Overview

overview

3

Static

static

1

c291ed160d...8.html

windows7-x64

3

c291ed160d...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    137s
  • max time network
    142s
  • platform
    windows7_x64
  • resource
    win7-20240708-en
  • resource tags

    arch:x64arch:x86image:win7-20240708-enlocale:en-usos:windows7-x64system
  • submitted
    26/08/2024, 07:50

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    c291ed160da6ecdc23f62145e90aac4d_JaffaCakes118.html

  • Size

    139KB

  • MD5

    c291ed160da6ecdc23f62145e90aac4d

  • SHA1

    69b559c0d1ac04798e6b73ac141ad180fd161170

  • SHA256

    944613ad981c566ec9868152a137c5acfb221d464b2597ec4a105a24d6909133

  • SHA512

    2c37c5bd90bf30f1dff989b7e58f7004188e6a2db879c180cf06e7864fc2122fc8cd3109b0247f3b1aae180efc64a9bb86376ad6f6346ebf4089067a75a4b564

  • SSDEEP

    1536:SbdEVcg9lsWyLi+rffMxqNisaQx4V5roEIfGJZN8qbV76EX1UP09weXA3oJrusBw:SbUZyfkMY+BES09JXAnyrZalI+YQ

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 41 IoCs
    adwarespyware
  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\c291ed160da6ecdc23f62145e90aac4d_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1528
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1528 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious behavior: GetForegroundWindowSpam
      • Suspicious use of SetWindowsHookEx
      PID:2540

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          e3704b75ddde31220a553eec4279a9e9

          SHA1

          f0830289222325a9dfa8199a04076f149aa578f9

          SHA256

          c03b4dd69c03cfbc2c1dd4e8a655cbbdca5a95088d97c24f2aadd20ffabd507b

          SHA512

          9e188476819884011c0e9302c8b575aad3c5ab5fd76f74746f943cc24cd455f67a7d2dca3d82a5dce414204a821b77c24aab5f5376402b37240ac308815d8953

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          e5025bb2c3244479e26b920b466aa95a

          SHA1

          4ecdef56f9329dcc374bdc30ec29b1b6523215a6

          SHA256

          321ba7faebf2365b9bffef944f972c5a71dc186a5c45d30e1e16ead454c209f8

          SHA512

          9fbb7156d935a7ba8b240b7de29a87f5ddc0ed1510eb28075f819ea9a7c5e535716c90b323084315546c78b11c68f9e9038b870ff2b3d9fa86d2a34792827d63

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          f5bae18c34ee301a21058f492db51a81

          SHA1

          6458c976c587a0af6c265565e3ba8ba31d89377a

          SHA256

          056ca3765c44e61f6f163e38470953fddd7228994c2d60c38d82bedda5704cb9

          SHA512

          a377e4e97c268f7ae10bf3464d24e08bddac6d90f2349f8a184293736121a25f6bb737f9049eaf4c41c2a087cdc73aa77ee72e65b0e09abda2411ac64c8a6c9a

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          39b222a79a930f8091178efa75a97dae

          SHA1

          aff304024e5ac1f154f77c7580ba8edd0989d3d0

          SHA256

          9a9d41bb574087ff8e1312712d65eb2e0015a6a98dd36f1074d00afa6d2f2f4d

          SHA512

          bad834452f682fc562887634dcd9f1436f9fb422dd897e8e5909a8c00dbbeece2541266671050880ed1c41399098732946cf3f4657e6a63ab9d09a4bee63f6f6

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          e25e0bc5ba6191d560392a3b9e38077d

          SHA1

          e878c8cd6935bf61398af184112fc9c0bb3f6b21

          SHA256

          50144e64c3e25b9b84fa43885fc55f3d1cec9c390c77924f40fe5850fc7e1538

          SHA512

          c7c8e1609dd7b2b23674c6228a08249f5af560bd3c8fa8736df8f32559cf53f7108801aab58e090d0db344dd97d79c6cec38c94733999bf4fe4f5848e1b7d526

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          cfa874e31630ad8586f0ffe6fa4a40ce

          SHA1

          95f625d38323cdc170de013c88200c9a1b82bbd4

          SHA256

          32a8805a6be74dbbec4a7de0a2de7b9fed05a8c1eb5997e35699820a4eec980e

          SHA512

          a51be594315c226a8123df3251a2fb750da348ce7efab0e86b009826e1156ef02321516ceca7fe2b34ea960c0164a2de716c78c210a9dcac66b573dc38694654

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          974f7b4edc48de1f33e18fdcb5440a17

          SHA1

          c4e279030141873b81c7bfd04719cb037467035e

          SHA256

          a88fe9d5a45064365a8f9b85858112b37802d02dd518eac1f36268b814b26781

          SHA512

          a05b78e0a2207a3ef54a59e1c0779795a39657a3c823a35da1742d75792215bf75cac444cf307ff354ffa6ffbbfd5160e330ee25a3498d1936ddfd421aad4cf4

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          a6c7718f39732a0d1961ac7a095d4ed2

          SHA1

          9a0c87630a65fe891af4bb3742d93bb612839916

          SHA256

          bdba0f5a5a5f885f3b72c62936bd4d30c5350bba21a67dfd8b1a7985f95f123b

          SHA512

          7de3b88509907eef90ce554de7fe078401ba5124112e06ae5aeefd8a0d98c4d8f088a0f32862d6a675c74129efb621cdeb1e81a44aedb14b798914daf5d33bfc

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          c7a22032b7083114660274f5c42f04b1

          SHA1

          0364f9bf89cef419498cfe71734e463ca086e8be

          SHA256

          62a07312bfd490a6a0971d19fb30ee44429445fc60f79f2eb9d77b55e7d7e6a8

          SHA512

          8596812ccdc348da36b62f49972b0c75eeb34f3ac091bf1d0f8d6478d3dc711a5e21a68bac7694810a36108d792eeaabce024b8fb903f05bb4580bae679fc16d

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          1fc772ff47acd5dad33f43a0542e3611

          SHA1

          afaad4905429d3bbd4bd2325d8a413789e25034a

          SHA256

          9bf1b0f79947c7fbf5e24b85fba4aaef14ec74c19b020bcb029b58f63f875592

          SHA512

          89b6b67499a69b7220e418bd4250901f9dc9e36d9b5309a93b000d4666ad5ae5ff1b321446236238d59444f99138fa7155778eda142d9b5489c44293898d804c

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          2098b3ff797743493f27132d91122774

          SHA1

          c5538b42edc3bb904e090a34e65cabc166dd2934

          SHA256

          9c2d8e689d268c676c087d51b71a98da37c96ef6574ce37bbe7cb1487c73564b

          SHA512

          4debecd168da463b6c12022328b647566671094e5af5826051a55e417404c8f6dbcb80532ad9f3a8b05f3d9705ca700d5b17f51debf9f038c7dce75c104e0229

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          c1878aabc01599071f7cf9f2d4209bf9

          SHA1

          d9cd9b7a29e3dfa2f7f62ef8db47af3748ad0dcc

          SHA256

          6286320e0b62c3ad1bb301576baf4969766bac13ab927ebf31a0ef56bbd7b281

          SHA512

          b2cd75f1527aea59483693503b5a3a2ac9f9c324fdaf4b11448e38c8b1411ab3a654c2d1236c92f16f5d72d8a6f03dc40f849c9ef2df20ad24ec7a433fead5d3

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          6af730f9a0989d2080fb6d89b59c408e

          SHA1

          9d9d9b2401565d9421bf7f5c258377c4d91dc459

          SHA256

          127c29311d5d667fa2649634b6d3c95a0d151d9057247467ae79d2b154834dbb

          SHA512

          44542b627bbc714091661ae6536700341d8cc02c611bd478fe61f1951f3f9e6ea6505cad7c693188441f938fa034cb55377f338c831fdce39fecfe6530f9681a

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          b23ae0f3e4a891201ed8c1f917d78c01

          SHA1

          b14f750034e7c21360a01235e2c84152a184672d

          SHA256

          613247f631a089ccbfc740be4730d9e3a0b3ebf21ce511223b4cc8004821142c

          SHA512

          b24e5855bc3bb693bbdad760fc87c15c69ea97b599cec1f6b539fa4ce063038e7e30e19e7ac41c005ac6a704b9302923f6bd50153d3de75a4b8910080910e2a5

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          fc6e0fcf098c015bd1191d6bd9775c02

          SHA1

          9131855765b4c20e7aad3823f68e77719dabe0bd

          SHA256

          0ab8d1178a85c0faa9db6959eca802671800875c795b9aa194243545a42092c6

          SHA512

          4fa8d742cf1014f9251b0946d66df57939ebfeaf5238cf82b5efa4e432b7e2433e474e8a2cdb47fa7f8561d13aa096962e5eeea5c549e52082e90e00cb3a61e7

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          70d82f3ea36faf010ac829455327cf57

          SHA1

          eee3cc199c9c269ef8b0206259f18c7614b1d6de

          SHA256

          a225c5a76732e05025d923f76572897d6c1d8061cb18d54157e36183cf94633f

          SHA512

          4219b2db73515f68991d28c197650f662754cc27fcb98c51343e5866fad11e270d634ede48f6a53f2c8b37f92d13d557d361dfc204fc67f23969cb26c7795510

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          502081f412cca359dec77b7ff78b0ab4

          SHA1

          0d6a21e19d90ff930f9b04f8bcee2e9d9bafdc85

          SHA256

          c3be37e23c9ce9a7edb8f26fdc2cc96ce47e92caf2a310cc10c7bba7bb6e7073

          SHA512

          514f550f4662a4477715f8e965a1ca5d3045997e1906ce1ddf3ba132037c045ca08ac35a7a4baacbdb9f7e34042ce24cb586e14b58b38ad2af5b9c58c2dea1f6

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          feccf1cba055d68541fd706f6aa61a0d

          SHA1

          e3b59fe9e25d05c6ff97d91d86fa24608e423129

          SHA256

          bb6dcde99b05224247ef4b3d99f568f414322133dac238ce294eb477f73334c6

          SHA512

          57e41a70fcd7cfa6c29fd91e0808aa73122d9f3f43b82244ea2296211af418150fcfc965f8dcdbd6776408c78f3ba7a335d006a1f4f38377f3b3e2e1077e5ac3

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\CabDE5F.tmp
          Filesize

          70KB

          MD5

          49aebf8cbd62d92ac215b2923fb1b9f5

          SHA1

          1723be06719828dda65ad804298d0431f6aff976

          SHA256

          b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

          SHA512

          bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\TarDED1.tmp
          Filesize

          181KB

          MD5

          4ea6026cf93ec6338144661bf1202cd1

          SHA1

          a1dec9044f750ad887935a01430bf49322fbdcb7

          SHA256

          8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

          SHA512

          6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

          Download Submit