Overview

overview

3

Static

static

1

3ad594784b...8.html

windows7-x64

3

3ad594784b...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    143s
  • max time network
    144s
  • platform
    windows7_x64
  • resource
    win7-20240903-en
  • resource tags

    arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
  • submitted
    12/10/2024, 15:45

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    3ad594784b78780609de7bbaf67e2a9a_JaffaCakes118.html

  • Size

    68KB

  • MD5

    3ad594784b78780609de7bbaf67e2a9a

  • SHA1

    29c33bd25daa61c0373bac0b629bec7aeb25fea4

  • SHA256

    a311ae920fcc27470e5b40fd748546fdcfae593fbf1b693d8f3c28a3708d34c0

  • SHA512

    5df2bac24304ff5f7b8dd41531a86fb61553f81b73566de90f24232dadb6d199dbb40153d26257f7bc4ceed968655b600d05e5eb92ca27df799159807419a824

  • SSDEEP

    768:Sl0hqGbIiP//mdvsYSgLj/DVWmTMYq8Dfr7Vq3t40MSxjfLD+PHgkyMrj3DZ+/V9:SJIk/QtnwOHgltuc+

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\3ad594784b78780609de7bbaf67e2a9a_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:944
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:944 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:108

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\05DDC6AA91765AACACDB0A5F96DF8199
    Filesize

    170B

    MD5

    18881c6c3c7019c4364d1bdce4378e1d

    SHA1

    1082479cb6abc57dbf03d248b2084e43cc5feafa

    SHA256

    cdc4fddb95b8888c95b6f0180e8ec534e8be050b4e89a7bc3e51f398c76b2e54

    SHA512

    6d1d664e28c379fa7bc0e5747425c94b1545dabc9744416e2fcadcdc4f32125efbf78c544f77a497ba205f58c540018230c217898dde72b50c00f21f27f9d1af

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    26b93bce87309b6cc415a8283fc6f292

    SHA1

    f1778ac70c84cdb7d34ad67e5f6f2259e1cc942b

    SHA256

    f307ff2e5c4129f1c89aef2e0ee03f98f5a5da3d87fce173230bb89a127fbddc

    SHA512

    950d5805bc798863abaa5de7be1231c32a789176c9f571cabe32d6c9253b1aa0e10d3da4c63b6cd80f265a868616a42eaee21ad2058f8254df20e388e2f466ad

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    377ead364bfec5bf46354be9bd420158

    SHA1

    a0dcadf15a60baed7a0f574786fb7edd803513f6

    SHA256

    607d624208506e76997bc625efa5970edd20943c14d8d280920d2da69c449376

    SHA512

    72dfc1776ac55941062692e66d4d28b5668f4618e0f35bfb22b7d266433cd1daa540a1dca6e80a0de3b03e0ec48bd6d6598a381b8c10eeeb3cc2dece98e1d46b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    ffebbe9961753906a4d865a6b70b2e59

    SHA1

    6821e94cfec0c69ee45f023d1ce013ff6f5f9e28

    SHA256

    c56f424f6ac6ca037e4642a2e2e68053009238b5bdaee34e7d016394f9e30b0f

    SHA512

    499c0ee7d6d9fe6c7ffc0171003c420d819c06d8ecba56b7fc360c1923d2f3f15f92d0bf570d5229c40ed52c3e515c77a7a918689f77f5b147fdf7c5cf9383f6

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    66a9c250f8d110a8ec889bd3bf1c456d

    SHA1

    39939807cc8a260435784a5503c9e5320ec1d38d

    SHA256

    f0913cac99bf42f1eb4cd24615536c8a44f1ee0d03a3991f749f8a3cefc4911b

    SHA512

    e007a1b1c724d2bc7df5bc119eb74b5fd2bf19c6da7a478ee26d6b1706bde56d070e1c3fce861b45ce1b1bcd241b1c2744e329d7efd2cbc7505b414c2ffad111

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    72c5667575b57d4eabebfc28b6247f13

    SHA1

    f34d341a9d90ccf338a8aeed8ee5f7e2de96b315

    SHA256

    0925939db2e49b9263133988726e82c6f900d0316e0c41972cfb7349d0c47fcb

    SHA512

    c1cc3390997989ec86d1c2b34b180f97fd7c2eca8184fae4cf851de4018f14588db84068cb149300227dac3d8f5f98cc77a1c49e67b254a01e19b15f8bda8fec

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    b37044322794d786c8b1467f1ac4d7e7

    SHA1

    14dd795eb92c60bdb6495a4a6df5045bf4b202d3

    SHA256

    395c56a98ca2274cd1a94a5d0adb1463818261784a5ad9949b6f656d13b1a5f9

    SHA512

    d7b49c57d8b590c41487ca95f08bc152a76dc17273404b6fa6aaca2a6a90503179f12ceb6f0ff9eed18146fe681dc833b0629ee6ffaf4605ffa107f168259e93

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    db9c20c2c8b6987219148fc87c18c6d0

    SHA1

    9b7f434cdb6395f61fadf7107565126d07307140

    SHA256

    6392cb4d0f748ad6827d69e8ec4d725ea08ed1bff249867229f15c33527f85f8

    SHA512

    25fbe4bb49500e5286bea85a589941b20febe7d96f1283fce8e961b1f90580cfae4a64b135b13ad70f64f34d3e0d6e7068e103a1799c77f4b9865b315da5fefa

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    58fd76be4dd5e7bd94b7e7036ef66485

    SHA1

    67f11fa8ea6833d7e4bb105d2de39d83e4b91e05

    SHA256

    00b07a203f22f3d5f9585aef88ea78bb7d9600243d8ba2ecb2fe53724d959429

    SHA512

    fbc51d5540432d6a27223f97c72a1314d60965c561b452c2ee9141c58f062c710ed1fa2813676599efb9f7c4672c1909a5b14a64e04ac8a09e3f81d53db394d0

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    fa62f7c5fe82385b2a2b4e50ad92bd57

    SHA1

    755685526b69d53ad76fd890458da1291535f54e

    SHA256

    043314ac52797d95a57d075354c096ab766568f25aa8fe56d8831018a9869088

    SHA512

    fef5fbe61e6d2fa4ee8ece46e4a8008dd3f24cae23053d153dff97d48c565c61f276bee5e0bb6a75f8b54ea0d3698ee4ab67b19e2d46a1d107fc6336ed00222d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    994e030617f2e91de71d8420e58a57d1

    SHA1

    d02ba9df19ca8db94751fde98884fff825b06202

    SHA256

    de9771dbca389a05d9a7005c0cd1c00f548e17f27e0405c3e4be157f544c9669

    SHA512

    1170998334eb6c3cd3386735888003c189dbd84b240abcc4a2ccb1cec7a40975c2000a6ad3bafc5f93d133f6048d94e8695f45dc30a3fcadb27b4d9a231d9162

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    482f409f63044d481211c5e4f61803d6

    SHA1

    09f782551aaf86e6525a43e9133ef05a9e238d53

    SHA256

    3bb18b51c3019473bd77854817fba02623678995e0cc933ead971a20c4a0d372

    SHA512

    69b2cc7743ad5a2afb10a47e107f75767e77f8b9123238276518dd5eae08a9078310d5396bd27421838cbd5e149729e00cdf345de6295ec41e2c922bd8cc2968

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    7ecda0c760ed03e9847c9f067873fd4b

    SHA1

    26ee911bfc6073da4646b1f9bfbbf979003e010b

    SHA256

    dac22d135b492230f511fd976c174bc52e8ea3e85d23d510f7247560b688f47f

    SHA512

    8f6155f9dae49e5082ce3a82a01e6b0b4f6e53edcc53f94e3e3e6d771a89c9dee404c4ea5213cbb649ae3aec2ed4d2d311d77aae72445559d7f8a8bfe5a9baf5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    20fbcf4a2a31863a1034d1519aa9952b

    SHA1

    9346a9d64d875dcd30ccc00317f44de47ba6f6d2

    SHA256

    1236e6aff3d1540f545b2602227355fdf39ec39c90476537546cf8936e02e8d5

    SHA512

    04350d21feb4a4a40d06b769aab624c193a7502739e608517dce4c059e3f884546844f5de1ddff4dcf9416360f0ad2f0e46c5d1f83829718a2addedb80cc3d71

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    6bcc0f5d2e1f632b3ff7e5a0ad0a8f2a

    SHA1

    d3c10aa70fd3e4cff07c689755a200f12b400119

    SHA256

    b711043d9e96269bc23107a51fa6b8cb7c6897ed24cc409e7acf257701a91042

    SHA512

    e1b70cad4df4604ba6432753bb92fb8033cca736bccee268fd445e3639f4767a6c1faabf89aeb43a5c88d5190a65f9636d40b919c93c380f9c0ef7ddfa54166f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    1189c6771182ec3dd3373db9a4212391

    SHA1

    65d7148c4be5179d30027141605bd74161c0d400

    SHA256

    37e008fe926488b98611c69d9224795b175fb479310a2f822de41ab4ba428dc8

    SHA512

    5958d4e392374c81aa62402bda5d6dd25343068fd0de3f21facf9132073dcead588d11f8c4a6bc4afe3c6c9a5dd9caf1a84e651bc58a5cd28a39edda5285393d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    aa930cb77bab0564f8045c390707955c

    SHA1

    a481d739c3e25a7333dadba7d46ac41ba36bc053

    SHA256

    6ace133fd8d4a3c7ffbd3a2285743fc664afc17470caf8092c8ca6ef4a2f8273

    SHA512

    a311908816234be9e70c08a909427a1621ca0a5bdea46b59e2de5dd06a342fe17355f79d3db5b7374a801dbecffe5b4fe402d967a36a395266fb09ed68f7fe99

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    74de8421c62f212c61ba4f1e0e276697

    SHA1

    efa1f8e3c3be6c810020af95509936153205e69d

    SHA256

    03ef9c6d5fa33757cb521493c0792f08221b01c14aa3d290ca02d02850d5beb4

    SHA512

    5326ff3f02c8880f57a6663810e79489f838e7c124c31feecac0d861dee7b9fd3fcf1267212e82d9fadb57e0c16b88edb0e67512d0bae4e03fbe07807b5df5a4

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    4bd987737adaf9d9526449708c2316b4

    SHA1

    d4989edde1ef3f793acb631d65dd9ae4a2f90632

    SHA256

    b466001025d7b3fbe37a82a9e51d6bebc535abce31a80c2fbb0887076488de54

    SHA512

    e8088bc094f118116407576e9b4560a3dbc885249eea9e6bd976df8c0eb6aea9493214e54a29db3ec738c500db625ada6e7d7b0c7ec17ec6762461e05f3f3804

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    ad8710f01a60b85c45a1b4ea0234a184

    SHA1

    aff225d1b39b09ab88776905972c49d59089ea69

    SHA256

    0b0ac380e1f81e3663d4219047efad2668bce7bf57fe97ac7afbd0ad766cb932

    SHA512

    70d9683d8f7b603475de16e6459c7f844140dbcc502b2567cf3e5fb44de90a3a6dcd0280db00e5759b84011554b030521b1009845edbb91d0075323ed3a43d65

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\633SXO0D\ga[1].js
    Filesize

    45KB

    MD5

    e9372f0ebbcf71f851e3d321ef2a8e5a

    SHA1

    2c7d19d1af7d97085c977d1b69dcb8b84483d87c

    SHA256

    1259ea99bd76596239bfd3102c679eb0a5052578dc526b0452f4d42f8bcdd45f

    SHA512

    c3a1c74ac968fc2fa366d9c25442162773db9af1289adfb165fc71e7750a7e62bd22f424f241730f3c2427afff8a540c214b3b97219a360a231d4875e6ddee6f

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabB05E.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarB05F.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit