Overview

overview

3

Static

static

1

17f7a78813...8.html

windows7-x64

3

17f7a78813...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    147s
  • max time network
    154s
  • platform
    windows7_x64
  • resource
    win7-20240903-en
  • resource tags

    arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
  • submitted
    06/10/2024, 11:51

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    17f7a788132052a54ee41137cc16c244_JaffaCakes118.html

  • Size

    110KB

  • MD5

    17f7a788132052a54ee41137cc16c244

  • SHA1

    e13898ba83d5d7d4f3b4f69e84df36e26effdcaa

  • SHA256

    56ac06f8902933d040bd1c801988c11f53d9aa7ab131233efabe45c1651e1bfd

  • SHA512

    c1f9d60d38d13ba4f42da872a683ba2a8d92ae21dc0e9cfad6edaada81ead1e48101053aa66494770195e4cebaa4e14ef1df54dc8f77829d7faa4fc3a863f937

  • SSDEEP

    3072:GTkclmV8gr1GJpS6gZTj44y0LsfTkBHQ8uttIzk:kkclnPkk

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 34 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\17f7a788132052a54ee41137cc16c244_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:396
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:396 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2732

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\3C428B1A3E5F57D887EC4B864FAC5DCC
          Filesize

          914B

          MD5

          e4a68ac854ac5242460afd72481b2a44

          SHA1

          df3c24f9bfd666761b268073fe06d1cc8d4f82a4

          SHA256

          cb3ccbb76031e5e0138f8dd39a23f9de47ffc35e43c1144cea27d46a5ab1cb5f

          SHA512

          5622207e1ba285f172756f6019af92ac808ed63286e24dfecc1e79873fb5d140f1ceb7133f2476e89a5f75f711f9813a9fbb8fd5287f64adfdcc53b864f9bdc5

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\F0ACCF77CDCBFF39F6191887F6D2D357
          Filesize

          1KB

          MD5

          a266bb7dcc38a562631361bbf61dd11b

          SHA1

          3b1efd3a66ea28b16697394703a72ca340a05bd5

          SHA256

          df545bf919a2439c36983b54cdfc903dfa4f37d3996d8d84b4c31eec6f3c163e

          SHA512

          0da8ef4f8f6ed3d16d2bc8eb816b9e6e1345dfe2d91160196c47e6149a1d6aedaafadcefd66acdea7f72dcf0832770192ceac15b0c559c4ccc2c0e5581d5aefc

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\3C428B1A3E5F57D887EC4B864FAC5DCC
          Filesize

          252B

          MD5

          41624b29f801bac230c5f441ac0f9619

          SHA1

          787c4e4345defad16f3a14bdf21069748dca7b6d

          SHA256

          742f6986de713d1a6f8ed67b67ef614cbe8aceddca0a7949a05dc0146f589d80

          SHA512

          516828531dcd5d9ef5aec5d069fa6d963159b2a3a64c85b5ed4c86674856824e88577f2cbafeadf65ba44f1d6a157cd8b802d357e4bc17d072a27a5351d033c0

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          f96d0b9d9abe03c8eb9ab6c80646f1f3

          SHA1

          c69e7f9874657166e30234a7ba1827f3d0a5ef2e

          SHA256

          9a41b01bdc32deed4c72e1f5e1e6f45a775671fafb75e841163e093cd9f205fc

          SHA512

          56170fd4c1f7352a8ed4c28b359c1b8ec11f352845517188557cdcaedea5735baed2960a01c46de23c885694729761fd951290ef690b4983dd0688bf3f17dc46

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          cdd30f44d780235aa156e781a0f86c11

          SHA1

          c74d4e0f983e2521a2fc29aff53874917da29449

          SHA256

          5c023e52ec2a6ec52fe4b38912e75caf8719c2b545a094c6efa0ce8ac82fa03c

          SHA512

          b61db9cbc05c3952a3af496c9a51a851acc77c4f3cf51732286f4c32ba28243be348e2f729e1423be7ed406beec53bccc3fafb727b087967351e381c98d51810

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          e756f45a8377dc1782743c6b131fba7f

          SHA1

          3e76c73879c1bde5ddb2f61834d7b049e021f4c2

          SHA256

          bd07844ca5d0101291ae6ab9c0c482a13ec281a1609cf1726f33a846d343d0d7

          SHA512

          dd0b22e5d708f66b7f8d3a609fb756ba167c0252cdbe9f00217e6554f6f084933ea70369ab0e8b5e8ac766b1fbf0bb55a50dc53da43b846c86567cda35f4502e

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          cdae8fc7a6962196a5d3eafcf31e346e

          SHA1

          79d1b7edcad46d8ac33ecb29a749758ade6f5960

          SHA256

          1ea04028d92a45cd65d4f6e89c476cc84c0824b709c838a7576e4c47d3eb7a5d

          SHA512

          3b6ab65ec79ba729a06c5ba75bfd17c9a220e42bd6648f3f8ba86f6f92af915c12ee1d6ae8f592161123d9f1301cfd7acb2fdb8c13337cd71f85f3261a3c452b

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          bcbad35349654e71985a13bfd58a7b77

          SHA1

          f5256bac84ebfb20c3aa618cc28b398913e297d6

          SHA256

          45147b49d1062ab2acb4e8683eb0d117830b32994703369b0972305c922956c6

          SHA512

          c8393c021e21335ea53ea2e0eeb3b45f558d9d9e985373311a3ba2746cd1167cc302faba81d191d4c8dfa902536acae4aaa79094e3df42f90e4cbba2412d14cd

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          c021611653e7e9a8696cebd170769c8e

          SHA1

          b42c8cb2f7c3db748c68f783e6811e55cf98e077

          SHA256

          fb6fce9b7fd54d715b92d343bd0bda7e4d8e340034e9840563209a5fc373c717

          SHA512

          78f3d2043211ac4d701ffd63fe78df769a3e70219971100e2999513743af20806b55bf8b427d10fbcc0ea892cb855ba7c55e09b400e7385e396c782d454ab60d

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          49d9af5093e12512ac5979bd01a67ea8

          SHA1

          0d82b1bf55a58db265fcc2b4f182c8ce37f68d30

          SHA256

          b39d374821283af4025c3de54579ade4fabd8dbf76508a78e85a0c7a87f6f016

          SHA512

          d9b8e377c0d9fe50d875912da705654662a017856beccd2a94ea03fce12a7387695c04e2499c76d1554bbfb9e5aedeca446665ddd7d731e0224a125eab4acbff

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          b27de9cc5ee78462f514e5a685a2b04a

          SHA1

          d0752b134574daa8b7ed5de866b2dee970637b9c

          SHA256

          d5bee67a2ff96becfd6a3696696d31fa3d8e6ecc34ee7d4d1cb74e2af716ea5d

          SHA512

          3853438fdde3580b2b5717a46615a1a8084b136bca9248ece5c1ea5562a5b69db8a3ce5e9804d58b847497bdb696399bb8e5ceac72846fa8bebef62ff661b081

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          4a9eb8f23ea6e6255210b78335de0ae6

          SHA1

          5721186005e54677b1d7d4cd382947a8dc3fa51a

          SHA256

          fbe5c4dc86c15b0ee67cf9cbe8e6628328439c33a7940d6ab43665e367a8869f

          SHA512

          6125a87b1b821ba09018112a74d1349ff3b1c7ccd159b38cb5e2ae043f536f4769e358bd5bb3bacd018872c9736c904a1cb10e51579cbbe0e0d6bc4c58e80052

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          851fb7f1732086a33810bcd9264f664c

          SHA1

          28657a1b52334624f13ed1e9c9191af4920f482a

          SHA256

          ab501ad47842fba468d20fac0ef4ac4e25704453aedfd4a48b4ea32a1e1ce91e

          SHA512

          bbb9d381d3bde9f86a718c0d93648e7b0c7ed6a0be307010980b079a680c480aed3f76d7935fa215e597902e5f6d52928e843a38282d186e03e4e134613de41d

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          00c54400009bd6775057ac53480d38c8

          SHA1

          5aa95f20f2fd8c70649e90ee7134e739f855e0f3

          SHA256

          90209f53781e1980bdf9adce35086bf33b58d9ff5e153634a049f9bd39b2c52a

          SHA512

          f94380b3b611b15dc052c2ec128bedb25377546a5c2c882b5a39d4c4a4fa6981cfb7eddaef4ccc19a31c1bf3b82e95e73398e4340e849744bc3c0d0f6e539e71

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          94028e16142360ba0d4567485d317c16

          SHA1

          47da19f11d86df58c100b0cd6bdc3e318540b180

          SHA256

          92b4d3ff8f983d54e448517bd5cfad5e402c2fcb21eb6d57f612a4e736dceb0e

          SHA512

          9db4db998af0e77db57832c3008a5bd9542cef8aedbe63d5671ad7d29b57b2d6210a702cfceb8bca8a040ae17a48a89be7d4094c32447af48e7535dc3c887277

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          ee647d8b35b626abc21b55c15f8d7577

          SHA1

          8a11f71eb3b95126189a9dac57fbed764fe47025

          SHA256

          9fd9a7bd18b362d2c3611ec4eee2dddaa550d21cf86d34a9500e54890fbe07f5

          SHA512

          623c725b056d0698cdf495e413e32b7b9a4ff533dcd126064fe3ac8d9d113fce98fcad73300d1b893a77bbb07981ba18a4580cdf1413c804c06ae2f202f049a0

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          9a84f0ba2f5212010da65f4ccd6fe5ae

          SHA1

          de7550f5faec9907090e241e6d9fb8584e618f1e

          SHA256

          128183830691c08d47bb21eed54700133a40f2ed00b0717b12edac8bdd9d4146

          SHA512

          f628839d7af2820a004f59c79e1a0d0f32104c983b60f82db1be3f9b84b57fb88d70bef370320d8166e3b2d2bdc7f3fe45e27e5348dfd547b29526272e269879

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          cce06a8d5e6d6c0967e8c5d1f6907ff6

          SHA1

          7b9b9faff50582d89b6b3d4ff27a367cd6b6997e

          SHA256

          c2f05e43611b77ced93c58e8053ab21ff98f7a6a957e46f126e5e3603b6f3e80

          SHA512

          8431d9d39a0fa6bf488ecab45098ae78d6e0f90569df136ca39711d541ef4fe38e159c703dc96bc9c600d0bc1a72e824d94b450a6d68d00ce7db4332cebc0b61

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          0c40481920a8a19642134f63cc4306e2

          SHA1

          5421aa19704320c5e9510f0129c0c4878b4d8c6a

          SHA256

          2d41e2ec019c0ff12575f61f22263c340d807413f6716c9d259de2e0ff13ce75

          SHA512

          9a771e01459baac3cc5c2075e8a21fb2be3e38f53b22d2133e26cb473a8ca8971c89ab56fe9d219c856054753f88afc7e8a0a22cd75993beb6c2a36995705393

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          b3c6657d697bbf6243e8e429419134c1

          SHA1

          56640ddcee0fdde0a9df643687fd1101ecc54806

          SHA256

          6ff85a162eecd8d93567e0e65eeff22492fef9e31fd154e51b6b094e35d0ba33

          SHA512

          9dfe0893a97de8a1f11100839df45b59e7d75bb52392bbfc6e1124e6f244b30ec27572ead6264339ba0723772f07f5adcf9158faf3241c910a3f4fc235ba1a65

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          db0547aea18e5505ed886f19bfbafad1

          SHA1

          3670f9421463f3ad1a73c1e755f3f46e966592be

          SHA256

          2c64950e09392ac688d813174ca9f9c9433d6d3477398a9cc2d7d6b9a512473c

          SHA512

          cde7a57c85e2f3844118d4ff387bd4b417edc7ca1313733d7882e81dcc5f986ea1dce3a03a146cd2b101ae1371b256876fdfdfb292989e19608797ffa090308d

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          62189fc23bd6352435c7196f6461c8c3

          SHA1

          d2db37945c8c3c35eda630c8585cc17c6ac1ba80

          SHA256

          6c6b9a07a2dcc9d0ccfefb015b7a902ac6791367d61b25aaf2fdd203dcafbdd6

          SHA512

          4aacc668f79cde4f189ced9c10361fd278cf5f79f6379a730e20a1bab7a3972d81840e409e2645b706813b105577606889f97f9d8f9be3f80becda2aed19a130

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F0ACCF77CDCBFF39F6191887F6D2D357
          Filesize

          242B

          MD5

          368a27679da1cb13697cadd7719d8361

          SHA1

          ed9095093e33e05bb3f070e7b4dc091084b7fc0b

          SHA256

          364f31d2795983c1998e053b244f50a3103b6ac3a797d37871f7042d7f8a3e18

          SHA512

          9113337328f8f4fbdc3a1c80226f546985a1c0124b737e21f85cc662c562ae6fa0ab0b78874c75958458120d51b06dc36cc18847b79be580343192ca3f137717

          Download Submit

        • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\56KJ964X\rpc_shindig_random[1].js
          Filesize

          14KB

          MD5

          e691b2e17de9ec018eca758518bf5dc8

          SHA1

          3238d543acf53b803dfbd260405fa558717daaff

          SHA256

          438d41bec769ff386a2c1555b6bf9105362f67dc3e711c81c6092ee7fbf6ad2e

          SHA512

          5589a5cb408ee8e0fd473de24224ba8fa1453eba5df6e591570810f992160d4f3e8f60f8ba74d9994861759321f5bfe0c4a608636913a8407b5184008457afc8

          Download Submit

        • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\8H7UVK5L\cb=gapi[2].js
          Filesize

          66KB

          MD5

          aa012028297a26c039c37ab25a4bd17a

          SHA1

          25f23d01b5f580c00778e1c010225e5b8c73b66c

          SHA256

          55cd2316edf7159b623e4ec2c9e3a334027c01e2d1cc386f833ebcd35ed87b38

          SHA512

          d346eb082674fc26d562da9a12f36ad2cc7db1f1b35c891a8734284cf1bd052a967137c1281982070688b2bb2e06c7f4967d1c9397311a31a11a8560b9c45fd5

          Download Submit

        • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\NQU8S4LJ\2254111616-postmessagerelay[1].js
          Filesize

          10KB

          MD5

          c264799bac4a96a4cd63eb09f0476a74

          SHA1

          d8a1077bf625dac9611a37bfb4e6c0cd07978f4c

          SHA256

          17dce4003e6a3d958bb8307bffa9c195694881f549943a7bdb2769b082f9326d

          SHA512

          6acd83dfd3db93f1f999d524b8828b64c8c0731567c3c0b8a77c6ddcf03d0e74ee20d23171e6ceac0c9f099dce03f8e5d68e78c374da2c055973f6ac2db4e4f9

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\Cab14BB.tmp
          Filesize

          70KB

          MD5

          49aebf8cbd62d92ac215b2923fb1b9f5

          SHA1

          1723be06719828dda65ad804298d0431f6aff976

          SHA256

          b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

          SHA512

          bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\Tar15E6.tmp
          Filesize

          181KB

          MD5

          4ea6026cf93ec6338144661bf1202cd1

          SHA1

          a1dec9044f750ad887935a01430bf49322fbdcb7

          SHA256

          8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

          SHA512

          6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

          Download Submit