Overview

overview

3

Static

static

1

13c02febfa...8.html

windows7-x64

3

13c02febfa...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    121s
  • max time network
    137s
  • platform
    windows7_x64
  • resource
    win7-20240903-en
  • resource tags

    arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
  • submitted
    04-10-2024 14:33

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    13c02febfa3d043e50ca2baa829dbf4c_JaffaCakes118.html

  • Size

    35KB

  • MD5

    13c02febfa3d043e50ca2baa829dbf4c

  • SHA1

    e3318bae5b66192004e871de729ab9e0d63819f2

  • SHA256

    3893120eeb9acecf629ae4c993e3f3a012fd7051c3911d37bf3250c5b63a0bb9

  • SHA512

    002775e19aa4c21822d5f6aaa2739163ea082f2b1bd5c07b27c6930db56d7f99f2067a896a6876f424d0d77dc2162df3cc2fcd691ba9b513f5b1fcf57850349a

  • SSDEEP

    768:zwx/MDTHGY88hARxZPX4E1XnXrFLxNLlDNoPqkPTHlnkM3Gr6TsZ36zBy6Ox3y6W:Q//bJxNV8u6Si/k8wK

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\13c02febfa3d043e50ca2baa829dbf4c_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2096
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2096 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:3028

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\3C428B1A3E5F57D887EC4B864FAC5DCC
    Filesize

    914B

    MD5

    e4a68ac854ac5242460afd72481b2a44

    SHA1

    df3c24f9bfd666761b268073fe06d1cc8d4f82a4

    SHA256

    cb3ccbb76031e5e0138f8dd39a23f9de47ffc35e43c1144cea27d46a5ab1cb5f

    SHA512

    5622207e1ba285f172756f6019af92ac808ed63286e24dfecc1e79873fb5d140f1ceb7133f2476e89a5f75f711f9813a9fbb8fd5287f64adfdcc53b864f9bdc5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\8B2B9A00839EED1DFDCCC3BFC2F5DF12
    Filesize

    1KB

    MD5

    7fb5fa1534dcf77f2125b2403b30a0ee

    SHA1

    365d96812a69ac0a4611ea4b70a3f306576cc3ea

    SHA256

    33a39e9ec2133230533a686ec43760026e014a3828c703707acbc150fe40fd6f

    SHA512

    a9279fd60505a1bfeef6fb07834cad0fd5be02fd405573fc1a5f59b991e9f88f5e81c32fe910f69bdc6585e71f02559895149eaf49c25b8ff955459fd60c0d2e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\B46811C17859FFB409CF0E904A4AA8F8
    Filesize

    436B

    MD5

    971c514f84bba0785f80aa1c23edfd79

    SHA1

    732acea710a87530c6b08ecdf32a110d254a54c8

    SHA256

    f157ed17fcaf8837fa82f8b69973848c9b10a02636848f995698212a08f31895

    SHA512

    43dc1425d80e170c645a3e3bb56da8c3acd31bd637329e9e37094ac346ac85434df4edcdbefc05ae00aea33a80a88e2af695997a495611217fe6706075a63c58

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\F0ACCF77CDCBFF39F6191887F6D2D357
    Filesize

    1KB

    MD5

    a266bb7dcc38a562631361bbf61dd11b

    SHA1

    3b1efd3a66ea28b16697394703a72ca340a05bd5

    SHA256

    df545bf919a2439c36983b54cdfc903dfa4f37d3996d8d84b4c31eec6f3c163e

    SHA512

    0da8ef4f8f6ed3d16d2bc8eb816b9e6e1345dfe2d91160196c47e6149a1d6aedaafadcefd66acdea7f72dcf0832770192ceac15b0c559c4ccc2c0e5581d5aefc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\3C428B1A3E5F57D887EC4B864FAC5DCC
    Filesize

    252B

    MD5

    04e95cb2357d4fa1b49e5d412b9c82b4

    SHA1

    805dceab1c4d0c60160d6d386eb5538c03948c93

    SHA256

    af42edae1774f2f27fceb37fb5d853fa7d45751faf5355879869dccc4a10b95b

    SHA512

    ecb0fe77f1a269ebde58bcb381843dfe036a8180a589da3688f36a6997190c7b736b2e48b214ba8d85006eab1a6b602348e96e054ffef89d7df4104cdfa92fe4

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    eefff1a41a76184864d068519bf5e74f

    SHA1

    6b42215042670e78656cd3264199dee44c0bf55c

    SHA256

    792ca8cb3bf68118f94f40e51f587de77cf10a6c0cb8eac6187204aa71815d15

    SHA512

    1050f539ce4f6fcd81230a46372458764e2396c1a38b80322331b6494acc531bb1398300da2237fda375fadf5a6dc1c3d47fe0c0f942109a6eecbe84fb5cbf77

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    618a17d42084b84255eed515f39ec5be

    SHA1

    382fa5c948167d162190b58dfa412aa7185bab72

    SHA256

    7f7fbba3aa87f4ae3c14ae9b9438a34e7aee281cc9bbecb9b0d7bbd02cacd4b4

    SHA512

    dabfacbcf64289b133247b1e60fd22a495da460cc595538c445a3a301aa3173ae71010ed9198cee8ad5a720c69709cf0f1704ab6a329eb9321a791d165a34b58

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    77d449218d85da55e17a2c98e8cd8a48

    SHA1

    f9abcb79406cf31e5a217cb301a216a90cd37d80

    SHA256

    192884d8cc6d5ae946006372e54a9881ddae65d3fb4e6d701df6ba7abe601d9e

    SHA512

    8261126255ccb4c073b3bcdb4363a43d9aeea1a6430a6ffb8248c8b132a41e0081fcc244ee9705fcbafe9cdecb8113aa079e0575943d6f3513820cd398b458cd

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    52a200883ab2c9ab05dd483e0096edf1

    SHA1

    51c9586e765ad54eb0041bacc4ca1dedf6b3e5d8

    SHA256

    239ca18773d5bc59143c217f7f9e307f757e0e4e36c51a2aa690ef88b49aaca1

    SHA512

    613ae238cb31c1409fa5e8334195d6ab14aa7a7aef9d675c4151dd26ee2e3a1120a663212449862351c4ef6e03922b0b518bc187a4a0b4c87eede4981863f8fa

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    8e1b93a0d8e9dbc14b58deceb55c496c

    SHA1

    b4b5e5d191ae56aa1ef2d3e54b475e0431e5332c

    SHA256

    ef6621fa0e1688987ab4019d5ff9d030996f9d0deb88fa0cebbbe6a008141dba

    SHA512

    3aff5e7718e37ecebf0f2bff30f211abd20b844783e86339ae4e0057babbfc5497d00af8f10148d2047fac2bf68a40ab62e4fdddd6afd3ee8d574362ee44f35e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    472e618dfb5f9eac4971e38ad4b6f926

    SHA1

    58a1e75fd24a466cdd98b027efc7160808db8fdd

    SHA256

    575d99acd40198510f9605362252591cf6f555b14f8ccd820cd1da07551adf98

    SHA512

    cca8a6264439f661d60f55cb5167b03b1210f4636ff3476c930e0d5261132f711736ca33ad4d82a70cab4c7b1103e8f3f65e6d75fa52d300840987f34fe4ecf8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    f5f4bae48a1ef6cb4d1436bff0730b41

    SHA1

    0a760843d86813c291de4b58dc4fd51ba7d6cc41

    SHA256

    b3464b0376c4ef49ccb37a008e7165993cc709d03794f24d0e7cfebf9c5c1e72

    SHA512

    191f469fc3749440c9ce2ffd9c9ea3c237c2c652dfd80e2a28618eb25655f1ed684a7eae7db08c3bf6ec53b46aaceeb00ac410ae3ffc302e7a4c93275d4832f6

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    bfd432c8d20b1e34fd295e6488161e23

    SHA1

    fe62e1c50155d1a723d0944b689cbce8b0c274e2

    SHA256

    eb74f01771620125af246667cc32881120aa548bd82f281f2d7c60c14f1a3b05

    SHA512

    dcfabc69ee632cb1f6525be5cfa6f010fa6de34ded363830cf798b2419af6677d45a0790907198e4cac49869b7b3dd8eefd44c8ade49ee922ff499330aa04bed

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    b3e5c6dcbaf7eeaaf913a1ec9acd6adf

    SHA1

    12e730e3a8484f202664a163ca401e4f3bd02417

    SHA256

    420ba8782e04407a7baf49f3949a257d4ea9f79d1f0c5b487345a06b8b77c630

    SHA512

    e3ed99154bf77e1b7a7c6c947c30d3cced4040eef015651a3ad130a811ea63440976cc2e3e9694fbaadbed41c463f88d1a69cbab9bf4877bac694a89fb4b8324

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    53a1c2a0a5bbd92aa4a762eb569e4767

    SHA1

    9c60f0f4f0ce9375ffea723d899f2acce24c5384

    SHA256

    a562f36b0a3228bcec1b3d69c18b742280618fd3161c0c5f3fa733f7c368c95e

    SHA512

    8aff32751c56fba18cd06611d4347b1fc54a5fca9f57fbf6933295c8be67e5a1091def282afcc3c56421c3647dc10b247bf0de64d41aff6b5fdbcde14060aa4c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    0f33efab15566b6dd9df6d1ff254f462

    SHA1

    69799c9c6f6dfa6054e69ec3642c1b9b0e878020

    SHA256

    f810204bc8a1f5c4cfdbbdbb88220ee1dd8178de1a800b271c313b28b539d490

    SHA512

    b8ab52b2691a7ed762a0bc0ebb2a85aadebf2a3284fdbe5639e117c53bbde1fa12c91d03570e6f5469f970d94146bf0ef34c478482c12a7c66f87c8c19ced4f9

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    884425428ee43f239aba1cb5381714cc

    SHA1

    616fed646f4e3359180b778fda33c3a5f0c73ec9

    SHA256

    183e60c8251bebf2a37dfb1d06a88e06e021a87f4e03898b260dbba27b25a084

    SHA512

    7c8420a63e57479bd7536244baea8c3ace3ab788d474231e117c9d5ed9e39cc1b7a213ca8ef90d11145e96ee7a73def5177c5ac5a52665b227839362b8611d38

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    a5d0e80f297b15cf34699132c4784448

    SHA1

    add3305c3f922c3a63bb0e4c65106e249e578078

    SHA256

    8d6941f264a083094d162ddcb34158c7829a3b9441d3dbce52212d48fab02d73

    SHA512

    de8299d72764c777a26d7e93215c23a3c803674ba9415a4a2ae82c3ac99c13a39cbc3c9b745e5528da1d6d89139d417d4993729767ed39a64055aaeaef761f3a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\B46811C17859FFB409CF0E904A4AA8F8
    Filesize

    170B

    MD5

    1f85006bae6b8ab5ea20d991139ce6bc

    SHA1

    a57ce0c67c3e48783f3bb118a53d2306079b1f8b

    SHA256

    835317333a1d99d33b2b2cd018a890674a8d82ebcb72bd688f86bffeb8dc4e5d

    SHA512

    85f5da8e11a35e37a8673e99318259ce825d0794671fc4e42963529740d1366ff389dff49c15f599bf20681bf1e82e010d02c661fdc0245f70bf1b73d810f235

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F0ACCF77CDCBFF39F6191887F6D2D357
    Filesize

    242B

    MD5

    45746cec5c2bacfdcfe7843108bdcbb4

    SHA1

    ab7f5a2ab48320b3939c7e769321dbeb8aa1c833

    SHA256

    ab80f77b8a3e0735715f2b490fe8c657560347f2889b402cc5df9a4d8728d3d0

    SHA512

    74d0b3706f26bb46ae82e608ffbb68492e4481cfdd469b9a33687f455f83e4dc3bbd05a2cf3e20bdc304ce136786e55fb605947866f5e62d969069167548c816

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab7742.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar7747.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit