Overview

overview

3

Static

static

1

df0bd8ca26...8.html

windows7-x64

3

df0bd8ca26...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    135s
  • max time network
    134s
  • platform
    windows7_x64
  • resource
    win7-20240903-en
  • resource tags

    arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
  • submitted
    13/09/2024, 22:51

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    df0bd8ca268de5eeae411d0bc9dbf94b_JaffaCakes118.html

  • Size

    28KB

  • MD5

    df0bd8ca268de5eeae411d0bc9dbf94b

  • SHA1

    dea842c3d7057c7b8afb2177111a89db70a2928a

  • SHA256

    2b4cff89d19c14d73afb23cea5f08a9ef513ffcd63bf28f641adf2811efbbd9f

  • SHA512

    991ebf529c6c850f7b98167f17a51332e76f3dd3060b45070d1381c2df9daf7563736e87e1880134a3a4e95c86202555069419a2e7cbb226cf23659173aea7c1

  • SSDEEP

    192:uwXQb5nfkt0nQjxn5Q/LnQieCNnUnQOkEntJhnQTbnBnQ9e0Gm669E2ZPQl7MBi4:PQ/gJuOE2kS9

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 41 IoCs
    adwarespyware
  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\df0bd8ca268de5eeae411d0bc9dbf94b_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1640
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1640 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious behavior: GetForegroundWindowSpam
      • Suspicious use of SetWindowsHookEx
      PID:2372

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    79823a8625ab16e6a4d7bc09c6d4318c

    SHA1

    9c2f9b469132aca6d8784ce9854d8a83f8a72a6f

    SHA256

    6ea54dee65c60b935397f13e484374f257f81637c7a0d6200cd16a82916687a4

    SHA512

    a2732e152a65082e898a3b3037d122b92635e255727f7a076023e479e1b657772397a6436054fefe224495b235a92049dd97a8f7b0481473f0c1872bc3e8c0e0

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    52ffde5a1fc71822f2729c0df42ae89d

    SHA1

    8170fb5143dc9d9ac774f12b74fbe52df9bf8a30

    SHA256

    30bb7a480c08798a18bcf60ba1ba6400b1f848e2e5d60de62d7f687c11428069

    SHA512

    f04a6ec95c32a6cd8d1868894485f38c2612e1d5d34e203493e3235309350e5402f32fa9e4b71bec3f54876bcb3291d665db4f6e01bc632712d8fe7f8171ee5d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    5582c560b7d4517519e298d24e41fe42

    SHA1

    a58dce55e5ab6f7b4272ad3139f5a6f534b161aa

    SHA256

    4c1a5ec3fdaeedc13274e13463caf1bad033a5ec1da5f8b791f837ac196104d3

    SHA512

    da053802e3b7ea797c956b1c8c33b194aeb47d49ed9f26bbff42c8c4d14d667d12e6e5df61ab35ee163a1b3212d31f7f56b24ce133de8b7f43ac68f2a409c0c6

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    d9f4e57438e64a61b460fb732a556ca1

    SHA1

    353739a3d63c8f5281f57a4abdab0ebcd353b116

    SHA256

    050effca3558dac32e7c55f63b2421f98b2251eb4d054472ad9c966ab4925d14

    SHA512

    544c62024397e6b1394c4aa20208c471409a71e35c0c2e9ecc7848509936e86ce151738b34c9b7e46ff188a227d23a4a26fdac4633d4a8cf0244a39de90a8175

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    8a05b84ac4b3ef52c2512f6bb2dee2df

    SHA1

    fe83f0cd8a5a9e2b484172bea012054eb4f4769f

    SHA256

    54908d355976208cd1567309bd30b2dbe07560e04801afeafd191e723b1bd0e5

    SHA512

    f79d14608dd4f9ce89f002f10ad33ef3d516fb35de935c77a87ab1c318a819f4ba9aa62e4f8f87f0d5639ee8b774d9a21d83ea5ed68f7d494258e7ce7ef0d31b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    063e68b3c41bc33ba5162963b50df482

    SHA1

    37f1e2baedefb11bd49d46300a7b4923c73b087e

    SHA256

    2a98c5e064da7251ebaed5f3576ececef9a087626b994351faac06499074f3ce

    SHA512

    5862d25328586e7962e216fffa41beb770b217464112f4b6b6973c3961c08934e31a7301e79aa86a889290348746cfd3fdd4f6f105c8f8ca01db7efd76953f88

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    45bedce572a6692f8278ccc9cd852dca

    SHA1

    88844c56f7e9e04109b9303813df3be0714e193c

    SHA256

    23979805e15b256b552c36afb2b381711b8efd881dd4ec731e0f74123a8e0bab

    SHA512

    3037fb9b25f5fba3dac41d50b40d217c09c9df8476dfa63f65b242d8752051b522e430065dadf9d0749f451906420a7c39a835219f98c294cabc6cc60b0620a6

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    5ca06b2c7dacd4d1f164d10c70ee1f24

    SHA1

    4738a09f7a3abbb031690e2045eb83babe15f216

    SHA256

    407f6d7e9fe9b3f8d8e1a4d59d0d5063a9a5c92c8d0a4ba91926f9f6b1b11cc2

    SHA512

    67af586c78fa005e77d9820589a72e697fe238e47d501093a21ce9d941d0efbc8d0a8ea852cf3b507051fd92e45257ab27263581f46f76a90969e4ae4043649a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    691d0200c573671a241f0767a51118e4

    SHA1

    d2df20b1ac97c8a427bd2e8065f747e51442716a

    SHA256

    cf41a921de10067d6bcae815f0a62b0a03a973c7d7f4c4d34a308972052c51a1

    SHA512

    f1037a380cae29bdd356219cb2d78d2a74eb5efeceaee9c5914deb24c450c95a1c01720c020ffd93c112eed93324e0afd278e47a3b9b4deb1a408ce104351d72

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    09fc0fcd171bae39951e91b5628e0af7

    SHA1

    f362e8fdb497856eae7bbe18b3d17e2b65d6302c

    SHA256

    d65825ac0e8c89c687058eacfacf00b7fcb1dba256105ce55e387c0835cbb094

    SHA512

    84e80dee88b43e981b4d94a7889f894dc2dce3169e1bad70c4ed528f2d5bd4dd304c812f4b917a9e9dc664325389651429e510a5d18550c0886c72f5839320be

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    eb13374c08b20154ec416d7f53f81f1e

    SHA1

    38ac040424f1cf6dfcc687982032b6ab80529942

    SHA256

    bc0a1803b114f06a92096da71db50adbcc2ccc9f605ced2458389e35360c34a4

    SHA512

    768fab85f1a6c1333a216148e1526766fe8109292b1a280e6d2a1890555cbf2519aed718d0fcf9fecf79604bb2a72f95891296316c235cf0a90351594c3bd20f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    cc987a3796737cf5276558f738612678

    SHA1

    c52309671350cf581e39c5c12012ed13c804b4b3

    SHA256

    d90599d2b2cdb17833b0aa2963f1ba90aa2d9f76f05afeaf59cbd79eb6967d27

    SHA512

    6195e1a41c56a22dc4f2753111dc7f54a8f1af74231164b9795147cfbed5a31bedc6cf2f9080e82e7ef3d1019ee5db840df828dc33460180e84fac9692bd1a1a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    2c3438f89c8b9617c9fca266ec04edaa

    SHA1

    5b518b13d60cd664e70c13da8c2938c8a37acabc

    SHA256

    203ad08e95cd5e141d46bfabde02d532d2040074fcea3e94eef92ae642b4a771

    SHA512

    4a4ba82cb55ff8ea6d6f21e5cc56164488dc72943c28533ad8bf5117d91fb22340de758ec1ae50d5562fbabded6afc19c32604867f8ff53cc5cfcb3ff20137a1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    bed56b3833efdc776bbbceae43c7e757

    SHA1

    f2e3e2eecdf05a8b2818a7381114d00b37b3a81b

    SHA256

    7dc8aa21fcd325893c0785167b76eb891a4ffb4335f341ff2e38b70dfd5eed1c

    SHA512

    49c8627e8ff7a52d22c24016ca1a7a165b0bce3c64fc474ec2bcfcfa94c2585d5aa233acd5b1f989e24b4dd09e9a51b683029f86ffab9377f5fe5a0bd89ede4f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    1b859b9fdf885c5bca9caca7c94db146

    SHA1

    f5a7ea77df30281862ea2a9600d780ec3edcb605

    SHA256

    a2f54b015d4d5d5111457b609d6165bae6eac0309c3e6ac7c26dca5549351ea0

    SHA512

    82c7d3dd4487f4aad3993f27e26cfd4854fa8be4a8205e9cc56d1fee76a29dcab3a1936012e2e5bc3a7a83636a1b833ce8783120870ad82458b9c76f1d44f84b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    b540ca7a0bac7e91f6c29d206d7bca0c

    SHA1

    72a262695873899380f50cdf40f5ec77f6195258

    SHA256

    42e80bdca39518abc6347e003de5ed27b58fef370a23ac2acce3d5c3dab52326

    SHA512

    9acb88e7f57023c4f03a8999ba4322d0df4af8a79237280654d6a433ae0a0a4863177b98101999cbe25edbb35ed6ea052d3e7f41fde5b9a7d90540d49530eba5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    b99d441903db29ed91dd66643785de23

    SHA1

    996449d969f731f528794f73a8fd7a9851fbdb9c

    SHA256

    f5669d1c317d348de367be7ab9cd42699b2e64afe002e80bdb020a2dea2ac754

    SHA512

    46b44a8b7c26d896f7a41533832b9ea2512e147a692d5a9ac5de578aa30acfae5873c20751731812246d6bf5dedeeb1479c81909bf146386598c38c0805e49f0

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    d07d99b85d73a766ee796e8e78cf559e

    SHA1

    3c7a619ec42884c8abece03fc8ceea53134ce261

    SHA256

    da0d11479d8eaadf9a834aa85378ab2f0a96e4216b102689f58c04e6c972ec95

    SHA512

    d1df20147b458baff561340100e6c32523622c700d92e47a6e2f4be5a05eefc99b8541fc3677aeac674c4550685e4c583159bfca19bb810703dc13ccdad9deec

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    66f5d38325b3cbf4ce7ce1a231f76c42

    SHA1

    77f4817bb2e5f4df6fcece7c879fa315d8f88a6b

    SHA256

    31d80bf11fdfa3dd94642acadd4764099aa5cad84fa10a8be34984d0e752271c

    SHA512

    c555e3d00ea6e28580ea7c8047588869022d873540c6116b54a466ca8395f59eb9a5d544ecd75f0e1c9404514ef6e7d33d964ee37e8d07cb9c59e579ef9b6976

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    118e0a3daaa3dcddb250f59dacc777ea

    SHA1

    2f4509aee3c5ef4edff699257626935d2ce56e55

    SHA256

    3d21abfd4f1d467ae1ecc35712d48cef1f0028179824c56337279f82cc37561d

    SHA512

    c576b5f1bc6197d11ca88ad3763e4e87a182eb7569e90a111bb4ee9a73d6a266993562bc4a7aa49f1465c595704dfb1d301a6237bf792cbec9255f7a327b95ce

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabD79C.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarD85B.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit