Overview

overview

3

Static

static

1

af45882079...8.html

windows7-x64

3

af45882079...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    118s
  • max time network
    128s
  • platform
    windows7_x64
  • resource
    win7-20240705-en
  • resource tags

    arch:x64arch:x86image:win7-20240705-enlocale:en-usos:windows7-x64system
  • submitted
    20-08-2024 12:44

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    af45882079f1920dedefdf9c451883b3_JaffaCakes118.html

  • Size

    15KB

  • MD5

    af45882079f1920dedefdf9c451883b3

  • SHA1

    4469df60e7d2f7845c9e6b8bfe2e989729e2dcd1

  • SHA256

    59ea74d99cd8936c57c53936513c13631f1d57738318f7fb29bb285c9f6c48cc

  • SHA512

    5f8b81525cd42ba2bb44086a1e2667495a41085c50601aa2e512ad040ac1760abaab0ff3afca7824769baadc82c451686dd460a6d678efd7a4b6691f58d7e7c1

  • SSDEEP

    192:Nd6qYNPMMnIooSGD/idP9QlXWvRKoArr3XuNpx8ikiuNphVa6eyS8:NMxGFlA2EehVa668

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\af45882079f1920dedefdf9c451883b3_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2632
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2632 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious behavior: GetForegroundWindowSpam
      • Suspicious use of SetWindowsHookEx
      PID:2972

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    1fcaf410eebb3c5b02608ba26c0e70c3

    SHA1

    2dfb48c141e270c4e3651d39462d9fff95eec6f9

    SHA256

    ae7c1d67c284ba6519a9b346e4a9425ce270b453ddf03554fb8b3671ed727e3a

    SHA512

    10eae7854c71260d4677895279809bc83ea0cf0ccb888b0c56c03e95dda355352e9bfc0865087cb556a8a6efccf8231af1b83feed43effad3fc74d47d4ba6984

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    cde2b7bc1f7f2ca73057d0deacf5d169

    SHA1

    9e2924883090aa3e9a7fa9bf73ef6dd05c216ee4

    SHA256

    c6ce32869f5d7b0e7fd271ea9726bb4b8ad19fe87db30eb8654330e3d7dd2db0

    SHA512

    dd70794f7d24dc3c31e4d074cf5a9806fc9e5b99adc4cf3624aa3ab17faff3d528056ee2e9433d21646b94c628f539ef74a5ff810e60962b6b2e377dbb0da5e5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    f36437b168ab50e9dc824840c9cf07bf

    SHA1

    ac5b9b6f034f4b6a6bec9f67a29e4916a86d55b3

    SHA256

    59d03abe4e35d68c1316dfd80abeba2f1dd6d8bc6f55f1e2cf7d21a516aef2f5

    SHA512

    3fb95943f8a923b932433a50e8e817accebf018633de5903c42cd5674cf09c5a10dd876cc849cd2addc2c3f05a523d191b59aa3d35004ae55403742934862652

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    dde4c8b1aeeaf69d06fae37d146fe1ee

    SHA1

    c00897a87e75491fe547019fd0cda0d0c1e6144a

    SHA256

    391d85e54e0e828dca9747fb35256b3cc9228d4971af13e7205b781a40cdb3d7

    SHA512

    c70531b95d3a2ba272032c9fdf01744d2c6e6530e94a28532baedac234a7110c9b2bd3d1b39c5cda3e991b93617642ec18862d4238c26f737e3a3e24526ce422

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    d59ab3abd4627ba983b16d45db49b897

    SHA1

    a15352d3332b66a91a11473a53aa08cc8e16aec5

    SHA256

    cea0cea1998dddae69a7ae9cf95bcfba72b914bf4ecb9694a13ff050f4c4f60a

    SHA512

    1cbf66fe6b5915322cbd2e464e6a7a0b2ac9006a215702278da9978e47748eabddeab8f5e7bf7672298fa09d9637e84d4304e0647e27f4b9d5646fd9fc7d57cc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    b54466f0efade668fd7efc9b829e77bb

    SHA1

    1d2a371167cd590be8ad7786c3ec4e18e7d9afbf

    SHA256

    b849d645a7871a4019549b5aa17cebb2f69e386927672269ff4a218da4645ceb

    SHA512

    01626e0008a9aeceb21fef686e02358e6835ddafb6b0e1115a0b84596986f57378b44f0c77b99947981e5a4d7212594e8a60ac55254f25d455687a92b0207258

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    4a1cb6b758c291aa415f635f641541af

    SHA1

    a15b86f4fcdb9cb40aa9b7cc76db25e92105de6d

    SHA256

    2d7c47feecc318950dd850e7ff5e20696ceb1457d0d8950c28fb9aa631063602

    SHA512

    106e6bed3342e6b5dd7b2401d1eeec19792a32fd32c2118b877601950298bffa4318ceef1e25c7721454173f6fac913cbaeb18a38352383287cf3a2217f4a284

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    a12fe96d62d6fa589bb320d95c234501

    SHA1

    2be5a0025cbbefbdcde93838fd9ade5b65f40f6b

    SHA256

    f42711967417ff04cc305b8eda71cceb80f9e4b9c12b4266640432e36989d035

    SHA512

    415487ef898182d40d9a70f0f9354ba65955d423a86f54922bfea0ad1b5f277fc4d46bb708ea19e16b14df86092d3b268f0c57af918fa131f9d5882ea9d5cd6a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    7397d3b38e2ad3929ef47d32fc8f6a2b

    SHA1

    b4576f6f8f3cd99b6e15603fdf51eaa277f8b755

    SHA256

    de09eeba91b55a9fd52707645633fd1ef5a62a30049f1c5dfdb0b49d7a292dfc

    SHA512

    013c46ed4030c2de0548f76e3f18a5c33809272f583bc8e69e3bb0a5f802f5af35613ec85a2d899f9d46110be40f74b5a100eb8b4b96170ca1bd30f18afcdba1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    b79fa9c4677157536537b7b0b54454dd

    SHA1

    8f975d5b58d2001e76873a69ac10937197c5d718

    SHA256

    cfa23613161ee3ed127553f8807f47e1c6ef9ddc737bb1acc9bd83bd9fcea859

    SHA512

    a29ef20203e6640aade3be8400f850e97e8a0ce758799541d2a61856537fa730b33fbf074ab95ef5ad93fe6f2c0c61151d8d8eb0164b304737a49ab7bdb302fd

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    561df9ba9978c623c82abf000582f849

    SHA1

    eb1fba78b123becbd355083dc9c13fffdc86b0e4

    SHA256

    786d9caf9f06c666549308e07d994c8794440b72ea580313dc34f8f88b191b8b

    SHA512

    5c998719855bf025fb620ba300e2ad8d573d92ff179449c9968f7bc0d16fbc4b45e59b408fa029ec3c405f6f7b05a900136f9c1097570e2ebde97a53387e1740

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    c8d235208e3b44c67ffe5df88c40b947

    SHA1

    805712737dc4b413ca5e1f5eddcaadc9da888e11

    SHA256

    2a8b17e5f31c8f4e88201ac1967f2ae08046398607abc80834a11f6e2f921344

    SHA512

    7c7a900a08e20f83603566f08e91908960acdfe42840dee317b597ed5ffd704cdce976659717d6315148b860020e1574124ebef780888f049e18e0d13a74e131

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    97b768b0d098a9e8b5572b6e91e6ea8c

    SHA1

    c105eee914aba0ba899d22d6a5f591113d0387f9

    SHA256

    a52549ffd91f996a4c20fcc09fab20022d46be76465578a607316c7bfbd876eb

    SHA512

    c04252589605cbf54461ad1a1e2197b0bd1f040015663190800849cd31c4886546854154215663c277173767e95ab53d1d3deedbf1175b4f2121cde057bc1f62

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    3646180ee46f8f2547279cd0e0f658ba

    SHA1

    52d003475536c821209521f114bb5919eb3a35d3

    SHA256

    f1d839426d24f205c8b4a0f9a3bdb2ef0dd5db5d76c6374f7b1e41dc95ca59e0

    SHA512

    dd8976214c11f58d37612870a54a93d2c8ce0e79aa8bceb604733b893920aefabd14c2695bbff5b7d4d1af2e536973cae72c5c04f97e58d256c8609d85ec3c14

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    b824c986c64f987117d6223fe1e620cb

    SHA1

    6ade08500383f5e4b386bb28727c0842c8139e7f

    SHA256

    6bfc40483a388808515b563be93f57d84dc4e83b8809f546ffc17a0fe6e66022

    SHA512

    3eba6b9b619f09ad4279910b00fa2d9adac1ac75435eccf10a49d63faf222a16428696e3f9d90adff901b6f3fd7f3966c707657dbd60b08378b0e1f88f0eb6db

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    4b7306e772271d4af0bd67d1f3a1d62f

    SHA1

    ef963e31bb0cd9deb4901cbe47b234f038e02ec0

    SHA256

    183493ca7a9a77fe92157a7a26a739beff124c33d72192be4bf711f3fee9a813

    SHA512

    9b7357e1fffc967d77aa702e7045010a6332e281e9c43732454a1499697ead2613de85064890668c3e60bf1f4442e785580561d26338da9666160336d11f8774

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    01b2d44c5dfa18ef057614f9b829225a

    SHA1

    529d1420e586589cac770278e6fafd98435bfe1b

    SHA256

    880aaf9a919409aacc3a2637197e9b17cc1aed744a95c7f93af1a4a20e5f65d4

    SHA512

    d3ed63adc30d49a7b2a023bc46defe99ec9d8e7438fd304f17aa3157f34db1fc2ef9786e659419c83ed2d53ffa8723c246d86071a271231c9ee4b9a54ea1ca5c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    8c698ff48f25b36f342d1d077518a8ad

    SHA1

    839f55975f70e8f8326947410cc73c5d4622385a

    SHA256

    6045138bcb9a2ac8bf9ae452c560f35e3a1dbc82ba0ec3dfe238dd5ef950eecf

    SHA512

    1c8c0f60a0f065dcb23fd17ea4e044dd707b99ac4ec2233f3339c638b43f771048ea728ac4fdfcd67176ab4b038c0c797eec8aa16b18c00f0d9db160ed6a30a1

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab2DD7.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar2EA5.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit