Overview

overview

3

Static

static

1

cf5be9424a...8.html

windows7-x64

3

cf5be9424a...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    132s
  • max time network
    127s
  • platform
    windows7_x64
  • resource
    win7-20240903-en
  • resource tags

    arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
  • submitted
    06/09/2024, 10:41

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    cf5be9424ab466506b1924772bbe2817_JaffaCakes118.html

  • Size

    344KB

  • MD5

    cf5be9424ab466506b1924772bbe2817

  • SHA1

    b6222cc46df2805f5628fd40d5ff92d3845f4efa

  • SHA256

    91e10b18d5063e3372e8071dcc2aade2d2c140bbfefad002a6c35b0f8b7143fa

  • SHA512

    337da81c37e6232e38d98f8d55989e30243295a9efe742de61640a267c2cfde789acac79e9cb4e1d7f2f2aea4c2884aca8435303addcc535874c8f21055d4ab4

  • SSDEEP

    6144:S/sMYod+X3oI+YoIddsMYod+X3oI+YrsMYod+X3oI+YQ:S5d+X3Jp5d+X3F5d+X3+

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\cf5be9424ab466506b1924772bbe2817_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1036
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1036 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2840

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          b5759c07271d149002b96de905b5d835

          SHA1

          e0ce4a8f0de61a833c4194611c659bb38f119118

          SHA256

          4a884aa9372f9757491aec837036f26d02889cfeddb2c1b7a931a26fa4108aa3

          SHA512

          acab94f5cb9463ad077fba251c0449690de62f877dab34f947f40bf32980b8f343533f7251565ebbac182918229b046e78042915586b875b50bb5d7bc92a04ca

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          86738ea7e7503b9a8762a650a6a79dad

          SHA1

          3f9d925c1838b9c70db9b55a2892b569ff97af77

          SHA256

          287e2e5fed3dcc0f0c5b6713c54b26a9be1e9a24a75d066ca180af5f0e707ba7

          SHA512

          568559e823c1026e51b4ccc427df719ad06e5a8abd928a01edcca2ee5ed8e9856f6774a97cb905be79b1c32d74c2ea57bafb0030bbbb3aa82db4e1e7d637999d

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          7558ac67b34f6b23ff5a090f4601eba4

          SHA1

          d8717f554478256c074d7cbbccd602dbec4ffeb2

          SHA256

          ef1229549136543c53896bfcb05e94e047a87d6310a041d6b4b55acc1830f076

          SHA512

          f2bde6a5ec2c9fe09ad72a6993fa088116ce8067645cb167c4332459c28472ff5d077a0dff9236bceddbe75bc15269dbacbe4015d687e578dda56fc3428ad235

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          d5746572715d8ec51b3ac277196dca0e

          SHA1

          ca6cb677f5d80ec8d396124b2b22e6f76c866c4d

          SHA256

          f0b1bfdcaf21aae282ff291bd04ac328c331ddbb181feddc791d536665bab57d

          SHA512

          27fde29e1ab55e0a1d80575c937b021f1726a786dba7a04f69484a1c93138ec330703474dcc5badf1e6ff8b1774d87ad72a1bbbb9f592d2682040811d444e161

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          1321dbea31c2327fb3ddc484be5bebb5

          SHA1

          af4ad8df926c1efcdba492b7820b2ba76692399b

          SHA256

          a2e2d2149ff8c8bed6ffae547ada665bdfc2a8471f77e2ad192a803c1a64822a

          SHA512

          f6c121a9196870bd99d811f640511d3594b18d8996bbaab7052cbfd04dc5641c1b4a84fd34aab15a433b7bf8eba4a8011fa2b2dda0ac94147d058dbd5dde35c2

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          6ccfd29c3e418fa856e96e685b9dfb67

          SHA1

          c824afd0af112ab62d9036a0131c99c72e7e4c0e

          SHA256

          339a07145f26b35fc42271043622239cb732dabc9311e3a297fe851f864622f3

          SHA512

          76f789466a813e96ce796d64c9d072330da97a5db0803c2b927960067191b8f8b5eb6ce51cf858aed45b30d4a24753ece9fcd7f3138926d343f5d1d55826e03e

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          38644d83cd0dc94412ecf3e2d64894fc

          SHA1

          307ab16d71c8d1afae53cbb4a691b41a22934a88

          SHA256

          a0b8048cf8286feb011966d8ebebcc1cf0f3b09b4ef8068a3dbd042d90a0edc2

          SHA512

          62f1695ad2e8959074c0af39a0b5078bbde42e8d22a0bad8bc2ced2188268ebdc672c26b5e6c49ecf4ad6bf922486ffb154ca385d4d18bd9d1871430a6b40f42

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          d6321bc7de33dac9ad87f93597f61fd0

          SHA1

          b640e3d0fdc4c2e89506d2892b40892f64e3dc43

          SHA256

          5ef95779afd3238f5b4cf7d0ea190428347c799821a9f3e2d4ae8a7e4e2f645a

          SHA512

          798818b6669a8e99f66a5c598ab8e7be720c57c07002d40ce4e557f38c9c3eeb3f0f50c2a32de197819a2c4d7183015c069c9fd95bf39f4fa78716211ed85e6c

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          e6ce1b82881499a593d175b2212cf42c

          SHA1

          330d68aeca5143ae5b1e2fbde6ed2f87eb8fa7d7

          SHA256

          1314bafe9e9994babe4f1734bef10d29dd7cc7b0e2ba504050020bef90bdc6c9

          SHA512

          55aa91aa4e12599ae3e525c0c79b04f999aece2fe0b976db3961cb7fbae81c081706635bc1aed52996e4ef510f02755aafc2219daecee42a5aeb8e7a7025f322

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          8791192f7d5a434e6c485f17e85c2977

          SHA1

          26f568705d912e4e4702a92e89df88fd4ec49418

          SHA256

          98cbaad05c17cdb4a8a8cfbbf7623bb653fdec3b473d4e74eed29dded2fd2b35

          SHA512

          cd70dd7f0bbe5d53dfee739e42d5dfaafc50ff3180bec60f35297846e6a4dc52e2eef3aa4379dab9376a8973720a2e5b0329232f78a55c0fccd3bca7b4f0d0fc

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          8f5bfb5a3db8f63c18310fa2dc77ef33

          SHA1

          10c2455de5ff05004a2c1470bcb1967f135316e3

          SHA256

          4f5df276dd1f498821f5581f5ce4dbb2d853fb40109d67285f0bda0fe58fde9b

          SHA512

          d37b771212be2cb1760094fb3ca0ca7ab1bbec3cfcbbd59d48237bbba1d4feef01c82569d1f9b8d38ec82e9f446e2ef962a4a3fee2b66dd8b47d70c28053bd85

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          1f1e37805b3ed960d0910bdcaa2c138d

          SHA1

          81db21a21b4bde7768d17eaca07aa4778ac4cc0e

          SHA256

          3300053dd53f1f837aa074063bc640b77d945edbac58559e504ef36180aabdb5

          SHA512

          6e07b50bf32b702f0e17645e53c470443743c70adfc4ab756a540703466f6cb33a4dd73e215a81a00b1952934ff02251a239c97413ae53692773c6683cb6c3ad

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          9e28a4c7cb1571513a427715e0068bdc

          SHA1

          6df5aa23440a8cc51516141885196af85b1976b7

          SHA256

          7f8e838560e4e47abf293483ec4df0f4a1fd4b347b13ad6dee98698c44f2cd00

          SHA512

          ba324d89297b3f9cb058eed93f324435244befd4bbd5e5b0c0af91f2f67ebde13c23d4a1d9d090764dbba5bcba3fde2fb101efe64ad19e222f763c0c12872e3a

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          9464ddd99502f5211d56039a07e18f71

          SHA1

          6236591108131d89a5519f1a98596b19288aa2a3

          SHA256

          0f6286f044d687dfe86133b202419fa8af09a6ca98f1d01c8e2a3807879ae1ed

          SHA512

          1d95a487206b06f5efbf96932b345b0d3477e091048034830eba65f5c50fd241989d2f3c0948dbdf047185f9a784a0272c8c0475b2f0882313b048687912ea8e

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          cf2a2d9530d89edc9f8772027a05586c

          SHA1

          0bf939de2623445cb35793383f391150edd608a9

          SHA256

          76df24171b8dafaebdaa992a1775695f03d63360b12b754df4b6d7a6160478ef

          SHA512

          5587585d0a3f1565c0c75604a7be33135248d6b3f7fc7c45780c9b27e0f356aeafd13319ea10c0349cbe004390ccfb7b66880d93560d18881923dccab405196c

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          313bfdd4f70d25c1f0015cb0c64e8b74

          SHA1

          cf9383eb393cedf156cb3dd5fc975cfecd13c67d

          SHA256

          ac55e5ef5567137c0dbbb493ba55b7f30a1dfd7f5426be1a5758f22399f39edc

          SHA512

          df9766f023d56f8cec5092825ee3ade4a17d84f6bf2a013ea782896bf5dcb4ec55afffba74b1e54feebcbfbb11f43d5b9970ea7738999cfbfc0b8b7b3d1e1d60

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          e5e07bcf559bd8a1c5b66bb8139f572d

          SHA1

          35ebc2fd1fef971bdd4dd77eaa01a6565f2ced76

          SHA256

          429da18dc80afedbf8eb9c60c18e14785916934e61c7a0a92cf8ab9a45564156

          SHA512

          e3fa75be8b41bb70a1f14c6aaf2845eb601e1b8120729b03c72251ffbab521163f7ec9b90c0dd2c8aed35c7a54d7aa38555ebb561f761d7804fb51b208e0066e

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          6c74a77e3b967bb7915eceefda8875a7

          SHA1

          d4ea1d88809ee2a9cc6f064577992a4d747fee2c

          SHA256

          f1ec97bd7f8d3cef262d02ce55a23bb572b4708031cc0b2380baf40a81583297

          SHA512

          fdf959ab43135d8d65daf611783557e8272276e5878776a61561ead0f46478f9c5c447d98fd32d14fabecee9e5d511875e61e683a0ac66c023292be44f8663e9

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\Cab12B.tmp
          Filesize

          70KB

          MD5

          49aebf8cbd62d92ac215b2923fb1b9f5

          SHA1

          1723be06719828dda65ad804298d0431f6aff976

          SHA256

          b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

          SHA512

          bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\Tar1BC.tmp
          Filesize

          181KB

          MD5

          4ea6026cf93ec6338144661bf1202cd1

          SHA1

          a1dec9044f750ad887935a01430bf49322fbdcb7

          SHA256

          8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

          SHA512

          6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

          Download Submit