Analysis

  • max time kernel
    122s
  • max time network
    128s
  • platform
    windows7_x64
  • resource
    win7-20240903-en
  • resource tags

    arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
  • submitted
    01-10-2024 01:44

General

  • Target

    03ee5733849b27c95e2eb99899836204_JaffaCakes118.html

  • Size

    5KB

  • MD5

    03ee5733849b27c95e2eb99899836204

  • SHA1

    ec395b735d70c1ace4dd4e8b3ab6ab26739278b4

  • SHA256

    46951b7e9601feb27bd8def6adc76441195bb9c9fe1568f708264c621031adf7

  • SHA512

    b2bbf86818816b2bdb237c56f7b53dfcd5b0398c3519082f433533b922d6381d5d782fd210f7b01880330e8f4adfcd96ba70ca670367b91e723eefdf0965857a

  • SSDEEP

    96:SIatwfCZ5uCmac0vuPSa98ttttIttbZXttttKtttty8HcK05avw8zSparnaY0+uj:SIinZYEc0vuKa98ttttIttNXttttKttM

Score
3/10

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

  • Modifies Internet Explorer settings 1 TTPs 41 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\03ee5733849b27c95e2eb99899836204_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2420
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2420 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2492

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    370bda81b4d3a9b34bedf6aadafafbf3

    SHA1

    05623cd38c7e66fe3c28d60e53fa19c7c0d73e72

    SHA256

    097cac3c9d9d6ba9c0d9fd70b0151e7935178b27a442c670848c187f883a9cd6

    SHA512

    0f7d09ce8b9c4e1e87f7c20c541c9da13d5f6103ebd6df5ad1d76e0622469a66a2d499119542634e1b63a5efae2172c29cec5bc07e3ed88ca99af63d4845c215

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    bd0372f5b505ec7539802eaf194b9134

    SHA1

    be7c395738db4e677694d33814f8c5c5f0528dbb

    SHA256

    c0d4ed928c413d4cb6ca43e5ab7cedb8758a5b8d8081e70ed68e6cebab96cab8

    SHA512

    4c4fe4f23c17fe3b52373e76878c1da192f7136c734b60eecd7976cf4592970df98f1fef60dd4bf21a80f1aaba627395fafb6b7480a166341787fd2d5ff87447

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    b74e5cb3a9c4a50596ac49ebe3b03f83

    SHA1

    cfec0a03c5d52ae14de41b7dab1350879d0fdb5e

    SHA256

    701fd428acaea5ed9a08013bd2b07c1824e12408519d24d243b3a384f76fd5f2

    SHA512

    b5d21f2f902a9e9359b62464b78833692b142fb79c93a15d4ac1b87fc520a0a665beb0e07c3cb9217fc78b35dd27602f559e9685936d15c67573dd56b24f6d19

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    3018b6fd25935e74fb128abe932e2ed6

    SHA1

    b7265d2ef729a75b0aae76a1b5b5c24775295ade

    SHA256

    df7eaf9da969c87099b17f5695958c7ad96c972bb63731c4637e3ab6ef507168

    SHA512

    c88a6013652b63dc887c66897013fe652a528313221fa5f1e4df48fab059ee6adb3d94028f571c77626d56fb0aaf0c96ecf381bf9d3223b04f2fdd6506d19d36

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    4e53e9a649074401c0f96d8d81646451

    SHA1

    3fb601d2b7d0f8c162db9320d2f3e6b561201671

    SHA256

    7d7469e11496811905075e8d6b6093166f9136c34bcc68f54521aa29654556f9

    SHA512

    ed128fef0fb1b856411357638b355300dd5916d9b4422403052fea5a1ba4a35760e126a1555bbb43508e35d959e696328c918b53f185236c79d593acbdd1b01a

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    af8cd0282b7224a542920418f4bf9f91

    SHA1

    9890f691c45b50538bd2b36f19013fa88973b14d

    SHA256

    82707262af68c1b257b73d9522bd137b34e7e54b0cf8b77085799e495aa795ba

    SHA512

    0dda2014571c6cff8cdc9e94521c239995426f61690992d180d916eeb382a701b7745f539ea547e5b5e4e26581cc911f979ad51dc94451a416fa3b7010697f73

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    73834314c8a16fc89908c18d71eea29b

    SHA1

    525e39b4941557a6783c05ae9bcf19868dc2f8a4

    SHA256

    9eca8fbbc78632403c48be16428a54434fadbb3e64ef6f6d174d531e32b5e3d8

    SHA512

    f13761444807591c209f2a124a93ce330adece8b71c9ebf870eca98b9116a4be44d3df1eba63307d7cded51c4ec9c7f241d3d8c79c0ac04b45e7e0c19b65af0c

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    16d75af055ee88610f5162cdec37f459

    SHA1

    d3829e33ed11f247afaa8baa2c7fb1827c04136b

    SHA256

    879b34a3b6d9969886654789e6489bebd39b78e36ef7fcc3d48fab5d1f9a2876

    SHA512

    b52cf646cf965eda9e8257a4c87d0a0884b36ccfb68876274a47d04b7f8d6ed05480b9ce6ef32fd661587d7a51e096463c41d171317bd067696c129291fbd06d

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    819e3a2a07235f58f3ad3206e3f37443

    SHA1

    a7d12607c7e327b6ade22fe940a34fe7f1f22504

    SHA256

    70d80ded1f445ab4702f1501f139abe6437beba37185706a183cb51798d8fa46

    SHA512

    7e6bd9c99a804014824895d8a8b9b52629a573326972fe1c5403a3a3b11a8e73642e5af84d8fa7c3516054b788c2114806745276a7b9ec65c613168342ef837a

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    8ec6e4479638fc5612c418477729edd1

    SHA1

    f81d443c146eebfa69e2c8805b1d7d15a0a1112c

    SHA256

    60a65a632e688b4fd06bbb8378b6578c708a753a53187fa8b287178567404399

    SHA512

    a0405c36d1de9267ab949d711dc4ecb3f72dfebdd0990b3804917c509314570c56e66b206c5f414002f3c0ac4b1c7b4e58586945a7f0ffc63f514ca3ca4f5bf3

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    b226575e6e0d66a8ab1c8ed572088203

    SHA1

    0c5aafbd9e04feda174eff5415dea6ac6b77e25d

    SHA256

    06322a0bd88cd5c3195c7300873243337f3af55740a99f68c0ef14cbf210b705

    SHA512

    e8687b3c762dbfb677ba5c76f867a94abdd37c7d4156a57b4558ab3006e88b084f54894e1db58de75960959d2447a580c0c6bc215afc9319368c9391d9e0ce0c

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    4bc1754dc3b2772a7fdc062ec82b7cf3

    SHA1

    114abae0dc8056e9096dcf0c530b883761b51dba

    SHA256

    024e9be1ef7bf6d6275858cf4af28314d1caa80c4f5523d103cdd102362be7f0

    SHA512

    c72b00d1d34784f984fd48efa422b5513ef8f1bcc6d33b0fe15ab07bbe2d08c42e43bbea0288ce8b0a3823344f387c03582a266878470cb2b8d13aab6976177c

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    73d71cbf6cb95cabe2b74e1757b855c1

    SHA1

    ec80873b6f229aec957a7b8a9fbc9b69d69d2314

    SHA256

    5aa098272c8b2afe37c9d6457175837f3c253fce3ed9b9067d8472539ea666f5

    SHA512

    f0db84e85385531f4f94e1f529307e65d71250832167cecccd81366ffdcfc015dc8d0c18c904fdd69e4a8657bf2078bf8e74b1dde2f034a42bed0223bdfb1b72

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    145d78c5802269088ee582312b192f53

    SHA1

    0d1c60de6ec2ce37c03ff32d61b7b4db1da0e4ca

    SHA256

    ae0c21a291278955dda1092f91673b1ac0a558b19575248b21e6eb72ed9e88f8

    SHA512

    e72c6bd21476529a1bff2f5d8b870d506807e673458112d042bf94b69b1470ce7caa0f7f7fb8c8e720fdc08f419814e478e4c214b321499626e463d823a41b04

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    87b92daaf6605400dd28f5a5aa0f54f9

    SHA1

    d94053be1c3af4efe4231290a07690b8eac945f1

    SHA256

    951bc8c074a18738fbc0a51e02e0bb79b9f7f61fbb3ab1d40f620eb63da977ab

    SHA512

    0ecf518d68db15ee38636b16b97a76af1319e35de2293cf326c1ca0a423b66aa740fcbb0ab0e62d38002658c43b749de691e5c869be2077175f1168da3e08e76

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    8d12731129b3d8a5bdf322cf3d39930b

    SHA1

    21daa917685451a0840a394b5a4bfc17015cbc46

    SHA256

    02ccc1c1d070a673b2722c505cd700520bebb4bb99e7bbd3409a90e45b141e69

    SHA512

    71906ab52477dd724b7ad424db1a10b4d4a4b1364ead84b39e659af6afb3bbfe3084f96ac372f81632cb17a63ed4dcddaebbf727acf75ca8ed3429306f682c39

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    9c29db834a88bb5b02313b842755d17b

    SHA1

    0ad40e724e9df0caeea215a7ecd1f0cd65edc0ef

    SHA256

    5ae7806c996fee1374befe318f9632a9d8457530287073fd063e341da19255cc

    SHA512

    4321fb6e307073459e96b38e6f2d381f03e0b3a9c926e933c8f6231790bf8631b6ff23d51f1012f66427349cb77a65c40c7d7011ba07e725b2a303c80abb2ee2

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    9105d59a1835ef0c925b1416ee9d843f

    SHA1

    4c4be3347016eb25f529b4d720b1f266d5c3c553

    SHA256

    7c16a3e199a0d8de51eb9889e6856ced35cc5899172620f997f62a6fb583312b

    SHA512

    d2bd15d1dfa69ca48135714a5b87e0f81bca61547202f65e6a787ec8216dac27cd192d58e2bf22234c2e638b2d9dbd28af693fe2311b117c44d6c3cd7a761241

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    df1ad4171c65e1c9416ef816950186c5

    SHA1

    1e94655c0a76bf6091f0d9aab645cff17672817a

    SHA256

    d7f7b0dae4bc65e978e478972fe1bf4b3fdee3009d7af1db0d73842aa47d7d22

    SHA512

    8bd6d81876d0a2cedce7e48492a358a8c926f9c8a087d406c530aa3a34710bf87b046e83aef68b83d6344b6e4970c4e56cc458e050f7a0794e7648f7beef579a

  • C:\Users\Admin\AppData\Local\Temp\Cab511F.tmp

    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

  • C:\Users\Admin\AppData\Local\Temp\Tar51AF.tmp

    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b