Overview

overview

3

Static

static

1

38028fa319...8.html

windows7-x64

3

38028fa319...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    121s
  • max time network
    127s
  • platform
    windows7_x64
  • resource
    win7-20240903-en
  • resource tags

    arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
  • submitted
    12/10/2024, 02:25

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    38028fa3193735db5383b7232325f2e7_JaffaCakes118.html

  • Size

    23KB

  • MD5

    38028fa3193735db5383b7232325f2e7

  • SHA1

    71127186fc2022154cd8309da72e76c77be801dc

  • SHA256

    59af6ca167fa8acfdbacb5a45f36539d9baf699a97c16739265751c606663477

  • SHA512

    e82e6b905b8625011d308c7b7f6dbd18ac76ae6d01f51f52c82df760972f67cfe2cfe2fab92f09d552e7adfeeb3f9b38e7f5a642e15b97830252811217dfe412

  • SSDEEP

    192:uWXKP8mtb5n6enQjxn5Q/BnQiekNnbnQOkEntXPnQTbnZnQuCnQtuwMBEqnYnQ7A:3Q/zu9

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 41 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\38028fa3193735db5383b7232325f2e7_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1552
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1552 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2916

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    5f645a58c9ad8737fdf288953dd77490

    SHA1

    26449e4bcb6474a48d14433aab3ebffca5e33783

    SHA256

    e8625f0139ae00b4239446aaf402ef77aad305714fcf2ba5fb3439895e29952b

    SHA512

    9a6a1788c7a7f1da4362d2de1d03f19982369942741fa6e23874115d37c19aa4b4b80500b3248bfff1da68eb843c943a795554b51e04f716bfb895280b77f7e8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    102d36bedb1814931192e0574c0c0085

    SHA1

    123784d035095e88e924870b6404a120cdb6e319

    SHA256

    d66c25e26221a9ffe7d238e6ef754b46813856e8d9733d4dcdab75f5dff4e640

    SHA512

    6b2d34fdf37547177470c5e18385f32efb146b22a4874c12ff0d48f5b6b24f37739fe58219c84c539159401a6465657d4744defcbbda55cbc2b90ae1a63af64e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    39116fb2aa3f7d824722472caf2ae18f

    SHA1

    793dcc1d293b4f7cdd352be798b299cedae04cff

    SHA256

    38f38bcce649e8b3bcb9cc58c508054968df740875a8dcfddf3d2cb55097cb09

    SHA512

    8cbdbbd5526a443620ebdea396f62041d95c741300498c5448ca093acc239d0bb9bf66ea765d222b763cb6eb57f9cddc2c4089bd9a219396eaeea39173197132

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    ab31e19a28d81853c8888454cd034feb

    SHA1

    8fe5b762b17cc197ab4d6b70c8ec5295a8753d8c

    SHA256

    5d03b6df2591fc4d5d695f386975b91dad7641e8fadbf268e674ae33a34d6a84

    SHA512

    55f9a536f11b52f4f88447627b470b5601db1732f71e9fe4724153def871d46351ea3b3332b3368b914d5a0b3e73288a0007572dfea260b732aea2df301b4845

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    978d8f77355b843dcdb5636cbeb00f97

    SHA1

    2b14e19cf48e41993d1f164fe1e05881aff94251

    SHA256

    878e287396dc12af81a9231f5a78893e81bebf723fb3ad295c54ace20b90051c

    SHA512

    bede3b4d9bd4f1b22c919042894ae6986025a3c3ec068ca128b416c9546148dafda3fc733bea57629de06a4f75b87c8027aeab43b2fecddd95cfd1dd89b34c68

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    16806371b84ab1f01e4ff4370fe9e1ef

    SHA1

    09286997df418b9062003b6426242032c25f2490

    SHA256

    d79fef17765483dc8e0980557f3aca9f96a7c63e9e54124875d40c1a13d07e19

    SHA512

    507324ea8f5da7a431d4f6406d15a69303d345eb417a0a61aa11472642a5d887cd2499fc75f8818744dd81c8b724b681bd216cb1f29caaf55ebd01845fb0e347

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    914628ee3aa6fad7d4c4e448ccd8ed2a

    SHA1

    fab966d31bcbe690444ec487bb4f7374edb23fdc

    SHA256

    f1b6efdd0120fb38ebabdcee2a269a244fdb28ea8ed45651c37d94990fc9c43c

    SHA512

    bc3489a4b33f187541dbfef712a30dc1636761c1bfebd015d062c9878c5faf3d14060b87ca4c1799c1ccfd4bbfddedb39323488e802cdfa2057806c3f8e8667f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    87c95aa9d8a6205b98ac8fb38603ffc7

    SHA1

    8245f14409bc642f5d894af912d2c06004fae261

    SHA256

    7ea2216b02b708f72e8c3ed7ad0e5a73385233a1d5ac49f93f7c573a67f81810

    SHA512

    da9a31af01699c026860f483c6e9d38eed0b4be27c0c768d85e729ccd6e5d1531fce158d38eeec1e8562d58e1d927243ffc963ef13671f89247d60c2fa0f292d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    d4a24652c2efb2828cbb1ebe7ffc968a

    SHA1

    4c1422231ae3a9b66ff9d4c1351a5b71e2cfcebc

    SHA256

    5ad605cf8799b75524991ac67cfca81dd20649ecdce295b690ad826f8e634bd7

    SHA512

    83a401e3cfca561c99e4489f906ea80d3f0f1a92370627443c22209216c47430779dc75f20bd5a63fb4e1e2b8a6724cd3e09e5284870288b4f26de69d2a4e268

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    f4c74afe8338b6774b2b90603a736261

    SHA1

    15a473e4af097ef0f3630377ffbc230559a1e9be

    SHA256

    61937527f33ed8a63755b3f7b7a696b3840689b3a027ad65794ca5540feb0d6d

    SHA512

    134a1dadb76c05045e3c9ca1833717b9dccda7b4ce18c0ff94f942bb52617e046594a80bfe8174036a7388f44508e2e3f560f16fc466ce70de699c9132f4fc9d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    6ae458caadd348b6cfc3e72a77dbb467

    SHA1

    91c84b3f1636ec2173fcc2a98dba5627285a514f

    SHA256

    d00d8f7bb282493d288f1ed12c3d9decfad439eb9507bdef92c3378855c118ed

    SHA512

    b3187f8ff78b57db0c71e963f7c3b6330d5410dcbe885706a70f2d4e760e3be4656fbfc838cff8e819203df9545020ffb987e73080b026185da8d30eece9bfd3

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    efd429205318c8d60a3c1a8aa6314544

    SHA1

    32a84c2fa22fb0171645f7bbcebf04673f1554fc

    SHA256

    6ebe37fc4e2fd1096a7baaf2d4bfebd630af655f40b365e1e9bc027492f5b6c9

    SHA512

    88c5c0ac5a63befba056f6aa9ae569b621482577c1f896c08d4624d7c0c5c4feeb173ed35f914ff3e481311e93fac5ade3288d2e0c8116a055b6e6402bb1e213

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    22f779ce0e5f13e034c7850ba2216187

    SHA1

    eda051dbe5bb46ac40c085e0c753b49192f21de1

    SHA256

    4903cef5e0e6a30736632432d37a14e7443da2f27d3a238a45e0913744f139b4

    SHA512

    bdb349354577d3dc2a7deb49b7b79be4690387700d6d1af83733c3c1f0fec08cab2b296f72563b4502653189309ea97d571378d69739983a7ed085cc50d10de2

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    ab36ff3e44d793d2412e03ec9cba780b

    SHA1

    2ed0fe4122611a68687bd67b8c412414b9b06bc1

    SHA256

    74b6a79d4697f2bd249bb07ee78f493554379df71b5716310f94ad134e7fb1f3

    SHA512

    cdb0a9c52571774bebedb1eb5c69606c1c26be1639dde61bab09eb203ebf47aef97e68f90efb5043dfd04b25a053c38d90bffee8295df29761c83e37b7468528

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    e404453c42e4d35f037c858fd401d9c9

    SHA1

    38ca738c1af80d15b20e839ffe195e885f0a63dd

    SHA256

    b132b55520279a2bc34e7aeae0fd5c6b938022a93bf1dd9b2e62d6de9a9384c8

    SHA512

    3ff622ef0e4042df7348227171ecca140652362821a848e2b6c98387983bfb7ec7d0192fe4cc4555739f3139439b449a362187d3f284557c9f7b8cc3323c55c3

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    f3005090b2b530aca66713f078fbf2c4

    SHA1

    3743c58f1be1a0ea2cec4aa35e4d6c00fb4077c7

    SHA256

    37e28a79e92694e77a44976c1e1e625c4e759ed2322fc4551644b8860dfb4540

    SHA512

    6fabf01045b7b66f1c071295f362fc2dd63ff2c1e4f8afa786585ce2269ab17d2e6ff9e9f79417f6320cfc6369a6b00e9916eb1807a68434ee1e7a3661975e5f

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabF143.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarF196.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit