Overview

overview

3

Static

static

1

13a5ad1e8c...8.html

windows7-x64

3

13a5ad1e8c...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    67s
  • max time network
    127s
  • platform
    windows7_x64
  • resource
    win7-20240708-en
  • resource tags

    arch:x64arch:x86image:win7-20240708-enlocale:en-usos:windows7-x64system
  • submitted
    04/10/2024, 14:03

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    13a5ad1e8c9ce51d78ade8c56ba06d09_JaffaCakes118.html

  • Size

    702KB

  • MD5

    13a5ad1e8c9ce51d78ade8c56ba06d09

  • SHA1

    04b1a8038b744bcb920fc6a51e9fd670954b8f1f

  • SHA256

    b677d2b805b8e282a44d55355d599023232b9a17342e6ac703f0f260edcfb423

  • SHA512

    64d444d2c6fd481df95a5992e9a2a845b8a9659b7e0b3110b15a225aa2f340b41ed209e592363e3c7781fd15e4099d7b9c411f1554e66fc6337707c9e83f363d

  • SSDEEP

    12288:nk8HcBtNgSPNgqEj48UPuk8HcBtNgSPNgqEj48UPuk8HcBtNgSPNgqEj48UPuk8l:nk8HcBtNg6NgqEj48UPuk8HcBtNg6NgL

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\13a5ad1e8c9ce51d78ade8c56ba06d09_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2412
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2412 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2020

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    f1a147a8d689c249e6cf19e78182ada2

    SHA1

    decff5be1d37740b667aed39eb631fe80a4cdedb

    SHA256

    48796bb69ddd02fa41f06f8082b81214bf025139fe55fc2adeaf956585d975a5

    SHA512

    6df5a3c4ec903ae1d47f1a5e2cf1e3f14aaf0acc1941ca97f654191ca92b53d117d9b14e47cf3aaa74b16e6f23999a49063a777e4085531e874844a0bcedd45e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    a231a4d17df7a77cdcb8a53722ed9e02

    SHA1

    9c4c9004a528b698894d6f2255fe9275f9ef7bb4

    SHA256

    ce3ce10de18af7e6353b1e5d13d4f7d055726838361c698e5c007a0f2d35f37e

    SHA512

    e03010595fd4c0416dd86def56822fc5bc95d9cbfa28156513350dd76336d6cc040e4b798ddc816f8e2b17c2d00bf90876bd95053bff32942e6131a806be5e86

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    5f24b92775eaf703054d4c9f8af30936

    SHA1

    8380baf79b0fdac3e09f23aceb9705ab1f367841

    SHA256

    f2111f85f42fa02b3ab3f7efbb720b3c1c40ed32b745f9e37dc136c55f9f2716

    SHA512

    becae459b4bb0bb4f79c9ada52b7b54a41d0cd0837c5e17456969893ea6167027263e80a8f916e0af4c8d2a97089cf87e1671b4f5b241671fcbf3a3bf535afc9

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    be854de614b3a2fa0e3db65a00eddb87

    SHA1

    818b088c15c8bb1a87b56a6d6162d3f07a747072

    SHA256

    7ed5ee7b33fcf66bf7706e7e16cd3815cdfb5b8b35e308a158959265bbbafc90

    SHA512

    243f287823cc1c2ddea557fa437680dc196857f87f769d4fbd4700de8c5809d7e5cacd7a6a8bd039002cf90e4af68455a11fbdd562e4dd24703d62341707e9c4

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    72d824e5640e952df0bd41bf5432cd0d

    SHA1

    1b22a227ca94f804b0d554b3441393ae1e16e124

    SHA256

    7469932acad20e7ad5cc0cd644a51225f4781f4a29beffc5e2c077321441d3c3

    SHA512

    ae6304300db7641418651f29d59cf1a30dae8cda21b97e0b243f2fe5bf45cb22b8b5c38c4767df10d524f6ecbcdd0159de83a7203bdc6deefd5b045cfa291039

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    59eb2e0e04c756c319eaa658d41906a2

    SHA1

    7f5bb58019cc299de057fa93bf4060e252c4b120

    SHA256

    2b95d7a0ebe5eb7fc791f4fc98f7a7b429cd088a704fb9a2257082b138e0f118

    SHA512

    2deb847a03df22398949cac63784f3e8539fd41f1be76f3aae8af24926f19c5c821d337a4ae4fccf48b233e55bd9b85b0be374da1a293278c7f8afac48e57a9c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    f6c19da20445243e9b6ee9f1a0e07b2e

    SHA1

    da53022a15f415a108e2938f0d93d413aacb14b6

    SHA256

    b6cd05544e1718a8e049c7a1687108cacce337cad1e6f94a3d120ca8f23991a3

    SHA512

    c60b0713d16ce2ef93f4d81bb8659eb992bf615510a8e856b80f4169372033c360e5a32742c171175bf199b497b0b14985fae63b4831b1a80e7a5919d55ad57c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    898bb4c2af0e8b7aaa90f915d25642f6

    SHA1

    fefde5750bda0e67507c4212f76566f1362eef62

    SHA256

    5f260769ebf2b4b790e38d0dd4f841ad91b13da54499eef87207407f3f9d872c

    SHA512

    d0c0dc9f1a66dbbe36caf4f05ebbe107e7fad4251b253043fc0a58c396c86194cf114fe8b546c5cd278e38720e0793118078a0823b11f69e5cfc6a10407645aa

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    27b6f64eed23fd6be511acaafe1b63ef

    SHA1

    b0b50a7934c0d700ad06321c2b50fd24efef8888

    SHA256

    08383c2a066334e1aac250ba751a5c407931c33b34f514401747b6ca367d976a

    SHA512

    6441bc7a5ff425c854d1b0e57804854582b3133a79601e968d09e55b75b02803724f4111d3a843107c398648ee87b2aadd891baaac62f43240bf96d30c29c346

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabCC86.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarCC98.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit