Overview

overview

3

Static

static

1

17d5a50e23...8.html

windows7-x64

3

17d5a50e23...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    141s
  • max time network
    118s
  • platform
    windows7_x64
  • resource
    win7-20240903-en
  • resource tags

    arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
  • submitted
    06/10/2024, 11:08

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    17d5a50e238bbf37d9ad30b862c4777c_JaffaCakes118.html

  • Size

    138KB

  • MD5

    17d5a50e238bbf37d9ad30b862c4777c

  • SHA1

    f877c2c665564153bb0d466d69ac55dee557a446

  • SHA256

    aafa5bab81e6243f62739bd37b907ae3ab04a2b8836990fdaeae165b1b6c0828

  • SHA512

    3f7f83b7c934c120289502fbc391ac66ca15714c70b0d89a6ad2236e46a0b50a4d03637ba8817163cc31eed6e103fd92009a89dd2b8be0412324a910d517342c

  • SSDEEP

    1536:SuByVzoeIWsVflmPWM0lmyLi+rffMxqNisaQx4V5roEIfGJZN8qbV76EX1UP09wd:SuIryfkMY+BES09JXAnyrZalI+YQ

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 41 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\17d5a50e238bbf37d9ad30b862c4777c_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2628
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2628 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2652

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    077fd51ebeb20fcfe9b0bdd18fd92385

    SHA1

    684656432ebdfbe7d54c3ef3c1bfbaffcccf4fea

    SHA256

    ac254bd31b616adf333c1e12c0e397bb43f9e4d9d72a72ae6cf022d58402127e

    SHA512

    c970fc22d5d1547094ede99591af0496d3469e3885bc3e465a280d5125cf22f50270031c9303d4e1c194cf4519c0d9225af0326ce3bc0be20e4c96e611aaffc6

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    a708117497a50412377c0ad651cc854c

    SHA1

    ad2c1b7baa16021e71fa640a7f4c09b1bf022a19

    SHA256

    9fb346cf7938adf8c37b774114181e9dc3cee469107aa4ecc681b4cf02f061fc

    SHA512

    d156869b7b123416dfbb4ef5c3e34f4eb414ed555b6ce20ba5ce36935e282bb5d68fcb9fdbda021a6c3294b1d0ee148b902198dbd39475848c035627639caa7d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    e45cdece7ea40ee4f38f6f548c42f822

    SHA1

    f86d62a4045d01636e7d0e643e9e557b2721a919

    SHA256

    67aa8ccaefbb012f81a3feb52f54ffe2c69e513410f4f432c18d74c9e5d5cf89

    SHA512

    95c6c9a725ee4d0946c95fcb3bfd8752ec9115df7727e0b82ef8788f64d565714e661d00f0485ce42b4185489d154dc4236176a294222ad1273433f327a42f85

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    f86d897859ec9eaabcd83960848aeef7

    SHA1

    09310cdf26e63034abaedf4a4c7edf6917ee435e

    SHA256

    b3595318df65e7c44aafb4b82031d6e4a026b66e02015acfc0dc435525868a48

    SHA512

    6379d2eb2e264f103c26e3f13845dc062e54071e2c2cb0d0a26ae9e0ec5b4e9425e2be609afadb68861b435fe96a28b35db73a69c9e2cbd2fd0a6913c86a9349

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    f73b9c2e455b4b98cc001b555d294e16

    SHA1

    f9d06b9252106bf9ae5dcb7c6d469105dffc2c95

    SHA256

    799d6dc32ef86456101e7399e6a90ecd3d1026f747e538be1bbba48f4fec690e

    SHA512

    989f4a7460e845ed046c07233c1e65f97365751eb1cbe2cdfae5cdd9f1ec74d73667b5067c162ae30a3197effa05af50deb5eae94c14e4fa10255523192f4c03

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    1d9098002bf2854dc7c7afb8b0b49a12

    SHA1

    6c050744bb3a955c9fd4529c53dafaff17fb448a

    SHA256

    24e4d0c7efcbcdd4e096c895631d36b8cef932921dc8956a58a1524cec9a8a6f

    SHA512

    aee032438cc3e3b878fffeb6c15f35ffc2df345bfdbe559dc55ae15457d7d60aa42c4f34a4e05b5a1badba0323944d00af8e374dddc233b063d11d1a675a50d7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    828aa5a59d054cd07f2b2d4aac23afc3

    SHA1

    e300ff9279339d6441578d3eb2851d5c14d021c8

    SHA256

    f39a3c2a17c6864c28102e53691526678be3a73f32f3ed69a22664caf3a07e19

    SHA512

    076142c3e500b4b0d77eaf88c68ed19c662a591028d6a8770b77b028e7142a1d9d511a3ec8371d0ecde6fe0f432cbd8597c7918f4334fdf81b2bccdd75d44890

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    67a08b48ba0b13c420cba432c0529dc0

    SHA1

    4f2d653c66674f547d4ad8c34dcf32807913834a

    SHA256

    06e88a977c92c166bdffb1269046153b66b0f961db1aed35c0df980162738989

    SHA512

    93a30aa885b26dfdb1be664f3c5ef563c855f4393b1d4cbaf887e643762f8a49f1dedf9ea38a70adaa17dcb1f09775224308d09b0f42d86247dd9b9c65c26042

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    d6335c4d6f02948fe9e2df40c6318763

    SHA1

    94691de7b795390d2a3f40cc08c191bd7da26a57

    SHA256

    f0806bfdc9c9506e91108deb1dbc420352a26ffaba826986ffc236e5731ccfbf

    SHA512

    06272c9a976df42cfcbf8193688b4768a701d70e67761e1050626f4b25462c0bf4be6d7780070e610d939d963692ffc0d7184de0a85a0205531d3d1ff8e41067

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    ae455d2ded87f34495419003e98487d3

    SHA1

    871e66888ef43c3379fe71d967f8ed4fe15ddf11

    SHA256

    9a7cac50a988870b122f9730edbc586a8c04eeae90cb81b28898805e80849df8

    SHA512

    5fb6a2e6f7d9cb3bb338888a645a88402c3686ebb91907d0d95b756cf859b50949df887f2d3e52235d68a3a2306c19f26928c44307582322c1b6423d7ae6d86e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    59964ae4d78d166e09fa4c763c28e159

    SHA1

    6978832b6bc7c77a176f343f248f04f04e51dd9c

    SHA256

    dc58d943085020bdb73471339c7e7156a4769eeac43d99ba69861a74c8695c47

    SHA512

    9cf7362e4dc6787c4ea1e009e176cb67e2df8d0f0166d3cb3b60afed5752b9b3ca18f6d54780d1cd37bdddeb54425673d82cdf3b33d5137d1ea594f764010cf5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    66a64b9bb4d3b9f84c5048c6eca20867

    SHA1

    eee11ae3d9b2a26eebd5de53809a370365d3a799

    SHA256

    f9f71f797c9455d2ed47313f2847ed9d79d937c689c97d7e17afbec90b875703

    SHA512

    bf3d8234d4be266c57855889c2e9212a9ee30f3fd47745a322f6589a372afa55690b7c73da3ab7b13a8bf1b78a1f2d49d4da199149e785176b24816a5bb8885b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    52d64d5d8982b9762294530bbd6a7aa6

    SHA1

    92fbe7e2400d8b3c7a36b940b26f2f870421bc9e

    SHA256

    f96895c3700eff33b81120e34e62ae76ae52a9bfb0ff985acad771610836d2bb

    SHA512

    dc20d3a2ff55244f2a8e4c18c8b4521f9c3166133c57d4e291ea8a3044f8429e66f693b6792b22614d89bc1216e1df178f87ac1671f0126e2c9a01b1c1e9aa3d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    d61fc35a11e1104918700cda5af4323b

    SHA1

    2a9e9e01e49ad293eada53f3b460edd380590269

    SHA256

    2c46bcbb868f8f75b9df7ad5c72317a22354036a43fdda3a03a6fefd4ad73030

    SHA512

    74dcb26d058d15236aa36c2d7c2c8df5a691c8ca25cf1a993e07f13c210b5c9aba3b3caf4d2bbbbfa1410915cf2f79162212ef7b177dc187a81535b5fb375597

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    6b6e5fe800363d88df342e55ed441258

    SHA1

    b1b619dda347fcfe26789b18f73b7f65d80499c5

    SHA256

    c7dbc74841e7988bbb018c0e59d7370b107ed28985d19dcdb08474794a17c561

    SHA512

    14180bdd0dfaacb7e03280b253d57f48488625f98c2432d35f687eab4989eb217ebb23fb1f0c7e6b7e72e675b706dfdf4b16f31e92df845a3f4cc9f82ff6b08d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    1f8fa257e1c2734121251bc36c898154

    SHA1

    1d794bd926d06b88bbbd9422e300f72fff894b5d

    SHA256

    467c584cfdab904acbe3081b674f748af91c4da0223954a76f73b2cd9e9d4dcd

    SHA512

    35bda6d7fb78135c693939a7d3a56f4be4f167289b15e0878c38d2707a4389585fc60a510eabadcfab654d511b852988af2fc9a942ff86e7da7f39cb2f3b3f87

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    b5cd6be93fb4f1411c738908f4c2d821

    SHA1

    cca1ec12595b2519aeeb95d2d32ddc854372fc2c

    SHA256

    b0f3cd6d37dd440d15e48b03a8f24ee95ac5bd2fd708b1b17f7fd4147199951a

    SHA512

    b3c4d13bbf4b514046a15aaca6848868af30a17a76c0c0bdd6343232ab240fc1a702cfb7432c11032343f0caeeae16766158bc8a86a57ceadbe1f79736b46a05

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    843068d21a4101e5082daa1e02e26b09

    SHA1

    38b3518dacc91c883829be968fdd68636ab5fc3b

    SHA256

    a3cf962bd143d271e8c4c9113c7808bdec64ca5b95141960a99af56d1599bec9

    SHA512

    a881ee78986f34c728e6f6dc781f011ad2d48f1e1fa42066876331cef3b6753d4fd72cbb1665c9d236c940fa65706fb96a3f6cdf7d3a12e85ddff1fd4813d7da

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    880998a05435a60c471d5a98762f353a

    SHA1

    69aa7fc5ec509f219c0a23ff9ddf346647a8ecf5

    SHA256

    ba5df5f9112d52230f6c101a257e85ccdbcbec350a361a0b51c51ae060c45ff1

    SHA512

    80cbc22e2259f3998e4278d26cdf69eb6aac87c732d00e9a8fb4f8a3d1d27b3e147f99e07adbeef0d27199a311dafdf880c24224813e0cffa3e5cd61ebcd9583

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    7794b804594bf023fb1fae73635467b4

    SHA1

    81f95fca2fd70ae54428a3eef31c4d4dc9335bcf

    SHA256

    b6469dd17906280f4313cbba78104b385b441c497a61a9c0c54457b1ba22ebd0

    SHA512

    37bbf9cf81f7cddd82f0db343104b83d30c26cf2cc60c4ce01b1faa035c2954bc2ff539845e5b8cce729ec579228e0ab49f25a74239662c6fa30601a4c592ecb

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab7CE.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar840.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit