Overview

overview

3

Static

static

1

cf81a45e29...8.html

windows7-x64

3

cf81a45e29...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    133s
  • max time network
    127s
  • platform
    windows7_x64
  • resource
    win7-20240903-en
  • resource tags

    arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
  • submitted
    06-09-2024 12:14

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    cf81a45e29a5489b1b18ea3de3a3d8ad_JaffaCakes118.html

  • Size

    28KB

  • MD5

    cf81a45e29a5489b1b18ea3de3a3d8ad

  • SHA1

    786d8fe4af434704016459df5d2bc7095f5edc5e

  • SHA256

    499cbfbb132cc00f241e44c4cee2d893f0fc4a40f06d70276de1a6b89d4d2650

  • SHA512

    6aa2912eb7de41aa1e3ae1a18b36973387ee1eb7311ee8a58b8d3aaaaf99ea252a74f1fe8918cc05a74b6d1970d42e0ebd41f5b986be7ddf6c7c85b1cac38ba0

  • SSDEEP

    768:x9w2fsziCRWZX4XhjU6c/I+bu4olmO7u0aZk:x9w2fszivZoXhjU6UI+bu4tO7u0ay

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\cf81a45e29a5489b1b18ea3de3a3d8ad_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2096
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2096 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2372

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    f571a82eb3fd4ffaea5124e26711bbfd

    SHA1

    db81bfff434876f0fab72cdaf48dcdf909fe1de4

    SHA256

    a77cdda53c26bfbbf7f5684e8bd93ff0d45520b501387e72725db2959ee18ae5

    SHA512

    428ec680bf1b86082fa49a8e88c36460d99aa3ca548d7857fed815cc824e43a1f17b1d8db969022d0522ac05ed78ce883d7757553b748bf58f86fbe564189a62

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    af4d3236a4f99c6103b6da9635875eea

    SHA1

    0ee0d526bfb7e5559361bb6f610a8a0a087c262f

    SHA256

    dcbbba64d98ed8cb93353976cd6105349dae1a9c03080c93834d0caed2eeea0c

    SHA512

    9695a1bde5f301b865eca2e8b847ef1e4b35f6394bf3712bdf2e45854e438461250650fe1d05bdadc3c2c17f25e9737be8a33041fbe6bd369c60add48ca50712

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    ad5b6336336803feab39546ab1c915f7

    SHA1

    72e0b1f59e5538139c8e283b988962466a9a9aac

    SHA256

    5438e54a6536331c47ab84f6947e18ba3b4e185eb714cd39e58bf2cd9a2ea74d

    SHA512

    501fdb744556a4ba37f1ee4f718ce35614a0b930c9e0b559dd080733f01c920b1c98ffe162f0f6e35147ed404a60667625ff8aeea4751c84e79424d8e8af234c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    c6ae555391661727e70ea891ffda6e21

    SHA1

    e51ce7f132c58d0292888a55638eb765a9cf7c7f

    SHA256

    0f0041c48f29010f99780ba4b80d36904da3dbb6bde454a413ae81d2ab612276

    SHA512

    7acb38cf3ab10a7be39ea1395cb328041b5101a93491273be25918b677cd09c6c98ac433710c74da5a3f0c04bc3d0133ef7dffc105058bc71d09d994eb5e4d6d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    8b27755d86f1727c4dfa15299673f11c

    SHA1

    94607ee38f09288f9428b5fa880b852bad8106c9

    SHA256

    3509654cf5d4e093e8521d0ca9eb0f20f6854865d342dfd2d1bcdafbff7b6a78

    SHA512

    86ce166169a8a2cabb0e807be8b5849d6e7ab2cebf60f0ad0b7afc0dd3ac35d750450bacb0d60aeca50fb5126197673b2f31c17ec90d77fcd36e2e6fbe495246

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    7689407fe7d232ec9d54df519ad3a05f

    SHA1

    bcba2baaf36f97be26dc6b5413a9e92e44047044

    SHA256

    4bbcc94b77a7d9229f48b9613e588d1cd3e47192015d9331fd137977c9c803d1

    SHA512

    1fe5c960730e13485161d421d0531c7e20d3989b3a1fca5633adabe7cbe5adec2e8379834c812344240fbcb466eeebe224c86b6a6a3e66be7e9eaec2ff2458ce

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    df1b5c2b0e951fad53e2e1040a254cab

    SHA1

    0f3e3bb0b473f61fa02a9e04a367c209b22da047

    SHA256

    cf56bd1237eb3a036ef7b437de05c3442cbbce5d8e963efb98088d520105edee

    SHA512

    f794e02b5b61633ae53ea705988b85c6a75a5ef25835d36f655ebe284712e230abad3537f696e8a11b2909579599ee828cefd6ff95c4904ff122da64f8383298

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    fe4c283a2c0fd469f25cc238c241e943

    SHA1

    ebaf33cfdd0b55bb600af06a9a3a260ed70c71c3

    SHA256

    7018c13f522e10795a5817619095a1f50c0b614bce74b54dad6b618b72d0af51

    SHA512

    47f54aad43715f390bd34f0df54e5793e400850ffe24fa52ae15c2574eb394fe01c57de8637869ec3c48b39ba9bb74bf271fb37f26c390681d4c75fef43b2c53

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    7845573b1b3b576e7355b242c13dd31a

    SHA1

    2194ba718c8d0099f497762717c880bd7386b0bb

    SHA256

    6a3678feb75d5f702bcfb59ef4e6fb7ce09de5a4a33dc2d8fb5fdf74173ef718

    SHA512

    950d9306558d5404832a6912232dfa96a2cab92db11755624f195a76dce1f0e2d0e97837e66ebb56ec0ff84ef6a6117e065e83dc95c95087a2a6a31b342560b3

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    33e5ac7366713a3e618eac22167f1777

    SHA1

    83be74483e6dc12ab4df95bbf0c3f49824244a71

    SHA256

    e3cf7d31bab554624b8a366efb885bb61a92b49d861e84acc95d0117b148b3ac

    SHA512

    ab0352467d9d12a1513e6fd8efaecb41fb89f72c253b058c7c78fbacb91bd5e989456b8dc1f44eab82c07768cf32897d10148aec71fe19a81e2b1f0ed2ec500a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    d465e07fc653876753d19d4b1fa9fbf4

    SHA1

    7f430de14649ddbb26c4b788410bf2f113e5d353

    SHA256

    2a2c3d48bd96a174cb89958a656b13c6fc1e9ef74d4351ca86e74867f5d3cd00

    SHA512

    9b7b1e6d0c3ac4bf85be39d25b4d65a6558368d16d7ec479bd6900ce7146ea246fc5c380a44bb2d6f110f727848d0e3983f5c8ec8ad3bc593e0820b698687410

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    0c661e34deb11ed189d262bdc54ab44b

    SHA1

    e5979db135618ae69c0b4e77dbe4a39a65e301d7

    SHA256

    dc0c44a5286b4dbc330b76c16a001da380c484f7e5075dc8542547c6c62b87fa

    SHA512

    218e82d9cc4d13676f99785af3f9190b4fb7536780a8b69da8fae191c6d3d06aceeecf8275e915cf4a9ef50893f12eb73890ddec0a0efddeab5528423351dbc5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    9dd4243b4207d940784cec77bb1faeab

    SHA1

    35fdb1b26450b1541f63652fc9be384a47f20071

    SHA256

    e5b39665a7db52d955df4cc00144d455348e4f372b7e114a1d357f102df43669

    SHA512

    be20758f15fbe91f0c26d38054fbb14998a1a4070387e101f7d54f6ce78bfc750d43d3c3255f8508a5281d29979db0a92761ddba17b17c5073fdfd60224bdd5a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    a5b85122533de7e9c9c8c670ab649b3b

    SHA1

    aeb9065777de2e2dae3360e0ba8f2db274fc2ded

    SHA256

    daf8d465e859cec0a24cc270b3c76eccfb6d1e2a24559dd11f112a34d1b3ebfd

    SHA512

    40791a2affcdf1f47895dcb4ab0955c961e06cff29043c23d2aeff998253017e7fdf6deb1cb51adde3ad62869847650692ba5bd226818225ddadc16d79fce49b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    c718b35b4869efcb61a6d0a35956e76d

    SHA1

    a88d478a92b85ed104520e9df7ed699a15c10115

    SHA256

    f51f6c799ea249eea8eb03a7c2c4b37fffadb5fcb349b1c84e4ce63dc644ca41

    SHA512

    b259bde4e57c5c5ceb9b2c6a217f93f8f5768a736262d48c1d090a5817dd144e6354f028da8277853f830d8814528e8f320f0f1347a72f04569e1c0da7a3c46e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    b68c159ebed8051100ae611cb3795ea7

    SHA1

    47b4ce4f8ac442efe9012dccaa7955965831538d

    SHA256

    9c169839cceee539c65c5a806b6308409c17de019b96f1345f723b0b25cb97a2

    SHA512

    84897fdeea4aaad14b0ab33ee572f58b3b408662e658c90fb421e1be954ef608c8f3ba3fb88dcf7afd0826c055ec30da4685c1958f6d3ed043ac22a88a9d40a2

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    7ce22aea2ee770a1e3b520307aeccb27

    SHA1

    d9838e11434c1cb2e0d70b88b5a99f5f5d00fd49

    SHA256

    f29b7d57eb63c3fb56b7f8f94c12738552378bf0b58885b5fe3594cd573db242

    SHA512

    c68720e0865702ae2aac7c97350948f7b726172f2d6d01760bccd2754ed84acfbe304ce0241f8ad2266cc0df8034831c4dc1bb8f8d43cdb7fc7d011c35c49c03

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    de5a6ca55ad2424ff0a4be5f543048dd

    SHA1

    c3374b1555f093e0ac0d72ffb1bf7a72382e6187

    SHA256

    a077154845be9b3120b2313af89adb868aba7113dc1be5de388dba55c0cd55e9

    SHA512

    bd6366de392783c117a094e21156e80ddcd7ecd15f0e3a397d6007891e064009db1abb6e18da6ba0fd4b6ef29cfe5779bdd12c5209864a97430be21d902c27fe

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    ff40faf03915547ba6e8e29241adb2a9

    SHA1

    4fc0ddc4963f885d923feead6542071c74a0b538

    SHA256

    ae66656020dfa3815bd4aa4ad5088fb04e9954995480f217a58338e926bc7b18

    SHA512

    a77147b4f78b10126342a890a1d574da9c9fa5e2db666aaf24138301027ff699dab1947a3d5a1c02d2fa35231154ced880c4feb1e5b967cb036d5fdafca066a3

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabC2B5.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarC317.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit