Overview

overview

3

Static

static

1

52656a514b...8.html

windows7-x64

3

52656a514b...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    119s
  • max time network
    127s
  • platform
    windows7_x64
  • resource
    win7-20240903-en
  • resource tags

    arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
  • submitted
    17/10/2024, 14:44

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    52656a514b66d35d06291f6169eaf239_JaffaCakes118.html

  • Size

    13KB

  • MD5

    52656a514b66d35d06291f6169eaf239

  • SHA1

    90bbdeee329b9cc8fef39a91dd70f8cd4893be2c

  • SHA256

    446661490d373b8b1961b594f29910a0a8fc1947afd16a050ce7784a23ff8352

  • SHA512

    899c69091c4a12c6ee386a56bf501c5bfe33380fe5a4c83dd1e7d635f5d7de9f7f86db2c37d009aee70c5e023aae7baec280a0efccc01d86e1c4a02b4df73f47

  • SSDEEP

    384:EjarmZM7HqXl8RIu6XvOE+eYaf7o8AuQfsbNIlmpo:EjarmZM7HqXl8RIueH+ehfU8AuQkbNWp

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\52656a514b66d35d06291f6169eaf239_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:860
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:860 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2428

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    e35a5c3ee33aeda2342e61721e150897

    SHA1

    8d5ee10c4f27e53b83f05dd183441f28663ca1f2

    SHA256

    acc2ef343719ce8bb93c431503c7aef24caaacbb68eb059fd0ee9e1bd650cdd8

    SHA512

    97eb04072f6e1a725694c2274194e8f589d915602e2c3bf24ff67a4fb4240436dc10a46a3bcb8338151a84a88b80c76a7de87afe2a35cefe2c2ae24fed5d2350

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    215bb23a3777087e512888c2765ef527

    SHA1

    9364020ad1ee58be9fc3d22e3c8de3786baf9bdc

    SHA256

    1d11499f42cbddb8e0b67281fa785ad1166fa8916270ff2a8fca7ead2f6397d5

    SHA512

    cf08f4b8527f851d074b157b929994a11287fb9669b8e0cdd519f1c91bddcc54a161f8bdb9eda81e0349684fb1dad9551ed8dac891d5c5c6691822da536e0f3e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    28a35ac459ae3068b5f9fe15ec02ef98

    SHA1

    800e4bb0d17040cefd9eb675325aae7203b98d8b

    SHA256

    41556e715bf2234dd750a8199c10ef700809d4e1fa1b158a40cb4d3d0d8c434f

    SHA512

    293d3dd72043bf6154de8a2e62ee61236a6c8d54a12a3050a612cfe9ebf09efd7090db6c48fb815e3e21455644a768022bb33a5c4464a8aceb50a6fd7ef5c5a1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    9583146f007c99babd141220ed90115b

    SHA1

    aad04c6899382bbd3b92e10592c2851ca9f54cf1

    SHA256

    b42d9a8ab72959fdd3285c9610eca8bcbba049628582c0e73953312d9b97d677

    SHA512

    51797151f2bdf980d0c6e3621932216d58609f81357e1b0c7ec01e3e16dc218573a7b9bb08f1b7cd0ff21018eea14986e95b3a2df443d589ba3fd38ca2c1fcc2

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    7f686375b3fab699e3bd9e313333914c

    SHA1

    d9938c3817d207bdbcef3ae3a05f02ae880581c3

    SHA256

    ae6406cfa0041c6bb5a00a373a74dc0b161e5aa927a7706998bd44ce20121777

    SHA512

    cd9fc0a27ff3e675415f90c8bfb5ec8e21f206c44f1e6986c15dfe56e7ca59b16f2973ffeb10f7882c0d7f747b34e4fc2eb57d1ad4862adec435047d3fc10c73

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    a2fac75824002258555508be6efa5228

    SHA1

    aaaa77dbebeba8d44a89036b4818f552dd0de2da

    SHA256

    4e8fb0d66a57770ac1218999cdd2850b3bf9e0a84f208e19cda6f7a42e405ff4

    SHA512

    5ea6c10c9c4d799b886b43c848971642dd0cc7e3e64540122390641d3265d5681fce606e3a7b7ffeb42170eff77a3c53f1de6d725944d8c531ee848ee51f1c26

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    5daa885d7ae58eb209da60250c93927a

    SHA1

    a41f5b2e573c6ee660e33dd11790d5fca6302971

    SHA256

    99ec6dc7e50c2e5294e52a1059fb86660ecd26738a03a4a6da4fc40c238abe7c

    SHA512

    9f97c10171bb2f161ffccf20a44e896760de6dc8a6576a39fa91e8a500f6c003bf2234034811c53b60f78dc0a7a87204222463a8e0fbcaffbb310f7a69b919e5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    ed4644700699576f08b400fbdf47aba0

    SHA1

    20350ae40f97bb3094d7d2220ebc650b142f68b6

    SHA256

    0a9257e9beb4692ab47804024b74a4535da074fac3b1bdfd12b4739a427ec3b3

    SHA512

    a494c5fa4c50db79b3434d71b4bb9506ec68b8edb9e7914f7be2b23a682cc49e7b228b057bd1cca850c883e92f1df1e0f90b3245e610f15445d4722a2e75cc1e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    01e3c6c214529ffb767385fc31dc9d35

    SHA1

    e7af87a885beaa6583df7f39c15ce3a970cbc722

    SHA256

    9f7b9e620594e9b483275b70aff83f06c7c4d1ae95ba66b9317651da5c3e1af0

    SHA512

    f746bc16e9b3530785c2476620f1b07b3512bfaf13d03215dfc8ee6ed2f268167bc0d5d397d76c986e484b6a7b5e420dc4cc692ae9fd902f7f46888ee4257e7d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    899a5e99218c050c2ce565e9ff2775d0

    SHA1

    770cb2ac38efe678bac71e4821ad60d3e3acc33f

    SHA256

    3e548cae58cb12e71872b8107f676ba2c2f8da55efd28d1121c801a01d7c1f75

    SHA512

    42b583fddba402043b1faf2519507af79c32b8190c8e08efeddcb8bdc4235a0d650683e982ad2be1791281dd72d87d40d3ef91432af6393e5fbaa78d663fa929

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    3ac33e510085f650776aa6435cf1987a

    SHA1

    bbcaaea01ddeccfb5facf0e4cf4684e9b8bc75b9

    SHA256

    a09ff81bc3119fd446ab4715414f7dc6c523cd7a8e1e07674b928d452a7bdef4

    SHA512

    c5fed7ae1acf9d774abbc97015a72e792425bf3f621a7515f783a39d5064fec4c4a6ba08f0d87280cde69b859ee922acfce5ac2cca7c65d90e093754184e7000

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    fb43565fa0e1b165d0563679253592b3

    SHA1

    c811fb1e62fe132cdae9dbb97e0298c94540bf0f

    SHA256

    93becc76cc8df4917c3cca288b5c5162127b27307aa09f7c368ad8b30a61bc4e

    SHA512

    55230d80da76d01eb42b9aec6451c960c1038970d32cdafac6e8e0c2bdefb83664e4e3b9165afa5dbfb5e602f58926811f694daff9571f6d73364e69d38ef979

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    2ff4c05d76db5344315c40332760f02e

    SHA1

    3794a2fa1709e9c7a9aa1512f3cf38f89bdbbcec

    SHA256

    c099e34cfc79aa2aca33366aa2792caee714f7faf44b0d7bf8e0bf28d785525d

    SHA512

    b7c6719cc37840c19212f4a00134d97bef766ef5f084625ed36a351a342a771bd60eebf42e9a96fc2b7e14678eb13bfd703c3b3f01e0c2f85b0b1164879512d1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    58c880eac40408bafcf06c3bb536d66c

    SHA1

    ef12a0676b56bc2959d0ad3fa09862840e568364

    SHA256

    5ef8f558d337ecda71ef6acd9bf9d987cc28efbf626f2b1270622b31176fffd2

    SHA512

    4e00a0b65cfed54979b9490e42801ebf29e8950f1f4aab19e391929f0edcb19118caad48e1f5337c5045371f9d8f7d3d997c7caf7579e8d35e336227ee08c5e1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    8bf71618e007fc0e56cf2c10aa671ed8

    SHA1

    40598b8ba8d629137eee2f1fecf1d1c1bf66909b

    SHA256

    6b4035cd9cb37b0413e00bd02a7685d02d96c73d61ef603f2a9b2e430baede34

    SHA512

    14d6f9ca632b0ae44d5acc2015797edba457afbfa45d780abf7165e838dd79b2865140eb64d10f77ef1a3327e46d95c48f4dbc29753b62359ba14c5416ddf011

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    ebefa415df0958a0764b2db7f77caf8b

    SHA1

    6d5af65ab31c5031656a25f3b85b90f92619238c

    SHA256

    f3c6dc68612b5eb7a27d2d6a6e3820d948a73a075ae6b94c84f4fe51313d1503

    SHA512

    43770384c3dad5ff129921adec32b648a7dc72bf4fb6bb0947ec4981a51cd9c9e5ef811edf2f6eb54999c6e3c8c75a9465cd0c846288efc6ccf5cf5937d92a97

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    cd20587610c77985bd1f04c50630971c

    SHA1

    2726919d030f00384e32e3690dd6b58dd9549279

    SHA256

    c83c37a830a64ddd4147532277d6f437ab566f8341b8ff38898c6160ff68390c

    SHA512

    f955adbcb8101c548c48f4dd5a420415b19441334c0bb0412ee332e39f9c3c85131063f292fd3533dee90c0b623eccd5ecf666b8fb9d339010759c3e699a2220

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    e542655d5f3503edcb94ffbfbef5b545

    SHA1

    9207c9ca0d7456fc06f523c727872cac2548afdf

    SHA256

    0b7f2d12d76623bc8b20380bcaaf7d0665ffb5f3bbc669a2881827fde4d6c06e

    SHA512

    76c9ea78ef81ff7f83beb43ff65ba16b837db5d85522598d81c35dc3df0edbc76265066d89ba548a6771eed73d56f1026f5434481a879c779b4162b7042d49c5

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabC65C.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarC6AF.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit