Overview

overview

3

Static

static

1

0e82102fc5...8.html

windows7-x64

3

0e82102fc5...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    144s
  • max time network
    121s
  • platform
    windows7_x64
  • resource
    win7-20240704-en
  • resource tags

    arch:x64arch:x86image:win7-20240704-enlocale:en-usos:windows7-x64system
  • submitted
    03/10/2024, 07:07

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    0e82102fc562c92bb91a7bc4ddde33ab_JaffaCakes118.html

  • Size

    139KB

  • MD5

    0e82102fc562c92bb91a7bc4ddde33ab

  • SHA1

    c070ac470e950940dcfb20388d9f6cfb7af9b347

  • SHA256

    bb72426ff0ceeb1f42c010002c2dac4770aa608bf2c7d163fa383918b766cd45

  • SHA512

    5137681583bdcee6c1a06fe2984cc3ff7ad3756e7e15a0fb0191e810f75693916af2c5e65a56ea5ffa599eb404d45d4943453a435b4d5c8742fc8d35beee9c80

  • SSDEEP

    1536:SHNyzRJxHgyeA8+gG7l8SyLi+rffMxqNisaQx4V5roEIfGJZN8qbV76EX1UP09wd:SHqg9SyfkMY+BES09JXAnyrZalI+YQ

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 41 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\0e82102fc562c92bb91a7bc4ddde33ab_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2256
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2256 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:1488

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          41f2c2e682d530d391828fa5b57ecc71

          SHA1

          d0f030d2558905eee3be5e51d516186e5cb81c7e

          SHA256

          85b160730dc4412b041856040b3f64d0dceded83b38fcccc99876ea5cf63b267

          SHA512

          c2bcf4facb5f9100b7ad0d533a29fe81fc4f01b761013f8b48c42fa015cd993d0ff6a14d1db3cc2dd2e5aeae8552b84e7071f740990b3ab09c0d2fd7cf0818ed

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          002ff596dd3bca51878a46b64dba9625

          SHA1

          eb10bffbd4d9266c09f38ae31c291f5e528b80b3

          SHA256

          d0ab8b9c7a08ebfdecf63be396855d46bb2cd1462d3e667203dca6b59387d102

          SHA512

          9583ce3c2a9f433d08390874748929eac869a4de7b06b11aefcd8be581e3a856590fe7928fec8cb73bbbf483ad2f3eed7b277ebe28b16cf626fd1d59d9e6ffea

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          e1cd476d89c4cf7ec8448bb364538795

          SHA1

          ae5b5b07ec7824d49845b9cd581d99e0b6d7a7bf

          SHA256

          49c4d9c2f8f14a05cd403db357c3f2ca801ec65e9b9c427cdfcc165517063dfb

          SHA512

          cee125836af6e7fcd58697ed3264097d1781e4511cfb6eba237acd9f4f2352f85b37250d5122a41120ae3f9475264d8eacb2b145a5e1717c0e2448f31cd8eda4

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          e03d1bbd479128ebf7fcf994bfedfaa8

          SHA1

          e90dc60a01c484707e8e5ba7acb089c6f07eb0fe

          SHA256

          71acb377ec31f23314e1727c9a2c8ad9cedf99ddc33f091d2e9929086ad692ce

          SHA512

          00346e258e3d29bdf901c15de10fcd4c681a3818f856cd95c98f4819144dfc5a410d4ba1af1225859e83e096451e08315284d8b464e3201219822ea9012cf47a

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          2e0b6fd7f0cb59150f8f060f5bac3a59

          SHA1

          88f8f4ff3cecc890395adfae2a78940bd9984f46

          SHA256

          79e581084ebc30804441e98777981f5cb466b1e2019c0a8936fb4f4e212d10b2

          SHA512

          93768fed2a87b02a1e90cfedb132ff12c51789768f66413cdad3fc93ab1ee3229a7ae51bfcb9df7ce3460abac97471751a952ef0cc2255780a7904f1578af731

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          14d8944c61c88a952ae5a98c913bb875

          SHA1

          681433b5b05e448f48d50b4acc593bd873ba1290

          SHA256

          78d570d7b22858acc8cc031290c43b06d799fa90bcdddd3ee25155948e2a4508

          SHA512

          647e7c39e70b7caa8761499fd28f841b79eec7dbed9881d89a4fec51f263663b75dbc047595944b4c9fe4385a64c490678d782559db206c4ddcf1c4ced75ae0e

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          2f6c419e6af6f785a791aa089b369883

          SHA1

          745772811ef46dd60b2527080177380c9908ef16

          SHA256

          42c1bcc28da7708c56d060425b5d78e156536e7efcb33e0b1f1f8f7db8f5a4d0

          SHA512

          68e2064acd06795b2f9bce76ef6c1f88b8f037516c4e534deb05f205efe66d47b75c535763eeb41bef35ab56c073461b84889f1dbf3d21e886533889e27e3c88

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          e65726da2a083b1244112381ad1649ca

          SHA1

          7b11ad8bf61c739a2bb6b12f46e1473ac42dba7b

          SHA256

          c983c645b12b4672af88f5ad6c69a9889b98cf350c14c94e446f1d4b68f9e3fc

          SHA512

          417bc5edb7c959050b2af2f51c2d7bda9fc0e70d25e49803d5b4e6ed4022b442437dc334487f9951cd99aa17137b4aded7191e191858fc94c7673d7daf61de5d

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          663c9c6f54801b8bbc917cb55bfcfe99

          SHA1

          73bb960ea2a8ac842216c4b51c6c917fb32ec333

          SHA256

          64e44a758c5e8b622435e806354c4bb2b70619bbf0bbd7cdd43794c39abd3f3b

          SHA512

          a9c735243fc10361f7aef88eedc4b1bd63b437a93360764fec765c1ef7863ec83e58128853242374e3dbf20fb6dd1d65f126b546b86afeef478a255993f2aaee

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          ab1deada760ce499f273d4859d007566

          SHA1

          c1a212ea08d0d3e8a985212690584754522d3ebc

          SHA256

          f78a3041dd6bf85695382d000c181124e49ada7c95671fe299d3df2f8d946b5f

          SHA512

          c0d95b0a4dacf02aba8635a75eab05e7ddb4f16c2f79e23f357ae07f58a858f1e92f445b7e1d79ffd343ade08f05f45d826aab0a67bbc16c0b897a4a5b6e0b8b

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          2b4e6a110d9f5abd2c5668273eade2cf

          SHA1

          0c97b8803d0688cde5a34535e8c500f928c6e1cf

          SHA256

          732d7f78399742f75d9a291f71b777a220e5d71371f683b0907a77c23005bafa

          SHA512

          8853e7846dc5ff8af8884cedbf557695b3bc76dd789afc29356743d4eb6bb354a9a503a04a7b4406f93db8f74d3bc4848ca664cdda3f8dadcdab76f0f929a7d2

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          d8d1d6708298fa6ea2b3651f75a2ebe4

          SHA1

          65448ddc3b079e06e700c626b26d403021354ccc

          SHA256

          6710c8f21b5878e826a79e477acdb443d0deb6febc4f3d604c1ad6fe031a5259

          SHA512

          799e2417fe9cc33174adb274b600d0b37b7463841ce242fa02c278370050e510e6f65368cef3e710b8cf908065141bf924a34cc0c7222680000e589a58d9789f

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          b6a0d279bdcf1ec3a2a60d21c68b5abe

          SHA1

          3a8b3e2ecc747721fd36344b4e0f60f8139e01af

          SHA256

          03bb38ac483242a9e8ef745819a1b3bc4d5b8a8144b25658dc6f207b76740b8a

          SHA512

          b22aca7576a85ee1bca6d34b6f1484d54c1915cfa3b74fa44a684bd9429b6cd9d12615f032943ee3ab39960fc82b8cb8556640113f82d70508508580a88a8521

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          43a951ecf433d467d091fbe01abe1622

          SHA1

          8f5e8bfebc47344393c1fb0979452c8f958a1301

          SHA256

          86c0eb73f7f30e3093d9c7ec2ee5a74ff1bab20e488dd7f80b3e1eb6e8bbdd19

          SHA512

          e845f748cea6a88f5acada4f3fca691e4ae58938810e0281920c4f39c9fcf27f25b166fcc5643005893d3ce6e1839fa6c73d9b52d967a9d263acd170be46d14f

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          82279852758d521be495eb758cdc68dd

          SHA1

          7ac6adce2227492d8b6643c437bc391c5b2e913f

          SHA256

          2e2369bd11256bff176f3f2e89e7a321375a8020d13455ed1a0b6b6a328e0046

          SHA512

          b97d1d83a76f9e437e8f2e262ecd78d7a502c512982bb948da0e23b4ebef288b7594c4e654befa9662c2cf3ab21dca798841459753b05c7951ca022ad9427a3f

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          fe77cb7dcaba97506903e3edcfc74c0d

          SHA1

          83c6530eea202df648fc8cca26646f0118097ecc

          SHA256

          7f3b9a39cea99bc7ad7908505b3e7f93ff11a50ef81d08d4c637e3865b0a2ebd

          SHA512

          00d411f04195ff57416e0a746577ed543e07b4578d55afc56537034d124924a5d59a2c29f876009935bf1b1f620c62f8b1d69a9646188329a055d22bc3cd2c4f

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          afa46aac9042da299e005f09019d1a54

          SHA1

          17f99448116f8b9f98ddce09b9e3cf17fbb636a9

          SHA256

          3ec7063131ffdc5c517e3a754ab5eb6a418655e019bc87971e1d0ec25e3b310b

          SHA512

          db0f3cea173faab423f829b594711c6357be5c2446da8c7a4502f8b5f0ee9009cf4e90384c349c43b321c2a185f12396d644e7cd8b56fc17f780539a5f93b3c8

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          cada8d8b2d7badaf1f63eb4812c9e215

          SHA1

          27fa3e3b7cbdc900eec98e10881e4b3d249b16b9

          SHA256

          767d31de68d400a95e6fa3f82076b8d5d424c21634bce8bc841a70bc77800929

          SHA512

          2255e0396c9482aad09fa206d27e93c7a2aed46ab23f1f75435a3f6f461bef26451003fb6549bbbba566f3402209337db58edc3fbf1475260f9638558dcbf81d

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\CabABFA.tmp
          Filesize

          70KB

          MD5

          49aebf8cbd62d92ac215b2923fb1b9f5

          SHA1

          1723be06719828dda65ad804298d0431f6aff976

          SHA256

          b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

          SHA512

          bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\TarACAB.tmp
          Filesize

          181KB

          MD5

          4ea6026cf93ec6338144661bf1202cd1

          SHA1

          a1dec9044f750ad887935a01430bf49322fbdcb7

          SHA256

          8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

          SHA512

          6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

          Download Submit