Overview

overview

3

Static

static

1

0b0d8e9362...8.html

windows7-x64

3

0b0d8e9362...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    149s
  • max time network
    127s
  • platform
    windows7_x64
  • resource
    win7-20240903-en
  • resource tags

    arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
  • submitted
    02/10/2024, 14:10

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    0b0d8e9362e291958a21c03b7943e638_JaffaCakes118.html

  • Size

    8KB

  • MD5

    0b0d8e9362e291958a21c03b7943e638

  • SHA1

    d487410e3c3f75ca7bbf9221e41f60ab109236cb

  • SHA256

    ba860058c6e0e7def74b5827a027b3312fcde430fda7cea2fc06a80c9eb3ee67

  • SHA512

    fa82b12b68116430361a7034e5e2a98131beb7ad01200c9ef74700416c9456b9a1ef073abff8e6d88bfa3b15edc3a0d62f19f5b6594265f32e89f1b2564ae15c

  • SSDEEP

    192:7kiFPYAUlYBkgmPHH4H3AxikQwN+58VFCURco4xcOGFh4nI7YJ0pt6vaGHgI0lRP:7VFg7lE/IH4H3GNE8VffqIWzSGHgInkR

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\0b0d8e9362e291958a21c03b7943e638_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1940
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1940 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2804

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    bae34719e3a5fd504ea1ad9d9e0ad3c7

    SHA1

    be52a0aa7a71f72eee5b44390049241e55155ac8

    SHA256

    e61fee587b9a8e1b3a2eb7057ee572baf52222d201d49528926519d39b58955d

    SHA512

    bb68a8d543ffbe53bdad2a9a5573058e42d39258324078a379c8fae1282be8eede7e8a9064c7c5320211e21029a28c178316acd10a281ecfb0117f75a7cfb2a7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    60fd3e0b7ed23ba6bf99b0db66d46ae6

    SHA1

    6aa6fc6fd4cc6e7c36d56a24d9d9f70f7bf78a6a

    SHA256

    fd41f8ead5a2e92777885e563a4a5b0f6975c3ec3ad54bd15dac215ad58d52b6

    SHA512

    883dcc09786a8e25054e355ec0d595597e4a8cf2fbe9272dfed42fa5ce50a6898130555a43910b529ff0fd7989aaf52a2459eb2b33b4c5eba00580de0ab43b3a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    c161f81e09e6055507a0ba5daac1d50f

    SHA1

    0f41a76797fe63ac6278b18b297567a83d398a47

    SHA256

    5c91cdd56a24cf650197acdbff8abb5d033c5eb682038099eaebc50e490f6e8b

    SHA512

    e4d1cb68d20dacc4384d1784ff1ba37ac68ac0ef6c512a0967682decf91c49f649fa2b2454899ff3cf60823e0becfa33bc88e86ef76234af584ec122160a70dd

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    11a56ae4ac2702d6c83b345ace691ecd

    SHA1

    3c6889a8cce86efa4f9533e27c2fb877e3c6a626

    SHA256

    806695008a734b02687c1b8131953ce7812a7e08fc26c25c955f4e5fe4f9f91e

    SHA512

    a1fef25506c44046d49ac7a41ea434f69ce2dd36a59adf08019a84eae7c5f0024bfa5be3bd71f0c97ae38045b51cddb1619eb1c5b136a80f7dc3aaacfbc50400

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    69e427278238f5c9b719a8c5dfc87b48

    SHA1

    37519219691086e1c53588b04ca07ff7c643dd1a

    SHA256

    756834798df00f8f6589ca30dca708296e7379811b8a6e735209fc5733812a2b

    SHA512

    d666da04b0ba2998a84897fa25f715beb124c94894f43f7186d6aa3bbaa09b41f7596612534a9b3c6c693c0d7bd697085fb9adbe4bcbad5396c7b0fffb175485

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    fdc47400e9f2d7c6f7853414d82ec924

    SHA1

    9e74f005614f2d290bc02016c7c1b2ada3f03170

    SHA256

    d55ec8add65019f352df4a7f74992ad0d6a767ea7a1a2f774491760424600a93

    SHA512

    8dab068813571e1654d3945b774426b19a1f4847c043693d6781cb77fad0442e2f48842de6c6ed8716b065352e7da087b3ee40f5d9e364762d5e96d362fc820c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    158125f1851c7c77b8979b98ed81544d

    SHA1

    7aa4f659b187c5995784b514b4d2dd5e1af4bcf8

    SHA256

    6a902b14fd40f1157bd74bb62caab5a76665d0f7d7b3ff11eb55ffe3150e7d89

    SHA512

    0deb3d348aaa97b03ce3e1c293f27c6532542c2b326c8b293f5a7aa6d8c1d98ed6daa2f72ddbe0aba1692a40a4742d6e661a486dc8b17d3a4ca896981ef2b366

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    12714fd23279d6f3ddc857b3a3958936

    SHA1

    a958b88e173003eecd442fb11f929e975f1a4524

    SHA256

    3379b0bc7d02b7194a0f846a32054d433058fb9fcd58fe031f2a50e9e6303073

    SHA512

    22fd7be5ac821f61272e4c3b0a47dc270f8f705b7bba5b4323d95e11a58c627bf48890d2a44de84d6e32c0ba880bfcc56b9d188cef599bedaa9b8ab97c1119d5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    ea20418ab35c783ac1ade8d5a2a1ea37

    SHA1

    613e60609c076aef7870f1a03960fd3e480470da

    SHA256

    7e34234a7a3abd77536f975c7c172f4fc892cfd8a48ba9c87a36853e53e0e851

    SHA512

    b84a2981d344b45f644d6cfdc17a312e290888f47a0571e237716dce8336d782f3d7c4130ff63449893c2d8cc7fd4c3a73880513fb5eadd74a6148b47ee94a7b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    f877510a5e9bd02d207e1f4863ed1009

    SHA1

    a4d6cbcc6e4206f1a113f1f616a59b9314c297d9

    SHA256

    781d0446073a56d2fa5eb44cb7bf9688655aa7d38a20928fc89ac6ff94d78f5e

    SHA512

    0c4b0e583dd4454dba1dd5cfe5ebfa33322b56abe535f569ab29cad8d0eb9114cba9c86adc3f6832299e12450432661cd149e20622d95126aeb4cf0b78c90be7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    9796d2ad49add6f13c131d54a0ac4d8d

    SHA1

    d3f852a320728bd0bfcbaa21e55babf54d725706

    SHA256

    e7ab7c95636faca7026b66a4c8d3820c54c40c1beedf121c3f9fdfadfe1efd43

    SHA512

    064c9408b2709f582f32b0cacd38e2fdc81539a8a318a756b21efbbfb55596bf203232c2bc4a5a303ccde73c459be69fcef53fe9a07bc207cf30b29a00ff620e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    e65004705ef4635c42ba4795a209b473

    SHA1

    d0b18de66c2c6e629ddea88ec7cde0e30e7529be

    SHA256

    99492f427d3174a6bcfa4586d1a185df0b5ba7403c5108dde36516f6866c38e2

    SHA512

    ec27e6ee4a27d82fe9e658135fb67dd5f7bd0a8e5c67bb64cdf807f501758e20fee19e720390c8ce82bfd88a5edcd21ba16083de88c1434b602ff3bcdbfca124

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    42d5040140afc06d66760e24c9c58299

    SHA1

    940fd2c6a41b7844e45291dcf2014956c83ae6cf

    SHA256

    348e45dcd78814f322463d2be063f6f26988b9649d2fa50fe66c8bf9917ad197

    SHA512

    0cacfa7be27faeb44135be689fd040ecd21a6c667676949d16af5b260cb6f90af4734a11efa70564a9f628e1d6f8206990beb2ed500d283b1b5b1fcea1c0bb9c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    b148558fbad9d95ccf94c79ff602ec53

    SHA1

    751228463e89139fa0eacb74fa8248aa354f6ada

    SHA256

    7c74512d73da39db021eea8566046001957b76d5532dca6e16948d63f7eca3e2

    SHA512

    3e5d288b31e34f5a46e3e6fb3fa614a53314b8a9dd3e7b611fa6f65d24a8b92f78ba34244669ef9b9b753d1fecbca84972ad5e7eb9c53c13fd5b94581c73f4d9

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    646072a5357be6bf22e653764795794d

    SHA1

    9df3b42031211e1ab6b8da68c20fc69094cb05b5

    SHA256

    67fe48d2f71686f850db47027175805fc53d059e701eec67e0635c9eac606543

    SHA512

    8bf10a197d88b5465c589ccc675ec6f1c235613c635d17b9dd5c834d0826365ea4db622e33b96d755b0e9b0076de502e0bce975b2fe3264e32627b02946a95a2

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    1a3b791e2d64a91613d14d326baa2518

    SHA1

    8ec95be267dee9a8fafa6448efd08e548cd81e03

    SHA256

    683c1cf17e6c58c35cac9df4e488e0417112e086a7c32481f8edc4a0741a7e3f

    SHA512

    9287eb733dec12fee4aa5bf6ac5ec57ec07e01970fd48a5f540a4a7d72332573cddd7aa04d56af1d2cbd4c70cedd90ffab0f24b4cebd5ef5ad54dd328abc102f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    49321b2fd527f4fffeffa829f9f765d9

    SHA1

    d3fadcf74fd6c610029e7e533662ec8f22da9cb7

    SHA256

    7856bde7f5c1f35c51b9d750df1cc8258b10f24f9902e71239d020278ce23938

    SHA512

    79d1b2c902a3ca5d018afc9338ab5adec288ed95732f52b6cf27c5c2f81edb6e140d4636d2b4ccb8d10ef21ec5ccf3f1fa7855dafec53e03b057a9b108acff7c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    7c9c85916d01287e544f2734d999e6ec

    SHA1

    0e3855639a98befeb4172baf5856728619c6e014

    SHA256

    4f0ff0667ac6276402d95e86a4617ffa85858b0ec2c1aee430194ee941c57e3c

    SHA512

    6fb7101e1ab55f59c8782b2ca2ee0c794687999552d11ec3511d5412fe0dd871de2759eabb6f529988165199b6dec8bca79f572bbe264ca1f97bf19319d6e9af

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    53f588d256e2a71a42d74a7ec1ae1068

    SHA1

    bb13b7115327214c52cb9d9875c1a84480cb9031

    SHA256

    bf68685fe94f80f8d4d0868a5a5ac6af22d8e271951f495a95cda9d5a26c5d7a

    SHA512

    d61aacf05b8274807a45b6b4b42959e522efedf28a0b5565dd8f32fcf90ddcca69c33475791e1f657e3fe5da28a01503d052fad99891ba036096a1d5e728a851

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab2C51.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar2CB2.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit

  • C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Recent\CustomDestinations\28c8b86deab549a1.customDestinations-ms
    Filesize

    3KB

    MD5

    7a1054f0cac8df5e0aff98d498c3f0ed

    SHA1

    a1ed8fc578e70e6d86c5958e4d6e26999edfec16

    SHA256

    a55dfb4dcb505abc4af3a70777a5ee0ffc0f54cec6db4ae9c500244d47547515

    SHA512

    2f08f6232979adf09b72145ce8e1bb9fcfd258de69dfd69a1a4248f78603481fc736d30dad16c71a62e66161d9864b98b89f09101b929f0657c7e46abb991627

    Download Submit