Overview

overview

3

Static

static

1

f6d0bf8b0a...8.html

windows7-x64

3

f6d0bf8b0a...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    118s
  • max time network
    127s
  • platform
    windows7_x64
  • resource
    win7-20240903-en
  • resource tags

    arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
  • submitted
    25/09/2024, 20:38

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    f6d0bf8b0aeab768daf7ed96c69faced_JaffaCakes118.html

  • Size

    6KB

  • MD5

    f6d0bf8b0aeab768daf7ed96c69faced

  • SHA1

    ce0d2f51c03b0155d76159aabd65402d89888994

  • SHA256

    d89196a1a8d3446ef2914f23e2b8ba7bc7b8702dcdaae21d6c7d6863ea4eeee4

  • SHA512

    e867de977937235e3fa216443551496e8548700934ac450b1a374feb05a0c11094c4c9fd4a4bca6e3f0e4e8be9236ab519a8a849d4d96c2203cdc6a2d92e8951

  • SSDEEP

    96:uzVs+ux7NPLLY1k9o84d12ef7CSTUHV/6/NcEZ7ru7f:csz7NPAYS/+4Nb76f

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\f6d0bf8b0aeab768daf7ed96c69faced_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2260
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2260 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2984

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    0aafb5a470001257dd6563a5666bf2b4

    SHA1

    3321006acb40b2785af39f37fb7c6dd51ed10df3

    SHA256

    4bb787065aef0aafdf95cbdd87b6fcf8184c001a6823a6287580d06c13175776

    SHA512

    7d132a9585aaf51f1e52ee772ecf4c6c5dc888fbc1d723497fef20bf81fb9a5b8418f9409e8f0a585b7fc1630c24e4c9d8fc23717312251d589560c69035aea3

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    505ed0f70fcc6f6fdf749d3b9f813a72

    SHA1

    a3aa1de08dd1b4a3fcd654286eb9d92cc3afebb7

    SHA256

    115e5decaa9e3bcf1c2dc4c2a5d38330d3497d1438663edc2e05dd2132f4e970

    SHA512

    8fd96a60c8b018ff1b91939a505f17399ec6a0654fd46f590ec6107e051886e1943ab70bca190a2da8194dbc72bd4cdf401cd08e9e7336ff49801b9eb83ddb49

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    671d7b7db5970efc173c9a2aebeb83e3

    SHA1

    0070dde13d16da827117f91ea92e476377474ed9

    SHA256

    de65619c18e8184ff8ca4ce9ff3ec27bc2aac36f86a605f14ddf2a0cf27367ae

    SHA512

    4b7d74bb5933901ed42575078eb02a79ef1e0c723addc1a39792a2ca6c863c498888b0ea3c23f20fa0ac9bb9d2c8e4e43e591ec509e6a7a96df01c5fedf38a32

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    defd245260216bfa1e12382a1954c160

    SHA1

    f46c187cb80a6be692d3093d1ffe601837b6d7ec

    SHA256

    8f37a2f3619dd0f16171970637db9879ce07a025cbd743c131df4ad1647ef4f0

    SHA512

    f87c3bb8e00304fe44f1c8f08bf7b28b45b88d1fd343f02630ece2703810ffd0ee35a6f4e820a08bbeb37ec56df293130f35096b207cd359177ae20662805bc0

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    aa8147a99c419b147f7ae3af99991483

    SHA1

    8854f97335c8d4460e8bb3847e03ee9543c9cdcc

    SHA256

    16a49bc24001f5202db0e3b9945c406affee69d1b1100c7d25bd301b8b8d17a9

    SHA512

    28f4a69dfe8e6d665028cd2b160c9671e1392859333e0f2e17d6ecd29743158e34e610b0c6772ef925af94ed42bf0c3ec728f993020326f5a326c15cfd152ff9

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    849a179023c78184d0df7cbd6f206d2b

    SHA1

    8c8e3a8b21046271ace1aabee70a6de8a2ee0e47

    SHA256

    3a073b243804f828b1c082fd8a85c45e16401fa576f7896c2f103f6b53706550

    SHA512

    d88809fadf3a2ea496b396ec373fba23a4f03316372b00612321851cb14f3f138719540eb8dc6ec5255743cd3bdd4953f39d7061494e3e747d9c8b17407aa2f7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    63119462a190ed5eefccf0251fc3d78a

    SHA1

    dd6a98fbeb5b98a2102c7ff0afb5f6fa6a0d323c

    SHA256

    6ad8a0d598ddd722cfedf9b3a6f7a45f8b2b5df8e2334e788c96cfa9a111699b

    SHA512

    b7135cc7b72dab9fc69ef6de4949556821d991caa62b3c3de49bd3895e123fa4d03b0d4564bb17bff2acc7df851cc89b67e8f6f0b088823298a3485aecc21b38

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    c5b186af043aba9a60df626cf0c018a3

    SHA1

    69535c10bd37b72fe49517e005c83329b46cbdf4

    SHA256

    5d3411aaf51cd7040b5aac70ca13d767bd0130cb19a470da97b8cc9697498061

    SHA512

    cc71db5dccde42a5e28d19cd0f2c4716d76f8c0dbc851bb1bbe9637a3749f52e637313b774e31553f763c4bc96787ef8279a7081e9107f6436221106f3971448

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    36b0e739eb900f07b2416714e88e9391

    SHA1

    75a0cb50a1a439d590b693d79e41f700461e44aa

    SHA256

    b21d093815e44a3e5e4cfe7bab81d696ab32625f405e9309ce9989fff577c0a1

    SHA512

    e4235dd7beed4fca23c256e0c6669a5d4196b971d95084eb708e2360dd5c5434346706d2fff12a9d768ce6ea5c58025a4c5108e8971bf281a4ce2ad3dc991ac2

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    3ce4ee8cac064a581d2a51346b6930e9

    SHA1

    30ebe2a2572474ede8094d9af3ab1bf8144a2e57

    SHA256

    535c159f45196863b2c160a85282e9313e44d13aaf3f08c62234bbbb413b9dc0

    SHA512

    e867131999d1a7cd4b2f2bd9ddf66380fdb82dbe7016098ed3d4e585dadc6748009b9b701c0be42b7da33e5864038cc0f3c9641d35c37df3aa9a89ece7797711

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    992115ffd002b8db51975eb965ebbd08

    SHA1

    b41fffda7b25c5b0398c2ded817564f94d7065b0

    SHA256

    80d522bfa0fadc2d7d701c8a37440c793643d045a811aa18568e59f684993ca4

    SHA512

    cc900a05ca587c7be9457bbf332495727706c66f3e97b9db86aabaf453d9a3fdd82b5580e7e2af54bad80e54ad8995d70d292bfb1745fcd07c117af38610862c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    5ea1d99cb031cf5af857f9c6d3bfe1ec

    SHA1

    31f8d77c39df3a9608a434c110744bfc91b3aff3

    SHA256

    852b8cdfc037e310883270e26873430bf5f933c8313ae8aa7fc00177e08a78f8

    SHA512

    df61d61e7cd729c9d10b4596279867325d87333b95f57f99abe1bcbf549e254162e88001bd4d67e8eec995d4de77b6a8c9d15f049df10a51e2ebbd7ae60b30d0

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    e6eb57f188b471303d51a3dafe75ab72

    SHA1

    581294caab1ba93d9e547f3966407df4867add82

    SHA256

    be7879e76837cb3d6f69579e393c874d602b4da2eeb01d26b17e7a592940bd39

    SHA512

    fc3c3897c57e309f94e034f20a24a5cd0a4b93475639ee58cb7d9be0f87b9ca3b91d619f9393377336e216589f1cb32c141284569dac39ef92842c9c505472e2

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    c07bcfa425b49edb10be102fa2d68bf9

    SHA1

    554d263c1cf22c475b63710c855430643db16940

    SHA256

    a6f2cecb967af92cd8973a4152312dbc4fe3ee8a9c79f1a610fce8c7636b87f8

    SHA512

    1fe134bd80c88bcf2267d80191dc391e1099fafb965678cb38ab76d554408d6db23d63c63e9bc11daea7dc7fa526dbbe65043fd79a343462e408235ed00fdf76

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    1853909ff4189dfc8a41d7facce26217

    SHA1

    85e3359dc145c2b11e63eba889a86f1df03a65cd

    SHA256

    64c0072a92bf52d156ea0fde3e0e08465be7ec93c35671be21e0139318dd8825

    SHA512

    14bb3a3270dd08da6ea7e481750b528c8bf8b0e0638b003a56f433c4cdef2fba5c4e5dd55846cf2043555670cf025b90b72d3087e694926a88c21d8b6aa5833d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    384e86331f9c17be2fc14b1393b5f20e

    SHA1

    aeeb94e997018c877a1e8ea7e5e4b09779b7427b

    SHA256

    231f6a9b0de00161d38f86a82c57328743b6a1acda5e232b29dfa600279ce758

    SHA512

    3f4cfae278bee92880143178405136963d8145f2ca0dde6947d3163fe5df9ca787f8d72089a033f5147e638f7adaff530c311dba23c8160fcfa258a1174e9bf4

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    dff81a903c88f40b1e531b63efe1c961

    SHA1

    717b07582f8de38727f2fc257ca09452d53a6acd

    SHA256

    eab5b82fe927d0329bd3a7fa0ee9b146f302f427e350fd2cf1b0b6cf204d6d45

    SHA512

    82a8dc40a7a68dbdcf208e8011402c04becf279e393aa83be613e0e0a436fb8f721b27078aaee3a3a8124140770cf30f03aab4c6a789dba5819a1d9c5a6389e6

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    f79f0817080fdb436c6d1bded5050c2f

    SHA1

    30cddd0c2db87080ec3f10a5b97f9cef92aa44da

    SHA256

    a9f18d8a005976260313605b54daf42f9ac7b91a74f75e0b9a6d3b2603358e4c

    SHA512

    da3bd607b31eabaae71f897dad8ef330bf1ff864de25acd7240dceb7fff5424b9ec38a63372ed585ad533198c57b9a6c0b8b5f9ea5f15f59ef691bed5b29c500

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    bb523b588c5db7b9d367cefb7da16582

    SHA1

    bd8efc0dd86befba17a852c3266d849877d938ee

    SHA256

    20d1bad2d9762199ea8ceaac855d8f999cfef4080e8fb8b5eb845e69581113fe

    SHA512

    7ae56cb8d3bc8ff2d916fdb9a68b0d2d6de6af4cfa8f9b79f97eb1afc6c850c088b9d8ba9561db6a870eaac75c91ddeead8627951aa5f415d89be2c0a006da48

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabD185.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarD1D6.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit