Overview

overview

3

Static

static

1

f535c3e142...8.html

windows7-x64

3

f535c3e142...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    133s
  • max time network
    127s
  • platform
    windows7_x64
  • resource
    win7-20240729-en
  • resource tags

    arch:x64arch:x86image:win7-20240729-enlocale:en-usos:windows7-x64system
  • submitted
    25/09/2024, 04:42

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    f535c3e14245c8e381619e30636c35a4_JaffaCakes118.html

  • Size

    27KB

  • MD5

    f535c3e14245c8e381619e30636c35a4

  • SHA1

    ea86d5180624e489a9c297ef19a1ebdeb173a62a

  • SHA256

    b80f6ddc198ff41506f2d5b15d0ea384bce9a484c1fa8999f3b347ef68995b77

  • SHA512

    1a3d9fcfecda02ab220cbad0996e975b0847f162f24be688ba10b5cbbe123cde56dc5c352227a117d539c8171cc8324ba5cd269ddc6e78acbabb5d13e73f64a7

  • SSDEEP

    192:uwTYb5nS+nQjxn5Q/tnQieQNnwnQOkEntXrnQTbnhnQ9eG4m6lFUOQl7MBwqnYnw:DQ/wHgLUpSyFM

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 41 IoCs
    adwarespyware
  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\f535c3e14245c8e381619e30636c35a4_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1732
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1732 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious behavior: GetForegroundWindowSpam
      • Suspicious use of SetWindowsHookEx
      PID:2400

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    5b8e631b0b73ee321d98d5e0a610e439

    SHA1

    6b03060c27f3aa82182bd65292e8768e60088c85

    SHA256

    2f3e8e48e943082f2d0a54fa1aee6729f0c418ab8c591066a3491d8009fb78b3

    SHA512

    3d20c75bdc1db7ae56408fa83e70d08512f972e27e873bf21a2f088d506c2c696e02ccacc283056122c640567172c2592b37b34f85816824bc1258b78a7d42e1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    c368a2513060e9f53f9eefe675920dba

    SHA1

    c08f41602d8d8f5a3288c9724ad495f4d7a9ae78

    SHA256

    6f4d285ed0fbbccd723947cb972735755bdabaa5b35ec10ee6afdb15d53ae80a

    SHA512

    fd86a08516693c7ca911fcde08b5bb7e41c0e6155ad391b298e6b98b346cf2536efa4b9e38bfda2fe8882224c47e559b6130519e028173c27d16184f55c7769b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    63b46b4a5681204ffc8a7e3901bb2b97

    SHA1

    7a1fa4b7e4f6cd28fb18232935b74aaeb2aada3c

    SHA256

    3dc3b1aeadc9c9849196181f84262ec8e1ae37a9c93630ec79c78a4083b9a474

    SHA512

    9231a67e5092a39cde0cac9fc4093d32933cacc0c088ea13d486e687c5bd034ad59e385c39948d6882ce27ece37a860eb778e8050209405184dbf76d975fa2c6

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    13a6754a5dd66729f4123d216e94a8a9

    SHA1

    b3df6d8d118e235d2b6f8368936c72a90ab29fdc

    SHA256

    d68ce7a5b0de74eadb6be2f19882156a18a1601c925a56477e5b9f7c2bd8f16d

    SHA512

    6bc778494715aeb8889c11f5b1d998731b09e94171a698973723dbf5813caf899c2ea3b7aec1a3ddf8c62a3c0e1793afba1943552f2126ec938812463388c07f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    08e3be7ebebe73236c8ef4582cc9f7d6

    SHA1

    d6e90f4c994c83a772200da35501f13330a3af18

    SHA256

    6284f72cc75b42ff8122f12123806e43a0888076446861ce0efd87e027136fea

    SHA512

    d724c29947b5d6cd17bdd5e4dd9ee7ffe36a32ea96b3264bec8db09f1e12a0f16d42f8caaad9cc1a955c81e034546c9bfca2a47532b373f22e4540ce688323f0

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    3f5653429a764940794ca61a1e2a1a91

    SHA1

    6fbe3c751d5e2af9bf253bbd2d7aae36eda23dea

    SHA256

    dd62584e30d4ce4aed943dad07834299eafb41ab15835493c9262b029c4c5b89

    SHA512

    05e26044f359a8948f149613b96039f75cecf603368390e8e62096f5850741b9e1d989ba93e404fb684c4093fc16afb2e84cd73d0c680e7095d328f6525488c3

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    102b4609b037e37c837417eb41c7b625

    SHA1

    f1005c4d145ec282025af11994f05a58ddfd48c0

    SHA256

    83bc2f960b13448490199de4269fb581658e081109d4a28426b03adbc3a57151

    SHA512

    300f62f79818f6cf74e7db2a05004675fdc81a2de21271554d03dbac362fec0adb3eefad175431a6fc24e0c233ff4899ad79879ff230621e7c190231f33d138e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    4be4ae74b664f25000a6cbaac3b3890d

    SHA1

    95be8baa37f3db039bd209c960542847e39472f7

    SHA256

    57fb1fb65e2bd275e885f420aba97da7e6d5d44c5b03ab585710846c72cc4e78

    SHA512

    5494236e522d293caa00a08a213e37abab55262d3fa366fdf064bcbd207adc02a9cd12248337e1266cd8ca1593591554ed33edb8e79ba75a29cd685578ec83ae

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    57fcd2588b7c7ddece17302f28294e17

    SHA1

    760770f517f709086261388c4f8f6f6b99ab1a5e

    SHA256

    2642ea498245810984b788b3db079a97acf653506d7ea4286754754847cff13e

    SHA512

    f28b00a6fe3b04788cf63f072212b8baeb3f405f68da301c46e5c0c6b21242725ed1e54ed25eb9374a943caf23cdee7a9dce29da7efc4ea960265cb13dc728a7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    15adda4a6fc4539a8d0716c1bc5a2a6a

    SHA1

    0a0d8f0d0e276dd2bcbfbb0872530354d46d3909

    SHA256

    7b84937a50b651f6dab47b7a812b21090c8ad65b6b0f4c7554db687996109a18

    SHA512

    01132c878632ffb3ba10da855cdd2c9171e8abb001520723cb87869f59d93abb5fa9c7f62ace74432e71bf7c1c24acbe983c04456663ccc7b19b70357be99a65

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    6f50589bf53bae44fa606bbd3beff285

    SHA1

    ef5dc4ad47aa18cf528f30d8cf0a139a65a2d7a4

    SHA256

    26a5bda11cd0dfd410c07fb6bbfc2989f7ffd27a16d6ddfffd1520c87ddc7494

    SHA512

    733b55f11219e103506b7464aef8c9538bbecc67231c9cb461e18b42f063d09c00cf5b47233c8fd1e1e5c5a6ac559d5e94eea9e5fcf3581bcfbc44f2373e52cc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    11b8e4c632a669c7374aba5e16e3799c

    SHA1

    db725bf7e0d60464a22d184f274ad9718b9130a9

    SHA256

    74b699d9232d98b33a448c88aa4b18d55983a2017751d6445f5045904a6c3002

    SHA512

    b0c0cee9bb366722e2bfa2dc1cfe4762dd2f024eb239098655bd50c8a56f8d7c573c35611d01814b191af2e986b6d3d5b036ce1adf19e824ad86c3f803fdd897

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    ae129daf1021704fdfd789da56036830

    SHA1

    7f1ce055618ac126ba87c79d12c03dc70d1a6425

    SHA256

    503d5a09acb42e89bf7ae4138aba506e8785f8041afc6c457b4dce1536b3d82f

    SHA512

    36ba5cd3dd4556a2d18f8a03874e96eeb6b5a5d2e06ebb91404bbc24f9c659aaff41c8e238ecd99a75b4da4cc9d5ded910299c36556ce9ca38997df2481b1791

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    0e4e1409381c20e4bc4f5db93a79fadf

    SHA1

    baf793553779eb03e8238d025b17a594ce8775dd

    SHA256

    5e06dcffceb6a24745a341502a41c0308e5eb54e66c4fd56ca86a4ea2924cefa

    SHA512

    3bf02c69b7e8c5fef7cf0160d1e9a46b4ac246074a18f747ed9541a960f394edcf7231e1925af5b51dfb3a6dfbf4409dc28897ef048364ce564bf0a6b2ea8372

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    0b9c1397dfb28442c2f4b3fda45867c0

    SHA1

    08b85acff84fcc40020c8aee0bc87f25d7513c91

    SHA256

    03087f97d318157d798321b322da4df5f0fee096ff141dc2e132b0cf73aa50d7

    SHA512

    036086acde1415643f6f4a5eb12e875a5167216415afd1ca8f81e0bc68be095c496f00203d93d3196206808c15be8ae376de732db573de065b34d0fcf549cb38

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    e286950607d51025f81b6ab13a642b7d

    SHA1

    fbb9d1bc377682bed3583fc093528569217e7995

    SHA256

    8b65f8f95571add9f682b36130e3e275228835707535925d574526c49b6624a9

    SHA512

    436f68c0b8206845de23685427b5206835e4a098981c3dff2330d5ae50cef14ea1c4681126d48b9d686998bea63c286e5f998f40ba0d7eb626061af9bd064815

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    2a7d14ed2829c705b02e814d679c0b2b

    SHA1

    f34c5542f1c7882d8e46aa43570b196155024d0c

    SHA256

    8ed498789c80d8357f59f746fcf223da7facd396fa85370995a57dbb334026d6

    SHA512

    bfc38a7f2ec59bb260c534cc5bf5c57b7bc2d67c58b6c3478be26aef43e93782b120087c4a1d9922b150c1f6091dddd9a339d2d68b2e9e8afde84dee0967636d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    9f21d8edf78e6dae820719ffdc9fdcd6

    SHA1

    01be31e1e6eb85912bcf9b66a15d501734148df4

    SHA256

    e7836a779aa58eaff4f6f7e9a10542354885d8f15fd8e7111854e941f3a61309

    SHA512

    90cb6221cf877c153cf93feba5abe725f45267f508e63107a9ad08e0e0381700b732b6eb5974e2d261d94fccaab859dcd5d7bce10297a1c97f55a30ed2b962e4

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabEDEA.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarEE5B.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit