Overview

overview

3

Static

static

1

43bd05203a...8.html

windows7-x64

3

43bd05203a...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    136s
  • max time network
    120s
  • platform
    windows7_x64
  • resource
    win7-20241010-en
  • resource tags

    arch:x64arch:x86image:win7-20241010-enlocale:en-usos:windows7-x64system
  • submitted
    14/10/2024, 19:06

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    43bd05203a46719af9969d1a81ea0d8a_JaffaCakes118.html

  • Size

    214KB

  • MD5

    43bd05203a46719af9969d1a81ea0d8a

  • SHA1

    6afa81d2e46bfc11c2e4f58a0bd76bf22edb3267

  • SHA256

    05dc2b15e8e0cdcf48a3097068968829fa74576da338757278a2a206a6882786

  • SHA512

    b6779435a2a99e1df8ff9c7af63fee463711f5d74c704b83cf456f6527020a16cdf03d3e60f6490842b20abb45274f026d31b3018aa450bc527c1b1874db837a

  • SSDEEP

    3072:FrhB9CyHxX7Be7iAvtLPbAwuBNKifXTJe:Zz9VxLY7iAVLTBQJle

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 41 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\43bd05203a46719af9969d1a81ea0d8a_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2372
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2372 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:3016

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    7ce0a21706d73be94b1c2ca66011f54b

    SHA1

    709788e09f251dc23b577c1e401d06e60a6fc11b

    SHA256

    c51491bfce0894466d784aed6f2d5ba1e98c403edcef9bd44e565878911e08c3

    SHA512

    3f3cca597f23e43ba4852f8ca88c14793d1588e294bfc3d25584924431541aee708f530bf22ee442a599dd7a441d9da42d50a8924f5612586ed2283024aea8da

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    5d0b21f33748db6359be53bcb616ac45

    SHA1

    d34ba4a2f83c402f780463d3578a619d8bbfa215

    SHA256

    a269a3ab3d035c23080754b92528b0a9c3563e767b4c3cbfebcb8cc48f4a5964

    SHA512

    daddfcaf7bb45df09497a229854a79bb7d4bac13708370bdb1e1dc16d6c185f47d7c475ec3cd2c84abb17753154a41a0a40d868a8f47ab6ec5d5712ff3a95b8d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    e80cecb61e52e9aeb5d4c73032bff902

    SHA1

    ed24217c076482cbf0f52fa150590ebedb3ad015

    SHA256

    b1ec4298eb22a2a799904448c2136a9bbdc3c95d7f74dc89ebad63ee0ae7778a

    SHA512

    666253e664bbbb9131a06404ffb9ea45d0b7aed2b82e9ae709f2e43456afd291a97d433714a50df1320d9d4d52c2c3fbc441e7825a574e99b80b1bcb47f54ede

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    52d8afd5d9511324dd85a145e6c54fe5

    SHA1

    207165f290ac33a15e35db47792a021dbb6aba2c

    SHA256

    e8812612f0f865e2a76882566b6f193cbbe2e03e8c358bd8cc0935c7b54481a9

    SHA512

    08f49b3c611d38d2e21707255328defbf872a2d45a23823e4f7cb6e782c68ba18c2854e6c966aef0754e80bc0f298d7bc9aaf5b2c1e5870d538eaa133a143570

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    b9452ef1831e73389a1ccab0746906d7

    SHA1

    4c60d39099e1a494a68c39d89b322aca89dc0ee6

    SHA256

    a3032303d4b72148380cc26d466308b79ff39b0695b3e1792d3db837f1ca1734

    SHA512

    fcbda8a8db5a3789a1eca94d606645e77e285edc632e4bc70b639228a050e6251f5d9c4555bb395ed7ab9102034d15d425dbfaaaae5264f0cb39b36c54d52b2e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    2f475d4a47528994a49ff95b17137a53

    SHA1

    ae1ec50a9d54299bcfa9357cdf6e83bc2cd86242

    SHA256

    b69325ec7de7f2086cef201a94671155d2f73af3ff784bbfe0877c9c9beb2aab

    SHA512

    eafde5a352d2fbdbe7ebfc44ccf2f490fca38fd50a7039f3b477f9aa75d8501ba68f52e9669e3650392d5982b049d50a055767981ce49260261063885101a8c4

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    b000303d72024ed3a130d0458f8b7413

    SHA1

    3ffeaee09bf9022815fa7755a299120cb5cef9ab

    SHA256

    2100577f5c863ac5d6b01ae2701761daf1aa03a4bf693867ff8572cb40346045

    SHA512

    19ca20d6ab87f4187998418005a9fceb2ff05c15e038096fb0b6fa386731be474c8b81b8e0fecbf73069bbe298b3fb07a12a125db4490dcaaffc6c5f5d8c0297

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    7d26e2d601c170ce6adfa7121ae0ead4

    SHA1

    3d1381755a6e90f1b4d4ef67ae63f3bd768f6af8

    SHA256

    4b8f3aea2c6301a57e9022d873c148f9a4739d86ddc2ec55d57ad7bdd21c1d28

    SHA512

    123a8066f598d4637657a2729d3ca690481b19e6471c199dfeecd710c9d67f1202f141ac6b1a65a1e605ae22ff50e75dcf40c6d478111fa6583ede53f1968875

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    8418be177b8054befa9fd9adc87fced0

    SHA1

    d25ba6e63fb760b1517326054e25c183e9bfa027

    SHA256

    3b50473473ed544e072ecafb5db54a5d22e14bde473295d318c010b3c89b01fe

    SHA512

    6f61e1c7bce520d362336f88a0d230edcaf5e6386cad9ca9b1b95da2a429d045550e9b0647f1a548f1af7b5e8672fca518b43301de09598cc3c81e01b0a3618c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    ad5e60a6afdc63d8949d7f8d6f34d7ba

    SHA1

    d59a5114a754662bea365b77089c018a07883401

    SHA256

    67f70c9d791f73bb2a5639cda81bceffdac44a93828f361016f7e47b13db2f5d

    SHA512

    deff18d134a5d657e90fe5e557ec87b96940b47d94f99e6e7b43c3e099760355f65c348c55c527b1023375a147ab9dd4a35633923192c82ec858a1823767c408

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    973dddd5fb63dcc8e138f7c49b759c02

    SHA1

    8bd849fbcaf163e5b67f21b977b4f34d2309af01

    SHA256

    3cd50a52364c6fd1d8677419b23f19dbbf95d8f0dd0376c1eda39f548b698bb7

    SHA512

    062527326226a3ceb73ade1bc593cbe6be9a215d66e18f1f9eb35d3e55c9ab1239e1864bbd835b5deed70d33680945998a766b10931fb70f23b006be8ae7eac4

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    61af0d3e4e492a943e209057eb582e66

    SHA1

    19ac29d6578c11b42343683a82ea5faad3ca2c43

    SHA256

    62d9379e5f4368d17f355ab12c3ab5d2ca08c0331d2827f000adcb35f18f6125

    SHA512

    a3764c6e0ef671cf07b1911231394a09099e5eae290b8f5afb69ffcc54913ff2ffbc8ab8b49e903956a5b7c55025cacec585f139f7b0b6e0be1990c332bbf5de

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    7a7fb90025523097d965b7537f999476

    SHA1

    70be2d2b747d055d702db0762cc805e87ab728f2

    SHA256

    d8fbae8d70c3651ef8ee7248fa00be2adb0e03af6f3fe976956b158d1b547194

    SHA512

    7ee53af2d523bd6ada4ff9f332e477bf3ea35e291235ffd86417fdc4f422b42a7b74d89e337ced080363deb8df284e9b6c77df19585fbd4d19989b43c032dcf2

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    1b3f0f8d96e0a9cbb265e1ec0810f549

    SHA1

    b4f67cc649a29c102e5024cfa2aadbd8517efb0e

    SHA256

    23790c0f4ae38e07235a6584df69f747b10958ef4cb07577df3a0453220b5edd

    SHA512

    357806d7ff3d8e96838ab61cbf207e391f24333b1610508ccaf301cba36b67d737c4e2374a855c7c37149f6f024012faa336560a803d7c9b4769bdd4c97803cf

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    8d10b5780f94bcf2541920bcd8600a66

    SHA1

    68a51d598ca7b546af96ea018a3270ca67ba385d

    SHA256

    603eb3aa81c4485ad3409f4c426d4e6a75e311fd3cba2bd4f1c624c488642c95

    SHA512

    d95fecb3d5be8285908546dadf99d916ac2157db3d01fedb59e6bbb58eff95b358cf087721119be0295dc45e3f7e30a55e8a782913751f57d2d0a14100665b70

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    bfeb96629bf41e937d8ac056e5f0faae

    SHA1

    f56f15363ce4c328b422f0d33ee72dea57a2dea6

    SHA256

    f030e084b7a4ef8328b6121832e6843e40e76759f83ca17895da4a4595d6f3d4

    SHA512

    f83162718ea19d4deb09a7faab5aa36c662ae0ef2930ad2de48ed5db9542440d1656f67cbfce50cb0169a48bf6f0105e0afa006657054fca20019ec2f4effb32

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    b7647ba046d37cdddd17ea5845ad2ede

    SHA1

    a26317a9f92feded7f1c512754e33e552bc0edb7

    SHA256

    bc0fd10665a588debb6326934fd768e973732d4570b45a005ffdd956f76c4fa9

    SHA512

    3ab5cdc36091efc79aaf46e08e44f10e545d0ee69d79066eddd9d33e726692329bc1d429432308c5ca309ca810b4989916b004529ebf77bb5899e3349ef4f69d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    d20b66f66050ff4f87f8c46c37dea1d9

    SHA1

    bd38190d60ac5514f74a4a597ee345d790e2956d

    SHA256

    0675a7e4ddb71a6d4e42952aee9d0ec4e6710115f0ff09d2f9e911c657b14c40

    SHA512

    e7ec144adf4acbe72e4785a64603bf2e1b2996ecf902f6f2d147fc53de39a13eb94e4ff2bdbcf086cfe019106e9028a2a5a531923dd9dafc4fa90eb711bbcdce

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    1dc5dcef706bdfa7490395b0ec30c7a7

    SHA1

    60a73faf58c10f8e38f8b2fb9f7044a13d9357ce

    SHA256

    9938d135763aac3b550884692ed34366c625a7dc5ea20621ab457678e75d5db5

    SHA512

    8853d9ee3dd13e1b6f93b06e30c301e5faaab09e7d55d57be73b93c915d5261c238a0093453519b997b55208b46447bfdd2ec8cd8b210b56b1f9780b457ecd98

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab4636.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar46D5.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit