Overview

overview

3

Static

static

1

44dcc2130f...8.html

windows7-x64

3

44dcc2130f...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    148s
  • max time network
    149s
  • platform
    windows7_x64
  • resource
    win7-20240903-en
  • resource tags

    arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
  • submitted
    15/10/2024, 00:10

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    44dcc2130f5081755fcb6b6a0b5d29f9_JaffaCakes118.html

  • Size

    62KB

  • MD5

    44dcc2130f5081755fcb6b6a0b5d29f9

  • SHA1

    c8fe28db8d494495db81cc488ac79ecb01f757da

  • SHA256

    9aa876677a5aaf49a53d1f8d3e9ee49e429e30fa101d6076164851b23a874eaa

  • SHA512

    61fe3e16a71b94f65ae89b57916d9bde60746c3ac6b59e8dafbdcf50507bb46329398635fed88492fcc172e5065d8dabe09d93b96e984e540568a656b4b4ef53

  • SSDEEP

    384:SIqi/iUuLRpx4NFuJMnT7XNbP1alpvpLkLwb2pmSGfpk+ERNImGSPLMAhbyWCbEc:SI6UUxCSMT7XNxbQ7fsLMpIc

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 41 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\44dcc2130f5081755fcb6b6a0b5d29f9_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2196
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2196 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2784

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    a3ae9f74bfa55eddbe4c89c8fbcc9066

    SHA1

    27f9e9aebefff510a0f5e960df21c277d6c3c3c4

    SHA256

    4afd0401c97dd7078321964541bbed014ec72edcc0661a60a02c9d24aa274da0

    SHA512

    371dd804addae9f7d1353f29472da6a79749b129395291f278f48fedb15c15c6da33fe5ef07231492a05e3cb0bce9a743b9587bdf99f0690e7cb15cac85cd2be

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    29bb76fe8bd1c2505243b45fe5d3dc1d

    SHA1

    fe10de4c12302ec8ce1bf1ce5f7c15530bf45c74

    SHA256

    bda4485fe9020a6df834df84a235df76999430ed24b38809763fe008635df040

    SHA512

    664fb2730d10764436b6f2b74ca0ae47cf9a4f990d2651eb0602ad8acee137e29cad9e7e8c506e61281483a5a5e3e893c5bfe7327c66ff537608d23f0aaccad3

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    dbcb518d8b0dd702343d4ba41cb946df

    SHA1

    d9bad5afc0cb49e3bbadce79e2ebf6c0113f7d72

    SHA256

    829f2fa0dba552cd82934b742c406e26c8eb3b2631be6eb36e6be005b56e2712

    SHA512

    f203871e21fbe57a0d9bbf257cbaa99790885884aebb4277113ef92642be99bd256c3caef30e42a87f46fa7080cb7588fcf13f11c873c3f0fa71a8b58747990d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    d8ffeeb04aeaee1f0fe36251aea912fd

    SHA1

    527e1b073b4e12bc31036efa92f0a5641c40c533

    SHA256

    2d11fe0de66592800c4315388f0792a018c43d6dd8dec478a9e9c4674f7a8978

    SHA512

    31c07a348328f607fccb7b7fe41b3cb82e0d05305a2cae1da7ea137e416d57a6951883214ca055a3b54dd82540a7e2ef21eef1a7578b04feab14e9608d780f0c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    ed71f864b863efbcc8790a802e9c8be6

    SHA1

    39a3178ef40f230cc6e91ece8599b79f8018cdfd

    SHA256

    ff504d74bffa2f288bc41c049b7337614dc50af98019ca92755bffb63c56bd91

    SHA512

    9fb4606bdcc6d926638465ca7f82cb6ff6fa525015ad28f9fd3837654a7b7ad5833feb948d52c233123db30afe6228a41c7439214d0dd6532647bd13a8071ec1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    eb61c980b87d8fe54d9b27b2c09bbde5

    SHA1

    fbd267ba575cfe636dcd9e587ed1b32729faf8fb

    SHA256

    b1facd4372f550a95f5d1cc3ae5191ee98b1e34ba83bedda1bb943216a25d1bf

    SHA512

    4bab3e66290e2d121861d9b0da5586ca258dab169611e856a3bea74bcc869e41dd72ff713ea133680539840f13898dc65758844c923cdd208d33c7e3c877a700

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    a805a697794666ca4807bf607238a807

    SHA1

    491e123f8c7b9cd5a52abe7d3a684118ecfebab2

    SHA256

    6710416608044716f1a883d358926c0b2b791eccb4e2ce35b58d05730d384766

    SHA512

    20e0d191cd0e558a602c8f556e6e807ab476504097fe471f814a2a38585b43646ab850b7c29d946fffd6f3266650d24fb7b69776be54d5ee79155e91a78c1ae2

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    096570a07426ae440378c00e3ac322a0

    SHA1

    c47cae77fe1b4b08f87fb35997333b135ee086c3

    SHA256

    7397653500d01a31040747a5990d16a72a4f238934f848572e07a39c3738f823

    SHA512

    4b18fc8e32aeb25ebd5eae35db6dc8c01aaaeb09c89b29543971e9851819e38bd6eb6eefa16d1b9a7557a5ab2947cf0de1e546fc26904a2b6377f25a31a120ac

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    d30efc005e11210e21a077ddb66ba8f1

    SHA1

    6387d0810659e49bebc04ecc4cfb8e172a4cd666

    SHA256

    9f96b70e226cc2b452363d2cfedce00c798e2510ff98e627e55456f0146545e0

    SHA512

    a1b01fc508de27384797efb2bc66271fa47e10c6e2ef511482dccb985e1da5571c6e6ab3d87c24ac78a9eb76438020ca18c5560f31d9c2a4cd8a9c7dbbd9bb4f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    053e66f0a8f9724c01d03db3f50820e3

    SHA1

    dec13fb85d4a7796cf2bf9ad1091133db9ba1023

    SHA256

    e19177253a8790f64801d02ba164a2f5c1819958d1500028939b46fe95e4038b

    SHA512

    8880699039fec68e3c1200dce8405cc830492837753c602f4de61cd1fae16e9f46f245c57fd9a0aa59fb4dc12e9088c41a6518e5386fd62bf668148095d65b2a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    124c32ce60ba73cae92de2ddeb80b5ca

    SHA1

    64bdb7e91143b26564e87bef44e3145368706839

    SHA256

    9df2f886a08f1b6799620fa8e761843d5821372ae259cf45b15a70bfe072102b

    SHA512

    e727e83b1e1fc7d9e6ffe52b281acb9fabf8830968045e5825d44fb40ed9a8658528ccda2d37ab472bff88dfe814a864c3e021504585f739aaeece90bc2d4d98

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    561cea9e1a6a5bd05612a2164da798a5

    SHA1

    18ffbd214c8a896add2189c04d075fe00dd6a334

    SHA256

    673af9a1bfc16e71675fc6c97b4130b32560a96375808ea2c21ffd43db252dba

    SHA512

    11ac1aa3b3a8ef5db11fd7c89f1544c830e1475dc35874ea0abb5aa5ca98dca1f78ef1a3412f383c9895d33c8325cd6beecebacada8116203bcfa625083f85e7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    2884b14f3c7e55ac8b135c5a2159d34e

    SHA1

    75753a09de19d285ec7a8ce779f57fb3a5e7d11e

    SHA256

    9cd4b55e71c5adaf4963a4f22b62955a11d03f8be0401db6c9383fb75e9665c1

    SHA512

    3acea275192a9c255ff0361dc87e7ef20e343ed6eea89b396e39bf24c390be88936f51ed3a812c74fa8e5cfdfcf1cfbb835a3609dd66508a5947d4e7ddb6a19c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    00fd94c17660bb77fcc5c408a8151bcc

    SHA1

    4b6de8ef99a8e67a492bd37ebb73183624a33693

    SHA256

    7c79d3d037449ecaa78002565e86d54ad184489c11cb56877ace97f8b68a3aef

    SHA512

    fd9a5868e19e2065a4ae6b1ad8926deb224c44d2bcb469be183fa27894f2f5870e0c2bed5299aa90161e48b66af7328161cb1740f5ec99d1b3d26309ccbfe666

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    339a3423c5507ff7873c53167bd35b76

    SHA1

    df15c2764f42b4e832a749ff908728b8d874cf63

    SHA256

    0583e7a0b9ad25740ecc1ce58f769d97f781a58e4eadc7350fbc1a6081cfd46f

    SHA512

    b283396fde443c64d1c476ccbb78473a5916817957bde92c200936d3c0277d5abab79d38a4447f3ab9142da6276b0e36710f729acca6ce22384d6a5f151315ed

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    87387ca2551f7fe8e08e81e9338844f4

    SHA1

    481950fade7f07169efcdb888805963156ab9ded

    SHA256

    83daf52f8ddcbf3370b926fcaf41f77711430c055b606f5783423694656cc1fb

    SHA512

    da89f17c053fef30cd8e41488df3261260ac97da0924fe682c1f2cea1eee0aa679230e388aa2765629569aae24576034efd39d08faf8c8db6c7d4a7070b8577f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    622a2208f095634483c38ed213ce5b52

    SHA1

    3d80b67c15eda767d47073f2d7e19351e56c7f32

    SHA256

    9adafd7783d51ae1de13083a76976ad063ed00b60166b0deb1e7676c7280fe7e

    SHA512

    910115345ce8e0f0f7dc56ce9f89f8ac33693a2131ac4c47d2d908d8f63cc1d2c62aac04326c729a9498e033698df0201800160144cd10642864e89f1cdd454a

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab7669.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar76CB.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit