Overview

overview

3

Static

static

1

063c42f223...8.html

windows7-x64

3

063c42f223...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    143s
  • max time network
    144s
  • platform
    windows7_x64
  • resource
    win7-20240903-en
  • resource tags

    arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
  • submitted
    01-10-2024 14:44

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    063c42f223273b3eb55a01dbc51d57f6_JaffaCakes118.html

  • Size

    12KB

  • MD5

    063c42f223273b3eb55a01dbc51d57f6

  • SHA1

    5c73e7875c78710f0292fd582593c8799ea76b77

  • SHA256

    383a56da25b70c50ee6818651cd4d92f553588699c3bc520eef3cac55bdf6d93

  • SHA512

    0347e3257dc4acdf27cf5fd70813ed60deee55f143dbd205751f26e76be6fa119f67b40612f7098a5e6c991ea856a0bc06731694ad6326969f3d61a7bf7d00eb

  • SSDEEP

    192:uswvS5sBlb4gVyQ4SURD8to+UQAHuRxbbj/NZ3uaCMa/JZW8XIuDawsE:uswVBh4gV9ULurbrDuaC5R8G/AE

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 41 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\063c42f223273b3eb55a01dbc51d57f6_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2688
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2688 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:988

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\3C428B1A3E5F57D887EC4B864FAC5DCC
    Filesize

    914B

    MD5

    e4a68ac854ac5242460afd72481b2a44

    SHA1

    df3c24f9bfd666761b268073fe06d1cc8d4f82a4

    SHA256

    cb3ccbb76031e5e0138f8dd39a23f9de47ffc35e43c1144cea27d46a5ab1cb5f

    SHA512

    5622207e1ba285f172756f6019af92ac808ed63286e24dfecc1e79873fb5d140f1ceb7133f2476e89a5f75f711f9813a9fbb8fd5287f64adfdcc53b864f9bdc5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\F0ACCF77CDCBFF39F6191887F6D2D357
    Filesize

    1KB

    MD5

    a266bb7dcc38a562631361bbf61dd11b

    SHA1

    3b1efd3a66ea28b16697394703a72ca340a05bd5

    SHA256

    df545bf919a2439c36983b54cdfc903dfa4f37d3996d8d84b4c31eec6f3c163e

    SHA512

    0da8ef4f8f6ed3d16d2bc8eb816b9e6e1345dfe2d91160196c47e6149a1d6aedaafadcefd66acdea7f72dcf0832770192ceac15b0c559c4ccc2c0e5581d5aefc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\3C428B1A3E5F57D887EC4B864FAC5DCC
    Filesize

    252B

    MD5

    2547ad688a3bc94b35c23080b73ffcf0

    SHA1

    e4bf33f25147ac748bee11476e8409758369241d

    SHA256

    960ecaa6a445c5f6af04cf35343b8303e9dfb961bc480761f2b52c0dd3e512d1

    SHA512

    357637f4d068624949775bc7dfae24a162d718bc5f59a949b5bbb27e6571c2ae01b8646e599048f9e039fc138f38a600450a77fd768fe0de7d8815038d7bcd24

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    f3ddb92f10d68751e9c45460a6745998

    SHA1

    14fb3afd4474cefc01d8e50eec64d75f685a129b

    SHA256

    4849bff126f29455c9a76a84c022897fcb44ea7e096aeaba8d5cf86c4482c89f

    SHA512

    6d58cf6dc99e4834e3f804905e49159855fa57d4d74d8f38eac2da91e64a9421c4bfb0aa8ab03f1e8faa6fb0c5986cb62c74990ff46f8d732cc5ebd1411ef677

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    9ff880d3952819b60f824324934cf44d

    SHA1

    2b75fb34c5330e7dd473e8b10c50f1b39189e8cf

    SHA256

    3e301f6df2500ede75b7963e90b1402dfe1acbc058f5889d0b8131861cef0521

    SHA512

    5a6e24ad6d72d7c0a1967c16f419cdd6f2c741c0e18ff1b59493a4da7e514b45a0b8eb15c3d4bc513e3c01f1b6b8f95c06af6c2160fe54f25d337b50aac77171

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    333f200293dbd8d5568b4b338c4b7b47

    SHA1

    c497f6b05aed1240dc61e7df842f1913d8a2cdf9

    SHA256

    aa71b3e033ab58bac10c11121f74f56fe15f12d2d955c8de7bffa9c983c01f75

    SHA512

    a0b4121b9f8d6e55d955e7697088bbd6b078d9bece4b94e6d11b7ff1611a96ea03e15717a75afc99c974639646b87e9627d7204fffe6455d8c6c3f4f0a6b1906

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    380cf0b424f0c0ce6525d7978fdad1df

    SHA1

    b394145feef46c3993c6e6723d5e5dc45e2bf957

    SHA256

    b08a160971bc4bb33d4d5e81be80c74e31ef6f254b0cb360ddf88da67ede61b1

    SHA512

    5ac6b18e4c63eb21ed63730e5c0395cd0d0e0ed1d384c21530c83dd3c6613a91ead2e185d7f83ea13591093283ee7be999dfeb158c1548d78955d96917db3e84

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    e8abed08077a81ac30baeb4cf55b8e07

    SHA1

    0deea09f6339abd62cebba859e6da7d1e9a0ba7f

    SHA256

    9643cb7722cf9632eac0dfc47467b57806032bb8db1500ae1820c8f56cb68cac

    SHA512

    e137ce9f036d2de21877b110379237fd92e629ebc4fb6a54e9daf4e69f266c41321a311541deb82d00b1653f0c48e5cc6888599baf1ab369dd0814156dc57290

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    fdec79f998ec69e06d6fd75726033880

    SHA1

    20f45a0721fdb297e56e8a88f46f998f1a1d68fb

    SHA256

    62f89dbfb7c832d2f83f6b52ad8b657ec4645526e9cf253ee8f244b2299ed851

    SHA512

    5ec97017e9b2be0b39196857d9b79015817d3afeb4fcb7aed63adbe3a843c7e5b0a385042109d32468d4ac5ab07743f1fb5e297e44a9b7f9f5678a68c5ee1672

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    e788c6517a7b93620b9a49b9d3642839

    SHA1

    b085efc707104311ff29ce95613843160a1737cd

    SHA256

    83f2ba6320a1b276cc3544d0f6978c4ffd7c197638cc5662211ef83ca898f1d2

    SHA512

    5c9cc6fa86b33661cc2fee2a9f1205ef6bb7483047bb66e83d03e52957463455c9ca4fe943e2e2217701f5ff9e935c47f8c23aace6ffc0c42e969227ee04225b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    67da9432cc258fd4a445007bfb7e54f9

    SHA1

    e2c00aa4087819fdb6d2de60b3aeb44c344bc293

    SHA256

    f2fbcf9495c3c3fcab1abd559e2983ea3387bec0a7eddc4ab428d260a95245c1

    SHA512

    36b3e9dc132c382b51c4aa6796eb553188b81fb761d35ac7dab86c0866bcc92ac0182105d44a7ad152d1d65704ed88f35515b09b2f1dc53d9669df70cf1a3b45

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    e952da10693c05451e00986cfc7143da

    SHA1

    190947818a8428bbaecef0f08787b7cb6a114c4b

    SHA256

    e3e49f13ea11a2a691bc0db820698c8e8d7dee81981f762f009e79318b182d74

    SHA512

    2e07ab581cb3f9e2d8fac15f172d7277c102d1b468c2f9b363332e038e6654f2cc3342191272f7c620aed71647efaf441f1145f19f7d727ff7be0d2bad9f0dd5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    a509be3896fcdd679ec75cdcea1312e2

    SHA1

    c7d4ba3a659705b826ae3c0605ac57e3c13c2493

    SHA256

    9c6c5a18f342f0c0f2cf4445eea2b7c005f991f5b01c25ba4ebd868e29a126cc

    SHA512

    5680592773080cb053870f28d0b1bb1a3f6a15a9c416d3b9851cb59cc6b1c55d4d1b047f7c576f7d18cee6faad9c25b339bb3f44d15a99d90d8e2f12abeaa612

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    da2b1ecf49cb0228cc3a50cdd1ffa2cc

    SHA1

    3d5a8fb124278efa6459b43688c4a5d45747ffc7

    SHA256

    774d8bff76dda0be0eb9fef3ed733e683009696e424d1451f771aa0de9256c5a

    SHA512

    5e29ea86a5027926921654c1ed22d8f58d626ccc3110735052c6e068e726f23a7c240a1ee9c370c622726d92f332be8108dbab85b13b7b223115e385fe597d23

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    173f9f99637b8d239208e5aa9ddf987b

    SHA1

    88ac8045e76aaea46fb4f10975b05eb6d887f0e6

    SHA256

    f41ef8622a16d06a6d6c4254e5b31bbdc003a9adf77637b1cd6e482cbb1091dc

    SHA512

    8dc94900085f27c35391e06da529409f56173209ea36c552d5a52084dc610fb44211ed9d46b3b465f56da795fbb9fa4d89e2ce1635d7c2dfefd4b546e5a1d1d0

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    2fcefaf13bac535edf45982eeab1836d

    SHA1

    a53c1c834c275de1a0f6b7b49da5023c4c486e57

    SHA256

    b33f570d9dcb5a43feb688ec7d0af6d85610a804a6c88d989025dc64c2473f75

    SHA512

    ce3397aa62c86fb8a9a6d81e291afc811c09f2c5aff19ba3b0d444d44831fcae405ebd35ee28d1abe6b272af86e44613bcee638f5445e93d6a206faf59f43977

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    6a2f56bf1868e1a748e0593109f8ccb8

    SHA1

    ed74b274305942ed4521d4a36c7f9f82e7b38dad

    SHA256

    9ade44d56f31867ae1c8262b7139a8c6b44ca74010402bbf42b5c6b8f6a621b0

    SHA512

    afb7328941712423d8d4130ecdd6a1bfb04abafad48a57fda8fde7b1da77beb9fd606ce4c3fa09f40de52bb7047469bd31b43aa21dda4003f1a125824e708373

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    fadd0729570cfe8296fc8f3b116c0f93

    SHA1

    e6d226de18c1cbb36c8c0fd1d12b99d494beda31

    SHA256

    646756f355b556ff78a876e13e3172a5e48c496e80f1baffe050ebdb4a4d39e1

    SHA512

    71c2bd89b017bf242b580d1b4735a8842dd87e094bb1e3d2e49f7348b23e664529eb4779b425079150b46b839220494f84f24e3619284505b5d6c76887c57dbb

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    e7253772dc08f1fe19a90475a85948f9

    SHA1

    596cfe111e6e604999d70d22bd6cef1e83e096e6

    SHA256

    7837bf5e38d0b64edc0ff38e0113d99a92eb9c19004f5d299f5c84a9696d3570

    SHA512

    3c51ffe0426a9791f66c7013f5cd136dc93045b3e295cd6c563a4d6aa2480c5c561f7107b68ba9f2344e57acb235d21bd3b323b0e75ea647de950671eda0c63e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    6de806a4fe257433e4a52c27a7601491

    SHA1

    086c265872bdedd3433fc65cb40a972d273c3e7b

    SHA256

    813e45e05c386a3f1da71f7bff7b58fc6c436a97f2f59ec26964b46574b6cd4a

    SHA512

    bbd593f3d1078aad9d7d4e0c2c58a8fdf6dccf579fe758a2e879598723883d7f9ece707a3b70f97c94b68680d0df2f39f83c807933577ba4ec398a7af5b29065

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    feb95342a4db5ca26e098707814ed83f

    SHA1

    f0c580252904f87a1c65dccdce7f9f0b6ae7f239

    SHA256

    15014d485fd78f501383500feda0969c6e2a1aa5ffefebda63797feded1184d8

    SHA512

    0f83f69bd6509d06f500146529e2e8ee94100982c0d602ce7e6157382080ba748171f843f3d6754fb650567947bd081ad49c99f8a906115bd8ce57e4e04bb637

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    6a0d440d87cdde44940c0a4e9e15dbde

    SHA1

    a5afdf3de15d59cc04e3725e11383959030a888c

    SHA256

    e4005c62c327a89407cd0aaabd6aca743148da7a37a2dc616760313918e3f10b

    SHA512

    4b6ba1d22f6731a01423d84cd0d28c924e05c09c3025263d27a4c95e67ca93d5e8d557afc49db606f307aacba5c5ee589deb2b1b6815c45628d034026f95d76b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F0ACCF77CDCBFF39F6191887F6D2D357
    Filesize

    242B

    MD5

    c152e6e7faf3910eeabf093b6db6db89

    SHA1

    a76ed7e3f312fb40a258cd8a0ae18610f0c5ca1d

    SHA256

    2fb09d088f11db57453cf33280c7e109d77ad1c8c7ced5969f44c5ad25fa0523

    SHA512

    a68c628f12ec89c72ccacb110c5da69b98e8bc9e356666b8bbec77c48569aa9395277a4de74b60bbe10d5a6994d68f835dfc877f08c25d5c133da48cfd830940

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\EB0KZ1Y4\2254111616-postmessagerelay[1].js
    Filesize

    10KB

    MD5

    c264799bac4a96a4cd63eb09f0476a74

    SHA1

    d8a1077bf625dac9611a37bfb4e6c0cd07978f4c

    SHA256

    17dce4003e6a3d958bb8307bffa9c195694881f549943a7bdb2769b082f9326d

    SHA512

    6acd83dfd3db93f1f999d524b8828b64c8c0731567c3c0b8a77c6ddcf03d0e74ee20d23171e6ceac0c9f099dce03f8e5d68e78c374da2c055973f6ac2db4e4f9

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\WCATT3E5\cb=gapi[1].js
    Filesize

    66KB

    MD5

    aa012028297a26c039c37ab25a4bd17a

    SHA1

    25f23d01b5f580c00778e1c010225e5b8c73b66c

    SHA256

    55cd2316edf7159b623e4ec2c9e3a334027c01e2d1cc386f833ebcd35ed87b38

    SHA512

    d346eb082674fc26d562da9a12f36ad2cc7db1f1b35c891a8734284cf1bd052a967137c1281982070688b2bb2e06c7f4967d1c9397311a31a11a8560b9c45fd5

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\ZOGPI1N2\rpc_shindig_random[1].js
    Filesize

    14KB

    MD5

    e691b2e17de9ec018eca758518bf5dc8

    SHA1

    3238d543acf53b803dfbd260405fa558717daaff

    SHA256

    438d41bec769ff386a2c1555b6bf9105362f67dc3e711c81c6092ee7fbf6ad2e

    SHA512

    5589a5cb408ee8e0fd473de24224ba8fa1453eba5df6e591570810f992160d4f3e8f60f8ba74d9994861759321f5bfe0c4a608636913a8407b5184008457afc8

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab5F14.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar5F13.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit