Overview

overview

3

Static

static

1

f561fe4dc3...8.html

windows7-x64

3

f561fe4dc3...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    129s
  • max time network
    124s
  • platform
    windows7_x64
  • resource
    win7-20240903-en
  • resource tags

    arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
  • submitted
    25/09/2024, 06:19

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    f561fe4dc3ffece9c53610dd2097f7dd_JaffaCakes118.html

  • Size

    11KB

  • MD5

    f561fe4dc3ffece9c53610dd2097f7dd

  • SHA1

    ba76c7965cdd290e1b6806be4df3b7b17f7ac785

  • SHA256

    15a8c9b7cbffbab2b24f15b29c82c9e2e3e28f6cb480044354b932e4b6531b6d

  • SHA512

    5fca640d555a6053757dc44f687e4a67a9b7ef7af75fe75336d102c95f8340dc0db180f0cc9da022aa432cf2524fddded03ccd0736fc5880a2aa720e2f397d45

  • SSDEEP

    192:2VOlIsr03nE8k/w1wvqySBahnvSo2l0018LOXuBuLbdU8d:sOlIcuns/gcSBahnvSo2l008LOXguLZ

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\f561fe4dc3ffece9c53610dd2097f7dd_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2612
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2612 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2084

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    8536d487bf7f48467514552254b3358f

    SHA1

    eb68fef5fc3c974fc9470511a70ee37d78741d77

    SHA256

    ad4084aa9f9811571b372bd7668cc816823d16c5fa95c66f1c2700d0caec15cb

    SHA512

    da48d54233ed1d5acac9ac0e28bf84fd51c8f9d130e823fa4311d3bdd37b0d4cf280a97e402cfb29bcbec42b32574f0e9bc78290b8c55663f096e818c744ded9

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    04e440ede12ce201ad65b697f5cce6bb

    SHA1

    4030ca4c4458aa242f1550097aa9d922f5ef4527

    SHA256

    a7214f49506f0181de424afb7f79250b34d960664b3cf3a816ee16cd2bc840af

    SHA512

    dc4bd0d617f0fb55381e84d6d623be2ff34e35a2593bad584056bf99f9827a9ac9ef641757d35ff3b0c9d3f52a22f1052c53926977e796319adad8ef03841491

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    dfbc55b9d3503f0a2e611a1a21019bbd

    SHA1

    ebbc4ddf4fd8c7af6d4498df01b621a8ad159ca1

    SHA256

    6d07946afec065a6f67eccd94e132ab3879e2c536d7c00d0e6b92839dcae60b4

    SHA512

    e3f307bd0bcf7dbe451b44f2c36f7c77aa089892d3347788f5010a434f7492569ea36b2f6c56afc4eff67ff96e9af1f47c8d1f06cd0ea924d2f845a37d20925c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    13621227f530fa67a5c89da343582be2

    SHA1

    1c68999e9265ae8dadaa8f82ec41b1afe3c20322

    SHA256

    b7e268b29a228bfc158bfc3365b61606cd340c3e22c5902a9b3b333371f5f9d3

    SHA512

    bdffc9515ad49031aef4bf75659094ae1fd423404150e8959e50a06844f5c2a2a92b0599410f18cea88235d15738652af41c46f798d3d0b19d480b1bebb6610c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    71433aa426f3b78a1eedbbc8da1b0a05

    SHA1

    099519916e053848bb85bf31de5cfbaae48a1b62

    SHA256

    4181159b4cabbd438e70d67c21b425cb4d343fe1f588dc192eec6045e5394e0a

    SHA512

    2a5ab2beba7a713158c7658f167c92d9acc79055cf6a67dd64a086788fb3d2551f5aa2ab2c88478a8636da41ae80f70dbdbbfdfa7fc47c4eb20b71fcd23e22c3

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    209d737352a50f40b42adea961edbf85

    SHA1

    c0fd894d83ec92ac3d4c881febf9ccc5e6c639f4

    SHA256

    bb098f38e7650bea7d716dae8cb328dc5b96e1597d7634fb51128cb0df085987

    SHA512

    5c8062881aeb9045e6430d75209de76b2c1792497955c9eaeaada8583534ba9f90dfd6c7f285c3e45512a41ddeebd1a96703524652fcbea4376f23f7f9a29135

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    ee9a3392823406cca6ed3b7179c9feb4

    SHA1

    f348a7ecd6c98c192590a586312899f7e6bb4bec

    SHA256

    bc3fd4f2a0cca3e2dd152d1d0c86ad2c6018fde2509b38bd003f5dbccb92bf66

    SHA512

    1c3b523fd397d24c685b48567a7271fff8217ec705ba8ea69144ce44e28ae1d623687b2981b7c0b81cf5fd7f7136bf38a195b25758d72fc025cd7f591b421210

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    f2a4c29b71325cf9d449947b9fca3533

    SHA1

    e50dd9e10c93255cad024905d7dedc0077fd1b17

    SHA256

    a48675beda4f8f3bb12490151dd8fdc94d12699e03e6d00d6c839f96959cbdf9

    SHA512

    6c9ae5803e86965205c049aeee4f8838215f33fd83e5831ea6bf0cb4ef76d1cb8f9abf7964db7085f40d1501ea7f62acc60499890a6bd4845151edc6b8122879

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    1abeb9f909777eab1a2260d2620ff203

    SHA1

    0027de655b5ecebf187122d1b50862e35600ab05

    SHA256

    6137a930b0babad88a7cf9e98f4ef16dc1a5fcb4cf564957a6c785bbcc51b61c

    SHA512

    b8dfff78434ca18553399a8fddd2ba9a7a065a26d7db82b5c02d91f7afb4a61b14ee9c0a018330f64cc998525abc4c035869c00d2c72edaec87f2e52b356e858

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    446b1d8603501728c779086f9114a42a

    SHA1

    7f4163c6642e985d913b73ffcbabb960a718b14a

    SHA256

    a94d42e3ce7d2511b0f82cf2d12a31d958dcceaf71f1476e15a28415dc4df79f

    SHA512

    abd49718c0e9e524df95ee63fa3608dc4ec5cd1d39a357d1e57205588da92b43c86ff0a11d77f3f14099d54939c39e3803b1e4103ccb69c56a5fc1ce66599f6b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    006c08b55e3da82c738bde793100820f

    SHA1

    2a82157d42750b3273fbd68c578a63aaa59081d4

    SHA256

    a9c5bd8105077856235f9487e8b40049d255db76f65a4c38ce97447b329503b5

    SHA512

    3215b734c42ea2c9b5653017012a60b71e842d6b58ff8c5a9a32b40cbcfe6d4b42ea56158b9d9038cabfb34fc938f64882c238613dceeac812804dae6425fff0

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    cb0401fd24c39ededd33c649b3cfad12

    SHA1

    5341919fc80e7fa937ebb557c793f7390840c110

    SHA256

    20c89af19a8ca6ffe2c866ac78129db71ab43b7ab9a335ad8cd348af41e8ace5

    SHA512

    494ea61022605bf410a7f7295da1f51722236e59cdd711f0b69bee0785f20a4bdf52a84fabe10d5a9c6bf79088b89e1831e55d0e0f80d805aba0d94cc4866143

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    5b172352de4c80e485866cc5000a275c

    SHA1

    646fdbeb2d88a7a74c7790e2273937027d8a72d6

    SHA256

    662ac094c5bd57c430c871ca76333075f5b7bf7cf28b3c054b45f56f42c91738

    SHA512

    9c1d938b27bd833f2772bdf97f68188fd8c0fbfa960d3686f9d52a581fc8dc669f0c20a5c68a6566c35d62575ccc91a88b751c76eda601cd4cfd65409e5de90f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    e3115c46c97555bbe45df894b7ba0721

    SHA1

    5f46bdc681d4811d8d4a71a7a33b08bf1e8ed311

    SHA256

    7ed5b574c282062d93d8f7d4a9b689af73a53d7050f85a126fba5a15340d0578

    SHA512

    7c1f03f36104089b193fd69e521f865cf64ab5f9cb88d2d0a9ef23f15cdfd659f69aecc3dc2ac1dd083c6ae818b065f8427a31bb3976b4a9cfba25855b741761

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    98eef717ebd6bd43fc1562887333790a

    SHA1

    a0f552595d06ee14549e270d0a22c17a20a12336

    SHA256

    fea2b8a5c96d453270234ee771797a38063c0894a2d3b89481a87bafb19efabc

    SHA512

    fec9d38d8982aecaadf3113c89a7b989b301ee01aa10cc2a60dbe6faa295b910c5269dc4235fcae301620e1410c683c9b5650b4a8807692b191dbf093bdf7c98

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    9a0616bd7f07c3a2596031e9dbdf7940

    SHA1

    f45bd49d6a032b7c44bf660be6d6668a0436c9f4

    SHA256

    97136cf699f2b6b769022fa9445e7409030dd33e494fd1ca6637ccc5d13985f9

    SHA512

    14b5946ad305b43b14c9c6bb630addc6c342a061edaddda21f7638dced17c3e44dd09bf56f00b7ecf7d5e4288a09ac030e0809cf4f605273910e0ac7cd863c68

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    a736258c456609449b3c8314948b2602

    SHA1

    8169f04a480fba88255e6a00d2d90b932dae33ec

    SHA256

    e577d4177799202bf1c929d9abaab152a2d7149ed30c1c28b62746423ed3e857

    SHA512

    1ba35a0bac45e1e33bddcebdc017558509e4e1048f46d017766905309c8e025e20361de5a3209bcc8a7ee3d170e7d6c2d1e57196efe1ae313f1740197cec502a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    7e5ee1ae1c74b97d901228abbd1a23dd

    SHA1

    d77c2b71ecde7fc8c278adc36f02bb67494a9654

    SHA256

    ef434ce9bddd2f1e09c6b5d3a0212e0bf95c9aa70be90b9633998ad898fdac6a

    SHA512

    88ec06bfba6350ee795b399e2f11f12f4f3a423a71a06bace5d87756308c65e5ebde485bc3cf41e006c4383eeb572367c196efc8f8957def3c92109260ef7853

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabA630.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarA6DF.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit