Overview

overview

3

Static

static

1

382938e471...8.html

windows7-x64

3

382938e471...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    133s
  • max time network
    130s
  • platform
    windows7_x64
  • resource
    win7-20240729-en
  • resource tags

    arch:x64arch:x86image:win7-20240729-enlocale:en-usos:windows7-x64system
  • submitted
    12/10/2024, 03:08

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    382938e471979e79b7514594756a8797_JaffaCakes118.html

  • Size

    46KB

  • MD5

    382938e471979e79b7514594756a8797

  • SHA1

    9946d1038ef4a8c075f835c278bc440c8eface2d

  • SHA256

    ce0c76359d999d66cedb19361a7e12797a559bb84f139c609a26b9cf7254b064

  • SHA512

    aa84e1a0011667ac0ffe8963ec4fff90166a81b6e3df02cd24077663a10a070d570b301c7aef1ce01c0525ed9dcd7eee1e7ebb644a3b871cbb1906ff563533e4

  • SSDEEP

    384:SjswtBh7gV651J+j7ESucgWNzZQFqtXZbC1dbDa7xfFAIE:SjswtBhsYzJURQFq1ZbC1dO7xyX

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 41 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\382938e471979e79b7514594756a8797_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2604
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2604 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2224

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    c8ae8cc4a36aa74eae2d26a06083ea5a

    SHA1

    4b74c5438aa8609209f5b2f76c21f1f246722fc0

    SHA256

    384d3039214d9d6fb8b2324fe70001e7203871eb636139d89085f431f9748cb9

    SHA512

    d81e7b04d8dddda47d5e28b083e7715f85807bee91627b9cb3b56c70b54f8fc06319365b297204a85ba2ad8141ea7a57921d5436a1894a45928cbfe15088521a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    d4ca0951d98fb26fc69d3b45638a315c

    SHA1

    04f065117cd8dda545b7d5f1abad14791691386e

    SHA256

    a039e1470eff9e43840ee1308c09b4fc88e3a4badf1166247565a9c35f6b5e75

    SHA512

    e816c5b9e67a104d26e7e3401f8885dfe87ddb47b4f7268167d374ef3275c2537893b50f45696d2712253c63a649d365b1c8b9711b3772ee2b7717323a7ab12b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    b7016a05c14040586b8678d77d4f6930

    SHA1

    cc04d3812ffdb436dee2ca43161cd0e58fb0de89

    SHA256

    823061f80ceaeb66a87b43dbf3bf501f73c450ffff6db740467e61f5f8fa5f0f

    SHA512

    45707e746b3f547e293bf4ca5ba457a1944f5c4c107b2cf0662b3e9b8824987648cb2126939c9317991bbeeac149bb37a95c8eaf2a0709fbcb5414bb135979bd

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    dd158fc8b26bf53b03731c11198e53dd

    SHA1

    0955c88aff825b0325df76afd7c3c3644b0103b2

    SHA256

    2bc21bf96fd57ed912e94333fc9501f7e08005d47c6343e028df06a36eb9c7a5

    SHA512

    35bdf13a102de77a1d51e696971ff3f2785bf4afdb7fa797456ad90f89386b66c25db2f37565cad8aafe0b00330003cd63744008043fb8d4dde0cb8ac225236a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    5d3cfba82d296aad89acd9cb281e473f

    SHA1

    7768814920a5453b0e3cd5fb4e259ff013f5762b

    SHA256

    96090dca0c620dcbf20bb03c3964a45c4c38e96fb2a4e5c17c48ed4bed43861f

    SHA512

    6bcf6a48261c6becb39abda0733447e1992be5c890576e34ad3340b861a8e0434812d04cc104eac372d156287a6e32c9c6701133cdf3c666a6cf98c3dc80d700

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    05b77c803a1a5632fb99191daac8f8d7

    SHA1

    98ae7868174ffe58e45ec861515b4c4fd7e6c937

    SHA256

    49f56d242d01371c9f6ea3ca17ee111466547f27fdb039fd600c79b7d5c0275f

    SHA512

    0048dfa142bd2d24408b264f65a93aefad8ca93474cfa4eccbec133a02a3a9f3ecb12527fa6c1bd07b088fe73bf0947841f243541838ffc1af43c890bb67fb97

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    26659f1e169019338f24f5739ba84f4a

    SHA1

    855da0e56b2311124c19ffd6798cc96384653f89

    SHA256

    2f65087efa68997e6d02170089a3307dfe9bc070baec94cc52e9173b26260705

    SHA512

    dcccae90ad4db4b457034eafef67fc9d723abb2d51c35d74e479c9cf952b5266d4b6d2800cafff77bc20895e3fcfec5c80e597e00c2f9b1713e92dc1b71e7125

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    7b61525bf9fd82f413d5458b4043aeb0

    SHA1

    3451dcee35e6ef662567883bca84aa92fee79d5f

    SHA256

    56da51d5e2b492d317ad893a636608426c02aa7d9c7e97c386e0709fb3c7c542

    SHA512

    b01023218318fbe51e67539b4ca4f25fc27fc37526593042d9c48551150fb3704d7ec9a2d203e2501007764c4d8afc6c74ca21d4c936c08e099df560d26d86a5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    ca95fe7d5c928fe97d92b9363385eff8

    SHA1

    37f55257199257084cc7d231e061305a1f50ca9d

    SHA256

    5ca1155805352ec9ec0909362120c214e7e7ad005172586b3f25b7f7e32f5c95

    SHA512

    a8dfe31a143e9a3f9b4eee161c9116caf90677f488a6a2116dab6089b780a54867e75da12746d6d5c58f54b8a7905be5159e43bdde1171e50b0e4d7694242e7a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    b9f502c400d1c9d1d3ee448458bd5bba

    SHA1

    990eb51b0f25c8bf250f7d0e0c5bc6ea4cb1e2ce

    SHA256

    13fd5b0d76f5ef287493595184b7ba553f9648060d167b0dca338a13c07166c1

    SHA512

    1148b49b554667e8d999e470b8e33f6a232a14a4aaacda9fd760385399a458f6ab738a08833dfd9501b17ef274dc7d4cd406a2cbc13a1c92e25086d9aa9d1722

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    b34e67bc31544ab1ae077312047c39ff

    SHA1

    882371efed0e2d5d93b845c1a2cad0032cc9bcb4

    SHA256

    a1ef9df41cf34d0412239b9eb8e7d4120b9b04e2bfef729a164a43b1960513be

    SHA512

    f9420fcb16a71cb1acfa6f1114985f70ddaee7b3533135cff3412acc8bac1da27198982238d8d07d3eafae37a3c7844fc537d6f624f3cc568412f31fc041c61f

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab1825.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar1896.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit