Overview

overview

3

Static

static

1

dfaf239279...8.html

windows7-x64

3

dfaf239279...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    136s
  • max time network
    122s
  • platform
    windows7_x64
  • resource
    win7-20240903-en
  • resource tags

    arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
  • submitted
    14-09-2024 06:46

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    dfaf2392797a92429a59c330d0cb68ee_JaffaCakes118.html

  • Size

    159KB

  • MD5

    dfaf2392797a92429a59c330d0cb68ee

  • SHA1

    260262b747957efbc4a8a775c585dc8f828e24b9

  • SHA256

    7746ef3f5ebbe0a7864079c289e8b902622600d8d3f2114efaa29e6c4577bd70

  • SHA512

    25ddda039f581b9aa3fbdc53911de233f562c64b8cb1fafa1295cc3626f2deedde008c40c42fd698b3cde2606f05695ca197f9cd6a2ab0b2cee8f6065f593bc7

  • SSDEEP

    3072:S010l3ScNaF4yfkMY+BES09JXAnyrZalI+YQ:S017cNw1sMYod+X3oI+YQ

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 41 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\dfaf2392797a92429a59c330d0cb68ee_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2684
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2684 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2696

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    c29fd819cac60f7bd4f65751c740f085

    SHA1

    3d6567ad70eb1e48a653e8f3eefa29342f0b3fdb

    SHA256

    7bb5bc8358c673f7028fb6a15233aba0e3e5dc1628164cb9779757037aed56a2

    SHA512

    72d7edebfc8f4372f7acc8ec22ffd210d6fe686dd744aca2ec64620a97d65eb09ae7888d311c85955ba18d8358cf44a983cfac5d70d24d228c7aaa3659fbee2b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    2d73bf76cf79ae08944fa5c80c86d134

    SHA1

    10f2fc4041ed0359ba00e7cdb61f7801fefa8c32

    SHA256

    ff2075990fbd2cffbe3f7f69c9bb3af71606959227da9fbdd49e1e30b6ba744e

    SHA512

    0655bc367b790516ec938e9cab4fa84929f775a1d061c8b7308b4754bb94b65e462be141239c931bfd6aede0cf290504a1c71b19588d36e3710259626ff5568a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    5002cb9af5db960185c6c0e614a59978

    SHA1

    764f7f42652ea6e8aab9dbf8f9741faa1deb2569

    SHA256

    95d27b26319c875f2fa5f0a1392119158674350da946c26cb0258e1ed6ae5395

    SHA512

    400e5e14fc365ece63ec7660c84e3e80791797edf22e61f9d547df4a0d63fbb1cdea8bd6e94e2edf08511a36ec59ca7b03178a97dacba33523c4c7603f2e0623

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    8fcd37cde5548107ed63af6769a479a5

    SHA1

    eddad7fb32af435aadd8017fb2bd96fe1f63c876

    SHA256

    0ff72ed22996dfc35d0f37393ecd787410e9e2092054eaf71803ad082ee2f1e1

    SHA512

    5ae644bf3204343c07942db8cb6c4a81c6222649ef821fa021438ca4ef801fc9ed45ed47df1b11f220741fd77d4d27dbd69f5b27ae2e92aa23c6ab44cc915fd3

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    74775ae2bcc13a766a1b22232e5ec8ae

    SHA1

    87cecf9d089891d9d891a672fc92a8e3a0f7f510

    SHA256

    c89356c5faf9ed7ad19d2d24cf2e1d91a8b3f1975cc297a539bf5d70694471cc

    SHA512

    106040ab940c1faefafc09171244cff77235fecb4c708d8e9ae14c0b079caa274e056a1fa9acfbe341981333278bb94b2d2073cc69965a2732d285344f88ebaf

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    557c0d22f28e9ed0ead461993c75bf69

    SHA1

    19bcc082c1f9849e41395eba4c0ea30a53ee5d35

    SHA256

    4c6b4e3c7557c882e924bb5c50bb522115d267d9b5e3e785066e15c0b4715388

    SHA512

    4d643bd4991b47e1e543f8dfda4160ac13462c6be1047254f08819fad084f7355fca94615e708873ada14f6ffc36ab27d8dc309e24d946aefed413c4974eb9b0

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    cf964ed690bac028e516412eb923d4a5

    SHA1

    aca34f896c12b3f56b2748b6ae23d3381324a713

    SHA256

    33cfce50c2a73df35ae1f9655ff290d1032d0591c7301340fd1917eaaa0c615f

    SHA512

    925013aa01c4874fbc091ab0f9977adab4e673f54d817b19630af5fcaa44a3790418f9aceaa391bf9e827339e9a90f2cee696f29cfec9ee544af96a42c8351f7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    231dbba47701aa7a42642579b3c64739

    SHA1

    02b7b096cdf77835f6018a2b6512a6e2df66d872

    SHA256

    fa9f0d1ced249ba169ad4348716b399e1652f926f86085c2d18bb5f83746f274

    SHA512

    642c57fc66c663e74f7c68a723f560d4bc92019d74961fb3c3d7e6f7d84d8d2b789a01106c4740bff974c6b0665bbf8d4fc055cf94295c31bf953544141723f7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    348e8980cb2c04dc1bda982bac301c1d

    SHA1

    cd4b7ff6858ecf6b9333075c6680cd393f3b649f

    SHA256

    bab222368d2126275105c4f550c74efd4da571f5afe382ef0631cd7788ee70a4

    SHA512

    01d4795f7a67bc94a878fbcc8bf7c7c216386ba5c01bfde7bb3c57800d808ab4934970a382e649a5059042c2b89d6bb3e6b92ded5c221c9e7601eee262b8e6a9

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    ba9613f05c83b34a407971122e35f5bd

    SHA1

    9a7b2bfea081bc63addc730ed3cdba50c081e4b0

    SHA256

    898cf483decb0f175614e5537352f86c4db7e2ce2c324dc3d30e4b64b107c9fd

    SHA512

    7d201ef241d8a93ebfa0e8e034ac14938683c2f906aec4038ed4295c8c33288cb699d0672f9faf5620f88752e1cd868a2a37d3918d5e59adc7b6eff25af38a1d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    c14ab4adcc6056d79fdacd418404590a

    SHA1

    87fa35cc3424cd1a520ec2686b78b92ca029b0a9

    SHA256

    097aac232abc9f2d66c62f9b22b5ff41ba3dc73d5b25d4fa02edd09bcd1d755a

    SHA512

    714bc7f260606e3e1cfe7229fbf73f86f723a8745aafe004e4940bfc35d44350d35a03b0064efc312ce1555fee10c93c56612fe6644d1b32a0c3d1c517bd268d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    df2f71281c8ef7762bf8d7703c6c9f8e

    SHA1

    fb6d6bb86e1382fa24ebfb7a353cbad61531698a

    SHA256

    22faf5be1392349a3f4de7dc6a61833d55289b88d5d99149183f3660a1c75596

    SHA512

    28498c439fb710adef1c96a1b066c45b13f4bcbaaf7ec5370b08b8c611323afca6ee9ab74b179039439f33df503827887a6b09df5e3b937a0505ba40d0a63677

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    e27468bbb09aaaaa9e137a6621ca44af

    SHA1

    4c55f6d00f73872df359ef99b3eca05aff315dc5

    SHA256

    9dbeaad559fb19abbc3a64a6293046224a37e290a533cf3132364054ff840f6d

    SHA512

    005e350bb5ddd71033348a433bec938a822b56126b8a8c0c28f835bb75e5f077cb89db977d48b183495a6ff60d20bd131f9eb5177e7ac71cd250f4d5b6fa1360

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    2eac761fad4c9a5b6266b0ffb02c1093

    SHA1

    fe7afe0dc6863e6dc49c76e6ad133ca39d84ed1e

    SHA256

    b2924e18e441fe78dd0bdbbe69f4f077d617504675dde5b95cbc49d3334dd8d2

    SHA512

    6355549659f0a11cd1902c112082348a8601d46b6de17188b0bae0ddb34e7a5b3d69caaf34a38dcb07e0b8b181405063f479a585986a0ecba40da59f3743d9a8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    d10f8b9a5310d531d0e29e9d4dd231cd

    SHA1

    babaa299bde0985783f009ca569abe4e27e417ed

    SHA256

    52de9c61c7c73d873b6f6aeee1d735f3e6e978c6f9ed570201f40cb00ede5323

    SHA512

    158a603509abafc3fc77ab7230e74e83fc841749a4f68921c3920711c69a9428faae80ea4d7cb27b60a75c770c64bac6c6cfd5d2df10b19989f7541b9a884910

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    a2b632c7a8a604c322b88ec3dac129f0

    SHA1

    e33952218c66a74655cca11259d8da93b61aaf96

    SHA256

    2d585ba99701a5b67d778f7d6517c80f45079701e4b50a67681c1f29c68cbe37

    SHA512

    e9d5c72044f786b569974a37eec450f48dea8013a82f2b46ebf7baf3cc93437aeed857dec3debcb86b42fd63a65624897a8da94eba597a2332ecee3f15b6aadd

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    68a05ddb5cb0b40af545d577423cb97b

    SHA1

    ce173680660006dc481e504a52fe8936994bcb41

    SHA256

    a96ebe0c8b0c103189462fc3295a1361cce290852d238436acd180b87e67d60a

    SHA512

    e6cfc8ab9bc371aed751c77ab0416ae287b7e07c9ca8cc38f0cd60d7da8a86d1a7e3eb4dba6cfe86601df18136ff48c995b3ba681672c23864246090fc6fb8b3

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    f2d3b9d2b9f3ee91d2ad0dd73a6b5eac

    SHA1

    2718bf40c11dd0945ac43d31c375b5c2b57186ac

    SHA256

    bd9c25d068154d81fde87e27de04503af5b3ba1515c2939d037841c413eebc75

    SHA512

    9175524bc6d754643f5d6da0a48ad49215036e9c65328c7e8ab2e00c86cc47b8e170ce504d6f4f312ec09186cd989468dfdaa24fac8876b1a9720a811f69b2ab

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    f6f1ce67ee03ef46280fe0a89df792fb

    SHA1

    9b1e3c4b0fac09cde0a7dd3679533e2cbf828c7e

    SHA256

    e13f0f99951e1a167eeb0579a064359bb38dd0adea81b3d3d635e40856ccd4c5

    SHA512

    38e13b4986d0db0dccabd69f068cf963a0a2805261c6400b8e4c65971e2384f35be09cee03af0cf543ecb577d8486ded353d4d17771e238d3df31149d911f8ef

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabE689.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarE729.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit