Overview

overview

3

Static

static

1

ef5ceb8d6b...8.html

windows7-x64

3

ef5ceb8d6b...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    121s
  • max time network
    128s
  • platform
    windows7_x64
  • resource
    win7-20240903-en
  • resource tags

    arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
  • submitted
    21-09-2024 07:56

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    ef5ceb8d6bf3ac59fae329ca16504753_JaffaCakes118.html

  • Size

    27KB

  • MD5

    ef5ceb8d6bf3ac59fae329ca16504753

  • SHA1

    16c29b9341227fc65643470f1b703ee372a0a984

  • SHA256

    e9dc67344b81f4212deb9aa77d2f3e4854260070e7376443439188115b1bc697

  • SHA512

    09e19494136733ec500c7ac0753cf4f4d31c9c0bade48efd5927153c792896126200cfb395680d4f10011c0c17f2fa8a6ef758921aee9aefa142291ed5474677

  • SSDEEP

    192:uw7muXncb5n5mnQjxn5Q/EnQienNnznQOkEntYynQTbnJnQ9enfm6ufJ/Ql7MBH4:+uXn0Q/zuBCJ+S5iB

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 41 IoCs
    adwarespyware
  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\ef5ceb8d6bf3ac59fae329ca16504753_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2400
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2400 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious behavior: GetForegroundWindowSpam
      • Suspicious use of SetWindowsHookEx
      PID:1488

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    e1e1c433f75687ab567c478703aed406

    SHA1

    22a13d687044128bdf62f6c0bad8658b8e2f6306

    SHA256

    e561faf41893b18df672576cdd7af6246290a60c07bca64a1ca7e25af7d66fc7

    SHA512

    71efc6a002ac4689e2d456ed6774206aee15735baae3245ce085f38e4c48469d2746b266a2d968ffd3f68d6649f702e5d2d9a7bf52bf7ae3c16a31dd7b2ca98a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    c73cf9b55a5f617eb0bbbd042ac72a06

    SHA1

    ef6d2baded3391df033c647aa04458e6352dadc9

    SHA256

    bfd7bbc7f4f9d5526c3561b5bcce746e38bab9f662374bdbe69417c12db60bca

    SHA512

    ff84c3bdd3c0a62f44da630b082838701fe3e9ebbf6ae578097e5c2e6f8053ce254bbba22f217918b8b4d9f81e5d673d959aeb065277fb626d8de4db05d3e458

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    498213e27610ed3d8a2e18894873500c

    SHA1

    a2e96fcf2afb7233d149d9f73ea724c8baf661a9

    SHA256

    a33faf5f61b901cb33dee69cfff8e53f108a7683d2b3c73146ea260f32f925f7

    SHA512

    1c6b3f66849ef07b4a6250c5bd85a964126d8a58442bddf443a1b57eba9b6aa3006b7b3b9d6648027f8b08e343d69599a8c5ec2a34741132ea462d09626bb8db

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    02b5745d9d7cc165903f3d72a10c49c3

    SHA1

    b8e68efc645490f688cc24c91829b8ad5c35a88a

    SHA256

    23654345070ce628e52c9c844824317a3cccadbd238ce400bebe4f0224a0f51e

    SHA512

    141acb8f780c1f423dc1a3c37e5bc410b32168af43fbc1523f3eef2386186c6427dc1bacd72fec9a6facc10c23956653f199aa8790d0ae5f66551f466d107085

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    7447fa9c843b38759f8fe2a6b669e1ae

    SHA1

    179a48afbe061990483adcb32f6f761f1dc1300b

    SHA256

    09eebaf607ad906b125fd8e213c7e54980a56c3c858a45ea57b3616ef6738457

    SHA512

    b7aca6044a01450cc4bfa7696e2d986666b14f638102dd392385666d6811d998de6f8a8aa94d2b0520d2e6b32038b5600228a1abcd25b7c743402c9d2b177bf2

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    ab32dd42d6cf0fc8b2ed37a9bb64fcd2

    SHA1

    810e85b0c6630f626f4fe2a2a96b69a95ee6dbf8

    SHA256

    d883d5f1882aeac764e52fae12bcad3fb169f6abb20475b7877a4baff6bc3e17

    SHA512

    fc4630e8506227e661081f760eee95dcba730716551650762d50baa657eeb211e59426cc097101243844881128b645a4b9755e159e6873d7b1215a80c65bc9dd

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    dc3e236c979baa3267b9916c31a0b5f8

    SHA1

    ed70894e02be5327a759819a1c545a30a8f1f314

    SHA256

    6fc8bcd954ebedaa5debfb64e77c4c1326533b729867feafbb5242df6ae518c4

    SHA512

    d3802247fb0bf2d0583d19f65a7770a5e4e371cb1e995a5d50a129269e382f84387cb608e6f1c4968f3ab3538fda3dc3297cb37d69b6f17f12322e2a2db592a1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    e49dfe02a29ccd8644516d9351b1e5d0

    SHA1

    2c908d602db1fffd68ac6ed52c2f6f00ce41c497

    SHA256

    26519bc71f158fad7907d244890e9ddb50264b01aae86ab4f9fa4a19c85ecb33

    SHA512

    b894b25640426a4316fc0ee9fb7556cc6f650e5e4d607c57ee5c4aa41ceb8f232d0d67bcaffbe55222922691d20570f21e7b16bae641f27f2288867e3f094508

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    37af0c100b21bb98890832a18067cf3e

    SHA1

    b71b83c08a7e1e7af59052c990e90ac1e1a2d3cc

    SHA256

    0dab0bc77e42e70888b3fbb784034e8bc8a61a614bc531279badb4205c001b86

    SHA512

    39224fb86de391e5f086fe72867bba7066d39b06982e001664610e324a5bffbcbdec6cc6fcda4dddd32f02bd8a3c699d4ea1486f17bd710c2c4ba337642f479a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    2688eb3550e1cda7098dc80c937ab36a

    SHA1

    e4dd6ca4eda06fdc971dbd6267ff94e5e9248bcf

    SHA256

    8f395f431ad32c69b08bf5e07aa22ab3c7d2b2c1d67a79bfe610d344fff718d0

    SHA512

    f83eb4b7eef0eb77a40b57e23998f2483c4a96acb00b747defe95b780865a69ebd53b8a1659d347021eb6ea55925a691986220ba24d68725301ee3b82a135319

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    b86fc386c845266b5b7fe1034d65e096

    SHA1

    dcf11922a95e5d7902a19cc32f5d52e0d3a6d095

    SHA256

    6cf7805848d059125c8511e5a9a85dd64d356409b89f550428b139ec92cc7464

    SHA512

    be67a9c94dc2b3c0851842d11bbfb84a375bc381cc006bf136c7881dbd2bb13dbe23abdc14b7821596a5a62f72d4b97bf0d19a7e9e2e4392ef8aecf7106d50b7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    cc17e48178def4a3b6692e61fa5f464f

    SHA1

    ebf2642c73205424f1ee98d6cf469ce5d4b352d0

    SHA256

    7524e7e3a58d2889055417d0769b11027abf458232601ed6e1237acbe8dddd4a

    SHA512

    28c9deeb62d361dcd143886a7bf4b773dc7d6126c0475a7fb3f3fdff8be51e3d951b36a0d65089890643e3fc69a32b8ba40d4207891a2e7ed2ca8c8b4943ee63

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    1cb28cbea21426220433a279d5eb810e

    SHA1

    37e9f85ea82ebfa2f170fdec1d794308893edd3b

    SHA256

    f9d12d1b58df8dac89e52beb2600c3843239d9df486ac8a51cb4f4c5fc7d702a

    SHA512

    4f42224b46e147396775ffc66434f7065201f67e3b3e1d90a19b8604744fb0620e92986560122771df6bb03fb09a5bf9e4a688312a62b0965d845659ffa63b08

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    9f17e8e79eed6f8ba99c0d0f0340305d

    SHA1

    265a9adf595c86203f6e6cdbc06f5a8ae4bbc412

    SHA256

    841feaeca18908ed4c9ebce8a62d9fe01de3dd732f3d7fb1e5448189f9e39f1d

    SHA512

    82e3dced163cd62777bb1b79a138379bb9165f5566116a9cadf13dabb36ae5d817342a834d77900acfa6bbe746a0b899362750eeda2e8df542d214f4359b2913

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    27b1c07f48f0f14022876c418d73b9bf

    SHA1

    c2900a73f222265710f32479e38d0615e03fb369

    SHA256

    acf2017b8def43f018c5c6125f1a0d55f909980046c972470e2bb86f530730f9

    SHA512

    45d743be8f8c2bc201a2acaf1d1a44c9073180a984e142d7a9ae99b607189cf2f3d859bc228b525f2758a1c6b9d405fd2508446dceb4940b353960565641c9b8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    2b8e61296b437e9cd8e150fdf4931895

    SHA1

    ed6349600d0f677fbbad37ff2c38d817ca7ea9c8

    SHA256

    6f7bb0e7a8cd2c213a070782d02726f9f346f3b9d3990558b8af9d154b59e177

    SHA512

    6e9c838cae929870c804c5064b3a35971a7ecf6f4b7298d447c526347482d2809986e28f1b507ecd9f0da6dd4631714858ff8009ac0ec1608d543c69bfc0ff34

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    07077b510b624260e9238446b60f0f89

    SHA1

    a3f0608225811b7330323704baf761891cc1ce1d

    SHA256

    ea28a2810f5959b2649ff126c4dfddac96dd9828e61dee5a97d872220f01f70c

    SHA512

    8c1d6caebae349e723bab6a4179a5d7a903096fda091ae06227050eadc9a805d2f3dfe1f8120f8ded6f931a8c016f931bc7e7f9ae8835d941ebaadfff2ead98f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    b3961c8f055e0fffd0a8d853e7fd1ea0

    SHA1

    49413d42ef4061605759816550ba53a1006ce5c1

    SHA256

    f2e66fdd68dd793dc1efcc08245d4b9d9c42fe2b43317deeab0b840a5a7b238d

    SHA512

    ce0cbfbd5f39aa5cf03131bbd93fab9e06eeb5fd7c5bd3585f89cea2ce2ee11a9a699b8ea3682031c78aca4af8041e13fd846b57529b3e839d5c24584106bda7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    1bb158ad37f489a3375c6fd524392220

    SHA1

    19330f10c6c9fd7b0d35325292240c53842916c0

    SHA256

    c5da2fdc405c08e6f89847ff866527de8fd5c301e1e8ae3ee4c7f3fac970c543

    SHA512

    fe029ad786bc1f9eb7c640b9725fa322b64bd19437387d51b37ab587240ca4d93d10db948cc38784e9dcee28d9c0dc905dd6e95fee631dc731ef1e87aa18f60e

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab314E.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar31FF.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit