Overview

overview

3

Static

static

1

00731d092e...8.html

windows7-x64

3

00731d092e...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    133s
  • max time network
    128s
  • platform
    windows7_x64
  • resource
    win7-20240708-en
  • resource tags

    arch:x64arch:x86image:win7-20240708-enlocale:en-usos:windows7-x64system
  • submitted
    30-09-2024 08:46

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    00731d092ec95e8b0c804e084a10c45d_JaffaCakes118.html

  • Size

    28KB

  • MD5

    00731d092ec95e8b0c804e084a10c45d

  • SHA1

    e3865446d4d6791ac4e4c49a0b0d10468118daf5

  • SHA256

    120e2fc21b68cbc84157635ff49931b119aad79109825f8f3777a70f4ad7842f

  • SHA512

    3be8f3f072604acf3905a3e39c3c55f2f936c05559bde580cb1a605564e0b1195c0a82f979317a0fb5720d39a51c30d5fb1070729f92f12895cbc075bca23ebd

  • SSDEEP

    192:SIKgcj038qW48czFYQ6HeIafD5zdvKSkbze7gY3E9865LRfraxL:SILcj0sw8xQseIafDVFhkm8I28gJy

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\00731d092ec95e8b0c804e084a10c45d_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2364
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2364 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2764

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    d78ae7924015bc79594f7d7ce9f8f157

    SHA1

    d72fbf457cbba0f7e22687ed6b90b2fb4a891072

    SHA256

    cc1e1ebe2c6105d71b80b1e0c3209a93ade52e445b0ada6466349235696ecb4d

    SHA512

    838da4bd6a26b5532b9117b4d5d58462a8c38471bc08b0840d53f36f3a7d25a32ac7ba49d3c2961850337b1bee91c8c6ddfd9a0ea0768f54072d8bf23a6485d1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    5c2f8d05ecf0040513c0fda2d038e38b

    SHA1

    3a90bec0dc6f47dfa00881cd51d027dae3268bf5

    SHA256

    d4231d0bcd6a5737dc86cef739203caa9ebcfbec53143bfe17079dc2de9adc6c

    SHA512

    84dec9733ed718f841de24a92564c69396db7e6fa625d8b02d4e04c6f73d3768fea0a69cf08113b036368d8aa33133eccf4ea1cc8fc06fc77956eb64db1863d8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    9c3d3d5bbaa110e08f2c1b6073e2dc10

    SHA1

    cb3890c2b53018370d66c7f9e51e98a150f12c5b

    SHA256

    2d71aca4d179937f7fcf584bf529da7b3bd5d3fdfc379cdc5ca3893a2ec94d63

    SHA512

    00c868d7024d5aa638aa2146a5c35b0f1cac4cd6d90478d85dc2f40740e1332433577c93f1d47ee5e6d809a66a7b9ee3691d1ca2e33c06f7de90b7911092662d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    c2a0a3be80bebcc8d658dd0584ec1f03

    SHA1

    ef64792403ac358871e81c8e3898ac509ca5d34e

    SHA256

    2e3d089c114cd931ecce5e0768a874cc895d79bdd6420429ede3049d160c597f

    SHA512

    c343b946604c75ac81991cc75b30e5dce186c99a65c7d5ecada4271618eff2ebba5a747e4e3acded6f1c4dd232c51ca7925e2e4e80265e81f86a7442e1814ec4

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    02e0eef0cd413242f75cad283692c741

    SHA1

    9cf9a428df48907eb99261dee353324a6a289122

    SHA256

    80b7cfd015bfeab9746f29576ab2c5c90932528389ddcbff5d3806e5ed3f5c91

    SHA512

    1735a70a55ff7272a4728201c557cf5f19bf546bd02a426eaa9f63a778e8c6b3403911a4ec59c769b2b2c2ff7518faf99e5d539e14cb0eed9afd34f8416ca695

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    a96e9257eaacb83eb9b0cdb7ea0fe53f

    SHA1

    3c8ba38d495e57972ab3253f39114e7aad8f0507

    SHA256

    8a60c24edaf2d3cad69ed42a3cb86c154aaab241e982014136d046ed5e8f0331

    SHA512

    bda3f42c464bc9e8473cd88fe09f890ea6e0426b3c7db67fb3a4834a35f36b24a1012a61b14f749023bf8ceab37e31022d657b7dd3ce18c195d1775b2cee7270

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    b23cbed9c4b9e49ac8f8729b2b7cbf20

    SHA1

    11d714c522dcce0f615bc994cafd499575fe8b50

    SHA256

    717b5e26b391ae253481f55e7bdf065125dc62eacc13e4d50050926d197206cb

    SHA512

    2f26216944eb738dbf9571655946615f244ba58523d31e5551b255504eeeeaf44acbbdc8a4911dbdc9d6d301c5da19d060685d4700cc9b59c7d7128895f5f6fc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    d1a507dfec92b79bc6a71425b0455a2d

    SHA1

    bef6e7c303bbd260fdb7ac20d1adae869fcc0f51

    SHA256

    45c56e721aa0a480e69b377bc48d9c4ca34f3561f20260af24aee2e8f5ab0004

    SHA512

    4cc89fb26312a4371f681255fdb95f3d8ac61aaab3f26adeb76fc6ea1bf4ebde9e2d74f477f8a145fe36b2ad7698a367378f4c50bf6fba2fa42f0a9a80d6df4a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    0dfa59ab01e31268e68e096a65b4b80e

    SHA1

    40fd75923356ad064586139102b43ff3979cafcb

    SHA256

    5ff887800afa55a79dcac0fa5acb68becadfe4ed502a3463d76ebd6ea841546c

    SHA512

    1be8183ee8b614a8c4be5e3a9ec5acf0809acac9e3ef3032652d9fdabf264aad192f06a83bc97acbe1448b1914850701c01d805b89fe69c2fc4d00deb48f0cfd

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    1f5186e80f75496498168c2325583e7f

    SHA1

    4c3651adbb621cdc57c50d49fa9d7e72af71007e

    SHA256

    6d01e5a346aeb79264bb743215c5d60e1a372863ca0d29c5aeae4f3fd586561b

    SHA512

    0f3452b7575332dfb9574f2ec080c1ed13bf365e1aba1624d00a6bf39cae002da841cd11ebcc8f483937ee16fc8be0d97bba3b97da5517dff597db1af0d44bd1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    212ee9006229bf5b45bcd0eac3a3ba16

    SHA1

    cc5bb7123774153e5ee66cc6fa44b8b9a3a61aa2

    SHA256

    1b140dc7410f97f9a6a891c1a9f6b3a914809ebe125c4a5d76d59cee518da8f3

    SHA512

    c36d92a547faa1291186c31fccb8c778bdbf9ff870d8b776fdb2b6cfe76b53f4abe658ef826baaec32d4c65160eef85a62b91403183b60a9d9ec0c702468cd19

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    e12e4a2e531bd268ed1ff8a199a57c50

    SHA1

    f26e9330a5ab6f60e04c6dabfaf3e4fda82016ab

    SHA256

    bd2e4c7218e6e6fc2b688dcc9746d7eb2cb2391fe1ce8f39181b409f342faa0c

    SHA512

    7c27d1f31e9279c1a71cdea188967332eabc1ed10a62b1e8cb48d7d5bad48f92db985dd47d7295c8fc8734b7a460309f4c00e84d4bec417731ffc745359051d5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    fbf45b1c791b6402ec61d17bc24aaa45

    SHA1

    2d4858bc115f2a8f358a3e024ddd991d4e4bbe41

    SHA256

    e21d38f27ef97fb13b599b2a18aa49289dff9a812eb493881b85c6dc7f948c35

    SHA512

    94a07a66689b1f0bbb535a684a816a974d51a57332d662a9edc5a9b70676d723464829403b1977020affbc25de523f18208198bf6759ef33a2d2b58c5997a0ef

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    95f7b3547864faf69370c0d9dcf833d4

    SHA1

    f8b9750ba3d54384601d1e56bbba45a4e99dd2fe

    SHA256

    876c82c77e2b2fae36a60282a40267e29f232a298b65a06b02c7966420f63544

    SHA512

    a3f8151821f2717f8076de41768a125dcb7f9c030e4215594138b822b22a7d1b6c8b440365bcf88e8f6de349113b1a19f041f77dbb00706df63a3b48b4e0b63f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    b02c408acb24269a27fb2de8b2a452d4

    SHA1

    37e4b220c9cc87cebae057cd29f8785b9dd4b3b0

    SHA256

    afaac975adbc220b6768c56bc2b5bc548b333f42e5fe5f735bd5622783214537

    SHA512

    3ddc1ee1b1484ed3ca33d235b251b79be665ef6170849163e5482e6a8b04983c20d27e4e35adfc9068ed3e7c074d543717a88062940cb4c56434bdeb600c9a75

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    d274f6fc759e07078f994dc71a1f6803

    SHA1

    8dbcd21707743a8e6c613679579a68c4b14dc0a8

    SHA256

    641594904c2edbbef445f72e48dd4b007d099f0845096eee8cf6ab943f2acc00

    SHA512

    5abc1df2464303f8ffaced8e1da5850068f60ce497d187174fa5c74d94691cb2f9712582faadbd62ef10cc3ef502a6a6ec2fcd952d63810d8d2b3a99776fc705

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    b9048c1ea232b91f59b333f50ab82423

    SHA1

    cdc9f80b4933ac3cf88671a07f3fdcb74d848b1d

    SHA256

    0bfc59d662e816aa3b49cd9ea17799f1a10a1389b668acd7a5a846622fa4d98f

    SHA512

    e78a85e23b8ad7e1fe1b3151e4dbc93b2cfc87d9abbde410760bf205e0e19ecdba7edb0043efcde3122f3258bcf5060977a33dc03cac748fb70b0e0d5c65c520

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    4ddddb41f1b9452d111bb44b357a0c57

    SHA1

    5015bf048946860c5a5ba7ba43cf8dcc57a3100e

    SHA256

    f5faf103375baa02dc8bfe08551089eaaa28cfa1ec4d7faacba4cb4a26adae70

    SHA512

    2f63890ee9200e479ff7151e29d0839ab3cd09d1ddb2704a41822ca900f899ebe0c60435324db2967f3435cfcdb97aa73cd8fb4c8011b6ec99a18f8507060308

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    445f4ab7ce73e085968e15e94a067067

    SHA1

    4eaec7d9d15d3fa307c09878e70442a5627bd6a4

    SHA256

    a41db0cc6317739470cec587debb99cce3a63a00dd6f922d7a392bae80678777

    SHA512

    59f7a76bb5dc50c750403de57844013f92058f4052d3192257457e308a83e16baf096b3573ac32b635d3cccf20be0545cbfb9d1ae3a5707dc1eef7ca67dd5890

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\39GEHZPO\errorPageStrings[2]
    Filesize

    2KB

    MD5

    e3e4a98353f119b80b323302f26b78fa

    SHA1

    20ee35a370cdd3a8a7d04b506410300fd0a6a864

    SHA256

    9466d620dc57835a2475f8f71e304f54aee7160e134ba160baae0f19e5e71e66

    SHA512

    d8e4d73c76804a5abebd5dbc3a86dcdb6e73107b873175a8de67332c113fb7c4899890bf7972e467866fa4cd100a7e2a10a770e5a9c41cbf23b54351b771dcee

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\HHT5LGG0\httpErrorPagesScripts[1]
    Filesize

    8KB

    MD5

    3f57b781cb3ef114dd0b665151571b7b

    SHA1

    ce6a63f996df3a1cccb81720e21204b825e0238c

    SHA256

    46e019fa34465f4ed096a9665d1827b54553931ad82e98be01edb1ddbc94d3ad

    SHA512

    8cbf4ef582332ae7ea605f910ad6f8a4bc28513482409fa84f08943a72cac2cf0fa32b6af4c20c697e1fac2c5ba16b5a64a23af0c11eefbf69625b8f9f90c8fa

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\UQFHO95Z\dnserrordiagoff[1]
    Filesize

    1KB

    MD5

    47f581b112d58eda23ea8b2e08cf0ff0

    SHA1

    6ec1df5eaec1439573aef0fb96dabfc953305e5b

    SHA256

    b1c947d00db5fce43314c56c663dbeae0ffa13407c9c16225c17ccefc3afa928

    SHA512

    187383eef3d646091e9f68eff680a11c7947b3d9b54a78cc6de4a04629d7037e9c97673ac054a6f1cf591235c110ca181a6b69ecba0e5032168f56f4486fff92

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab7013.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar70A4.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit