Overview

overview

3

Static

static

1

396fe56d13...8.html

windows7-x64

3

396fe56d13...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    74s
  • max time network
    140s
  • platform
    windows7_x64
  • resource
    win7-20241010-en
  • resource tags

    arch:x64arch:x86image:win7-20241010-enlocale:en-usos:windows7-x64system
  • submitted
    12/10/2024, 10:04

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    396fe56d1382ed0f8f8f8b07ca4a0ed7_JaffaCakes118.html

  • Size

    13KB

  • MD5

    396fe56d1382ed0f8f8f8b07ca4a0ed7

  • SHA1

    b1757f6cff7dd2351f9257d6092f7421809cb6a7

  • SHA256

    5b8818a0ed1c2e5c74e1d96fb7de4bf382cadc156b118d7a886daa5e0924e925

  • SHA512

    b7f02b64a98db3883d25a1b68a8aeca0de21cda17cdba3d03700ca1bb6884a5e197f815547620df30072fc69083e9a4dd305a9a5cad7fea3f0af7ef85f4bd896

  • SSDEEP

    192:ziEhm9KTa67xFIsHjf6gDtHSUHCMHbqTVKHeL:ziuDekxvjf6gDp9Ci2TVM2

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\396fe56d1382ed0f8f8f8b07ca4a0ed7_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2904
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2904 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2864

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          3a85630938a6fbda27974e65e2f17d14

          SHA1

          b45ebb26bc217b2241e255b4f03f8b0a506f2faf

          SHA256

          f65ace0d69dd30fe1b61e4ab9328e4e08d68f302725e8fd10a7aedf9a3ca63ce

          SHA512

          ee33eae98f9762ef2bdb58fa8c93e162439b44bfe26e5f066bb79a75a6f08f7e4d7b992ebc5bbd6ca5dd02338e4926b5f5292f8d008030900c16d873ade9ad8d

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          c17176a07515ed4b9663b1da6b10f8ed

          SHA1

          21d922423eeeddbd59c3954beb84912a305ebe26

          SHA256

          a82c4d695cc2972f2f037aaa0727ab3f177022e463e695c149fbb7fd120201f8

          SHA512

          99922084032d6e309acbfc72806abcd41fb2dd02d1485fa6195e77f58ff320cab41a32e86c432a02daccb99e1ed592252136259ae631068d18bba9995896896c

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          54278db54cc6f08b7ee483ebf17b2866

          SHA1

          1595c06fb481ed24d1a79250804b1d2917fbe9fb

          SHA256

          cd9d6e64b3b755c6e9c7caa34a3ef71cc3975d15e688cad61fc21e00ae57ac28

          SHA512

          54b22683b16b7a99cbbac93a2ed776dc0b5ede334912ef7239b170b1523934824db063612f99b5b7a872775330c4bdb0a1c3cdf23c9ef427ad8aa9e67e450f3d

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          79415da983116a3488381d7d169eae74

          SHA1

          c78b94bb90e613a0c7dbcad4f154f73537622b8d

          SHA256

          fa7d443db3da31f71be194bf776f1b16f6468d474d1fa1c571f98868c3b11196

          SHA512

          83e6d434517a15827ed43788954e57a041e34713b2748a90afa5d304de73d6bb729fff1cf683491ed87b0b74be46ca4c21da9cbe850c31bfb1d3295707f04e09

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          eb04fa4f1f0e9d336aa26c60808f374c

          SHA1

          a972b69fed7db85f0a8708b2e59871a9322f4c5c

          SHA256

          3f17370d2b61eae73ba8e39b9f188c4520e55922d014cc89d2d6f2b0b055903e

          SHA512

          fce29f05e25f25234437270cd77c6465a2b82d2a1a71f257d766af06ad54b2e616d8c7f9ee793465938f15d1a814251cd4bdd047a2eb682712057e5c30033d5e

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          c9eb25387893c5d4374ccd5eebfa478d

          SHA1

          4ad6c7458e430f8d3734d5356d15427c0cb28554

          SHA256

          77ba3759374a4b2367064a971792cad8b7d1c2b10fa00a465021278795034081

          SHA512

          2247861b0f4d7ee2fe40e38bda90047c2a25bb554c62fe66198003e213a35e88437af28c4ddce74336f1ccfebd85b56cac7618e9d4aaf258c41352a68a704a65

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          20c705f5df048ca33ac7cd0d2893baa6

          SHA1

          dc0f64d7d4b15ed91d5a65a35a6536e092b586ef

          SHA256

          35b9c457ee2fc224bb43c5c3bf0d5925428a6dacd9c79e0ee8181d94ef3bef0f

          SHA512

          7bd1485c3065b1045183af84885ccc2ad15a860e5193d8a55e6d35ffdb6c463e95a64e3bb0446a21f07bd8b79aa5c2315a3af86eb5affee993166a03221014bc

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          3094532f854b46bcbc548f25bb900e71

          SHA1

          ac6acdd3220a912e07dd402138fd2cc0f70caafa

          SHA256

          896b56e97994351318e1042dd9fd4508b9afdd0a1ee4818ad057faee97bcd1cb

          SHA512

          8a9ebf0f528ff06b3d9544007ae058dfa4d5b322f775f4ba54bfe062e2b3b78ecb067c4e188d28bb72426c8fb0494b2b6a7420ed4d987288213d272147737b1f

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          7b067dffde7843e4918ec76675346645

          SHA1

          c085d317c526f5f5334b58679f2003689100a8a9

          SHA256

          e3221358ce3fbe9a39d53cabd275a5ea57559ae8cf720705171f3d91f42ac01c

          SHA512

          b7980b1f8e51324e8a69e2f1ff25a53c8db3afe638a56ddff7917dd4c7bd01f0daca90fab2603ce7aae709a307c263e7a3f8a424d65fb10e09c4a36ece38dd88

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          394ee2ec840733d531f515c402148ce2

          SHA1

          90029a9c510df33abab4c7a1cfa3837eeb007b56

          SHA256

          26b3f129e1d752e335e8c4f18487b5336fe63bf7bec700908b55d095d564793c

          SHA512

          db0377e374b2c53c30e4430cee1e8a14702402b4ebfc5fbde819b8a4566beb03f0dde0afe4e54ae895d993fc88fc0b8165b3d3ed1d91a6671ef545a82ffca671

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          51049bd5cca387f0a1cc9cb1ed41a9b8

          SHA1

          c3159c44535e10a04f247a94c4972c9fef3fd805

          SHA256

          f61ba61bce7835b792cc5a0b4704aeffe3fa383bce6d7cf96ebc8552ea829c87

          SHA512

          a23725a797a853baf79141d669284a141c7569df4b2cd5beba31a2780e29b0bb3519b65864d4e2142312d30fcfed6d2c78ab23b8073120e2366470d915457c9c

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          e8eb0b832b2d519bec099f438e7b9cba

          SHA1

          94e1878592ecc7efe29fc387234b7675e3c1c264

          SHA256

          5fe7efcc6533cd4c610ae53efe82d3389cd93065d74687c6f028a3f051e2570d

          SHA512

          e67acdf822a7550be19c051e81e613fe851240067beb01d00bbcb0feba3106eac96827715ac18d2025ef61514cdaa6b0275d71e85a52dd802e1ad4b97182c211

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          547fd5b5d61b6042bf0af4dec2d8a80a

          SHA1

          c214acc4ba81f3a6fea0af5f1515b74460cedbcc

          SHA256

          f134b6235cee0d292c2cf31db6abbe113a7ded0eb31f62167614af1ab557b2ef

          SHA512

          6a655f5733bfa1ec91373954b091401d51a2dd876d5c55132da6319204566dfc6c1c3bac66ada180c7fc12818e5d03e4863c7d783db6601804d688bc096736ce

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          d16b480cc2aa4d3fcdd2ca82f7ac865a

          SHA1

          328a7dc946adb1fccbe90ce899cf5e7f8fc9c0d3

          SHA256

          282eb83cded9ae8eeedb053562ca894600ca737584f28761d326365ec9602b85

          SHA512

          d259984d5f39ce3ce27c1d0d7e560e85fa2e48bb8be72b70cca5bf03066a9b773defb46358496ad3212a1c1f20af0dc9417bbf696c3d0a9bbe3e7c11515cf23a

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\Cab1B40.tmp
          Filesize

          70KB

          MD5

          49aebf8cbd62d92ac215b2923fb1b9f5

          SHA1

          1723be06719828dda65ad804298d0431f6aff976

          SHA256

          b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

          SHA512

          bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\Tar1C0F.tmp
          Filesize

          181KB

          MD5

          4ea6026cf93ec6338144661bf1202cd1

          SHA1

          a1dec9044f750ad887935a01430bf49322fbdcb7

          SHA256

          8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

          SHA512

          6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

          Download Submit