Overview

overview

3

Static

static

1

00db20ca25...8.html

windows7-x64

3

00db20ca25...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    118s
  • max time network
    128s
  • platform
    windows7_x64
  • resource
    win7-20240708-en
  • resource tags

    arch:x64arch:x86image:win7-20240708-enlocale:en-usos:windows7-x64system
  • submitted
    30/09/2024, 10:27

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    00db20ca2539e6afa63ff6ee297d5234_JaffaCakes118.html

  • Size

    162KB

  • MD5

    00db20ca2539e6afa63ff6ee297d5234

  • SHA1

    6d87295a7ad2f04479c52e1426af10c156e6e7f6

  • SHA256

    e23855a9d0d536fa39ec5e29d5908caa2616604aeb4321628eda51f72955dc01

  • SHA512

    91c4dca6235fd336ed93ff91c33e638730e20d7c4740d248bebe337491a1da573763046196d06a15c48913d09d5e1d818c79d079b3e0479bca7b20fb94d74787

  • SSDEEP

    3072:SdV2q9AmelAb0PXjUaoT0O3YKLUvlHdUceUKC+1bzPvhHdyfkMY+BES09JXAnyry:SueAmelAb0PXjUaoT0O3YKLUvlHdUceQ

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 41 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\00db20ca2539e6afa63ff6ee297d5234_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2364
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2364 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2756

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          f7b43a13559333974ac9b331303635e4

          SHA1

          fe3334b1ee686d49333dbd2278847646a7653a91

          SHA256

          b6a49377e58ec793823727b6951e946b2b0bf0b3f21ce205ac628276755080ad

          SHA512

          48de31324e4a8b2012d71612878b4a8d0d4a99f4c47b6ad025d830af0c6d9daeaeee7749087be9697c4e68908776ad448c5381baf269992e5a3e20a12210e625

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          354eac4629924a1c42cd5fb5026ad369

          SHA1

          3085aab0e2ca5e9e56858b10dd722f0cf26a116f

          SHA256

          99c946e8464cbc6a50c1f3fb83bf75fb10de3dde60772702c46c0a1ae5971b9b

          SHA512

          64fadf93b317b36935231b4bf15bf66114288021c50c6d102a952175874553737a030a9010d5e651f513384259e1a446fe6ee97dc1fa7ad63d00d17b7686229f

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          6ace49597ec9b8a414554b5cd843ec84

          SHA1

          d922deb5955d1de528bc49b18aee46fa503cbeed

          SHA256

          4aa6ee3e9c9b3b4bfa619262cd826de5e722cb5de3aa1047425e7fde4a58972f

          SHA512

          abebb215dd45a54e024df21b71ce3dd36309a074b37b30946939a0898d388589c9056569cc719e1605dd7139b675bb6b3e2028701c5d0e09c56d02efc74c50ab

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          e32007e89a964b14647ee83ea0f0c5af

          SHA1

          19f5b3e13c72949be9d7966b6890a4a74032bc46

          SHA256

          29d512251e6d66ec4cbe6a3b5ad35070d8d6a94415e5763f86ca1a6f8d62c67c

          SHA512

          46ecdf89c55aa8d27458542cf2df7e28f00372f6971ec19e0f12dd3847ba4ebbf1ed5900f955da6f15635179cf2acb57e54bf5be5e6ea3dc20723c37bc7af410

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          71d233c970197e4ab3ec1af7c4d0acec

          SHA1

          43a837c98e187410753b3cb3b576d441eafbb4c8

          SHA256

          2aa67aeaddd173f2c68a4453cef50358f49ff1100ad2794f947fc1aa4e0a4e23

          SHA512

          e9b90d7b12d2580291611f6978ab53b7e2a998e4ffa8941a1a1f76696e88398f7289f4955c83cd01098d3ca11dbbc9813f7fddcebb4fb131edd98ad1d247e0f8

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          542f2862d78f550cf61177f523586aa2

          SHA1

          78aa389373e57e1e113e4d5d927465a5bc86546c

          SHA256

          a37684309398d9b8cc1858d382e1dd1df9ce99db4697698644224309996085fd

          SHA512

          aeb7146c4a1db39e780660dc729fb0712a34064a8eb96623bdfdea88ece63e2222920980c53941738eb50274256543a7ce85c4705596e66938223c626662548e

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          7774c1241bd1ae3de3c1aaa9542a1ea5

          SHA1

          b44b1dc0de61ca55e0be1e3a532de9575a9e8103

          SHA256

          ef4fbdc190ce6b087a24a687f25b61b6a17a2580ddb18270ba84936d1baa8f97

          SHA512

          594c49bb25b7728f95dfac6045b1312b206629320927a2a28db57a70cf90a6848950cc6d7e52736e7ccb04193e4a766052041efcbbbda11aca3b06a5d60484a1

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          fcb9c70ae392f00bd66f584bc71fbdd4

          SHA1

          e02a487ef76bc857da26491d5b8e4a5335312a58

          SHA256

          298a4f8d4bdab694200eda7da7860d05a3218f5aeac51e412469824c7e5759aa

          SHA512

          fa0ca272d9036fb0bc3797eeb6f6e6ae61d2b2556cd48181965d60a0e374d2001f6090914244d51e3550dd3e584ec60702da4a8d64adaf9d321111156eec239c

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          6ee7258f5a4c3a528df4f315114de284

          SHA1

          eacc835f4da99f84a9c319c5f4f574982d92e3f5

          SHA256

          1241663a3a8e5244b204e8065510758568f0a14b91c0eac14731bc64286c30a3

          SHA512

          6d50d5e6077caea95c36de3d3d60afbdbb94688a7861592cefa31d4e0eec8c1eeca2b609fcb0f41c2686d7e3ca1dfbec83a931a0d3b02afe6f7767995a1932b9

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          82e6b9d50deaf6d8478141d6d6dbfa43

          SHA1

          3320058e3829b69b2c67be05ffd3979935f6e41e

          SHA256

          9621bb6dec4b60d5bc9f10fa6fddcff9563e4b03c01ed2739566f44bdeab8690

          SHA512

          f3dfa4698ac8c3d67f022d53d507b3b4c4c1135cf7664ef725ec9e76e31215f0ef94fdfb52f3a93cf3e7442eec2d48e5005880751f645ef9a7cfb47a38318d55

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          94b5fd4b57602cb1a5a17e2240f3bb62

          SHA1

          40cb92ae402877d82090af3a82d30959783a34f9

          SHA256

          95dc26c41af000e6ecb19740bda207edd2f5c219f063435906295d87794e970b

          SHA512

          78b39c8ee31c079c0741458ee4fb542c34f664df118131a003267d8d9a855d8eb89c99c0fe5809e404cbdd385d63ee5a926977b1000df1ff0b195ecce4a714d0

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          475cb48a4689acb30883a51e18acec05

          SHA1

          89defeb6f64b26858b141b89ac25ac6f2d843ddc

          SHA256

          7fcf880b8c689413153be9ffabee89fe828fefc64d026fc4eabd98b290a8d5a9

          SHA512

          6813fea2388626b4fd78789f808915e45be95733bd454eff5c5cc5f4ab77ef0be6deb7488f2f363dbb1c36e6bb821d1a023eb00295555a6b6a395ed1a1e905d7

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          672189b658259566053c5d8283f70c07

          SHA1

          fdf87dc554ad51b8b797d4a0f61f853eb0f649c6

          SHA256

          7d8b39945d8d8a5f3250e743e6aadb03a384195bb15f929f042de3f02a1a0f33

          SHA512

          1a8f64dd6fe98836ab5161e05c19de6d8c9a1b44eb53f463c79a1f3a0629651bed8a85734670462ef8d23cacef195afc48e90ad392ca11e30c7f08e2445d5639

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\Cab74A6.tmp
          Filesize

          70KB

          MD5

          49aebf8cbd62d92ac215b2923fb1b9f5

          SHA1

          1723be06719828dda65ad804298d0431f6aff976

          SHA256

          b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

          SHA512

          bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\Tar7545.tmp
          Filesize

          181KB

          MD5

          4ea6026cf93ec6338144661bf1202cd1

          SHA1

          a1dec9044f750ad887935a01430bf49322fbdcb7

          SHA256

          8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

          SHA512

          6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

          Download Submit