Overview

overview

7

Static

static

3

JaffaCakes...77.exe

windows7-x64

3

JaffaCakes...77.exe

windows10-2004-x64

3

$PLUGINSDI...LL.dll

windows7-x64

3

$PLUGINSDI...LL.dll

windows10-2004-x64

3

$PLUGINSDI...ns.dll

windows7-x64

3

$PLUGINSDI...ns.dll

windows10-2004-x64

3

$PLUGINSDI...LL.dll

windows7-x64

3

$PLUGINSDI...LL.dll

windows10-2004-x64

3

$PLUGINSDI...em.dll

windows7-x64

3

$PLUGINSDI...em.dll

windows10-2004-x64

3

$PLUGINSDI...gs.dll

windows7-x64

3

$PLUGINSDI...gs.dll

windows10-2004-x64

3

$R0.exe

windows7-x64

6

$R0.exe

windows10-2004-x64

6

StartPage/$R0.html

windows7-x64

3

StartPage/$R0.html

windows10-2004-x64

4

StartPage/Local/ie.js

windows7-x64

3

StartPage/Local/ie.js

windows10-2004-x64

3

StartPage/...e.html

windows7-x64

3

StartPage/...e.html

windows10-2004-x64

4

StartPage/...k.html

windows7-x64

3

StartPage/...k.html

windows10-2004-x64

4

StartPage/...x.html

windows7-x64

3

StartPage/...x.html

windows10-2004-x64

4

StartPage/Local/wk.js

windows7-x64

3

StartPage/Local/wk.js

windows10-2004-x64

3

StartPage/...x.html

windows7-x64

3

StartPage/...x.html

windows10-2004-x64

4

install_fl...er.exe

windows7-x64

7

install_fl...er.exe

windows10-2004-x64

7

$PLUGINSDI...ns.dll

windows7-x64

3

$PLUGINSDI...ns.dll

windows10-2004-x64

3

Analysis

  • max time kernel
    136s
  • max time network
    135s
  • platform
    windows7_x64
  • resource
    win7-20241010-en
  • resource tags

    arch:x64arch:x86image:win7-20241010-enlocale:en-usos:windows7-x64system
  • submitted
    28/03/2025, 04:35 UTC

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    StartPage/Selector/index.html

  • Size

    15KB

  • MD5

    283a98ba9466718cb6e46a001e5002f2

  • SHA1

    46ac6469d958fcbb5156d98b6468aeff06e9d182

  • SHA256

    01086414fb97f745082c62afe145084555e1b293cab5d768236dcec74a2beae8

  • SHA512

    04e18f9d8ce0ef6b42a501daaf2757f1101cdd9bc99d99179a379adc44cb9f3ebd99ca524da66f4304e333213b981a1d9abfee3179a9e4334c2dd6cbd6102b83

  • SSDEEP

    384:77eO72IDW/jcBq/503ql3UUhuTYtlwrWnmsTdtQr510mAdiTiGZ5ff50+cl2Heie:uX8uq6lE0YaKCmspM2E5ff5Akvb3a

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 41 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\StartPage\Selector\index.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1428
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1428 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2396

Network

    No results found
  • 204.79.197.200:443
    ieonline.microsoft.com
    tls
    iexplore.exe
    747 B
     7.8kB
     9
    12
  • 204.79.197.200:443
    ieonline.microsoft.com
    tls
    iexplore.exe
    747 B
     7.8kB
     9
    12
  • 204.79.197.200:443
    ieonline.microsoft.com
    tls
    iexplore.exe
    831 B
     7.9kB
     10
    13
No results found

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    442f57da18a423b4103694d60f4249c7

    SHA1

    7783f34cf53a96ba9fdcc02871d02437f22d26b5

    SHA256

    32a3bf1da6698f7781383e83c75b72c2e3b544b8c9f9a1d5a15dd8069ebdb048

    SHA512

    844d2e20f38b5ee943179c8ccfb75f92d7a9c1f74dc4c9468790cce77765b2cdf538c9953065e15d2dc44a8a8cdf9235a390ac0670f047289d1988d2d51afca2

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    72256ebe17457795e059ffbdf402a1d3

    SHA1

    de791d4a2a6c6952abd65635b89153881f89b780

    SHA256

    e5dbe43d6fe50319e591404215f60e68f3b16b91e3033b1fe618369deabe475f

    SHA512

    efabfc8239d92d8624dfbed8fff25bc833996fe2619914a645e25c10a35c727d003d42e30a6b2ef458d3d536b5946259f55839380c4cea6e83a7741eec413c18

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    0000a11749937a5f0eb3266c8915fbbe

    SHA1

    b04ddf341a7c3630dc3a8b62d60bff9b0763fd43

    SHA256

    59d4089c0db87cb9f928047c5551631f41a7a528d91ad13bd17a0c68b1272447

    SHA512

    4851620083090ac8063ea206bdc671fa290b2bc1361908c9914a7e94f72a304930c65f4922205e62a5ae8bd3a1d6796387fa9fd8ebcff16e5184188e1ae82af9

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    34888f97e0258ca3d7d8d8bba4b7cd7d

    SHA1

    92a7f86bbc21b14ce730da6e75ac7dc0a4cf18f3

    SHA256

    f5a8c753438ef02a2dd6a4c3843ca890ca6bf8ab53c8e1a2fbc53351e7481b48

    SHA512

    2bfc277411148dd74d20f7f65990fc33a097c7c7aef6dfae0774b80bd6875d16df20ccd30a9c7e992c1554057507039927172c01d9af63c4935b29c4448a98fc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    e7a542ca565cdeadc5640e72fb782327

    SHA1

    c8b0be274b922d24e9f91f72a460fef79fc41c4e

    SHA256

    ceb465b9c41ec6833a1e08372799c84ada4b88937dbb492a4c57e48d96979966

    SHA512

    599e90d0843482d5587c53197839c31597f043cb85300c7865424002f4ffd7f88c05022df2f8384a5595a406221f579a057cd0b9475f995deb4a46aff0937777

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    8e8c383cc1850070e516ee2d0f76d69b

    SHA1

    73719be1420cdf5a26708bf88559eed91af6b2bf

    SHA256

    ba3f755687368153269032b63d7c983eabaedb16e4fe88d24da6977c30d3aa69

    SHA512

    43768d18bda00e3a06bffd5998908104f977c39da3ff57ca969eeefd19e54d65ac208441392d5091ed8e28b1aabc8396cc21f8d63a1a6f6152e750205a61fff4

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    d17b4255cc186935d534fb0999a7dc50

    SHA1

    ab23c6c9d17b42dc14676ff7193b95730b5d01ac

    SHA256

    80c78e05afae21894baa2fae354365147609a1f46c4fec63b23ace1e0276add8

    SHA512

    eb8e30cc8653f9b225e7cbafd8215e68fd995d64f3eca867b9612852f85fae2de43955c1407529d6e7399035914d77b90807228ec1ecc9e53f943b40d3bf5923

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    d646024f12de7232f55c59f5d0307776

    SHA1

    873700122a3a1f2004426eb9d0f9d48d00889723

    SHA256

    45b7b8fd5809a93206029a6eba0a37529a76ac81edc67d0d1de51a9c5b1392cc

    SHA512

    a8da1f2f3fcb8410d7e7a4812e2949f0260a478aa279dbbdd45152080f37cc6810545f74bcfdf976582e056079ea38dabbbb8bb42672c2823776f9a9ebb8fdcc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    85a0cda4d21a072639de6fb6e903e1c8

    SHA1

    57abfe7ec49a7809b7e23aa43b24cf78305320df

    SHA256

    b3fc8f810f5b06339bde5c0c0a1da56725524641b3c9e01643eb2062192f11e5

    SHA512

    901223f37733850eb802f0aabedba4eb10ff33fab63cf865da57486efc8c709dc2ae907d2cf1b19d27624169a46a0933f675aae14f31d2854ea7fe7f1186a124

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    d7efa7427d03164250ccc896186f24a6

    SHA1

    d74880e295aa0ba9ded7ae4806bfa46f6e197e93

    SHA256

    63614d230913eddc498495ed4483fe5d3a842cb87eed6e69fedcf8c61b29adc1

    SHA512

    fcc4a4d2423ec6652e89d8bb3babc8395b2d76e0af60fe7f393334d9dc5167641cf8e1f27d92b2bfaec6a21ee1241a6407b6fae8577adde6f9d2454056ba9b3d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    6e72f82c31a5e5e9c04dc695065e4d74

    SHA1

    fd40a1f477227b615dc27c7967f0c7d4f1c6e565

    SHA256

    9a9c78a767048f6320b01ba26c2de753f1dbab308b01424e90404c616fb24af8

    SHA512

    9e5a1b018d9ad913b8e709871e883ef17bffb872fbaf81d1a7bfc9692a2daf1aa58f7421445d5a4c20efafab339be18045a8cbf0637edbc27553eff3443a4a39

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    81ac41a2fd12b9109f6c4c8c004729e1

    SHA1

    46f88191541a4196f4f0904a6b8b119c328039d9

    SHA256

    1967534e454066a9a96a66805f64030f44984c7fa9b77f1ce81f9bf9cf3aa785

    SHA512

    3fd485f165baf33fabc6c36bd82921ab056f32383027e2f8aa880d71dc19b16bb38288c98528f48bdba144247bb9a35d5163ad78fecad2b2a0761630c1004076

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    0a537e3014c9819fb232e73ced18bea8

    SHA1

    ff70d7280e4ae47318a494ad86be15da60273a8b

    SHA256

    32d2cec569d98bdae10cff00319e9f59e004fbed3ef20aa8f988972ae5c4ec17

    SHA512

    aba9b96fec01e58a736dfe9ccad07673099dfa8f203142d16c1f3c248f65be4baf421bae07a6cd2fa5ac01b49e9f19600a4b80dde37c379c6a3ab5843402624e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    3cd9fd03ad33cd7ff15bb90f8db9d52a

    SHA1

    2c009029df4c29eed0fe9ab922edc7af31eb9095

    SHA256

    cf98f42f69bb35ff3975ab15903dffac5faa884ff5937b1573e9ff20a77260e4

    SHA512

    4f82ea47dbaa68fc73ad4f8ec931369e41d33d97ec0a17bf432be6c6429a7b64237a8fe4d1dfb91aea54f423d18137f009e0eebaf11a2e5b9cf88b5199fd7490

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    debb07595f6efaaf9eff18d24091fba9

    SHA1

    611e0cf8e84a4208c96c79878d33708981015dcb

    SHA256

    64195ce26ae2419586cb0aa9363ccb6616c1597fc43c89e2468b9d56a8a9e036

    SHA512

    c4e2eb82e14d45854b995f6377691f7f5f02bcaad541d5d32a49ade1cdc62f728930891a9fb0eae04e7dcff095e7ebd7b9f281371dca054bb7451b17e4c62d57

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    c84da8255f21816374cf332fee55972a

    SHA1

    7470b825027c268ab23275f7f0f1e0a8baef84ae

    SHA256

    bebcaa46c638c58cafb3bccadc3437ee60340e1188bea3558008563a53fd17db

    SHA512

    7f67996d2dc3b9f2b0c761901d130976ff8774d9378b37d41c39fba5fd7dd0a5ecfc4f90306030a9986adb0d1c0a867f7dc26169d50a15ffca72fb02f89a2e28

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    9b7d42ac21853cf08a476eece9e2c7a9

    SHA1

    7f191e2ce565d4b762c437317bffb2997f811e07

    SHA256

    f09fc55a40c98c761f61a6f5a3cf1f29c0f9def8ff696253eae75045015b3e63

    SHA512

    278870b5234d4497aca0c98212a0b004675b87476591c8706c9351b1a34ab505357396c05f6a5c3bbb707d93cd317d7e57e9af3ba8b266e062b8ef7ae23dfbad

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    bef79b6720d5bd28179bb39705a8f702

    SHA1

    49319e01ecddce03a6340db57c1eb4d7ff4b90e0

    SHA256

    e015ad2aba73f753c7498398fde413c6887b6a224426a91b4cde0cf430bc7fdd

    SHA512

    618272484e7a5e2a7913a1fe5d6453ae5017cf91ca2f599c7137c6a47fed58c9f6524b481a1b5549bc54ebe01232f783a3334249a2b17054b2d58c70ef921716

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab7B69.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab7C66.tmp
    Filesize

    71KB

    MD5

    83142242e97b8953c386f988aa694e4a

    SHA1

    833ed12fc15b356136dcdd27c61a50f59c5c7d50

    SHA256

    d72761e1a334a754ce8250e3af7ea4bf25301040929fd88cf9e50b4a9197d755

    SHA512

    bb6da177bd16d163f377d9b4c63f6d535804137887684c113cc2f643ceab4f34338c06b5a29213c23d375e95d22ef417eac928822dfb3688ce9e2de9d5242d10

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar7CA9.tmp
    Filesize

    183KB

    MD5

    109cab5505f5e065b63d01361467a83b

    SHA1

    4ed78955b9272a9ed689b51bf2bf4a86a25e53fc

    SHA256

    ea6b7f51e85835c09259d9475a7d246c3e764ad67c449673f9dc97172c351673

    SHA512

    753a6da5d6889dd52f40208e37f2b8c185805ef81148682b269fff5aa84a46d710fe0ebfe05bce625da2e801e1c26745998a41266fa36bf47bc088a224d730cc

    Download Submit

We care about your privacy.

This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.