Overview

overview

3

Static

static

1

bfcbc8ada6...8.html

windows7-x64

3

bfcbc8ada6...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    69s
  • max time network
    134s
  • platform
    windows7_x64
  • resource
    win7-20240704-en
  • resource tags

    arch:x64arch:x86image:win7-20240704-enlocale:en-usos:windows7-x64system
  • submitted
    25-08-2024 00:51

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    bfcbc8ada62e8a5d56298e620f20b553_JaffaCakes118.html

  • Size

    129KB

  • MD5

    bfcbc8ada62e8a5d56298e620f20b553

  • SHA1

    d6f1abb827b193ff93bd6a02cc925a746ec9868e

  • SHA256

    9644a1b8c7340031401b9a7b20e9c9cc01651cb7cd0200a97f81781e125d5101

  • SHA512

    5f9b6c8dc75a3405c9f5337e2fd5794a5bde6008f4d78e3fac7103c65308f33b66724e80c7fc0fd1fdcccbe5fd87455a0694bc9a9f316b73b98a1b907e03b210

  • SSDEEP

    1536:S4n08yLi+rffMxqNisaQx4V5roEIfGJZN8qbV76EX1UP09weXA3oJrusBTOy9dGL:SgyfkMY+BES09JXAnyrZalI+YQ

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 41 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\bfcbc8ada62e8a5d56298e620f20b553_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1668
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1668 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:3056

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    81b32a6511dbcd3d4b4561725f5002e3

    SHA1

    241511d0dc1ebc2cde4f3fd3cfdb656cfaf370e1

    SHA256

    be9c0500fea5080f83227977fca95e965264cbed8e23decaec9a33fe13c0b848

    SHA512

    c166b78125ae9d56bb3005b957fb13f447235eedfd7b941c23fd84ce6aa7067957f303d472e84c6372be4630ee29da3bef00d938ba945f9efeade82c95fb3712

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    fc621c6d608ebde92035fce12ce83cd4

    SHA1

    97fc8991317f51e1e5cd4f40e4fd0ae1ac93acbc

    SHA256

    e7a7e473b4a76b1832c80e5e9489c06402c1223076b545107dc93c1c1e9f595d

    SHA512

    b62d8f5d5170e938f54c04793bf7c419f3cf692795099e833c6778f1b78733f4eabcce41957efd606ebc38e7ad24455ecb149547e6b6509c3ecfb88eae3d52cc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    bbd0a9b56e6fcf8345d73dadc010c322

    SHA1

    fb9c128e29af8f20d2fdf200ac77a06c49692898

    SHA256

    239e215e9db82f10e05ae7d6a869636d5ca65482941e521a15e159ecae175851

    SHA512

    d85e5352bfcbf15a6b2216fd971e0d94bf18558bb7a241ef2b53d4f1318d29a4115d6291efd66ea739963186cc97e60e7fb215ef4976f6243b0fe609d147984b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    55018e1c40c56e9cd917f5fe1220fee1

    SHA1

    0ed68e5018046a1e2aa3c97a62e3bb7a25c8ee32

    SHA256

    5fd52c3b5ebf55cd0e8004360017503b527117fdbb552b296c520a7075de3b20

    SHA512

    920b0bf2dfb6191003a830093d07a21821ef9a031994c5b9d6b2445ff96247e0e06f509e887d230e1e31e653523e6effe4099f3f4992c4544d4dadc33bb7b2d5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    262758b977d86a5158dee88e8e77d734

    SHA1

    55252a4dd57f59a74e8ecd15b97e5a6d2d7d8620

    SHA256

    8cc8c3394834b0b28140369f6f1bd8ae0bf2522385a3b0efbef29993fa4d9c4f

    SHA512

    4ccaa5cc84ce5a298b572f0e8e23a118ac33a73e6af26abdf29d23c071c00681a82cccb15637928abe4bbd3940ce3c7e389ecff9959e29b496d98c85ad98e4a4

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    9d96875b8d1ab8cf6e95f6e9fbb8846f

    SHA1

    75b0349521d8c2f3a5e0a6f99237144cf4ebef4a

    SHA256

    49b1dca07acd9c32686e0c8ba7414149deafa852dd45a859f8069e2542414f9d

    SHA512

    755246cec60c3b16bb5ba6d42820601995167183d65f5d786df19f0165371caa01b051047a067d80dc3fc2cab6c344f41da26a2467a2b4eef95bb5056398c877

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    2c2f4c488af1c7ed08f7a1401c3433f3

    SHA1

    91bedc836d0617f50be64ddc28a34ffe0f4acaac

    SHA256

    9422bfbe6b1f43c6c777b24be4642e96ff0c18c3e3c2486fd4cd572a2360e4ed

    SHA512

    1d585b2bc5848fe1a45cfb09d91b9f9968124f79d9f7f4d1a7f05726a2363bf4bef719b143adcd9fb82441eb65b177cace972b97ac657850bc97c3caffcdab13

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    2a114bd3bf004dd09167b26f574f2727

    SHA1

    c333c4c88f03e643907e8cd84bf0e5a449a28fac

    SHA256

    4980ceae959ceffbd62d317ff6ee9d3c339f228d03a19b0a008007318f347f3a

    SHA512

    53b5abe39573eceec76c97436aa4ea33b7b6b25f1bf2a153dacbc4bb07630ebb8d2a27cd610bd4cc7cffbe399532a03e1d5489a5a78ba6ea5c08be1592d471ca

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    340dd657548d5c0d0ce11dfca5af9d47

    SHA1

    f14481e36634d264305a34f48c73c7a8e348bf12

    SHA256

    65975f8b509bd23ec585d9d71eb9fd5e216a6e7dadd9a8f558fe63ee1a90b444

    SHA512

    60a08ff58a62e9143fa5b96f1e625c85ed9f0c757006550c5a22f831512530def58cc9514b0efbe109ab4befc88eaec1ae431d535b15662ce9e0b8a16317d6a6

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    4648a2f7c1b3dae1c354a83ae4d9af48

    SHA1

    f8cc8952de03774b1b40c39074059ba193ff0ca8

    SHA256

    588e94e0973f24ea69bf98cad8d96a16c321f3ccba27f91f2fbc6cdee7337095

    SHA512

    ec57d4657a417b6bead20f69ca63adaab9dc0c0b06d39e20de9aea97a12c36a4ce16fe3e2f49c342b0b95f6cfb707afb26b78e324556a6bc348f96a4118b4836

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    e0ad706674ea88373743308178685657

    SHA1

    2153f430a149dd83b8dce82290c9fe8eb63f9739

    SHA256

    1f2507493c3400d3e858ee0be79c10f9512dc1a334a3cf95e287b6dbbe10b520

    SHA512

    08e041e6c89e35a758b32630e26a6301cc7ccfb28a6d1275fb6c60a7def0c90288dd8499abf98aa5a00fd7d8f0d85a5609df9397905e3419d48841f03d99c522

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    4e6d9c5d7e7290e776662ccb3bd3400c

    SHA1

    d48688693c0faac9f41b649af88c0e18cfd6bafe

    SHA256

    f89e576f25e3e7ff2dad74e66cf6f0b040e470e05fa6e1313c2dda97faf73ab1

    SHA512

    425d4af6202b939a0af6a248f338fdec8df2d4e7ca674a02bb914683b4e0920358b0b6291fb0d5861bcd28f4759b9a5e44a4eca4a1953b6d7e9427766d0bf29a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    39f5334759d6170d9b89b7de3d338b4f

    SHA1

    8af0da7093cb09e624262607667c4b91428690ad

    SHA256

    ed81854bfb101dd8dfa136c3a1d5b2c8c11fd3f27f94c74562f9631ede9e2139

    SHA512

    5b1e976a604eea3e0709d5d6980919b94f2007508b9cd56fb050ed721941a329be3ba2954d0593671b51f8c22dac48c7f5e7849aa74a0871390f855a6c059d5b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    ac52aa2f316f7507767f645326402e7a

    SHA1

    9db9d30abc98c22f4cd4f4130a8271f50d734bf6

    SHA256

    33b4a79d46e69a6fbb43b9c7f306e8f848a0989804d0f592d8cea5e2dce158d3

    SHA512

    1c2ef47f96d7fb48da13216e9b33e7e1ee6b75278845df01eeecb0456bde1a5b2bc4fe748111cc389ba2d9565cbd10e2d998f1b1e3c5d02f4706a298575608db

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    f394f50b1bcbffca46b36cd6706f5695

    SHA1

    6e5b5a30eb8d22df236a223cc4a0b7ce37fd2518

    SHA256

    1c2bf23419db69c28a5dc0f3744d2adadf6818cea59cd7171c3128a683ed7db7

    SHA512

    721ae56a8d1ffd1e71d4109c5f9d086b47df499cd28a387c5af67ff1d081a571a05ca00422fa2ba59a4bd05dffdb610419accc28358885774c2328479b7302d5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    11f7cb854f914acc9d76b8a4c8cbb207

    SHA1

    45cb6cd31e98671a2f6d44845c456c00d5404392

    SHA256

    f3a474a55298442b0dcdab9bacc4d5ddca019e4ab1253b2e703ee05c136dd2d3

    SHA512

    861912f3b4fe8ffcbf58215e9f5d3144b3e3c12b0217b5997f975a525f96f7f9a26438d7384832a941ecae2e000947fb58e0c7e3ca8042d24907f96031ceb469

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    61699fe9c0dea27bae115e6b5471b5f4

    SHA1

    c1ef81ae5c66d98d91a2e0f02a85d7e622251eff

    SHA256

    689630de28df48a7db94a709f781036d0da647c0cde65c0cb3551f09ed11c951

    SHA512

    36dd68e0b014a975e7bcc8c6c0df099d62b4d9067f82176c6021b91245c2ca84c57b34a24f800c46747709c08c63e36108589a6729d1f6e5cb438de89c14f9d2

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    44d0021cac93500c8321b51cf01a632d

    SHA1

    b15acf5ad1ba83e8cb46a1d32ed79dc485f9a4d1

    SHA256

    9137fd38c3ce0331b6964bf0d04b3f9e1bc4db7f99db608d1fc39922f7c6b7b0

    SHA512

    8badeda09ac07d8c0eed2a7a15082056f9a0a5207da15e964dc66eabf4f06a8bc98f31f5938bb7dd37a952dfbea67e55454e6e71c478b047bcb833f0c8b36692

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    63309a3b309d5193bc0f73a2e83da870

    SHA1

    194174662f592c89f817b46915fae53a6e201370

    SHA256

    8db97d03a16178af3249804537e7b3eee416bbcded439b8ac6b9e56e39147579

    SHA512

    364a775c1712e5fb142018fe4fc77d90e5dc3125c645eda0de25e5c0d05041d6f42a71bf230871028476fb7e639a4b1880015588108df525347bb256be14cc8e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    be6aac03a544af61cc0b3bce3a6716cf

    SHA1

    81f38cf4ec8387966c5ca811d7b2cb8e1b065523

    SHA256

    2dc716a007c1168e8649c6f1b157c29ed0cd54d5ec0a8fc3a8b66964e077b693

    SHA512

    efc2776d5e021bef9c55f0bb45fcf216e806d273b6931f3dc0531d73b9fa22085139d559e666c3fd61b3945d0dd023084c657e5658a6936a62d6d44231ec63a6

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabA50B.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarA50C.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit