Overview

overview

3

Static

static

1

f07421870a...8.html

windows7-x64

3

f07421870a...8.html

windows10-2004-x64

1

Analysis

  • max time kernel
    141s
  • max time network
    142s
  • platform
    windows7_x64
  • resource
    win7-20240903-en
  • resource tags

    arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
  • submitted
    21/09/2024, 19:02

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    f07421870a34ad1ff316ed95e85635a1_JaffaCakes118.html

  • Size

    139KB

  • MD5

    f07421870a34ad1ff316ed95e85635a1

  • SHA1

    9d1a921847b3255d57e8cd66ba34d8d43bf90843

  • SHA256

    40b67a463ce22dd9c2f79bb6bf4fdf4521d5b91c7675a27df6f9aa68d5aede89

  • SHA512

    a3153d63848c62b40ddad63cffb20547f1e58b8e9c7ceb1414f736c5fc98fea5e9441d9ef6a1d10c8342c2583854abef8990cbc1de9a7514907b53aac9d11a88

  • SSDEEP

    1536:SIEvJ9qaqrlKyLi+rffMxqNisaQx4V5roEIfGJZN8qbV76EX1UP09weXA3oJrusG:SIEmUyfkMY+BES09JXAnyrZalI+YQ

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 41 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\f07421870a34ad1ff316ed95e85635a1_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2644
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2644 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:1676

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    5c121d374753074136a390bdd928e564

    SHA1

    c4d81ced3b31b1c07d668c06187711f60434675d

    SHA256

    850bf39af4dccdef9f499735e933a73e8a2b248c42085b7616dd96f8d610f4a1

    SHA512

    f5989688310876dd3dd9355b04a43d11e266cc75b0eaa85068d0e35e35bc454496fbd2f45640103139d773078eb1d058a43b5e0871754ee6dfdae6f6bee5ebfd

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    ad16c01b57cec611ef5ac14f9adb6205

    SHA1

    04ce7882c14f9a013c2ea70f4308a46be2220062

    SHA256

    2a8794e303217315fd7ca60cdc7efbf8ab9fbdacd25d37a9200529c3eda8a6c6

    SHA512

    fd9b281046411a601ea0f22d1ce9c23a023b7b2fd5fc0c643e7212075ab02932d7514e2b7a7b0aa9c27e3059db22b51d435f9dd00e8669f58cf596e838107695

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    203441c7aa9a52460917d2d71272d0bd

    SHA1

    8054abc5a4605581a4408de57475d7c7c35cf1ad

    SHA256

    a681a5b3b41decd5fe3d9951891105ec3cb2c762bf9f6e75052d655b94f35b3b

    SHA512

    253882046dd659ddd78d43971f0a80738ca4f5dda79d62fc1f27e5138dd788f6b22a7125dcd467b6d96001d1a9e9eb9c10cf5b1679ebebe902b80d9c391419fe

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    98e43f7b17abb37e0c3e5cb2aeef2b4d

    SHA1

    06c29778d0633930099a639f22636c1aca7a6536

    SHA256

    b32941683d9587f484a769a193517b9865ceef3d1ba324e48fbb42379c5eef19

    SHA512

    2b3e42193405d29222b67465ed8007b95c1b44b2bfb3674a7242fb8a80e176ef8a5e6eb17f6f9e3b67f94f88b95726c96bad1acc5312907244ab7c46e527003e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    2bff61514bfdcf31e0f4c79311812255

    SHA1

    43e8172e2e525762c24e1c1e44aff9abc58b9c88

    SHA256

    3a0645c5b41363b449dafb2e08c940029ce3072e8094931d5248b4e0fa93df85

    SHA512

    16946bbe994976e0a4b92e4235ec81c5743bd49dd9e2f454c9eade3d9c8662b0521fbeb30c0a4388ecda261d570ed4ee98844313cb86d415fa5bfadb4194d87b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    13418166f7c3632dc3e30a9643e27263

    SHA1

    bbc9d4ffec4c16419c8b1c9a067c8f6e696765e7

    SHA256

    dafbf50900acad4694061923156427dc941b7872d863376867defbe241e2dcee

    SHA512

    399ea61f944160c4722d86dcb7648f3e8634bc00996f634cbc7fdd1598d7da6efb3a34b41ef348e9cf4ff3e123b67acd88e9fb83c3c755ccb67b95240d151066

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    df9351036806f68d13ad52f1a9a08511

    SHA1

    547dd4f99c9945f3801615b3986c83e75b591146

    SHA256

    d6b9b54615dbafa7c27060a91edf4840dd2ea409b181126d18bdd393c304d4b7

    SHA512

    f5ff733c63f7fc184215e60c56dce0f0a66b8593ca0e46a6a06f6fddfcd969038187d13c1aadd7617b7b9a1eeafde326887d49dc4a1c375b595478d438d2b51b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    5d8bb918cffc9ba1b9a818cf43e9382d

    SHA1

    d608b685c06892ca6da1af6eec5cc9a2d9b3ac2c

    SHA256

    671ddb898e2197df0135593856e039c219673d0b3a5b20ea1a4d23feddf79a63

    SHA512

    0d41b56031e37737c4a722a559ae393ece6cdc44470c8232b2bdc8bd944392bbd11fa6abd824fb11228b7d181087bc8100600768e1d44693246aa317c47e0d54

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    53988efef72c1d9f19038f4b48ad9006

    SHA1

    5fc057b020d84546a4997b1e9d332afe13180f9c

    SHA256

    10dc7c1e44239ea6d415567d95137d64cd9f56db7ea6c062694aef5fc6b19cfe

    SHA512

    8d78d390f896f1f837cbe285e6772a9a81c52698a9d6b79f7938eb86725d518ebd85ff6694c408eb2d43a22d9c40f230e7717b8602eaa41967d82d54efc2c22e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    b26b021d72ffd129096d046c83e104ce

    SHA1

    462c0dae041ffc000faad136d31dbf39cfa96740

    SHA256

    498b7534767e900156a59109fd5379955111ce7fa1c896bcfcc7051506289d4e

    SHA512

    67daec74ce810b1871a108616e3d6d46023f53c70fd8996cf1b67738833e0c6c10ebe4072def986ecf7d12765e0da33b11973034f67fef4ce97db583218b2f75

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    5be8d46fbf4dcf1a504bbf871d8cade0

    SHA1

    d20a8efe0b55ec1fd354aaec180cf927556ac599

    SHA256

    75ab4400caf5a75900ba2308c77252044ced564cec60dbed7436206b84a03950

    SHA512

    25d80b3d6aa2bc851c6403c87010bd8b8f3b341e11ba86ae53c1fc5d0bbcc6bb73ecf97fea58d89fbe50b97b055fdeffeb116dbf34ca50ae2759a255d3b1b81d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    ac85c91a8076fd1aecea651e0f78958f

    SHA1

    b635217c3f3ad4e5ef2a2beb3ee7d500c40bcdd9

    SHA256

    3f7daac0863b2d73f7a7226e129dacff63469414be55eca40f3796104dd6eb88

    SHA512

    d54ca01c2d8e989764cb023bc6b0672673681c76ac724c78c04515b0c3e8743a586fd734948f53a8c1bb48bbf06e652c5d05d2b737057f2ad6fc1aa1e8472eb6

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    6a0fab4b7d0d621b2c2c3bddbbce4c8e

    SHA1

    002f54528255442770d5b498e95c7d61a5e56fcc

    SHA256

    7171c003b4750053a4c9a069b0872cb67b9fd6a8aff165ff9589532f015da0da

    SHA512

    2dafe622cb2f1837f2c9f31e4aff3c679563ba7683da6c85989a1fbb0a5348e7764eacf0718efb16495d01d1f0840e94ffdf6c8619e68b78926aed2ec4eaaff6

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    5578d604af3f6dae7962b0e1ad291e02

    SHA1

    7b4b14bb24a3e7657992b7e4e5d45be3063242e4

    SHA256

    6b39f09d8ce83e6a26c9f6310505c4e60989e40821c6d3ae79b6efc288d442e9

    SHA512

    735158b8f6d2dc3c733b3f44bcd16fc3dac6fde3ad837f69bdec8d5ff2b78b7f0c9e78d396908d9276b78cae2a79f7b39cb69814d466d117e03d5582f45eced7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    6c4b4c074960cc66ef0a9dc71f6fd85a

    SHA1

    b2bc6e0ec3dd283f5352e7cf140b6d05cd3a7c45

    SHA256

    e3b96529ffb37076a7ddaa57940b68a72d9ad0ee8002d6ee9ef94a8eea748242

    SHA512

    0d605a565e3009a02e1d6c04b6061e472b2b70e19a0a19dd62bec116a2dffc61487b4e4a74b09371d0de08f6131789e8c95df374b50e9b6c29e5573a155872d0

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    26b4fc77b63fc1dbbcfb9d26fe45bc0f

    SHA1

    1488d1cfbf3875a16c6ecc86fab8637c3903ec04

    SHA256

    f91c215fbc55b47e474dc766d57ec2b2813b903997b43250c0b54741bf858f30

    SHA512

    697c755be7ac5c4b8d2987f09a371189cc02387e2054b460946ff370afda5d76d5540ddab7773bb6720f597940043ae1a1deba230ed21fc6cfba9236e51945ec

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    9410312471c7d0888b478110996820a1

    SHA1

    20a4450660283514ed205735a50f94b72af39780

    SHA256

    bdb38c564fafed1f8fb2c84697cc786b592d0c1efac7bf7a6e6e41d8e50adf9b

    SHA512

    0cea95ee90f01b1c7e1ac9aef3b5e866ed631a64799aa9bdbf1f779cfce5a43f112ed7e5ff74e258800ab56c9581ec564bda6b1ca020a8aca4e58c6c848a5c9d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    6bf252cd7af005ddaec93b8487e83c5c

    SHA1

    7f3eb160bc7c9e8b94a0e096f6f72da6f36c8b61

    SHA256

    e53f4b058fb666e78848faf93ec3ef0502eef29f4f16ca59da6c7ca06b351f90

    SHA512

    61d4a89b1030115dae479e93a64bda0739c1d02eb2b448af88c318b876e36979a3aa6bfde86968fe858cb12b3e4aa3e7f26f4f08f3a7d162a489ee2a9cc688fe

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    8fb5ba76362d6d30a58d84b94eddf4d8

    SHA1

    2dc8cf4076b0bd8d77eef29af4ac26e5af587129

    SHA256

    8a89325c669274881e0e074f582e3ced60bb9b4c0c673a653b9708b9b655a3e4

    SHA512

    d4cf48551e79207d882c864ae7061d45a383d9b641ab77cb374856218a0061530f00dafdd1eef20ba85663f5908c36122ac0380f43c980e802e60a75bd5f6ff9

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\AS91FDNI\domain_profile[1].htm
    Filesize

    40KB

    MD5

    e88a9af55d509f1f18cd2bf92862b4bb

    SHA1

    68b13b6d963a867b896dc1156fb45987113b38bb

    SHA256

    64ff7bb7b8445238486982a268be9642a400c91b4637f16baf9a926db108bb17

    SHA512

    2465ead19d42c0c485b45830e1a7f45afadc969333e872d899eed5e758a2af08d56394add1f5d533dfbde2f63514c09b024decdfd4571237a86a22fad345a9f1

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabED3E.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarDA0D.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit