Overview

overview

3

Static

static

1

f044392e8f...8.html

windows7-x64

3

f044392e8f...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    117s
  • max time network
    127s
  • platform
    windows7_x64
  • resource
    win7-20240903-en
  • resource tags

    arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
  • submitted
    21/09/2024, 17:11

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    f044392e8fb437a8f1eeab403e0d7fb4_JaffaCakes118.html

  • Size

    3KB

  • MD5

    f044392e8fb437a8f1eeab403e0d7fb4

  • SHA1

    634fd4e49531e7ae6f1c9e7683257c0a062804fb

  • SHA256

    6223fbfc70fd5e401eb3f0d9f41192bdace1782bac877a139eff5cdd0f22d9dc

  • SHA512

    77aecbafca81b15d8654187cdbec9ddcb323f35dd39a670a977930810a06dfab4207e52ab1b4c7833320b5b6a499b89cf32b2d7764640940dc1d5f5ed686ec7f

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\f044392e8fb437a8f1eeab403e0d7fb4_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2644
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2644 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious behavior: GetForegroundWindowSpam
      • Suspicious use of SetWindowsHookEx
      PID:2860

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    50f4a0455c1049f4a0bdea12ee72bf5c

    SHA1

    b89e84f220b6faee463efb632d151751907fee63

    SHA256

    709f8766f0ddcef9a569db2725eb310c490e47253444262948c0d79328d7250b

    SHA512

    c025873fb8f65c487a15ab4edc12377ad76acbf3ef5bddded1e3be6fac4e36dc17ae6edc41704f1a559a0b1f58a13f3c95932d6d5b1a703051c9c7fc22d8def1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    88dac3e687857746a1afc28050862fee

    SHA1

    03e8ca3a7fada0dd817eee92e382b812ec5378be

    SHA256

    9a926dd13f413574e79f7d5e84557ca19cfcbe7a7443794e020bc781d49cb602

    SHA512

    2b230a4125b6980d77f8472291f5a03afeabd088b32b0a487cb7ed1c3009bcbace3001361112b5068e9291c32806126fbc5b058fadc89bfe318faed76f7ee4df

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    9473ac1f40798fbdfaa57a6b4f43c78e

    SHA1

    8564f454b7d09c88b9f2043a2d548ef2ae813e55

    SHA256

    68a569754bf51e04b5c8e1bae0ad8d179f3e3d027e6be5331ac98b1178be630f

    SHA512

    f44c80aed12a0dd3c08239ddb61738526c1456d1857cd0075a622acbc588805e2b23963b54081cd842f4448d4242f3ce592d2261426fb4690bf48841d0f0dc4e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    ac7933b1009574b447fdb1b324d4078d

    SHA1

    1d1e1522b6194cba73887719a5b31394a5f07947

    SHA256

    fc8f678f4ff951abf3d7bc769892f0f28212c1d0a2f450d1cabe8f2df6d4de25

    SHA512

    777223f54500603c79d832b683fba05b18ff8352e4122ff30bcda3f717e4828a9b071c488bb43355c2e94ac2e40d0fd3e2db680e2e5047c32a633856e936dd81

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    ac6788981149781edfbc8f6b740a6807

    SHA1

    4ed971e903e431d5f993a42c229145b4a9f6e3af

    SHA256

    35d457211f4d990bc6a446ba0b8133a5804b00749a4f67ea7e16c47750842111

    SHA512

    41ea12cb75d74fd60b2cbb0166511b43b22e78f1ad94ef238f1a0027b5cb915d516316796413157d63b2390fe8b20ba0f136499c0a1f7f5011aa2b882a3aa222

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    ce1b5faa59300ad2af6cf97cb31dc13a

    SHA1

    559594bdd4dc5fd17564b6b9bdd73cae49bd6f9a

    SHA256

    f4f77fb911ff80a104951dfe03b66052f5de9b7cdd23bfcb7a9576338e4e6988

    SHA512

    4d3a4594f611ed13961b00024809c6b3652cde9637470e2176e98e1ee6e4e587c773bfcb1c7565ca6eb8f46f324095de18108af77c13b405a8c6e6365230c014

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    58b46ba4852b5252939d6b4ae32ffd92

    SHA1

    055f965d172578c7a813ebcea6f9c655e1311b88

    SHA256

    3ea9a0b11ba594cd6e92418582b4008aebd7907f12b12bf5038d53671bc1764d

    SHA512

    0085fea3a067293650eb2b3e1fa99722cba0bbd922a66197d8d0884d110b18f2355cd4f09a9bc492e9873a3c97145f5aa6dc4d02a82f86fb8ab3ecf10724a800

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    f0f0014f85a207bed21d8a96f136a5ca

    SHA1

    2d5834c41557c61f2137bdadfc61309ebf585979

    SHA256

    d4692cb9b9df5d923242e0704254e853f21d8ba5d3b7be0358966be3af1ef233

    SHA512

    e1694320c5a8fe066c1ecc13f71ef73a2d275fb4fa5ea9226387fecda9c8a3ad051c404405c83941bf6889b6a728b44dda6acae7d335c9d0be3579310c7cba7a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    c0481399c27003974e4037cea011c006

    SHA1

    15db6ea4a4582a75c6e742b76b087ea8f7e591b3

    SHA256

    07e0cdb0dfde7ded86e8909e4c51227ff8c52b957fbb29b88f6545196ea8db46

    SHA512

    c3f3f98a93ca97b64cda0dd7845fe9defae9f46e2e03c614d6df0fd749b4174c3b3bef81347bf46868223dd213088e15fdabdbf39be2500978c84ed3e6d4aaee

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    ded25accd2fca0899549eea7739620de

    SHA1

    4478f34f94b25b0c8df85266f23ac8340e775b83

    SHA256

    232c41316e1b0f3953c4e4796839df00c95986edc755a174236913f88a906cbc

    SHA512

    656b54475bb2f8c9436eed1b0270c15799faa90e544c5595849a15cc19889c9bc75d95c0c6f8b60a179cd9bc233a29c76845c031d4047c90dedea41119cef338

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    07904539a928bd688c72618379fde24e

    SHA1

    0411d8be361f149206a10fb7bbefaaed0499d2a3

    SHA256

    d5231008e8fce7b6bfa2361fdd05ed6d650d044e62db0bb45a42421aa4388ee0

    SHA512

    2d2db39efdb3d8e1c7ab28a5659ee0cec4a0dbd58a6acfad01066b69273715a6040a53a451656425ab2fe1024b0cde8b545a9b966aeee730ff1d145f9b8670f3

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    8353e02b59581590056a7764d442146d

    SHA1

    e846bf5232142f5390b36af4b431a24f7b36bb93

    SHA256

    17f1422becfd89d7e3dab0d151c25b1da02462eb8ea21c27962aeeccad83fd1e

    SHA512

    8ae63cdb73256d8e9aa678b1f32a703163c980bde99e8d0e3e978595ee36f5fddb0872f8852362cf7db385f40a3022eef80f967eab84faa552dc22f3776f149b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    a9b5c02fc0419d8e8d76f869c0f9872b

    SHA1

    4c2bd3361cce821b6b0f3b6ac8dd1b66891d28fa

    SHA256

    04c1c2b9df41607bd0d538ee4dc2825b89a39af1af1f3c8e3dafc0d6e59da053

    SHA512

    ae937f1554216d3bf2796ce5898792812ac21c65d791830c71f94a6a6d88085a9d50a6a4acd9f2970c753fab0fd16d68ff12208a42cf8177ec647cbb1da00cd7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    37efc1916dc0e00d2ae98b9e094f78cb

    SHA1

    dc4187bd50e8730c1405ea69a5becedf7c610323

    SHA256

    6881af135decf39db3d40a96e5b7dab9b559c90446e0a2c14471646eceaf5b8f

    SHA512

    082f8e2315ea1397a512146f2425a71354def6033c71de5a8efd3a117e8f7eb7215cf073e76d2c832717de310426c700f9cd5a25606b3bfc21cf792680625877

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    0691ab108f46d07ef7edff04e721a7c3

    SHA1

    3b63c82bcb9f699d6eeb6a580191f63f7642d594

    SHA256

    d66a0a03f8de2260c21ba7b7408924ee2644016b744721ed229e3d134a520553

    SHA512

    a59066dadcf87b3d049b2182c4c913f058819ed8e4b5dcd9e20b4ae66d79650edffd1cedf5024b90ab4b22fc31700f959df333f4f53456eec2f842c1bba03aeb

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    a2399122703be1f3d16941e4259a9299

    SHA1

    33c6d1196241cfa5a3bed44653d2f1ff42366f50

    SHA256

    4bc46fc262b5342efaa23072b60cb8f2a5bc6296eda28927629b16288c5e0df2

    SHA512

    688159d37bbade878d4c6677fa2b7739f434e7659244b872f915c3b62325d4e3d4fe66ee33e5d0b9a4b3c1438905cfb788528237fca36a4c97448518ed427476

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    a85dc0658bb0ca18aaacecb7e777d8ce

    SHA1

    f273abd3821f90c9a748a9962f8bd484b547435f

    SHA256

    05520877a8e27a73bc2959e21b03752257f79c0b7b1797646b1ba1e38e51d436

    SHA512

    445d69723f8c3e6d030c0f82ea250cbe475cdc71807aa65d2788b281028edb151ada59597df07bdc5e1258b00b100c764da88047c4c6450c92e692e4365d0cb3

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabCC0.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarD50.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit