Overview

overview

3

Static

static

1

cfa967e3a7...8.html

windows7-x64

3

cfa967e3a7...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    121s
  • max time network
    127s
  • platform
    windows7_x64
  • resource
    win7-20240903-en
  • resource tags

    arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
  • submitted
    06/09/2024, 13:41

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    cfa967e3a72e3fcca43b74bc4f898a4f_JaffaCakes118.html

  • Size

    27KB

  • MD5

    cfa967e3a72e3fcca43b74bc4f898a4f

  • SHA1

    3a0cd27ae6a6b29eb1fb4bca717883b4da1f28af

  • SHA256

    24d5188d1c348b9dd5a968106ffb458a2f5f1882eca2b859561dca06c1ed2ec1

  • SHA512

    72415198906a43fc895d19d2fe81f29a6ae3a6fe5befb766fcf6276de83628a227930fd042680fbf66af533c10ce1afdef75d5be1b988a6e2f7545cac397b265

  • SSDEEP

    192:uwnNMFnbb5neeynQjxn5Q/8nQieHNn1nQOkEntIunQTbntnQ9ezjm60PljQl7MBd:JMFnYGQ/9+F4l6S9+q

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 41 IoCs
    adwarespyware
  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\cfa967e3a72e3fcca43b74bc4f898a4f_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1832
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1832 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious behavior: GetForegroundWindowSpam
      • Suspicious use of SetWindowsHookEx
      PID:2092

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          0d1cc96c6489a0d565423181cf15895a

          SHA1

          d4e7a69bc01a58ee947d4fd381c14b64c5f01f63

          SHA256

          64e3389598967dfc769b4973da0cf42ac1ad79012321a1c07969b81cf847d5d9

          SHA512

          4957c49282aa9fffc3b362df8ee25dc48e059b682e1e32c746a8aef40c7441a61a53368f32a2710c5fa411ef16ac65246f4f1bd3909cb4171d1a42445d7c7c22

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          18a9e0c0e742bda3e6ae8b419f4ab9a2

          SHA1

          2df310020188af2166af6d773145ed7777bf1b6e

          SHA256

          4544b59191c64d32d60469ac00dd6d2fc95427f64c91052d2e12a4afa390e222

          SHA512

          2e04dac331381d66917072d43ea50a6664311f83c70fb7bf5ab067d0c97900eb1003c662090bad20a22360f2757768322967e1ca49acc42d64ff906dbc2416d3

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          030f408106598fdc157d321bebbfa045

          SHA1

          b7f09583cfa36b18d21ad82558f1bb50bb240db1

          SHA256

          1b76a157918a56cd10f65d48970fe37ca7a02b534e9a83e6564ea27d847e5887

          SHA512

          1b52cd563cc36cc7b4b8a0edbd8e8f0fc3246b9fbc4593733ec429708e9bb5869bdc17cdf1c46eb6d16ef1a10be45c8870a360a5e1573b48e442ff04d173e5f3

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          472d9953547dda0b9bcb1a483c7ed616

          SHA1

          d90c833ffc8238529f184feeedff00866fae07ae

          SHA256

          f4a3ffc9b10aa6ef1b2783760f52d5a7037365d8ce1195531a038f3cd4211354

          SHA512

          8b8f40a2176f0da0eae17d887d210ebe0fab4e570f0ffa7fd26de93376eb401d2f4a613f7f21b572b21758cc931fa033ce0ca042b9e73cd354ac400804070139

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          2be9caa227e4eb0036a24e280034e38f

          SHA1

          6c78e243a85768ac2616d22c169934c73b57effb

          SHA256

          1f134f066a14d3ccb51a3b674994a39b7f604b0c8ce3ae4f1c65814029f17c7c

          SHA512

          2f5dad5c9410ca19f59de9ab0d0fc3f2b998baba5060676a4f033d2ed5997568f73defdf5c077c554be1e615ca461d247dbec1d6434971d40b0e242d3359f1fc

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          375338984574beb30a0456e04e9e3c89

          SHA1

          360bd1c282456c0fcd8adc55eb470dadc3807b34

          SHA256

          910daeebaed0f6e0c92a89d30276f1434ed14f2f7f3890aa1abba693babb9b5f

          SHA512

          1c166355a520248f41e6da15622699aae69a71f368f553a2723919f9d3be5439ea11c142c972faf70bf2ff1c18b680e02baaa13ba5c7a8a3b94a573b42991d12

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          2cbe29bd8fc30d3fed99395ffcef8165

          SHA1

          3fcaae96f1388ef3a4dd1ae511a8afc7d723f530

          SHA256

          b69d1aa9b6d03074e6c12c6314248e6852fb69e38cb86dde43da92b057de5ee9

          SHA512

          c675192bde4dc7fd76ebf69d086f141b76cea49857af16275a2f583f4083cedfc32e782bebf56930b72cbb943e8b997a833e4a0d30956dfbf68fedc16768883a

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          543e9265b1f34bf5449999c1ff5c6fb1

          SHA1

          56885f5fd10171604d1751e276f61557becad7ef

          SHA256

          afbea33880733e172f0c60af58e0dc23b3d0656300a1c4f71b2425d9f40d8ccb

          SHA512

          9c2221f9d3c2919d083faf159e880dad42769bfe67b96e77fd7cc55421fb9f7d1e46c0d2ab98070dcd8625b60a17e0ff63efa51fad620c775aff829db670bd05

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          4d5c88aa95882efe7174b587a153bccd

          SHA1

          e8697e59f1eec6a5f0efa5cbeb16601643d8c603

          SHA256

          4b5e73d5566bf15d67ecaeb8f3049d27af609fea4a367272c4416c7d572861ea

          SHA512

          dea4e6e1748e4a97d731ce2b90fda20191d966ec517ef50dfa20baba5b22ac648086b6b9dfe9ad2286527f10e959d5d4a92eceb3b57f8e308e95ccd5c4ac2ef4

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          1b6e2330a9c78814068df1cb14dc195c

          SHA1

          5f20dcb36f5d2a091b54bc59d65204234d7fa616

          SHA256

          8153d01bdfd8a192807c5d8c95c2442d5a01daf8b5e9e45c116e62f0529bd745

          SHA512

          d8d0cc60950ae1e2c3668097479279aeda5e0fea646c67b0b2af1da0880e225ed9a58dda61049bc48c45b2e244b1f5068e4cdbf070d81b1c92798a0acc2a9b70

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          f62e740f88dc25941a6caf5572f78360

          SHA1

          4d18f9b0a0771e2e9fdcf937d7f146ec0c7f172a

          SHA256

          2814140878d117ab44a407cf9b8180fbbd680877d67082fec190388880b29ae1

          SHA512

          d6cd5ca7a1778a11b017a55ebaed7175844c13d35c6611be8a1689578465a87607d1e743c647b4adae5f0d78a06b2977e59142b461d835f32e3bde0da4b9d790

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          132824ca0509e5b4abb96221a31f5f05

          SHA1

          fc7f39d80a0074aaf647d8ad9f805019a56a04d8

          SHA256

          94570e1894cff6b2ccde37427889a5f2c41c8a644eb59f58c36f3c874bb9f856

          SHA512

          df98d799085f3dfec43ee5e2c70e46f16bfd4488dfe10bc7ffac8d33c0837bf38cd25c9e5fa434bd2b677237befe6f9f057a48dddcca65b0ea453dad72e5b10e

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          5e06a00facecc4045d6ef8bc82991bcb

          SHA1

          8a36f952515e7b5213b71135d446a366e3ec20ce

          SHA256

          562d70df48cb9d240146831760643a27ef9de70244cfc3fea7a0a231d3e67339

          SHA512

          710f279f326716fdac638e241a6934949dfcaeac06b551417996188e237ec833559a7b1acdb10d0b17844bbde596603ad597a10f50fbee772d9c8098f2593c42

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          053174c5b8492c36da28e6462f67e7c4

          SHA1

          a245130d3635afa5d16477f048462b2266c7c74a

          SHA256

          7d82681fe4b449b578b21695924d9f1b07bb97d331bcdeb5d431211977b7cb75

          SHA512

          05b232d67c10ce359e6427d65bdcb186cd85ef67bc495ea30c88d4a1a9fcedddba5c66f6df95c5b9478de34292cf3ef3aaf150516f980fc1978cdc060db75054

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          055fdeeb9c9e994bf7c09dcffafe3593

          SHA1

          b795399580bdda940194814b6fa3c2dff2b0c6a0

          SHA256

          73710989ccfe61075c722d4fd7fa803c5051877df80d7c29d1fd3e098e5032f8

          SHA512

          a3299c5247d90054aca526701506a1fa62c9a20ed858dc8cf2283286b029c311459d3e514a89c888d431f7f8e7df2aa057dca6897e8802275d1517d29e2b0542

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          148389d69c519296a5743b24fe51f23a

          SHA1

          6662d811930162bd41f8035f86ea504446e73ceb

          SHA256

          e97af71ff85b6d3a0072ec45b83c1bc0be3a34aad5fce6ff632820aef93ad61c

          SHA512

          062577ce5a722e641dd14453d084a97e409e57a5fb8fff91db228de5f73c00b0ba3ab02160fb1d3d0a5eb504527bd5a904dce75929aab0a80b52600211772e43

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          b1eb0daef5d90e74a2aa61e176c7175d

          SHA1

          b9ca535881222ce7ca46c04742a4f47498bffed9

          SHA256

          e2aad7782e7964a3133d53074c1419e5b47fe57c2a494c1350d239d671e6c7d0

          SHA512

          04774a34398be45a93a00f41f6520695ed92fd7e11f468b93d98ffa73c52253b32d6cb492bae98b5bdf94e890db093c88afc7b4f4fe2c3f400abea528c35d69e

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          5ad1411973a9452c705a368d60c37856

          SHA1

          4f7f7972e95d8f63645560a0abaf6631fb656e9d

          SHA256

          044a228332f6e37452e9410d2ffd988849864f2e58a1df0f44fef2c78a7e22d9

          SHA512

          be6856d2c7bbe053b9491a5df60a450c115c1eec115084326c76542b6c850700d0c48670832c019b62ec2850386e89b3c97a178246fd098774f888a3d687b895

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          b43327ee172d9d6b40dce7131828f3f8

          SHA1

          f74784310ee4f2ba0545ba3fe87a9de0d2b80c45

          SHA256

          ec275957813f1863fa115b06e3e667df7c8178cf040777cadac47b8dc9077d17

          SHA512

          624b44a2501e2d40d8ba6127745917c701dca7b4074b540ed147ae2fd9a4c99d935418f67e4513632e876352a07180e2c44fce4ad683a6b308421f0bca837603

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\CabD368.tmp
          Filesize

          70KB

          MD5

          49aebf8cbd62d92ac215b2923fb1b9f5

          SHA1

          1723be06719828dda65ad804298d0431f6aff976

          SHA256

          b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

          SHA512

          bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\TarD417.tmp
          Filesize

          181KB

          MD5

          4ea6026cf93ec6338144661bf1202cd1

          SHA1

          a1dec9044f750ad887935a01430bf49322fbdcb7

          SHA256

          8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

          SHA512

          6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

          Download Submit