Overview

overview

3

Static

static

1

3c634dfc7a...8.html

windows7-x64

3

3c634dfc7a...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    119s
  • max time network
    127s
  • platform
    windows7_x64
  • resource
    win7-20240903-en
  • resource tags

    arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
  • submitted
    12-10-2024 22:37

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    3c634dfc7a6b6187d9058b31772cf293_JaffaCakes118.html

  • Size

    53KB

  • MD5

    3c634dfc7a6b6187d9058b31772cf293

  • SHA1

    603c67c10e2840fbc01a74a5bcda561e3804b866

  • SHA256

    643e2eb060a6d982fb31d2f8b70b69dfcb17275a8e7403b32136855614da773d

  • SHA512

    79c77ee5a082e772f685e9b99271642fdc3ca462afb3642e56798e05bfd0cec7cc373b90746e0ea373f280941fdf717f32cd13d5db143781843c61c1f254d912

  • SSDEEP

    1536:CkgUiIakTqGivi+PyU+runlYX63Nj+q5VyvR0w2AzTICbbeo8/t9M/dNwIUEDmDO:CkgUiIakTqGivi+PyU+runlYX63Nj+qW

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\3c634dfc7a6b6187d9058b31772cf293_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2912
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2912 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:1224

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    2ce3eb57e37d4ff1d7ccae690a7eedc7

    SHA1

    509ee2fae674e3c7c619b155b54bee500ca1dc0a

    SHA256

    2d09b87c201fa2b789051bb567c956180bc5a01de290b320216f936b39c423ef

    SHA512

    ff4472b98f9570d514a8cf25adf421d7b105c4fc61ec175067187ac73dab655be92bf5d3dda356aaf6eae2f9b3e115224dfe037cc63c3589edbe66d75834e738

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    16de5bd542d225a2052eb09131238974

    SHA1

    f1b933e5e9f14d9d585ba5b2d49aee0981533229

    SHA256

    24052abd68ae64e2ff8a6ab4226bce69192673f667d497ab132d0f1c389e507c

    SHA512

    025caeae25a1e7bbd2add9245ff0ad7c17dbdeca1533ae218718f39be4fd601b9ae55afbd0160e93d3f0274f51ef6467e28b65c173d5ca82adb73681a644f59f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    5437fa0e9910f6e7d0869dae98d77eb6

    SHA1

    728a4da567c29d90d07cf6c2751328d2698efb3b

    SHA256

    1a075a869a520224ef2c20f8403d28b994ab30dcef0f3b512bc9f8f53a739684

    SHA512

    64add6d6f54bd1d9c990f119891937564a2e05614002e6354040980406602eed28a1e1e1210da9eb49a4944c3b513df6f295858da61264272ff53fba243b2d85

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    a58c74c8861c57f41be5a75fa9333039

    SHA1

    b14d9ea13103e2322ee2a6f36dfdc636a0184908

    SHA256

    66318860ed4cca63dc8b17a13657f686d0545988d80eef2b7b08598613cf59fa

    SHA512

    b48fc71ce384b455f737f9a9431d247f1d12b0cebb449971c85f6df8bcec20609a22b34a1318c2e9f745f4df546944046184672ead4574e3ba29e897f80a50de

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    75686d8c8e749ab25c7b771c797a67e5

    SHA1

    f8f067323e59274c2f5139b4b03335dc767c860e

    SHA256

    648041de38023365dea89e2972ada22eef07499e9080e57b3e81cf8b804a4e73

    SHA512

    abc31dba7331a889bed7a24177ade8c65881188e3bdb142b2b5ae307078226120810a06f79f5ce94d1e64a42945f2aeef05dcadac166c113d2b6817f63f01957

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    0aa9afeefaacd311744bcdd586af01a1

    SHA1

    d74f0c1a4eeab8e6e9b0eedb7072d62940df934a

    SHA256

    68d7a0ed07ff6cd418d8af3fd02ef129161c19cfc6bb1b8a0e35296eb29e0a00

    SHA512

    92422ab45a119d5cebdb3e8b834897a8d2f565cf7e3e561ff5a79b64afa3a2e40a7e36f517502869240835df658eef86d78faaa7d6ea3f23990db8f84a28596a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    0376df34824d8649ff5c7286d860220b

    SHA1

    1e030885f671f931bdc767bb76208c6348536098

    SHA256

    c884b512a4afae04a9d6020e29551e7bc684e4b27eccb84a947bf94a84979da6

    SHA512

    b7387649d522c9afeede6d2010c97df37f2c51b32b28570d5521e48938ec5740bf72e0fc08658cd5f95c460e72d77eaa30fb46b8a3b6dbe257e599b855596326

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    4b24fb223b987b6cb9e50fe67ee6933c

    SHA1

    040450861602e5e5f0881256195a88e60564b6ab

    SHA256

    ca8a6cada19dba330fa96f684a7beec9b9b35766ba915421e6afd74a7811f047

    SHA512

    2f2c163bf7b3aedab5d7c979ce57d91f7e121a8219bb274d05e16b507c751d5e5897e406b4173df563750f47c65e051c2e348065ae82f23359bf21af07ebf8a5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    675752af85d99151fce9e0219a2dab0b

    SHA1

    326047ca6087b6bb1a588a3364f4dfcd6629d6a5

    SHA256

    8bc4d2a58e4c265d1843d3ffe88e110177fdef4de05e5e153113832cad3d2eac

    SHA512

    bae61940682bf540c916f9b2c31b69aa4335d7d9eed041a6d3c37df629ed70be254d5cc8e7f10f575e8a1aa1217c564a42eaf0d4cf4bda006c3ee88fb6de0d61

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    a54e93f654df7d6d401fb45e9e4f2c5e

    SHA1

    e5e1b9337265b498ecf57d44dcf41bbb56911ab3

    SHA256

    a7f700e5066fcbdb26fc00897dd2bc34f41530618c5240540030596ef5bb3bd8

    SHA512

    ac4df3252db76cb29a06218515e2e0a423f86f6f632ec6f51e02d6d3130354e50e35210d49ab85a0e9e105a4eb718b45484d17d3d3a5a88781674101dfec825f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    1a7b37c5a9ca39aef5de3b331edc02c9

    SHA1

    d1dfe6f801994141656be26c3433d01079428c69

    SHA256

    b72402dc94422ce3a37452617c59383e507a939c4b7a3da34554243bd0c1ee57

    SHA512

    fcfe6c6d93335d5a34e1f35469530ca78201e136feb9b2099337fd04ae9c2ebbb4a756f2cabe970f1d0bd2276c3215ed9f49ae96ae872a480baa0ab67f51b1de

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    a1499a835876e7b8b5685c4170dac944

    SHA1

    436aa59f60ec4b3ae4c28d95f01e56917665598d

    SHA256

    f303ce642ddf81478fbdfb13de219a280f6407df803cbfb44d1e5d43da542bf5

    SHA512

    b776ca0caa09fffb358e2e66c9629c9d29934654bd011f518e9368526ca392e58b512a7ca1d5ffcea8ef22314b8b4cb31c42af0ee6107bf4b256499750bdc884

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    667e35d7043c06bd0010d28028592787

    SHA1

    0e371a7d6cadb188f66f1a3c3d1e429a1bdbacce

    SHA256

    07754e8cb5f039f519a67a23014ce2e0c65e3b93a81afade3a061ef317ca485e

    SHA512

    7722fdc7f215f61f85d762dc21e6bb94a538f68dce1a593c781cad47735ae136dbafd4c69f131d857467019ef9cf7a378cc8388e262e46ddd379c2afa1fa2601

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    9b5376a8168a2f76b55c7f884620a46d

    SHA1

    1d15d986208993e9adb8225d46a5a4338af5d5ae

    SHA256

    d6a077df8ac1e582c8ae026f56abb60b9df9392e86443161c0d890b6d4dbc965

    SHA512

    5333c12215f16098c2061d6dc934bad2ff31f129e897b29bfc5dec4a6553126390e499c2af54327f40262d65bda08e3fb992509c801680357b3d69f9e8cada1d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    ddd07ca6e8e716bafd28226fca13cdf1

    SHA1

    553a4dd21ef46f9818316f1b3857bd1bb07b8f0a

    SHA256

    e66e1f82cf16fe8c8a5c035b93c1c41ef343cab1ab8437351db99a1d1ee14c2b

    SHA512

    a99f36958f1e7bec2c0e3cc1f5022464ae7491dba59060abd0b798480a78b71a707614059ed715b91b94da0d9cc2c8915a4b78382f1bd6378e816409e736bdcc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    7da4a18a529a42c5eeeee5c34ee6ef68

    SHA1

    a5f0ae0b3cb1b9a3999bb3e21079ebe1cff3e3bc

    SHA256

    c99dfbc30f60d5427e6be375cd8b927090ccba32985208d47b5f83acbee27c60

    SHA512

    0abc35d4024997f06604d73224201c77876a064ef5852c2bcfc8e3b548980941d713d995427a4010a5f7308a2dc903f3c41a6ea7e4b34d54aeab28edeac87750

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    a615d7d41634d65dee9329f313a7e597

    SHA1

    8fb877d1c45f77eda8b916a8c1b2e25f67023cbf

    SHA256

    807562b05a183cf3b5d0eebcbf269497313260c69ff70ea4d380272dfbb79f2f

    SHA512

    a735d789d3e9809bcc535fe9da0890edc8ca5a67e7bb082726cd6edb0a19b3d12cdea391498151cc75fad6620cb3d172606c875f2b962fd1a728067ec4ec3561

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    7dfb0a14cc8d5ae15f9c9cb60e650d18

    SHA1

    7631f3ffca6a1288f9edb87d8c081386f7c6d15d

    SHA256

    282c35de031d1866440d3f8ab8120573b189bcdd40052b494b8825079af87daf

    SHA512

    157b71f6b71d4c79a967a40c113864ce02ef5f321c43cfb36f9d100873f11da66e1b103e7868c65cbb619726914156cc6f11922265106ef7abf332790a8246ee

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    e7274348afeaa4e595bf2097c256fe86

    SHA1

    5f2ba77b33f9414e43c38e23c116c66d8398b31c

    SHA256

    89731891f0f9a1a0cca31e3ea6bee65dcf6f3a11e93d412ab0f14ba65e66020a

    SHA512

    eb033f2e426f32e471d3be98ea4141b72ab05f03a9fc391e28a0f1f54140f1f4e5ce8be58e58b130d1ab5428d8b7680c77d4a2dd6fe80d945e84dd1e60fef02a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    2d33814f79ff46f5fda336975aefcc4a

    SHA1

    d33013d9b3216a423211bdab959023979eb14ccd

    SHA256

    0389759639c9f387bbbb086b1cc13634485c1f74e826c06af42449ad2f6c4219

    SHA512

    9b6fcc0f508aa7e4fb377f8c0018fd458ba492200a64e3a403c8dca66271a3dd0d8b35b0ab53cebec8e3d202e7781d58fbd714698f6565c49695009765e78eed

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\Q0WBLVJY\script[1].htm
    Filesize

    706B

    MD5

    67f3a5933c17b3ab044826d3927d0ba9

    SHA1

    5957076d09bacaa6db8ddc832b4fd87ed8f05f8a

    SHA256

    97e800f4836b7030dd58fe6296294b7ff5ef1b5eb0e88353f230ea1608d2bb64

    SHA512

    03ba224055ffdbf32b7eea30c764dc18d66cc6d8707dc5fafab74e155b0bb3d4d691c5788b033a68f05299547297125122778fa7e3252f93e7343d918936643e

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabC4C7.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarC529.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit