Overview

overview

3

Static

static

1

03159e22b2...8.html

windows7-x64

3

03159e22b2...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    69s
  • max time network
    133s
  • platform
    windows7_x64
  • resource
    win7-20240903-en
  • resource tags

    arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
  • submitted
    30/09/2024, 20:09

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    03159e22b2f8102b90ecd353d1dc4008_JaffaCakes118.html

  • Size

    6KB

  • MD5

    03159e22b2f8102b90ecd353d1dc4008

  • SHA1

    ac3f6e551bec1d67a7ed28ba72100c7aa586cf6c

  • SHA256

    b21ecdb89d96e0c2c8d47df7ae792580b36dc8ec2a6c373fb65d387c9528730c

  • SHA512

    00e0622b243f7c432be26f5ac5c0bd640012fdee4f9cbcf1abfc902f6957df7c09f57b870e3969b93a5d9ba7d9ae5b5122beb55e89ac2d7a7d0e9a81b9c74035

  • SSDEEP

    96:uzVs+ux7pELLY1k9o84d12ef7CSTU3OcEZ7ru7f:csz7pEAYS/Vb76f

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\03159e22b2f8102b90ecd353d1dc4008_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1288
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1288 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:1220

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    eb3a1b3bf7a0299b8d1eb604dc82acbf

    SHA1

    6b0623ae8150dbf25ee44816c874a8d912db1b6f

    SHA256

    087b8f767370328a73ba3dbf9477b1b37cf70ebf550495b7cbc27136754aefab

    SHA512

    710c3b08627e61d4db3576fcb66bff5fb9cd8f15fae372cbe0993e387d4a3b72381b5a449e7adec9f7838b74594a84b634093a030af55fa487121adcd84b9c82

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    bd2f430983659ff0f76d1c72def00751

    SHA1

    bf7b814c83270d26555a4992803f6c3e5c76aa2c

    SHA256

    1804483f3f9314bc52d85a633624f8f18dac42d2a627f5dafca5da5021e0995e

    SHA512

    81a4f735e4d201ffe1ed7273abaff189531f630aa9529bc1e90330bf3b5bd9fd53c3e5a6ba9f0219ba4682e0518da5ee58286ed16887eb4da40a7f29fc4cdf02

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    cbfa7321b4552fb0422964d843caf667

    SHA1

    4898097d3a65128ef0fce31c2b2070dd9ba6a631

    SHA256

    3a4ee76d8db45cefd8fb2fa5402be5665b8731a07bd8aad566faaea319b267dd

    SHA512

    7bdbf3d0855a5615855e962bd2d3464c98fd2b2a791232b9bc34ebbc587f2f1473aa0d6b00874eedb97fbe8121cc2e3fdd6f171ed8170dfc1444228dec7da553

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    05f4a15402ec954c9c7ffd216e364073

    SHA1

    93b5223dd5fc403ba40ae487fae48cd31f16524e

    SHA256

    327f9dde47b6e17e517ddbfcac63671a3258e868be0f128bbd625ba612807029

    SHA512

    d327591db536e787a85fccc32f9fd845afbc70681f9d5ef0584cb3363a4870748b1b330990c31ed6fcc0be5652f77449d588d930817c3f71bcd7a22a46501b31

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    d445efcc346a7527a1f8a4f3f9e962d9

    SHA1

    b14522a23160d453daf3483f9d701ef5deca38fe

    SHA256

    c92896753e26a23fd1a7931920bca39f40f577718e3e96700ac3f5c71fa29ce1

    SHA512

    16055fb0b79a2c31a74f44e8b934fddb3351fc4072bd27a4bc6f9d66745521ad60db1e8a18136964bcbd8e03b4f0b105a388d32b8e640f92d78f6c6749e01d7d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    e378896d48ef0da9463dc5e98d880337

    SHA1

    43faae530d17605f39b6fee94ebefe24e511c94f

    SHA256

    c352de193b5c478293b7c6b3d51a28f4c0830388e03f1aa7871cfe4f032a995d

    SHA512

    b9bba75c448b263428db1299f4b8a2e5b99d037733690fe6fead104e6e62b849490a8558e3be2cce8b6b10a6872edaab819f01d417aeb0579a7b09e010afee4f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    f3dd4a157563e34c95df35765816763b

    SHA1

    e71b1af820f5e9f031809afff1bb85be5e76bac1

    SHA256

    f89a1f749ba2f5db3006c2e868e1ae1f826cd8938a02d0c0a784aadf578692dc

    SHA512

    652be69697159ca0d480b2f970ca03f23413a1f2f310e2c34a1827305e04dd51d48a826daf872b1479d17e87516c1ed40cd0465e8675062a5db5e28c01a24a19

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    8d1104a679917ca34d384cbc756157c1

    SHA1

    ce5766d5979f4e46da8b9a0c4dd0daccab550fc1

    SHA256

    ab8a9a10b1d2d5364280d0f2603c7d7788b5b6b0060d8dd27f1b9d4bffadf551

    SHA512

    e2ce4a93941933072dca5a3b05790e0ea8bc54a3f1b565c3c603cf3d620b46ea35fad2ee90408f6a8945d8876673336eec8e7ad649fbb23141b9ca7a047e13ea

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    fcd91ccf98ea7bf5a46536d2ee482f1a

    SHA1

    39b653e65eba2327ac37481f03b8c2909ab4f46f

    SHA256

    81f397c2898b38a8513f43c961803f678e93c3c641693cf0c731f63819b02b6d

    SHA512

    cebfbecdd034d730b8aa829c55d56994c5f35d56b26e9bb54e9cb3099c843cef25f00c71370b7163ecdb772d8b54fb15860169af6d317b5b04da9a817ab71354

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    c3cb40cb6eb27b8d85bd30459b210957

    SHA1

    17b67df79041388c2b69b6ed887edcb98ef6fad2

    SHA256

    c3a6287fda2323b60bcc685b39506422bb1b0e67024cca18f16d114eedace34a

    SHA512

    db9498c33639e9a9ebf737592e9d09414d650ab879a8854c95d08913683452604b4af2966b231bf1434ef6f701ac03ba88555f5441ee7b2ed28772ad0609df1c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    d9d2ceaf2b5a689b4aa52d2f28f84982

    SHA1

    dc08009abfd25c0a932561a6f9f8874981a74686

    SHA256

    04dcd792f8b556397619c24941a6e29377b5fb338b4197498abb7c0c87909853

    SHA512

    1083070fc23e797e63bd30886eba00012d91d488d4a0455bdc006f54dccdf30a0683d85af72469f23f3c6c14b1c2ce7b3bf9614e93dc8577f90fafdc81f6ea52

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    d849f7d89482e26511606d12607861fd

    SHA1

    794d6ed950dc39d2f26286b8e166eb32a3218ebc

    SHA256

    cb3325076d863bd9803e8d49c9a17b995199dfc5b8127029e7b4dc40f1fffd47

    SHA512

    bceb608d70be6fad40775b29a4730ec59c25ad1cfa5c338e275624c2761e232f2ee1343989d6babd9ddbe499ff0eb610bb066b10c8dfcda5539bd0845c17ced2

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    e94a7f18ad2505b5d96ed396a6444c4f

    SHA1

    ecb4917d459aaad4aaa9154b6e59bec94c459a02

    SHA256

    2a6e631f8a518ed4a61d6aacf83b8f9e98537a5cff4e07cec36f2fe7780a43e6

    SHA512

    d85165896c096dd3319ce28d3ae84b914ac94c541bb5cd5085960414a53b125ed7e748de55d8349fa53f332de5096b51a428f0722d90cb0b899b304a425f01f7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    85cc73c3e85716509ccf488add7066cd

    SHA1

    e19dd156157a7f9fa7e453e3267e09ac052161d0

    SHA256

    811be48359b888df5a54c0ce01b8a7aeac7d5d84af8e484622c76eaacbacc796

    SHA512

    0f6523e08617e4aa4df69c4f3b1e7d32e38a9e1578fecd4b5011c130b89f0133955c1bdde8d4d914f7b146ec82a70a0efc0b11e5582401d4259682bf0a162269

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    71d9c3e80b8e1de571c769a78e776f40

    SHA1

    191067f91cf1c74bdf525d38265ddcdfc7deff8b

    SHA256

    b481f61d2847bd06039ac6f8f217e057afe458aea2e1db077bc3b068f995e5de

    SHA512

    1bc53c7ba6814100d2572255ad491a52cb00ba91c46e564061c29ba76bc6cc004806f932a3eedaacb3c73fcc04d3b2d06f4d28ddc7546375899c901f17cbb732

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    142cae6ff24ca52bf6d6012ac2fd53fb

    SHA1

    3928fdfbe1e4b7c274ed39c988779fd09d02820a

    SHA256

    1278e65697947dfb6ddcc581a4a99133477173b6c4dd0bfdd51ec9a104aa48a8

    SHA512

    d23e20b4a2f9ab1486b93319beb1375de1230c8efa88136f6f5370de54f5d376d26dd83031713797a153d0453bafdee9fdfa322e167362d9e66a85f49e3e198f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    b880df9727b34f246009bfe193b24013

    SHA1

    4d1811bafcd5fc3b4243e9ca4cd3a4ea904df4f7

    SHA256

    fbf1f747c37404ddd075cd25a80f2cea17f53d59800a5efc4820ad37c902643e

    SHA512

    9639b8c1e877fb4908649c2e9c665299860e52937df39b8afffd6b0b4458e8976a1635339eda078736942ed96577daecab2e1f3ca67fc90f567dcfc1eb3e550c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    54a4fe4c4d938e0a1c7d80fa2a4bb8b6

    SHA1

    239cd012159dd13c69e1efaf4198c78856d71d1c

    SHA256

    0f85ab153596f52448f02135ea442c6d4857daf9129c5297d7165d2a87ae5e41

    SHA512

    1199311f39d1dd14f46c787eb1dad169622426d74c05bb5cb405f766fc013eb7271ed21ec852b9abbb4bd9a0687b8f46467d6b0dd0ef0148d1b846334d6b4d5c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    7c7739dd07e99a25f14764d9a55e67a0

    SHA1

    794c61d0a8e14ac0eed5716dc58d2b630f554f41

    SHA256

    8e3173a86ef45a7b574fed1504e3b82cceff7b61699da9bea4704fe126976286

    SHA512

    bff0d7cb7d2c90f2bcf2ae7ee62fd337bf8a38bdd06f5c86985cab15ee1a9cd055a3e2fd228931f3e07fcd1e7b9c7d8ad1400d8f05bb9c088e8e908420b3b66e

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab232B.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar240A.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit