Analysis

  • max time kernel
    121s
  • max time network
    128s
  • platform
    windows7_x64
  • resource
    win7-20240903-en
  • resource tags

    arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
  • submitted
    13-10-2024 06:51

General

  • Target

    3e6768d9c83fc94842070f4429ebe861_JaffaCakes118.html

  • Size

    2KB

  • MD5

    3e6768d9c83fc94842070f4429ebe861

  • SHA1

    287cd18a1758658ed95a33c3049b402378d8bb10

  • SHA256

    a298645799b7f3c85f5741de26639a218ab1792a06b2331c43d2eff643b945fa

  • SHA512

    4e5e8f29a0d11ebcb646a0deac07aa5761490c43568865bd3b166781274b9d35448fddfcfd72dbd8a1b77cfe609c3b5941cc8cb7ddc8c361dfb6a0b419e9dc05

Score
3/10

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\3e6768d9c83fc94842070f4429ebe861_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2336
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2336 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2368

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    2c0f2030a284c60220617aa15c8486f1

    SHA1

    6efd9a6ba79f9da4ae190932e20d746707a253fa

    SHA256

    04461f8a8b9ea4414988ccb894fececc973bbad47082279510422c0ff05039f2

    SHA512

    68874927202bcbbec1265282ee1089f5db56020d7654cdfadf220e8b91342f6819e7f4fd82ca40f8a28fa61f32e88c6f4ec1a287daa9834e06d01f1060466bad

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    65bb479ab8c2f6004152a0033d7d7617

    SHA1

    5e6154bc33d340a26a8baf3a61b05cc7eb6b13c0

    SHA256

    bbded4989fca46b34a5b8556affce6233f8c4b0d6edf1a3e028a3d4fd21c93c9

    SHA512

    688bf73602b534fbe49e821ecd854119fefa7114845c77deb1b5e065a8e55001b7f82989a955c02540c602c87c93f84ffdc7a3f7d9de4dca703082f297e7882c

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    1243842130c8b5446235112c2f4bf06e

    SHA1

    45ef6de8cf9fd8aa286c7e9119518c2e2a420d41

    SHA256

    d1fb3b352b89228f68189093bad952c8814ffece686b65266d162ed1518c3941

    SHA512

    050ce7b7234b55ec5fff7a3752a05c0fcd1984303c0b603cda5b370d1b2be9b79ca5758d4390779c40a9cfa304386f4c86ecfc7efc60a7737da27cbc265a7128

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    0978e05d5230b9ecafc987a9dca7c08c

    SHA1

    75215fe422b62fbc3893f8867b9efb19fede9a73

    SHA256

    3581caf80c2313ef9cadaaf6bfb6833b816e5010e2da86545904245b2510981a

    SHA512

    f6728eb9d4db3a5fcd7ffd463887022c59d87e674d38355ff88598853108c4349728cb4d43e65e724d6c800118af59206b2389d6e2aa01adde2fb88e9733811e

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    9714824d6bb9e440d40e327b3ecd6efa

    SHA1

    c73c7e4128db1a9585092ac091cfab7a843e8be6

    SHA256

    15cad5967b8e688dae1f81cfa843ae470caf08ecb0f13f1dae9070f6139497f6

    SHA512

    c9af615bc2ff1584e15a4c4ab072cd7b86aacb853bf91e8a72c07b99882cf42f1939cb7fe7e8f4bc22d6e0e9f591ae3e22684f23601ff5ca0e21b3b790287650

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    d2c9002b9353e6b932ffade2cf057037

    SHA1

    383cac3cfddf97e85d8ec998856c150a8d4484cb

    SHA256

    cdea6328cae1bd3b49e8e17a194bcfc8030b91147b7bd89c1b26e08f295ab631

    SHA512

    13196187c484a7108d9d82c426acc6178997bd2bf0d37a2e0fe7ac677f0d2605f3cdf6bc167f0908346cb16f0010e98dbf32a03b01f1b9333862ce1a75e90a1e

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    0ea8db5608d380c186a72994c601b37e

    SHA1

    c5d40d7417153655f06138bc584a7c97be6e372a

    SHA256

    21f205b1ae6d47a4b1fe89a36a9f73063d91eaf3c6fc3c80c9d400029ae90f2a

    SHA512

    7ef74c5ce3e3e3247e87b781d575a56fb4a6870c345b4e96a47e4477ce13760c59b00c6a29848bbb03928eba55007cc010b11f4ca71432b8f46aae61de76508d

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    01d83fe96079fe3e6785d7853f7ff299

    SHA1

    c01fd95066a8724ed64de3fe9c61f86bd6a050b3

    SHA256

    e790b1786eb57444f225da6ba1a04246c65401cc0fa0337f4cb335dc1c4c1593

    SHA512

    6eaf444287b83b2fa5703ef9f0fcdfb5554b66fa314282ea70e263f21da934aea3245906292df677669e0e47e4f7d48ee950f0a6861025c0546142a77945dd93

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    15fc245452d50003228236a3cdaf5e55

    SHA1

    a44280952c20b27a3a1dc89639a61f1efa0fd980

    SHA256

    ea172a77279c402ba189290f9d837fa96895c8769c595a990afa2311119a5bf0

    SHA512

    245a7526dd81213b671aa2e09e8ef7497edb289a640a2df5811f115596197628977b49e53be81c886217efda98ec44b24f11850bac60771659715d907ebf8813

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    c3651634b1d8853ded66e7ba3e0e7e55

    SHA1

    ae2cfab7e8a42166866b270f4ae81e8cec609e49

    SHA256

    379ce6f469f7d5c680604dd710716470ed985677bbcfbfab6e1e44b2dfdf2887

    SHA512

    6cad63e62ac69e6c6eb0e2a9c94c157d9154652f59bf088f21420e745da376b00d91fbd5743cdb8ec7f12965f0ba9989e5597994faae2c0f478f5966b5f51436

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    9606bb22f88ba33728412bc0bf9af1f4

    SHA1

    a8249dca945a7770b5fa16a7515c13b07a1aaecc

    SHA256

    1f685107ff19bad2b0de11edbbbe00b810f541b367ca8a23c0f003e43cf3a395

    SHA512

    18fdf14eeb2788211a90813ba474232210a74687e22a9400f2ad3395651eac61adce0e0acd42a24d11c443b19df864dde58f019f2e96018fc29208acbeea5e80

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    3d45db7b17442eac7fd000056bc7bc34

    SHA1

    d636a86a1df41b5c39359324364c323b20467fc2

    SHA256

    f2e615fd02d6aeabaf59c5fa05ebe979ef229106525016d58cf3658536c5b3b1

    SHA512

    6ae312c257d877c87bcfa568c78862fa9c514fc8fd7f38968cb6f7e3c0e3fc5a25fd56550f70b5274ab502c6b87e4d40a8d32091392740726330d5d341bc6d65

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    76871d553c8a4647f248503fa2e2403a

    SHA1

    28fccbb0c8788e38f9e09a5674179bb0c87ab87a

    SHA256

    1ffdc816787776a54c1bad679e758f5a92ec3b97bd7e1ba2b81f7c3ea3284ce0

    SHA512

    49d2dad2e7d85a98fcd219537bf67a5dc030a5d206e648e21ee262ad88a0210b7d576babe3c1068ca68505ee41cbf41f76310210de2df412a3ac65e2ec5b3f67

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    0a55745a96403ca590465b6a6686bcc8

    SHA1

    be482f0a3c4dab34a3f04e57ceb208f0ab7de439

    SHA256

    30ee97139aaa968ecef9d13631022bf3dd8e86b79569b10b4733664b2fabb09e

    SHA512

    c4f075001b71849a350ce4b0d155444260e33708ec9fdabf8522dab5eba9834df79372ed9d945a878a2ffae7ec2e17181429b0e4ce4cd9dc051a1a64d8d0cdaf

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    41b7cf94781337d6a1c36d87672f47d4

    SHA1

    5ffe21118aa3e701d6f7961e7040db986d6ff474

    SHA256

    952f50e17f2252e1b249c1aa8c24df211b77d466c12f760c666312db408484cf

    SHA512

    5ce12af6e0818f4e87ce704cdffc3f8f523c47a042453e7c0695a24806452380cf42738f451aba54673589e3e96d57327593b4b33b7fe3fa6c2ebb85671b2cda

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    6b128692bb8d4465568fb322cc89405f

    SHA1

    fcd49cdd98f558cb6052c21578f266bcf572705b

    SHA256

    52de7b4447311603b281bedf53a714ec0b38c1843f99c3da66814fa1d848bc6b

    SHA512

    0b2b6bd95cfd9737754498d3e71f747cc8f13a5d14f0b4f14d6c89f9778cc7af00ea849f44b4a7cf3eded1936fed2425d30987decc44409fa49a65a1e61413bc

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    ab31c58528e0ae3cc9c5bcb5975b9912

    SHA1

    2563fbc42c82c5cd765ed0912757253864dc6828

    SHA256

    24e60f0ddcba5498da27461f3bcbdbcfe491f7b6bece5e656b625696d64a60e6

    SHA512

    8687cca9409cdbcbaed2bd0b93ae6d0f511552f727a86f14fbbbbca8f180fb84b7f0a9f00e81e03ba7c090094dd7466dab4c107b9c106725498a0c81e8ab3d05

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    6c645b102bcf8091e14f46590f39428f

    SHA1

    5781d64374ce11e220282910936a3fb1fda18801

    SHA256

    f41a54155899070199f2703141802d549d44b012c2c390e608483b60d313f331

    SHA512

    f502d4ed4b7e4c5ecbefb4a08f2ca11d21e4b17618283b32f9426ad55524ff703afd25edd7c28da7b19f639639f189ea98035293a9205a4b5308af93f2604e26

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    79c924fd79159d6c0cc8421f6d3c0804

    SHA1

    5e2d36b50254dfc582f4eb6644fd752f5cf575bf

    SHA256

    b67f25176a9eb04101b15377cbd2390506e719df9b57e47d0bcbb8b05e7ff662

    SHA512

    5b6049afe6009b11e9c5c5c5748861fc39f56466d5556bfd0517fb3c28952792370d1e379c0c569a3be272d648bdc21f744c5f33333bbb3c1d44e6584278b444

  • C:\Users\Admin\AppData\Local\Temp\CabC1DC.tmp

    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

  • C:\Users\Admin\AppData\Local\Temp\TarC26B.tmp

    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b