Overview

overview

3

Static

static

1

3ea6915b93...8.html

windows7-x64

3

3ea6915b93...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    119s
  • max time network
    127s
  • platform
    windows7_x64
  • resource
    win7-20240729-en
  • resource tags

    arch:x64arch:x86image:win7-20240729-enlocale:en-usos:windows7-x64system
  • submitted
    13-10-2024 07:49

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    3ea6915b939f23b7a280bd4f11ac326e_JaffaCakes118.html

  • Size

    40KB

  • MD5

    3ea6915b939f23b7a280bd4f11ac326e

  • SHA1

    cc094ec6e2395c57f47d7021669b8a1529cb5e59

  • SHA256

    af7b97b972cbf593a62ee410d14cc3840f7cc6657fc6f89032c7803d3da0a289

  • SHA512

    bf9463c36eddf75b6567aa5206f7d6a2df7cf89934c38de2030723a45d147f0e4d26cfe5ad3f70ff8602a0d722022f60b787b57d0f18a169f07f4f61b580a22d

  • SSDEEP

    768:fswWJABhPQK+PGlP6Sn/NMz5L9D/loxPS/3K7NcPwdJk+KclOZpih:fFWOBV+PGbnVMzt9D/loFS/3K7NcPwdr

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 41 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\3ea6915b939f23b7a280bd4f11ac326e_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2848
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2848 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2696

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    37ceda0616c21f2bb9245cec7191dd2e

    SHA1

    efa01a0b31093bf9093f6b2145ed393b5a4b4524

    SHA256

    4d1325013876a8c34adf6d96920039468dd683439f74d6239a777f674ec3d2a4

    SHA512

    bbb5c21d453a063699cb25e9098f057448fa75d25c306315cc7ff904e34abeaa419c0a3d95d2f3c1dc6c0a063850f0abf614fec1defcabede07be329fb5d93e4

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    aea95f69d8a346ce2ecde81ce929795d

    SHA1

    163a19079ef3c1f69b68b55a0fdf8332bf217796

    SHA256

    f9bcb5095132748e0ce3588f4530017071f8ff23335f65375abdceaf8b392a47

    SHA512

    e0fb94c22326e51a977b9b8168a62ae6040e46e7cadd2d68e9cca20411363066dad07c94501a4fb05cb9da058c20aeec936a8600375a440807f63c15d7d2f9cc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    dc30e7dd21ad98a331d50f36b43459e6

    SHA1

    e059fba0d7fffb8b0bf3bb859d24c64462d6d4ba

    SHA256

    bae9fd67a3f6ae1530c1bf5d98d0b9811ba9920398aa1f998bbbd813315f430b

    SHA512

    b20025b021b1269f6bba2c6ff37214e21e8d3635a75a51a27eff19b2196802d42a1c9e2f8cf0a592b90ce142d07ba0da4196330e2dd9151862d901d56161544a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    4f88f12d2b30293ec5b74bb971e513d4

    SHA1

    a32f24da9a53579be2736baddc17d996e630c537

    SHA256

    f8d9dfe6fdf954b7ffede3e3c653b613c02a4fb752b5625a346244f6db8fc267

    SHA512

    4feb33878c02997ec7bc0e149881947732c14ac3b24d67e2be44bbcc906d8364d2f915e0f90ad40b2e2519794457be71cc1fd01ddf932f87c98cb1b977b6acf2

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    c93d85fae77adf8fdd8d9bfbfd66072b

    SHA1

    89a4ff37155bb08457d591b2eca5f6ade633b395

    SHA256

    2ad87a07c85e224c22bb7d438e5c0f2c8649d6a8ebf007f7d1d32070538ce91f

    SHA512

    b3aa98f14b9e6e86ac3d086407738ca9568c86b09024435297f6d68b4ac7b6d3f1e628281826404d5f323779e435db553c110aaca762391bb5ad15001bdad506

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    0a0f402958dc591444df19fdaaa9889a

    SHA1

    da7fd4fe11bf3a2a267cdb7c447fda848c62e47e

    SHA256

    4d997e6e92f4fce4e032efbb74dacba5d5472cc3dbddc7f358352881f302d951

    SHA512

    c74187c894163ce1d43fd89dc3eabf880fd8025ebf5ef8d63990b4c3f6328e394f703b1ddf13ec242f2f68470f96d1f99f4fd4ba5922f8dcc225dc32870c05fb

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    1cb3a4689945fcfa26ebb4f46edff445

    SHA1

    f14187e806d7024dcab827dd832badb9f69f1ef1

    SHA256

    7f6cd65c048a2d03fe0faa47785216e5414a69fd6e3bca9d1573f9a5d3fc2610

    SHA512

    d103bafbb97494b0b1196c7360735d516f5c5c643adbf0ef638198a45722f07ac891ba93de48247c5c542fee2af8ea52c81c8ba348dcfa73bf6a5bb87e28b927

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    4287c60eca3d67afd55f0d1ea0743ed2

    SHA1

    051a4da630d10a811d0527fc53d4ef1fe4dbb406

    SHA256

    d5d82575edff8abb3fffb736c350af439cd5c3714d0c923c822279c58d05d7a3

    SHA512

    db446b7cdb6e497d514f124eda1200affa6fe7598c44f88202cc3f7c4c7e86281ee3ca1e834ce5d4cd0176aa9f0fcc715345fb2944e48fda544324e14ee07792

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    cdd767269af5cc3d0f0ad7b83ad90cc9

    SHA1

    8ea72ffee251a21bef5962510f42af8b79d5d6dd

    SHA256

    92c9d145a4e478fa880d5c556a57f844ab4e221d7de3eca071092dd55a83018b

    SHA512

    f39dcb7643121e85463400ef140cdd0d9f9ddd9428b6e23839533ab035d043096dde30b405e397da2adfa38ba28dd4a8e418f3aa4c4168deb98b8fb4bc9f9a15

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    b5cf25145a809d93d44e5f4c6c1d62a6

    SHA1

    9fcaa8d915fb0a6dd7f5277cd039d81d9f964bdf

    SHA256

    8f90a5b26bc41a5803383ccf59242179f7f0abb2ed782e2a5b1766c780472e6a

    SHA512

    63265239b041fe307e11f715231935a1ba4755cd22ef58ef922021d13a5770cd51055a97fe1b9b7db181ea9c124f779e07703d5021f21cd35568b84f4913f5f7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    b6846ad31301fa8e95068c54ef7b7173

    SHA1

    88b27dbac4c4e968737d818480615bd5eef583da

    SHA256

    ae58d1c2c1844a0e2fa5e3d02ffd6d0b1a9246b1e66cdd83e326d764f95af40e

    SHA512

    1ef3c0a3f7d86d1a3f24cd19197092db7e6a7d0d2bbf03de94bfd3c739bc8008c625f905db16144e88f1b56bae302e01762e3db604373b4e94bd0f9a8a1616e4

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    f8088d752d4b425c410b87220866418e

    SHA1

    67997dfae15b96859c19f88f44cd36d746efbb1b

    SHA256

    4154d15ff6f831cdb57a761a87a3ca368d2b6710dd9a6900ff3b293c6f11c1ce

    SHA512

    ad60ec4385747497060d8ee7213ad40d51c573595afaba278451c140d28cd7f79d9bf7cf67627c0efa803802bae5da89c38cc33a9e5e30c41db518cba4e1b54a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    4a205d46006977ad6aac4f744c53c3cc

    SHA1

    24d1ac88fadac25040f3e97923def4881dfebb69

    SHA256

    69a98ae194336332c8db01d2ab35cde278b7ce587568f1ed05ad0db3eb5626ed

    SHA512

    ca1140b3d2bba21b105606f40768ce62e8497af6f2744aa027123bbfe8efab348a6515d9191ad1b5098d17d66edb453fd8ecc04fe9f98ac251c679dbaebc8191

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    4346882c4913de5f83790c59325bb60d

    SHA1

    aacecb769b778631e4d8bb896d4d54d116b16c59

    SHA256

    627711660576abdc72bdb2dc02736fae4290369193fb72169d8c2d0fe49d7a05

    SHA512

    f19a4206c588d8356969e3cf0e996f90bd46e47a9577a7e3bd63528879f9e7495b9d5c6bbf920fdec2b3f354505dde00f77b2d00df48d471f5e4be67455b6683

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    17ecc4772454844537a1cb7d17f6744b

    SHA1

    7a41abef3811f10bf240f4c0511cc7c4387122ec

    SHA256

    baf9ece558a5ccf382a8f43111f0bab236560acade1baaaa401ea92f70e4d97d

    SHA512

    879cd7159329b1bece8234e568bbfb350b00f99aca40b168afc6a175cd7643474b015ca5bd38543a9ad8050294814d7dbfe6b0bec5db5ceb3fb893c2f49fac0f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    3223c12c773bbe8c9a658d4414f5bc83

    SHA1

    12a7b1e2da37c14820019912ad69b9e5df5eb387

    SHA256

    4283207ef3979f131b9d4866bda40619e55baf8081cef11574affc7eef22afd1

    SHA512

    f8ee237856fdff5f5651d83457cfe6a12ece4761a9a5d6636e261439565cec3facabcec6ff648125deb92ef64df3c0bafb8079721cc72ab1717ab5073d81810a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    63b651241ba3f91713fc3ec4d8693c88

    SHA1

    5925d8b9440261ac83d12334d4b90e85164437c1

    SHA256

    5f0092121c16d4b8b88ce2a79517cc5735caf89c49074928a457173553e0aa5d

    SHA512

    6331aa5479e65460e15dbdb499a403817a81ba8abb63fe6bddf51408e872abac97a8f681afd5f7d1ffb99e5a2ef1236e586f657fda3436839e10fe7596fd9da1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    ee74d68f761c532674d592437983af51

    SHA1

    3e7b00241c993099de2d0021a7b5ed6a47d4cd5a

    SHA256

    f26f4681c11aad3ba4e29319ee564a683704f531456b14113eb926df2ea49d77

    SHA512

    69985e83c50a5d03b70abf28b88e3b6d0e3f279691bc5ae4dc7f6c6639b487dde6be963267ae2b3d2d3e832d8a253616ed5699d5fcf504b14d97c42ac2a7dea7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    7cc5355ea4bcf64653edbacc16a3bbd9

    SHA1

    63bdd5ea5d8262c054613026d428d6dd9a7a83c1

    SHA256

    d65ce34e3b5568213d372376ffee89dedbb30a8b29d66c4d6c65d4fe71cef4cb

    SHA512

    72f6ccc873d3e17841ff5480375c552e9d8e967b9f0bba22f479cbc4f32db890bb549a352828452f5c48f8b0d9497cf6f2cd46b5b8399891adda046dacee470b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab1364.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar13D5.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit