Overview

overview

3

Static

static

1

0ae7b63849...8.html

windows7-x64

3

0ae7b63849...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    117s
  • max time network
    127s
  • platform
    windows7_x64
  • resource
    win7-20240903-en
  • resource tags

    arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
  • submitted
    02-10-2024 13:33

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    0ae7b63849e3d7309b28f6889a5b6bac_JaffaCakes118.html

  • Size

    39KB

  • MD5

    0ae7b63849e3d7309b28f6889a5b6bac

  • SHA1

    8a1a9f831d5f4d4d743571b65381be2cd93b1981

  • SHA256

    486c12740c43a7b803a813c07a6604ce1aa319c99f81c37c55d7bb5a4cfc0ff0

  • SHA512

    e0951bcafcdb22d20efa1abbc5b6b5392c80551e0b048961c574b23af3f757e069f1359e3f67d8a990f888745dc37703c091eec7126cb2f2cf655f59a96bbb4d

  • SSDEEP

    192:uwPbb5n1inQjxn5Q/YnQie7Nn+nQOkEntE6nQTbnlnQOgHcwqYScwqY2cwqYQ3qD:jQ/TPKQ53qJBAKF3X/xf

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 41 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\0ae7b63849e3d7309b28f6889a5b6bac_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2688
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2688 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2712

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    016ad4211597d53b3176bb6386d42687

    SHA1

    367f5574c5efb57ac66d70095d29ab133ee9dd52

    SHA256

    e21c80e63f3bf3e83259781bf607d5eabc4127a94578d7ef6a3d7d3db4f99b56

    SHA512

    01fd9d806a39e40ab61dc35132308579ee55c7724337bf43f1d204ccdfead16ca0935486e3bc6ca1c2ddede17b49290f884af6a91f04678809790c80edfb0fc6

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    e37b5e1fbd8155e590daf0274c202075

    SHA1

    9d023becd7b8ac698cbfc38eb5bb8951f151927e

    SHA256

    97ea741312c3740a19dd175cf940d055606bd6e4c5e3ba8b4bf3181e75c960e7

    SHA512

    d193b80ea90d3ca8a8fe506962aa2a2ca44dea2164c41c65f8966c6f2e6534b9e0313399b703f6f624c37c61a765d2b600bc258a7881fbc980f461395115125b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    4baf41b962b136000f6c81c59d5f8b4c

    SHA1

    416a2b57998f58ba018bd13a51251e2fa0052b70

    SHA256

    f22b9eae5c3e85ea1c62bc70a99865c304e9546fc01dc7806044e469f088d735

    SHA512

    70eb75f1d74fd02c6e05804363807972578c398850058fd94de492f006612e8c01c41d8519195897eaa2c7ba9d4dbf1426e27a37cbf2c4a24c37c3a9bf21e761

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    41aba997540003b6b1f63b8fe3a6b81f

    SHA1

    805d1b3cc12192f7fb6f104728d635aa80feade7

    SHA256

    fc0599fc813ade90c33da08e7377ed8bf0edfcba624a0fe585a6d7d4af683e73

    SHA512

    fc3d9d7b1d1be6aad6c2531f50a2f73bd6cbd50bcfcb65cb43250f8c486ed6ea9cd7bfa5af7f1689f43aa112cb70d25153ffded1fe7e0b82f14e07198f84f383

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    e6f53a752422f33bed20114296619d56

    SHA1

    a0ef684aeb4619eb1bf35d8909a6b276685fa950

    SHA256

    51efd91ac0a5f6bdf007b5318e2645b4866e570dff9d2202d7bf79c7710f4167

    SHA512

    82e6ae2af0c20f687b789dc3cf1408f40e4804ba454be2890ef51418e4ccd345de9489a58ec54134361e4d3e6066d66dc2085fd5c855c66db9434802ad27f52e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    6eed3018c2670c86a90723e8b0bbabda

    SHA1

    4687bdbda1727454595c42af8b0a9de3a9de0f1b

    SHA256

    a4979a34b83a1dff1353738020508bdff193aa95c2d076dcf837cc1432d88e75

    SHA512

    8aa8cb8546823f6c51b8c7acdf4e5e99f00c03b30a210a0f7a47d26e40c19ac9f75e53ac1d73676444425e11e946135eba5502060cc6b82018ad7365585fdec7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    cd2cbb76f020dc84a4e33841bdd8469c

    SHA1

    e5bfdfc7721927ceab9a75467b795460673368f6

    SHA256

    c3b770a80b891c63d1236004058e788c16133d601d457eccdc33b8fce007453a

    SHA512

    cef6e37f5f710fd8d37acfbb651bed2fef688f31a8ad18e93a979b2b15c20007cf76a57893973ca0b4a436f21c350a8f0689e1e7cafe935ec9d6a7837d8e4350

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    a65a82fad3a9f42dcc61faa0e38d088f

    SHA1

    71cf4c2ae33e7365b96a4476396c8b743d8362f1

    SHA256

    55e088665402b51b0f4c677d59fef7c852659a24ef2d858b549642da844e5419

    SHA512

    66e1b0710a185e4b4afb58b2c256e5a6fc73cd07ff8c5fdf059c05dce562f500fd88ae15fd8c70d1755d8c9d994d456073034471539ed9e079436f4c037ca060

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    10e25f1252081ad2038ec0e34a4bcd62

    SHA1

    91cab22a94514bec6d55886143d1caa3b9130096

    SHA256

    39374ab5c1f015bb7c6e32718a823a0f41fb1399942aa74b2028932caaffa360

    SHA512

    59a7a8e7312adad5c769d4926b4fbbb79be5bce8a76178f62a215ab8ba402b5ffaada645235a5b2c391217fedddf49a130e1489d7f73455ed4104a8ba38dbebe

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    329bfcd96b2e227e7e5f821ffd36c8a7

    SHA1

    99d2dc816b7c00cb08481ab45bf27f7b8f79a9b7

    SHA256

    e7aba748ad6adf23ea479c5beab2b354e4522eb447d628c7c607a27d6624e762

    SHA512

    985a988dd3f8b398fa6dc40eb7a89ed94bfa32b59a756ef62e6c29f9bf3dac2843b8ec67959c47ca9e1d664859f13ae65396e0ac62ae2d4ac9370d6c6d5d69ae

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    9146c004a28470f5805a94079ffd4ec5

    SHA1

    984557b0f1cdc004af09266cc57c488f2117a98d

    SHA256

    bd13bb247a7025d6f4e66038b1435e4cc82c81c6e8f53480f680d0af1fa63e53

    SHA512

    aeb6847d857c3b912443f82b826952e5cfa7df65e708c4bb9605458f309e4aee05852e7297feaec44def63c6852acf67636f604dd913595505710149e690ddaa

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    b61db65fd8310cffb4c733db573a2c33

    SHA1

    0659546b387a3e5b49cda149fffd52f45a9e9fd7

    SHA256

    948d12c62409f541b686f0cda6f8becdcbfc0eea2cb5d4e9cf60b9158ba3db39

    SHA512

    6b6288b62cdd32a971b1ba5962adc5854b71d6ed01251903a4c2846039cfa0f79d812f3aebf77dc341b6c39115e2945c69df6c4d8be3c50523bf458021719ba6

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    df16e62553cd6e3acf0a8d38deda280c

    SHA1

    53fbb4896a762213da4660c2bf3257701927a5ec

    SHA256

    6987069358d8b3eb30ea5278f7f9c3e386defca3ef051bfb57432b92c7198300

    SHA512

    f74f55938ddb39278c2da291164d2e55759e9e90cdf4836551c9a9c7467d0c6f141fa775cb7cbbe119b96ecb40f17a8cffe4ee668902cb49dc9a24bbde786f76

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    012b6130516b1b0e32768f231cf7287b

    SHA1

    de57048d1bbbbd1ecda268f8e939fa411d5d41ae

    SHA256

    e81b069246bf84749267a085ab2eeb8c60282327a5d653a13285014c7f5072d3

    SHA512

    cf97579e48e92960e255488c801297762a7c6c91408fcf948ea313e225eb48ea0ec236d23727f9977a45b5e7ab9f906b74c8497d534a465509bd71a3e328a63e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    b446133cfa416926420a2c9262755a84

    SHA1

    1eac4e5eb48698947b65fa8139966ef4216e4494

    SHA256

    fb8b601685bd0f8bd9d3226a958a2cc87983faad67fc51b70b0345441742007e

    SHA512

    4f9529d488be36c1243faaffd342b30bf3536ba0977ba610aebe8a31d3a906bf2f02e63534ca8ef374260198169f7317b0326e7fcb8bb162d4c13d3297056820

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    317d31dbc40c15f45ea649cb4f656dbb

    SHA1

    d073f49d57c223375b26494ef12f25cd8df2c35f

    SHA256

    43bb3878cd963a24b2abf5b81364575ed2c87ce71dd118dc9547169220465e42

    SHA512

    414e82430f8a169c03a39481b324144f2b32db9ae586eb09f5463d1a8831d60300f64a825f5aa031b8c7ae1246d75bbd3cccfd9cc3a028db5b2aa981ceea6d27

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    e018f68ccade9d6949da1558c3d6a242

    SHA1

    a304251e0903465da140b73a9851c056ec300245

    SHA256

    612bf39198c102f17ec48674259a8b97d7323809babc7a0b36bdc521e35038f2

    SHA512

    ca1512ac4673fb61ead3c2b4265ef4f266ca1466300b47ba427ba4f6387f93d2d97d60444bc9fcb9a9094ebebc1e1487623c86b2058bfc21935beb1500344be1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    44eaedc106c1bb6475a14df02d96eed4

    SHA1

    021dba66712b9186afe7f76276f2e84f8f93d7ec

    SHA256

    5b40c95a06d94efde7431cb444d69cbbbf8560464d3a1cb21c49b5722561c1e8

    SHA512

    302a1df799fc9dbb781d6fbcaef313778244c676afc5a99b236ab7aa585f69bec296597528c4091716db5f68b265c7f0e5e4db92b230a0950f0d4cece234b207

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    da8cfcb106a09ea91b4529fc898a7fc7

    SHA1

    9dddc2089e9e2416cc51451a1f8fc2f6523b9a97

    SHA256

    63a6e41bdc62529a50a234d2bb7d5601b63132fdd85cdb2e28e6b820a01b1de6

    SHA512

    a09b7ac39300ad01d30721b86416118e807a272ee8709411c808b59749801d38ab746c3935a55ad9281580e2fdaf33d1bb2b68457855ff66b520520df5875574

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabDBA.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarE0B.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit