Analysis

  • max time kernel
    117s
  • max time network
    128s
  • platform
    windows7_x64
  • resource
    win7-20240903-en
  • resource tags

    arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
  • submitted
    06-09-2024 16:47

General

  • Target

    cfff4ded19d02d63aef6a576cf17e6be_JaffaCakes118.html

  • Size

    38KB

  • MD5

    cfff4ded19d02d63aef6a576cf17e6be

  • SHA1

    5c3d3bca93489ce8d13a89f9fa70a77edde42674

  • SHA256

    d5f07325ae7b04862c789f5de03d36599c1975f4010748fabe53715f8d52d8ba

  • SHA512

    f0e1b86cf2e8006419a87c2842aeb627b193015370fd99c84674fcaafe25136c159cd73bf05240c385fb53713a02a4de77ec044a9795f9aac0400316a14f7976

  • SSDEEP

    768:qHlxh8VXjj5V7/4ECQwJ0iCiZO132GhrRWiGS9qS1kQ012gRZjZ:aljQXH5VsECQwJ0iCJ2GhrQihc

Score
3/10

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\cfff4ded19d02d63aef6a576cf17e6be_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:796
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:796 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2288

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    227cca4196a96f5adb1ac6da53c39a9e

    SHA1

    68718162fb742d8b6b1a56a3f0c617850076074d

    SHA256

    126d4f98b81588c7932bf3ea5751c1174363b2f3ce457d273ae65c3ec0717507

    SHA512

    8e9deefdc339f2b324b4e425a3760e6a9e2684659381487679eb5e9e53388669141f0aaaa1d6f814689a5f86961f3de7c8e6d04a6537c9bc270e22a1cd5b2803

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    81abe99fba5941efeb6168531bd3877b

    SHA1

    3e98d2eb7df0b3b09fc0d2f00a29bc9963f187f6

    SHA256

    4e6d354a9a7a4f7f93ac87fe6d1d22dd45a3330fc12cbbccd3bd1c194b3c16a5

    SHA512

    103f2cbec72b037ff34d9f2d6d5ff2cc64475460bdf0483df35289bd25c0fb40e78d2eec01d345aae1e88c6fecdb706aeab2cb11d29026b1092f824c27f6e926

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    5c5b00c629dbd4bfcbf9f7cfdcbb775a

    SHA1

    229d5838856a84917500f6bb4985e94ed81b07cc

    SHA256

    e42518e9fe42b25ec3f806982ef775e159a605368e77548d070b0a3f84190cbe

    SHA512

    22d40a1523b2a35718f0f24ebf1165b9d4dc318798fa176a0107156901506751bbf48fe4c486b07651e2c6c11c17ed85d895ccf9189e9d3e1cd17491ce4190f8

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    5849b0301ed375075c5f015e446a99c4

    SHA1

    d56d9ac3f319dcc3437292ee59223462aa737599

    SHA256

    b869f62183fe87fab481680378174b8de6b55989036a1986b301dfb79ac6a8fe

    SHA512

    0515c778b587800e9669c337ecaf79c1608f0711c98dec37f2c6d8d9f52bf9c1b97c2ce08836075fc3ae60afdecff2f3c09f5272821e5494707932d319107352

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    34dba14fa7cea7e4d7120166d1c9092f

    SHA1

    284ebaa57906b1b606b40066a4c9f4daa08d91af

    SHA256

    c37cac846ccd0d36ad2a2792f8046491bdc598630a5a77e7a44a4583cc0e7ddb

    SHA512

    36dbb4ae025a4b0f577e2509d7120adf6a42d95eb690e5ed41d9f20be846facf5befac0845348db87e9583002929fc5eebc87a5179ad0d1af6cf7ae9432764f7

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    ace471f579bea4de95c88ad174dd6190

    SHA1

    f29adbd60fb6c53794fc5ff814352ae7d8324dd8

    SHA256

    cc672cea5a6ec90f23d073685e6551b102ba87cc456362f42a2fa46f604348d9

    SHA512

    6e8b38d797ec02cbd573be233adcdad82e7fb6cec63a2b9b1212992d9e3ed21b78193d9ca5b4f034764b9cf36889e6218689c84b18a1b3315541ee72b4eaffa2

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    cc9709d2b1f634de2475e026e6af2323

    SHA1

    4eda4e386e81f90fbd9a015798c303535b3ece76

    SHA256

    712fa5290a5c84a3225e63ee5230de678e91d2f491742143e80f37b1e6316d03

    SHA512

    aea77be24b2adb385e7dcfee92ed9c09e1220f62c47efc544b6929b69a7653a1dd4818fb52036f6fdb0326927b761ded3af42a52c7b286a14ef424f5b729f063

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    a836ee50d1b30c64d2a20a112c83c524

    SHA1

    408b9a5fc2c610b8d103444b6b33406a8cea2692

    SHA256

    3402bee2ad5837bd9bb692d01c471b27cece2a905c8d296dbe9810e8c8fdbea8

    SHA512

    d8a5f65a986ea383a4b0f10143cdc436e2e80abc8ff832df9d809021098309dbbecb554c41bf0a89e34d627f1661d003bdd8f5f123cb31506c86a7df8c4d0cdc

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    117575b44964bc25da51b44f3b57b2b2

    SHA1

    eeab51624d9b719c6f60cf89d44418ce836c3e88

    SHA256

    1f9a130d955a01669ed911f091b3fec1dee38a12a642b5c7565ef2f61c5bf08e

    SHA512

    3e8af465c463a48cd947751b391ce8f6bb1a20142eb23e8087e8576e0c53d7adb00cc9bb9a89a759fef87da57f07ab73e721a7b8b33139d1cf55cbb3d5d69e2a

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    18d5da1c7ead74547433690d8b6b6be9

    SHA1

    fc8b8a084830626cfb8d55b43c329671c85e42c1

    SHA256

    97411bedd5e53b918e8f24608d604a713da0521976e4dc6e1206fa00a96ae15e

    SHA512

    ee7eb7cce5290a2e94edfa659267bcc1e51026ad5055dee1d4fd76a0ad81b7cfa517bb6421a67c1481d45a43ee9595421c82ea557038b485f3ec3e53d54d77d3

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    8208a48bc104d6121810642185a0ecb8

    SHA1

    29a57a3f8754d2aa227053e94a08ef8f3a3e2b7d

    SHA256

    de03498730d78f3b9e8596842c9d0691b324057984e16624d01e847209acf150

    SHA512

    442c894d21399f867227eb46b0445717acdcfdc38f89f0cc0037fade4ff15c6935c9e73f445026540bc16841b7c1d0b654d30f54c182b277758f08529207a02a

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    96a267dafcc27e29a959dfa0cb0d6127

    SHA1

    f4df1bd33829e86fa83abf00b357cf495f7abcb6

    SHA256

    6d26bc3741164aeb9bcb23eecc9218c1046a3e95f7afd24376920c1dc546afd0

    SHA512

    fcadabbb488c27d58d09ee01fedf7720d3ba4379d8a9f65191adea3f97eb0a690eeab7efcf62f4b0d882175ccc040de9b48e5a418cdc97d82bcd463e4117d246

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    cb15dc632e1c76688e1d31491a13b0f3

    SHA1

    cec95121c6326fa5688f9ce57a35b4439a320667

    SHA256

    fc9d1c5c31a1a3be3d7b6026caa9137eaf6e2b3b4de966d8afa2f180097fe82f

    SHA512

    e9ae84103f807161c649c787eb78d77f422de1d4024c880c013cb101abbcfe657d894904fe5a240b0052283c16b2517109fda39922ac88a6c646ff8335b07c85

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    1970c254dae52a8ce009d95387e2f3d2

    SHA1

    1fd7d982a1730e5d84c6c3b575967b535b73d58b

    SHA256

    c04ec5811eb17a0412f7a87c19bf22f6347238b02c1c7515846b1de7f39242e1

    SHA512

    2bd2278505fb0ebdcb3d493447119b6a5d12303e34e8cc51ae90905459fee97166b068d476c3f8df49aa84433d8085d38982d3f7308cede26764d5552bfea4e1

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    f0f831a36fb36d25d971fe26c16eecd1

    SHA1

    66f1a243fbc71f6853678f0c68d18bcdf451ebdc

    SHA256

    7ae943718267e0b4d744356944a8c287a9f6c269e93c707e42785d4b97a67534

    SHA512

    53c8a9f3ae00b5dce90d51fb339303e0cd7361344d495779e5ca5263e8a81b283852ebb521ec7f3ebe9d79c6cd4d96245d2d242d216d8adbf6128eccc036827c

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    b73cbf0f83a1b1ca0521bb403c54a2aa

    SHA1

    f4eff0f4aa0900486a48da7eea0d4c40d496d38f

    SHA256

    b7a6642932afc8600b36dede2fe77b40e6da03df9c24f888b8caa7088f27b674

    SHA512

    e7306072c804f5c88c92e6d83475ef5a8346b024777be212a553e3b3b9eb580e559eaed1a74c54bc3df3e0de3f370d75a99bad7f4301bbaf5452c00676a47794

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    fe0dab76722966c7c2c0690a6db109a5

    SHA1

    7c20797ccc2414f876c454ce92782da7c8581ebd

    SHA256

    4a31df21e644173540159e7da83fb9b8d3b11718236836337e15e493683fcfb1

    SHA512

    249a202394929a79c960e2c6951f8c507c7aad065f316b34e5bdd4ba534e9d4db29934d8df7cd63cb6ba9c50a1c3f99b59be73cf9cc5a6aa844ed5b158ecdb0c

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    ec149c0b1226916036e6bd27db1cefac

    SHA1

    87059f27e7de85dd2c57689baaa86988a214a6f0

    SHA256

    87bf5d5aadb403f4cb0a41cf9f3e1b4c6108311d3fbc22f53045ab37d2df0955

    SHA512

    db44fc65dbe8605c255c0e71984e00ce9e6823685015ac6f9c741f61bb9b6eeef9378f9c96a5713c30e2153997b2147f45d2fe9687c08ec4fcc70e52a50d446d

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    f9e131e1fe177c4d501e8bf0a31484fd

    SHA1

    b5ade25df5f8a1515904bbf9579a2fd62900ee4f

    SHA256

    ee946bbfb049a71cbdf6446b7c21e3d89626b2f6fafd1c5937ae726e3e809c45

    SHA512

    839b4b274524521fd7be5e2a091bb6cd009417ad566d74aa914762e609f2132692cdccedfb99f5873a99c2c21762a9af3d3082edcfd2d06cbe1afab6b9a4ad0d

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    b344d032488d6c3034d52a20e0271070

    SHA1

    22b9539d2c67ba831f85eb2febd65bb9150df494

    SHA256

    27e5eeb7d0523142e820255fd8ab1fbc76d5234be5f5c2b8fd106139940df6a7

    SHA512

    bf054ca7b4736e3a045c11b852303f3320a0e9abd0660387a49023d0848f80f5df6c43784b9a8e9d03373622042230b37769193abf44d1477f5cedbd5a9e4458

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    b0c26e17beec2a59527957f646408502

    SHA1

    6a6bfdba0bbc2428e14a242b078baceec20f465f

    SHA256

    32236b9de19dab9900b2e17f0b1a3c8899f8bdb7cac458639eb793c4fdf53f4f

    SHA512

    5b25d34b4a7c48097fa251154f12e3fbcb5cbd34a97861021550383ee40102a395e78bb84e506863a0296542e7a5014dd7240f94674fb0660828543ac0caf712

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    4470ec823de6eaaba103bb097bd2b2eb

    SHA1

    cce49967dc4742af842f02f746cb5fb2c68459f6

    SHA256

    b67e6a4886a22dd8922e0562e9f7dae13b113d22a61dedaf59c3db0edaafba45

    SHA512

    ce845608607f5971945e0cdb98f0dbcd06d5518f125826bb53fcb76e303a5b3c42d3a55e3bc6bed4302eb9e0d4d0ca0c6e50fed35b9b682212de61f55c80e137

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    b7da3f72832c6a2f94b921625915c457

    SHA1

    62ed8d1c0e84a607c9927d4322336dbc710c227b

    SHA256

    857e153c58dd6d25be70113758310c9f88e8efadeab0873b14150a989849391d

    SHA512

    8ac7b06aa555e5f6c32ad946c76aab029bfe998009143964b2b3c2ff7cc06b8c2beda7e540b2a1f38bba8267cc8680779d7b364745d4397740073dd631573743

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    613db28a6192f2e9d07d1db76aa1fd2f

    SHA1

    507dc8a12c8624d6e6b9ae384a54dcd958962918

    SHA256

    1807aa84dfb327ebd18725abefbecba20882da8c682ee9e8b6b691bd766b8285

    SHA512

    ab8c8810e68c6828e2dc712eedff8431c836fa161dd62e258a1c3bc73bfe5f8ed42552f27b0c05d22be245ffed9095cb6049e133faf419bfb4555e74056b2ffb

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    b47f03b2b7b4db3f0ac1748349ba0340

    SHA1

    a209a45a366abd59121e352af992760c8dc48f7f

    SHA256

    f725b4e01bfc8d153c8d1c30699a416277d9b48c165dd69a9e47a5ae72de0941

    SHA512

    dc322316b429e02c4f094e79d287242e4c00c146363ce2348341c71244b519a218242d6101f04858a3865d552677b15fb0f43f9034fc98a29ea0a4152d857067

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    8d64252bb9815a7e073e10c4589e98db

    SHA1

    8400870bd47a01ddca02794a09e38b115147488b

    SHA256

    d882039e0b0d9c6da329b73498ff8c70d4784762eb7419e0802399bdba517ce7

    SHA512

    3506cda267106d3c9f2b011d7c465c938cbb2c1e27ac6926c2cc7477e845e97b18ca00abdce93d7d4706221d9bc69534ad2ee3929c8a641a35bfc69b46a8ac21

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    6bb5e1b926181da2cb278fdb15d66b29

    SHA1

    19ff31be87626f9a6fc5917031e18e59e26e5583

    SHA256

    1f73c049e6e879d8d4d7202f9ba6510a08633733d5baabe1708b554c7bf9c80a

    SHA512

    6df844a6e44d737fd4db7fbfdd6aaa64fce524a4179142a5ccecb2ce7c990eb24e9343d0328b297e3f98fb47d73a2516fca360bc7fc751429ae0520ebf1987e6

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    a07723481191e6b019bbb57ea3e66528

    SHA1

    68f352c165af44f24fd781c54fc210e2fde85410

    SHA256

    fe277584351100cff69004b33136dad053b5f43bebb43a2cd44cf5b86a63a3b8

    SHA512

    1ce873ce0a105489f209c9e34ac66aea7c989264ab1b5a415d7372bb515b902442aefe21b7a96865a502c1a150c5e6b72f837af457c6d7224cb64790bb1687f6

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    aa1c8a955300c6e4ed6f38cea061644f

    SHA1

    1980f187a60bc537714c5d93682c687ecc3a3c6c

    SHA256

    6bae2ec98f03c99ceab2b085fc7de30829b1d5021a2385b90db90c5da123042a

    SHA512

    39ba80b6b24b0e294057078554204764350bd97a0d2650febb22484f5b728977da856cd471769144da2a8286db314c26d0b62360159933857adfbb4b10370e69

  • C:\Users\Admin\AppData\Local\Temp\Cab9436.tmp

    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

  • C:\Users\Admin\AppData\Local\Temp\Tar94B6.tmp

    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b