Overview

overview

3

Static

static

1

25dc2e2a83...8.html

windows7-x64

3

25dc2e2a83...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    120s
  • max time network
    130s
  • platform
    windows7_x64
  • resource
    win7-20240903-en
  • resource tags

    arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
  • submitted
    08/10/2024, 21:42

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    25dc2e2a835c373dc354f5b69a833a07_JaffaCakes118.html

  • Size

    53KB

  • MD5

    25dc2e2a835c373dc354f5b69a833a07

  • SHA1

    3deead12e1e9c2466d08a4a9066099506a5baf63

  • SHA256

    70623aabeaf03c02d232f4008e10c8a806009018207588523a93e8d2a51ca370

  • SHA512

    6927092fdedcc58355893f01d08cc8f4d4301b4d39767693795941e62dc3e014c65460b859e494c164460c835561a4a9bc23e377e4b87fcf25bba2ed7d48cc52

  • SSDEEP

    1536:9kgUiIakTqGivi+PyUHrunlYY63Nj+q5VyvR0w2AzTICbbQoF/t9M/dNwIUTDmDV:9kgUiIakTqGivi+PyUHrunlYY63Nj+qt

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\25dc2e2a835c373dc354f5b69a833a07_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2556
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2556 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2400

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    90a5492207fcedb82cb017d703a3347b

    SHA1

    a8c690220a59db940d5a246086c23d6a12d44350

    SHA256

    6dbb8b55d9e6e73b1dae54c063ed018c5951b5409728b0b4c5d080ef25a3d994

    SHA512

    7973d5936203a693d3ba3840339028a0572914abc03561edfc7aa79af5ae06a48044fb011ca3956d9694b2f592dd3d8770ae560d4c437f6483a75114d03f513b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    0042610e3958b1bc59241b7fd61ef5f8

    SHA1

    77ce4a39193195f51b59f3a493d75147ac8208dd

    SHA256

    b875487c4f6482867f41bd78c339d5445e732d1473566125fc4ea6226420248c

    SHA512

    bf68fe352273a278fba0a3e7241e39736d589c1edb891e77dca2c2abbab64163e2f2b731cce9f617ccbdd9b0a99d9f8105e0732f3997e5ab70581164c553be6f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    d7c48945b7c97bd42688d1a7843cc5ab

    SHA1

    ed4f08ca4f79b746954fab05086dadcabb4de5c4

    SHA256

    105f3568236b54dad55afd2f9f1c9c1fbacb2016d0b164933aaa4065e1994e12

    SHA512

    29704d13290b2996559ed86e267f9442305469f6c30538f5ff93db561c7821aee5c20aaf4b02889cbeccc5d3b2ff96d86dbdca15f7ea53246efb7557f9a7657a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    07db9533580d130ce08e053346e36cf6

    SHA1

    4e504a9d6304d1f71e3a498291219ec386d88fc7

    SHA256

    6e8d56f35e4deb5b2a2335e2155961e1a4065263f8d6ee927838ec50a4ebdd91

    SHA512

    4dd4181b23a8b606f46e93ae8db6c451f9e2a6dbd3fae20e64d0946e9c032896474c48942a58b07990e72c2c1d93259ec8ab70cb86b3440db62b2b33836faf9a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    839c38f05de94603c7d20c2c6de3e332

    SHA1

    49cb6ea5b2fe9cda63114f8508541845eafc9d04

    SHA256

    36cfed456e449f15342b8de2fb2769c9bd514c49b7aed94bac6591d8ac1f7aa7

    SHA512

    a7dcd017f1362adf8e099327b1bceb8f2b8efe5f7f16fb77b2b4bcc32e41050bcf7db5580283e7042e8e91d1608a61eabb4aed7833752a1693bd9a1c82b749df

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    a3b7f889a20a288a7a5f972087a9b41d

    SHA1

    3cb2ccdc618b96394dbe85fee3352c65d8715820

    SHA256

    2b998dc36b52b5cd02379bd10f2b4d3990778b5139f62d3a0c1b0ac86f884654

    SHA512

    734fde193954322ad640dd9b4e3fcb146c55e256ed590fb8af476fcbf4c162d3e201b409d81557fce09cdfb9725221ee9eef2a97506d954cb7ed43568f453394

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    13840a2af3f95eb65599ea7430a9ca6f

    SHA1

    0e7f3caf3f9c2ad0edaa43e10892d70d1536e4b9

    SHA256

    be57208c879cf2d63d67950466ffd5aa864f180c7b0d442918d184d2f0f01aa9

    SHA512

    7836af9430fb9db8611b583e1bf937129c0bc2d2cd98078122b1c22c5feccf1c10c94000124dd6179c1288a9d0e52111dd6c547c9706cf46e5e0e85b77c2096b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    749d0b0dff4e7bd00ea3abf16782d8e9

    SHA1

    fdd60f63939ff8310cb0ce04dca1f550fc4b1a16

    SHA256

    7095ffeeb342716d9fd289315ef6e15dba45ea5314bcf59caaa49ba479033b31

    SHA512

    ecc7a16a549a68518ed684e404021f0ba5ebe48964a78d3f3b74f5a867e5e209de043fdfd90f9355ddcd35ffdfe04bbaa503dab978e31aa4c9a81b43fbbad662

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    b103927f30af74f214ab75f4b0ebdb53

    SHA1

    f0d9047eddc917f17722b8e56a37c95b81af34a0

    SHA256

    579f11fa0c0117c9d39a062a800bac7476885a3fb97046bf25cc037c01e5f335

    SHA512

    9366367f21cccba446f831b4b793906c5c194e906e71738747734dc6e7f7a0466ad78fa1025caf92a4c39fd9c8dd7d5b2ef4a14920ff7f76066feb38432216a9

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    1ea443e53bc4a96be58fee1e38578d98

    SHA1

    e5e4d2ad91c382b9c542d57e4e8d5562e2748de6

    SHA256

    1288e701b164c11113a56acef8fe59946ddeb4bcb305f7adf569d997c83f582b

    SHA512

    cd8046649c360f55a573c58d98009e87807bff809f65149f27611573cf21b6e4cd038f68bee63c217c04f1c8b6d647befab1a62ba8baed5267d9a26464179991

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    bd943f02891bea91d245fc68f26bb998

    SHA1

    4b40c234df7199c9f31d3d84b7bc890bd5898c0b

    SHA256

    dd1ce2f1ad675315467878dd39bc893abaea08385bc741ad70961eb1baff8976

    SHA512

    4483acaffafb0007de6996e5ca0cfe5f73e2f65b4e0095cda06cadb87dde466c18e6e8e9d2a9fc567aeb1b385626098d2ea4124c1fab8c713590594d3f87c2bf

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    26b4e612dc0d84361ef5c7529628326f

    SHA1

    467be0722b12f7c704c41bed1920005ef60a93c4

    SHA256

    720e9636a4f5a139eb02be8025dbff2ee5b16b60a3c18bf21dae9f8996f3f07c

    SHA512

    ff32a43be03d88bb0b00fee157f01c5c499ed57c2255a12cff512fdda8aad74170b60387557115df4b83545a472eae1cfecf8a8ae3053211b97855ad2af164b9

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    f67910bd61c301ce7de5bb1917780ac8

    SHA1

    a8245c1da207791f2436e3b19fe6336b3a91ab73

    SHA256

    4268fcabf609d55de6db7f0264b5e5444253c27463b8f2eb93032968cd685311

    SHA512

    23813feb51b93d2cb94e0c541f1ee34b4c33ccc2cf4d5309bab8e0dddd5a5eca0b569e566572fdcbf8e70831b966f784d13b76ae7e9399229c55812800528a94

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    003e4a64dcf08f7d26a6e47544cfca6a

    SHA1

    5957b878f713871ca47cbc8c631479b04eef7fe2

    SHA256

    c6ed7c5027cfc6a6943b8824f2dca1103721c794881706d291caeaa3a4d2760c

    SHA512

    e8f2d63179ad10fd07371209ea6aa6d8b7b09dbe8fa6bef608f139c546f9ee50ec1d5c3adc1099da8813d19aff02a7adfdd8206aa48671d802946146f37d7d3e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    a4b492e7a4e823d3cbd572043f202375

    SHA1

    c15b52ba34d81ac0af9b275f6a2858bfe323d92d

    SHA256

    7b1e36508b900fb89f51021d52abdca6862057855040e800fbba1957891e4bc0

    SHA512

    3fdd48fc3af28480baf12ec5f5c368a7103222ad331b50cb536b9a7bcac7b03b5aeff1a8c4a59bc143d2108efb6b1a80e9581688aad37169d7e2b9fa9d14998e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    b6a011ac37ba38882e4fcecbad7143b1

    SHA1

    c7215080b14dfa01dc82cbba1b959bd4f8f630f0

    SHA256

    538dc2faf3682263e337f4a4a5203cc45a92ae7ef6a71cf00fa1b6f8da15b3c6

    SHA512

    382e5d5f6a2ac77ba72fb58b1a1bf9ddfbbed51ff2fa51131b54e6bb4cf7c3558c52a04a85d8e4a77f3d87dc689dff7ef26f922bb8a159cd393210b67b3664e8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    5690d2025db33016e27f86d3f30a49b9

    SHA1

    8e21e575555af6410c10d6f9364b3dbdef33224b

    SHA256

    7da86d82f0b01e1afb9daa961abb45282f94e02dfef9192bb89ef73ad95dac6b

    SHA512

    a99d569d84cb213eebcf1008133b010bab33118c75a9a2199a2d55fdbbc9bdba1d68592db33804dd776ed67cbfa50b744f18918979e7350f85aa904011dc82ff

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    99646dcb0af0cc1c0c126b3af4c1a829

    SHA1

    cd5648a80384b844d81fefe7de589de945e6f62d

    SHA256

    e9df7d6d7d6b6503b87fcdfce0ce5f9cee5f6f84de8143fe960d182614b485b9

    SHA512

    60249d94ed808e3d0a42513ece119c4b3081047940eee5663f87ddd4ef1047c530de661b0389f0bc4199699295c4bbd20cd813a2cacec5f2d71e4c84603f3fac

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    1c4ae6d3a5179de9f06bbd8fc8fe8793

    SHA1

    744596350f1181a62133c92abd3b3a663bd23e0b

    SHA256

    e876a88cdd2b6e7c3cbb3f16e9fe345015478b3cfea912f12902c65e7b00d0a0

    SHA512

    08fb44bc492ab197f51672bf97ac8f31eeb7953ed601a66c6af47838630c50433bd67d19243ca82bbade70e86a7736856b9b9133500dde24825648d5276cd14a

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\DJB1KT77\script[1].htm
    Filesize

    706B

    MD5

    67f3a5933c17b3ab044826d3927d0ba9

    SHA1

    5957076d09bacaa6db8ddc832b4fd87ed8f05f8a

    SHA256

    97e800f4836b7030dd58fe6296294b7ff5ef1b5eb0e88353f230ea1608d2bb64

    SHA512

    03ba224055ffdbf32b7eea30c764dc18d66cc6d8707dc5fafab74e155b0bb3d4d691c5788b033a68f05299547297125122778fa7e3252f93e7343d918936643e

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabD75E.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarD7FD.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit