Overview

overview

3

Static

static

1

4667607314...8.html

windows7-x64

3

4667607314...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    139s
  • max time network
    121s
  • platform
    windows7_x64
  • resource
    win7-20240708-en
  • resource tags

    arch:x64arch:x86image:win7-20240708-enlocale:en-usos:windows7-x64system
  • submitted
    15/10/2024, 07:06

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    46676073140a6425120ae6c12c12240c_JaffaCakes118.html

  • Size

    139KB

  • MD5

    46676073140a6425120ae6c12c12240c

  • SHA1

    3c17bb24e7ce58ca1a863d9ca5acf81b217f8d2c

  • SHA256

    153f5d4a1af0ef192036e4c505bee6e66c9428c24b74892cb0881abec333f3d8

  • SHA512

    52122f7436e962974b4ff28694d735861fdd35c75e61cc10841f3b816a56f58b013fca400597621c93fc70569dda2bb799aaa19903fd3a6ff330bec69ee91e1a

  • SSDEEP

    1536:ScR/OvBLUlbcyLi+rffMxqNisaQx4V5roEIfGJZN8qbV76EX1UP09weXA3oJrusG:ScovBLMcyfkMY+BES09JXAnyrZalI+YQ

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 41 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\46676073140a6425120ae6c12c12240c_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2528
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2528 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2420

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    65d957fc0841f73153652f966841ce7e

    SHA1

    d1367337ec3ec50928926345c85e3e7297d50dc6

    SHA256

    d83290145ca416ce37fa3d0718d9b794559fb54415f94c907d5b5cc2b49bb031

    SHA512

    819f722c10758c43908a365bf87585eb552e3f570d0ad56ab300b55d3fba41d258a748ebc499445a364b84e8e764d6c3a4a699acad8c6a82a2a230d40272a261

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    bef222e576ec934600e45fa9c7084484

    SHA1

    c33b109120d41d83114c3be5962cc9291e54402c

    SHA256

    4fcbf7bd24eadc62123505697f303da575e76b17cbd17c60b266874477068821

    SHA512

    7b898c88fc88e7d3e81f92dacaa3ea3b56dc058dba6c8b5031b523c0e955b41470840c5fd558bd6ca2167869ac7b09fa02cf1d5782468b3542011ae59069950c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    854ab4269ecfa733357c758e126c42b8

    SHA1

    e65c15b15c5813e982845a2698ae7348f12508af

    SHA256

    8b5aa3676b015db436a24d35a286a9df4794f8c455bd96dfd86a0c14db81b22c

    SHA512

    e270970d3ce21b3a657c5e7c1425fa1bcc51083644fafca7f870f4a60b3038cbef98c9590681b19bc21f12219a93e7887c60bde7c8d520f878dbb501190216b4

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    ae82643f1d4cc4ea2d0c3df8b3da958f

    SHA1

    97ccb1f1b98b2af9f8d0345718bff5afb4a26cec

    SHA256

    b37214f003d13221615d202157bdce6d4ab9fcc19f20a4c1accd759b0ef98c16

    SHA512

    83396477596b7a1f7a54c8f184f3dbf6a0b3b1e23f66da90c126417def441a09ce0b4025e0d1c48976325f2e4b2deb043274357d5969688b9baa6bb7fc28fe40

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    4d42f3597fd4b7111b435a30bdcd656a

    SHA1

    b54e974c7640874c568b21c4cdb094010d5a8d3e

    SHA256

    4990c7fb2945422b3caa899fa1f4e04b2d6023fcf260d9b913f6735d182202e3

    SHA512

    0faec12e94503e5cf15460d2ef988420d56b84f16a792501214f89c1a33f5842f689fca1db7bdd1ae6bf327f58d7afa438e70e48cfdd38959c32a17a19c2aa68

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    c071d1c6b3b66e79b5a9d2b5db45a9e8

    SHA1

    1adf6b965a0673c6eba2dfcdd069b24f9c10c722

    SHA256

    c5eff2abf4788c299bb3f8c8ad181422c050c03c904d11ca50173d67a9aa6b0d

    SHA512

    441d399c6fdfb8c09e984ba32d7339a08bea1cf30f419ec858d0abea2c6f8094cff6b98329ab9725822b862fc0b45505924f289aea40e8155720f142e6b0bf84

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    84e8b060d8dcda5065ad7b8027ef0900

    SHA1

    e758486a3ae20c5052c8b7ecbf024c1825c1f6af

    SHA256

    53838be9b46179d68cac9525b854ec4e1e47e03094e22994fb7bb3f7e978059f

    SHA512

    4c0795bffd72fb3e0e4d8058ea0c40b20e6daea24f6318985ff7f79bea761104c45fa17b8a38a30d3ada1eb4697d4e6d3f51ee456b95c728463550e1c84966f3

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    50f98990194ee506fdaf10ba228fe9f4

    SHA1

    d630508f7c6e35564e75fde15479793cbd4cc38c

    SHA256

    c5267bc21e8e3b38653faff35077ca2d70fe9b0769416e9d1414c8f8509407eb

    SHA512

    3bf7f199d96c0d4f14dd054dfeaa7df945029811dc4bb5015b760c135ec5d76c84b24d212814b77711ac4fc3e43f269e25a1b3532d65da4048bf10f20fbd74f9

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    a7abcf69a346d1fa955112943af9c78f

    SHA1

    da140a0ba9753b8a7511ae11ab4e0268355de52a

    SHA256

    3f6b0336532d15b421d2882b9c7130ecb5aa896d401a0c4bafae390f4824242a

    SHA512

    e81eaf9599501bfeee7dfc966b78f2b7490ab82fac250fb1608c9a767b0dd97eebb6657c728c8fb6d4b7b110fe3fadfe0071f3606495e4e00823ec52a625a1ec

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    2abf08e4450cd667d92c1d418de11f7b

    SHA1

    116de533e7ad6cf11ff612f1108909b80817464a

    SHA256

    acbc09e547afc8c9a220112c1f66343163785443a181712da8d2f90d2d6f3a98

    SHA512

    119d06e49dc1fd2fa38c822e3dfa2525952c50ae675d30817e5ffa13f2b2e92de1be9a4d8b07f96745825338c1571c9d5e0fdfbf58cc504ce929944a2ec953ec

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    6c27aaf2a2fb395bd7ef0c57fb6e6706

    SHA1

    bb106a492c84efe79d2f378222d94f1d7ef3559d

    SHA256

    c56bec4ebfe5cf1fa7e9c0475b713bd5cb072f82eb92d094612dfe34112bc797

    SHA512

    f315e6c81cc2f17e8e4d1f0f842f551bd0535d24c1fdb4b46f6d6f5bef2f0e41c54eb7c6a9101282de6955145cc5dd786df25539f6234d4d29bfe74e349428b6

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    eeec28600d9c71e3808bfb6837d0a227

    SHA1

    264b93f654ba85a3c6e48d4ad0da7ddacba996be

    SHA256

    e01be70168fbcbdfa09060b117f9e6711b3d38768e87bfc60cf6e0e4bc33d7d6

    SHA512

    7b8f62afb6b7389c5b54d0278db544b90a36564eedacd69c2a460183343a01fc38b68437361c73bae359a107e4ad58a30739e1837da1a7f900697f86893b50d1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    90e8d6b82d8616ded2602a0723f394a6

    SHA1

    88c24dc671a4ebf644b773a28876d75e27c55895

    SHA256

    7175da51b82377269dc8dcbb715b3c3250814cad815446f5ed22d8d059900f4f

    SHA512

    823a7a737faeee998aed890ad46d886563210a29381428a04655faaf800768449c48872a039e6db7f37f2555ac66cf6a666479f58fba6c1df0ad99f3d79b8bf0

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    bdd4df6ee586e0fd596d11c79b64c3da

    SHA1

    e89083400757d8433b14964626f8980a71e5a7b2

    SHA256

    97108aa9275b99e0dd62b6921ed2d8933e083e6f442c7f8efe77604325fe849f

    SHA512

    2c7615863d093f9fa35b84ad5b808329b5934e043b07866f9cf0af3bc154a5418bf359b9d7e9c2fdeddc750f3982e7ebd06fa3eec04922ccce991ed8bf52ed0e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    2221c94de66b9e1db817c2a08e2dc955

    SHA1

    2755798b691879f71fc545a13f2cf679f96b1daa

    SHA256

    b91d01095be14311bd07660b99d1b0e100861dfdbe1c9005d8fd5292cdca1ebe

    SHA512

    631efa23e28c5511a43d513c3eadaff7c00c55612afe6a99bbbbd20fc418c7d0b1478d5e37aa0e2327f43ea7ac4900972697eb6093020a8b83b20b906ecb0123

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    22a6c74a0cdff17868e67a98ed51ed1c

    SHA1

    1b75694b0a3914796afdd5a84013052b40a6eb00

    SHA256

    750c139d910cc3d2f8edb523645f7e254fe283513931cdd65a6d5ec3f568be4f

    SHA512

    61c5772910d40e52bef0a876ce6028aad5a3b4b9cfada541a68c5362681485593723e4635e17cd64766a955014ae0f821cd3bc361c29b7de4b38ed62c89b7a9f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    b00978b8d95617df33a2b68724ddd745

    SHA1

    5bf23df72e38c49f04a31d65ac5692561b635906

    SHA256

    b697d06281be46cbf178705baad6ecfdc11efd90c0b235cbcd771bb82191c70d

    SHA512

    0002f1db638bdef816b081eff402b614b1f4a2999a851e9cb339cb1ba1aa18d5982a2905edda6782abdbd650888fc99dd2e64f5d7745affec5c100d84cf5a260

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabC793.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarC836.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit