Overview

overview

3

Static

static

1

cf78b6a807...8.html

windows7-x64

3

cf78b6a807...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    133s
  • max time network
    127s
  • platform
    windows7_x64
  • resource
    win7-20240903-en
  • resource tags

    arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
  • submitted
    06-09-2024 11:55

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    cf78b6a807b07d9c205ccf5cb494d1d1_JaffaCakes118.html

  • Size

    23KB

  • MD5

    cf78b6a807b07d9c205ccf5cb494d1d1

  • SHA1

    eb9fd94e04759022437347c3f56421025dec7375

  • SHA256

    d47cec6b0c192fdc0f2228ab0761d390dc3a825b127ff4c14f6ef53b21bed39e

  • SHA512

    1c98567117f5f99a94e12d68848b410e2aa6919fab593d3d7d2b233786e24a3327c085c60d3935172135a113a16c48f470a5aad098f86b402f267a74f5294a25

  • SSDEEP

    384:oYEPpGX36zcAsEXePNY3DlQ/nvFE4fB2GtDzrmIhXlTDGP1Knp81:oYEPpGX36zcAsEXePNY3DSvFE4fB2Gtm

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 41 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\cf78b6a807b07d9c205ccf5cb494d1d1_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1228
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1228 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2868

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    531a80305de77e2421d4c164b868a289

    SHA1

    055473f38c20fd128f0852375ceca3d22213b7e8

    SHA256

    ef1e2a29f5091fa92822f379dbde31a312373934686c11a09a9544f0d4f05d2d

    SHA512

    a8460b5cac19be39f39f39484a8d7d88b6c17c5cd80f4259346449c9ae8bb222d75473854d870f0825a8017b9c1648eeb16148f07d87c0ac6240fc0c11afcc1f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    a30650b24a144e25b01c69b4ed86810c

    SHA1

    4895044eca4a62f6873ef6d0aa401a387c7cfe59

    SHA256

    1f439f9765feadf51d54152175a743c79e6f4f2773867999698db6f9c45785bb

    SHA512

    4bfae95706e01cf0cb67eef8844107eeb138b8fffbb59f60c5da2909d51c1f76c40a0e685dfe0925ab8c50d9ce208e0bd5f29e5c2b97dcdae9b7fa24803b79e5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    55e90b22631ea68d14a18744cf554a7f

    SHA1

    923d41d41174f0cd17e021d5f1bed045f0523de5

    SHA256

    a2e28690be81fb9003232cdcc5823efdf664faed0c2bbf2c53a60a181ea63d2d

    SHA512

    cfbb5ff59c37206a8ad1174b872ee94af9f807e5fa86c218b83ceb35c8045bd1304707557b567ff025f1459dcb14509650bcb981d43b5032e793876e8f4719b4

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    3e5e83bb865698b25b1bafc1db2ce49f

    SHA1

    a752ff15ddeaa8b4e8eede772173ff1b72873e2b

    SHA256

    93a507d95e2433f318496ccd708767bef2674c1e837e012de7cc6a3291c7093b

    SHA512

    8a0b55fafcd196b32b63e2ea35cad81477ee8c5440558110fe7315821b3724f622956a5a62643cd6ea4ad05a80637cb9a4cba3a8e4466e2971a642cf3b527dab

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    d9665523892b22d4001fbce115b5d0bb

    SHA1

    45a15eaaa1c425ba9c9eb891b1d76f8a99b4b107

    SHA256

    8f9ce39c26dee9928b292fe1caf1c0d5eaf8a7fcfce2fc9ec3bd7ed37995f651

    SHA512

    8c19a71d457d90afd077ea46a908e3a538579cd09fefb41d32387ef6cc736ec5eb3d3da66ad95ec3a85d10d2832dd4a4c40609cabdd00bfb149df7a0d3c502c2

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    d41b6596b735fa19296954455833d41f

    SHA1

    8f289db0f02dee0cddbf289817442f4d0b696ce3

    SHA256

    b4a74460a7e03e0ec2d2936cf0717c6311d2658bb17feda40683edd0674a5cce

    SHA512

    ed462f29784e9ff76991745892d569981e7e9fabac72f25a471cd7b730065835ea8920e56e5aaf36759e7790b41ba29c94eca1a7000cb3701f027375dee402b6

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    4fe47c7251126fda4c299ce0e1261983

    SHA1

    7db64d9a4b7b19566feaae2aea965d678e07bb2a

    SHA256

    6a97f5252e9c0fa82c987f6a9479f588b19cfe51f8268e6291f12e88e71e686e

    SHA512

    a459d0305a710fa700f8cb18693682d400add3bef0cd9c2f12953e5c04cf6168d8cb5462108d24ac879da835fe1655879cc7890875deaf3cc6d9db3ebe72665f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    1ee58a8c9849efdba2c742d98729b890

    SHA1

    fcb42ca27dd493e43bcd8a670b8f0334fab855e9

    SHA256

    b38b834a2c1ae81230923a7439d8271d93d71984cdf93dad1a2db1b754e64ff5

    SHA512

    32c3b9aaf1a018717e8232aade2f6c148ce8715624f58ac1d1c25b55faf4d3c1af8ec2d41c38e7126a734f7dc43a4c2c73071b2dbe9ecb89ac85ccbeb9276d28

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    d3cc949f3696fe5349ec84c08c085c45

    SHA1

    be834fc0e6986b414b557e6378b734e83e8399d2

    SHA256

    4e6623ce239ff2859ada80f9ae1225e978497045fc380205f495d06eaef487af

    SHA512

    f4799eab2d2ff9eff3b72266918e4dfd483047bb36292c5b6fe9e57e0f36ad35c7e9183a12aa0b83c4c1aa416b49baf50c7be503ba2155b96a38d898aa41c3b0

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    b5763658252d5c3abb53944b437e6de0

    SHA1

    7148e22586abf17a9e1e390522d78ec42af8bb06

    SHA256

    2842def80cf7e53710b4f065eec9f6f1f3ee366832ebbdadcd287cf76fed3cab

    SHA512

    cb60590acfe6cc39acfd7c50ad28db9aa56fdb3036afb6676d72ccb9ddc7131f0e746e29cae8285ed4b29928f782e5b9bf0a7080719169b2335a30d088b43892

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    e978013871bcddaf42d3a30733cf22c3

    SHA1

    9c247bbf0107154f34387440f7a6af42a59d1e94

    SHA256

    66ba60bb56eb902921b8fe39fdfe9229c79543f5621f7d2c2bb8b3d10a146f46

    SHA512

    d04238e1746cd0bf7846af0e224cc9fabffc2ebbf74feaf1e8eb431a31f38e93b8276cfeee2fdfc186169c2a8b8e2af3c712e29dc44e7560ffa12e1fe056907a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    dd82d86b69257cb64a2c4b5e37912bb3

    SHA1

    6feff2bd79dbe05b69cc642219198fda2820ff7e

    SHA256

    26054057ff863f483e0e4b12718df8dd1cd4374f4c87a26c30b21ef225b410ce

    SHA512

    d93687923c05d39733d0216d11e8122bea7a193d36aa0565debf9188b070c970f5f9f776b23d029fd5702a8b2e3ca4707f69fab305f0acda135a64f0dc88e402

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    c205fc2b4648addd54c15d98c530c57d

    SHA1

    f6c7110b01b0f4a4212578e0fb4317d2b2c10a35

    SHA256

    4bd8c598417cb860c51967bd374bfc60bb925b416d4d45adf8cf905285534ea5

    SHA512

    d7772ea77afa5d3306ea99567f380a8696b4f26277c9838b119407ac3272136f7adb4aa9448f828d0b4c7a6d5231e3fe95a73362153250e5a9e569c19fa72865

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    9460a3ca4b6ad8c995ddc1245d87ef8f

    SHA1

    e7d41c811c5a06a144e380fc44771a42780d057c

    SHA256

    0b54d4f87db204a0b9714ab4cdc40c49cc5ed8872b85024e8f49fdbb738b00da

    SHA512

    a6c19a67d4634fa7765848dd23b287ca7fd544817e1347afbccef52589ca0e0a51e671f4e0f97d8cca6928e97a0e5557c1cc2bb6a2f299c1825163097860efc1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    7182654abb7b50aae981ae6299dd333e

    SHA1

    27a36fdf30a62bcccb529c77693ac10a30f40d3b

    SHA256

    4e28931375b2523da909c72dbbffa36683295300e21a5481249bf62c0b11880c

    SHA512

    7bde8f6dec0dd75cbf8b94b937997ce678e5e9564307719c814a4de8a21f4b27b17da72732dea5b6fb11abe7b0d66fb832722f22d883fcfe77f373cbaac9d914

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    ff55bbbe185a1137bcb50acd78e4e7d4

    SHA1

    23a1c3cf76fbe68ac6c92e76f57ddf932ea36a58

    SHA256

    847e168ac150e7548981aca75b2d2a444a8cc3bd906c7899e462900ff345730f

    SHA512

    a6d67b918f9318fb1f089844e6c496243252d6ea0f2cab0d918d36019a0a878f2a7a170c4181e67fd6426f83227440ae994d8bff35484f04d0c40a13effe7ae5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    602ef2eef24a67e47f2bd57d21b62285

    SHA1

    88a716f658a94076d633d952feb30acc48c85092

    SHA256

    bf83ed7fd7373367fdb6d0be5b80cbc03bfe16e24edbaaa083d342ae201ccc4d

    SHA512

    60822000c12df939937fdaab0c46d65747106e9ce0f910426f55c0043fa2020af2af84886868912fafb3a2a0bdcec27662b5e6edd2ca7bc9db6a38e513e5c132

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    b67e9a1f90b02a8077054ec3902c1d57

    SHA1

    627d2f04a9d18eb96248d666b92f8db6ec8e237f

    SHA256

    d68a4d695501f40ff19b07310758ff04cd34e90f8894d1e34b939efa3bfd11e4

    SHA512

    17a32cdc13173804d756e9ea07883130a84f3ab06158e7c09a7cc7a560523eccc27cbd99fab57cf80c73a4979008dabc401b9061ae0f640e4694c05377e09fc2

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab58EC.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar595C.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit