Overview

overview

3

Static

static

1

b4e9a06f88...8.html

windows7-x64

3

b4e9a06f88...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    119s
  • max time network
    127s
  • platform
    windows7_x64
  • resource
    win7-20240903-en
  • resource tags

    arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
  • submitted
    30-11-2024 05:05

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    b4e9a06f881b685480a6d91501d49ed1_JaffaCakes118.html

  • Size

    10KB

  • MD5

    b4e9a06f881b685480a6d91501d49ed1

  • SHA1

    63a2fe32ecbd15011302553a7d725ffc62d2475a

  • SHA256

    53569df33bb1013267131d455fd2ac08e684006905f8925b9db2d2d714d2b255

  • SHA512

    f7fcc8d5fd8bd904d4a76f4840e4982deb8b77e6a885bca9eaff79beae350252a4dde191ce48087522f4529c8091f45cf10df3ec948471d0bf46d11b18b0bfbb

  • SSDEEP

    192:/PKDJyjXIRKDvo/nymbfKIf0W3tQjUiYvxAj7oLNYi2MYzpLluW3tQjJ:/CDUFIy+3tQjUiYi7oL+LMY/3tQjJ

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\b4e9a06f881b685480a6d91501d49ed1_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2900
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2900 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2840

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    f2dc9364d618ed87dce7fcd2df4f3899

    SHA1

    f675194f9e8ebac7e06c9e06ff585ae774db34f1

    SHA256

    3dd81f7d93f7c1ce52386e804f4d2c42468df23bc2e500fae4434825dad33c87

    SHA512

    0d38121564768e9484780aa47e4123a21a9b5e01ccebf782e33f0c1ef61cf550e036279942139a386d267f36699faaa5e05bbe03bdfaf678cda913bd9a1c37c2

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    67d91eab8311b9484c35abb8588e9b25

    SHA1

    082bc774c209fb7ba27dac9f694102109e09c4df

    SHA256

    d5c608b01c35df10c611aa32fcd197695114f4e51b7fb6f283d540cd975d3307

    SHA512

    14823bbf5739d8da7c4d0f3e78b409b5279a85673471e74be3b3886f83c97a9361ceac789838a0763b59cfee90b5e9f58a84b299afd95a97fec9ec73f631dbbd

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    2e1e16249b0fe10e6a0125ae6f44cee1

    SHA1

    809c355c6f86dfbefb845cfe664468b415c6157d

    SHA256

    42aea19401e83d4ca0171d1a564f3673272b1136d26c39264e1f38914aa0de85

    SHA512

    6085afe7e651409bd0bd5621bbdc699159c7740e5d3ca58d67e69d727224ef25b06d6a4d92361fab8a6406f73c543679dd0e17c7fe16be8ba18c665d470e9637

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    1670ecc2f721f10a0f9d054d05620171

    SHA1

    88208fca74e7314bb7a53ce5924a129237042df6

    SHA256

    b841bdf34e266005b91f8b8f4430d755b443a7d4182c795b4e0b1b0e5000ffbf

    SHA512

    f34282ed5a911e2de398cabefbb934af764a98839bc8b52f8bb42e3c22cceb0e6d2ec3e03c3b7f96846ab0c46cc760fff324949a6c91ea0d56464d86f5b5789e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    32dc22eb9a08837a49de1c5cfd166bb9

    SHA1

    67aa7942914c15ab7a669f6c0d330964fcc18a4a

    SHA256

    644dc483bd32b5f01c0fb23051648fc9c08f2c91f39bf6bef130304a337f2605

    SHA512

    7f89d61447f03e3912e2bd88613f78ff0cc65ff51fe27fcce8f95c36e929d1a8faf0241b82056ebae035a41e2af54a534dba4af10c5c1a0363d04e621c563abc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    d1934f2084d21e9c86abf05d72046a74

    SHA1

    89f20bbf91b36d9d5830291f765dcbfb3520c2bf

    SHA256

    0426704dc1a6e81ece7f49c1e50d0ed7c10c4d12a649770b4c27113f5e6ef246

    SHA512

    f01b129306b5036bda78adb4490a867121e0fff254a92596467b704c15834696ef1923bafc9754bbb479c17b6116a151c01ae0364cdc3823d6e7904336b8093f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    fc7296358ad76a6eb8176f621206b547

    SHA1

    e47b2d27eef5aba4391fe16e0a0404afc556e8de

    SHA256

    fd002344e01c0abc05f3dc61b336457bc996070a98e6a62b98815fc3b017225f

    SHA512

    8ce39a7bb4fbad658a48afe9c823007e62a9fc41a01d4f600e2e4f41a1555351869625ee9ded334a26a6e83d70ebf3e625d7041c612702f01c1c024c43af52ad

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    ea4e1c6e7ae2e514dbe2038e8766aa08

    SHA1

    247fdd49fae90ec85ff4588dd34f0e9180d63d4f

    SHA256

    9879870186225c8f0d9963b96974ae3c4c0a68cbceba0bedb768adb813b6c259

    SHA512

    c75cbaa61e6cbc032bd8ad02f53d18e20df3a0072afed3c5602a02a78db1845223d2fb96814183a99367f76d248f95a7728dcb73c1e840bfc08d2c16791d32f6

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    a52e60fb7f1b7125a5c74403d6c79a98

    SHA1

    2c694e85afb93c635d7698f5694c51e86286b829

    SHA256

    4a81a70cd82116cb930e569e1186d6deb13cfd25329799987672298c0ffe8efe

    SHA512

    93c03a06d9bdcb5b9b70299ec327825474d7a952d465a8bbc94f18539b4661e939f19744d4dc759cbda862a4a19a0f64ac683b9f2b6f552b34c39acb81e05632

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    66f2d09e987e6364ed4af29c54c4cd25

    SHA1

    43c9c0ffc7194baabaf9d9117e7a60e680d80135

    SHA256

    28316ef99b34b9883f565b05f002823cad6b3d3929ce9d5fc0231af6a1b46b9f

    SHA512

    03a5afddfd9749c36962889ef9a9a2a5a451c4834aba131e12984dc2fb30ef51593e9d4e9334178d794c2eabb25f713e78da6951983d931e996a807df40cf000

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    90f52eeb8450515de722432dc0dba9b8

    SHA1

    842fc8485e14ea3e969e7d9dac2373ab98d52dc7

    SHA256

    3b9b2de3d50c589cac14dcaaddfffdcbc0b4479ce1f039343c5fe78c76e0a0e0

    SHA512

    92def47a16aefe06fc2869fc5796fa5d84279d8c86ec86621fca360200710d4ee9cb89f7e8f79679d3a58c86c2f32bf168dd00931587d829ee77ecc2d7f02ee8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    c55a1c920a80112498ad1f67d43a21e6

    SHA1

    f05a5b2bce7559141deb102a2dd6f47d2c3438c4

    SHA256

    5a26f70ee995751fc87b6980964aa9ccd689184b504fe568b1a8d3474be66a85

    SHA512

    515f81a7c74b03bce5059c34eb0fcca7f58a8a01216f88e6a7d013748e4b3f3fb84c1492c033649a61cefc976fab2ce10ba8eb0e72314fb23b7008b700d41ef4

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    e1e730b5384d851a9913a73c16486129

    SHA1

    be5036faab86e68a8835309068c3e0cbdfcb5d94

    SHA256

    2ffe6a191e0252f24abc911faa2efb1a30f25ac436001768e68cb206fdaa0546

    SHA512

    21069877677d02c151d5274e9f99d32df3bdeafa23cafd5ffe181ee541ff1ba25450aa2ced87d4d437e036a1dca5e8f3f8786199d5d683006c2485f5fd4a557d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    e06186bc8464cb26d5f2fc9232773bd1

    SHA1

    9ec02ce259aeffecff1baffb7c213062b4ff800b

    SHA256

    266ffc9327f615aa1afa1a0984e58e4a5104a18fd529204fa4d65641e2184f76

    SHA512

    27919e4656d9ad68193e94064f17cad71bdf116ef4798179a4420abf08e646201d381ef3b972a864546981e355bce338ea596cabd6db0b74fb553b02d9217c7a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    25e3c7a18f02e26eaffe2fb39869e66b

    SHA1

    170b12774fb26f11270c89051edd95c841cff94e

    SHA256

    583c2ebd06ada49d0c1af32d9cdc86c370baac8b59b8eff8fa3541377449299b

    SHA512

    eee3b4e72ca20315a17412c363def561808d3f70e133dd0abebecda4cd14f92ce1b7342f1c079085e0be1f0f28a40164553b97b5284778e9bc58d66a35c3418f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    07bbef91546a58c0d7c61160cb45acb7

    SHA1

    58d28bc1f02c2a42410f8c81c059a8dc392e9e58

    SHA256

    19b58d218121e45fbd841631e4bf6e82a6f7403f41bc8f6ef5251a003e9e8c47

    SHA512

    6ece1ba8ac2c8b3b161ebab8e67b85746411bc166ebe165cc19e3f743241b8b7ce7999d3059995ba9b3be7a90f242edc0820c4862c612d007c970ecdfe2ea8b1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    488eb20437a7daf8fce02f306c9c3ce2

    SHA1

    2ac5097849fd3a4aabfc26e21d0042af8cf45353

    SHA256

    73e9233c09e4ada670dfe8d99498d8682fc971911649f61f623b5dd8c1ada9ed

    SHA512

    6dd29980bd332dd3af2b877348a789f59c35190469c76bd3819ea02579ce90da7d8de401af6d873025e8a0bcfb68e5010cd92dd7923f2a8940e3f07f61465dc2

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    3c388dfa5315112a5dfae493be42a742

    SHA1

    d379bc5b5bd3fc4137cdb0e56febf328bb3755ff

    SHA256

    12195e9c06a01fbf295d584c671efa7d5d364331b10911d1043c57939e35f9ba

    SHA512

    63e5c4d23a6c3c1b11feee6059ac175c30c4f343edf94e75350e9249118a3ffcf290162fca21815a18987f302d380c24250a3ace0181bbbf660e9af3ba3b36b8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    e8ab888c0a4045b129659b7256a8c28c

    SHA1

    9fe8acd63a95223607f7c61cd46c44a574cf58c3

    SHA256

    93b59ec3f19ca23ec55b930d1c21209345d241f70d1da4a5c772c5c1e48ea1da

    SHA512

    a14e254336b8957353aaceccc3585f2b2064e8ea2f920b744084a2536a8410baaaba6378de9cfb223c1547000197329254bb9f89ef983e8eb13e42bd45b4c69a

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabBFAA.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarC02A.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit