Overview

overview

3

Static

static

1

28b1d19c4f...8.html

windows7-x64

3

28b1d19c4f...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    141s
  • max time network
    143s
  • platform
    windows7_x64
  • resource
    win7-20240903-en
  • resource tags

    arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
  • submitted
    09/10/2024, 01:49

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    28b1d19c4fcdfe009e05f36bcaa416dd_JaffaCakes118.html

  • Size

    139KB

  • MD5

    28b1d19c4fcdfe009e05f36bcaa416dd

  • SHA1

    edb5abbb8182e111aed4a51d7497aa5e2c4ff8e1

  • SHA256

    e63879b9ea7913ec3772587c9d5eb3467177350846f4717a973e316207860d8b

  • SHA512

    d8d38f78fbf157627be46690fc072089e3302521162189a88c21aae97751168aa6ef16cd8d8682d2a76f6cf77f813b33a0e5a607827e931d4834f1ca09f801dd

  • SSDEEP

    1536:S+OvUCWVUN6oCghDCgd4Alyjp2XyLi+rffMxqNisaQx4V5roEIfGJZN8qbV76EXe:S+Oi+r4SyfkMY+BES09JXAnyrZalI+YQ

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 41 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\28b1d19c4fcdfe009e05f36bcaa416dd_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1856
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1856 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:1604

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\3C428B1A3E5F57D887EC4B864FAC5DCC
    Filesize

    914B

    MD5

    e4a68ac854ac5242460afd72481b2a44

    SHA1

    df3c24f9bfd666761b268073fe06d1cc8d4f82a4

    SHA256

    cb3ccbb76031e5e0138f8dd39a23f9de47ffc35e43c1144cea27d46a5ab1cb5f

    SHA512

    5622207e1ba285f172756f6019af92ac808ed63286e24dfecc1e79873fb5d140f1ceb7133f2476e89a5f75f711f9813a9fbb8fd5287f64adfdcc53b864f9bdc5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\F0ACCF77CDCBFF39F6191887F6D2D357
    Filesize

    1KB

    MD5

    a266bb7dcc38a562631361bbf61dd11b

    SHA1

    3b1efd3a66ea28b16697394703a72ca340a05bd5

    SHA256

    df545bf919a2439c36983b54cdfc903dfa4f37d3996d8d84b4c31eec6f3c163e

    SHA512

    0da8ef4f8f6ed3d16d2bc8eb816b9e6e1345dfe2d91160196c47e6149a1d6aedaafadcefd66acdea7f72dcf0832770192ceac15b0c559c4ccc2c0e5581d5aefc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\3C428B1A3E5F57D887EC4B864FAC5DCC
    Filesize

    252B

    MD5

    0a6151946f30198e08756278da51826b

    SHA1

    92a526db2e5769d3605b140e31f46564bb051956

    SHA256

    ee8902c4b3fd409b41d5834bb3bdca2b273745394e8c81223fa43815067cd804

    SHA512

    f2302c12fefdf28bae76fd8e8cc2567d5168318c19fd628b2f3feaae0fa86ad943ccff9b74992f3ddfd26fd9edad93beca4ed975e31d38c71f85f8401f8d072d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    d37a1895c2559e470740dc6170689307

    SHA1

    ac10daae106f4daf713b358989971e2e00e90781

    SHA256

    6418b1ac66855b7111cc4385c1b51ee294baa47bdde64f1d4bf42f1e25dd9253

    SHA512

    e5cc3e6ff218723090ea98c1dd6eeb150f62b400ac4e57e341cb9bb97e7d649b4416f75afc59cab76faa94af6be4eee863be540eae650ac0370135ee985465ee

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    d2e5d250280cc4db0f4425d0eec90165

    SHA1

    995cb7bba5cf889c40ff080decbe7b57d387ad90

    SHA256

    6e79a51620d37beb31cc414a7e7fd9db43c1553e19c87d6b14fcaf326c8a997b

    SHA512

    b2c9c18e0af310c3ffc1f94af25cf0f9ff072ace2d7edf525559d45d7072f3bdce3f4b0a3528f98ca950001b62c77202db4fa2c9cd3daf93f1998c9b78739f21

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    d3fcbad37fa563632761e5ac782b0c57

    SHA1

    02969789d979e21d1abe0b499ca96ef08add6b52

    SHA256

    62f98ae2a708bb6e4a5543c7176f419d6348e6d8bafcdc58bfa5428aee1c5bc6

    SHA512

    a22c07bc0b6d477f57499ce497a20bc2e6babab8352f915b24c9bb835b068b69f745a57a7a86ac495177c0267d87da053f7bcceef6cca33e5b866c89c71e59e9

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    223f00283660c8b753908a0343e37ef5

    SHA1

    ee3ad42e67a6ed7ef65429563fb5ce038c3ee0f0

    SHA256

    16379c8f43373ce87c299ed8297c31e15e2673b727811b8325f2015b70d408db

    SHA512

    77c54d97b5486986858001104a1e25af2e21eef6565135e1d7eaaabc3ba82c89e9e004e82c8c35879b561ea7285ef5465b4c8050d4cf6d4c00324a3ff66d6c17

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    51f3d624ca95862f83c28efcbe07ba40

    SHA1

    ef17c64a7059477bbbb7b2a8f9a0ccd21d3cfc2d

    SHA256

    c862dbd2c6b9e632a30f561d21622b0bba306ba783f29ac38d9dd40de3414a69

    SHA512

    b0abf6d4fdf17cde8242fc57d7ff052096be242cedfafda7f27bd2e6ce8f26a18cba2bb01ee3c32f2a23c80ca71f2dbd22e35555007dffd7749632f426139a57

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    260e0216e88afb16cb32ccdafc51a488

    SHA1

    6ebe024d6bee7e7e9850b30ba6a824758e2cb464

    SHA256

    65d2ee180469782ed4711b69d383e8cfe529628845e0c0f38ddeca31c565242e

    SHA512

    6e5ac99d6a65c30e43b92680da50b7d64ee8e6ed6760e749ba3ab397a964a3f900c6e46e3d199935ec3a9208a99f967b93c461816c5e232690a2b5ee548c0b9b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    5912f3a401dea2fc9c1c7b734818394a

    SHA1

    7dfc41d56411f6ca62c1a7eac356a976ccffbd1a

    SHA256

    ed614674911dab638e4988891a2fd960bd5fc19d9b2d186e6851a1dace2d51c1

    SHA512

    b0fe77056bb7f76d09d96f809c467b131fd5a302913b6118f88b61a090df6338d49aba9c2c94dad416e01c4462f8ed3c9f58a1f20545bd3a48941c12174850e9

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    2b8870ffad4f86cac98bfbdf20f9835f

    SHA1

    3275e91dbaa5f1ccfbf244b8224dea4c0347a6ac

    SHA256

    0a5a7e5db0445a272f8e0b1b5ec1bd21d34ddc4b09318147b6dff3dcc2bd510d

    SHA512

    976fcc051de2ec690f21bf6d80333ee91d5d42f440aa01897e3d4ae81eab6eac11df53060b21ca3f95e3ce99dcdbcf00a4ad98198556ac33d6d411892d4b03d8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    9125df350e72868912f87a2d5300b540

    SHA1

    338667c46489234919f957dd572094a7e1316260

    SHA256

    275e929383678f8201800754c0ba6f04f9bde1c8de3cab4980798b12c921f8b5

    SHA512

    73e8040a162cad7561e36e6d7ac823476f7d1cf5bd693536a974fdee0789f48a7f791755757fd63743e0198f9c91d8eab7d435fd04def8c4b51745410ba0069a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    c0bbc38e55a0d4791c736f826ce73f03

    SHA1

    701e5f0c1bbba837c83801b4262068317c9e536a

    SHA256

    41c9876026d78d33f9430c2f1d1bdfc8094579aacc1aac4c9b67b6fc55e8767b

    SHA512

    51308c404955f63cc9cbe329ef35fd2bcfcf18ca45de9f6c691dc4846627411d153ee45edf2a3b958b7a8ed539243b6b75218f9860b09dd5f61729658d12fa93

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    8035742538452b5c726c037343049b37

    SHA1

    f8d55dcd2022134d9d18504a5e467570ca9eb6e7

    SHA256

    2bc663bd3db8535d0c4d45ed582a825969070ba51a21c76dfd18a777687ca044

    SHA512

    bbfea7d53e41ecad0d4800d71110899bc49ca6133401ff58fc0cb6984914da07004c41179feda4b93af103114e62eabff5c8323e297288489dba9c8acd995e12

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    6a74372f638e399f6d940cb737a0ecc3

    SHA1

    b7cc7387c4d0e93d5526a54272a075a8cb79e06c

    SHA256

    ac96937efa52abdfa6bcf284306b8bdfa43b753f9401814d9f79039436146880

    SHA512

    68705e3763779f0867381be2c9e20b92335e954cbcad85879c0f1ae357bb0667490234aa4efa8e349a64ece8f3a5f20468073731e12158d048b8e75024fa4dd9

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    823552d15b7fbe5433f881dcfe0a0e96

    SHA1

    de26647482debac8c8bea272e8847cc588550e18

    SHA256

    fe075f5c43f15cbef871ef19b05e2351497880c9238d354f1331c11e51a07612

    SHA512

    afdc807637dc677464094c5720d715d9d296840c9752c18a0fbfc0d9c147a5bf96e0c2a0592e4f0e212150e3c9668a85055bec299a053b2a6c8598842f833d34

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    39fc98a3591ead41a9f8b375327b4336

    SHA1

    e986c9e920cd2d0580c3a173b44139d8d3f75b4a

    SHA256

    16b0134569bcc35b24f65c8bf74036cc9106f9e8a3a06a439fc4b43795164b44

    SHA512

    a44f0901661c67427a7ef48efc948bbcfbaf0f31fefc573419be5e98308195fa0550bb5205f0f730f091965cebbfdffc1384308a70128d2365e0c11b02ed309e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    9a6f9d8dbfb38d3dbff1c196f34acd8e

    SHA1

    b30dfd16762c86600f5530727f3bbb1b31c521f3

    SHA256

    6bb319144bd0ad058c0ea55a2aa9e4ac98d43f10281ab261686c6a517e3caf35

    SHA512

    e9613e0819b7d3c1a2d688e65ddf72071e71c199d2350a2478c30491e8dbdfd020abc9b6ad21db97b27247d350df3d06bbf4dab7324d11773a3d9b265e319adc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    6ceda69eef444bbe24f23714c011aa2b

    SHA1

    62b4c5dd8fb5be78328b00cb85d396eb66e863fc

    SHA256

    048a58e57a2f165bfc0364eebb21aa7ef8c169a072b6822857d1c51aa015f3af

    SHA512

    6ca94c28197442398bf26fdd291f17f131864670c01e6cbaf88122ad36cad26b5d9159eb0c20115c6342a8b25fddcb2043c421b34e8f465dd6f355f73013a44a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    3bf522b8b6d950237290b0ffabaf984e

    SHA1

    d2e171feff3a5f853cfc3d148ddca06dcd6c3f65

    SHA256

    3998c830596aa9796cb7ef512f164baf2d61e5c51e6336ab574c90c4200ae4a6

    SHA512

    999115da22d644bd4626d7e3bea39a2b27eb8d150e4084536ac0b1a39bcb86bb57428ce6aa3e18c879e1abeef7410a866a8ba18670fdf76fcfe79fffc3c83c2d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    355a305fe043d2aa6bdf865379119648

    SHA1

    bf4fa62eaacd314c18fc1a30b192f38854aa991f

    SHA256

    1d323e09816078569f5864daef415d58d4c2b2aa174610a10b62ff5e8cf58a0a

    SHA512

    e56387f874ca4a7d9478e41dfdd560d6ce84fc3b04cf141bd91853bb425132ce72c7252188e399c3862a997bdf0646fdec064241fe520520d44d93201830b201

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F0ACCF77CDCBFF39F6191887F6D2D357
    Filesize

    242B

    MD5

    cc673615945cef0674af3f7eef1d4d88

    SHA1

    82218fdceae5d0a94d699cf5f5a36ab758b8e777

    SHA256

    4ce7e9f17eaa4b36489787b91c4abe12412177833208f9680b5cc98891a4e6ec

    SHA512

    6bf0b02925a47dc3759c312962bb81649bd47f2aeeb4fed00cb48da7e151f6ba72dddc9cc7b972edaab1a40713ce05804ed512c7f5cbff9e7539e02d0fd4b5b6

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\Y8UFEBH5\domain_profile[1].htm
    Filesize

    6KB

    MD5

    fb94fc34a0663cc57bcb6eb997b45dc7

    SHA1

    792efa32da99efb570fd7b27d6222f0c8e1fd972

    SHA256

    95063a449162f4629372458a71cd06adb421f0340c9d36874f680a0c8f9a99b7

    SHA512

    a2f76c702584048c697778fab65bf4c46573733618bbbfa89daf342412d02658ca5feeba04b67c1880abf56e575d052fa3f55baec736f96ee71efcde37110935

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabBC2E.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarBC50.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit