Overview

overview

3

Static

static

1

0d59700dd4...8.html

windows7-x64

3

0d59700dd4...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    142s
  • max time network
    143s
  • platform
    windows7_x64
  • resource
    win7-20240903-en
  • resource tags

    arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
  • submitted
    03/10/2024, 01:44

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    0d59700dd49a8e449a56ca593fcebe69_JaffaCakes118.html

  • Size

    26KB

  • MD5

    0d59700dd49a8e449a56ca593fcebe69

  • SHA1

    32dc1cd9729f533f760381c761d23a69aeaa1e2f

  • SHA256

    fb88a4a62acfa06877442d047167c45cee40d1e9a8ab0cda0d47ad83b51af7dc

  • SHA512

    d9474934bb898fb0da96f9d11832900fbe65fb439b8077b8c69d5b7b960d829082b2eb015a25569450efa95c7d5ae57f9b17acd097b49bdcb5d778c5c8540dab

  • SSDEEP

    768:SbiztKYtgO+kYMDWj0xLLiSJh3JpOKvuhn6dTdlw:SbKtKYtgfhMDWj0xLLiSJh3JpOKvuhn1

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 41 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\0d59700dd49a8e449a56ca593fcebe69_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2692
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2692 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2640

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\3C428B1A3E5F57D887EC4B864FAC5DCC
          Filesize

          914B

          MD5

          e4a68ac854ac5242460afd72481b2a44

          SHA1

          df3c24f9bfd666761b268073fe06d1cc8d4f82a4

          SHA256

          cb3ccbb76031e5e0138f8dd39a23f9de47ffc35e43c1144cea27d46a5ab1cb5f

          SHA512

          5622207e1ba285f172756f6019af92ac808ed63286e24dfecc1e79873fb5d140f1ceb7133f2476e89a5f75f711f9813a9fbb8fd5287f64adfdcc53b864f9bdc5

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\F0ACCF77CDCBFF39F6191887F6D2D357
          Filesize

          1KB

          MD5

          a266bb7dcc38a562631361bbf61dd11b

          SHA1

          3b1efd3a66ea28b16697394703a72ca340a05bd5

          SHA256

          df545bf919a2439c36983b54cdfc903dfa4f37d3996d8d84b4c31eec6f3c163e

          SHA512

          0da8ef4f8f6ed3d16d2bc8eb816b9e6e1345dfe2d91160196c47e6149a1d6aedaafadcefd66acdea7f72dcf0832770192ceac15b0c559c4ccc2c0e5581d5aefc

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\3C428B1A3E5F57D887EC4B864FAC5DCC
          Filesize

          252B

          MD5

          98f2b4fd01b5a90563b7d2223229f721

          SHA1

          f84f658472d045f782700a06f6e55412a32453c5

          SHA256

          6e7034ac3688c0f2f7b32094e90981344b7951f8ce9d715dcff209112923782a

          SHA512

          81b7e3af31415a181ef25de37007d12e5aa440f809b0a17ee4d83598b92762a9af58241949fa302bd02c7f0403af929faaeeeeb5fdab1e4afcd7c43322931372

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          92267fb446f1f92447785f326220a5d7

          SHA1

          d0318edfc965521e462eefd8197c151c5db21d2d

          SHA256

          ac61caddae9381865c14794f08946aaa8a14781dd15e32752f8043c8ee0f50c4

          SHA512

          5376622234e7756dba6b83bdabec2b56edf6b218f0c5282f65c84a0fa360d70dd702759a01ea15344ce698b9aae41caeba21e3cfc16a6b9e50896237900faf62

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          0c4eea71ceeda52d832f209d7dca9a07

          SHA1

          fdcf99e1e923ba7dc0f56353f4668d42a8dae1fe

          SHA256

          8c251c3b8b6c976ac9bb236714e6d67ffdb009b2c6e1751a75e90f3d7be29ec3

          SHA512

          3a81ea4e5da0fb3cca1b27b21d09fa16e09f13d474994133daf9e0a93091cde41b337df0860866e07dcda399477934e5451cabe758644e1df552bebfa917b362

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          4e9aa1606ba1c9f5a030335d1d0a9469

          SHA1

          ce25e5095149f7e4e10ad432efca4169c926fc0f

          SHA256

          a082724bd4af8bc7053353e3d3e82f5ab03030cab897e9eda6b63af20a717ad2

          SHA512

          37ed2f7d80e4289d72fabfeee155ffaa500552059b6cef212dcd3b2425f9c426e122e3ea40208adac18d24eba71f49d82e77517008916abb167931178b7f98d1

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          4c47f886e4b9eabab361d78ca7abb380

          SHA1

          f157d0f004ddb4474953a23568b733cea6b63a60

          SHA256

          b29848c0ecfd8f9a6aa243a7e915978d802be4bfdf8c498345dd827257bf57f9

          SHA512

          83fb916fc232448e55057bf02a2c6387d4ba9050cdff0e73eea6acd66ac6323703442728ff88c0dbd7c3c174e3926372befdce8f550662d33562a12b034dfd4f

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          ace029c7b9bcc0c83932634d5a6e91e5

          SHA1

          468ac18b8dd4a4cec4a93a9e092737405cc13072

          SHA256

          28e9e6f2242a4a67a539563bcdd2673d0dd65ebe70f5c5e7f47b29352952e78b

          SHA512

          f2aeff3af0d24d9376a688b7926cc46d52cba58d9d5835dab88faa00c49007c688c8e993811d1487a5839d6026d7744765cd046c94669eea71da5d267949aa48

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          06fd00a5e7960a0698e3331e7db510fd

          SHA1

          b3345f12527a58c00fe32ae94aea8a85be756038

          SHA256

          27580a809862a1fa78f0d80b44eb21051ebe05d6e3f3397ea19ab52de4107636

          SHA512

          974474d4c1933bbecace4a0d3ad9966bcd36de7b38ea95a1b20790b7bec74e32eb4ed42dc006bc262b19c258b21946e9c5ea51e89d3c69525194cce3dfe0bd4c

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          745c5fe2d2adb6bbf9399c9c0029c835

          SHA1

          1b3eb236a80d68aa00889e0f96db6463f50459cb

          SHA256

          fcf47880830c81129868c9bfebe4ccbfc9063cff8dbc57b7c9b9e9ebf51a7698

          SHA512

          37fb1ab0eff8cf802f6a103a1734bbd5f9635b28fe41b4e0067aa5bbca5d9c730e81dfe61bd8179ba9ca9e09487633030ca2be77f63a2c5f19b69c3069c3695a

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          736120ca2bf1d491c38700a41a658f67

          SHA1

          a9a5bcd32e6113d4a434569d8e8a756c4098b71d

          SHA256

          1ad1134670c2321e2593d3333b53d6f5edd4be42b39125e1c206a5a1cbb89d7e

          SHA512

          91003aa9cef9af8b57f723889a8fdd075d545f9d5d506b2f5b4f7a41ee0f911f45c1d7f11e16b6a17225d1afa84915be5fe8bd38f801ff76aff487216f10b60c

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          7007336fdf5c58b969eceb724000f035

          SHA1

          779f6c8c8ea931471ca13612466195fd79405794

          SHA256

          b032f58a17b7a0386c1e3430a584fc0cbb415e461b5edcdde96adc42732c6e36

          SHA512

          72d673e82e7dc0378f788ea98e42f34e6a22642b9289b74e617f9baf56c2b914fa0080d123c8ff74916a857389b0cbec201f10be4c377da337d137e939f0bc77

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          5f817429b0854d50baa773aa6c8507f2

          SHA1

          d059df3a87ec29a9c473351240b3aee3c48364fa

          SHA256

          e643c8235039cf809bfd17d270e471aaac4ae13f7b699c83a348ed51f447ff3e

          SHA512

          83a73b6949733363723c21aa4eb3d5849662e3de054482c37d463d2c4f5606845f4df70e06343e11cc456ac72f3c41e80e85fb0da11e348ca46fbcd4db31bd8b

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          8fcf9afa3b96a66187bb4751bbd789a3

          SHA1

          ced7bffdc7d68c73ed6f0cc305e06ccd782b5637

          SHA256

          6f0fefecf781f6cb5ddc8ce584358bb4956ba7ee911486ffd3dd7c6db9d2b33c

          SHA512

          8842ed86d8ffa454ed88d1452d7b0f197b6eb0749e928b79b0e6fc3b3d07e0b5b8055da2887bc3a3ed346f3daed1b717be0444e0912ef0d7705aac496d9c80b4

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F0ACCF77CDCBFF39F6191887F6D2D357
          Filesize

          242B

          MD5

          d458e3e4d673bc7027fa7f1acea364d8

          SHA1

          3eae19d258a02735ce6658422d34384ac6e50804

          SHA256

          a1b3111c7902a67fa10171e2c7ba044973cee09e256da55b0c5031e40c785342

          SHA512

          1a50654de1f26f5110bbeb1f557b0bc152506feaaedcdecb979f511eecb71948707b8f9b00bab757342f11570ab9e432099f60a6af789976019e17c427d0a3a1

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F0ACCF77CDCBFF39F6191887F6D2D357
          Filesize

          242B

          MD5

          bc90f4a0963e72f2141662b62995888f

          SHA1

          964c03b115463e8ef2b31b6079b2e93b395fe453

          SHA256

          2223f97a584119e1381da3e336e5e6b0c54615bf8b1ac9e6e037f2f0ed5b4103

          SHA512

          b845229325b40d5a8f1bc2ff8a49329aec4562437246ca1c25f90d6c9300b7cdaf4699120dbc075386d503edb72e7e6dfb85ef9ba59678e1a52d8fca12685065

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\Cab9EE0.tmp
          Filesize

          70KB

          MD5

          49aebf8cbd62d92ac215b2923fb1b9f5

          SHA1

          1723be06719828dda65ad804298d0431f6aff976

          SHA256

          b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

          SHA512

          bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\Tar9EE2.tmp
          Filesize

          181KB

          MD5

          4ea6026cf93ec6338144661bf1202cd1

          SHA1

          a1dec9044f750ad887935a01430bf49322fbdcb7

          SHA256

          8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

          SHA512

          6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

          Download Submit