Overview

overview

3

Static

static

1

bfbdbbbdd6...8.html

windows7-x64

3

bfbdbbbdd6...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    134s
  • max time network
    130s
  • platform
    windows7_x64
  • resource
    win7-20240729-en
  • resource tags

    arch:x64arch:x86image:win7-20240729-enlocale:en-usos:windows7-x64system
  • submitted
    25/08/2024, 00:22

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    bfbdbbbdd668a2f7f16c28a4732397a7_JaffaCakes118.html

  • Size

    170KB

  • MD5

    bfbdbbbdd668a2f7f16c28a4732397a7

  • SHA1

    32c7886b16e8d2ec078c1e80475887274b8e24c4

  • SHA256

    0cbaf63e5e147369669cc49a944efabf450652bf84aaa012427899a85e15b467

  • SHA512

    3ba98cce6cf0970426529cc0567b8366ec577f154eea1d6be404c8d4bc5f6cd7a21609fbe3eb0661d0739db9c6561618615fc4cea483daf394cea6feb3373b91

  • SSDEEP

    3072:5CcHloyBFBpNe1GXLgMHGOP+jxjCMKGTypVIhFB2a7g03yfkMY+BES09JXAnyrZ0:5JloyBFBpNe1GXLgMHGOP+jxjCMKGTy5

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 41 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\bfbdbbbdd668a2f7f16c28a4732397a7_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1344
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1344 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2524

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    beeabe74da2052028766f037e381ff10

    SHA1

    1583cc5b259a7e2ffba301ca09e47fd1af509e4d

    SHA256

    122bca761a596d5fb45311a83c5fb9978d8f5182841407dd349193dc925e7d4f

    SHA512

    036d0a3d2e3d146aca4a442f52f7385eb325ba516db5309da3ba04061b37a1c917d23e6feb14f4a67a0e4583f5cbaa49395c08237ec290f2039f9484efc10c7a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    19a3a4c5344cc052cc5f81cdd714fbaa

    SHA1

    b4138319df787ea0a8b43498dc049a85287e1f7f

    SHA256

    785628ac5e18c4310ca8054def87156ae2167d920673f4be9fb0c547c30bfb1c

    SHA512

    7c0120a442ed1c71ad724e81f01e06519508bebf027b2900eb252e5af9b0a6b75a9db37e98be58d11456490adaf0f9e04c450a7ab54c399b3f8ed42e0772341b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    086af68515498d97e3ffc5f009cb1336

    SHA1

    2405ee20c5bc76322463b3847096a61b900f515f

    SHA256

    29f15a09031c2313ce3887ba6e9eac3650d81f00e0b8ff3824f4996537b77208

    SHA512

    b21defcf4d0429606761dcf4d021f32fee372b256e4a01f6c0346e830e2761dbafd518e8530ff45b1fb823910cbd0f3527dceaa57dd55a02d72d9c6f1d4b195b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    67b115e9e67b8cb6412321e5173bc1e8

    SHA1

    2ecbbe36966c63e6b35faeec534b799d8fd7be2f

    SHA256

    a7400b0027503a49c13c23b5d27877ad15261d5f7d586845952981b1d2ff601d

    SHA512

    d474d534d34b23dd08bbb063ca83158bbeeb27495e2dddf7fb3b9aadab8f2a4682fbe8f9495b4107c4089b9b7158619e8f51055de3a91aa0a138a2989de3c196

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    776006249427728f90ee392d4cd2eb63

    SHA1

    c72259e946dc353a63292a81571492f3ad3c3f34

    SHA256

    f59cc7bb6282a9074146088792452ddec24ad691e348aae32e05e2c38a7fe89a

    SHA512

    94586b616967414d8315456f49aa780c67d49a659d0451efb0442c3908eada63fd2fcd04eb9d6cdd56a172e79b822fc4072a00095f002926a8ef5f93d03a1268

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    98412ec39ee682ad8b9e91ca129198c8

    SHA1

    59d020453aae617e536ac5d94b2a2e2e07333a24

    SHA256

    894b6d5b71ff30c85cd16f865ace82ddb09ffe9e81871d6974da3932b1ffa201

    SHA512

    540f5672bad3874ddbf9357eb263c166ef63de26a0c2091e70877af4141209fb1f0a734b4e7202fd0068973e1f4c0e71f1c7922632c8df4b984a67dbee3e1492

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    4c4c266ae684a3d7cbfe270f7798bcfc

    SHA1

    3e942f276f0652e0f430eb993d697c30603dbb37

    SHA256

    a3a4a6c5a4af42631ea81082a0d6583d3d080997e1f518a1521f2576ecd7fd28

    SHA512

    cc3b4987f3a86b9b9db5b5c1f5784ef1b4e4f75faa2212eb55633841ca8c821e71b409385840a467f122b9549a850c5f1a953ad528592500279d3d294844acea

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    0123f130954c6740511448707bb53614

    SHA1

    9ba4f8f302acc4cffb12a32140d5763902caa29d

    SHA256

    1e65e9638d7d2360d05f2d51d1e06156be0d54f6ec70dfc49a55a6a4c79a42a6

    SHA512

    8597760309419e2e2fe3d392452914984a0be75ebe428246162ffa6d729afa113e9825c0a98363a079ff395a51426927e27e4df216238206e1e14403316cc5cb

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    834940a5b43495d3ba824755234cdb51

    SHA1

    633a9677cec19f35165602d63d8abcb7a3ff8cf1

    SHA256

    0fa18bb36bb4328ebb19e8904e9977f47e85e20b55de911da59117514812dce7

    SHA512

    0b4bddbd021387d49f207f66dc329436c1ce0c2e72ca455b2f9a3f3d5f4b22b89e044449cfac6ca63c710364392436c1e6435ca94b2889533fd6524f69eba0e3

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    98e3a34ab7ca404d11323d5c9631db04

    SHA1

    418cb645192a29a38f0860acb425605d6e8bc38f

    SHA256

    f58f878b696ffd3216f11025857e20f460cf6a3b27c5cf054e53f51423bd7a11

    SHA512

    39099f123e0c3da720262d4ce9dba65405dd33b30a28463e94dbf73e6836d5ce1446058e45b755bc44623e557dbdbee2b4dbce3b4f1f704076aa40b3eb8f29bc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    a5232b4b786f1fb653f49de93978c8f8

    SHA1

    8d46b38324df7080cd27dc527419a3b29041d75b

    SHA256

    e9c854ee5fefdd5c1eaf41ed8f98f0a2723ebeadf6738b425e70c44faae6b395

    SHA512

    bd331a7ba41db3a48c1b5ff122fca78e187ac090422bef208c866229fc0fa61bdf8e4f3332ca9d52054beb41c375ba75eae4c851a473162fc8ab4b371bda9dfe

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    bf138754ccc584fe594278a57a8ddd09

    SHA1

    e9a72cc356c5ec57631c35a5e997da3855263b9d

    SHA256

    305e39d54d395313eea6280ba0276b68dd4aa780b53fb89a6dfbc336b6da974f

    SHA512

    b5adf303db315859fde8a9f768823a460774c74092cd0435b24a4418d47f2b42b2a7c1d8dd03d950da081d9919e27869c41897416febf7badf82030b0a323cd0

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    140c2a3c1cffcdee294f95dba3fe1b18

    SHA1

    afc4b12fd3d583e6b7c782e4745fcbdaef0d1d49

    SHA256

    bc185a8f42f097a999f70010de0093e8724ceb9f6d4f965f95cdd31f2b436c41

    SHA512

    80b23513e3fc1844ebe3dc9eab26a7a5abb20c6cc4475abefad0d382bffde96aea3b6cc67e265e24515ffcc253332989a7734f0406c7173d6206b08d09284df0

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    7e7ea0e42ad1137b35879e58febc5e37

    SHA1

    6e4286baa16b28b6b3f43e34ee84ed9702452074

    SHA256

    6800590ef373953bb7f58b7d4d693c80430421a0f2beeb78cbb75c4f985becd4

    SHA512

    28ffb457cb0ec16e579f942b013263590fbbdabc077c6ef3ce81b25da2aa6066555e588f2419894c7c0a6a7ae87deaddf9dd6ad2de390eadf5ecf568e7d76421

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    2a8c0e12da939b15f2050e7442608a9f

    SHA1

    e2940059e136b21c648056915fbde027fd017350

    SHA256

    2baeadad39f52b6ce26cf8e039947ac0d69622dde8c4627acf96645e63bbc7f7

    SHA512

    c2096da7bff32fec83ead7f0a5cb2df9d81c1175b74b81892edc1b73f0839979a45a43b0113f0a0b297986f28e5ccbffc43fd537543a133d1b79b2ac5ca4a436

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    571f4294d15c1edd7f4b3a090d9ababe

    SHA1

    a85285592f291f5215b5eff85498e870fbba7853

    SHA256

    8140bad7b2d3f4477bda32b52b597f401ee6b1d1cd1ab4f3d746d3c7448eff6c

    SHA512

    235a904918d0b4ef7800e7c592f5bac0160d609306cfc9c4ba43b1f2511115da684d1da926b95e58ccf5feb1865ec190884edf1c976fa2b7b89e5ce107b36cf7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    c56ba02c237ac26c9fb9a43df13bd034

    SHA1

    4df43d209beb7dc490bf2a39905a0189ec93a1ee

    SHA256

    51538e0e8392c6585a67a81d9ccf0df1a30456e46504d5ce6b22890bd489a01b

    SHA512

    d364ecde70b7568e9d0a1df4e24cb1676945998bc313c26090ad167eb329dd50c6b0dfa74147ba9c04f4f2c4cafc24b2beebd8e03f9e8daa1e223fa6e31bdc50

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab2473.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar24E5.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit