Overview

overview

3

Static

static

1

404eb5181a...8.html

windows7-x64

3

404eb5181a...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    122s
  • max time network
    127s
  • platform
    windows7_x64
  • resource
    win7-20240903-en
  • resource tags

    arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
  • submitted
    13-10-2024 14:15

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    404eb5181ab8f27a9c7ccc696e1916b0_JaffaCakes118.html

  • Size

    23KB

  • MD5

    404eb5181ab8f27a9c7ccc696e1916b0

  • SHA1

    fa7c0bae607d3b0b30720acffc9afd51bc4ebc7c

  • SHA256

    b15c6fa1ef552c04fffa13c78bed8808f04f6d810cf242819fa3d10df5751b44

  • SHA512

    0bbefd31eeacf94da8b0973b6f7990b31dc422b4c973aba3c5304f122c13770abef71fb2bd9499c8f6ad14f4264abf7df7a4c1a52ba0f6a32878eb65749aabf6

  • SSDEEP

    384:gpyIPlRPMDmTkqGcZ4YiUvGjVG+t15wJSFQfVQ3z:g0IPlRPMDmTkqbaG+rqGD

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\404eb5181ab8f27a9c7ccc696e1916b0_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2308
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2308 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2456

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\3C428B1A3E5F57D887EC4B864FAC5DCC
    Filesize

    914B

    MD5

    e4a68ac854ac5242460afd72481b2a44

    SHA1

    df3c24f9bfd666761b268073fe06d1cc8d4f82a4

    SHA256

    cb3ccbb76031e5e0138f8dd39a23f9de47ffc35e43c1144cea27d46a5ab1cb5f

    SHA512

    5622207e1ba285f172756f6019af92ac808ed63286e24dfecc1e79873fb5d140f1ceb7133f2476e89a5f75f711f9813a9fbb8fd5287f64adfdcc53b864f9bdc5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\F0ACCF77CDCBFF39F6191887F6D2D357
    Filesize

    1KB

    MD5

    a266bb7dcc38a562631361bbf61dd11b

    SHA1

    3b1efd3a66ea28b16697394703a72ca340a05bd5

    SHA256

    df545bf919a2439c36983b54cdfc903dfa4f37d3996d8d84b4c31eec6f3c163e

    SHA512

    0da8ef4f8f6ed3d16d2bc8eb816b9e6e1345dfe2d91160196c47e6149a1d6aedaafadcefd66acdea7f72dcf0832770192ceac15b0c559c4ccc2c0e5581d5aefc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\3C428B1A3E5F57D887EC4B864FAC5DCC
    Filesize

    252B

    MD5

    557062e99b0132e219ff28f0b0dbec21

    SHA1

    358bfa960bdaef6a59fa2617d5dada886150771c

    SHA256

    79ca4357b93dc13259dde4ff079214da546b88c323ce87c417c28861acb2a0c4

    SHA512

    2cc296e4dbb21b2a0a7d5b6872e53e61f566efce17ff9f71d616f2245dafd3ef936faae21298c94a10a0592656d5596d2f972b4e04694b114b4f8dc74895f3a3

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    d696d4cc9e57e1f1322db2bb6930120e

    SHA1

    82094c05563e07eb0a2e24317ea008dc3e4f16e3

    SHA256

    2de0dd5efc20e673280a522f17edfba8e51dc6ec297ddee9dc5dd215e0652cb4

    SHA512

    5420eead8c6837d08f065891c088052e855e30c2857cfd93f36fcb59d821621ec8dbf2649cbcd6543a37c1a43602a8cf4458de1cee38de282f20c54fd4d50abb

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    f6ddbf423098a5c1ca1231b1b6f46345

    SHA1

    17455f370b70a2575b40c6347476456df0cc1183

    SHA256

    11488c582731d3a4973928db992667163c858da5fd0e02659ff4aa83227ca85e

    SHA512

    a098478fa8237119546d4379d35066b7af922d0c3f6de4379453b610d1b4ca879d7e59813ad2581d72a6679d6264a9f679c89848e01a250a054c268c25f70fe3

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    fa05fc678952b7bfc8c272361eb9119b

    SHA1

    ab0ef346a44a29ecbacd375eefb1a0055fd556fe

    SHA256

    1fcf0eea2c8d5e18af4fa5f09efa8b695c2f89cb56a593b6f7e4d8601f84e1d8

    SHA512

    c4bd4b92a48cfc5c25d49426a0021075b452d936f8893a01f938c68207c148dc3c799ef784fc936fd2c7d98ea4349e914955c2776ca68f9b93d0537171ddcdbd

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    4f2b6eba6c500672d5d5f01e3269f20f

    SHA1

    a3f3bea81f04a668642268bfddfc57ee70f559d7

    SHA256

    95387cea2724370b5bb6de6add207ed14f528b87530e7a87da7f5983514a9db6

    SHA512

    bb5b0ba621501b433f2bf28b8b63457d3f5141433bd9b2aba02f285dbb6f8ab230f65a0f1b6c07284972da5d6599af4a2fc9897760ccaa2be20de3201bfff1a2

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    9f7c37f181866c27ff6826e5307ac2bb

    SHA1

    8ecd3c7cd207daa1c82198499d0cedf3d13a3c84

    SHA256

    3bdc33e891b158682cc29bee4146d247e56b480d8e0548b63bd79ca5754a9f97

    SHA512

    cddcc4fca4f8e87fe248140176d3afa48c4ec3b8d81cd0edad903abe56174be04d5a36379e64a1bfe92f01128078c3993a95e660c9c7bb7cb1830a8432d788a3

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    f9dbf63974ea58bd38d210d171bf5806

    SHA1

    5579fd5535dae9fb27d939b20ec54b1335d5972a

    SHA256

    d918d82f319a072ac95a8a14c920614ccd359218dcd64347f70abf09207a9880

    SHA512

    a61874d6465fda8ed8ecc0bd2bad985567fb315359dc7f3c4db011ca2322453caa1ff6d0231d3fe272da7b8ee43936465ae060ee8da5437a46e22f782359681e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    2777839a03a3072d7276af49617c8f09

    SHA1

    77bc2f75c7f5963fe3c65efb791290d06c097cab

    SHA256

    e03c5d360aa268cabc588c1b5873d70543a3e70159b32a65ecefd0935b7fc501

    SHA512

    f86c797575cfb34f36871a3960a19f39285766341088b767c50baebf5cda6e8c463d3e657d069bc41f2856b9dd25fc1f1f276ec59ddaa7a81705b7961a5032d6

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    ca832c835e4568cc74255e19af53ef8f

    SHA1

    53c844fcfe89f7a989e6bed67c978d20b2aab85e

    SHA256

    e55c5202153185258be6b8129150d3101e169d673bd4e1ccb1f187f10d621c6a

    SHA512

    ed8f92143c692086dd26c1aa53fa9d3ea6b25b3c208fa92c460a4da04ad3817519d6231e188549414037b2b13dac301c3c94326105364a45fd90024af0ced75d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    9496f3293aed05a33d711310ba1ce605

    SHA1

    69ab256660d8126f949f585ff1867bd876701d17

    SHA256

    2c430c01b9bfc1f97a5f7d389f80b36dc3a7ae0437dd5da70fd3d405be5b4b84

    SHA512

    77a1f201e35d2038866ff100a68647462d0688f81cbd9b5f82922cabab1bf8f10a75fb43bf51f7df3283074acbbc9088c94aeb638bfa534f255a02b1566a8597

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    587c28f87f866e39dc8567212469fbcf

    SHA1

    7cb93a67c970cfca4903e0856ff60302ca861203

    SHA256

    1dee709bda4aa6c49ac454f9d0a02ed21b9c43e62d3840efa0c6905f08e19861

    SHA512

    a859900eda2f2a015c6d4fe9930771d78151992756b3679e5c619373953218453ad7e8fabcebfbac9d054176fdd140c060b33e49a61381f4a1ebea2c94745ce9

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    245e8fc140b87366b509581235c64cfe

    SHA1

    8a4d8e537aca23c6b6b0614ca2868bd009829a17

    SHA256

    e023b3e144a294ecf2348f54eed18a21771d5653a99175b6b4450c8672e730fd

    SHA512

    68b97ce054c93bdacd89ca05e340d4675d8a384bc0c141bdb9ac88cb9cfb5f405bcec5b9edacdab520e1f8af8b91daa7ad80cfd3c93551c03c1ba60e4ed5325c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    2ff4abf69981524a5a78daef72b4c19d

    SHA1

    36e95b6d242ad18b609a9cb1bfdc6ef7ed8d140c

    SHA256

    c1eddbfa0f80b4c4490e711ff4e0f07d7b8efc0bb094f76efd0598a23c685dfc

    SHA512

    f9be6f990a447473bf4820ef2484455c55498d93c5b5ca6868e32d2c670e1ba6b09334fc32e44ff927e969c76d282d5f488736a8c5ccac140a68b94c90694cca

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    0f9a23519e536cdc35d365105e7b0620

    SHA1

    30311347edf6515e684675a646a8c477024c6c6d

    SHA256

    c817fc144f7d6a6dc2206b0fb12010efdc666ba83e5a0f1910f29e1f0af3ca92

    SHA512

    da5617354a8861957f9f6bdcaf5991911b8837a4331630cb639344a63ab8b921e7b26e4f15909e3f5d443df63b71b3ae3ff564fbda624143474fffaefa72f13f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    286b681082c05cad8036a210595544b3

    SHA1

    ff97590e92f6c138c7a45df007e6ecd3d8332068

    SHA256

    089fc6d4ce4c9d6fe0a56361a8bdd278ad846bcb99198b6cb7f68e9018055378

    SHA512

    1f48243501ee3c42fe3ca758cfa7f084894c5c70f5d3a537c5cbfbdc565ca8b4e5ac4159620c4ef4d48d891eb54757b8cb9e886b7a0f408395a779adc9844733

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    bf9fbadaf938d43bd08e99537b07cd45

    SHA1

    20f8ae951143ab4647f8e8dd3d77114be0eb972b

    SHA256

    647876f827c783397b4fa31aa8d7dae257d804d9adb6d56872fe46e5a874a540

    SHA512

    7c995540619f8af318c1324754e30d1fb3ae979ace8fb634d916249a0ace4bba5835080479fe1b4c16b01979928458e34613e7c3dcc0e8fcdfaeac508a052731

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    d2deb3a190cf9ff1b692c77f6422bcd8

    SHA1

    8effd38cd759d0b72bb7824979e378805b7bbb3d

    SHA256

    c88d51a50f4f5b145a8b5bb073560f732737e698335986692c2627945cc8e43a

    SHA512

    aa72bdf8eebd2abed7e239399efbaa9de48677d8a81e86c184d835171d7ec9441762ca31207a1e228b2a4d93016365ac4c0244aee7d87a223995c9b9808774b2

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    723b3ab01952d8c8b576c4c2af5aca6c

    SHA1

    98a526ffd178a85b0189ad65157326925173aac8

    SHA256

    0370c34193d094a09cfdf9255f99eb076da43c7dc84d20b7fc5c513a4a6a845f

    SHA512

    e454ac34dad1432bfdf0df58d03ce004db30c830f4189f61d836b50100c40224ec5b3739217103adbe87293a220477aed6bb5d8c704a620835b4bfc9130fdd14

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    f3ca14cfdba224b15a2c924700a61709

    SHA1

    fb10587d091c6375c4cc1b53236c8c227b3049f8

    SHA256

    7d272191834c77d4fe21184ab5eb43eac9a8d3a2d2dbb9e1c3cb3736d02262c6

    SHA512

    3eca61f3b9d5ec24e11fa55f9967a6f5a4dc1942bea29d2161a39e16b41017f53f7c988269b70c6a33147a83258078dee636dd82dab69ac2cd1ce96e060d7e45

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    9c8e6861d711ae170d6908d61d0a6f4c

    SHA1

    1f133b90bf3852e59991c505fa1b6777ddeb1ca7

    SHA256

    ff15118bd7cc494092c314ddd28aa66b32dae071c8a0be2c5eb5a4e6cd9a48c3

    SHA512

    03689804723014dc6babbc804746d4207c5c5ee685263fa5115840791c5c839adfb73006f477c3fdb5299d55cc7fee34f2745033d7b68b9b2b2006f6817ec3a1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F0ACCF77CDCBFF39F6191887F6D2D357
    Filesize

    242B

    MD5

    ff285c625e890ccc0409f203c509ea8f

    SHA1

    8b41e325a6c780cc7f4db9f1a6f185bfdd1a8b00

    SHA256

    e41db8c7775be07cd2be07683f2a201037a3ce90ecf863867721f83d961c7044

    SHA512

    9f978282b91f403dcfe31640b159a94950a622358ee7dd26d37e1dbbc1add476054cac7a0a63dc9d4ebf60ced2781b6f786159f31210e7b5fde5bf7f6e4545ac

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\ZOGPI1N2\fr[1].htm
    Filesize

    169B

    MD5

    130d1009f10d4fb1cede97de52442d1f

    SHA1

    20a7a05cc7df967bae4e1b71f5e8f299eb556003

    SHA256

    c389e590871a87f27ad27393cf7f2947c3ede6ba1cca818cbcff4131e0d0eac4

    SHA512

    46286c2c3747acaeb770a81c8166be2b56024da2b2c95150f4333a7bf1e4a84428f295854eda425075873ac92742355b63e3a8b184335944553ba74c1818c362

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabA738.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarA73B.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit