Overview

overview

3

Static

static

1

3eb5a069b7...8.html

windows7-x64

3

3eb5a069b7...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    136s
  • max time network
    140s
  • platform
    windows7_x64
  • resource
    win7-20240708-en
  • resource tags

    arch:x64arch:x86image:win7-20240708-enlocale:en-usos:windows7-x64system
  • submitted
    13/10/2024, 08:03

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    3eb5a069b77f057b9a4fd87ebe0508d5_JaffaCakes118.html

  • Size

    21KB

  • MD5

    3eb5a069b77f057b9a4fd87ebe0508d5

  • SHA1

    2d205e0544228478816409744f4a0bf5afd67fcc

  • SHA256

    f82ad661379fcddfcec1fdff960f894abda89d43bea76f784bf37282e388633d

  • SHA512

    e999be6aaca372aa5c2963c9dcaebc41490312efe7a43cf4666b56e6964ec7149960234a0b2d4c7336a137d318c56cd05f1c3f06a63a51733d293b5d54e0c641

  • SSDEEP

    384:oWddzyXIbvI/e1e89oOc+x+n+uGjFkx7waw30f:oCbMe1eyoOc+x+n+uGjFkxX

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 42 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\3eb5a069b77f057b9a4fd87ebe0508d5_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2220
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2220 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2548

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\3C428B1A3E5F57D887EC4B864FAC5DCC
          Filesize

          914B

          MD5

          e4a68ac854ac5242460afd72481b2a44

          SHA1

          df3c24f9bfd666761b268073fe06d1cc8d4f82a4

          SHA256

          cb3ccbb76031e5e0138f8dd39a23f9de47ffc35e43c1144cea27d46a5ab1cb5f

          SHA512

          5622207e1ba285f172756f6019af92ac808ed63286e24dfecc1e79873fb5d140f1ceb7133f2476e89a5f75f711f9813a9fbb8fd5287f64adfdcc53b864f9bdc5

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\F0ACCF77CDCBFF39F6191887F6D2D357
          Filesize

          1KB

          MD5

          a266bb7dcc38a562631361bbf61dd11b

          SHA1

          3b1efd3a66ea28b16697394703a72ca340a05bd5

          SHA256

          df545bf919a2439c36983b54cdfc903dfa4f37d3996d8d84b4c31eec6f3c163e

          SHA512

          0da8ef4f8f6ed3d16d2bc8eb816b9e6e1345dfe2d91160196c47e6149a1d6aedaafadcefd66acdea7f72dcf0832770192ceac15b0c559c4ccc2c0e5581d5aefc

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\3C428B1A3E5F57D887EC4B864FAC5DCC
          Filesize

          252B

          MD5

          0055f59032b84b063260c77d7a61b8d7

          SHA1

          39807ffc335bb203bfb1a35b49d2149c50e6d91f

          SHA256

          db2acd192ab287fc2005f93582fe26a5920abc09be12c6b6cbc632e40dafc18d

          SHA512

          3372e2dfc653b111a9d65620159ca14a55637da7cc510a762f1e95bf406c5212b448a692178dc7481376785dace2e7bb305e720be7b56cc69ea1e6643ba41d4f

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          c8ac0ba7b227d3d9629340aecf425f00

          SHA1

          2a9ae5627567ccea5dea4f7ba7c1a51ea6e52044

          SHA256

          894f085e411967dbc3d627d079ed269f8fae435877b4953b45a4ea1c002564c7

          SHA512

          f05f1fc2643d49ba02d13d312d5b37905f0b457859d699f4237b517be2a22ac114cfc4fa5c8e79e56d3b92bb4ea96ed8a75331636e9ad6204200d20f02dfd8c7

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          b03419b4edb074c8a41ac0b6a8b05856

          SHA1

          662e3ccc807ca2ea9f7850ed0c70b94ea01f2446

          SHA256

          efaf21f0abbcd4b1e4971083e154b1d91b68240bc72408ead779875e1e7bee26

          SHA512

          3b05390f412c33e95432bc0b2822e9a8ef6f37d0f5b053a608aa9fd296fc6e55b57f6d545c80cdc5f8081766a0406597ebb442f68996d7e41196a531f8f6b50c

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          0af812dd916f78b4b65036ac6ced4781

          SHA1

          217e301ed97cde0f96c8042a20a1f1e6bd815702

          SHA256

          494f138cc106c7778561de2d587e17ce8d210ab1b26c17f7cbadef2a30dafc2c

          SHA512

          fd337b35fb630264f09cc8f16b771e2bd03a71968885b8de0dfb33696fe3ca45a6a9745d4b4162dc49a9c0632a333c87f0ddfe2ed67f5ebac8d9034d5f84724c

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          3b3ae920d853ec4a70a1d00f7d5b70a2

          SHA1

          cee0b0c01fb991280fae8532f15fb1901958f84f

          SHA256

          c2fcbbe235f811c6d3d9ef239821b5cd6984e965fa1e059d2248e2449f1a113d

          SHA512

          4ff81b308fb8e79becd3f263b049fbf5de1adaa7ed1a21c10a7f0718edb7dfac22c80a5661348bf0e54d22653ad83bfd7c680b45a2742b56ea9685d520c1b304

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          e33468abde1584d8df86d46aedb10980

          SHA1

          27b0c3f2c9872b479f98157f610c3dc759236a31

          SHA256

          24eeb190db55299bec91c62a54d9bdb26bb74ee5f218c879a49b01bf107a7948

          SHA512

          55fe1b63ca8fc18d73c9878ce89f7cb6eb83ae0e62f4b1d7cd7ef53c911d60a5447f3d7b23b6192738deead1981672c06a7a36dbda5183c76fcddac9d4cc3b9a

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          dd72b0083a5039d4402e8c243d2fad3e

          SHA1

          c391491011ebe3c5423c15beefb5922ed58ddb5b

          SHA256

          98ff01b6b97b17bd289ed6264fa87255fc039462eb3e2d0845e08e8c2c547108

          SHA512

          13b4eef710a0f70b496cdcd7ebe034edb9a266e97174a405f8f0b16e98605f0bb2b856737d235c8531f5f69f06059c9948286027e965091bf29807d700e2e69c

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          bbdf18e8be053bd89e13c662b372259c

          SHA1

          1093593523f999c64d05203bc2f5a87c8ac8d080

          SHA256

          f17263964fdefc1e9f0d2bb972975630d5b1f12e57803308bf474f90d01b413a

          SHA512

          d26f07ed86b35c22ca43d476bb914bd40ca85f2051bda2a1e604fcf0433c0b27932980c8f9902e02d037be2474eeea0e3f3d94847cd105b4601c59413132c38e

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          328db7d2534f44af6e04866a9b2877ff

          SHA1

          f33505708f03752170dd3d06b9962638c474f79d

          SHA256

          64ed6a08ec692b37268d00d5aa1e0b564ac5c0ffc845174d297ef8faa4718672

          SHA512

          e46813afe5ae52caf71914a1c7492c0c4ccf3e7b460eab37907a6b7615eacb83785d57c6a2b65f4e2893e484cfde4dddc0405d6ad9356c6a950885d9a6a75937

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          a8f07ada4f6cef6c5d7a2e14c9d0b1d7

          SHA1

          06b24271a96e1f5ca3da7aa6de9511c69d73d83d

          SHA256

          eff6838f2083b83011c11d451ef626eba9765e87986d2f4845cde63f6ef64495

          SHA512

          f96df827c62c1eedb22738fd9932afe6dd0825a9bff603ef5f0f9d77c040949c99508d89215816081e9df6e80c1f5b7287aac5d70cc19cdf887a4f2709e43dbf

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          b2eede1e3d01e21da53886afdfec0f61

          SHA1

          aa55068f3fcd27358a5693032074c07c404dba93

          SHA256

          43f094b957f9decc9b2636986a6a736fcfd6bc95c566e40b05c45e38ca8cc086

          SHA512

          2c2f28da502ff8496fc7c0d1e985a8a7ba9423092b833697fe04f517c4b92ffbf2ea5d0e04fa4ecdfa1806f9e62d41d85558c5b4990c8676fdfe80be5937fab6

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          5cb73525821b4909f5806387df54944f

          SHA1

          993e1d2b95cf67a4d45fd1768847e5c0c1ac2ce7

          SHA256

          bc5277f7821965d89e8905b56fdccc2b239f3f03bffc2c6981289a7b87b3cbc9

          SHA512

          76beffa9c61c9c0dbabb4bbf59ac95e42f9ad98edfe21e234e74c8e964826f7aa47062cadc7383600d0b190ee2a75792d67d62d1dcbc81616e6edc7d49ae96c2

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          e1f13f2fad4842dcb4cb4bd26c0f5014

          SHA1

          951f206cebf66a7556e3f502c8894275a7dae030

          SHA256

          ecfd3edc094ae82a0e191bfd460d4b2245aeb7d6a1e724c9b9566f2c05468275

          SHA512

          2b1b577d240076cf88a71413e822107e4e97b7891bee4f2d7d48656579cde6a7573fc1cde35884a7a6e7f158ba9bf7a08f1534700b39ec48a6353ce65100f72f

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          957df843cd72f85df54d6ea92918069a

          SHA1

          6a24557a220e9ff33142cd3866bf3cc2dbd16dfd

          SHA256

          c1f63c252b0aac3b7ac5f1a7efcb7c3fb68de5218e8062db338fbcbbc0dc97f5

          SHA512

          a8d2e21ced5d6dd0e278e2f701cba999a219289ef40e7cde8e7272e52d7c2f2654018df5ff86b1df96c496a51b197e8d2cb0c04e9226e2264a0fcd9324a76854

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          a11b02a2a69e80f1fa57bf1328ab5de0

          SHA1

          e8a2e54801d26439484f00a37eeca0b3efa02379

          SHA256

          6f84d8f7d577fbec17397d2c5b83d1d4a523a79bff4c3b5f8150074728bc1710

          SHA512

          9ec7d04f5a08fdd5e449b4ca40e60f451107df2524965d4c416f071ef6c459eace92d13ae636b5f38b56f076c26aa7a87019f33b36c09545708cb8ccbb121a23

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          a80cac0072d01e9a13ce2e6bc463d54e

          SHA1

          43d9a29569e0b5567f3575ac7387b4321cdba4e2

          SHA256

          5a18e7a4ccef2baa10fd3ebbd48003cea5a687535de40b4e70c1939c6bca5b4b

          SHA512

          1bd60f376e6d8d404946207f59682828e0bf1004ad41515c21c640861862d444a7cf1844fa469e2c2081ff4b342a92ee0fd194ecc95b06827e8519cb0c4489f9

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          a22c9e9a22a7defa6a9a97bd0aca5e5c

          SHA1

          52400f2ad30f848fbfb48fa61fd19367fcb1da90

          SHA256

          9583078f74852a51b2a6fe9821891a74f6351a288679f7fcac2bb0b778e8c43f

          SHA512

          b4d1d02e1eb615b8c374b33cb30b289a58bee70c188ee7372c151e0b8d3060b45f88fe49a115abc6c4485817b16cb03861008e4df8bd99f3fa7d4cccb2610020

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          4bc8f79ae3f34772de2d810e3693c7f7

          SHA1

          6b2087b38664f4565bd47c22fb88f73d74bfb20a

          SHA256

          58d481a7650264a875ee56a5b1beee99eb7e2c31a7609ec6af644f3f5021e5ae

          SHA512

          453033833dc59ad0b56ee70879f717a42f21e73f7a3337d2fabf6489df4315c48608ed430b81d49ab9785141355a1ed6fb42d57ba3902b41ad836dbb6b6a27c4

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          3ea9155e6e057db74d027e23f9014b56

          SHA1

          73930a7353a917fc246b68fbeb3b96f475335a11

          SHA256

          403f4bd2ad3b58a3948bc9e038a1c0d782fd9c6f023814cf27b8f8ed23a8173b

          SHA512

          29a69ba4f8b308fa6fac1df6fb40ede1c55593f656b4ea5562ef7c559c7aeb1628b3a62a46ce891d90b687661afa975ab6d3c1beef11be0319b08b418e14a07d

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          f2226a0430bf16e0a85a45c4fcd710f4

          SHA1

          64ac166d44f3f2c8ef7f3971255949d8e6a71ff1

          SHA256

          c77ecc50f86944af7a9d91afac8168ef6f9ca6df77d74e57b4966dca55feef90

          SHA512

          a4ea1fbec056ec2577d917ddb8fcddfc3ad64b32581046631d74784d10f2100c84472e465851006435296690047bde86650fe4ffae43e243db7ef662cdb9407c

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          c853467a1ff5689a0d8b03fa0400221b

          SHA1

          6a9ece8a7c14c4c246aa81f2df06b5c4f3f05a2b

          SHA256

          e970f524aa8876a2b04c2df67e338fe85a683b018d07413207b5b323a90c497d

          SHA512

          9c682831a136d26691214e2a5f54a569a097d1645f95b4e6694eae064f238d65a45fc7e1e4c12a2e7edc9901d21531c94cc3c11cc5fd70d5b6d8965854a231bb

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F0ACCF77CDCBFF39F6191887F6D2D357
          Filesize

          242B

          MD5

          f5d76f6983d940537563e7c6d07ba9c4

          SHA1

          605e9c7df9f4b8c328e11ea9ac1a74fff95e52c9

          SHA256

          0c7514053bcb96f5eca3e258cb58a25ec49d34ebf2bc13da1f8993027fa42be0

          SHA512

          5993ef101301adeb066fd06e655192fe06c3d1d14dc129a3cec34d529fc82b6bb14a6f2d86fe906f280d821bf947f9f63d2ecf64888ef66ea408b30a0bf28a12

          Download Submit

        • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\YW15VCHK\recaptcha__en[1].js
          Filesize

          546KB

          MD5

          99210e7c2195de81c0eedf98787a69b3

          SHA1

          7b26c66058385b60109aa6129c2161a399a6034d

          SHA256

          5f75bfbfbf0c7cac2c87d6ca5de0661aedc188b0900b6cef5efbaea134b53302

          SHA512

          c3198d7943b3311679d77bcffea75d7043801277bf03ac10ca20bbe424e9ae896c060c7e0ef4143e23c2a41e367917a258404fba428099316705b7252aea8a6b

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\CabD03B.tmp
          Filesize

          70KB

          MD5

          49aebf8cbd62d92ac215b2923fb1b9f5

          SHA1

          1723be06719828dda65ad804298d0431f6aff976

          SHA256

          b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

          SHA512

          bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\TarD03E.tmp
          Filesize

          181KB

          MD5

          4ea6026cf93ec6338144661bf1202cd1

          SHA1

          a1dec9044f750ad887935a01430bf49322fbdcb7

          SHA256

          8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

          SHA512

          6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

          Download Submit