Overview

overview

3

Static

static

1

ef9da62411...8.html

windows7-x64

3

ef9da62411...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    133s
  • max time network
    127s
  • platform
    windows7_x64
  • resource
    win7-20240708-en
  • resource tags

    arch:x64arch:x86image:win7-20240708-enlocale:en-usos:windows7-x64system
  • submitted
    21/09/2024, 10:40

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    ef9da6241167d5784521a04056ed8436_JaffaCakes118.html

  • Size

    36KB

  • MD5

    ef9da6241167d5784521a04056ed8436

  • SHA1

    ad7fa785cb4029a855827d7cef68c3a24d03c8a6

  • SHA256

    8afe6711546148a4599567e5c851bbafaaedc7064cddc736e2be94c8d45358a5

  • SHA512

    5077efa1e85186ab5099e6300429951338c3fe95ca6f95c49a42ec395ec02e8de75888d3fb07980668b67478e1fdc97ea45dae27c5523c88dfec9a4ae80d6f01

  • SSDEEP

    384:jLc4SXRHqgbedUjtbYGSPnQ5g3sss1HPHqMjpSl1VwyIfMU8kCOoli:jLc4SXRDtKQ5VsgHDMTPIfMbkCOoli

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 41 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\ef9da6241167d5784521a04056ed8436_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:3008
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:3008 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2452

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    ef5ff7558e4c226c1999dc9afd9553c2

    SHA1

    78b0b62ccfb8df80fcd09c7be5b4ac3e962f8007

    SHA256

    2b08d3b41262441802c0dbaf5db5251e8eb768d69f3d362af68229f931a0f319

    SHA512

    f1966c58edd9fbe238ddc8e162288459b191a9cc9531ca10d035f766c9e8c90bf7f5eb7bfdcaef07234ef50f0fa541164e0b5c95ae49e9adc5927f645022013c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    ab5653be40ea74290bfc9471c4be8c72

    SHA1

    b66747aa0e520a9903ad71f29cf806a6cfe33747

    SHA256

    2184cf3f00ee000f32226f018204f43de332d628e35fe4dde1f2ca1c1d47e74c

    SHA512

    83310861110141b5e5902438aca01a808d6f3d1ac40395bdf9fd5f3e178d234250882be15c633a8d259a0dbc33198cee73a22dddd4b2acbda62ffc2f5ecc76d5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    b7f184c368315a512c060d5942d70118

    SHA1

    f1aea3abf93b32116075ea50c6fd5de82eaa5a2d

    SHA256

    c4daa18a6fdec6a9131dbfc691ba95a364f80049d9dbd6a14183b091ca9fb0f2

    SHA512

    5a2118684c06c730191fdceef6c0585a7f80198864f5659458d633a9dfc2ab8444df49c7343f093774c998484d0ba8220b245e9f6cbc039c2fac01c697f7aaa6

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    be6a1ebd98f783609c8fa561742f8d99

    SHA1

    5317b920202d50eb233b5afb59a2b1b4f521169f

    SHA256

    3d29659e88bc77d320e1068a6e1690bdf947a91477a7c894aaa64baffca4580f

    SHA512

    6f4abde4b8807654b04f02aa0b8cd73d8e57f725fa21a4593768a2d8d06fae50101a444ec6ae43d0f6ed85d93de7f451748de0fb5984c5f330f302f9b637ebff

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    6dff18f7bcfc1dbfebd79645bcdcf343

    SHA1

    a75cc8b90a835fd80f149713713b2d4a1385bee0

    SHA256

    104d33161ba555d26aa4ca9d8c0ed0b9996fe03c0ef983a550a7d35f1a6df03b

    SHA512

    3622d807c76ebcb0fd3fa1199dae0f1bdd05cc77e7181c1c6f8bf64ef11bac71a376a30fab0055840d0895addcbfd27c3293c816f0f13e2dadcbf3130c2e53e3

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    4591719f9796b6761c2ec167a8163a28

    SHA1

    50e879e98ebdba5304a2369c272afae94f99ecca

    SHA256

    2a2691b57b4a58ce05f39c88bfd10c1e35471d3881108cb3e8bacb45d5598b4b

    SHA512

    49dbce605fc371ef62c52ba0b1405e8833cd3f8653965b9a8ab10ad78f2de425fa16f85fd24bc2f6fd056fd15afd400fa5c93481be5ebff94e1bfdf2435a826a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    efcefa91b7ab331d4ffdc527cec68e1b

    SHA1

    e580653ab1ec41f8b58f40882977049d8d8b6d9b

    SHA256

    e133469c9fa60090b8b107fb55396f847938db108aed34b4af5474c3773357f9

    SHA512

    d3239ce5aaef1ffe4f7a9b7d92160beefcbaeb19a9686cbb6d67d49a5557c8df0bbe95219abc492e2400863cbe505edfb6a746170e39c380b142336ba389c813

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    3cad55e094e947d9ad9d1a4711affc30

    SHA1

    64ba0147611af1d1e0c12e81c7d992aeb678bf64

    SHA256

    b8a45c4601c9bbfed9feaa16218bb94d894047f8f70e7f1dc0b16657e0693e31

    SHA512

    b9cc98b067bc9b730e354dfac8a09a790af6752ec632a52435244183b7507f9f98d104916438a7ad4c6327fde28133495ff055f777e707221bfe1ce52cce7525

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    417f0945cc38508e67ca6a9ae469f160

    SHA1

    26872263666adcc7e76198c47c816cfb9912e798

    SHA256

    8de7574de0e595517e17251f94f023eb4d45c934b4dbda6456a172730b142932

    SHA512

    b32de859c48545e3d19740c7b6ee7d269c2e24288e22f7a0eabbefb78357b82217a7b5a670c207cc05ea0fe338e84a72aa54b1bc6e9eedc30705f06af637d614

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    83b6c6b37805db10fb65ceb10f814510

    SHA1

    ebefcaf0ca9a7c1fe6f700253a5b52e111dc8940

    SHA256

    a6237af663ad12cd3b0277e396d50c5964138d79da712ef59f5c0cfd12e19a39

    SHA512

    60b234cbed683b8e48fc1fec7666846ed5460fb5f383a5a755949d3f3d5011dda4cb871edeffa5f965a89d26e6020252ebdf39fd512c6a90bcc6bc0115e583bf

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    86629f5d8c0082406254180f9390433d

    SHA1

    eb75bdf1c5a362cb970335f5324779613ff9f154

    SHA256

    ab0dcde70c5bfc4b089274a4c01ea0153900fae6ec38e2e3994fd5ffe61d5717

    SHA512

    6758780b960459dbbfa7389159559970a4a3f77a6521c99b0992ba06b33b98e20a033b082f73eabcb787af154a34c7ced6f8614295ad994b7df40fd556221add

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    8a26e2dced7738943ecfef033b4235b0

    SHA1

    b1b6a913689135137d5a996c0f64c0ceb1639751

    SHA256

    c9feb2bda74be622ef47fdc2d5b64b263959d80b4b863e0cbef968e0975e3d89

    SHA512

    fcf089f51b5ce6a88e63ff4a8669d02f8fc9b1fdd5bf6accaf716724c0411e04dee083b7cbf3491d196f8b901aa49a4cef79d18df2c474cd4aa92cb9067bcfe3

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    809b25a4cde1d34df9c3f79b10049536

    SHA1

    16dab121e942874c46e93e838b39c2a8b27c3428

    SHA256

    3cb981c521b94464ba6caafde64663f16086b0a72705b8ee47236d707b79c2c5

    SHA512

    5e6320a46e3fffad17f94e45f82db111c18c96b4675ea1c90f401b3c27088bf74b83a4d570b681a4d33833ec7ad2e62a53662841993f863d8816a4a4aef94cfd

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    5f835dde97ea934df0dec369c58ba5c0

    SHA1

    fccd32f5e26f140ba18410d007c0ed92b49ce6e4

    SHA256

    a41748a3039b6394ac0ddda5f5a6848ce764cda899924f997424662cdfb50b6f

    SHA512

    43df9c1cdc9be7bcc271bf852ddbdc56ea6f569c6ec83a6a77ce81cb676e4771d05d44cf49a9ef3a39873e6771526d29f5582d5e528a3196e1a016b6a6a953b1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    71e1757bd1a9fa82adf861700291dd16

    SHA1

    8fbb36ccbd55efa4e3d7d235c53a62cb23299da2

    SHA256

    b655a0e1cd9ae2242b56489e34d98b2ba9409e1cbdf7ffdc80177ac554088072

    SHA512

    610cb999baa63b1154c03536a2faa5b40b5011ffba6f5d2743c64d2177523a5a30c3b355cbfc2ff831ed4b2bb3cd0d0af15f271221b0da8acbc77311447bdc9a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    0aa5e522fe3495b35d3d532e6cfc8bcb

    SHA1

    d59401b251db83d1198abd9cac1c692dedfa7f14

    SHA256

    e42e5a4deb7e0d5e1f99f706ed1b73ed0006dd370a0769a15ce8de867242e6aa

    SHA512

    0d526d71e31a303976a360d0e8ad6e8212e2e058ef63021584f41fcf10b9eee81cd2cf45b04292310ec6850329de607e8d4b91e2d6b1640cbf7d56c31908154e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    77490fdac3bce4b5512f14cf6ac18648

    SHA1

    a5b3262eb21ff323b68fce1079d0fc0aefc7dd32

    SHA256

    50e3fd290d09da4ac7a8bafcb6029febcb491dc8b54f9ce8e21f13f8f74f145f

    SHA512

    041c94b25c8817d7cfa424c6a6505278331b3899a22e99f797844dab43bcf447754ae74699c3804b80a5ad4f3abdca0897569702e79d1d245de51f8c51f81414

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    cfbbcb0d45cfbfc7712a51581e8dbdc5

    SHA1

    fbae1202fdf08d6cb16bd5cdd43f71b2edec9ed6

    SHA256

    e17d84517835be416671bc30c353d2807980b5a47e240845271c0755fd3ae841

    SHA512

    d8bf1b909e11c42b4da8deb6d50929e4cfe28d9e08e549b28afb16973b44cc6baf0b194613c69cecabcf04e3509f96c0460f79ab83232f59a7cef922ef3e7653

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    0683162e5ac7c02dca25401e135b7535

    SHA1

    854f635cefba20a415f9022c6ebb6030a32b5e37

    SHA256

    731481fcc123be45d39eb58e88d4792083a3147b6fb250a904bb306f35c6993e

    SHA512

    4fff51567818ee3863f825d89bc1b807e5f0bfcc7eb1dcac7289a4987c2041b5e7572145634d049ded7058b7dd147d71e22ba2655c9a10bd74df5476b2a6b384

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab7062.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar7130.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit