Overview

overview

3

Static

static

1

cf446910bd...8.html

windows7-x64

3

cf446910bd...8.html

windows10-2004-x64

1

Analysis

  • max time kernel
    133s
  • max time network
    127s
  • platform
    windows7_x64
  • resource
    win7-20240903-en
  • resource tags

    arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
  • submitted
    06-09-2024 09:50

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    cf446910bd536b8fdd81ceb7e80aaf8f_JaffaCakes118.html

  • Size

    53KB

  • MD5

    cf446910bd536b8fdd81ceb7e80aaf8f

  • SHA1

    e6ca65dcfc32eed01b52991e03a5a1bceaee0592

  • SHA256

    1891a776aba615def151808b37c5d3c8d46bd83bb89de264202d1ce6518208fa

  • SHA512

    ac9c2ff221fad529a6e0dbae1825563377ad1ec7dd72cb34ef2342bebd11a57abfc6070badf77fabab7d91f146114de65465a53d34e299619e0ac69c8dbd19b7

  • SSDEEP

    1536:CkgUiIakTqGivi+PyUurunlY863Nj+q5VyvR0w2AzTICbbBo5/t9M/dNwIUEDmD6:CkgUiIakTqGivi+PyUurunlY863Nj+qw

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\cf446910bd536b8fdd81ceb7e80aaf8f_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2156
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2156 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2264

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    2333c6f0a15cd0dd963c5a413b5f4fec

    SHA1

    43997972aee20224228e9bf4204cd00ecd03ebd4

    SHA256

    310115bde8fd3c889f3ebbc49bbabe101beaa6f7848fcf3fb11464d13f062391

    SHA512

    2d6cc7ca21436d53702a8431435c1f1bb9c19d6bbc3e5174529943eda8ff001c94fdc088a6d2ff35bf886a85e1a947c9693305d5ec5594d614b836ed1c15461c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    9803d595744baf8f4c267afa6a0dd691

    SHA1

    6de81939910657d33cb184f0fccb6fa1f0033b7d

    SHA256

    fbd06c8b39d2a8999a8dea364ef6e1e49c11516adf220cc13a753e3de6d9cfbe

    SHA512

    42123f9ed3162b284a1c661346d0537c6742ab71c4d067603ce999370f24e75382b7af6cb1b58d2cfbf4e8224872aa8a6e3ed5327b8f57d4e19aeab387b94462

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    f34ed46cc45b9f22731343877b1ba996

    SHA1

    bd9ce324cdf5c9a3748326be08104b38cebba1f5

    SHA256

    5240469e32924165ccf42d37018f0d2e18ea798ddda7c25db27c7bd45d8f80fe

    SHA512

    ca6b524d146a5a0bf987755ee9651ba8c67e5f64d0663efde75d6755dfcbb61ca3a4c039ed564109874298020f600334ef38a34b104cccf86f9953bc2d37eaf7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    4d50a1a1bb815f978ef4788b4ae94064

    SHA1

    9bc6ecd9aa851d5daba18de9ca4d75c874212356

    SHA256

    816e00f02ebcea53733fed6066937037260fb1146828e93cfcd5b2ba31a668d9

    SHA512

    6650d225c298a11f2ab6b0e3386aa7432123cc619791c352379c7b395f1c9960a86399eb9a0915f1c4e3d3b99a4152ebd1dfe03e1f2086a2ded8dc14b2216772

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    3f6a2c882352573a82e650829368b732

    SHA1

    e0836a5b00c0ed86226b2301555e9213d1350007

    SHA256

    3ac884cd2989a78d688c1d025456be3fbedb6fe27391378de58398b2f710a1e5

    SHA512

    6b01fb6d67910c1d63f59f2fba3975c6ddc9484e038272d9e065c380492bac0b3246647a570e20099648f334e62f7b269890b4662ee1f214d05b2c1ee57d216e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    117bba7293b5dca61ad88f7ac04c1b5a

    SHA1

    745739af9f48e9842573723f053d01e03dac2c50

    SHA256

    534645753d8708288e4988a721bfbcdd4870bdc236cf62adb8921094a51201fb

    SHA512

    5da65c57592cd1af5ffdd8c356e4132ff8a0616f52362d82b0c5971083dac6aa569253815cca58cb64f1887e401e87c3c2cd0e0a7ace9404a2d6b462bd8b6224

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    43541dcccfd74ecc29cdb034b0347915

    SHA1

    fe7b42fcb89fb92e36687f4a3a418de293331d8e

    SHA256

    f712c0b878272a311254b5441d1239125d5c720ec18aea6b6b3c624d7d40618a

    SHA512

    66428ba2ca728f54b767f576c169696da09531deaf38e7d90761f5dd82b0e4f285e60be399d34a785c9703a342522648509e6046df352fb76ff93fac494806bd

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    7b482bee6d90a816ee3d9ca22e6a4277

    SHA1

    c6a91e87e3e7d2b34847b53d852ff96874b20c7b

    SHA256

    f56f03ded0ba57dcdc9d725c95485e01b184a7d0f9149bcae07a6f5434b1142a

    SHA512

    6e987284ed4db4a28373e6cad681a7fbfcad4f48b2a60474935d8d02764fa33c87d065ea2512199ce28913c791ea2749f713586cace72d7df028af6fd7f3e1a2

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    7c36efffbcaae090df56a309e889f8ed

    SHA1

    144ed1acde8406beebfa625897d1f0b15a3bcb07

    SHA256

    e4cc9b50a31cb3b8bdedc7803284436e72471d2778f3b33be6f64f727df020d9

    SHA512

    94ca119298b21d5c1b01bf957f4ad6f4fe038639ca3805573bebdded659cab55ec2a8a1bddb60bdc7034b6b82c830f207cbce944dbf784e802c0fa8ca38c2db3

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    7e7b01381c908835717548de2a0007c0

    SHA1

    fe13ab22430488882ecfa7056c433378f92ca3c0

    SHA256

    7ed300599eed2904338c87740f7a2d784b71204800e7bf14d2cc7dad4856d2e6

    SHA512

    e1b160898d01c9cc4b473a474b883cd34e1da4166f4c1fc44611c3ffcae1b1a884b9dd72d4f1ea971f9303a6e874745672f2580d76855748efadfe37a8262a8b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    fd44f8be1da2b3d13d9f8d1597c346ba

    SHA1

    5f9c4d0fb39f6564ed60b536a64c325a51ceca12

    SHA256

    99216cb9c8aa88ab48c0d9dd71309b4040d76af883b14daf16968d66c0e277b3

    SHA512

    c80f09719f1a19c2b7c065420cac4a3f63b66c6a59b59773717eaa026b38d3bb9ce84400d9b141c81d7005e0c73de1a72727146f3ff13499b0d6d4ec112545d6

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    e2684592e0a269b8f58b002bfa547605

    SHA1

    a115610c248f2798a77f3f9819699f4a3dab8d5d

    SHA256

    8123b0ee89aaaf810f58dae202e5d53daa930660a5633ec9f74b1463ae1dfa46

    SHA512

    6f4bfbe1e4e9d257279e18ec25f365e6b3fca023e288dca2a14ae4f0c53433b917644d31f6cebea9870956d85fbb14327c99f055eddfb817453fde66ba0092c3

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    c11a9800ada47841576dccf7db07d816

    SHA1

    520d597d6d40904fd5c45aab6bc941778d569381

    SHA256

    d20bd0cdedfe299165c990963b27a5b06ed67f8479995e24b3617846111d3c50

    SHA512

    4606cab01771ad13c510394ce0ee94cdd5bbb66fdeffd8ed8a340937d5c5121e8b3735562ffffa37280c4b4818b7dbb1796f87c19e0a1366e92ab46aefca63f2

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    4d0b2a2f787a9b39019cca609b800aab

    SHA1

    0393ec1fa49760ad0d9642c2f73103c1dfcf712f

    SHA256

    222852d1f6aa954a118f55d267e486c2a8f47151eba5be14a80b58e742da8dcc

    SHA512

    90e29f4a94eb6a71942bc16bdaa8e039e6903a097250eb165ba2eaa221f16c1bf4977ddceb00be7b327d01a4edc26b6f7fcebfa1bde905b563f4c03cbd07501c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    6cd1c1d601298c4cac3d9a63133705bc

    SHA1

    3eb6ce0758ffca5bc164c161e42634b92ce71695

    SHA256

    9d588bad316d7591247c3fe2b58b8de24de3fc9926e9b93c55ce8cbf3b808c16

    SHA512

    360e6bceb0cbd0673f08578932b5808dfba9475ea61f6a2e5c4b435b72ab68f1c757fd1bddb1af484b239a1a212d5c50fd6f4094bcbd1ebe30212fc362865451

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    c48b65d0c3bb1a2a97cf6e79d1ef152e

    SHA1

    64df0a989e2b8ec5136c8fc1386f9c8abdfa79a5

    SHA256

    c74f9dff89c4cc574dd6a27178da88e0032cd7191915f925148ddf1c595f6687

    SHA512

    8022e2b166565ba722e7578456de4f8796c00bb52caeba9e9ec9fb25430b55d10c715452669bb909f3e2f86a0147437dc9505706ed544be422494a240c7404bc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    e161f9ce2c456f98e5f0b305e3da32e5

    SHA1

    32ce07009b6ead15bea1da9f0751cdf6e9927627

    SHA256

    dd50868aeedc9114ed537836dc4166bc2c5b307c028d9bec1ca7cd8baa086d86

    SHA512

    c12184cdc5259a5a7d149546b4673d6b992bca017552cf2e1f9a4ee291a174c1b043c6f6ce56205ee35a87f65f016bce4ed12dedbdf7d7725bfaf194954082b2

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    09457c25a246d0c28450d4fc3e35c32c

    SHA1

    df932a3870c056a3d9f06ae7db0464b8b00251f0

    SHA256

    65074d39cca61b8bb108cdce9d171aa15c82829101e64166af43b887c3bb7e5f

    SHA512

    2710c7615ec08f21ac15e9b50b026575ed1a1f4f491a3603135b7a44b3ebc1b6f32260b6e5ef597c13ca66461966ebdb745331aaf94d908f5358126d6cccbe65

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    bbe92fbc51a5413494ffbccb9a0975ce

    SHA1

    0d01811a3e8f38fb0224e5be8cdbaef0a9f083c6

    SHA256

    23714cac3bf61416827e41a0a2633774ac7de0db99a7c877edfeedfb94f6cf12

    SHA512

    dd55f25fb7ad577cfef62480ade358daf37a92834c78ebb7687a3ff3f619a8a63d30035b9a99fd27151048010330a08c796411a01370c972c9efad25aba7cbff

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\M4TQDAHL\wt-logo[1].htm
    Filesize

    706B

    MD5

    67f3a5933c17b3ab044826d3927d0ba9

    SHA1

    5957076d09bacaa6db8ddc832b4fd87ed8f05f8a

    SHA256

    97e800f4836b7030dd58fe6296294b7ff5ef1b5eb0e88353f230ea1608d2bb64

    SHA512

    03ba224055ffdbf32b7eea30c764dc18d66cc6d8707dc5fafab74e155b0bb3d4d691c5788b033a68f05299547297125122778fa7e3252f93e7343d918936643e

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabEB79.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarEC29.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit