Overview

overview

3

Static

static

1

f4fbfa2a29...8.html

windows7-x64

3

f4fbfa2a29...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    143s
  • max time network
    123s
  • platform
    windows7_x64
  • resource
    win7-20240708-en
  • resource tags

    arch:x64arch:x86image:win7-20240708-enlocale:en-usos:windows7-x64system
  • submitted
    25/09/2024, 02:36

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    f4fbfa2a2902b56544c230ecea42e65b_JaffaCakes118.html

  • Size

    138KB

  • MD5

    f4fbfa2a2902b56544c230ecea42e65b

  • SHA1

    cd9d572043fffd9f6db9f9bd366089cf38f61bda

  • SHA256

    0cf162439d40f231f2240e2fb0bfe5436629c766500c5b73dbfe675397b57165

  • SHA512

    4523e01ccec82c93a5a280847527e2a5c0cc16970a666f0ae45eff7795fc7c8e6f6708948db790e8d115a33f54f85e83f3d05a2632f150bd71adc06bc6e5704d

  • SSDEEP

    1536:SL3IoRVlsF1yLi+rffMxqNisaQx4V5roEIfGJZN8qbV76EX1UP09weXA3oJrusBw:SL4ZF1yfkMY+BES09JXAnyrZalI+YQ

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 41 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\f4fbfa2a2902b56544c230ecea42e65b_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2088
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2088 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:1496

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    781a7388f3867f19c254b825e5311b7a

    SHA1

    b1330e1a8e0b6efa9ee69ef09f94d9dcdfd0e5bd

    SHA256

    671601ceae8b825a7911c531ce686f9aefc64d4a2e5ea57ce7d33c86208be08d

    SHA512

    021b4ac707dc73df0a7e5414956bbf4cfd77034523f045c22f6eb416046607ab57c9390768efe4cb3021d9cf82b915c44a16bf8b400806e89edb6df32ecb0ee9

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    cb38fe061b118716fffa751e5b44b189

    SHA1

    0a159673ab9264625b11ddc1f307a1f0f6baaacb

    SHA256

    bea1916831d1757f44531bf0daa3832d7935cd1a3f05aba699554fb7db1675ef

    SHA512

    071f151428353ce29aaf058fa1d42fe32e2e27a2b92acb3202a09392b4d8dc6d85b808b6541d18e3be03e061d1e1f29929ffa29b2cc749c610d424695bd97ae7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    f5080cb8caf76d2f505913091abbd0a2

    SHA1

    0edaa48e31f5fb55dd026d0b1f03f7ea5353b4f3

    SHA256

    812a4ab146a26b0c861068d06ac290d6f75d89699113b174c0e27542d518d63f

    SHA512

    0c6fc920cd8a1003269547a655982f1a496a5d7f5e389f8156ed515d887ecbc96efcb0bdf18d698c2caf80588ba4a5a099272ff0cdcab9bc7b9a9c7b4066df0f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    7b097378dae8bab31dc0f4dc28edbc46

    SHA1

    a9831e8e0e4dfd2f5670ccb46d565f2057b1736e

    SHA256

    ca3081c5f1ca56e2dbc011390a9f0db1fe1e35f22efcd6ebbd28ea33605b9e69

    SHA512

    7612e4a37229f689cd16c015e82469c6c199167fde5fdf8d1070243cfe132fea52b10e78024d36ba3fb8936dbb15f277e07603fa287ff95cdcebe47e3c94ea59

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    6d33adcb84318775a96e55c44ecbe911

    SHA1

    7936461b5e36d9e4b75ceb8651882bed3c1a6b8e

    SHA256

    d93836a6012f78ea19b736089fcf05b373597902cb2a08eec04da8ea9b642512

    SHA512

    ff8fdc07bac8d71cefca76d714b4595f482e7458edd14b6898029f9a05e861ac225eb2f515a0e9fff3e6e949f7fc91e998d93ce7cc824e812c94d8a2b10dcfc9

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    76b92de677d2599157baf1be015feb53

    SHA1

    ca77b2d2373320b9b45d75b0ffb22cbe2a98e28c

    SHA256

    6a2785e728ef97ec359c37bc24d9c451736548497f1cf2664f449fd27ef28551

    SHA512

    e3be60aaea6c6b65779306fba1c09aa739f8615e8b1abfeb22c902ef07c31bb040ae20364fc3c91da1731e168e8222e3c9b1e79df733e57a669b582f9eab6220

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    48b077eac4459c73964844afbc4b4be5

    SHA1

    4ee55493ea25c72496011e3b87865653dea80cad

    SHA256

    3df8c0a415f84877e839fb85b378d036e06524649f9215edf69f788280fbe125

    SHA512

    5b6479a0e0778aa524da011f1a99ef219179a110620a571a9221042696cbb86f1e4212ed74e77c5a3ad39d7de9842a22873af5a079174be893f06d98088eaccc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    44694d98948410260c0171b1acac48e0

    SHA1

    96f67d1be219eb06af990a5b454e5b9250f596d7

    SHA256

    128e0b1b14f6d212977a913c2effe7e6c2ccc00b6f1eb95c32a4faa257a642c1

    SHA512

    1a992d785583073f924fba390cde202cc07a5c5627e539e148b53295b6f04182e471762e5e67eb27c9ef3fa1ac1c2b9891221858fc166b6f6205be99aa8b687c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    c842b5ed02f37fe21fddaf617cdac8df

    SHA1

    b9de9172c753a4bbbe0c6e9e46cf085ae7aa03ee

    SHA256

    bd6c12fc4dfec67b2f7c474f5aa21701320c4256530385475479aa34555e6800

    SHA512

    464fdf457c83a5114b69a0d04cec14e547d28bc58703d51285c7ef2a09858151a12d42a91fc24729c8df32a8467d4357851ff5107677c3dd9bea49e07db588ed

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    b8bd8b30008ace392293c7ce2c56f050

    SHA1

    f6989dab0330416ebcadabebdca1915ad84b2fd3

    SHA256

    046826e73bfc0f22fa810797ed8abc1c288e8a51c4e25ffc27f8c04c9d179280

    SHA512

    51d98cefd10032c4b536e9b8bde69bdaf9cd7f0c181fdf02d80bc15edbdc35567ac3300f2f936f5b6b122941346db330e1a488af1d2a0011e975e4321da0efe8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    1570b06dd330cae3ae88105c55904c2d

    SHA1

    4b38c0495b94848d01ea69bef8446eb0be50b387

    SHA256

    48148a20fa465e5ab098bac9923909374ebfe66ac00649e7330cb8b842e5ae8f

    SHA512

    9048fa15605e238275abf8f2c6102435098c3c8aba37901880cf0c97d4e90143007f1c0389c134041fdbebd29814e713c6804d26ecf69d6839d4d0ce90da3e3f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    aebab3ecd60bc3c9cf1e5d81dbdb3d05

    SHA1

    831c235e897bf6fe5f68c1830e3d8e03cd89f457

    SHA256

    6274d097d46122ca5d3668b14c52f2b82e09bc1c7cf27088cf99c4b0c9cba510

    SHA512

    c9beb6941459230e8e07d9011fa5342137a4965085f2e67abbaea772d888bf65e994b668446f655c3073f5cb5511da5d610d1910d2b0743562357b1d5187cfea

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    1797d4157cf10182da47b8b38458b9a6

    SHA1

    32e7a2dd6739093dc67a5580a8cc1ee3f6ad45d9

    SHA256

    222044a47b54b560b6513732648b256ab8628cd1a736cd2ee7f4f84bacac81a0

    SHA512

    3671b302567aa75099d2fdffa9614c9bf720eb5594aba48ddbd1fe018342a850cad1fdcf3b9af357c06300f94c45b74feec72a5b432be3ddfd75583f7ee5dce9

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    763e5472c330ffbec86be730eed6d56d

    SHA1

    fa03642c2f791780bbabc3ef7aae1e89060329d0

    SHA256

    594aeb0667a7fd6951a75f35260f58d50d932f5f3f5c1e00662d5c3ae5578552

    SHA512

    9401587cc9f585b9bd8260b3821205987dba8bffa650ba127109709dfaca2da5d8a91d054c52f1b350b2de3728b2c2b32c36e0721eccfb2822029bc4c2479d69

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    77bbcd679967fd9a61a16c00324de825

    SHA1

    69799e64c6940cffdc1d4165d17d439a885cb079

    SHA256

    ebabb659adca3b084df20ce09e9509feae8e1fb4dcf410370ce9ddb90c13f385

    SHA512

    d0f7cb303083837f50b69087d40b4c84e0fec0019a01479894a5d3ab4ace083e9c6ec7cdc771fb4d7733be2b091a149b51506cf17838d6bc9bfb9dbeab602e7f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    d05fc736d307c4e12f4ab98701453a3c

    SHA1

    dc5d637974318dd41e90b6dc4aa9ff0dd7d2ab7c

    SHA256

    0ab27bc59faf84fcbf796907ea4a2190d3156ef02daeab66c8b1ae4f4728f0d3

    SHA512

    729e5c4b662975119c12569b6059ca46660e5fba11df49bd2bf154cad31de40bcac6e893058dc8a184c07b69391fcb2649b4ef63c99327d29919cf2b4a3d48c5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    3fa0e795a1550b07772364605484020d

    SHA1

    568a04b9256d32c3f05711410aea3f726ee6a9fd

    SHA256

    f8e5efc1cb681e52bd64e572f986d34ce642350d2e7acf150fd446ceadc84b98

    SHA512

    8a3b756116e1b912ba69200ca72972aa56114e9dd554feabb561a61f158a224cc856826d4d52c3a44bb13e30c29f884ec9a8d1eea62f2bff41afe97f5d52eb90

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    f7853e296e90b570c838f9c192d1fc06

    SHA1

    77f9e6470b798f3f3427edc901da3d2d2f5cad09

    SHA256

    06daedc8a92f0237d57d55ab37e5ace76fe4b97594f10813373c2962c72e86db

    SHA512

    ad5bf408c0f232f154755165ee1fc06e26768dc6358ddc038dfab70d32a0d40fcb7b73cd16125e828cddbb3c8618c75dff0e68df59e89f10ce7b2aae9977d764

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    7036705c5e828d553c6a3d2127cfaf66

    SHA1

    133913258d3a82e9451de96a76c3138cb1bb678f

    SHA256

    344e5aaa2f813c2af0f87d80fd1dedec09285e1979c97a37b9800c1ea52e979d

    SHA512

    43a7eb4bfa23bf5e5b874bc6b3e4bd36897fed672678b816413c462580016e5c090c8bfc4e1da4a116b8d5ad76bd1eecb4f8c505e6d38a0603169346037eaf01

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab95DB.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar968A.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit