Overview

overview

3

Static

static

1

ef58727119...8.html

windows7-x64

3

ef58727119...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    120s
  • max time network
    127s
  • platform
    windows7_x64
  • resource
    win7-20240903-en
  • resource tags

    arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
  • submitted
    21/09/2024, 07:44

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    ef587271190d5e93b5cae15719dfcd90_JaffaCakes118.html

  • Size

    27KB

  • MD5

    ef587271190d5e93b5cae15719dfcd90

  • SHA1

    54e020cbf8498088151cf2bf90ac626e10177ec7

  • SHA256

    c63ccc6a6d2cde3657761752d7151147dc12d5e58fd1d4126b128e891b0a0070

  • SHA512

    38aace0944d9ff0eca3ad6dabdef08689d5fbb231661d3172257795637da4f4976730e7ae581c0abbf228a257ac428c6159304a05569ed1cf61791956ef907e2

  • SSDEEP

    192:uwnIb5n2iNGnQjxn5Q/unQielNndnQOkEntOcnQTbnBnQ9eJZm6uDrNQl7MBFqnk:JihQ/lETSr8SPoE

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 41 IoCs
    adwarespyware
  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\ef587271190d5e93b5cae15719dfcd90_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1956
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1956 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious behavior: GetForegroundWindowSpam
      • Suspicious use of SetWindowsHookEx
      PID:1808

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    1e766e0f1030b150a5fe47871f44260e

    SHA1

    4aec44ea80a008f48c39570d6a62ab4cfbab5063

    SHA256

    cf9cb643a46e6e9ed3bdc3d949d4d7ab0fa99cb09e8b6864a1e271b44c32223b

    SHA512

    ce6c3938f1d35dca2f02091cae971c9273f12a470c61d50d08995914095f094e838aeac8a8a71708678ae76f0656c5a89c1f2340249f82be2842cfe598545d8e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    f9267fef0d7f1d010111719c0735faea

    SHA1

    c723e4b25c09baeeb7b31534aa2b3ba8d31b6156

    SHA256

    884255321c04460e623cb717267806df4571d30245673642e3fd1d8b40969859

    SHA512

    8a4e60ea346f970f64a0b080d07b35ee446045da772ece9c355d544d54894446aec9c942cfd268d666ed24be232a9fb00759f2c1670225a009b1f7a52f690b1a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    671ddecfebe3a69bdc39c47636f6d79b

    SHA1

    0691adb71b1be3a3e33c3585846d133532719ee5

    SHA256

    efb80df9fa6772be6f9eabeb8c79b087dae178be10af68683019c1949fcf9bff

    SHA512

    473a0fdc786347ec272b04301dc5587dd181765632a9bd022b177a83fe7c42fc34dcd3b632ba7096b53d87f5c2827b22c1423c6b718d705c6cdcad4987468ffd

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    b549ba075e49b58a3a3c1976b63d66e2

    SHA1

    d6c30f2ad1e2e6422f1c5898b33659abffde0f8c

    SHA256

    1792df3a5d02b5d6974497fd08df42260cb05b6e988fa7ca21f97f824bb4eeb0

    SHA512

    fe98fb65632910b2eec27cdc03e058781f5a441f50b71474b11e7eaada9bf85d5321bec568e51fc501a2770375bb32659f7840dd6a76c0b3057af417b700d5d2

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    b3683f86bd0f189a6698367aece02ae7

    SHA1

    68ed7d5c0972168a3ce6b6745dc72eaff4923d3f

    SHA256

    23c0064445cf4b54a156cc931535a169d8d14ce15b354c1d6a9cff33ef96dcb3

    SHA512

    cfb98f43f3a495b87d465cb7fe4cde8ff2a62c628d84e938671d83febdf22ebde3bc7c8bb4b47de08e703b56587a68038bcdbbd62a6b83fe539c093d0e881cc2

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    0904e60ef7ea0524fd1ebe6b950b0949

    SHA1

    e9be7124ea419d25ab8c3270a267f1722ce97499

    SHA256

    0edc76a5ee92fcb32efe32fefeb5bb8b03bd1c1861de0904a3ab662f3c446239

    SHA512

    744c2e984d5973ec27cbca507507743a2130cf08b3966581401dd120709e2c170ecbdbaaea41413197ca61006882dce3bdbe66f768783a32aee5a5883c5bd99e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    d0c6adfec0fa2a551e7bd365dfd89630

    SHA1

    1098796a35e6eb1fcacd17e61a067a089187c876

    SHA256

    951ffcbceb46edbbc175745e73d9e63e99bbe185a256ff425c9cda5dd16dfacf

    SHA512

    9f238033a0ff7935c3a9ae6b89c2bf322d5fbc27f0a6e631c568a35b06388da16c117c1607b2cd81c7f9b46de79bc5785259e04cb3e9b0fc0f42c53e1160d85d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    2bc4ddf9b339d954bf8eba04ca94f837

    SHA1

    d9798207cdee2fe079267c99095d6381ee94a17c

    SHA256

    a2905c9354ea191d5fee6bdc555d4482803bbd2f8f3001aaeb7d6f5c46941170

    SHA512

    c3924d4ce72dfe420723143eaa10a94cb7662ad74f78332510c65a0d13def66ffbc688991252b43b9866c3fba3e6875c1912f5465a9d71aed7436e57f7f19b32

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    66243a5871354b4dcc6dc39a9c46f1b8

    SHA1

    3801dc6c222d60a92780b9f4df06fbed1bf512f3

    SHA256

    ebb6711f19bebb0dafc6576766b6c737bbadcd8327c573cb8cc64da12f857878

    SHA512

    f3214eb050dae94a5354e24019788964301b6eafe645dbb85250adfecfcbf1af5983c67f7afce87a5268ec14667ebeba039b146e5e5aa776ef5495b86841dc55

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    ce395b9d7bfdcd8aaa6daae072f0a110

    SHA1

    941db8ce0b7c46d2fe06421ad22c8d637b4c5d46

    SHA256

    33070b5aaa9c6a7f175a73bff8be0b5f8d5f241c3e8be54de4fd4fb345d35bb0

    SHA512

    9c013c1f386712a1e98cff9f86118d691fecd32e45e03354f17a3900cbaea99e6c9d0b76087c39e36dbeae30257d07ed56f2d3fce555bc48acce66090bae3d2d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    77191843a1117f3a77ff5cf763dda0ce

    SHA1

    d35a2bcf87bad4cff51fe31e83575f3f13232810

    SHA256

    0e72341f44711ef19285d9c19ffd76a94b56b92027629811003f3d740d96f772

    SHA512

    74cf3dc8bc1bbfbbd76be75ba6e72b24bf15ae82bde326225763faeffcff468d8cb58663400390b2ee9ff5611ca5c286fb3b2ca2275df96b81ad00eb2b1c6f10

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    72653ddbf5bdb3e4541c9083abe4addf

    SHA1

    3be2ff1eed34e37bc8f7e7ccf0dc9bc7db91d3e6

    SHA256

    600fa0f037f6dabf650882f198d6a255f39cb026f3c05d736f9651ac6a191b7f

    SHA512

    1a2f445eba932c5ee0b498a0a34fd625b58cb4edf0cdc8cacdbf9e05c958d29bc72e992d4820d587187f0bb7fd58efb3d101d980832d675a2478433b56e7a4f4

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    39da84662613ac3f8c3b8fdae621aced

    SHA1

    76698d82db65dab96328d9e0bf69fe094ac6a59c

    SHA256

    a8cc0bafd24c9f7c5bd264b00b95b464965bc956a8186c00c8373d7c563778be

    SHA512

    71c8482be0fdf3316d1cbee55e4f832391112b575ea200671dda756b01c8bc5232b050e496ba09c355330d06d91834f99076b1ec98acafaa60f692db5dde9077

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    eae918aaa39bcf0392bc74beb70ed4f5

    SHA1

    e75e1373013eaed691ce74b08a8a1bdfa2f336f2

    SHA256

    da9c6b067d839a04f6c49015722570e708124459dcd7270b21af767255b75a27

    SHA512

    4069492dd1a161c2906331ec9604aa940f95cc94b4a496bd57a5d0dfc7906b5638ffa8c2fdd085eb7f82a0ce2b62cad7c941a5acd9c85c6e87208a67c561a687

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    8ad2d39e276025d77333477bf8c9e55e

    SHA1

    54bc974c074c170f2e6ce07a37618742c3fac9bf

    SHA256

    5a2578e4bbcf814b1b1e3afa8ce9e1c56fa5763d0d015c21d0fa59018f94b418

    SHA512

    73ad9aaae497ef98ed6378da6b591dc5d6524c2401375262b47baf232960c06fee203f2d95d0599160afee9fd220b14caa2cd75309168d2168d00ca67f37a01b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    ac6dd00f95b49ad30a0027de6c45cfc2

    SHA1

    3f42fd4fd2ef56c39ce7304c1b9980e01a508a83

    SHA256

    f9d69166e3b3d88b5d536ee43145faad399a024d93833d3cacd77a4a9ab6a288

    SHA512

    e4a79b67ea63bfb1c983738fe42055724c7d25ddb413afb6d9a04c8d4f8c72433a469b841f6c78ac8e131f8f7b77c9ddd9a4698c3a63821e31a07d18308e95ea

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    a2d49bda1f50a69f187aa173824eceb4

    SHA1

    ad7606cdb93593d126ae0b0704a91cb19069f20f

    SHA256

    bf7785a965e6f0a4aa7b69d88394cfa31ec602c8df95a771d86144952a19bced

    SHA512

    6a759c5de6226b4c06913e9bd9fb6d38ae037805963d447af8840c8292217f96497e4725ac5db07c7a09084b0a9e38b2f1de8e356838b54638e3f599b5f50c9c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    e965eb89211b8a152761f3928b373908

    SHA1

    b9afd005690ffd33aa646022a48ac01a3427ad5f

    SHA256

    f237353d1832c14ec316ed1cb6aa89fa1d7107751ed941d904656d15fecaf6ee

    SHA512

    6a059c55b3ae5b39486b6b50e43af23d466da20ebac5aab8247e3af941267b6f4585be65a0ce3ed156616d70f08435a85de1f14c47fc29bef8018b0055762b1f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    5675fb547cae872eead15a50ba7a3e04

    SHA1

    3452e4af4e6691b9e54e58960e3f744be2fb477a

    SHA256

    7a726405bc34da4462c6dfbbf3afe5924c3eae3b199ff231226ec450ef8c670e

    SHA512

    867c75d1a8c310014e34aac6180baf45cad7fe95335e8db1d840e30d1582df4c0be6279f41c26c05ca2f6dc856a88046d3fea7173bf4a07b1fd8bdf8289f635c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    a7c8761382588caf8069f0d6f196a8d9

    SHA1

    2b43eeabdaa585da749a77e047055ff73424600f

    SHA256

    73eb34bce51062f4323113c96c4798c99d10b3c71fa46745aad91f2cccac2f0c

    SHA512

    d3a3e322b1aa64da3952ec3a8a57d398f7b35c545a28c8cac14e1213003899310317592bbcf2ebe3912461012db8ea28297a16d26b7014bd5403704fcade509e

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabC70A.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarC77A.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit