Overview

overview

3

Static

static

1

af8cff6b4d...8.html

windows7-x64

3

af8cff6b4d...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    135s
  • max time network
    140s
  • platform
    windows7_x64
  • resource
    win7-20240708-en
  • resource tags

    arch:x64arch:x86image:win7-20240708-enlocale:en-usos:windows7-x64system
  • submitted
    20/08/2024, 14:16

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    af8cff6b4dc872d8a92d2f0a03879e6b_JaffaCakes118.html

  • Size

    37KB

  • MD5

    af8cff6b4dc872d8a92d2f0a03879e6b

  • SHA1

    cb372c1c17d16b772cb85d981fc92c6dfea7dbb0

  • SHA256

    f253d5611fa34cdaa53a07871c239bba91ce4c3980d823389406b6116d491de3

  • SHA512

    de5173d578e0b30f42fc6fcf86ae114b6a4fb8333b2aaaf4bae12707160cfbedc21720302b5abb0c5c7c4c27709fc3e028cf28732273b6a4d13168dfc114371e

  • SSDEEP

    192:71ghGqZHDRRIqW7cUdUt8+TU6InxnDQ6bLp4A9EMFHOnOsuoCX4/Y2YU6Jmc:71D+++ulc6x4A9EgHrJShYU6Jmc

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 64 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\af8cff6b4dc872d8a92d2f0a03879e6b_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1976
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1976 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2216

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\3C428B1A3E5F57D887EC4B864FAC5DCC
    Filesize

    914B

    MD5

    e4a68ac854ac5242460afd72481b2a44

    SHA1

    df3c24f9bfd666761b268073fe06d1cc8d4f82a4

    SHA256

    cb3ccbb76031e5e0138f8dd39a23f9de47ffc35e43c1144cea27d46a5ab1cb5f

    SHA512

    5622207e1ba285f172756f6019af92ac808ed63286e24dfecc1e79873fb5d140f1ceb7133f2476e89a5f75f711f9813a9fbb8fd5287f64adfdcc53b864f9bdc5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\F0ACCF77CDCBFF39F6191887F6D2D357
    Filesize

    1KB

    MD5

    a266bb7dcc38a562631361bbf61dd11b

    SHA1

    3b1efd3a66ea28b16697394703a72ca340a05bd5

    SHA256

    df545bf919a2439c36983b54cdfc903dfa4f37d3996d8d84b4c31eec6f3c163e

    SHA512

    0da8ef4f8f6ed3d16d2bc8eb816b9e6e1345dfe2d91160196c47e6149a1d6aedaafadcefd66acdea7f72dcf0832770192ceac15b0c559c4ccc2c0e5581d5aefc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\3C428B1A3E5F57D887EC4B864FAC5DCC
    Filesize

    252B

    MD5

    0d20e274bcc20d451249a4bf5e56ed5d

    SHA1

    3b8389178766021c30993cfcf748f340ed2417a2

    SHA256

    b180bf4b698af45d3fa7011c70b8259c2d55a96006aad0bebd07284b1a56b424

    SHA512

    5d7ae3634c2ed37d7ab1e227ed83eb787ccda5d759723040f36159a45c6f5bfdfeafc40f39412fe492098ac421caafde8e1c8b0d205d1b0a8212c279cbbc82b9

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    7121ed700a994c6b9c376716519fb26b

    SHA1

    927e9e54ffb9a4ab2b9db7fff64c595637f21f7c

    SHA256

    551ea85414b6dcd802895c9d3b038cb346cf685c26cde92a2115a1b72594114c

    SHA512

    a83492aca7a44a3c47ad02f2cc5e6e890e1285090e8f7b906657df6fcfa09723686ae9f517ea58e9a33bc39d338f344e52f0ca3ea6fd0f02bf260d967d773c94

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    eec137ab1aa54b2e9bd705315b0c065d

    SHA1

    38d9303131e831767a8bc47322d8db481187c5a6

    SHA256

    33576d9d961068cdbc93cbaea6eddd5085a96f91e901066323e9a30dbd983573

    SHA512

    b75fbfd38f9a7a39eff61ee491088cf030d19ea5d292cb4eab4da661df9d1621968a615a05bcaeaa8744e7a093424506f47d9a6b4c373d75a5e80bab7631e763

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    122fd8cc802069ce232633ff4698561b

    SHA1

    7b97bb40cb464b8709b5bbaa1ecc3cd509d88a14

    SHA256

    8d087e7a9381d3b385cdfe3d74c0a9f6a2f5d884a37c225aeca6e0a0a21cd1d2

    SHA512

    8e703604f7a6c63fd1a6faed48e1cbc3c0cfca52e80817e98edef82bf96be8d3e0823dcff7becd01c5625558f470cb0b1f0fcd42a636ef8852eb1cb00120a505

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    33a3bc13be06d208df19199ad850b79a

    SHA1

    a70d5bae401bb66d78344e35e9dd3416c9e6d959

    SHA256

    f5607c0f7a04cb0e3949c2063031be86df3fa190590cddd80e3ffbc3784a0605

    SHA512

    b2fa8497c144a421c37dc0087af4246dc24ec24eb8c2403c7a7bea922f551c28f155da4117ca70a141d0473c9262d8ed8657587e308eb924c5c591fd88837dad

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    af31106ed1481585ba420101c3e2e579

    SHA1

    38fcd7c0d8648f8d663bc3ac4e68244454801d6b

    SHA256

    4c42afd3c33b6cbd03125f15e9ddefc5b0fef3b04b17628803489a573cde2325

    SHA512

    71dce38db4ac9c03bce9a64735bc5c77a6e9e5fb8dea5dd124b86d0778cb3ae377983322a62ab2ada209265410181cb6f4de0557e612da0334ced348d780c2ad

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F0ACCF77CDCBFF39F6191887F6D2D357
    Filesize

    242B

    MD5

    d3d5db7a55062cd052a99152fb40f8ed

    SHA1

    3f2d9974aabb26c928dfd9e535ee57cde10f3b0c

    SHA256

    302e10c18091ef45e0747776e27b6cb3c4a628e0da8e18aae437bcf9a6072af3

    SHA512

    55e39e52d792b0498c05f9cec2ec300bbace0d2bdb53c6b178b014d0dc0f071d5955027febd68a169e599f5602280bfe41979207d6cf5db52a5b6fa50a90e4d1

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\V4QMYZNH\www.youtube[1].xml
    Filesize

    16KB

    MD5

    16357e421a5c51159ecbc831a159fc84

    SHA1

    51c0066ea2e8db5fdcbc1c1196b50a3746857c9e

    SHA256

    5d07ff9eb3d43f227c793c1f005bf057ac0d43246c0b98bb6deecce5f83e9a4e

    SHA512

    4483725625ca8f648fd5a7b1d882c4d322012a3060eda78645ed3a298c8ddd918cc9210297e2f85acf0ee3b20fe12fc11aa235a0c4855745ccc778bc30ad5ead

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\V4QMYZNH\www.youtube[1].xml
    Filesize

    990B

    MD5

    dba03fd1060983be68e5c23db141762e

    SHA1

    c858283186ae74261bc5930241e4b05f9c0f74a8

    SHA256

    e9fe083ea56c647d1ffbed5963618cac1369510f619822283ccc227293ead2c2

    SHA512

    17cf290dad5662060608b18e2ded7198887d0358b411ee045d45a819adcdddbe08db6fc9a6c5538793dae45c4c73c285b644e98a541863bf510357c9d40ce81a

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\V4QMYZNH\www.youtube[1].xml
    Filesize

    990B

    MD5

    30e63475770d2a3ffdb6e13d486601aa

    SHA1

    6024ef1273f2374be03e48b79023a96e5e33da63

    SHA256

    2b40aeb544ab3c684d4f6fd97811f77b896874a95bd3a0d5f38e508f351bbd14

    SHA512

    709542355b47aa56b6ee63463feb3105c1d5ddc7102cf1205b6b67342db9b85d6b13aff1eee59096f2faaa4116ed56f574af539a18f797e7dfaf8e9039153e00

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\V4QMYZNH\www.youtube[1].xml
    Filesize

    990B

    MD5

    d0d5ffa1bb5dd53661fb24bcb3bebf06

    SHA1

    caee0e35b22918903c4bbcc445a2fe9dcd93d42b

    SHA256

    96b1d7d7fd016699df15b0e25981a037de8b4ad2b6045539f927047fea6afd1b

    SHA512

    78f257bd89dc22fe9801908e1738f53ad27490e9c4f146b3e23cb7f1d75342b97e15ac6223ebd06317bd6452e50f0f6932c3a387ae67911a44c929d5f717daad

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\V4QMYZNH\www.youtube[1].xml
    Filesize

    990B

    MD5

    551e10dd82255eb9f2f406a5e0099c88

    SHA1

    23e2c75265935988f3994ce92af6ef9bff1268fa

    SHA256

    6973764c3083488e4c64f7ea3807288d4865c760caa62761c288354c5cca2070

    SHA512

    20ee4e6e70c819252a3fadfb0b39343977947790c951d72ecf09aeb900fb206d52b5115610874032960c2017042fbb997e7ef066cdc182cdaa4c1cb5b559909f

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\V4QMYZNH\www.youtube[1].xml
    Filesize

    13B

    MD5

    c1ddea3ef6bbef3e7060a1a9ad89e4c5

    SHA1

    35e3224fcbd3e1af306f2b6a2c6bbea9b0867966

    SHA256

    b71e4d17274636b97179ba2d97c742735b6510eb54f22893d3a2daff2ceb28db

    SHA512

    6be8cec7c862afae5b37aa32dc5bb45912881a3276606da41bf808a4ef92c318b355e616bf45a257b995520d72b7c08752c0be445dceade5cf79f73480910fed

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\V4QMYZNH\www.youtube[1].xml
    Filesize

    229B

    MD5

    b85125deb93097683fd4a8965e97d80e

    SHA1

    c8b73cb994a1ef4c9144441f964d72b0d771b9cf

    SHA256

    3cf18815edd8885f1aa62e667f216ea12eb6ae889797ca023ab943848bb9a0ad

    SHA512

    0cef8c764d8cdd64e590f27330ed48255061528a2343ed47b25cceb50beeec818084e5b56db2733200821b41f84c780f3f8fe45f996498b87dddbf6168253f38

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\V4QMYZNH\www.youtube[1].xml
    Filesize

    641B

    MD5

    e5bc4a9e8d1074c81d1d6d08c7208ff2

    SHA1

    1d5295bc4f5925058e4a629f439c0fac981c7428

    SHA256

    0032228ba977790123f6e131faeb1c8dc83fedb170a9130eff98a58b921ed20d

    SHA512

    93752e5392205e030dba23c06210d41e45d810ff889e0a99adba961683d4377f90acdcfc2c2ea91d6ce394b951e446090bc60ce35cf141ffc8a0ab053b83614a

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabE62B.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarE738.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit