Overview

overview

3

Static

static

1

0049fe3da2...8.html

windows7-x64

3

0049fe3da2...8.html

windows10-2004-x64

1

Analysis

  • max time kernel
    120s
  • max time network
    129s
  • platform
    windows7_x64
  • resource
    win7-20240704-en
  • resource tags

    arch:x64arch:x86image:win7-20240704-enlocale:en-usos:windows7-x64system
  • submitted
    27-07-2024 20:23

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    0049fe3da22469b2afa6805541a4435b_JaffaCakes118.html

  • Size

    201KB

  • MD5

    0049fe3da22469b2afa6805541a4435b

  • SHA1

    9f93d6a46237921e9290bdc1c11521714c3be2e2

  • SHA256

    dcfcff2a9127c989aab5caa8ce5f63d00d35caccc4aeecf6280dfe7564af093e

  • SHA512

    085a0a8711e917662053c2f5e57253efacb49b9f89695c48718c5c413869b409ae49d901be0485e841bca9ac9273688508a3a68185d396d2f1ef61cda321d5e9

  • SSDEEP

    6144:S2OtUbRTC684WqSx1xCRe1rLzeWvJQiUDq0n4/mRmOmLmyBiW2nRYdR7hTBNqZsa:x/R+D4WqSx1xCRWnzeWvJQiUDq0n4/m9

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 41 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\0049fe3da22469b2afa6805541a4435b_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:600
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:600 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2520

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    46a07d5a74bc67e12af2ac9c7aba3ced

    SHA1

    5469f86da1f676b08cbf920176051baceeb86cd9

    SHA256

    2c3ca3eef379d8864ed7b9abe31601492be124b782929b1a489205b92f0b4511

    SHA512

    41225dcd26f3a8ce0d52c2e55e166a953c30062eb680ab5f8ecb923445f7e5482c87fd446d9e62db68484b49f26fb9bb951dcd62bef34211d2aa63685242f793

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    cff89d6182c93eb764c930600a677853

    SHA1

    3b4551f9556e9b28e50c46d75b5dbe79c0086f85

    SHA256

    1cd306638ce9e77906607fbb46e12401915af56dc3ee6759f8cf33b9b4a75046

    SHA512

    3d98424fdddfe1c9ecaf18406548f2e4118c94ca314e57a8777af291e6342aeb0c50530e911c89338a9474d9164efbe6e60e89db7051c7dc0558a3ae4b1169a3

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    249d0d65ac3275cbe899a361e6f25fe2

    SHA1

    4f8e88ca89d7029865f7ff77c73304be7dc7eaf8

    SHA256

    1decd2942acae0473d916f14e3e9b2568344ccad53ce1f8d14bc16b5d6402e8a

    SHA512

    d012a5e7dad437649cd763b072098857102604e9c8a59422b428f2ea1823dc2f835fecf63ae185f79051b6a33eed647442af579f526449d8f8266a574ba154a0

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    5a7562ce77f7379458bf19f019ad4bea

    SHA1

    392f79ac1833b5275a5ced72d268e3b3c81fb87f

    SHA256

    ddc1f434644f5124778272e2342b225ad014373c3f010798acd767705eb155c9

    SHA512

    4f9ea52e30f192156e3364e37012f0b6e066b46302b5fbe4dad11328f589a0c3df66d2272ac7cb611c6561a9be05ac687b8d2bce9f9b5e7db7877849c6416c9c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    9c883b8b3c1136904b0cb98d9c0808ee

    SHA1

    9cf805e88c5b14f06473c5f818aef892a6030654

    SHA256

    8d63b2a8d88edeff1678d1956a4f7f0de6798637b83af6c198d93636d9d0e075

    SHA512

    ab28ab3cbfc7da8393f6d5c92840e90a1f4237b728dbc59cb6193d19ec7b087fd22f7b23c9df6e8bb881861df168fa03211900904f3fac7456242f1661d7d7c7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    8a68f36955ed78c558b44d2195ebb2d5

    SHA1

    4fcc44a625647becb36e81b025322ac649df1bcd

    SHA256

    301d88eccbac1562829ce18e1a3baf914eefd63bda7e9c58fdca0a1c42a2d250

    SHA512

    d25c1d9c6f976d28cc547f2231b4997dd6af934c17e548c70062507c7daf23309be4afb3ae181e5a37bd52e24b79ff344c761508404e50b6f68fb3c3fc53868b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    f24d59ec82e37a966736f92fb320a5da

    SHA1

    431e8209c88ed6c5b8816090566e01b0cc0e0c38

    SHA256

    cf57dcc20029ebd49e00f810f6e442e2ff3d2e6f3539540ce26d3dfcae61b7b7

    SHA512

    dfa6f877ee4aa3a85a1224536f343490835f2e24857e496193e7bb2afb2b493e4a256b915d39b468c247770a2b8f2f9cfa0cf7b0f93a5069e279c274842c9265

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    840ff9b90bc25c6079aab1e10a98c7dd

    SHA1

    4394e62a5a86fc2048dbcad23d77c4d3b6f82db1

    SHA256

    9653578b0d0a9319227d790478a44960ef4d6026911fa9a70c4806458449a8de

    SHA512

    fdbf4c4e3567be7708bf6317ec522870c8469e482f4d2638b3d016a55da1b5154c4cdef8521a9fa75eadcacb45e44802b5c513d7169f5ea1b7035b12f50245bc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    ab5dc2e0fac5c6c5aad28c289523fbbc

    SHA1

    47cf3c5c81a48fc1b63f5b5e960016db40530798

    SHA256

    503e1f44b303b63a248ea592cf65465b3e1161c35e8e11ced6f77b206c891ef2

    SHA512

    893668d586aeae6bb889014d0044a78170bdbf744bec78115426445dca1831f492b675ac741630dcf398134f1a107ded61c8ff4dbeb81ed281c077486f94882b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    2d72b6049e261bbc700cc3648f00d6d2

    SHA1

    752b713d97680fe0432f5245ccbd87d751d8cc38

    SHA256

    7b8b9c58636755c30a38bc06387f21d0668aeb28ecebdb40deb41e0bcb76e012

    SHA512

    8002e1a5cf9a529d69b79389cd4f8de1036019b57268cb2068f967e9f1ad17e7229bb1952aa3998b54501dee34632df5158d8ae8b4ff369d22b02343e8d8bf2d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    d935a9346c570a588510676639c3ea56

    SHA1

    d2e5ac08206716b86be704cfd0143b7c3ccf8ade

    SHA256

    9c93c1c7b04d01f1d5e9847ea1c3537179884a6df6947b6f7118e4ec79800402

    SHA512

    023bbf7c52bacafbc117e9354b721c2e1c93264806fcdc75b6ce9c9dd68836436b8577dc3df1a3bee40ed0e32c64436c87f74b2401ec82067f99b44a42b66f5b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    25883825049815149832ea7252678d3f

    SHA1

    8a63a0d281139e5b4f2b620638c10c1f2bb103d9

    SHA256

    c8066c63624f9c88ad3d4117239a00fe3c5e3e376699efdfcca3d672b709bdc2

    SHA512

    62d01b66cc2a63b6bba2a43f2d7631e81b530c7aa8ced62018d0cb2175ef4d7215d3dc01309873b0faf8b3140f20bc5b8c9ac65e82139ab23f2870379a02766c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    988a3bf9af56c50002263d6808791f57

    SHA1

    df2de9c135a527eb1d7db8e86c9822f1c3ecdb1d

    SHA256

    a488cbe34ad1947c016d6c0890869badf355dcfe4c33f8c2e0a3f03b9f04d819

    SHA512

    13612a04ba54f2486032f7c33af9bdab0b061ed357551a4a64722d29ec03a7e57210a49acf2de7864a13454ed113a4686d4927b5a8c95e6ed560bebc66c21a79

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    291c183ffd4f1227c349619b46bf8221

    SHA1

    bf3fc47a99b5ee662266a99ab0a4b69c161fce1f

    SHA256

    ea0568a7747076dd32540e110a0048f4fc66fb78e794d6325980440b42a8cb40

    SHA512

    373ae2863a51a6c00d2c14a6b40f548b5d1428e32a8e0370ffb1b8660cb0f08bb72673c1139ca0bbe9db307e7675f74e0b98037cea6e4ff218e0c43fd761601d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    9645a7dccc02b3a9f5b6683edf32dbea

    SHA1

    ae34f6adb4f22dc819701c67d35b72510864caad

    SHA256

    a19692492a64564d5c3b9f12a25daec003f5632f816ce52d073293a0c1ba51ca

    SHA512

    5770f333da70871542c90bb0af4263b9133d580294f184064366269b1459f94eea4dce9b59e6acfbc1e3d074a71b0c47f49366d926434408a0fc77bf7d91e1b1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    0d8a4728dd7f15853446797e0efc2a79

    SHA1

    d835fab7cf9f680e918c542ea2f7f7b861765781

    SHA256

    29c17d74ef9249f52f48b8f754aa4bc32cadd015032df6af703cc67707b8185a

    SHA512

    e9adb7d378063fb53b85c7ecd62db42e30c2f3e9d708f107cc28b9c2a63b6305c421f63b3de838b6b76aaabcbb8806ed922a49eaab07448f690c6a5dc981d545

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    ec235821a964e995fd217a9cf361e33f

    SHA1

    a17f556bc8e60a7463b91915b0d0c1ad7fedd94e

    SHA256

    9930844ff3b2a6929c8bbd6ec58f35ecc5f0689b30cf1861e8c7799c8c2e42a7

    SHA512

    2fd76cb48b01aca4b1a2fc55e27e01b10765f4cb286f54bec904d8bb2ecc89020e8322335970a5e6d4b67cc149c0df728d099432dcfac8d2097d5c581e6c9065

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    24fe582eb7b85cdb02a0aea394086380

    SHA1

    0029951e03fb691fbf9177e19ef8bedbb549d1ee

    SHA256

    f666b6c659667330846df3c35c0153e0d6eca5f28744f10cdbfd43c04c045bad

    SHA512

    531cd1736f345a8260cbe5891b6285c81970ecb513bed2715c2954cedd6b42cba4d7f9ed485875e86f7c2eb4fec0f895ba2e0d2199f2305fb7e952808fee6b17

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    304B

    MD5

    2dd18e018f0b6f62987cf3d0da757d88

    SHA1

    3f46820f8ceec899aa35475a31901658aac968b9

    SHA256

    c1f0375bf6d6f7a03cf756403770c4fb98bb9a315dcda2732839aef1ce3279a4

    SHA512

    67650750d4133c9489e82670a0015a7e30bf33274adef554e70969180a04cb0984bece7a7e681c18f96534b56074140e2bd1c293eceb09a7d540565a0e675c7d

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabCFE0.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarD09E.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit