Overview

overview

3

Static

static

1

b4f37c25ae...8.html

windows7-x64

3

b4f37c25ae...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    120s
  • max time network
    129s
  • platform
    windows7_x64
  • resource
    win7-20240708-en
  • resource tags

    arch:x64arch:x86image:win7-20240708-enlocale:en-usos:windows7-x64system
  • submitted
    30-11-2024 05:18

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    b4f37c25ae1738c51423a4c0944af187_JaffaCakes118.html

  • Size

    175KB

  • MD5

    b4f37c25ae1738c51423a4c0944af187

  • SHA1

    a4adddc783648e11a80a2f5cc3686c62ac77daf6

  • SHA256

    39ee9998b64ad9e4cee6fc2adbf85fa78751ee8f35faa0cabdb9693ea893fd56

  • SHA512

    4790ca70433add1cda39d852a8f1695bcd5bd00e6ab21c23a071e0b4da32b6ea0974eb27ab62d263b3299cc0334c957bf6260783b25e2a2eb7c5687ceff77a83

  • SSDEEP

    1536:xbWfiN5BpT+IyfZBk75mV9ChNSzsIN44t+gUbWfiN5BpT+IyfZBk3:xbWKN5BpT+IyfZq4UbWKN5BpT+IyfZq3

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\b4f37c25ae1738c51423a4c0944af187_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:3036
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:3036 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2416

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    78965211c3e3000614606684a76fd174

    SHA1

    c564f0fce208f01e95371ace0a42ec3588f48d67

    SHA256

    a5a2cbf3ccbf3d4f5ff693162c89f08bb7de4229b110740a1a5fb663f60c6e70

    SHA512

    dbd1c7dfcc93d1d36db9cc97aa9869d4b1dc264d4d0aa40e04d1db63b86d6db8e86b1c3038e4ed2a7637d37d06b63ca3622f7ffbecb6e0b9260a5d1d028035bc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    bd52d08b0d6e017a7a81d960c8a61e77

    SHA1

    db667f03dba39c797715c14ca485b5fb2cadf56d

    SHA256

    9eda6db4f820ac85276abdf7e7942b84e8b4e05c3651fc8e0f3ab87533495cdc

    SHA512

    d93525aef17fa97b34949d835c69170ea2ae8e912f82155fedcf2786b3710c39df23a2a466aeb14a037115754dfb53442dcff99393452e1decbfef33c5d9c79b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    14053359fdf1960990038daa183bab61

    SHA1

    169800cf7ed507597ebd8c7b980d5a6eb8e31732

    SHA256

    3d2ba6899aa81c09450f7311d1ec4a13b94608677ae2c7f8674a3d66ff6b562d

    SHA512

    b64f81a2708f543230e298a8d271bd89a1b0060e3b96af89941c9154631a05e87a4301a78d13a7cadbc7fe389b5a990e2ea750edca280baa146671771a77780b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    f38cc0e9cf8294a40c6bd1040275a4e9

    SHA1

    3506bfca3c9a70b66503f7234d87d543c83b2f41

    SHA256

    fef2a4447511bd4007026d7eb0a6e3ea15305f12b1ef3aba46caa7bbeae28ccf

    SHA512

    0e964be934b3c8420ffb0525992667c7c2c78e4de15e9a9c3e34ae62ee29ecd7b8a74ca99772d30c1db9b84a976ae22fabfcb9788cd915e550aa8b295c6b3a83

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    7351969248e79edf9c8ad07f6fa2afe3

    SHA1

    2fabeab5d12144b60784581c749da2210949f6ea

    SHA256

    6274f9d9d98d1086b1f3d8ca19730914adcf9a4f85a1b63a3c0e6875fd7f1544

    SHA512

    10c54190d188d63b02981bcc401b2b738ff0574e72b70bdbd3a41e418c8461eb982ad18e22a9ab7a51b7e65e90a911d7ca173b099a24f5fb266ef8da4ef1f4ef

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    089214a075ed98e35b6afdecbe4aa0c1

    SHA1

    af18716aaddc9afa45f1e26e4a495ea196644875

    SHA256

    33bf6149618f8b1ce66b411bd9671b6fadd121df3de1da6bc9695faf7ae79ed3

    SHA512

    1f9679dfff4ba2929b8570daba65402bea625f258803750f2417848ae768e13d53b9f83cd779684eb9eae3fcb3c2a9ea6c239188684d0e069693ab13f196f3bd

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    f6e13be456c24c3b1d6a3f58cc012213

    SHA1

    d9716a2b79ab07c8583145ba8172e553bed75f39

    SHA256

    7c78a70ff937c8951ea0ee2779f12d7c5cf4d2345b81f79e124d1645c2f6dc3e

    SHA512

    87f59c2ff810b8aab2f237cb96c22e1b27bbc9b2e4eb8076f1863597d04c599ea6663d0bc70788a1db5fc2b89d40837d48924be419468b3dc785d92f65c2f8fd

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    75ca09f00ed577e97763461445285bbc

    SHA1

    e20f280a8017e967bc994def18cf1e7adaa920bd

    SHA256

    0375fb317694ce5800b6998c9ae136c4d2c99aa4695160535b796cbf427c04af

    SHA512

    73652c30b83e4fbae0e84a1fb7d32cace79145cec245449d98febcba2441e754a73b03154a3fbd0657564cbe23a3f8d2ffb74abb74ee5c606e1fed322680fb21

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    57bf694c61229ca60ca61492352a0a46

    SHA1

    bcdb95ccd6e3d4f911499deecdef3ecfb2cae861

    SHA256

    6938d08e2f5e20b05df085a6be5653db392c10df7a990014dac523b1ac49ee72

    SHA512

    e7f0542264f95eeeb79bbfd03866f023078ac100fbdf57a4c5bf7e159ad566ed06b3ed6a4fe4a584e23f033eba2b56a8238305f56884574b0ed0bdc3833dfb5b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    21965325dde704028d581a01f33cd40e

    SHA1

    1bfedaada0d280da4d6b8f21bb53d87e1330f841

    SHA256

    a241c37922c26b907fd692300b2c8e5fdf5b8a5e53c7685ba96a9416172af488

    SHA512

    7bf387c68d22384db87701c1335750e6453cd419dfa4db35480ba714a7f6c868a98c47c31fd05ace108cc9afbf64345a1dd682e97cec9f23e86c12c478053441

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    f6a11f3a5992e4cbc82eb35bc410026f

    SHA1

    0499370ab6e3623b3263608171f521817b65a923

    SHA256

    0a7e7e168c4569412f5d48626ad134578ba0e3467b612a1218776d2c18879011

    SHA512

    efa365e24cebcc8e1eff061a9f6af83dbb53db531aa9973d59f5fd556efe5121f7ace76b1e47e3b99149df262444734e79a765af745d691098bfc7a987836b79

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    8a5cfd53e1d4ffa3906258898cc57f8e

    SHA1

    f73a5ee2a8916165d126418265ae7fb62805e89b

    SHA256

    3934f003342fbb1e386530ccc820238c4307ae0d2f1709c076f94ef67a77f405

    SHA512

    b5ad25c569f6da50833e1b7a93bddfebf4f6f80129d05915a80483fac30081cdf487bfc74281ad60be4b55e367c44de52abbdb2329a3b37c1ed1c44d0f6c21ee

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    c0cae20c0ef881a9297923c2d80a154a

    SHA1

    4625155fbe248ed10330b41116d6778732da310c

    SHA256

    13b5200558c2a9db44b5fa19af2fb4aeaf187530b3aef47f2970fc27a12a5024

    SHA512

    f40b30657d04d7bd3b3ec172eef3181656dfc6e827a1759a9610556e713a1e37c88c218840a9b016225ba6a2d7db28bd96b2d536c3d95439a0420926682b0bf7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    ac5d8270387f50aebbc3cda266a8f88e

    SHA1

    e5d5e1f51ed270c7fd6c13eff47c4540cbda5fb4

    SHA256

    b34a28c0980a874831eab132afc0d87ee43ebbd01e024e4b034bd7a344605509

    SHA512

    e048e73b0aa2fffa753e404e313099ee026b64b95460829926cd08c157a0570d188bf7f8d89062754932cad3e65ec0f96d174152b0e5e8dd4336078914cbf450

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    5db016ab4720c93730b8ebb2601a5dd2

    SHA1

    8b0f307f1c5dc2aab25c080b060285a7afd86030

    SHA256

    f12bad791951e2661c8f21e106e177299ffa6ff793fdd31afb98eabfe1015dbd

    SHA512

    cce14a71d015117cf35afd39ff42a2a88d7abe4db677ae2c326a075a4b155ca173ff83a4c8060fc2415b1c7ca121d55de85a85f9330d9bdfb90dd9dc80134fc2

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    1a0975ac2d3674d0ec784125f11ad4dd

    SHA1

    ac8063aff7cb05afae968be65a4051ba83e09963

    SHA256

    7342155efe34e72a36ce1997efb32110c9870c0186e555515220f30e1bafab22

    SHA512

    609afafcb2206d3be500eb77052b736a5bf173175579e8a2b1f3f66c07600f93bbc714591774b70383def367d1ac3cfd781dda582e65695ee7009254af231e4c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    27ea41252022683dcabffcb7ef808558

    SHA1

    fb84a52296310ebcdd1fdb40b4b394c9618833ca

    SHA256

    7a0cd2f6333cabc33705fdbda211ffa73b23d0ca61e6115b5b865de4fc3b425a

    SHA512

    ef0164b8308c8a4515f956963d3ee91d5adfb81cda1e06bbb630faf2503ace8b58a9f6d6aecca78730f1b6f57d350381a717da58c60fc9adecbe4594b9435ec9

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    6e381fcec9388b7380158a7284a5525f

    SHA1

    5d37eb67ba4a0e3276c45cffedc2e12a09198b6f

    SHA256

    e8c7b9eff6b170647545c566714bdfc310d3509e84e6d5ea445971f347a5a6ef

    SHA512

    79e21dd4df62ebb8c2aeb4eb452665588724cb2bbcad33dfa1695474ed339bc7e5d11ecdcfd1d2d4c269e51bdb72b07e6d383d31d4322633683c36fc2054ce7f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    112758b70f134bb537676a78ec5b58ce

    SHA1

    0e630049174beba0afa9bc68b585c2b676f7d794

    SHA256

    8c1280d6ac6df3b257235ea318b675554b147b492d99217316c55c336dfceb38

    SHA512

    cc4f282377152866b2d392afa6dcdc104131e9da0c084545c3f4682c54b27b84bd4423f038bb9e7dcf6fa1be6a2628e3ba8023df8c521f38727934e9faf60198

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab7246.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar72F5.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit