Overview

overview

3

Static

static

1

158bd0fb26...8.html

windows7-x64

3

158bd0fb26...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    136s
  • max time network
    130s
  • platform
    windows7_x64
  • resource
    win7-20240903-en
  • resource tags

    arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
  • submitted
    05-10-2024 00:56

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    158bd0fb26cee046a5daf9d9a78df93d_JaffaCakes118.html

  • Size

    49KB

  • MD5

    158bd0fb26cee046a5daf9d9a78df93d

  • SHA1

    d553412940b66444c539196f223ca99ca1f1628b

  • SHA256

    a860591fa00445a8548a166e2b813a6f89cd4594899537c6c117cc69e57d4457

  • SHA512

    a0fff55033c06ff5f5cf063ae9cc20debef91e2ac7fd529d92d26bd2b71ebd206cdcfd219133e68e9294c4be3a8aac84a735e11b83f7d76567f322412909386f

  • SSDEEP

    768:SRuYeudLhTTRN6NT4iAYioCXj/aEXVr08mDZ2LWgWI6Bq85dX02B3P7/Ll6X3UCg:S4Ye6ZND7YRKWyiCXS

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 41 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\158bd0fb26cee046a5daf9d9a78df93d_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1016
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1016 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2804

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    4e3b5cf6cb71e7cf43f6f34a1e83e8db

    SHA1

    bf6a77150280fe41c1f5b31977bcf2ce65385da8

    SHA256

    8602330791c408621054f0b18032291a74cef9ca55461a7b0787321c2bfd48db

    SHA512

    8432bfa25a8bc480cbe7212b4a436d87161b61d25650929529c3d07c7b24bc262075281fbc84e32ae01882437f3f2f7d336e370956a5ddd0fefbe1302ef11ba1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    17f0437a10f8149ac33d98832c29343c

    SHA1

    a57e434f606cf9eb7203c1ded1ab395b9ee28c01

    SHA256

    b7c85601124c20092eac3021d4fdaaaa94799e9b1ccd1d516e1aa5bedbd561b6

    SHA512

    38de289df006a0edd1845cbbee4cd73fa6a593b40fd62a8bdd85c36122196ff09ad562c1f09b53b75305f28d0f345ad1fb42536a655829fc79d1485a43916d82

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    5907040a2abce495af1c79273f7eadb4

    SHA1

    9808eaef96ce5588dcfd0ae2abe0ff2bfaebb57c

    SHA256

    0e33e5537f58084efc757aaee6d3adac30a8c3ef3ba63bb819913c48f09b3240

    SHA512

    00403dfa96c1e98cac01da565d55a5380c0d9be2b19145b60a35cc93fe24cf58e616c716f833be2497671672104d1bcad168d9f65c8f27e15c39dc6dcea061c1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    6e233d6e98fb0ca9d1ca9e1618b7a8c5

    SHA1

    526d7b60e32ed48a78d8b2944ca3063e353271fc

    SHA256

    5854744c5bb05baeef8d427171741f55dab9e06fee25c7e6a4aba625d0202750

    SHA512

    8523d7e1e87a42abc8becae74a87f8e5165dd91739914e01f9505f59e418bcf3d6841630a6fa34cc9131e7e9d63ef9a6b3927fa3a038348129c54e2af2a936f0

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    b03717d5dd14c026a0f5e7b6b36fa7aa

    SHA1

    de99892ccff82e0bdf6accaef05c6c12b8273479

    SHA256

    34e6e2e6c9f8a4d8ecfb24de3467a52e224ef6dd8ee4796517365edcbd0fdd6f

    SHA512

    45086d0d36ccdeaf48063104f674858e9005e110f31f7623cdf3c6285df9931d706826ccc7873836fe367f8693019372dde122b7de1e5d6d9518c4457074982a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    43cd8e74445b48b6f2120aa1683f0a37

    SHA1

    c98530c584060cd6a177340833b0e02baf669045

    SHA256

    379fcbdd9ec17b0203a1558307ecd722389f5031026bace70b77f6417d786a19

    SHA512

    70207e1854fad5878e24aa4145dfd0563df404eca8d55d64002be20ad1854e317ad6b73f7ef9613d7446bf58703d086c7a59c9906ed1945531f35660a7382d3a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    af474152c5610c5c32c7f1028775a6ce

    SHA1

    6055a666b2f2db5423ee4744ae35ee8ec7df30c5

    SHA256

    74799d3101aeaf11d7e228b44d2c4c96afb28ea727b5f60863c2697d56ee79f3

    SHA512

    5c216b0700a0c7a39060da079179a32fe81974601b0fe511910f6c09d46a922aabda3bf9df473dbb36bbff04b99243d31c855fcac0ad2b40d7dfa4835139b891

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    c6b79e0039fcd43b08ace4a3b4351f8e

    SHA1

    ffc92d57192298df8a7eaba52d8ed2d27ed54260

    SHA256

    4f1a324e47f6fc141d2bfd7088157349073310386bd544499a5d7dee75666709

    SHA512

    ab845aad564a7385fc0040b2ed7ba966f097e6de204b84d10b84c4b74008986e52bee048505d35d89f3a6fda90803607ad8f952b72eed1b348baeac8b7058e9c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    82bb6dfdeab4385bb7c4c4a2135817e7

    SHA1

    f2160e6f81baffcdb9fdc671bce968f6d2e83b2c

    SHA256

    c4dccaab65b71b0f90461fdbc1c3c47029a7b0152168a153646a2092eea3ec60

    SHA512

    3a116b1827d7248369d50bfbdde6ea5727b0b317d84ebfaada597bd3b849f5673c20c3f0d6cabfc9f3b957c8894cc5a976d91f7db7a94dae9b732bd99d0f7f4a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    05308056380d82873ae4771d63c5cc19

    SHA1

    03572e430d8e16fbe55f4cae0cfdbd77d8a2bf85

    SHA256

    cc1330a1a8035e04cc5a71c1596d7ce224915bfb31bc11ce9caa4b7d54bf1b8b

    SHA512

    60a19ec4094d5573261420a97acefcd92f2d75056a160bdb29a1f0c984f47289ccc15a0da56466af3a8f690305657c6e0d952bbd7b00ed34626fba4335b1e1d1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    0569f0562ed96e98dee9ba43ec3e4b21

    SHA1

    ea7e7ee0648ea317e30d98335d78d2d7621d6bda

    SHA256

    d00475f3814ff2e3e8119dca3c04bedf5751a92d14c105053d35fc463fcc94b7

    SHA512

    4ead879c6c923316ceb80e097cb0dd6163833844125491ffdf0d1460b6cbda728121119e37877175d313bd6f7c80255f49c5a1f7faba3b0fc2133248d93a4f71

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    f7b4c6368873156050260eddf5a88dd4

    SHA1

    98b4f47888083e03231d794232b7c3b7e91d895c

    SHA256

    025510cbfce0c402a75d3ad5881d8c6d406ddd4aeda86c53ef0e4c38efd63dcc

    SHA512

    36590359396a007520717de3579055856d2eff09412a3e24762c9666801d605ff1c7d206f5e78d9a2fb13e4b7d07e9f6589380de3753f113da2e80be169db887

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    57b19895fa026eda386e4df9ed82a7d7

    SHA1

    21dbe0fb4575c149faab9823567b48ff5302e66f

    SHA256

    8d5f74f0da3cfccf1610c62a080aa3246e26eaedd00de5ddc184d0c6a505f874

    SHA512

    d9e5fc1bbaa16ee541cf77cec52e28ba63ba765b46b0fad020f0bafdbd530c18147f7a33ea19399cd26c31cace26735228f62fe6cc8d2454f6bef07c006356a7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    f6eb19ea4555328f5584694ffffea3d4

    SHA1

    79233a061ff698a309256e8d009e2feec2e31c87

    SHA256

    52bd7d1c1ed55bc73fbdcd259f4629dc86fcdcb9df9deb001480b079d206b874

    SHA512

    7ee3bdab53befca2cd96be18b5406ad61695ca5e4a3f503a489ae3d5ea48a3c2dedb1fa88cb46392005b26394334365a98256fd4b62d9863db374a58e2b42b28

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    73eb09e061ffdf8cb08dd26e2bb2d8c9

    SHA1

    97fa1c752fc9bcd7485ae84ee5b2957884fb529b

    SHA256

    5cfc8d59e7c42b6606809e7d95726bc4d7f21bd43f56228a7aaaa902fc484e6a

    SHA512

    a75070e82faf926fa688891fb328f06b18c403550414915faf393bd0e1eb0f43e4f8cda8bd30b3a01130de1327ac2f387e5bc14469624ef5efab5512aa0097e6

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    398d619c6141fd160b05b09e58df9ca9

    SHA1

    60b455b5563e167f8bf608feb22a52dd741ca45e

    SHA256

    ddb37d102950e925407981b9830ab00dccc8245303d13338f9b06de681a26f75

    SHA512

    47e6264af81b24121cdabcd0615cd5dd8766624e892e01b2d64645c7d9cfbf2211972393ec97ad41582a153486c6bd65289c4c08d135772e38193148757eb9e9

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    69e2d7f036e4cb89a1f006d8e61b2bdb

    SHA1

    141d39a65a908277334c930cd8fa12b3454ae7bd

    SHA256

    a18719784d105093bb6a01069f6495e39072cab35d215fe620fe491e98e7d283

    SHA512

    33c955af564d17ed6214053306297e31263bb047ed574520e10bac03be90f7cd9a90b73da0049a522df973fe3124b73c7fec2514405dc5bc9c0114299ab223c8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    bce0ec7d35665b03bc0039da1de228e7

    SHA1

    748f142fdc45d1ebdb39a973fa247f9773985b91

    SHA256

    698cf0e6bc28dea881ce886c920d35e6df185a7cecf11382149c2fd34f2c0303

    SHA512

    cbe51eade4886508533c2abb0db864ec1110eedf1ec3d3cc288c4f24eeea27cb0a32ed1093a379e440596a17c748b358b838d8440821247dbb64f2de6519111e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    0b1ce775a7dbeeb1f29b4f73b7ede41d

    SHA1

    c2528b68ab17a63437351666c558f44dcdf6d3ec

    SHA256

    610c82c5783eb1d4389cef080e1ea493bc202e3a20cea16be24c394c28491985

    SHA512

    73fd1f1bdb6124439fb4429956c043ab2b5cede6c3d35e72d4aeaf905f538208fc8bf75cfe740e6d7ccff65e194e45656701012757da2e5f765191d77eaf285b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabAF06.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarAFA5.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit