Overview

overview

3

Static

static

1

ef2f64f62b...8.html

windows7-x64

3

ef2f64f62b...8.html

windows10-2004-x64

1

Analysis

  • max time kernel
    133s
  • max time network
    130s
  • platform
    windows7_x64
  • resource
    win7-20240903-en
  • resource tags

    arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
  • submitted
    21/09/2024, 05:55

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    ef2f64f62bd1430e119d36a7717124e2_JaffaCakes118.html

  • Size

    14KB

  • MD5

    ef2f64f62bd1430e119d36a7717124e2

  • SHA1

    0b5344deed9247d91d466d67b8f4c1ee2484b34a

  • SHA256

    b99e2fa861b85420a6ba073caf7547309c82658a192fac931de92062bb9903e0

  • SHA512

    69ca6441eb75b8d0962a252739bceceba7c67ea232f911d0e950c6a4d58296261faf039a5e8dc659b450f13a4d17d6d7a38fd718d6d6d24ac67a889f874cff74

  • SSDEEP

    192:wRRzDyQ9AmJTqYWnc6+wfIx+j4pbnEgPZYaZbMXNs5YywUY:wRRzDyDc6o9PZYa6XRyu

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\ef2f64f62bd1430e119d36a7717124e2_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2700
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2700 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:1128

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          8e4348334bce9b391457c1c4bdc3695f

          SHA1

          f5606996c60d89f8ae6d2362d11b308931bf99e6

          SHA256

          e6f7995e3d0b1fabe95a2d7eab8a326943be622a5f909dced8e9c08a091540bc

          SHA512

          3e15eb4ae83173d7d352a8b296f4b8a08709e3f5b58b2439dd909da4410f57d91e897207505ebc03a43c92bdab25b22e6ec43635d241ca96e282a7c8803b22c9

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          dae597ba9b8fa0311c5ee9821523055a

          SHA1

          5a7c6e01e77dc06ec5b446f14ddb17e253bb9b48

          SHA256

          98af77e699e66f86e24e7e4939117f4fafdfc5fb8414c2da36ebf08cd8faebbf

          SHA512

          a89010c7c57dff9138c044431db506e77bc479b25ae838f4de3ab74c6d90126b6049e5e1ce3406d028979bb937021b9d19b43794cedbe181397c2dbc705164ea

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          a43f13ec6246bb889a04c10a420dab0b

          SHA1

          98c8ecb36983e6df6124d6a656b7abbc95fc7d16

          SHA256

          be9487947123b454b90056fbbeab5b5e7e5b5f10da96b3f2fc79d544e91cd384

          SHA512

          300efbc6f4fb29adc778d563c37ba479db67443afe2d04eedc93c9c2743641356b352829595bca76cb719438ad26f9d4a14bc70d5a34db144c748fbb10a48771

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          94aa363c11aaf9d04a28cc8c5c15661f

          SHA1

          0631b4e57d595db9976250ee4018c37bf564099b

          SHA256

          c291f2bd47b77a81768f3ee716aabbe7c5ed95ce800b4de761d0b04894ef0a59

          SHA512

          eef67a98943827b14b4a522a0106554d39e081ce0dab0c74d83c86fe69f86ea1e1933948c0826a7fdeeba0733b977fc37fcf06e325804a87c507bc250794c1c6

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          3e7a0bd3215235f216b49dab12380a31

          SHA1

          8cd96fb096968244d87c0d6e70e9eadff5396d51

          SHA256

          a0b45998f739b7ed1e7be0bd89a27c6ceed010196a9d76e3b46a951f0cb0d0a4

          SHA512

          0dc4cb6787944fc94b88f4eb1f81ccab292fc90f354fb90ff5a7bba99519fe6331c990dbf131882b50398661d2c0649c70bb22e1f027d6eaa260a3ce23200f11

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          23bd01009319fd964e1ace77cd052e13

          SHA1

          54d2c5ed81f10dc72695a14f8a0cfa97a50a5f7f

          SHA256

          7d48f466e77ffbcbc5f430e6fa95bee112d03b4d1e38f1a132fd06d0002294e6

          SHA512

          08659a52227d90fea386102a57a195e76cba56b0eeca55bf19fdf8e94785ac383c6b91b134b0b29bd6c5db6c6319fbe93be76e28eb578cd7b3139eb8d6e52eff

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          aaaae8d386fd08ca6e0e3da1ed7fc6ed

          SHA1

          26398554c80c0e58c7350a8be20f593cf23f21d5

          SHA256

          87d8507f63cf6cfe9aba24cf112ac3f79ba15e649b8f141f5319c15ef56bd505

          SHA512

          9d67772b9516723cc92606f970368f2c0c40f3d3bc5e61e89d6e66dac2ffeb113bf7543e558828ab2a279e4468d22a6efe79b39ca81931bf61ed7ce420b141bc

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          ea1cf5d76cfeaf0afd174273f4ee0ae3

          SHA1

          0d35660f31f2e4aa6af868539cd2e984777d8019

          SHA256

          a7eb6c0da41e1ada4cdeec1a02ac0174d5a041d3a2856b6b9e31ac932e984164

          SHA512

          08d8f93c160f0e64039c8fe8b4f6281edd229b50f8b72d8be6c249da2bb2db8bb58da95e40288bf5668e469d25802fc9b14d379b1a1a536bc3486f478d2ab464

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          0f2101c214a0b7738b2c775de7a66abf

          SHA1

          92bb2771d801cbc095f2024a18acf461541a695e

          SHA256

          0300496fb4cbda596ec1d33928822301537ea2d539e700a0dd6d61120d30d15f

          SHA512

          6e0e84b2a4287c664124e21814aabfff80d9baf239069aaa0e05b62cdbb8acae464d42ddce6a17760e76a0dba26bd3a05de3c126a814546db00d13db2a2ae8b4

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          7b92321cba2599d6aba72f70e94e2681

          SHA1

          62091ccd9a97c3be3d2b07ada2230e89e7b4ad9b

          SHA256

          4d29fd39d3b0de4124e0def9b16e157276d1f8e8a2cf96af87ddd73e3f424247

          SHA512

          83569ac17b21cea48a7e9924b8f368c90795fb42d614da7f8d2149bcc0e235d2556122811c047f4027be6f05232a7b192978158ab2981670c6e18ebb6cc00ede

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          67f80503b44c9ecebf51113b60d251f7

          SHA1

          374d07a476f1ae5ec9dea184671a08e412ea77ac

          SHA256

          7a52a7c943c1a3ee68a511a5b45ef6e4cf9e2b57f118089647d64e5fae66a538

          SHA512

          0585a41d38e535789fcfbbf339b7e4615b9b280d6e4d3ec556efbdb9de26827ba5adf7916b8c29bbffc77836944415f8c16703fb09a080f0f98dcd55d0014203

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          05941df5ffae1db0bf95325a12f3c6f3

          SHA1

          af3f2d85684c43c044960fa4c962802f745de963

          SHA256

          73ac295638d6e280e8b550a40f1ca6641b62f51cd4d1c11cf1a78dc6fc1d8b8f

          SHA512

          421877506c0b49e34205f36eb27961480d6968e4478491c1f3affe998685c55b551af54bd69e0e8e09b2cab1e86b465689cb16c11ddf0bc4a31bf5e3165caefd

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          7dce23e4c356cb838a7cde83afffd353

          SHA1

          50f51a5a2cc5e2e1cefac90122d35f9370fad6a2

          SHA256

          d28b2d0a6c853d3067272c7ae210f991cb8580ff58d53d847fe6d4ba1a8fc97f

          SHA512

          fb13349bec0f6ecb3f3e52c5281dd1ab977a974c6f6d4781cec8a7dc1a93cd70adc89fd54b66cd960186adadfdc009991f3955bf408630b34d4128f4b89171f3

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          e5db1ded472f06d94735bbab3f617f88

          SHA1

          c123f690423de6f8c18c60ceaf2265cffa08fd91

          SHA256

          0935a743871309e205f1e9e99fe6e52a165c36e15abd852a0636db5ee8194db3

          SHA512

          b691640a34708eeb840ad682a5b56bc14ff91a4d35709a1133c20008438d8e0d83917c88b6ccfd6bd1b66a0ae294169e8632ff6baa8aaa62f163f8e24afcf951

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          8dbd112b27ae70db73c7881443e686c2

          SHA1

          4cec145f93b54d648025f6ecb0dbb78ba64d2d7c

          SHA256

          a9a7310ac04d7ee0dc7e89adcf44665d70869b8bac9e06e4016f9a57f8bfd928

          SHA512

          5d1ba48c9edaf91d26a6084ddb0d125d535982c7be8cd0e8ec495dc76f475603ffabf06528bff1cbf4ee9b255b6795caed30540784eddb940e08fef31531f468

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          1170134e0a644a6d9ce5f55e57cc9786

          SHA1

          e65555674ef9d5b9614aff6acaa841b892a0c9a9

          SHA256

          a9af2d1283eff7694bb85635438daad9c75b88e0ddeb3a8c030f859f7fa0ed17

          SHA512

          db22b13aad3230a8547dc0d382ca5ac7648eb03f20ae4450bca1e2aea2cf27a94b647d452a0f7b0e19d1b49b3e92fadd90b6a0bb84781684514fa785c302ee92

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          1cd63f7ae48d2b437f70c47552358b03

          SHA1

          5d5ff7161b08d34938a9b8ec858af077f4680fd5

          SHA256

          c2b4ed674c0fd968d58e9b7ae287dc6ca3416d9452c1c02aa03f45997752cb1a

          SHA512

          788a3166b9f658f51588caa29d3ccc9d1c89d55e45dd56fd540a2e254c9f8ea3fad6a5e21e6b8199b733dff8e9e2b2d0c02d5f9dbcb76ac7faa6b919a4e71892

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          8791a4b3b5ffb3a59a1106477c5039cc

          SHA1

          adef16f1adbb685eb277505811859587d6dcdf57

          SHA256

          24c0e2534e45e333964d13158278b4603f0114c9718d431b5985b2b09f991db2

          SHA512

          2754b757908b52b5376763ce74c52633b39926a60689c67588a52b3d8b1014ed918a8910dfd889354629b99b80266657065a43583b3dc20d2b2694219529dcd3

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\CabD932.tmp
          Filesize

          70KB

          MD5

          49aebf8cbd62d92ac215b2923fb1b9f5

          SHA1

          1723be06719828dda65ad804298d0431f6aff976

          SHA256

          b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

          SHA512

          bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\TarD9A3.tmp
          Filesize

          181KB

          MD5

          4ea6026cf93ec6338144661bf1202cd1

          SHA1

          a1dec9044f750ad887935a01430bf49322fbdcb7

          SHA256

          8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

          SHA512

          6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

          Download Submit