Overview

overview

3

Static

static

1

fb26e2b6a9...8.html

windows7-x64

3

fb26e2b6a9...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    129s
  • max time network
    130s
  • platform
    windows7_x64
  • resource
    win7-20240903-en
  • resource tags

    arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
  • submitted
    28-09-2024 00:12

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    fb26e2b6a948429edc1d30e8536ea102_JaffaCakes118.html

  • Size

    46KB

  • MD5

    fb26e2b6a948429edc1d30e8536ea102

  • SHA1

    23c1db851f48924c8ae9186f290b8a8cff459c31

  • SHA256

    75da4e115847ba38ff26ef88f2e2a09d9e7d85f57624d6016504b1ea73a017a7

  • SHA512

    a282a07d8867b866bc88d044d68d8cfff3b0623fb13fad4bb07e5f9e367f4298b0b2fe4d18735592f4724a42ff61f0e1c2361a1b646a6fe88c3341c3c96fc050

  • SSDEEP

    768:yF6bR1bDINb2vbk5cRq//9bm9itKWdoGeA01J24JjYAX2V8ngP:yF6XvINSQ5cRq9q9itKWd6GgZGGgP

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\fb26e2b6a948429edc1d30e8536ea102_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1632
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1632 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:1124

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    fa6ee8b512da63491181bb1dc9f6b2cc

    SHA1

    32fb79a86ce6fb26c6c30b723e12b65e28e538f5

    SHA256

    3170ea2a0f5d454bd1a76eaf161f94cd13a4d0ac1e1103109d7319c79633940d

    SHA512

    ae66243f59db73b17e77010ee6106b1d808945930521fb222b8f1c4b8d8cd44214262eff2938d95287cf9ccc2f14ba99534bd5a6fa1fbba561a06b67d9f53c58

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    9e93b101a7df46e6c6d1550dce8a25d3

    SHA1

    2b1f0d34806ff35ad85f916ac31a9b80e9c91bf6

    SHA256

    a4929211053796c0496c27c293b17421b90f880589cf55c245285eb7f2f06859

    SHA512

    9ee6abb702427a6b9758d21c9b54707c2e72788a336c06a68322ab4400285ddd5e37a39be8dde826ba1a7a199ec13d0722e977c0bbd21a4b6abde1dfef1cbc39

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    1afdf4ef97708bfc01e382e43df3fb42

    SHA1

    3c2c94c408f1890fba40dd3b5dbf4e467d58b583

    SHA256

    5194b4f6c9fe611a93a5f2cf0a7bf32c72ebb8d6c8ece0f2c9c6ef87e85bd17d

    SHA512

    239bc1d2a3fbd784a2f122c008bc7d1e2ded9b77b07d3c3fff62a47b45cedb669891b8c6caae5a622e2ca34bc9c10f1c2798045680bee2ceabdbd5329c84b8bb

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    948162e970d252279a8b9456e2c9fd44

    SHA1

    dd8f0db0752bfe3456087a42e76f6e913270ada4

    SHA256

    841feb93bea63887514ba298f874be49b305bba3fd5bb35fd7f6e3c12ad35a74

    SHA512

    af8757df590934ef90abfae1a7d35c1296e337f06d7ade97bab52acb040121888b226c8fc6f0de757a423a4318a725aa296db0623298f3b16b7c3ee1c90edc59

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    9ba2d1724bf00df249dbe2e06be630f3

    SHA1

    40bb5f443752eb672bae00c3317dbe5f323736b7

    SHA256

    e47d50ff4be330a9ed1a68d226cccf5894844b3a994ab41c99ba539f7ceab7d3

    SHA512

    094bb2ab22f7a0cddb7855f5e194424727a09095e056784dcc2d696877c06a1b71b9077a55adc1c8445e1dcb97f54fad2704ca7fa475716005e2f75f389213f4

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    e5edf14791a0c642d14e1ebae8c502de

    SHA1

    28ef60816a9704126d0aed50c4a344eca4a152ce

    SHA256

    7915ee5aa851c56bb33cab8c72f5864e677ee3d9c5d74d8619316ce357fc1723

    SHA512

    51af08181dab61021215f2f1834edcb294bd0c6277cf54965b0726a24eabdcda1bf9af0da838947edee34dbb9bd1eaf01f08d0884f6af33011d0e716c3e633f6

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    9d795d5a8a8552c3ab069fc4574b3538

    SHA1

    eb80b567f148181e9723772055336ae8c34692b3

    SHA256

    d72c9bd4bf8d94dd0df4d93c2e113306ee578cf3a45b57e80346ec7b9b2905f5

    SHA512

    55b06568d0cf47cbe4ffe72623eb47facb59c03baaa972aff90372acf97caa941d9c1d96ea704ff56650116a9369c7453ddf895f881f81e88b84a11c6c5e27c2

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    ae1c7021bf92963ef83e90929a262226

    SHA1

    7b9aa58b23552f0fa2235e59b2d43b97b8da7e65

    SHA256

    0b741c33fc9be0f247a5bca52c4c08973dc87485e13a5e0dfaf6eeaedeaf0bed

    SHA512

    bc6386b362f7a186264050b3e4cd205afdd2e4db048d5970189ca22b7303da5be9d84e8f965bc3fa7e849f83353993dd9ddf17b296a3eef31a76156e0a83ba4f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    d0b1502206b26d4d340d9277304af324

    SHA1

    1225c7700da5a9fd2228b18b90f324c5ee9756be

    SHA256

    84a62d531d3e611e951aaab489ee7cbe386675082bc893ea8b3a042f9509f973

    SHA512

    e345cdaff8c930063ba9e401f7b8d82f1beb7929acfdacc2d464a536c2954deed1a771cb4babc95dd2af2b4e0ad340cf1ddec5469eb8aba3cc5af28d1baf6104

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    63f73e11526f7d56ba774ed756f92777

    SHA1

    e66509e238f05471d4efbf2c693bd4956b8828ac

    SHA256

    ca5ba7d32877da80dc0b918897b5eda04c5f97f0b74d4819cbadb724b5004de0

    SHA512

    61fc7305b9ba306d7292f66f8af841dfe127eee742b3995ea955fa63b3b80a6d4864b9b7619caecf49daec45c994a2d8416c539c9bd3dedf074bdf88ef6c4431

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    d25d110dc7fa73803c12ab1297b36f11

    SHA1

    94481113395bfccf0c8cf382492c8b4e2da6565f

    SHA256

    1bfb9d88e6f61a2e2e197cc681eed6b9195da9402c399f871af0d4bdc8d0c2b8

    SHA512

    66b849742a0c388c454bfc388bb366c2ce6641a59862ab2fdf4dccf31b5c47d722c04e68d3a8067c3e1acaf4a49b2cfeb1951636d2dc86b935c0131aa5573656

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    80c689ad32978b15c53d4a7ca7c82344

    SHA1

    3f915ada82d8cf38353150625f8473dbbbea8d57

    SHA256

    da6ffd36c37553ebf9cdc3286ab049dba58a7c5ac62adab291f785fa40bd1778

    SHA512

    20ec06ae1ad9bbe571d14cc6cd852ceb36056f166b0cebfe4f7ff2e1f240e5270282a6cf884b806b9cb0dc59a1f520cfbacb923c72a5be8c8fbe4b93ebbc1c25

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    371e0d1ed58f0adbc44d5e14f0efb8a1

    SHA1

    f76472294fbc5f3c834ac0ecbe0bcf2c309a15c3

    SHA256

    5094858678d8720a1bb46ef40c9f0195b9ea805210b72164706bd1d69b0976ce

    SHA512

    d80774c26f16f5fc3b20210ef824859324f6a2b05efb3746a3b5d7b1b5db095e26401ab5f1d82e650fa569be0b4331fa0d7764af32c0375f967774b286863917

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    9286ae2216debddb9a66ecd3e6e8dbff

    SHA1

    1c8b12b8cc61be471cc32b987ac4323c71f12c83

    SHA256

    23848dbb3b7d4dc083b2a090cfb177f91af4ed73a8a19c5cb6c748ff844138e5

    SHA512

    7acb2acdb6fbe55438728420a708ef81e89d9fe375435657e3b2157119bafe5468f17f907f5486426ed3182fce75809450fe2450a6fa93c202e5d33acf6259f0

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    500d5b39af817e93ba6b999d79e22ace

    SHA1

    acc27fd209323149be88cd1ac23e951e3efa2fd9

    SHA256

    68fbedc417c19e75828fc269b024e0971078501119133a0558c8c499d16620a3

    SHA512

    2c37d1e712c40fd0ee361d12ae18c886bd97a2b293b8f7919350c92ebc6bd4e78edeebb20c54dd363599fae00fe176e80b4cc4ebea577c1f95cc6ad13adc2453

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    31f903fc49f07ea0fea95f3bab803f70

    SHA1

    f607cd1df647c0c6c2072a9a7e29513c32865b15

    SHA256

    73e65a52046b3de98e9d26ee9fcda562aa66e0be56c56a5c4fb88007e5e0a594

    SHA512

    0166cbf46da027a127872954f82c23ece805a878e5d18e39d587b74c01ae2e712b7f265dbc45dec2f5d08d3b0b4013bfbbda86c36791a9a50e72506b1b71cf30

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\9UR26M8S\rpc_shindig_random[1].js
    Filesize

    14KB

    MD5

    e691b2e17de9ec018eca758518bf5dc8

    SHA1

    3238d543acf53b803dfbd260405fa558717daaff

    SHA256

    438d41bec769ff386a2c1555b6bf9105362f67dc3e711c81c6092ee7fbf6ad2e

    SHA512

    5589a5cb408ee8e0fd473de24224ba8fa1453eba5df6e591570810f992160d4f3e8f60f8ba74d9994861759321f5bfe0c4a608636913a8407b5184008457afc8

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\AS91FDNI\cb=gapi[1].js
    Filesize

    66KB

    MD5

    aa012028297a26c039c37ab25a4bd17a

    SHA1

    25f23d01b5f580c00778e1c010225e5b8c73b66c

    SHA256

    55cd2316edf7159b623e4ec2c9e3a334027c01e2d1cc386f833ebcd35ed87b38

    SHA512

    d346eb082674fc26d562da9a12f36ad2cc7db1f1b35c891a8734284cf1bd052a967137c1281982070688b2bb2e06c7f4967d1c9397311a31a11a8560b9c45fd5

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\ZKZ95V4R\2254111616-postmessagerelay[1].js
    Filesize

    10KB

    MD5

    c264799bac4a96a4cd63eb09f0476a74

    SHA1

    d8a1077bf625dac9611a37bfb4e6c0cd07978f4c

    SHA256

    17dce4003e6a3d958bb8307bffa9c195694881f549943a7bdb2769b082f9326d

    SHA512

    6acd83dfd3db93f1f999d524b8828b64c8c0731567c3c0b8a77c6ddcf03d0e74ee20d23171e6ceac0c9f099dce03f8e5d68e78c374da2c055973f6ac2db4e4f9

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabE5DE.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarE5DF.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit