Overview

overview

3

Static

static

1

c2aa950dad...8.html

windows7-x64

3

c2aa950dad...8.html

windows10-2004-x64

1

Analysis

  • max time kernel
    149s
  • max time network
    154s
  • platform
    windows7_x64
  • resource
    win7-20240704-en
  • resource tags

    arch:x64arch:x86image:win7-20240704-enlocale:en-usos:windows7-x64system
  • submitted
    26-08-2024 08:53

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    c2aa950dad5c71812816749c93a6c983_JaffaCakes118.html

  • Size

    237KB

  • MD5

    c2aa950dad5c71812816749c93a6c983

  • SHA1

    7733c72021a8c3fb0e0d4a3bea2c9a9a5796fd92

  • SHA256

    b6d34383ce6530b1f79c26e10464629422928194c2aa467653c0dbdca170a3cb

  • SHA512

    0720ef822793196b129858f8b6f9b5701c7dae1af6cfaeb896c1dfc10c17065c0e500c072d0edb60cf03f0600a5cf6093705a82ac36dd1cbc142d76fdde487e5

  • SSDEEP

    6144:Sh+DRCixVixc/sMYod+X3oI+Y9sMYod+X3oI+YQ:C+DYixVixcD5d+X3P5d+X3+

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 41 IoCs
    adwarespyware
  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\c2aa950dad5c71812816749c93a6c983_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1996
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1996 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious behavior: GetForegroundWindowSpam
      • Suspicious use of SetWindowsHookEx
      PID:1484

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\3C428B1A3E5F57D887EC4B864FAC5DCC
    Filesize

    914B

    MD5

    e4a68ac854ac5242460afd72481b2a44

    SHA1

    df3c24f9bfd666761b268073fe06d1cc8d4f82a4

    SHA256

    cb3ccbb76031e5e0138f8dd39a23f9de47ffc35e43c1144cea27d46a5ab1cb5f

    SHA512

    5622207e1ba285f172756f6019af92ac808ed63286e24dfecc1e79873fb5d140f1ceb7133f2476e89a5f75f711f9813a9fbb8fd5287f64adfdcc53b864f9bdc5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\F0ACCF77CDCBFF39F6191887F6D2D357
    Filesize

    1KB

    MD5

    a266bb7dcc38a562631361bbf61dd11b

    SHA1

    3b1efd3a66ea28b16697394703a72ca340a05bd5

    SHA256

    df545bf919a2439c36983b54cdfc903dfa4f37d3996d8d84b4c31eec6f3c163e

    SHA512

    0da8ef4f8f6ed3d16d2bc8eb816b9e6e1345dfe2d91160196c47e6149a1d6aedaafadcefd66acdea7f72dcf0832770192ceac15b0c559c4ccc2c0e5581d5aefc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\3C428B1A3E5F57D887EC4B864FAC5DCC
    Filesize

    252B

    MD5

    7b5126921bc99b2e7898432f94d9aef9

    SHA1

    afc7e473d6f3bbcf3d394b37e6ab2ba8f0b1e280

    SHA256

    829ddda0b5177ec4e3255fa84ea7d16849cb01ee22ba5d8fe26d188cadd26a33

    SHA512

    51fdd9b289b80ea78e304253ef0a74e9f9d2c9bfd343be26571f7b5692c77fc8a5675fe64a77bfc230355cee757822c4cdd0725347e4dbdb3eda3a055f6059ac

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    13fce52d5fadb4f0d4dd0e254b3fef9e

    SHA1

    818dae6bc58f513262eb88c4b094d05664ef606b

    SHA256

    61346025de0af38fadbc10359a3ac44cc92b1864afc95882d55cdc446f805501

    SHA512

    9d7f7180bffbf940feecf2d60518465476916b64c2b23d02a26c6eecae4c38e78f5db87c97c9c0258d8b0f9af99d61c554ad381efcb1c52595ce8109461954cf

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    7349cf3d27f365416a195ccb35cb3600

    SHA1

    20c01cef809a62f722ad2852f21b87aad495c02f

    SHA256

    30f03f398773f1b03e78fc3fecd61a3e7e0ba8718634ec284fc8af5dd3582bdc

    SHA512

    79e31f6463b7882046d4d1659951c850e6aebb7734878f34f74d6aa0ea672401482bc107869b4f752f2fa46f4ba075553a041d97c6d8ded47be161bfd502878f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    2d6c6dc3e16d0e1d999af5c17f97eb5b

    SHA1

    1544d86a488c42a80c84117e84c099e8471f83c6

    SHA256

    e097253fbeab4638390b129ae09c9277613e72aa9de18073d6edf21cab6056f1

    SHA512

    0cbd79abd0bc5a22d9be07b80fa2e18792247de91d8e6dd2c99468049102eded36b0566fc04ba5a286f76524996e2060fce3dd6e1883584b804bcac536f4ce4d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    d6e8e693e655edf7d549077b06ff8103

    SHA1

    053ffcdc34d13f72bc6ab049445d1b840ca1c87e

    SHA256

    e572b87b4d67e538e017aa6a43fd35b6ea2743e7dae1145682e9c94ad75319e4

    SHA512

    ed2112ae1a329002e2bb1c438cf6cf1563b25e90c9646b506826d298c8e30ada48264822ee144fae5710fe89a237520a5a3732b639cb557ef9d6b14c29ccd82a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    54bb3873a57d2d056b17a4aed345177d

    SHA1

    4770ca8c5391c8aa0e4a19f113c5735049730afe

    SHA256

    7766f79906685a148acdd81a098df209e04cc32ea83867b32d7df6055b52e784

    SHA512

    2832d88aae4c7b2d31f82548c33822b38968d31579f2b6df0319cdea73320fedeeed0844550f4fa89a28e533a62c9c1b8e9bafd3e77670876e188ed440a7ce1d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    7d4d6a316698ae9b99b9db93c7bce0ee

    SHA1

    842d9db779b83c20fda67646157258a7375c7eb4

    SHA256

    d01da33eeb5c6d7c03285f8ca4b93d0292a6db90317892208b644b95a3dfd82d

    SHA512

    0c3219cc5bf93b86e465cc53cc698e8eb54e625f05949cb193b1b34bc062d66343ff3d6682478b3138b041eb85362f1bef869d902930e448a06a932400618f65

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    6cb9eeab65ac47537dba706e83165fd7

    SHA1

    1c2cf320e05cd037f8666296aff9f7b8c21d9bc4

    SHA256

    616b5090a267442586974a061173e3ab29e02414f1dd24494a322af9e630940d

    SHA512

    c086b2cee946c7756dba558bfc767cd038d5fad4cb38962f09bd86fd25442e1dfead5817de9ae5b65d7ef9ee163468d4cff02ec6e3d14ed166b61e13e6859a19

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    263751e9706efd5c4732f2eade3855f9

    SHA1

    9ebfa507a7227751348bdd46e30366933b343a20

    SHA256

    8005ad34064dac0927e268fe8392c6a8f72b07e6d4fcf2448bf9ab3dbc7e9408

    SHA512

    a856f59e51448a40d09d887590748c8e8b63c4394c21db2da63c4fa8b73148f32d32ff6061c4ac4c3d91474699391e61ef714cf4091dce211286e15250feb752

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    47927febde8410011ba8356bc0249545

    SHA1

    01be888c5153ba6716a1c5a40c10ca6bd786b996

    SHA256

    8b2a4bc2d3923bff7b3cd1f366aa9cff69e17d1558281ff5b9da2b1e940c4770

    SHA512

    8370aead39d183dddb5f2cc024605eefcba584183dc922b9e2aebd723b9ce3c548942ab51e3527040249cbc87d1b852ca597e662ad3026c6a521bbe0157022e4

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    4dff93116c4d48031dc068f40537120d

    SHA1

    0e8eb71bb1d9b0f372d39228dced3597c77419a8

    SHA256

    ca34a85e9c4850f60ee1f0aa32d006205df5bb97f46aa7bbdb535b40c65402ab

    SHA512

    4d45d53d5cf554ca20d5b813514f36b7064e741a0ad144b3aca5c5c5259407df72352f226e37609c2614da2ba7596796ce0c64470322890ef59331195d380170

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    44e518835e37e7c535d1e566d55dfe23

    SHA1

    418fa2ca929869ba69536ce052837df9882122e2

    SHA256

    5f01302ed79c3d08a8a48897c6fa256431f566930441e160ecb7b560ea26ea38

    SHA512

    24056b90e395c0f60662c34d108fe23f47c7c5e6356b2528cb381576d93c9413096945acc484f4a2aadf85c55047d47f6dbe5b9771d8c178b125d6bed60a6656

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    b2f4210129e69de8edc1e30a754acc44

    SHA1

    55d486e212063c3c20f5a3ed4665bd56d908f848

    SHA256

    60bd1955727e75e401f2cd4c615515259b318cc6b1c16360ccb72a3b25a294fc

    SHA512

    88d302542e700c9b9f28d2cba658f39f9f0cca9b76e7f3cca32219fb1749919f11ac98de1b95d288edab7c0cfbe729af36d7c66eb6c85bc790958e12b283479d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    8380d803d0581949276a28cd063010ed

    SHA1

    468448b9feb40294034ff3f215cba13c569b94ea

    SHA256

    e6544bc496073f33bac41537a56bafda9e38a6ac409f3d1c7a81d1d170096779

    SHA512

    9c00d5ee7e33a41eb71260f1920b7ff268f6aadeef5c0d5b6fec05baa5bde20f2139a7886c2a99fc5c3a65a6debae7e10fb325ce11aacd5e11cae42f248b6bbe

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    690d7472c1065534bcc3041889cb2f31

    SHA1

    85a9cac0366b831630043ee7f91f231d81369cea

    SHA256

    58d792affaaee929c6664a99e95c34c1c0b22cc21b024774e7d8ee13a6810fba

    SHA512

    a2da8093d57ba18bf5c6dadacf808f5578a3a203e26bc77385223351c78074bcce9af4e673a360c7abf94b4e20ad1f066d25b1c027f2a075b5a1bf9821de56b2

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    a12ed413459e4eac0d87564e3aa3ef3d

    SHA1

    648e38ade4c5c3554552773bbbbbc40c61820501

    SHA256

    775138161d6951448a3484102d9ba369bb0505ee4dadd14d3f71a4d6fd8c1b83

    SHA512

    e290b158263ee24c5effe90ce4c332a7dd808a0a449282e0f3b1a8ae350dd717edfb15d116c4d12da1528675dd0d18c7ee44ff8401d09897d6466cb8c4d792c4

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    9d03d261cddd843e1c6a63082b5a1a1e

    SHA1

    314de047ef6518d88816abf07841e3c925c78044

    SHA256

    e658ea39020cfd71548b4881e35fb8367ab1c6813104f779daf0b83f86096023

    SHA512

    caedc297aa74a137c547e0a20ddcd1b182d9932cebecb701b832e8495548e05b0f6977b2e83edd0aa7ada56a0b90c2e29acc31cd5c94ba310eba22377ca27326

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    fd1e21e36e2dd64318a6c72b4700211a

    SHA1

    4a0884b28139840282d410e4ca954872e056fd74

    SHA256

    ed3a22a2316400509ef00ff20080542eab6135953c716cbc5bf4d4340ff360ec

    SHA512

    b9b2c35e1c7a6315bc9b7d7208e3d714b429990d940f00eddf461fe73ea8fb6d10dded62bb0217e4addd23f6d5c06788e249cfdd573c4fad779cd0d25d30c7e8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    4de63c8a9936fd9f3b2996e78b6f4cfe

    SHA1

    7f7e84ecbae667486110254b33debbabd9f24029

    SHA256

    13d210eca517df963fbbe8e193437c8eb504891ab1c053f8aafa14981d3092ae

    SHA512

    15133dbad8c92535fd8ce2b20c955c773f74a07489c27bd6dc1e8b1fbebb1f6ac6036562a2c7c32e7f1b8ae955879db49961dd4c7477ed0bc56ddcf0260b8b74

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F0ACCF77CDCBFF39F6191887F6D2D357
    Filesize

    242B

    MD5

    8f4f8b8b56582d7e2ba7a6c2379770dc

    SHA1

    86bafe1411f5a6f11bbfbff1c45d1d7574ff3fde

    SHA256

    ae5b8d0d5d7aab4f39121eb71f902e8bc2bd87b34c20de3948ca1c8352c69bc9

    SHA512

    810a9693fe73ee6696b438fa78b7b0975edafc193cffbaaf53aabdc5c0c4b0062d7b44e5d10488896faadcc43fdb154672ff3856ee72446d68b4ae360c71d587

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab8420.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar8431.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit