Overview

overview

3

Static

static

1

06fbae0295...8.html

windows7-x64

3

06fbae0295...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    142s
  • max time network
    135s
  • platform
    windows7_x64
  • resource
    win7-20240903-en
  • resource tags

    arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
  • submitted
    01/10/2024, 18:53

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    06fbae0295644ee67a37a87f429c6abb_JaffaCakes118.html

  • Size

    20KB

  • MD5

    06fbae0295644ee67a37a87f429c6abb

  • SHA1

    918ac12e1d7fc88479cab57067c66f02d185ea3d

  • SHA256

    6d8c79fb82a93a6fb00cc8ea8659ce14ccc2e3f488d7a1348356be4cc0e338c9

  • SHA512

    c16c573a2fdf7a4ed50222cc4ace36f08bf3b38eddfcb518047eddf57369d50a7cc539619f46ea82b188666bd5385c290d8e35a7da85121f80f2bfb6702920c8

  • SSDEEP

    192:N28v/VDkDSal/zYPf4I85eVgv1sToRBzYbcqiwqVs6:5guy/5IO36TofOTm

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\06fbae0295644ee67a37a87f429c6abb_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2940
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2940 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2872

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          490bdc6f95789c58906691f3146c7249

          SHA1

          827534151837c993137e2f4198faaab219a82592

          SHA256

          271fb0d28737e68a5c78be74d9198336d2aeb594e99ef55a17a4b86de60718ce

          SHA512

          25796198d60bd83421096179083cfc547223b74464689a6437806cdf894a5333e6c867d59c50eda5ca8fe4c1c3db943bacb1f07e9d91cee42d64520705b92a9a

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          068f5bb570be99f2c9db44fec9494b94

          SHA1

          53ffa3a3e8cb574bff7c7921a383aa8f1710bc47

          SHA256

          c743d96fba55ef3fdb13591b3677f22a3567eb1f5fc4fd0ce7ef06327448f71b

          SHA512

          dc10775f7af7e604ed4e29c3b1d6c4b47d1f6be6ec0817d40b28100f1534ed24ec4f0ab92ac60301615bda7030e46c16cc77a3938cd73d9f4a43de0696bd1e59

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          16227d4dec448be9d822a3ff5d37317d

          SHA1

          fd8ae5a42771e1f48e742f9c1228217676823478

          SHA256

          20cd121901141a190ab35544daf80633d1915e06615b02c0afc7a931cd4e6dec

          SHA512

          e7e8353ad0a6ec64ed185774f33156f66ebd7da37b3d9e54b2566b9ed2db1ed5d83d14f851541d9a77369ccae0d8209670fcd06798fe6a1c4547290f927ae0e0

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          4272b12303b6a3492cbf5990dbca55be

          SHA1

          d72433c2e64bc4f425e24177ed679aecb75d15ee

          SHA256

          78ac11289047122548280ea679cf02330833d22ef0895d297fb53c60019f0977

          SHA512

          f49a7455c2c13eac49b0609a1d4269eeffccc4056a86b46c59b5800dad8df8e123087a3809613906a9b9a3bbc9818a81ace1c9bf026bec3fcf093d09860a4a7d

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          10ab050d802b558181916c9c18d17122

          SHA1

          7645077e10b5307140c03dc6fbbb4787a7d91cba

          SHA256

          11586ea3cda248952e5b50c9c0afcf1f9af2d729fef52d9e1631b4939970a2ff

          SHA512

          d1b103fc83649bce2db2da63fef90a687bf085017af8e4d0d07d949bb2b0afec2843a613c0c45ddbe314cfb48939488dcae9e3df14b3b8553121166c5ff99610

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          282dddad9ab232396260d2818e90c32a

          SHA1

          9342ad3cd9d09e96a13fa0c8a331200c39bf465b

          SHA256

          d8c9a9d67b10ac77eb860d45a4ee12bb3943ee20426aaa688dcc203a5dc73d7d

          SHA512

          3aacbd53e55cbb82df7c5efca2ff6fb83693f8b7a20df2f62b1534392d6febb605a714e177740b7418b5d443afb6cc269fe4515254ca6cc1bb30abd4fd90d031

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          f6f1d4b0308f43d5947639940258ac02

          SHA1

          053f8bcf4d065e45e69e961f92777d90570f926c

          SHA256

          996a2e6b726416c6b46c98d6ee789d9552c4ce2cdeccb3c9da20149f6ebc33e7

          SHA512

          726104f24564f72442bc6d74b57f364747372fada9984645602638c2f070269ce4d6f687af295f4b7b8e979d88d215d9396ebc33d2c8294ca883b48ce5c000f2

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          45ee94b33b167ca512933000c5f45e42

          SHA1

          5e10b5c5afb716b09b779a2c4542f2e6823d7bf2

          SHA256

          4eb4a1311a002bcc53647922a0061aea684960a5296c49a7357a7fb9901e7573

          SHA512

          ebefa82db9d930459eca3388ba4c7ac43f1f0593648339db9a6d7c65a3b0e7092478b04fffd6143187b5b0615a5ba57c525ea5d116f4a6b6377bbac5157f369f

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          9ff3f85f7e6670a62b41b1b35e7f0daa

          SHA1

          b4c224b4138b210ffb7e3d598b347ba1c4166404

          SHA256

          ec9098b30a2258f58bb1fc57c01fa4f6dc89097579bd6b160f2e09b292e278c1

          SHA512

          0474ae3485536795d57f31cb960cd665175aa3c3c6f0b362446c84cab21c1e15b1929bf0dd4e7449db9d575a8752a7158bcf404a8a5c26531d253a76343ae77e

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          b5f7b98093899b0427ee09eb9ee24fa3

          SHA1

          8b5b214a92fb6088bc8e8558c9c928d1b331f019

          SHA256

          4adf1967a847222c70566b2fde5e3080fa816170f3b13d288917c7f700d67737

          SHA512

          cc0eec4d2ad6a1ab9625d678ce984b72965f8db573d9083654c31e22b3634cc9a8c9faf147e191831236424d356e3e72f740bbd1d53f1ecc1d84d61c4589f525

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          fc3798d360924bfd0a667d3f1290386a

          SHA1

          42f4b2adf1c9f9a541508ac7437359f35cfee057

          SHA256

          fce30ba8a4a79f836835e6841a1427047634849511fd5e383b2785ec134e54a0

          SHA512

          7cbbec63d3ecf37daa6525690a54a6d695ce2b5941eafefa293f7c967b79ac85b1cb46e07f367bbec01b27ace78836e83cde7dc89a8adc1d7538465ef4663ca4

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          f0d4a7febb99f189abcb8f5e7f5d5202

          SHA1

          8bf959a68c0169d97efc063d0283f48233365faa

          SHA256

          ffbd1da2a2fc6e022f69eb1fac9681cd06bfd887e0a5d730650ad06f907302a1

          SHA512

          1676d1a7428f8ede499885fcefe459cb5b35cc71560e7fdcf708ede456f805c773bd038bd338fb65e95852c5b7e40a11f28ca171f801848f64b5e4594e928c67

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          05d77e68b227f68762f755f6d7d81c1d

          SHA1

          f3aa35420574ec1a1f4d560022316afb3268f6fe

          SHA256

          20fb97f6c21927bce8234740505899800c7309e6f20c38e8d5b69970cfa4bb56

          SHA512

          4146efb420b3c4b4c6df6dad7beb6e7496402bc0f95e88bd33bccbc89de8f63d1fc63fb6f45dd1ecd37c117f261000f5416836946e60c89ca406f924c774c9ad

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\CabD05B.tmp
          Filesize

          70KB

          MD5

          49aebf8cbd62d92ac215b2923fb1b9f5

          SHA1

          1723be06719828dda65ad804298d0431f6aff976

          SHA256

          b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

          SHA512

          bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\TarD4F1.tmp
          Filesize

          181KB

          MD5

          4ea6026cf93ec6338144661bf1202cd1

          SHA1

          a1dec9044f750ad887935a01430bf49322fbdcb7

          SHA256

          8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

          SHA512

          6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

          Download Submit