Overview

overview

3

Static

static

1

3d12807d51...8.html

windows7-x64

3

3d12807d51...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    144s
  • max time network
    146s
  • platform
    windows7_x64
  • resource
    win7-20240903-en
  • resource tags

    arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
  • submitted
    13/10/2024, 01:29

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    3d12807d5191816020bec45889649641_JaffaCakes118.html

  • Size

    50KB

  • MD5

    3d12807d5191816020bec45889649641

  • SHA1

    ef00e905fae638179327b6839408bc1c448eeaa6

  • SHA256

    b2295a114993a450a7279f49a8e115c124df1a5fce8b1c47b600eb69f85839c0

  • SHA512

    aecfb80cdda9ea8eea41a2432e251cd8bdd425768bf03040e3403bd5621d609ed398dbc96d256f355a78d5635468d6d602703715af7062f6ea529f19a49d6d16

  • SSDEEP

    1536:d6p2bpCaBqShbGhZMlvQo8JLwDN9Ufg4qZ9ag4BV/aVVDuKJ:3pxiMlvQotq/a1

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\3d12807d5191816020bec45889649641_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1872
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1872 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2840

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\070E0202839D9D67350CD2613E78E416
    Filesize

    1KB

    MD5

    55540a230bdab55187a841cfe1aa1545

    SHA1

    363e4734f757bdeb89868efe94907774a327695e

    SHA256

    d73494e3446b02167573b3cde3ae1c8584ac26e15e45ac3ec0326708425d90fb

    SHA512

    c899cb1d31d3214fd9dc8626a55e40580d3b2224bf34310c2abd85d0f63e2dedaeae57832f048c2f500cb2cbf83683fcb14139af3f0b5251606076cdb4689c54

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\3C428B1A3E5F57D887EC4B864FAC5DCC
    Filesize

    914B

    MD5

    e4a68ac854ac5242460afd72481b2a44

    SHA1

    df3c24f9bfd666761b268073fe06d1cc8d4f82a4

    SHA256

    cb3ccbb76031e5e0138f8dd39a23f9de47ffc35e43c1144cea27d46a5ab1cb5f

    SHA512

    5622207e1ba285f172756f6019af92ac808ed63286e24dfecc1e79873fb5d140f1ceb7133f2476e89a5f75f711f9813a9fbb8fd5287f64adfdcc53b864f9bdc5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\F0ACCF77CDCBFF39F6191887F6D2D357
    Filesize

    1KB

    MD5

    a266bb7dcc38a562631361bbf61dd11b

    SHA1

    3b1efd3a66ea28b16697394703a72ca340a05bd5

    SHA256

    df545bf919a2439c36983b54cdfc903dfa4f37d3996d8d84b4c31eec6f3c163e

    SHA512

    0da8ef4f8f6ed3d16d2bc8eb816b9e6e1345dfe2d91160196c47e6149a1d6aedaafadcefd66acdea7f72dcf0832770192ceac15b0c559c4ccc2c0e5581d5aefc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\3C428B1A3E5F57D887EC4B864FAC5DCC
    Filesize

    252B

    MD5

    abf0aaa0eb4650506b30e8d3b8fa9107

    SHA1

    4bfee88543ec7f2b234a573a62dc8896895bcecd

    SHA256

    91def452642afdef410509f0bd3e1b65f7dd92e059edaa1d017ec43f8340fc3d

    SHA512

    27acec28ed334661ad0dc027c5efb00d112356f8cde8697dfd017978cebfce1021e8b433c93b0b672661044b1970aaca907c29a5b69bb690feedb61251cc2c0b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    584770a5e2bbbe75314f68002bee63cf

    SHA1

    8113287bdda79d5aa8040dc9770e588b4e4555f0

    SHA256

    5501ae1fa044f18a3adaf9a7b478b414b46d9ea5da62e81fff78dabd533f2749

    SHA512

    57c731d9e7698f6908456725511237535b969fd58741af3b09cc5b8b52849fac5c39763c1211b7ff934efb5e43c31a53d15d04f52ddfc4a19c6551d1e695c261

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    bb2828fb2b8211787f7a866142f363bd

    SHA1

    dcea87d1f765fa5886b8ae98172609ce2dab528b

    SHA256

    c563d9165176e915367256c1a93e8a4543f969883f882b0c80b4209748a9705e

    SHA512

    73a6097ca0713b73161befdf8c4c43bde2258aed8da506bb5bf66d88adf16ec42fdb135880b6a942f018c33074385f28209f886769fd1cf2bb721465167e382c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    37edadb232a2538f497a83cb99d2e061

    SHA1

    32da956ac9a0419c84e21d08df5e40f441d92b06

    SHA256

    b8ef03614ec91653b8e8f3c925aa2fafb8b70426f1abb1704de4af2eccf0d12b

    SHA512

    2f6193f87c3e0f7859ec3260f79090ff4af672742001cfca6bf383c02218dfbae11f82797eeb342775903dd01992235463f950625ab3e88051f0be9d497d2783

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    5b48682ad3cec3d6457c625249cc0418

    SHA1

    78b52e5f645d26b1d58fa63385655ee4334f26f6

    SHA256

    958dc7d5ee57550734e71743a12669b607dc528397655e7fee21633ce3300ca7

    SHA512

    61effac7764b6a11ce4b8ab755e38bfbd77b2980eeafd513ae4e8ed357c0f17bc59f75a6a135aa7f0d04035c3f0b35a5186c2f020e5c0ce8428d28ae65b3b606

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    f2c84f2774a40d814e566027d50f3ad1

    SHA1

    5f5603342bd6e6bc6568c41c990f407d22c343e1

    SHA256

    aa61abacbd952989d7f383c165d6c2854bf41fd4661dc5d3cd5bc78336c752cc

    SHA512

    9fed725634ccf29d6d9e2c4c0e91d551238fba180792e45cffdd797531e525b7c63130ae20782be9c936540abd44fd6af21606052711fc12d0fdc8a6fbbb991d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    d3c6b8650c8a9db2ebf968d56f0a7712

    SHA1

    31613e8f39419fffb020d9c52946e5054afa63cc

    SHA256

    f67d07609489f25e19638648767233e6d658ac379bdd1ffccdc6d844e7e7c4e7

    SHA512

    42c8e019fd375bb7f0594496fb0ca257f5834afd56ac39dca3acb8d7d525857c3624c56c1e82385b3fe65e5fb22ff474a60e3bdd990a72f2b80a478ee49800d5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    1320bd7290e39f0351b32f71a6d68661

    SHA1

    9b4c5bfde9c55472c5e3605dc76b42f29d55f0dc

    SHA256

    4a6162134216a0bc2531cb60c460098238816408bb53b05abd4a73b8934c236c

    SHA512

    9a7f3710af0952e4f8207aa557fa0251f3f25bac6f7afa06638b7095a06e2241abae113acf206d07eac0b88fc3aad51f0c8eb347d73ec687a686e2c7f311a46d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    7cd2a077e08c75561fe66dd36c11327b

    SHA1

    71b9097c69a49b258b55bf08f8767aef40966ae5

    SHA256

    2e6fe64b5d6ed6879d2ead47361699c202a8df487c87b0923ff477356d99b356

    SHA512

    2bd7d68f4854118fe0b1e18179bbaf92f04985da3811fda6e53557c22078a64f0a8d202cd0dd98be9637d98b0e50c6fefca95e19de0ff3fcde27f6d25cb03a54

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    be8d2f635dca49c29fd3f70f404db6b9

    SHA1

    df256ce02649fdb7e16a7dd83e61d2884ed37ad7

    SHA256

    68c9f988aae3f629328077a8841cd6fc3a043f43b0e47b8c414834b26c4863df

    SHA512

    4bf71326454ae64f6652ecab3313215c272dfe668109c65ec855855ad554d39a0dbedb8a32715b738e8cc9c71a030ae28466add86433cdcf601f112ab3bc5265

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    03e54b5733da7c05c7ca09fbbf7e7a8d

    SHA1

    1e809d06bc0ad2f9802eb6721c1e4e890cba8a73

    SHA256

    5d434d1d5ba464b51ca81833a395098b98b78366ffb4c815fde7ba4f4df394fc

    SHA512

    21782d6f843dc4fac83d9eeddecbf23eec64d0654842bb182f5631c77c364dca443f6562ffcdf390f663afa76e31ebec4441a4b5f7da1af38e8e8ed1e21061ae

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    d4199aed42660b2a56d274aa19d1accb

    SHA1

    fbb7d1a2d64c9095bcc020241df0d58d4f595608

    SHA256

    270a55cb523ef61db6b7c41017ee0203b5ccd7630cb3a8dcd54507cbd296214c

    SHA512

    8483e9a6dd4918f9072ba582b042dec1c9582d78fe3c108eabfd807f66952acb059ca7f143961caa9afc919c37b1b9597ecce7031b1257ac17a4af929e9cd671

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    7a82ebc66aa13c7539688d040bd75f63

    SHA1

    bbcbcee2637dd82ae7ef2d8b15e158a25b77177c

    SHA256

    a962e8d31f4b2908ec37f5b0c31141da36e50f27f1979c7c725e4f42a7be1a9f

    SHA512

    2fdcf28e6dbb3ded3dd1b4e9e6ff3853b04f4e3129183b9fa9d26392d1b5ffc4e12586614f32ccc8e684df8ea28be8e4da592d6b7e54f722bc6ef547f0f9770f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    eb6411c63aed0d35fde699b09c442032

    SHA1

    3a95e2cab430c1a9e4e293d51d22ecf11bce7773

    SHA256

    cc24b5d6329b2b78913b12cf48143e87afd463075c182142658680c43e938184

    SHA512

    62539af8c648f6c47c920ea43cb96017bcb509685326ddac646d2a7d69253b3108e8a90fa94f4356f447e62c2a7bc8f95e00368f41da3257d42b4064c603212f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    19952e26fc9518f387172184adf73342

    SHA1

    6f83e1ac262a63cb96214c5bb23306e9ea6abc9d

    SHA256

    756f5434395b57c6ded7cb9ad7f928e5832d784497f596c3b289df460927d568

    SHA512

    0bb9a0f3b5a6722a245bd325f522b16078674165a1a2814869b7fb2c4c3f4ded67f0e61e18666b3fb9ba23bdcd1519ea4fd22966c89e7ce67aaf8792c34929c0

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F0ACCF77CDCBFF39F6191887F6D2D357
    Filesize

    242B

    MD5

    62bc2f298f5cde737269fd1de042f75c

    SHA1

    c044cf4ec4292fde5a131bbb7ce4b54b84d1444b

    SHA256

    0c65df4e699941783af86ddcb6bd4b65c8ec23ab16b6cdda0c75be03b0343dd5

    SHA512

    3348a024e7db6225e6e8f096fecc19ebc9ebc0c5d46b4c184d484cad0d313280c38659424ec4cc106356b24b28b248da0d452185b0171d353d06242553576adb

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F0ACCF77CDCBFF39F6191887F6D2D357
    Filesize

    242B

    MD5

    e85b1fd79415f4d36325a29b732a8a30

    SHA1

    83fae13b131aabb459873bcd5e1fb90810fa9234

    SHA256

    1b55453f5129d9c8e7fd6b215205ff2d6789bb4f6ac42419958f17341ea8baf8

    SHA512

    87c07b2151959e488b7bb3378d1d1a2df8908c748f71a43c1831a31fac9e7f7c62400fd3432ab4d90b9cc86bc2b08119034be953c7b2d0c8215da0accdac323b

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\KIYAG1MM\3ZKHTFMP.htm
    Filesize

    66KB

    MD5

    0f230fbb255788d927b881d6d532b932

    SHA1

    1244a23a5cd20c36f72f54cf1626b509a939ddb5

    SHA256

    f5e98da07a69464c55a963048391d8a3a1bfb6ac1502653439d9f2c41e8e63ad

    SHA512

    5a255cb6e2216a80db9c27e28ccb30f02a4986a5d25842eb88af1915743b925e53df136a471a1c0d9847ac97012281ccb7b83c3e7f6b72c45448532e88e13eec

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\KIYAG1MM\how-did-charlie-watts-die-rolling-stones-drummer-is-no-more-with-us[1].htm
    Filesize

    35KB

    MD5

    e75dfd0dcbf334c02664dd08d5843f7d

    SHA1

    c07747b513f7b7d74125c0a0cf8dc756f504d6f9

    SHA256

    d08ac127c9c9939bd5758fa4a978f6a1655f1a1e95d91a3838b06a2d20e5f5f7

    SHA512

    7547ffbade76993422df4bfa6bb8d098e604f1a404d0ed5d0273828013ec064947db2e39f3ec7eaf5198b56b0499c70a7aab56c387f8f673d1df11d18aa9ed2e

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\MPUI9R2R\carrie-underwood-at-2018-cmt-artists-of-the-year-in-nashville[1].htm
    Filesize

    7KB

    MD5

    071925676b4a0ec69dc3f27debde71db

    SHA1

    5dd60d2cb0b1413faba023ec592be0a2a0387f10

    SHA256

    878e1bc2dd0829f4b34467ed6afa94784abfd21a0ab04b1fb3e92d29a0644c17

    SHA512

    561deb471c783c046e786f8fc1b70d1a2c2229c28cefbb4d981518e032b9b500068cd692a8f1b56aac0f2e6e7594738a19dddfc74e5448791c413421a775ef6d

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\MPUI9R2R\pagenavi-css[1].htm
    Filesize

    5B

    MD5

    fda44910deb1a460be4ac5d56d61d837

    SHA1

    f6d0c643351580307b2eaa6a7560e76965496bc7

    SHA256

    933b971c6388d594a23fa1559825db5bec8ade2db1240aa8fc9d0c684949e8c9

    SHA512

    57dda9aa7c29f960cd7948a4e4567844d3289fa729e9e388e7f4edcbdf16bf6a94536598b4f9ff8942849f1f96bd3c00bc24a75e748a36fbf2a145f63bf904c1

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab987A.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar9948.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit