Overview

overview

3

Static

static

1

f4e690d850...8.html

windows7-x64

3

f4e690d850...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    118s
  • max time network
    128s
  • platform
    windows7_x64
  • resource
    win7-20240903-en
  • resource tags

    arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
  • submitted
    25-09-2024 01:44

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    f4e690d850fd9703fda8fa38606efd35_JaffaCakes118.html

  • Size

    27KB

  • MD5

    f4e690d850fd9703fda8fa38606efd35

  • SHA1

    3325478dd83ef7c059f838b9116aef3c45f0b057

  • SHA256

    23db7dea68a5bf8c85bc12ef8b30dc93f0884b7afd8191d03495be48c2bf3fad

  • SHA512

    d7fe0e6bda876212616530192b5e5304b2c2f69894f8370957374a521933ca15e4ed7f34f7cfd4cb427645bea8cf455ef3471ed9848d0a496b2d9daf803f8ffb

  • SSDEEP

    192:uWTrb5nF2nQjxn5Q/XBnQie0NnFnQOkEntz3nQTbnJnQcHC+AXBElWcwqHALGeY3:jQ/Xi9tasB1

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 41 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\f4e690d850fd9703fda8fa38606efd35_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2652
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2652 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2760

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    20f2b20cb1ebd2e70a633efd841c7132

    SHA1

    a544de8b9b66ee8cc4bb54f0e19e5be47acfcc90

    SHA256

    f28e47e470977e0f443008f8fa771de27c9a64a8a619290b83df4f05a86b0686

    SHA512

    c22f362cbe5c30bfe97d43ac2528f8d004a003afa5f6a217e1f04f92a5103ae9cd4c573ee747618809d762c1bbbafb0c060871117447ff29c6dc3d412c796a58

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    880ad79152960f5f13b0befeb37e3d35

    SHA1

    b0258597997ab540701eb0c5545073d942a88ed7

    SHA256

    082d2b4d84b58222fd7994dd3439d0345cb4cbab678ca7fe7fb67dbb4c4bd951

    SHA512

    6180820891dee3271afb1342ba2970638e8b52b88f7581156c27bfd9b5a2119bf7467c274d744b0d7abd659242309f1093a2531083eb57314732d86b29d28078

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    9883386af5667f5c7ebe36d44cc13c6a

    SHA1

    dc22791535ccaefe5341819578d7581b40a13489

    SHA256

    f84e4db301b464f7891138ca2f9e42c034d51bd53225639153749a44f55e78aa

    SHA512

    c784a3ad516c40235fa5a708be458ddc51c309b3debd297dd4e3ec04a796066b85c1c9f82e264a5073e1724f45fd2d26a15e8831f9227db10b2b58fd55cbdb9e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    c5f97fbb229ee0c109bfef65d1c22e83

    SHA1

    69e35909f862d5913f27424b31220d473985ec04

    SHA256

    de9de71196224a28e37a0c6b8382f83e1e2a31ce439edb74777611f38d8f28e8

    SHA512

    216a4efd55a528b1b72c7dcc2f6a24b5d7dba0105f54715c540dcb6b7332cd42589f36ebcf6a03ea5479ad207c0686616418573b9b8ce1779c27dea581f2abb2

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    0c22e370dab4a65e7f6a88da3fb2f59a

    SHA1

    615b7971147e29dadc6307e875bb2e01f393402b

    SHA256

    77c85c8d59585f033bb0df1bf87588a545aeb4bdd6cf2be7bab764888f9e6622

    SHA512

    3ab4c746ea6de9d0bed748f4574841d50aa50847021634bfb8bc12d3c25fda531d448ebc1f7e883057a61cd405b35367d04e0522bd302f52778db7cd73dba3b7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    5e55243e75f550dce4f197990f3b8381

    SHA1

    c49e4d304b9a05ae94e8384a7e8ec9a21a245268

    SHA256

    f60a07b85ccfc406e1077b1b0a920922c30176086e5cdf41d8b0540e9b60b55e

    SHA512

    f1a7e129e4729328aef2b199af12991bdc554709f51b25c47296010b1240088e765fec25a053ef8b6c3e4011e12804c3cac7f62e41c6f018e9b181ebfbb171d7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    1ad48344ea81288583e193ae34586214

    SHA1

    45daf5e1ad00939980a568f2fd95e3ce85b2b66a

    SHA256

    db0653b0551d7385b1d52e45515643a012662939cb53be3998c40218dd27de61

    SHA512

    fc854efb4057d003de5d9939544f3bd825cf07e4d1d8231e1f324a6b95377f236891b671af0373808505db9a058c6cdd3b35c1eede3010ace7162dbc95bb3e78

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    5a5fa2a7fafef597fa6a79c851fa550e

    SHA1

    6bbf0c44cafa6a369d2c1529922184d2d6a9e508

    SHA256

    e64b15701e1f554915448a12e605797d27d7b17a6bb1bcf1a9dd92e7fdd89767

    SHA512

    e725dcdd7534337f7db2c5bb64ee5bb8ea86b0c7ba851c575f6858275a733ebd36ff752d16e7ba71280f2a974b70833a023606c2669d8a636a983195b490d8a8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    e2754a9eb7fa56c5492d28d341b17b4b

    SHA1

    d62683eec5590ea943bea3c9450d9c5c5e896ce5

    SHA256

    29acdf7ccb2125ac6a3a67acae0e526aa88bcb301350ab718f8b0dc058edf89d

    SHA512

    56bfc2201e310ff8524f4f1fc088d58105965ebb11dc69a1c20cd8a2db29be9b72a81c90f9c564c3bc7d645b273e793921a47005de221fa5b1a8afafcc0fea3e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    8a781d47911ad9a94f12a8543c13cff5

    SHA1

    949c5299cb6862e0d4e001fb5d87cd9dd4909193

    SHA256

    5f4ca6b518e3dc1dc36f799dc5a8604ea1716d7251c65a76e83b529d9f2c998c

    SHA512

    620876f7ab998ccc8de054951d8269bf6c2bb32221e38e3552a03d880a1acefe865d6b58166eeb5330c5d75b068327262164169e43b26f602e0c4120af1103ab

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    bb5e41ec892d3edc0bc38647a8820423

    SHA1

    d41030343c21d00208220244883cfb8a6f8bb2bf

    SHA256

    b49fc491da01e6b3592f62435d91c0c98442bab81abebd20aa7a768dab726711

    SHA512

    f181e6e99eb5265775bbc13ea3d42801ab82ee9ee69c01ac50a7d9da64d60bcc28c9fbf2d6081e5fb22ada5a6e45f1cbd9d7b17b20f2c7f4bcb72a227425860c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    f7ed2545c913eefcdac0852ab87bf20b

    SHA1

    de0f0a6b40b7f6e422fc0b5b1fa075c02ca10221

    SHA256

    f6d6cd2a515663e2b5d71d3afcb86452f310cb7466035e3debbf6ba190017897

    SHA512

    5fb0b8ab37372aa7df506fc0d1170e9bb98d696a3211d6f0652028ee67383e55c3fa659397b9b31a5f323e40a223aa7f9f39e97b21534e72c2b7f2ef8fd38d07

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    3f0c3f4a9d3b883d3b2f61da2da0037f

    SHA1

    078eaab10493b32262b95d64fe29ce7fa91e47ad

    SHA256

    4a747789129dfecff4b89603ed0432ecbbdda05fdc705acafebf4965220353f5

    SHA512

    a4121c2de4b17be1dfb4b894b2eab33d9ce1f37f73d54ac42a17f4627919aef06e1e6d02c8740ec6b8994720fa8fcd54dd1a68277ecb22c5874f1ca71cc2494c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    f65e5cbc72c987f448c03ffa945db610

    SHA1

    450a54f978d2c299a560a76519714b6329ee7d4e

    SHA256

    71df76e48440d0e6cb494f72b3f38b9adacb21892b3a2d5a973b614655a9b5b8

    SHA512

    8a1706fa31769266e86bc4fd541ef33068628647fb470617fcfa19a4f2ef440742120551210cdcb8a2d5846d80dfb63c8b8917ca723e4dd2559c79466929f7b5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    d51fdf37d3f02204d9a3ca322e43556a

    SHA1

    c367b8433eb6223b2b39bf19a3c868137b4b6dfd

    SHA256

    f31303d1a5c416c2dda9bbb5329e2ce4f250ed48c0eafd2a5ab50aa5154743a0

    SHA512

    7227d2c2c7e5a2c3ad9b00c674a458069a3f4fc8d49e7a5539f9ea8c9dddb68e68f24cd553438d4e829aac74b9efcf361ca2e9a7d75ceaf5f11dc94971cf6770

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    4beee534e5965d6dcbc93559b2dad3cb

    SHA1

    8a5daf5bec5b7461828866f919092a57da2a909d

    SHA256

    c787ef443de2b4f5bf4ee4a0e0ce7ba9df4303c2c74521c69e829501d5696f6b

    SHA512

    ebbf33e599e91c46640d34ab34a66538dc231f9956c93b4436d30eb8cbcbd172107b2f196b1ce03694adf1912db8d74d2545755a52124e874de6eaed87b707fa

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab366D.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar36C0.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit