Overview

overview

3

Static

static

1

25d814ad94...8.html

windows7-x64

3

25d814ad94...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    143s
  • max time network
    121s
  • platform
    windows7_x64
  • resource
    win7-20240903-en
  • resource tags

    arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
  • submitted
    08-10-2024 21:40

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    25d814ad947529710536f57a653dc20d_JaffaCakes118.html

  • Size

    139KB

  • MD5

    25d814ad947529710536f57a653dc20d

  • SHA1

    fc32c41464b88985b737a5de9f7213ee74688574

  • SHA256

    dacfb4484be1dffef134170f3b2437f632642dc4f138060ec54dcf8bbdd9718e

  • SHA512

    e71ca2393a6df49cf5693025d87c3fb16dfcf516b50506061faf84b2e57b2be66656cae0295b1a38865ee43dff3ce961ff5f0ece8a55f256fec31a9d7a3c72e7

  • SSDEEP

    1536:SeNKSJVKeIcTaUiPlElyLi+rffMxqNisaQx4V5roEIfGJZN8qbV76EX1UP09weXu:SeLiylyfkMY+BES09JXAnyrZalI+YQ

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 41 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\25d814ad947529710536f57a653dc20d_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2384
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2384 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2908

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    128cf7a5ec2d61508a5d0dfc9e09de4e

    SHA1

    26664f82771c0edceda64ebc9a7eeffef849a336

    SHA256

    e0a2e0ffebbf120f5ff73e9759838c18cdc9bd5c0312284f7c9f73cea2ccc1f5

    SHA512

    49c8b255cda9e2cdc783840ecb7476cdd8f9d1e43fc4129e1c79b97ac4341edc48332a749d587a81fd03ab4db9ea21a04fb7086672086744d9c7e79f9a544a93

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    fd02537b652886233c538b94391ffeb9

    SHA1

    99b275a792f6e36c9ef537d747452f9abd49b8f7

    SHA256

    e83674a37c4874ac8bf29896c96f34e86ce6183604b015e645373c0d80b3885d

    SHA512

    3feb3a270bef2f9166afcc4409669de93775a39f1f159d857c47b069ccbe3f4aacc44afbf9e38dd9e1bc7068e2347348bb223ca51097a8ac12f4c661dca18eeb

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    0e3295793646616a264f179b9a6f8838

    SHA1

    710ee87449b851410484c99038d118cfa27638d6

    SHA256

    eb07c3e945be75633060160a778dff84249c99cb732bb62f1c43ae3cdf7b698e

    SHA512

    363cda9facb42e85242eb75ae36b086e10709f3ef6b1749b4b2b2e0393d9f313c56cd92d65997f5b6faae768eec6ff71430e4dd36ea81d38697207ddceb16e6a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    977e1f84640182eab44dc48946ed725f

    SHA1

    33deed11af67a37591beebf2e0f976d44b6d8dbe

    SHA256

    4435def5e0ea026241f083b227310ee639132186837a1b0089d864301e124a1d

    SHA512

    93134126cc2c8d21703c2199d7a282216654520097a21813aaa0de7bbca7080cbee850861fb9bfa37d0626d5b214473285aee87e2d4d358d6faaa3149b2e93db

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    5732eb629b70446791d64e43a5086ff5

    SHA1

    45b1365db58fa0d65a0dedd3a64efd3d06e49f58

    SHA256

    87b8a69644949fff9790a69f1c2fc8d93efc3e1c1bbb17cf3df464462b791182

    SHA512

    19c4ed3409ab9117794f447f5bb70cacccf070704dca984feccdbc79f104f402a40ed5092dc62317649f41307fae822c980afb8f484f39825b9d107313681e9a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    111a2d391609ae6f7d4cfbcd9e69a527

    SHA1

    2e311da1395f819356a6deb8b1148e3df1a602b1

    SHA256

    2eb59fabc3b15c6eae6ea8ea9298e1f6e149305052fd7e645f74512bd447bfe1

    SHA512

    cd8fd54d8a5da6e341a7c334a6a0f2c21152afd8f1011f56b73765f7196022700e3b8dcd38c5e189b25d2839130d47c8b0f5c3bed4c4c851884467b7b608a243

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    3ad56862e2cda89d8f7233334c0bc3d5

    SHA1

    4e6862e2283a12c042aee1c68767ac9cce46e5de

    SHA256

    9aaea3cc0e872cc8e025474f87517d7b0dc1c453d31f7768e4e75614f7828e1b

    SHA512

    520823c98eb3384f1db76e137098191c8a90888671753f9fb5d869d53ee548dc125d29dbed2023bfd0b5e8098275ce32555a8ba6df5f78d0f18c81a06c9c5377

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    aa01f259dba80c28a67a4fa2c0ba66cd

    SHA1

    2068bbadc77d9e666d0df1e58c86f2160ae321bd

    SHA256

    9bb2e0b94505d6a51434ebe5a537a7b7c97de55cfb2e06b79f1b28c03fad8255

    SHA512

    8020a6aa8e9907fa895655bd143464eee9c3d303af5ec3003258eace98d66978113aa695e7c6e80d65b2e6dab510a06889b0398c833b36bb8aff06f72ddc5f34

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    4f6d7a2bd6bb906ee96c430862d74363

    SHA1

    0f81d9fb82fc45091991b6c8f7f0a2f04267f93f

    SHA256

    2b4b459ea329fd30b66aac2183cf5515b9338683f10831c54992972d6f45f846

    SHA512

    ea333756661a9c67da48de54115803a09b00468da8d1902f4420d441b61a74342d291dc0d25ff24c5e0f108b543c42c63e8c395f8d26c8af20f5364e75384ead

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    634cab67079b3e6d9e901fb847e66813

    SHA1

    fb96dd84e09fff4e5c6bf577494ee5a3870bd49d

    SHA256

    da983a2437182c32297d157af4f8276ff7a23cce16b297c714ad8d38470250e9

    SHA512

    7d3552fc3f62c75628a226e63a3f0d9989f75408a505edffcea7e44a0abdbe70c2c35092dac318e5c2387fb2b5abb112d903727d560715be017cd5c56c41ebbf

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    d285676e4e435cd451c41bf1f7b2e189

    SHA1

    64b0d045bd8c8d1cd243441aa1a578972a6c2706

    SHA256

    80ba3161fd8a25add87c788af24ba21689e9897ca1cfb94feec78078d4418d07

    SHA512

    676ff95b7e1ae1aa5be43fa96653a4ff20aabd16ad6c8da34f558a8a9b6e73b90cb3a2f078b85b89dee4d0fdcb58d61ada2dafb01c775d36933a4eb1aeb7c1e7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    627fb2ac82f7acbe27c358e538a6d161

    SHA1

    0c2b491981eb8a5c0bac83274730321a58c463b5

    SHA256

    3f4758065e402e889f096eb9d292f348d60d0f5c62179063803821767f31c92e

    SHA512

    fcbebe7b74534f0dc4b303bf4dcba08acc8523eb34789332191119de160562eb7109cdb08217d5923fe3d0ead01ef5c4b3c71787d6f145e8ae217dfae9d1843a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    b26e4de033e69e085c3242dd15d268e7

    SHA1

    b51b33ea3bae4094d3ad7bcf24053613982fdf1c

    SHA256

    a20784ff7cb856fc7b2c2d62d9ae1626f47ca185653ce38ca01a09146144c891

    SHA512

    412695f12d481f73ffb0cbd39a150dda9e5c1a7a02af30a583ffd82fd17629253b32c0c146de6237de905d24498238cfa78b70b889412ce0f90dec3c0968e26a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    6028008bb5b2a0ab636995c4a3ade9d6

    SHA1

    7058e62d2e671d534f337a5cdfe80baa987cd97e

    SHA256

    0b74e3a3f2b59d5fdf4ef9def8e7f9ab800a4d26ba2d40b28c52f0b49f572fd7

    SHA512

    8c225c2b691d27e2354148564cd69d3951b4ff9dd78ae581be4b16dc7a09fd13e73452d30d61ca9cc72177d6429f666ce77601c432eca83e12f976f7f67e6c60

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    482aea03edadd341c47b2e594b421c8e

    SHA1

    3e2e17149f0637a741ddd4e10f32d9dd482486be

    SHA256

    92c1a9e0a0d4d97aa89ff5131c0a608995471882d4a34ca63fb9077a08aedfc8

    SHA512

    baf2c43087b4fe981dcb966e0a6f755eacda95282bbaf8cf45b2b16a00a5d664a469c27d12bc06285faa669ea940dd4243703bc8a0ed427a302034685350e8fe

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    4efb005aeb9b1aff290ee6f33566dce7

    SHA1

    06c71d1c2ba1ce8a817a3b86412f2c43114bc858

    SHA256

    4e6921fb6844f33d377d5949fb85e3f6e90ed95cbc8bdbf789cc44c2fafd7751

    SHA512

    c6b386202eeb09132c5ddd405070b10436aef7d1f8e5346db0391c92d73c1477fe2e378f2395d6f4e69446caeaeeb0b8f80caccd6a2afd78b12b40d9be4d2994

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    249a6fdf7f868f604dd1d95d2a8fd8ac

    SHA1

    39653ba06aed6327e94a4431e0fec5d902ed2702

    SHA256

    64c8eb280d321d48badbbb61d2a01151bd92a04b9c31affb29b4a204852d4d66

    SHA512

    e79b5e9afe5bad48394d5da0fc07dcad350ef4768ca1b7340a8a8722c53b857158386fd0152170d172440fa2d818a0b564df9b95bb1225f6560afa3f876fc505

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    d648075863d279c8da1154fb2c815c67

    SHA1

    7a0f8b41f9b5abaa9230dbd748efe76004c8965a

    SHA256

    40c223683a947353f53bf7e3e8250340718b067831b6e2029e3f96db189c5903

    SHA512

    2828ee343c38474ecf76280d6bd5fee7e5023635af00694f59e75235720c078b6c712ce92c90f4ce8404dd6ccb3b1c6cadc3fe89032fdc7762cf67c052a89c67

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabDA3A.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarDACA.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit