Overview

overview

3

Static

static

1

3a41b6553a...8.html

windows7-x64

3

3a41b6553a...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    120s
  • max time network
    128s
  • platform
    windows7_x64
  • resource
    win7-20240708-en
  • resource tags

    arch:x64arch:x86image:win7-20240708-enlocale:en-usos:windows7-x64system
  • submitted
    12/10/2024, 13:26

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    3a41b6553a68b6d34978bc3e6f406f62_JaffaCakes118.html

  • Size

    11KB

  • MD5

    3a41b6553a68b6d34978bc3e6f406f62

  • SHA1

    1d7bf213a544d7a2341884a621ae83edd220bde1

  • SHA256

    7278cc5971498127a3785c3aba9505256758149e89c00ddf881a97393cf84446

  • SHA512

    a44540b4fe24eb3ab39e9b144503ecd84ed713afd4985cb7fc3bc1c9f6d2c82d3d67e34811798b851f6f812aa3a75c0fc6c1a07e65da6fef45aeddb79722fcdf

  • SSDEEP

    192:2ValIsr0r57M4dxawT8IX/w1wvqVkt1kHauBuLbdU8d:salIcIQ4dxaKX/g8WaguLZ

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 26 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\3a41b6553a68b6d34978bc3e6f406f62_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2360
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2360 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2536

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          1a6aa13c3b3631e305d054b1bb35ff50

          SHA1

          6902b108aaf1fce03cdfc08a2b952517fedaa9ff

          SHA256

          581da6a0d5ae94d0470628c20ca6e76f114f2d5c718574d85f91efe9247912b5

          SHA512

          7e8cfd71d6e564d5961bd2ccc5b39023f0dcace11f617d0392d1cdc432ead35c0559145bd7aa33274e6e8eadfcd812691db439633c8e21fbc5dc36a188a36896

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          05167d43d6bdc3712bca31f79953e3b8

          SHA1

          0f6c9067b87b4b0e917ff7b4da32af4e720ceabe

          SHA256

          4d04fe23538399aacc7cfc189e46a63cd5902e573bb28a57e07973c48ec039d3

          SHA512

          104fd51ae36bd998701a13442ed34142623c15b6d04619bbda6865ce25f39723f3846633ba0bad2fe6ceefdc12a847a5d55480a749e2b72c329ca75de87e248a

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          91ba09e8bc041a6a3b0efc208e51a948

          SHA1

          0217a8230cd723ccaf317d5d568a81714fd3dc47

          SHA256

          e20743a4089e95ee59429c11e0bff76cc75970989728d7c1099e639540ff4c50

          SHA512

          dcb8e2b1534f2487bced167e2b3808afc683fd16781ed1940ec971123d2b17310d3ece2faa9a371a3e954d82fc4d7492a4f914f55744b5563929123e5dea8bb7

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          4e283152063e9cfd1109ef9fc9e374bf

          SHA1

          101c994d9ea40f5b819de4523362256ae3da2dc1

          SHA256

          b9b55ffb06f6ce58cfad31acd80be5a27a39fe3d8ed93faeddde923aa67342f2

          SHA512

          a29dd88bb9cadc903d4d981965be168a97088eb630728447756f2451395ef2da81e3ac2f981138e2730f1f73aed50b9a1acea0c7a4fab9b2e9b12152d9e88c83

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          80a8f5800155b86864466c8324f50c66

          SHA1

          d9daf0246a2e9541f527ca8b02ca8c8122ef9e94

          SHA256

          bc9f405cceeb4bd3e69ab90f65607d5c18be3fa95e831fd764ab054246a8831a

          SHA512

          31d73fb6605b0fb7c395c06ce361cfb0398e6db307f57f7e48db8130b402c550f39ffac03adcbcdf415036e49e8492faa585607f1a6826aaa4989ac506dbbd21

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          a71f02db1bf456ed82c3d34103fbd840

          SHA1

          7fe17f8ad1ee51e3cf8e0c2a018adef690e0b67e

          SHA256

          f1906ce85a40848a3f2c2095884ff00011ae8e1b8075fdd73a0cb58d75ec752a

          SHA512

          db9f9498af5687fad6d0e14801f407d0a9d3508d12a788085686e1f180220511dddaed5629a3e68b4672a350c2565fd4833c915fe04921d69be8635cc99e3501

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          6c9565e1968d30732cdd07450cd332e2

          SHA1

          5567c8e01d80985b7d74dce4db986353325a35c0

          SHA256

          7edd13f59257e9354da529fbd96702f1f4ac4117932ce0791673555ff99b5ccb

          SHA512

          e33ee79ce42216ccef1a748547af4cdd822e74419f3b2f09a8474f891b94767a67a7af1ab383d7311a87660a99a4013b09d0cde52b526bc8de690db6832beccd

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          478028068db70474d973721b3da24418

          SHA1

          d9d3cc3bc694765cef512cb252edc41a3bd87adf

          SHA256

          5bf9e7cc5c4469e5637dc1839d0b23d26dcf3c00292b3843076f7206d418c3fe

          SHA512

          8bd7bda49281e1b7689acc0b2ed5460054a504df0d7ca6791b63955c66d2e73e0b902d41bc1965e8638acd2cff2c06fd11c6a57891e904164a0cba0b7ed05dcc

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          bf0582e6144a9495782661b1ccee8ca3

          SHA1

          49d151a2357ad92a41215a25e3d96b7713497f36

          SHA256

          bf7cc6a621abbf3d8bd78c4f01e2eac3cfb56d756f26a219e0d8d81cebfef1c1

          SHA512

          8473bac99a1f113aa69315ed2d8fc89398992a0d71cadab330ce356de2542d52c70923e49a916b6317505de231af3a97618e438fbf6a6c630ad84856d7ac6bf0

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\CabBA8A.tmp
          Filesize

          70KB

          MD5

          49aebf8cbd62d92ac215b2923fb1b9f5

          SHA1

          1723be06719828dda65ad804298d0431f6aff976

          SHA256

          b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

          SHA512

          bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\TarBB2A.tmp
          Filesize

          181KB

          MD5

          4ea6026cf93ec6338144661bf1202cd1

          SHA1

          a1dec9044f750ad887935a01430bf49322fbdcb7

          SHA256

          8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

          SHA512

          6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

          Download Submit