Overview

overview

3

Static

static

1

3e00c86b4f...8.html

windows7-x64

3

3e00c86b4f...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    143s
  • max time network
    121s
  • platform
    windows7_x64
  • resource
    win7-20240903-en
  • resource tags

    arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
  • submitted
    13-10-2024 05:16

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    3e00c86b4f80a88ac25e8322f8b58878_JaffaCakes118.html

  • Size

    23KB

  • MD5

    3e00c86b4f80a88ac25e8322f8b58878

  • SHA1

    27a0a47ad9ca392e55234f156851cd6e22233fbf

  • SHA256

    2f3f922c4d5dd7b978aebbe83038dda59b45c3d717cde528fe61c34fb02f1805

  • SHA512

    daa9996d13951336239929bc8cb536aa5be84701da1f310a7499aa2fa3083fe69190a5eef8ee6d495f52973a4ded83d467802982d84f04e4e7d62412a464a729

  • SSDEEP

    384:SIV3CsxHY4yNeeCs1SQgHw27ECJVkTwOz1yvYoegXb:Sq35p3ybRMhE8kLpkYoe4

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 41 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\3e00c86b4f80a88ac25e8322f8b58878_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2356
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2356 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2504

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    a2078d95ccd86a5fbec9cb2c4443e03d

    SHA1

    d2a691224d29f1aa54f13de7095c3635637018df

    SHA256

    5057afe2dc0f3a3975ef0944a248de623787f73f369dc4ce6c3f7134bc460967

    SHA512

    c3eb91b5c4a04c53e253c615db4faa95dd93da0d3c219732a8102c9bc7b0695a95036c8601e1e7347b0218e75101f2e4c3da49aa9ac0aff0b1d26ede5c3d3160

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    fc749ac3abc81dcbd19eb091ee0700cd

    SHA1

    a0da0205515ef1516f0bedac580b6f3a095c2149

    SHA256

    ae591ec332f9aab21f29fa5ea6b496f7bea0d2d0124a5d6f595f0dd2edf3a317

    SHA512

    c386ba05789bef6636dac4ecd0f185189a50d5b241601d2cc9b00dd02429099f3698d9ff6eae647415954ed821f98ad8ad8f1efbce0c87e66f8544d3a39ea21a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    ba01dc947154d692686c4a213c8b8a8c

    SHA1

    47a25169b8b551bdd4ba287e5a9fe7b234991d78

    SHA256

    0bbe90e7537b20e96bccc27937543e5aefd290135eeccd75b53238fa1489e1a5

    SHA512

    3906fb40abf16ece7a46ad05ce9b6b720fbab8abe877df5a190cc8624249ce5bfd73faa656a8a1db6fcf90ea584babc827669380c9ebdf40399b4b360dd78bcd

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    bbc0f3cbf0cd741d16e8ff6ff517efb2

    SHA1

    7b5b3b2e3d5320ee8ea4bca1daacd7936fb3eef0

    SHA256

    7672740aff3bb1dd573b27dda97cae739bf654694a5de453e571256d4a8562e1

    SHA512

    ae41a6d5e5ad7b8770bc8cd69a597059516b08dec79b48b1298e249720be014c9584bdfa793156fea48ad00db1c5790c10204493a99e0ef925a346483b7e32f3

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    fec488ab4fb18061bb0c4cdaede674af

    SHA1

    15f8a40ad5e21c8b563c667cd1b1b5e5aa2361d5

    SHA256

    709300194a88393f33d82f933c14485c61b4c8d9defe2ed77781d50253cd1d8a

    SHA512

    f0f7d4a2ca75e1c424fb6bc2b2da24bd8997d36580d3f14851be12b69be18452d754ad4afd8da2729f5ed008abc21a830c45ee999282fac931da55b6eddbc67a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    4f80583299b12bdb03e47c7418eca497

    SHA1

    1a4213c52a554b094764d80c7526d292285dfc82

    SHA256

    eb0e1e66bda8e69013d06a3e8e5dab0fb3726aceae36560e2a2bd8acd1f21e24

    SHA512

    ef22670ce4539dbb5f7d45e526220e2dde2eb641b39051ea8918cfdeaa6d272405dc3dde0f14434aa3460a4962ad4678d7cf6f416b14f36802c781a9aeb95d4a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    c67417198cdba2a4c982fdb59dbefacb

    SHA1

    bb0720a21cbd7852e8427753394fc73c9adcaca5

    SHA256

    6c99bc1138e11a55ee1ccc0dd51f319b49acd1b9d5d376270c8f0691c469c610

    SHA512

    03e96d4699b4b75b80a35238a8b5ce2d77fc0356975a74271aa18300862e876cc23cfb6124d4155a0515b108b01a422bc65268402cae70d059606f54969ad6b0

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    c3d3ad6a25c5861eb34775d2ab510c28

    SHA1

    e500144579148b9490d963a26d5d2eaf0c41b68c

    SHA256

    7b68882b9bc6898d9e3a621dbf373f4203e1a5b7e1fcaf5cdd25262b32aaa516

    SHA512

    667632c98a49d51b6fa7dfe4722122c8cea45f16b277289ca480806caa1aa65f8292638bf6579ddc046716db933c701e6013b8dab97dc251bda7a6d96870599f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    e7932cf9e92a4fce97a01aa94c97f7c9

    SHA1

    a4694d9110a863ff42a39cf69cfdd5fa243c282b

    SHA256

    237e3e5147d1c8c575b3c88447646da6d519227ae1ab1582d8abc6a680f3d30a

    SHA512

    c177c4aa7eed740701f746a740d5406551fed2060a13fb9f72391c999a6eb167cbe45e71fb1018b3962f537a1eb2a0d2ce9c05977c74b762e47eb1bed8f4d3d9

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    6efbed92ec522cb44f091e30dc7e4bfc

    SHA1

    eaa1248b68553b6a98359642cc24f8059624d5c9

    SHA256

    7c3ab84c61578e9d4337cf2c8072581510829e9cc11f9674ae33d7ad90e40323

    SHA512

    3f9c5688b6c77a3033684712bf71fe4f232b2ae26944ec365f394f8912e2c27dff211571acada461c1b1ecbd74f8c55b1ab3c472aee6a1bf970d0e3cffa7c665

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    34b20619e73df99eb29324bcef803803

    SHA1

    a7eb343bc265e54807e212312143b5c1a8ede001

    SHA256

    ebd35cac2c73d65a24380fec9c29ddbc7fabf6d950eac6a88a928f4d3e99f45f

    SHA512

    de39069e05004f279c6e19bdbb07b1d328204c9542c372be01bf505bfa51abe65258324ed1c7bbe795034a1214942f7fe3a2c3043d172dd6b1b4453fddf4a25f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    58daf94a7038263ff8a13b7ea7f35a00

    SHA1

    048bbb62484bf61711574f64b0f5afbfcb67f8cd

    SHA256

    81fdd35fb75a44ea5a847b62a3fca4ec2551b3f9c616e7e892db3fc0ceadca48

    SHA512

    22de1f81cc9b9e6815c52a743e701c86c0f80b0d729a027c7d98518c882d8678afeed7363f333a96bd95a8b1c1d0148ddc1a2012a46a97953548f8eedf1de471

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    01741f0d81067703863762695e7923fb

    SHA1

    7d859c003f5315e5095ad73eac570cc98d10643b

    SHA256

    fc2f8fbe917c4c85ee7f62c1978e371f5d5b5e0247ef010a2275af7679bc37e9

    SHA512

    0393dbc7b8c57e0bc477ba2d34451876516c02227137ce780b9cd53727a43b2b2c43214e645c6fa92298fe9fc0a30528a4cb5f9a85a90aeb214ccf59037e4391

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    f0f62e09a795d797ecc1172e54c5a38e

    SHA1

    f27a6cd186d0fd2da96abab1f7facd9bc926e2ae

    SHA256

    9e567d6159f5782b1eea5d0f77e8463dee8cf03cfaaf2016733fb4c567faa322

    SHA512

    845c0bd89515e531ec56f68b42de971a7ed5aede518966b8eacfff196b0454d82decc3c7c7cbb7fe36caa4bca23ec7c410164214002da0adba3316c5d3eb0101

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    8290b4ab544edaf6e96baf2e12eee0bd

    SHA1

    2299c6a6b81cfeaf7952b07f3e1a7f4d1715bccf

    SHA256

    fb584c02408a7447a272cebbede94ce1187868b26579c4525a68f7840122edc9

    SHA512

    e97e6fd4f0d0999bc77b065bf372413dbb9c444f6f04be2fd615eead47e78257c6f9adcadcda9b4f56e959f6abcc82d56c9c90693aca2ea10675d9f7c270aa0d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    277ceb919114cda6bf5b920b4e568e78

    SHA1

    ed896fa5dc08ac0b594b004a6a24ecf1a17d71bf

    SHA256

    20d3b071b97a315ba1da08449545bc3a67adae5c728a38f2ff305084925fb90f

    SHA512

    e94292fa8f21d0d2190b81cee3864d0478109513c02b3db36d53ceeab3f54daa74c4b5a6bcd11fe57fb3a7036af9b37671f77541fa79436c3dbad37f727f16c0

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    699696fdcdcb103aabbfc81630955e0e

    SHA1

    574c76d72c61cd4852fcec58702e6636c8ae44ca

    SHA256

    e3b4ce7ed4550836856aac9952dea422fa619f2fe0c0ee4a316cf713164730e0

    SHA512

    ce1fb4791e780f2b08a6d0ca524ba3497d1a9fb07d054646d19b376b97f484f77d4c47c42eafa5c64d9b79146d1358fb07913f88c8221509c7d69951b3f54b7f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    8e2f12661ddb77682b94f33426f6e6b0

    SHA1

    d90b9ebbcdbde6625bb6543abb7844323edd2f2f

    SHA256

    f187b469af533c50ff8b7ac315c18d0d468c956b5a36b1813c442a0486936098

    SHA512

    ca60c9b6d01471eb1704e1f339ce1dcb2f430aadcd1bbb0e7db08eba418e2981720eef1c13e4b386995445356ee692e0a8d1337570e8aff62ae05e21bd352f20

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabC322.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarC3F0.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit