Overview

overview

3

Static

static

1

0835c58f2d...8.html

windows7-x64

3

0835c58f2d...8.html

windows10-2004-x64

1

Analysis

  • max time kernel
    131s
  • max time network
    144s
  • platform
    windows7_x64
  • resource
    win7-20240903-en
  • resource tags

    arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
  • submitted
    02-10-2024 01:15

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    0835c58f2ddbf64c6b91e8fd52b8359d_JaffaCakes118.html

  • Size

    20KB

  • MD5

    0835c58f2ddbf64c6b91e8fd52b8359d

  • SHA1

    ffe2ec0f44ba76d291be3311a57aef45817f6843

  • SHA256

    1994fc9388ba0ede2fd56eb62ddf079a545eb50e592ccc9ae2e608b7d583b6c0

  • SHA512

    9526ac1717cc69fd45ef73cdebf7a79e6b37f26def4a4a12429b42194ddfa8820862d32e59253ddd55139b363d9cc6caa22e9f8328f89450ca620d9dd87d8c38

  • SSDEEP

    384:LIUEuPtyfabAC5x7YZxOpCJszkeNj2ZIvA7BWxeU3+qpYIKJzruKjlE:LIUEtfhC5J4yCJszWZkA7TP/vZjO

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 41 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\0835c58f2ddbf64c6b91e8fd52b8359d_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1960
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1960 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2184

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\3C428B1A3E5F57D887EC4B864FAC5DCC
    Filesize

    914B

    MD5

    e4a68ac854ac5242460afd72481b2a44

    SHA1

    df3c24f9bfd666761b268073fe06d1cc8d4f82a4

    SHA256

    cb3ccbb76031e5e0138f8dd39a23f9de47ffc35e43c1144cea27d46a5ab1cb5f

    SHA512

    5622207e1ba285f172756f6019af92ac808ed63286e24dfecc1e79873fb5d140f1ceb7133f2476e89a5f75f711f9813a9fbb8fd5287f64adfdcc53b864f9bdc5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\F0ACCF77CDCBFF39F6191887F6D2D357
    Filesize

    1KB

    MD5

    a266bb7dcc38a562631361bbf61dd11b

    SHA1

    3b1efd3a66ea28b16697394703a72ca340a05bd5

    SHA256

    df545bf919a2439c36983b54cdfc903dfa4f37d3996d8d84b4c31eec6f3c163e

    SHA512

    0da8ef4f8f6ed3d16d2bc8eb816b9e6e1345dfe2d91160196c47e6149a1d6aedaafadcefd66acdea7f72dcf0832770192ceac15b0c559c4ccc2c0e5581d5aefc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\3C428B1A3E5F57D887EC4B864FAC5DCC
    Filesize

    252B

    MD5

    9f960dfd082188fa52163cc096205152

    SHA1

    293635667919dcf5d826e6177f4e406c8aadd654

    SHA256

    082070914450655b7534333f94d401ead82ba85bdc47e3ec261865c0f32986ad

    SHA512

    a3877e2eb5e1df4f0412d5b75cbf5e01d60b211be951d4ac0a9be703ae5cf19454e25ee59e5604a9051edbe71d818a5e80dd6652bcc4205d4078cb4562e7537b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    7dfcb88abe40cb111f1528ab024136c8

    SHA1

    614363fda90d2e0c28d4aa8c672f0bfda3179206

    SHA256

    97f33f432596bb4ff79f5e61e89f26f8425a7bacb0bf6324d3249b05ea8954b1

    SHA512

    416e4898c176fa5fe667087f9005e119a421ffbb56aa0bc2fd7d906c26356c2c72ef6dd1a815e0e5d6e7314a76bcbaa8c888d2d61b9c701aaa9a64a208163d51

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    ca6a51163cf17bb7e7cf0ccbe35207fc

    SHA1

    650ab1bbc1c13aa876161eb7bd5f79762461b4f7

    SHA256

    076943b0011b00bb9a8f4cf20dc4dae60e83c14dc22c529fa27b2cdff6aca40b

    SHA512

    555185569607b72beaf1bc4208503b9ba631295197d69435d0887b29a77ab7b999738828522c7468e6ac35e3fb6c465c5248f8aa6f95b9ac063bff53d9ad52b6

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    bc07401cedb5df7dad52fd85ae8268b1

    SHA1

    cafaa4bc7dc73f386d3ce6a3f6057cf7a2677b72

    SHA256

    0f193a3e49f3af5b98e5d3522c77d6542d37c2178abb97f2499767c733cc4a00

    SHA512

    6031c744f18736da738481d2fade57eee6c9f75a2038585633e058a7f8f0274755c50dd37faceb2ebb93f6f7b832b83c2c79f1b66f405bfcce417f0074a88a85

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    8d7bde133bebefd151f1cababde4c856

    SHA1

    d554779fcae69f1ea2aa35d1ce12151ea9e1070c

    SHA256

    d330217f7a48e6166c9af435672c47cce8bb9796f0ca3d95ed1da5d11d92e050

    SHA512

    cba44dc6d47fe34be63743d8347cb12cea1c7f2f5dc9800f26199c2b2f38349dd8fe38c3dc843cffddca96575ddaf7b99f91e9719e44c24c6b8456084bc0f1c4

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    28885f6bc9c676bbc6115170145a92e8

    SHA1

    05f7048bb5a64f2c3b1dceb1d3abc72a536eb1b7

    SHA256

    9f35e52b61cd4139c20e2dbd317bc0180d17178f0461a93e91f9d22aed321588

    SHA512

    ea939cf18baab7e724b85ba3c209beea2933f95b401f385c45aa925cb3ef55fa23586cb2692877a68d2f763953b7f765ff17c2c2ad5c593037881b198fa85e97

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    3b27b011f9708ffad471b9c752f66dce

    SHA1

    eebf087aa7d0956e23763d2a15fa6ee4f211c1b8

    SHA256

    62c501cedd002de7d265d1769ca4fd4def7d9cb5377829697d89679e555591ba

    SHA512

    dc4e8db9e300e221901f893365d115837521c252793840c1953e1df64eacd776eb05b07227f3ca3e70be30c24946938134e77f8393e9a58d4013e6267481fe7d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    f0061c4f2deb607aa7e801ecf790b1a8

    SHA1

    2f42f7261fbebe90e0b5e02fe128d84915fe72d0

    SHA256

    f26b91efc1b4b64dc97aff80f112b07c003a1fe4cf8a239b0df98dd6ee36c5df

    SHA512

    335b6ac89f9b3ee169e3d1e03f407badb058970f9e9aa5ddaf76e75cca083a65b023ceadf1201083567fd4d6ea4fcdad0830bb170db27148259147245cb8b064

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    8ae494c1c69103c606d01d6b453337bc

    SHA1

    c50120876d2ee832c61f8ead28c9b8e58f4bd45a

    SHA256

    c7397b13e8cc32fc4337017799fc7ec1955ae43a85f52410bedfd5fb69999012

    SHA512

    5300769f7fe52b8aa9f65ecbd2eff7d0ed76fbb6ea184a440f25197259403d2e52fba841ce709e9fbf198a64447604639c4f5b8f83f127c1e38f3e2354d07fd0

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    db425a8f406506afbbacf50b01a8a3f5

    SHA1

    862642f1841322311684bdb16ca831f5704e6daf

    SHA256

    8f299cc7d4ccc0cf9b24d5d9a639de18980e34b56af0152a6c1cf62df24edf97

    SHA512

    6933bd010d3073e2eb9c97ea93b9293fe3219ced1c5cc7ec8f6299ad4508ff0d3b78543f39338802ca3d3a159e8f118c6eb750bdf3771f4065131b0988b33b86

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    3e94fdd7aac540e9eeef79ecb96cc6eb

    SHA1

    aa2e2cd93a0e191e882ef0aafd22ff53f222f59a

    SHA256

    b56b2f80c3ad8a6bce51393c971f32d7cdfd792d72b346f894c59cec6f3058db

    SHA512

    3b637bc3b6ac5c45c7811371f6390a5c9aa584447adf0fa8c61a07e49ab7358f09d0ae202ab383f5ccc4a42d89d7518c4008a61051aa70bbc37c8a1c5d5a93aa

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    a87ef26f99a792cb9818efb021a83fc4

    SHA1

    fbd30219bfa908837ccd2ced34fdfe2cf7a1f28c

    SHA256

    d75f975f5487926d93ab2580b529d4124f54e27af9d1b145eb14c0bb8a566252

    SHA512

    feef092a6fe6d4b40af90b278251be82c808b3edc75632842bc56c9a20970eb0ae07fbbbb6988f2636f95bd7c31716cdfb114b0d9c982fb7950aa17cad7082eb

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    a35ce69008866b825cc9e4d4d83e860b

    SHA1

    ea1e7ab6403215b2e9042cafff4e99240b34301a

    SHA256

    925177ab78e2a4f2fcae221ef65509b130f67f217e6d8f7542f79a7db5890536

    SHA512

    fcb12c0bfd26a40db998e26e8929b5da9452ac12992de9d55e5874775561526505b50b6ae61070467242230271e83c951700607a081596350b50cfe6e8252673

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    f56d33b190378b24050b4e89b847adb9

    SHA1

    d9f3f1fb0d9893eaa9724e74cd317db3c88e6ddd

    SHA256

    7dc1903427564e9d9a21955ebd9988ed4dd727e39a3b95a0c2cad03ea6ee406d

    SHA512

    66ba7215decae6935bcdbded889f390abf9b1ee9984f7bcabe8ed45e54fb731e35049c03aadec21d48d3f2260336cbfa8f9d59ab07a7a58ab3bbe6245444437f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    adcd2a088dd952731e2161cf02432172

    SHA1

    63b3a2ec2a12087c2687ac36846571d1e2f46af5

    SHA256

    f7055fd2f364d6955e9e7e2ef6838fcc12628f77692e67f61b2825bfc235b73f

    SHA512

    dc11b9d566a45045efa22197a7d5b88b6ac427218759ba91b8e80bf7aa60b842466e23129050eb15dd6098eecab01b277d927bfc9ccd3fb10d5c10f29cc9bc41

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    30726365bb2043cd83b482071b1bdda5

    SHA1

    d91a743fa6858f76aafd6b12e9c47c22d2059147

    SHA256

    95796062b9876eeae7d8e73a16469d22c0689275acde3914073d7ba520982c58

    SHA512

    bdcfb93d791a2ca0b2db8243e560dd2d0d4caf0d247bdeb7ab9b2b6cba3eabb2234e8f19792e1a054e0224f1ea679a89b52bb5682e7dc0b8a1eea220becb8e13

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    6dfd9ddd01180afb28f897bf7b1e2351

    SHA1

    58852d3d980d527a47dbaf7e44b8322baf2f4f2e

    SHA256

    62b5c91cc256d7e2756d274ff19ba65e4da1c55921070492fc5d86adeacc1f1d

    SHA512

    196987b808c2a70815330b447471cb3fa6e19ac77c8d572b0567a40ef6b04b5213b8fd9ee110e0843040df5d7a165e0cf89bdf8e33376364821e240dbc881549

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    0605c3cfa5ca63556bccb1ba85418ad8

    SHA1

    5f7b055a1900ac326dc7726d5843d5fec7f5d5a0

    SHA256

    351f8786a83a6c4994184f4b1bf222f8c9bdc71bb775b4c925b5625371caee27

    SHA512

    390ed40173be75613bda9e405d174a4590b3568cf3e06e9ea232f301790ea2914b0310740cbb931113c164fff0d1fd8c4af6174dea5a056e733279a4c4956806

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    20825b4f67fe13abf49428488763c9c6

    SHA1

    6c3bfb9a907b49197e8aa254455daecab3ad478a

    SHA256

    a6f2632d206283272e0bdd4932538b4a7ce796f3815194e6721b3790d7b7488e

    SHA512

    9e98ff8c75a891637927b5f91144f84a1fbecafa3f4ea1acdb174fb2d32ac4b6a0251f987a83b520f39b83ca0f8167b9e41981ba422bab2ce574464524be99f5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F0ACCF77CDCBFF39F6191887F6D2D357
    Filesize

    242B

    MD5

    4c2f6ba2099ec31ec914bbf97e31849f

    SHA1

    2aa6c39ccee2a94493061a4ed031fdf8c4300b09

    SHA256

    73f5baef47157ec2e7914de6a419c787510deb557b8bf81bbc9aba077b499e38

    SHA512

    8c8199bd81e63071dcf86976c7705c58d67c2800cbebcf16b066a774c494675e9f1aeefa0f0e55e6796e59ac5205e10d60aa6592e8658c39ca6a7682fc9a8d4d

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\56KJ964X\cb=gapi[1].js
    Filesize

    66KB

    MD5

    aa012028297a26c039c37ab25a4bd17a

    SHA1

    25f23d01b5f580c00778e1c010225e5b8c73b66c

    SHA256

    55cd2316edf7159b623e4ec2c9e3a334027c01e2d1cc386f833ebcd35ed87b38

    SHA512

    d346eb082674fc26d562da9a12f36ad2cc7db1f1b35c891a8734284cf1bd052a967137c1281982070688b2bb2e06c7f4967d1c9397311a31a11a8560b9c45fd5

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\56KJ964X\rpc_shindig_random[1].js
    Filesize

    14KB

    MD5

    e691b2e17de9ec018eca758518bf5dc8

    SHA1

    3238d543acf53b803dfbd260405fa558717daaff

    SHA256

    438d41bec769ff386a2c1555b6bf9105362f67dc3e711c81c6092ee7fbf6ad2e

    SHA512

    5589a5cb408ee8e0fd473de24224ba8fa1453eba5df6e591570810f992160d4f3e8f60f8ba74d9994861759321f5bfe0c4a608636913a8407b5184008457afc8

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\NQU8S4LJ\2254111616-postmessagerelay[1].js
    Filesize

    10KB

    MD5

    c264799bac4a96a4cd63eb09f0476a74

    SHA1

    d8a1077bf625dac9611a37bfb4e6c0cd07978f4c

    SHA256

    17dce4003e6a3d958bb8307bffa9c195694881f549943a7bdb2769b082f9326d

    SHA512

    6acd83dfd3db93f1f999d524b8828b64c8c0731567c3c0b8a77c6ddcf03d0e74ee20d23171e6ceac0c9f099dce03f8e5d68e78c374da2c055973f6ac2db4e4f9

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab1ECA.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar1ECB.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit