Overview

overview

3

Static

static

1

3a45e29cd9...8.html

windows7-x64

3

3a45e29cd9...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    121s
  • max time network
    128s
  • platform
    windows7_x64
  • resource
    win7-20240903-en
  • resource tags

    arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
  • submitted
    12/10/2024, 13:30

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    3a45e29cd96f97834a12eb83b4a59e16_JaffaCakes118.html

  • Size

    53KB

  • MD5

    3a45e29cd96f97834a12eb83b4a59e16

  • SHA1

    ddfd391d7bd19356f65f9711d7c4b6581f88e46f

  • SHA256

    a4a3977b7b5ab833ceb081fad30e67e0413e7e29c1eb7284ec81e3e1eace90a1

  • SHA512

    9c2736987472b4ba53c57fc86971595fa6bc69252fff90dea0255ff4c791fd46a1a0b5bc6184df25f0528b179517059c50b1a041a22e2bcd4aebf04a32bd6364

  • SSDEEP

    1536:CkgUiIakTqGivi+PyU9runlY563Nj+q5VyvR0w2AzTICbbPoK/t9M/dNwIUEDmDj:CkgUiIakTqGivi+PyU9runlY563Nj+qu

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\3a45e29cd96f97834a12eb83b4a59e16_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1880
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1880 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:1528

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          e694d29c76c591e50b082e33bcd748cc

          SHA1

          c72a1f374a108fdd45f6c7c1936d06524c6d6eff

          SHA256

          9628440c791c2cf88060270501ea1095381884c9fdda431deb5a36cf5827db01

          SHA512

          98bbdf985ab3f321eda892eb3ffc7455018a4e7ef67e744cb45017f0552e0bc7a2c4bf8db4d134bc2fff67a635bf30d43d2549218f838fb49de7e30ef4ec9f96

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          eeb7d117f38d9a545a47f05843738ecb

          SHA1

          d0431ca82d5e20624d1565b85b626f29e546b367

          SHA256

          505557c6b9fc25ddaacba00c51d5a0215cd19087b96645ac1c09d012ce7cf7fd

          SHA512

          542d1d862e589335269180c919f6277ecbe30fc3c5d4a1b50277cafbe73904b3bf11953cf5496803b487b8e80fa54aaec5b74cd299dece3f1d302452ada84026

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          d1b323b2eba0cace755e0200daca0c47

          SHA1

          ae0066ecd95cb6af588433654de1ae373e1f6e6a

          SHA256

          c8082587fcf5005f63357d1e6c372b4724c0ba317a6d7a513be725bd67c8d0a4

          SHA512

          47d40c44ae6f67aa66dac903a1381b719d8edb0f7477f11a0befb25b18b515ac4ab4b04e39b5f7d9a13be095f69ebadbe9a6317548f53b41ba15077cf0ab7664

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          a798f0398db8071e8625a69bcfef1e14

          SHA1

          62d3cc6806eb6201f43b4fa31ab368d1dd396c7e

          SHA256

          d8538d038c0c5b6602c85ce9a42f68137c1e5b22778614bb3b4e4dce5011e6c7

          SHA512

          65b8da712f57a5fd8f8c2d2a488c18a25dbe9ef40d69ea3732e92ff2989b0d5a289aca3726d11fb9a6f35aafd40a297b4db02d438e98e3ca830930d09fa4a83a

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          c028c94f37d2b8388d44f0f4920fbaf2

          SHA1

          f755fa28023ae7eb2cd3d40380890db6e959f36b

          SHA256

          685a48405590c9072d9218aa9872968b7739d0df259d070e6bf90b9a99e688dd

          SHA512

          7e8403619f3de84a679aebba270f263a918622465b15296baf0080fbb77122a2cd857baa7e8cf76eb1bf01751a056e409febf6a10dd268e5bfbc0da895a39528

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          1107066344c11d3c52f07839c9c9cd90

          SHA1

          30ca2e28bb8f5bdc12ce6ea8a6267c7890a0917e

          SHA256

          844bb959ad548c907f094be164df6405e94fc012d45fee9c9bb44cf4685d36d8

          SHA512

          706cb11ea2a88bd784c2d4bb47b998e7da51ca2aae482332f45065f255b891b564251b68daade4e9244e8d30203fb78964bf2e1b970653df00e248236b801d83

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          a7eb79be1f0b0ee22c617d600438787b

          SHA1

          1ff976b76a19acbacd7fabba37e2b714dde3e170

          SHA256

          322a6d58c146c0f47cfa4292bfa2c58cb9b4e5ebd796d7aa5aff08dc2a687bf0

          SHA512

          5185ef29aa2ac0af92c5d8c3fb255013fedaf7ef01f54ebcb2a47881f2ce4e62d89254658caad216081ed3e644a4f00dd59272081adde876f02a80aba1e75e5a

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          597389185aac647a31be53a5d2de4ee6

          SHA1

          fca5640a70777167944cc71ce0ac29ee880eb728

          SHA256

          dad1eff0c39b1e89732c85d3b622e6c00172ec8c8e73cac821f8c06faea0c153

          SHA512

          d5430f10d0865fd25a70910ce397d07e1f862bfe2e8bc0a7c7c141ca793b0fdeb73ebb282a22ee6972f156414ee9c1f103b2f1a6d7be99bfe57532af1a898aa8

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          7efdf6f10f36a3afc4baf6601224c8e2

          SHA1

          5f1182f0b93d48fc034b576712d11cfd4a11f392

          SHA256

          e29a98cad23256f84e6410d1f17b6491a61bb408b9268c2babaf7852a05d416b

          SHA512

          76012f674defe84e9fc2c29588352e583fe487ec897a7bf5bc8db400472dca003b291d2a919522c7f4f6758de852b2a4f1ab1e8d7a64b865fc9784ebca2f3360

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          8c53950f814939140d2a1ec867bf40a4

          SHA1

          914026f27b3f70df7f6563ed5de267fea9d1e3d4

          SHA256

          1a5e3cad936b1247b5f23d878a1b040970ba347e48eeb9e182512bca932642cd

          SHA512

          48f9113858632b05a5c91a8014446f59daa0b59808f1c234132d5a49fb5461eafe26a7561ffa503ae5164b0e7aecb98cc74bd3de0f22335248acbcdb8f3a208d

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          4d3828f89bea82d58b1ac68dc4d5b2cf

          SHA1

          be558c606254c557fc37bc4772d2ffecaa00be71

          SHA256

          92e33c4748c7160d30ea2ae442af4a0abf94658b58c2b4a3d1312b273d2559bf

          SHA512

          7da052a97b37b79d3c60826964a3649adb8db05974d5e14a5e4c9f38229693e4bf8a72d5d88a2a0a837d133d9f7aacfa6d9ced94698dcf9af5a30f4322384191

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          5d304574b8b8242b4289fd5ef25d37cd

          SHA1

          30c2706492799dc5bbd18fae7f8012cddb886846

          SHA256

          21b233a6e63776773e2a6c53fd8d5e6b780981e567412708994140003b66b835

          SHA512

          488ae1a6d5c61e502b73c329aa7940399455ef8b6c7a786783f13cd8fee0d9753c7663919ba04d726df4175dc751dbba0ca0dcb10060964ab85a63304b7f59e8

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          331d0921d5e77b9eb9bf86348b95f1bb

          SHA1

          c12fa239105a1796f96025edb3a960eb83654220

          SHA256

          4e5c7bcddd71b494db8a0a2d5a4848ea97233d2e49008db3287ee822256fecc5

          SHA512

          8ee2a14d278429a46de49bc37b5a8827683cc1dea1d9fa563c7064ef0685e0fd81355c9caa1cf8c5b5934e52b0a9a00da7cccf1cadc091cf2f9bd7dd0d7dfce2

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          0b20d5bbed6438a014832068c5bcec87

          SHA1

          f55f8538ab3bfc0907fb774369761d0c82e6387e

          SHA256

          4f7e3c0ec8f85dafd839243f6cfa4a30a59559ef35f2b4f3900c478e63391c52

          SHA512

          9aedfbb884500a25a6c89cd48aac41959fab751beec073666543f4e83ac1f31ae14ef92eb19ef69c173ed5e885e9b54388f1a12c53668bb8019e72cc42285700

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          9892f00116420afb498bbc339a5510c0

          SHA1

          28e4e7bfe5152117b075a614c9748d808cc7838c

          SHA256

          4cd7bb4368696bafc411a3248d6a491893807c58a1af6e39598bc65c3a228ea1

          SHA512

          038772167590556dddc3287df0f09e393a8d5ee9c9d0fcd84c330c8b73429f83b43a0e629b2506818fa058cb7952cbc261ac8735d6bdf2fa1d29e37099242157

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          f2b867acc44646be7dbbb213de49ba49

          SHA1

          83b0412c41c60876fd0d9b7e3ef927e2ec180e8e

          SHA256

          652f32eaa9e36ab70b1e90bedc8e9a5ded40101449e2b602007fd42f646ecbe6

          SHA512

          05e23048c6a8b40d827b40e81f09df691883842353e2cd26acb17a9c1c80a8801936810c89ad83ff76720a5e1f4cd29b2ae2303140188d6f06faf66fbb9fb880

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          50931cf9f5890fd0eaecefe297b1be7e

          SHA1

          6b21536e111a242b4427ce6830817255cb470801

          SHA256

          0067f65e56026bf19c5a6f0c8518e7986e18a28666b873cd6ef439c0684a8bb6

          SHA512

          7126448c586c1fe060a55700ecec93f05131df8f7aa17f59150e0e903899cbc2e2704293aa5ac0201899f5af47aecf94d01df318d8499d5133d5ec66f7a67188

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          93e0d53ca8e243d8c83c2e4e99d5b555

          SHA1

          da7f67a5f4e02bf5b1194088a8c89793aafc5268

          SHA256

          2f800ed9e175b0e27d35d4233e32215674966c01d3284aea984edc1095bbb775

          SHA512

          b1a29d7559cc8ffcb519b384a82bbc3087ba9cbea2a233a9f03ae5e1f8d43616264485529d456e891f97b06f81a53ee4cc4b2a2029f83e60467bdf18120f1f36

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          30935d42cf3e2bda3970a7473126da77

          SHA1

          0c56edd66b22c019c7f21b70d3c6d522b74a7418

          SHA256

          cd403de1904305f64fa4a50d82a580927bd2f77ddc552b41a946841be6ce1393

          SHA512

          3849e54f536abeebd9114957f987a0bc4e87dfa745940adb0fbcf44af44d1aabddee320d6943c0ec7dc287b998a285d98149b1db8358bfeaeae10d7942150f00

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          e8522daae54cd3d5ae77c357a8aada7b

          SHA1

          05a4f6c2ff680655197868b206f55c7e85b10f0c

          SHA256

          fbe5d571b73939d02f2d33b1bd28e450022bb1b1e46690835ec7d41e57389f45

          SHA512

          f270fec2dff8802edf8944dc0e19b520e727b3893eeff1582bc78e9cc9df6762ec1fa598dad03f51f43bbfd5f02768668700916f7ae7a89e082b9266affb98e4

          Download Submit

        • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\K3VL8XEP\script[1].htm
          Filesize

          706B

          MD5

          67f3a5933c17b3ab044826d3927d0ba9

          SHA1

          5957076d09bacaa6db8ddc832b4fd87ed8f05f8a

          SHA256

          97e800f4836b7030dd58fe6296294b7ff5ef1b5eb0e88353f230ea1608d2bb64

          SHA512

          03ba224055ffdbf32b7eea30c764dc18d66cc6d8707dc5fafab74e155b0bb3d4d691c5788b033a68f05299547297125122778fa7e3252f93e7343d918936643e

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\CabC64E.tmp
          Filesize

          70KB

          MD5

          49aebf8cbd62d92ac215b2923fb1b9f5

          SHA1

          1723be06719828dda65ad804298d0431f6aff976

          SHA256

          b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

          SHA512

          bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\TarC69F.tmp
          Filesize

          181KB

          MD5

          4ea6026cf93ec6338144661bf1202cd1

          SHA1

          a1dec9044f750ad887935a01430bf49322fbdcb7

          SHA256

          8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

          SHA512

          6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

          Download Submit