Overview

overview

3

Static

static

1

068a255dbc...8.html

windows7-x64

3

068a255dbc...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    143s
  • max time network
    144s
  • platform
    windows7_x64
  • resource
    win7-20240708-en
  • resource tags

    arch:x64arch:x86image:win7-20240708-enlocale:en-usos:windows7-x64system
  • submitted
    01/10/2024, 16:30

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    068a255dbc0c3ac922b49311ee6ad014_JaffaCakes118.html

  • Size

    736KB

  • MD5

    068a255dbc0c3ac922b49311ee6ad014

  • SHA1

    86a46f615e4a35f0ffe4dec55226ab644d5444ac

  • SHA256

    65f5d71cc1d9eed9ee3de677817aa9dcb6ef83cd88c70623d3954ef889f3c0cf

  • SHA512

    2c6d674b046a939caad4a285b18e8a9a6766624d73b968bd55dbe0ab5ec941f1dc388e8fb33061441bf26f99300bdd822e927bb9ef2baea3b092da537cf333be

  • SSDEEP

    6144:ytXEdDBohhgCZhyqyDLzNhVuQq7iMeGG902acLP:ytXEdDBo7gShyqOhueV7

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\068a255dbc0c3ac922b49311ee6ad014_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2276
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2276 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2664

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    aaf43f51de7623e32c333d39f0506f1c

    SHA1

    a25167b7d6d1b29e4a222730602016cb6cf02487

    SHA256

    4966136e9e55ae451ad737d53c20c0b6d073269103c163dd0ac2e22da9be999a

    SHA512

    e5e99d8c3da0c06c9086d33c0105d624ec856ca19015e15f9474a69d63a46b582f4b729457392522432a6f1b3d3dca3ff6d7b1de737f8980ec8de113902b7767

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    5352536d1135405cd4c1aa47cfb5043f

    SHA1

    7d209e2498da406f45aa5137d8b2c8b3560275bc

    SHA256

    f65a6629dbc5e6501dc731eb3456e2514f236778528f76602cf8ddfa4fd5d4e7

    SHA512

    cd122322666177ea4b58982b6b1bd22485e4d118daebd594f3cb662004a117a206de24e9d7f3ccf124c457a0dea748515d216b851161cb4c7ffa641c7a3fbeb7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    f8bf7b1e417acf03c48039a487e5d29c

    SHA1

    9497ae6a6c2bffe64057e462e68fbcaf77701320

    SHA256

    5455013175baa8c46c5c627969001efde6505bfc12de8181fab4a2ea3581273b

    SHA512

    c0eb12c87580c2249be8706aa36786db173f69316fce1ad87431dbaf7e2fcc0e31b8a54b81f435b37b603e32713b955e5311b9e48c884e57cf13845b26104e82

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    ccea4e521af0dc809d4eef58849305fd

    SHA1

    d1f3a971ec7ad85b9b43448da823f1a2081bc285

    SHA256

    351fb56059fdb165d0478b5457d6a48679d48e24bfcd800e691ecdd0a51cf0d5

    SHA512

    f7916fe766cb5f6d7dc231940d443a30246811dcaab079d017b7dcd6c12bf86d63924248e0584aad428bbb3ad8963144c769626e7b98f2734f7886905f896dbc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    3dd1c5da0b961cc3b20c89032164be91

    SHA1

    14bb5c659bb22ef34ec509d147394c0669f527d6

    SHA256

    7d035bcabe73315a40917a61cb73ad4e272b0864607a107580bc2f4a0861f86b

    SHA512

    9f8dbc28767c625fcd6887cc0df7faf07ddfdc5b242f62fc7cae5e4a8e21dd2a7da4e48d44531766eac76a1a4187e575f856e059d13272d66074e238ef87fb5f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    0544467ead7a409b8a80b737d6a679d1

    SHA1

    47bb37c56e03a6348edc81984155a773ec9e9ad2

    SHA256

    b48ae6ebfc7db333142c23913d07349d169d3454d6efb25b0a9dbb01a9343d11

    SHA512

    207833ce1d52c96f146a691b1e9e51ec7b9081dd944a5ae4b83c74f4db85985ed88a33aa9017ad6ab4b323db609158bcc125d16dff31478028d31753c61b95a0

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    9333b9382f0111626248407b3f9170ee

    SHA1

    44bcf7c0cb0a4ffeb8993f621fff0f0e4fad0ad5

    SHA256

    8f220371d2e34b93a9024ebc5d855b8e074beb5be20bc06be9da04eb665c762b

    SHA512

    cf62e2792aa34b715e28822574e78660f6b995d789a81024cbc0fde02c6f597d87dcdc74430f37e4d346a2a515b92e53ff371193f603cb9dc535e7c412aefd77

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    d0576f3a50930d8caca5538eefc4f436

    SHA1

    f58a647e98888be6628316244c0d79edb9cf9397

    SHA256

    4aa3d09e3375c9aa61bf384a1a2db3331420a5447ab9c3472b5fb44636d940ec

    SHA512

    849e55b1a857248dfb5a504a35d44e0d9d83b9aeaae58d7020437fd27d6f66accd9d79203e5ea531d0053164aca5796e1102372eedcfd89aa08d1ef3e9d3323b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    fcc7676914ca9c79a1da345674fb64cb

    SHA1

    c5a8cb05309fae6647730c5880b01bbaf036110f

    SHA256

    6640719db5d78962ae96b2a595da205dd1834e03f00de039433b16b5a484dc4a

    SHA512

    13ec72baf501bb1d7608cbf96d394c6f220a4fe3113e3f472a8ebd9d2303671ed15398525b3682ecf3e2462b51ac53a6e9c47bab7510b7ce05878916287447a0

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    f1394e14ec467ea610f7460603586819

    SHA1

    291905084f168f78ef5c924087e0e7592681162f

    SHA256

    963472d7cde2f4f843cbae91595afe3a6bbfd4ecbf4a515aab10a7c3a409fdf7

    SHA512

    d8a627d94eb60d8a5ac9d0899293e6f766c5f3fc31388bb49ca48df69646f89a354b946166815e82f5ea5c4c3dbee3db5e4d4dbecd3665aeb5750175907e70db

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    f539d44587628a83d6013d4f8a339f5a

    SHA1

    5931a05d164bc8bad0454a76939cb805f38da257

    SHA256

    21fd9d558f0d54edbda726bfbfc16db31ebe64497a984eff343253e6bd4975e1

    SHA512

    35cb1457f028d754e0fdd8e67025c3f45cb2d2c2f8a17463742aba91175c9aa77c2082416cd02886c3a2ad5b4778974453e52732365cc1edf1c55604e433c5ad

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    f8a9b5cf794cc45746d55701217d3ccb

    SHA1

    150e7ccba2a305ec2b52cd6db0541f8c27b867df

    SHA256

    f5f30b1e8a9023d3a165a0173f57036cad1607344b8d74fb368d5fe55e81b83e

    SHA512

    076db071ebf9a3c968c5e7fcc2bb3320a3974cce4576f323da37358937694d6d962cfca99287ec4975025242b5635b36c031ad122900de8b51093f5089a22e6b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    575aed5353bf3d61ef153430f9a8bac2

    SHA1

    22a6d448c5da5170149fa6a6b9e3844da133dec6

    SHA256

    54ab0e72a555ec04cadccf0d948793206abf9cdef7cd1796ddec336d2a237a5d

    SHA512

    bdf23f0f25e53d7d109d0ea3efadadb3d1890ec40cf3467a0c0ff6e76fb031eaaba88e57ad8566d1b21c6dc7c64f403b80b82c91ff59abe5dfd7192f199f515c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    b527549c218d6dfb786a1a0e8d7241de

    SHA1

    d6a501857e1d61241ad1c79c2706e86d782d60fe

    SHA256

    1b29e767b0f22f9549f7e2ae828fad6c5c3598d43b8108a41399d193b16fcbdd

    SHA512

    89d2be6d2b4910bf1158d64504da99f67571dda1f517295c857ca5c370ed2635770ba8b5da9b9cc292fec0c46bb2937c389cd9f8f7a5df66c8ae08ed119037d4

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    6dd153a2ed364e5d402182726e61b874

    SHA1

    b118190860f81a26b9e4c6b7cde3b045c4280f49

    SHA256

    2092933fd9fb25b748d870f8ba4481a03c3eba4f04b3337f9f9ddad5cf84e096

    SHA512

    19db176fc914b2c51b6a0d13e1de39aed21f7957e7aed7da0037c53235c7ba0e0584176ecba4712e4d01e76c4261219058411a12ab87af7a62f396905bc550bb

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    d5910dd1da7683804a74e2418d4767f9

    SHA1

    43decb325d635805fcf0e6ec906a2e264614c014

    SHA256

    8954e5f4aa44df3b895e7592a037d5bbbc360adbb4cdadec0ebbac6d4e6c6671

    SHA512

    f17207fd897bde11086514662f926748a865d7a3ce8fee7546ef0beae6851cd171a2daf50a576a8d30328375213132b953cfcf049686ec24b399419f08c8eb62

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    d601b437f811a76de98f74daf62a224c

    SHA1

    d6f4616bc6e60590f6377fe342e57a821665ebd2

    SHA256

    970b52f1ef91f185fd7e8c15f9cd5f46067d2e5d485809c274501a8edd56b539

    SHA512

    1b9bfee3fc663b3141c484ab8b445a115cbbc4b1639e2c7961dbc89f41f1e86ab0f6da692a3da64aaf38cb9a578fd799b073f1b955372a3053f862e9aaa67071

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    87f9933ddb22181c7a5d53642bad2396

    SHA1

    3abfbe9634932b46085ae085a182d20ec2d37d26

    SHA256

    45cb06d1b3b386283122fc482e059588cec04bc2244b1be3e419f697fc8d6d74

    SHA512

    a253e471e9b16a9e1aeae87f15463c2c50dd1fbcf8054d0e6a586eae00ff145262a448d24d3ee465e45c817ec0d39024425a6ff419d9f57e947287f784997af7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    8c8ce6eb0688ee35b88ae2cfb1906ab0

    SHA1

    5e4a4e74695bdd79dbeabdec4e375010efc02b97

    SHA256

    09c14178e3d68e51d0f7be1c0815b35ee86cab9a8cc8378a8380ce0ab28f31f4

    SHA512

    94de7d4ce6b08ee42c4451fb2107375346dd64bfc3e5fdf83f5ed64f0791c585a35918d7cef1cb1f37f64812f484b753a7b32750b9aefbe953ee1714fdcbee85

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\0E1IWGZ4\Gorman-Mckraken-Website-Ad[1].htm
    Filesize

    114B

    MD5

    e89f75f918dbdcee28604d4e09dd71d7

    SHA1

    f9d9055e9878723a12063b47d4a1a5f58c3eb1e9

    SHA256

    6dc9c7fc93bb488bb0520a6c780a8d3c0fb5486a4711aca49b4c53fac7393023

    SHA512

    8df0ab2e3679b64a6174deff4259ae5680f88e3ae307e0ea2dfff88ec4ba14f3477c9fe3a5aa5da3a8e857601170a5108ed75f6d6975958ac7a314e4a336aed0

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\6XUZ2JLF\scripts[1].htm
    Filesize

    124B

    MD5

    24c6265d2438f23f5be1d6fb6217428a

    SHA1

    4fb9e22d6a7e0539ce0203ce32fd1503a0703990

    SHA256

    980de4c560b2e0c1ae92ae94ad1dac8cd6f014427455933d9eefbe6964c63ef0

    SHA512

    7ad69052cb5ecdc8265c072a83086a668a8e48f0e7d2f692883690e3d264c8ed113087d3cb2151a9a99850fc8813e034f5cc8a101107c68a744faf719d7e531b

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\WHDSWW5V\jquery.prettyPhoto[1].htm
    Filesize

    124B

    MD5

    603d079dec423b867644ef5aea00d9c8

    SHA1

    a4cde466eaf8796fe6d819cb8b0dbc279201345f

    SHA256

    271731b27930f4766ae195f8ba3637e4d487441cf170f8028720e00e9bb12967

    SHA512

    47325de7044928640ff4d367ef7a590c3f16d9dd821dbc4cd47b15d2e874df18f55c79e26464283201f71a1f1205b53fb0a5be55a8d3b9633b91eb7f06f3e393

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\WHDSWW5V\layerslider.kreaturamedia.jquery[1].htm
    Filesize

    124B

    MD5

    15682ef8b101b7a3b980deadf178734c

    SHA1

    f878e3160f7dae0d2cbb657beec98ebf53f171f8

    SHA256

    e249f90999b4e2a48741210781997bcb214aaf3079dc9b01b26a5b6d9d28031e

    SHA512

    794d298890a418bd0039e6da1f7f9569823cba3a010bd2d914bff1bca31b35fb12292b7bfc0fe0d8c2b55c1c783d57ffa75c310785d47eef013e186c6144debc

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\YW15VCHK\dashicons.min[1].htm
    Filesize

    151B

    MD5

    278751a0c5bd40fc714e3c5a506bc1c0

    SHA1

    6f2104dc7148835a834a72f7a76d33200390bca9

    SHA256

    be4e654eafb54e422de7c946a868e4ec7eb5ee759aaf3c12323773d1c55ada33

    SHA512

    5f09e5dab453c36c8a4e0b9aea00e466b6b82564c1f62a3229c02cd3a92d10512b5b3142e8911a84bcedae70ede88155f209179ac36bc397ad22ce89d168aa48

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\YW15VCHK\main[1].htm
    Filesize

    122B

    MD5

    00d64a82ba2d055e5facd3a30efac924

    SHA1

    308e275068e3bec5effca608fe9df2008c979650

    SHA256

    aaa3feed097fda6687c7c27860c24980f3ff105b6f326d10c98854145e9afa6b

    SHA512

    1151e227086964ec19c11eb388ace411a56a6e1da96409b2bfdb5313fb5df75223add437a653decf3afdfbd2be2cde421c512f9de423ad74f2ebbaf81119d8fc

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab11FE.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar129D.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit