Overview

overview

3

Static

static

1

0c676d179d...8.html

windows7-x64

3

0c676d179d...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    117s
  • max time network
    127s
  • platform
    windows7_x64
  • resource
    win7-20240903-en
  • resource tags

    arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
  • submitted
    02-10-2024 20:48

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    0c676d179d41217bf8f9238e48d6c55a_JaffaCakes118.html

  • Size

    70KB

  • MD5

    0c676d179d41217bf8f9238e48d6c55a

  • SHA1

    e04e9f8b7b5183a75537fd6f8c5cc72ff8257d1c

  • SHA256

    ae4af76e00d9b3007a9db1addd74ca5a9dc463bb92afa9e0d12dd00e337b2af0

  • SHA512

    4bd5002058e76212f34008d75aef0c541aa5bba664ae10961cd49fe44f8c5f2d096a5cd8ee026a44b4f1c50fc1bfa9bd204e863cdbe2b02ffade719c944e361c

  • SSDEEP

    768:JiPgcMWR3sI2PDDnd0g6QsQ7Jp+oT2e1wCZkoTyMdtbBnfBgN8/lboiGhcRfQFVz:J/SkzvTTNen0tbrga90hc+NnhVJ

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\0c676d179d41217bf8f9238e48d6c55a_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2168
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2168 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2920

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    bd32d33fb22d88d2040666887cba3184

    SHA1

    37263eba35293efa8840faf0038f2e61920c3d9a

    SHA256

    a3cf82858fd9b5340a8056909c786871d247259a74473b8edf6af743074307a0

    SHA512

    469cfd9faedd2fd4cc529da186d38f98f3b87fa54e2acfcea8db4f90ae02b66ec79fe354119b2336027418da898d91937042ed89babe636842473d0a0ff822fd

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    e3c03563e43cdc1ac9643957e0e07aac

    SHA1

    1c28797893bdda15be9651bac8c136ab9f7d5717

    SHA256

    68760f036c2da44227c2d698bd846e64f3aafc68641471f63c5eb61605bac6dc

    SHA512

    31499d82a68ecc942bf0e43a2c0fb4fe4fcf911e48abe3b9a9eb92d12fe4e992c9c3e0162a51823306748a285d93fa41b5149302ec457978203cbbc6efd8dcbd

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    7d8e961b1361e458ce060f1f8fbbc0c8

    SHA1

    9fd6ca07ae75419eda4fb1e1b4f54367acc09bd9

    SHA256

    c442a89f584fc58353f640c1f645866d3c19d54aa2e877259a3cb00301814f01

    SHA512

    6dfb1b62a3ed09a4b0ee74d6a6d6b9c23c23803fb1d32cb72b7a6395ad29ac818c9bc30b833bc0c9335223719ad892e77317ce093f932451c0518ebd696e9e8f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    7b61e63e49e47e6481a4f1cfb3ebdac3

    SHA1

    ce0fc851bb216e938c919ff49e76251e98731aca

    SHA256

    77cb06fa5b1290683e44afab31baa8ef8c0bef9356c2a5c6f63a886735e9caf9

    SHA512

    0b9b9063afb181b8dc65375b408cc1ed15c0541d1900d68bae5283c9a1bee84858d4676b82f3e92723b200ea7ebea601a4e8b7e1ee3ae0a1275edf7c16507660

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    65b793ee10d558dae841d82f4fb44676

    SHA1

    56c4bbd712e84d1a3676003871417a0238a82dc0

    SHA256

    8f35322be0c892bf7037d84b4691b1fc51861a55da82cc10d8d6ec980fc39628

    SHA512

    2bd37413a5fdae8191a148353291a667b93bce9fd06964cc5ef796a5675fc7ea8ed214e409963939cc093ba0607b0766e8de6f536406717145f58cacca36118e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    07b25e8815cc9a3d76ac79869acda287

    SHA1

    6365811b21ea28eff3917f2682a8b3fe5371a449

    SHA256

    edf24c0b2e9a8b69910990efe4ad0f45ae21c2895c6296d0fc2e034fa5f7dee2

    SHA512

    71e3d34022d193a281e24f832066ade9fb20609ec784ae331baa413cca8fe84a3fe5e932ff21ba592e9dd819f3200a18f62c18b18ad38093c86ed53d28acdd2d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    1ad783904f339df5dc07ef3b26ebe03c

    SHA1

    7ca4bea3c9038a084a9f59413a7b37c75f5f901c

    SHA256

    b87be9a04fecdc685f1734660857348d21d87eecef23325b3132845465cc8601

    SHA512

    57f75ed2b4c5721708d7dc988557614aeb4e7eedc026825d005d265609f85a71542b36991876a5cf77563fd74774fb3bea4d02d39e638fe3903b851924b870f3

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    02960665507ed420ed0acd174ed5d53b

    SHA1

    e489ec8e1d11da84ca90a52f1566134ece6659ee

    SHA256

    ae22d8e7f4bf361b321de885d19de810015fb1244ea68f9c7b04cb4e767ed79d

    SHA512

    739c178314b7d07359b9c3928d427ad819305b8d4d3486bcd40d194d8291702b3458c7dd38bd562e576eed7a2d7fba810a449dec1e74901891681470cbc69e4b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    048dccffc6396fde678782a7f3d83aa0

    SHA1

    d68e043307325b532deec99b93d22d58b9cafcbd

    SHA256

    142af4544f99e8814762d88700d9ec449cc371a8265b9d3564e80e5e755a428f

    SHA512

    d97331ef4d4dab471445c88e273651436b28a0fa7d27f3c41423b3d2bc4fc842f1ab522faa9f65372c31784d7a3fd069289d8aa45c4cc715fcf1a9ce2d54d02f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    4334fd1c2fcfa6457e11e513b474bd52

    SHA1

    98d5c0d1e24d39899c55ae878592302a6ac54c60

    SHA256

    c0d653b23a0241513ccc3e6cd1229c208c560bc11eba597104833d2a464c7edf

    SHA512

    171fed5eab8ba5bc63eb6e99b5f16b1e22f19619ad7015c20df39553ad4ee2e53488813316fafc1372f0d3aa1ff0a20e8cc7b4ebd0790eebb933dce8e34b0b63

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    2a3e21ddd8dc01775dcfc1f8eaed78b3

    SHA1

    ed26caba4571b8533ee7fa083215e343103204ac

    SHA256

    b3a6623f6a80ee0322a66ad5ee1fe4a282ca6c20078511a80c083ea9226094ef

    SHA512

    b149be8bb26e7215424eb823db7a0815fa6ff960a60fc5a10a28cc7e743964785b7fda7f71a5a12121058c591df3f181248cfaaa2cca646da7594c56e9fab2fa

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    09a254979e0e43477e0dcdf6ab9b1b8a

    SHA1

    46a51844e99d7224882b5b0d6a07ea0fe4741e2e

    SHA256

    2a8d6d473854af902fc1626e8b7a34e01a53b6b419e1979c46d0187bfce93b23

    SHA512

    fd212d3b03582b3591101aa12908cc6bab6ec4f637ba7300ea0b7efe7ab2a1f949955ef24a3b3bbf141d2cb18758f6655192162de8dbe77afb0604db101f9bf7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    5583195959b678e89ae8c580047e364e

    SHA1

    520229b8ebbdbe7efabd516fae41f1489d08677b

    SHA256

    b6283e3512262416c24391ff4112d14387e46d6fc309b692b4f460244d7b4453

    SHA512

    2c847d7ab5548d5cd036ffb0a4768d9e6b70b8f329ce84abd56a8475601830e7e1de38c34d5397a28afbd5351ec2e8541a0962e53eb83382185cf6aa344ddf62

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    ae3cf07bce984c4c4b826777749306c3

    SHA1

    e64f5ecf852a1fee0ab4ebdf9289ae0442c00135

    SHA256

    80d32afc2b322fc6787fa0530a1c6bbce87db6adf44d1545f286d9dc74d4f17e

    SHA512

    a9963fc96abc37ff46db16010f1546cb990d9548b1d5cacffd61b5d3d1afac208b9d3ef0a95029a1fe212d3e9813460e5bee40a9639f6e1f3017ce9605180845

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    171f92eea79950429d5c8071485eff5b

    SHA1

    824d595c61e7ed93fa70646306e2c686db690e0b

    SHA256

    dad22e9cee65fb89b456e4d78606f5c46b7cb48482901bb600f25887ea236596

    SHA512

    19a32f03613cc7ab2dbf1b4023b650de2ce5a91753352cee40051c4be4df1e37c5c40e96ead3732e70e3d1e998b28093909f94acac9d389ec1ef9da8f5c61d54

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    c25f8696a42e629292107663427145f2

    SHA1

    ac29f635fa2e97447c37629f6f32e6fb1822cee6

    SHA256

    896caf39f3c0b6ff3c4ec79b2aec45676720fd914ab790d870652f6960b9c1a8

    SHA512

    a8d6aec43c9cd0ddfc20e2218cf70bfb9ca675de1873ed305d1d0d13a5e136687cc26386ed20ac349eeb88d4dda1f33ff960384269d323dca49a4f4f61138446

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    018ab369a865a16425c6856bd3aa5d51

    SHA1

    f04a046be6e9605db90338cd035dc29a44704dc4

    SHA256

    55b642a452d27d28fa7bec65eb2b33d1a64e86d4ccc265b4e94b69bd29e9e7ce

    SHA512

    e2e40f3597304e02c9711b976a32f7efcba76b0904787dc9af813e2e34cda04d4e2b112b47be76f615057fdd8b15d891fe7d43d31bee06b8de1c4189b2e58841

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    f7cdc78dc75d77812c9af922647c8d92

    SHA1

    6465a69f128e79a5ba79ec6b3f5ff1dc2eac6b9a

    SHA256

    d196cae0d27e051b33e0f38acaab679107e51e8d46f13752557fe4c59316e9ea

    SHA512

    96cfbce041b28e38f50f440e4a565ccef8f022ee492ca731a6a4d1a441a09e6a9b35569f13b858776d025e931a675648438be19d6da88cdce06b2d142efec153

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    9a90cfe29ec2e5987dd684ee33043c51

    SHA1

    32b59cb29e4f804e6e7bb15b0ba7927e68d68adc

    SHA256

    cf5ebd18594651748583c3aa8653ea0135a4e13600ea7095d991071b3abfbb9b

    SHA512

    3fd9f46dff6e74614e4cd352ae38c84907aa9d9623e077027bdc3c5d7e563129abf9ca107783b7dd73b8b11fa8ce915e2cfc80ebeb327bd4675464aa1a008191

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabCA33.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarCAD4.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit