea619714b3529e889909681bed2826880c7e219fddf4386e1e6ce4331cd011ddc17e76a730832c6c7ee87fb47f7e281e2

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\CabFFE3.tmp
          Filesize

          70KB

          MD5

          49aebf8cbd62d92ac215b2923fb1b9f5

          SHA1

          1723be06719828dda65ad804298d0431f6aff976

          SHA256

          b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

          SHA512

          bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\TarA3.tmp
          Filesize

          181KB

          MD5

          4ea6026cf93ec6338144661bf1202cd1

          SHA1

          a1dec9044f750ad887935a01430bf49322fbdcb7

          SHA256

          8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

          SHA512

          6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

          Download Submit