Overview

overview

3

Static

static

1

5696139c79...8.html

windows7-x64

3

5696139c79...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    117s
  • max time network
    129s
  • platform
    windows7_x64
  • resource
    win7-20240903-en
  • resource tags

    arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
  • submitted
    18-10-2024 09:07

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    5696139c7926c4e225fe11e186c0acb4_JaffaCakes118.html

  • Size

    213KB

  • MD5

    5696139c7926c4e225fe11e186c0acb4

  • SHA1

    74491887bd1e7f598f5de07901e64295c6235222

  • SHA256

    d72ec18891c60d52759a25bc4963bddf3dd2554b0d09ae6f946817591daf8e09

  • SHA512

    2c664cf18bd7e1f5cd59fb59591dc61762952c06f5f8532d4906859801864921413e4534eb37d00f28eb72f091d6cd5c5ac7a5d6643579a1ac238f5e708dae53

  • SSDEEP

    3072:WrhB9CyHxX7Be7iAvtLPbAwuBNKifXTJg:Oz9VxLY7iAVLTBQJlg

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 41 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\5696139c7926c4e225fe11e186c0acb4_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2100
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2100 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2244

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    2b56c1a0b9ec49ab182e1367d3c6926a

    SHA1

    a73654845b1a02a0f0630ab7d6c6c8d450398c65

    SHA256

    3c37b3742085b46151597dec608101e2e002817e9bce266e46454d12706b0dfe

    SHA512

    15091f766fa8168ad168e994575c96aca12e66a47c8e17a2ac147ff31731ed92c26979489f0bc6dd09d060431c4c8ab25e0b62ac66713f82add9f49b8312fd19

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    a7396418a9177f9ff97cc23034c1657e

    SHA1

    a56b78dd214cb5feac1832718a3fb7c095d4d00e

    SHA256

    4956b206742846beaff362eb2d7884c99f4d0a1ee69d761ab402d4a272ef49c9

    SHA512

    5fcb0820c62e684d42ed9246769205d12660449ce26c3a91af2979c2a3a35dc0c4d97b6f93dc4315432d3a2bb70f497782993d263d49de4c98dd63ab8c18552c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    743ed06fcb71a337f50963626a3052c7

    SHA1

    0336f37422850da5c3e5ffb317575645090a00d8

    SHA256

    797f2dacf9003632ebe3edea3aa411a97c6cc4ea78c3f4ba1d5e1c4c90e03a67

    SHA512

    9eff0d8a10ed3d2af93abc9ef483859c586089bd5e63cf07ec122acecdef1a6dd7cbc86826f1d9ed05d10ca29ed0d79ef63a704dc5f7f5a584ce726c84e7940c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    44a63a5f6f9546914a758e0644fb3d7b

    SHA1

    f0685947bc9781126690d9717d09b547fb154364

    SHA256

    999fe3f2354a3fdebeaaf1223ee56d258dbc4cc98e768f3b4b8c167c9f7cac60

    SHA512

    2d0b391f6edaa5a8d9c9ba8e86d249ac9f7a938a2be6004239e9be0a4fdb8ceb548c2cf4e78fc77bde42cfe7e457e7eb98aad99c1c1d787232d635e11dd13991

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    961868fd0f540ed029d92128619a05ac

    SHA1

    63fcc8d4c16abd6f32658adab7b2f4d54be7fc2d

    SHA256

    f34bb06e313f8c1aa3caf565d4263c9fb706fc7e23443bdc652910d55413d2e8

    SHA512

    a971787fac32f25691a41d2e41889ff4486502b438701b4c00fb1c43f2f9ebb2a410f8b6e05cb06c89aa8352b6b68fe564eaa6435abdee6cd4a76d917d821726

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    de292ba47ff4efb8ab9a263da64bf8d7

    SHA1

    180390fc24c2d7840b093945045ec1fbfba78ec3

    SHA256

    2d47773c38e790b8bca872b04a4e5d47bbe1f74fa9482605da003dfa7c341028

    SHA512

    86833403d362f12a71f588c36e05ebe2ed778c2cce6704476b71a6d94714103969a78a3b74f150e54be9043c5e923e89f44ed39301ad42cdd37a800cbd515e50

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    39d18dc2914ed89610f0870db159ecc6

    SHA1

    a10b3fe6756b72b931318007c35b02a47939bf16

    SHA256

    5919bbd13d2b86adc4e1c95b00c7abe81c0542b9d8c2b9dda9dc39b8fa313e41

    SHA512

    1ced64aa09d4b59a745456e16efdb53d4dda5857527ae32c573d90ad3113e187c6e41100866841e077235a8e8a39b9d1aef6dbdbedce80abe431d28f67b7a372

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    a054abcd08d12916ef29e607291c0cd0

    SHA1

    c1309dc9d4afb5e30592c26965f52d8b6f2e7f3a

    SHA256

    03e86d8f3e6d2c85355ec0838ceaadc7162d33830ad4cfaba814c44ef4db179a

    SHA512

    32c21b59f94e9a2c6c795b19bc478e9a6af6bd03b4f147cb9bf6a75a50775180d88fd6bb7186d4bd84e8baf110f1ff6a14ef96baabdcf4526c5d3859ec157087

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    8b6ac9dd026606072ef1fdc543acec45

    SHA1

    b2b3ffa1a01caf78c12efed776185938bd476511

    SHA256

    23570bd619733260caf335aa689da096af947969c5fc8c3b879982c937a1cada

    SHA512

    e18d22930b7d21bd1123774eaa34fa4f7b8387d9033137b4c7939ab0b1c0741d1ae31508ed8402d53633ef165da9ff72ce9ad7d3d9cbb44ea7ae76627c62c8d9

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    0de67022e37fb1157b23409b305d1ce6

    SHA1

    7dda556655af57bb03f93189647a2619a847dc8a

    SHA256

    3d85a9a73edfea86681cda83da7d52c3c4e6c4ebba0db3749d8df70ec8031b6a

    SHA512

    e7235d4115065ca2cb391e8f377cb8ca595461e527529a7daaf255f147a36a846ceb0741b71097fe36aa9ed115e46d8284a3e1cc15f2b297ce8a8b1e38e4fcb8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    51b740fa826772c0aa4f09279e1e9e66

    SHA1

    2a86b47fd76f3b63acff4ee029ee3648c927ac90

    SHA256

    2cfe2b3ba2171909bba942b8b7345bd7d6538bbe82eace04ad5ca3abac3cb7d7

    SHA512

    f37f69e923f15d1cc2f0702f1e059da9c1bb85017082923d25529c7ed4e74dbd7deec7932cf1bb9035bb8fe0cefc09b5d2f6cfd5c307749674d1a51121bed3be

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    c71814c2f900421db678ad486c4ef022

    SHA1

    656259595154edd6663ba0d9c9b546e07416e650

    SHA256

    7baf926b754a61041baa52a2348caf11764aacb78a60e777d54fa4c7a1c8f17c

    SHA512

    fcc1df260f96f05ba0b5ef72c756c9147850e66988fe79c597fc7ec1753d5c0ceb9a124c0bf4909fe95f50ceaaf501777013a6c6a2bea532048bbf049a9c3f73

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    75e501c4201f528f439afffc8ed2489a

    SHA1

    e6eb1870bae13e81682688aa67cee0d0337f874a

    SHA256

    34ff35b84126b3b6ef905cd85d200f796b4987b9b52d8a18f742d1088a3889dd

    SHA512

    2e4dc5762b135fe8a5d6e6487759c3860bae128a3db920eb10ed54af99ec777b7df531bd0f595f9c74bb9ff90ce324fb977943c63964a248c1a14030947563d5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    7c6a3a4367fc33fcfe71501073db0b12

    SHA1

    ab0663f90f9bb9435d5127ea402ccebbeecc1fec

    SHA256

    0c08776c098641c5f914e086f9a69ab6310afd44f8e7bd837a2b70d0c02f4ecc

    SHA512

    58b12fc4a97509f98bf688a90529741c127054bba462b6287ffa3fa1972a35b6fc057a6cdd7a38f195287de4b2c48b625d4663d577ebed582229cb88c1a28e01

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    e656f7e10f830b8e3c02a560d94687ad

    SHA1

    9f3d477fc798e2922f5e22718580c5a9c0d9ccfd

    SHA256

    b53cdc1ee9a3a161e8ae22ad4dd12e6c7524e77591abe851147a09d2a5d75ff8

    SHA512

    ee0416124fde33114982e6975c80cf476e2735f5b9fbf58860ebe2cf4a476222f883809e505ec815eeda6bc5deedaed3c416e7f52b39eec6a62cbca4fc324119

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    abb63a56d4ef05babb736f5aead35002

    SHA1

    f946f1a08058cc3ce00b421641b8481f61054f12

    SHA256

    c88c53158e4827ff7ff8db20acf27a8c660e9af126b331b402f76c0207ccd750

    SHA512

    c83a1ab689a7d7dfb6ec0aac98d0309b137a83fc695ae6d43f607b959b52a9f52e03e2b084313d11f3c85d96b89671605accb6a6e110fbc3a12a5cc91bd5dfe9

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    3b79767829dcfa1c0f5d53140644c2e9

    SHA1

    70f81ce22b7f4aa5dd0e1e9dc839f716f9cf13e3

    SHA256

    2b3602c48e93c29bc1228a759a5f347ce38f407a22b29482e6f48a9b63a71600

    SHA512

    0a44f2d1192ca76228627cbf2c6585c9f2f4e89fba93ce4595c223adc83bf00cceb9962d0a30e5d4e07977a7fc2102a47f886c2c54ce5cf846e9cf0b5a269f4e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    39d74d373e29e1b65e137069642d842b

    SHA1

    df8c3970add2f44dc23b6b0b7a50907406548957

    SHA256

    30705d9a5acf1e5aa4b746723c8bb351103359b05dc1530a2037a7422801ae26

    SHA512

    38df74bc8a28cd47811d256c27c0cfcbc89b40e6f431f272cfe77c39177fc1193ae7670f1147c4d95f52ef4b6135d88da6ab56ef41c2917b5014c5d5d6905fa5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    349b0152f922e3ecfdbab255ea59ec83

    SHA1

    67346e21744c5693c1cbcfcbfdda142fd2970384

    SHA256

    02317d1138df33a0b9d888096269165e4341d6312c8bdea6e471eec45a6c2a9b

    SHA512

    8987983925aa576fbe2574aa79c7acf4f59e9bf058e20f579d88de9af2d8cbbd8a5776872555fc328d747702fb5b324240170ab592141b13d34433b10a005b63

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    24a7ce5a67b37ad1f4dec79736380c97

    SHA1

    f36f5e5c73c1fbc6e8b1c1ad969ad334c13f8ef6

    SHA256

    4bb06600447e41a30a79cb2234bf0efb500afded5144e7f6829085d27211545e

    SHA512

    fc3458d314e0d8f5d64b2f456514ccaf55e7c6e20ffdd01059ff3792185727e25173577cd2596fa60cf5d563aecd76c2e981afc4758487ada4c5e6f38d8a2a59

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabEF90.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarF02F.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit