Analysis

  • max time kernel
    149s
  • max time network
    151s
  • platform
    windows7_x64
  • resource
    win7-20240705-en
  • resource tags

    arch:x64arch:x86image:win7-20240705-enlocale:en-usos:windows7-x64system
  • submitted
    25/08/2024, 09:51

General

  • Target

    c07a4ae290d3f44928d450419f2f68c4_JaffaCakes118.html

  • Size

    130KB

  • MD5

    c07a4ae290d3f44928d450419f2f68c4

  • SHA1

    9679046e16f4b86e65330917960b26481f91cdb2

  • SHA256

    99967c2be6c05abf88aaac5ad6c9ec6b85a7094d630e2d83b79773af91b179ba

  • SHA512

    481ff1be358616550dbfb11d0e6bb518402032f33ac66a2e7fc31b25ee121c1a11171974e2ed26e3f65fe47c5306fb68c5a8163bd4ce8c79248f82d1cbb3ddbc

  • SSDEEP

    1536:SmOWyLi+rffMxqNisaQx4V5roEIfGJZN8qbV76EX1UP09weXA3oJrusBTOy9dGCF:SYyfkMY+BES09JXAnyrZalI+Yj

Score
3/10

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

  • Modifies Internet Explorer settings 1 TTPs 41 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\c07a4ae290d3f44928d450419f2f68c4_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2140
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2140 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2824

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\3C428B1A3E5F57D887EC4B864FAC5DCC

    Filesize

    914B

    MD5

    e4a68ac854ac5242460afd72481b2a44

    SHA1

    df3c24f9bfd666761b268073fe06d1cc8d4f82a4

    SHA256

    cb3ccbb76031e5e0138f8dd39a23f9de47ffc35e43c1144cea27d46a5ab1cb5f

    SHA512

    5622207e1ba285f172756f6019af92ac808ed63286e24dfecc1e79873fb5d140f1ceb7133f2476e89a5f75f711f9813a9fbb8fd5287f64adfdcc53b864f9bdc5

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\F0ACCF77CDCBFF39F6191887F6D2D357

    Filesize

    1KB

    MD5

    a266bb7dcc38a562631361bbf61dd11b

    SHA1

    3b1efd3a66ea28b16697394703a72ca340a05bd5

    SHA256

    df545bf919a2439c36983b54cdfc903dfa4f37d3996d8d84b4c31eec6f3c163e

    SHA512

    0da8ef4f8f6ed3d16d2bc8eb816b9e6e1345dfe2d91160196c47e6149a1d6aedaafadcefd66acdea7f72dcf0832770192ceac15b0c559c4ccc2c0e5581d5aefc

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\3C428B1A3E5F57D887EC4B864FAC5DCC

    Filesize

    252B

    MD5

    90db2173d9b8fc6fadadb25fbb6186ea

    SHA1

    848832b3d7798db437ad8d4577fb0773abbc3996

    SHA256

    9af5fd65f6e944d0776bef042fcd91e9b085280c6b73bb8217b87600ac191d6d

    SHA512

    f441b89e923b9ae6c605e8d71f3e75621fa02e7d5350f7045c4f64cd7b4394e36f3aa2c00177972b238cde71b8415b249a3514826c2898c7b2c75e231f047082

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    55a57128691a91a7fa802b6ee82fca2c

    SHA1

    2614886050e1840a8c39411522a6dbb8b10fe86a

    SHA256

    11b7769e9d1635fd90c6247f59625b084f507a182cb8f84434eac927544a21a1

    SHA512

    e78295df5c8338e7fde99345aba78f5f9f198e8baf1b51bed6d4c730832aa7f5a0f95d8aedfb24dea39027539e533c86b103277405897b96bf77f96cbe14ba4e

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    70e8c5d25502edfc405513bb929764fe

    SHA1

    28101ac2d07c93a3c3cad6fadf98dcf083877d80

    SHA256

    80cc0e3a9c9d15830f0cd1283ce9611fb58eda6deff2b7bcd8faa4e32da4b493

    SHA512

    f8098e4fff52f9534f3b3a0228229197c971a534f1542a4bc1807927d6cd6590da806de7491a6e36683aed5dac8f67eb0250a517026a16220c0166daa3974561

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    76147b287c177f0d5254f5af57c89246

    SHA1

    8fee123ca496c88b682fc5446849b3eb49eb47f1

    SHA256

    e2f68795fad5525ac28abddb84e0682b129c8607650ff8e87539e3b6294bfce6

    SHA512

    63f6d19e04eb1ebe4a4f8f801bc2b42c483b4bb709d10d42122a0b48c0bc967d3b3c7da8ff4b4f397cbdccbc688d98bdc8f4555929da839859bdfb85efe4e46a

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    e2a8745c52b3860c699f3605e84d5c8c

    SHA1

    5444f087487f1e5d86181cd2e4884bddd501b3ad

    SHA256

    ecb14c49cd63e829703064a5752009b7fe8165c5c7166310b81ca79de75dc7e7

    SHA512

    1364cbef2a45031daae26689e863b497adbef94f9bff9bc2e9649e9f6c70b12f212611022f3acbc18a747890ba21975d05ac69cb41d9d8a8134fbd4dfd74d8b9

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    e63123c9aa628e4b986cb035317cd0e5

    SHA1

    56da0ada1b5de268e4ff0ee5d4c020ddc831545c

    SHA256

    7720e41da97a18d33a92e533afd9dd6fb7528ba1635a30abab647ea53d94ada7

    SHA512

    cc8fcbf8a5b2ba877a8661442c2098e4adcbaa6cc79d5b27a89d97401dc9be7a9eecabb6a6582fb0f130040a8c5c5789fd12b04761aa2c6ec47b41d4eae0d9fd

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    095a8beb6ca2886ce9709504a82ba4b0

    SHA1

    e440b8ea7d2e135a3b0b84ba4a4744045e1a0eb6

    SHA256

    41b28ae0f1b3c92b0fbadd1afc9bf583305d00ef88a71f42ae0682042c7b933b

    SHA512

    0f69233da8018dcdaa53342f1e5a4e87aa5f170dc8229bfb04bce18f80bdc52d79ffd9b166920e53c73e35a292d58d21cd11df29a2fd286c71dcf0ade171dbb9

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    3bd7ec7c7377037d1a4bccd23e4cb6fd

    SHA1

    69144ed66fb1ca7b5de44336e0d4e2020b5012d9

    SHA256

    ca84ad0ec77c6a4f9738a200f44ee729d21f67b87f734ce08b720096d67309d4

    SHA512

    ce4e3a226e08ec2c49034a7b795032d34b854181eb0b676d6ec751331f31daab5db5ea536d2bd6c9ba859120e46299ef9dbed38260dd8b1689120b7380853d1c

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    2ca1c7eaaf312e6db7f2fe4a5573c038

    SHA1

    fda86a225533f8729b4123807c90881ddf2633cc

    SHA256

    bb3bb2f9722eeb7c1b0bb9fdffc1933d8167ee009a27d35e70270dffbd0842fe

    SHA512

    4fa8be13b50f2a629fe13f22f15b682909e11b62843af304cb0acb1d193371c36d5d96f2602886a833e668d3f342007fed5d9b61ff2a56988edd44fed2db081f

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    01466fa13a9417d36ff6d675c75eff48

    SHA1

    c9f61af6504dfbf19b207b7ed1a13dc9be2bff9d

    SHA256

    4fdcea9d6d6f9bec1058abc5438855154aef6e55e55641649214c2916b32c239

    SHA512

    ffe789ccfe9dc8f70e846f77f5f25db454eae2666a8ba0a642f385e3c82b666959a33095343e28d9ca66a53ea55ccef0758fe6be37ac23272e74da199b0240b5

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    6be52a5279168913083b91707b1c8cc5

    SHA1

    d0503845c41af801abc0a2a68f158e98086c883a

    SHA256

    7cfdf3ed1b0010d15cebaf411038d37c10d4659243afe7c5be829af364329755

    SHA512

    ec0cd21e4a31ce205c9b0fe6848f4b28344973d15a29152122ee9dfd0dd9cbf679837a7d01c4b8a58c2730a252d7bb3071451a9a5db2b61a2b97344e23e35f21

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    c0e7ffd5eb7da7250e6f52ad7fc71769

    SHA1

    41e07752af662770b38772b4130595b4b58956db

    SHA256

    152df12c6837eb3baf88c25b07111fcc588081a5d9516833b89878e631c64ec8

    SHA512

    3a7fb8f1ecdd0a65956a544c6fca1fd7f2b1cfcacab3f729f846fa14933012347802942bb5a5dbd8104822220e3e45c52fb8656084cf92d821f84f8ae3ee1ef6

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    e7534ec67018435db1a8f037a702140c

    SHA1

    b2d7f8a19d8410ea32e7191a1ae122d17b4b6867

    SHA256

    da0a9db0b6af0d451bbf9e56c44ebd897823d1fa8e495e6afd72f4425582d183

    SHA512

    d56ff958ce995e409f7b27751f76037facd4cdd69781b5fb9147405d22f2a8ae7c5b3f5e3e24ea1a16394a30be32c2fcf549628b123c2af6be9096f4cf664639

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    d5acf1bf41019fd62dc79ec65f21df7c

    SHA1

    c9279b40a15877039ffb41b21e99c552e47fc0b8

    SHA256

    fc18f3b501cbc25d295a49766dbedbe6c748f32098a5be7e1727565d7158a0a9

    SHA512

    58eba410b4e42594a93d98cf6b82a211a78e0361632b56c329d04f9a2f7edc2fca9a536f79815ce5aa05b810aaf75bd090952fbb48776c2e84f6f07c497e8f71

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    5ec9a789a9c93ac995d07a288d999ba6

    SHA1

    07e9927e9a3b39f4ea4cf03fa38aabeb4131dc32

    SHA256

    3e02ecf7d4b63d92d3b6b423e91c3c487a55bafc82c009f2d3ccc12c6fbbac0d

    SHA512

    183f94746b03257fe7149f1142a368150abfebd30be181ff6c2a5a29969c05d8a3fbe137f60afc6e681b2b1a73a9b936b090416c296cd0fe53190cf374549e4f

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    c1337b992815aca864e2dce121d5eb54

    SHA1

    c06bdc66274a161029c495839d1d8d6bb07b136a

    SHA256

    78dde62ca6067fcebcffd271766290e360cf00042b711d51c69cfa0179553e61

    SHA512

    c05f1638d6d0a3e8b501a05f0f0a1ce746d78ae0ddd485ae404a83ba024f9c44e79215065428a3cc076051ab79fc71df929edb2718b25ab96c63df84fb7013b0

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    3c8eeddf9ea93db046d865e4ed615633

    SHA1

    0d4b6f476b471eb14678fd0807567e799e277f8c

    SHA256

    fd02e63e159b5a4d5e9ef6bf6aa5439d08e49ad7855d68ae006fad8fe811c919

    SHA512

    101406d3f3badc0d202bb75c4d0eeacb3de8cbf85db007d07b628caf1917b382a0609a6e0516a5b9baa49c99546d3ab91d51a0fc707709b88fea0a8ad76f47ac

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    f9e5a998a0d18e1e5369e95d20d3dfef

    SHA1

    b921063ef4e09554822665ecde98011936e2e056

    SHA256

    3ef267a18aad88c2d9f702b9c40fa91b7480518725c40bf1ee432f3ae677b460

    SHA512

    eddf9c7cf62cc2d62e2c72e8807ecf623e08171ca360ea523d7cdbb6e231fc0c13735a188e5a520f2079e393baded66037dfcb07c3506f050e4d23738136815b

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    3480360531b86f40b350d3349f6ea97b

    SHA1

    a232da5bb756d69c55dae48d40a21113eee1e372

    SHA256

    c95934e396baa45013a8729181933372f968e2d32748bac35b15c964e748c2ba

    SHA512

    39ab04948aa542a0619f09e69e33a7e3b5536acc430ddbe75d718fb28c53367cd972195c730f1492b52cef4321aaf4d7c9f7fa0305efaa6987c0fc61aed8cb0c

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    f628fd3b9dab65e0e89c6224edc84e26

    SHA1

    a8420f8b47edbc2321bb026caa2606c49fb1dabf

    SHA256

    c311a1318d6939640c6c90b12958659429e0ada9dd1eabb98b410377cd0d610b

    SHA512

    6cc30606ca81437571785420fcc86353676a343b740b99700e1bd0ecf578559ed98bc36ac60e5cd87f80ca0293d577ec70f3ba6711cae9400d7bcc067e4d8c66

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    e9c1abab80d359b3001c7fb44915336a

    SHA1

    6ffc4fb5508e3f6f89115d634e955da460d1bef3

    SHA256

    10235345316792f8f97310ed9844163d67e438a4c127575c35c6271953974b0b

    SHA512

    e4c9cf78fbc9ab306ab92b530c54b0525db4f56593af208cd28b0f2a1586f444cf0bf5a57b116f2a881639b3dc29c8a6c59dd45addbf46bac8ab3de8d405b1c1

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F0ACCF77CDCBFF39F6191887F6D2D357

    Filesize

    242B

    MD5

    a9da173d14e55c9f53ef3da6bb44ed68

    SHA1

    6419b319f036badea754d6316ab5a4a751eec325

    SHA256

    11f2719f805ae6a5402f11f0e8eccfc28816edc5b91a3b8bc71ab600557295a1

    SHA512

    4fde95dea828ca39d42ee2050e11908192d211bedf2090ce37fe54b2b96c49895bcc920685d861ad144abff6b7f4dac7b6f0ef7f5317c8ed5f90db2e3a584ad9

  • C:\Users\Admin\AppData\Local\Temp\Cab6866.tmp

    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

  • C:\Users\Admin\AppData\Local\Temp\Tar6868.tmp

    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b