Overview

overview

3

Static

static

1

f5aab85bea...8.html

windows7-x64

3

f5aab85bea...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    139s
  • max time network
    119s
  • platform
    windows7_x64
  • resource
    win7-20240708-en
  • resource tags

    arch:x64arch:x86image:win7-20240708-enlocale:en-usos:windows7-x64system
  • submitted
    25/09/2024, 09:06

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    f5aab85beabc8005235914b55058f7da_JaffaCakes118.html

  • Size

    182KB

  • MD5

    f5aab85beabc8005235914b55058f7da

  • SHA1

    604e8f69dcf66e169ff96017f23c448815d885f8

  • SHA256

    b9bdb79b39faf10a4176ff7bb24c949f77776487e642425f6254f70fbb974231

  • SHA512

    7ea485561f3f0d5a77b0278fd796c8f9255c60969eb478231c5c039400debb2a000e3dbdce5b324b08d19e830a49be01c436baaf39a5b1748ffd626f15ca2834

  • SSDEEP

    3072:SmyfkMY+BES09JXAnyrZalI+Y5N86QwUdedbFilfO5YFiM:SjsMYod+X3oI+Yn86/U9jFiM

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 41 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\f5aab85beabc8005235914b55058f7da_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2512
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2512 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:576

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          422ea8a8f6483f934c409a4e3c06f3c0

          SHA1

          1927651e859e0b5fd78532f366cc6b706a136b46

          SHA256

          db723f64619bd9374bc9bd9b4a2c490297bc2d01b0300ab873881e8e7b4a1350

          SHA512

          eda9a9dce242590475d8d1607effc7f3099059c4c312ce309d6bfc4ef7d12b728db825fd4d05abd4974f0f72fd69d4f439f2721be0c2c7035b96f816f06af751

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          43bc6e4ecf1e197d8223aaa250e89da2

          SHA1

          b3c7315362b5859a35aa3921fb8b172c1b27a200

          SHA256

          ca934b1982ba5c7175808f452e8d9bb3922c5be956134bee66d84b845de12c2a

          SHA512

          8d73faa185968eafaa51ab4d75ec6f20f5d4dac5c6e9d549ced68c5be65b9eae6983f0dad9e6bdd40db9f6d4818814743fd7966f643f70475042b5a66a302741

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          e56f867721666d79ed676dc24bc37332

          SHA1

          954f642903ab6ca55fc7b9fd57d72571f6fef726

          SHA256

          bc30da53cc3a98dfbda8e7b788c3f54940de9841279b7e91484632071c94ed97

          SHA512

          de033f788f6e15bacbed9b6669326aca07fc701da6c90f68c25d60783cb9cfc1a9ff4d69b0bca9acba24dbc36003eacd06aadc4eb8013c967cfc3ad5ec058f2a

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          fb11c4f1ebf7ae90a06529d6f0298967

          SHA1

          c242fb50072c20c42aedc6d4fe252d50d945202d

          SHA256

          4380744d9356d713d54c053e48c13fbed465a5a28b400fbf29018bfc17752eee

          SHA512

          f2b41eb85bfebb259a635900089e1410f99ed6ad3722be4b5f8ace276f8b242f80f0c6ce120663956c76b04e8aa253257ac4f16ddca127b10ce5b2d47d632393

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          168fe4abea03072b22cee735e7552f3a

          SHA1

          7c797eea840340a4f44bfee6c538496e7199605c

          SHA256

          6f9c6f11076ce98ec3d4ce4247e4e92bcb226da6ca7e28993145fa43f4151be8

          SHA512

          4fd65561d4814b825d74ab71d91a2fa248ccb307e424314dfa9070bf8f4a89bd1f42b29c9222a53a14344045d9b458911567a27ce5f723235ba58dc3bcae6eca

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          dbc1ef8512d2c7ed5622db4e07c5b9be

          SHA1

          83da28ee5ad4752bc93a60e859bc8f197c1ffd78

          SHA256

          840c3cac303df1da19ea95c2bab5146a4e086e5eb9af8f75af61a94653161599

          SHA512

          b1a85149f9bb90e09101ce6e4ae57516741f9f70ee125131c25f5b18cc2e5113b60407bc7e30a96e1ec32d263d1a418902b67778718da9b33f984f053c7d2b23

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          576106ad818265a2810d9264f1a44a38

          SHA1

          5254d7faa93fcfe78858d7afcd25f7887371fd25

          SHA256

          daffa0ada19e8120f6399023a97f56f92731450da7b4683b923e2bfe318036b7

          SHA512

          168fa1f40fe790b422707419bc79617112f1a9a511129f19e5330ef1782dab827ac202da92c9097043bc3998dbac7630a7db38eaf4d026a8c29e41d12bbc3c16

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          64b164b6a5995c1812a60698c5ceda38

          SHA1

          b4913c3c1eb06546aa687d5da0906e586ddb044b

          SHA256

          09ed623e50dc9bfa7931c60ffb1b0ba990cfa687a13547515c6b524f2106d3fd

          SHA512

          585ad85ac00ca5eb8ad269e59189603ecb257eac9fb2f9c36aadc18633597d1681cbbaa020ad5dcbdcad60d6061750fd61169a8825fb60a732361ba4c1a1a47c

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          90517d4b55f3914c555463733a6fff10

          SHA1

          13f3d527e242d2f2373a5092bbe62efe6da507d4

          SHA256

          6f97a7db8eb8ecc3634ada83648de4d9235b0b9c574582e9dc267a72eb8f3d2e

          SHA512

          bca1f73878db045046777f4800fb2cab8ce22934b365ea7059364c5b75c2796c914e1f9242401ea98ae22cefae29ebfdf141855e0f68344e252cc01c0a365a23

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          d1c6cc0d1ad3b9c8c8a64d4cd56f2e20

          SHA1

          da3066eca0d745c618de117972603bc3fa312094

          SHA256

          964465900ab7e536fabb72c6b7ca54132e24ddbd92c8c573222c53de20d94caf

          SHA512

          90fcc9daeb8f62ba333f4dd8b766be9b0e0e7f077e05f2f7404c69e16954da8d62d81045f99996034ca1d90255f24a0cf3cd776758c0a9df670525b3ef29d655

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          79b783ebb64dc147fecfb13e3a6de7c9

          SHA1

          93134d617c1b25efd2d71047ca24680e1b589c4c

          SHA256

          0d7fdf4b8e899adfb9506a2ceeaddf7f6f37293ad6ffe9caa477b9de2df36288

          SHA512

          adaf25f2f9fc5b5649b44fe600ca30a85fd653e5f3980d4c4b095dc27449e01645acf3d69a4c297e268c553c2484f225340e195fc4d68b8a53d403ee9bd7d620

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          33a51c1877acb07d7ed5462fed29ad87

          SHA1

          84ea74bb0fae241d328a6d6ac770868706871bf5

          SHA256

          7944b5559e982d82c56e4380c11de8ef80c9903208aeed5bd426736927189862

          SHA512

          a1210473bc9b89cdb562b73f7f019e23c3d9e8100f0d4b24873386179f434b4d02d08ea626341fb6fbc7ad0ff19615a512495ee812b4be8e9d8c56c1ca9474ff

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          cc4af302657cb70904bc998004a19532

          SHA1

          71ee40fef8e21e75d98dbdaa1502c0eb51a61457

          SHA256

          9cd163bfec05bac20420bf17e80c360e90f404f28ebdb99ca214326328b8922b

          SHA512

          27d7b7cf7a1f1414f18f94ba2e19ad5767f1d31c98c7fdab99e32ef47c0189ee75c0ab5270ac915016571b063018ea50a61eaa794a0c7548f805d313813d2f02

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          bf86afac926e25fe68adfacd47707d76

          SHA1

          f52694506e0ed8b4ecaa3605c21719b324b463c3

          SHA256

          e10e618e7b2a2995406a988c40bd1c010e380e98ff48957d572cc8293b7b9879

          SHA512

          7beb9d4f4380f670ea0ec6fc233c73aef4eaf51b711fb07806e36c80ba2f3b1130cab467b52b82a61a2bc038664eabbd8e6b849c70dc13cf8b4472fa5b15d9b9

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          61357a3e7ae7a10dc18e03863e54bcec

          SHA1

          d00f71dcab1455c933eab460ad0a8f169a6f5fda

          SHA256

          4c90969a7210735da60f6e27d8d47cc0f8b9640db6bb6429e598e2ee35cce2ef

          SHA512

          7a744abfeb8aa627fe702bc64ba3c86b5d3f0774c3a81a142d4eaab6098fe239c184c4bab85bc19af9bf8391c6ac6826fe33b38457d417d99fa6f848a7b7ea73

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          7ffe3804234f39bda095ef7754475e3a

          SHA1

          a2722f0c8d89186df745294040ea7414197da393

          SHA256

          624f64a03817e8a8d1e117a1e044a78589fc5c59b3f923a7f1bc23d44161b83c

          SHA512

          83a5f10002bbf876e56654429b00823ec843df874698ed60f707ede32dbe45e7d8b4605525ceaedf868abc7e5fd4141262377d9f1ca6c0b793e7f1d729bd7caa

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          087ed505438e49767136bb92a2556ed6

          SHA1

          62b447d56dcd46f6b06c72615cb7e28544a65c74

          SHA256

          6dd4cd1a34d7a9e78691ee0276c5038959b79fcb3834c93bb5c70bb812e5a181

          SHA512

          11c0bd71a2fee904d6735b8928a5769f3ee2c77e370a1f38d19a2a804febe81962e101677ea2292223bd17d695f3cbbad546b864c599d4593af18b7743661f7e

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          2acc49aa0f1a4a62d3d00f41cb64af1e

          SHA1

          7da0355d7b42e4ff6c9e1cdae655b6eb0318508a

          SHA256

          deb7ef5ae17643cbe4ec79d7d54228a1bfe5c48f3f7f0c43b664b96e33028ac7

          SHA512

          7627385293354cf43c5de3a6edc687dfbf735a249eccf2a06eab6e8595e52480b78bf3915a11cb48b0e49f1b0979707c33d4d96978c23a10d7ba43b021a1753c

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          e746cd1624cfc460480795e487a220ff

          SHA1

          95f8146ca127bb5e2fc3edde7ef030ab6872b48c

          SHA256

          762924e859c0ee3d08e7c39abed34b7dcd97fb2ed3db22271dd63c5bf00d0354

          SHA512

          85ae10bd95c479ee1cefba0054849ed4d1d8666d193a37779e70ac3c103465e360ed6b10d130e363c180f5bcf4660a537c29c1b21c6ca920f0eefde82351506b

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\CabDBB1.tmp
          Filesize

          70KB

          MD5

          49aebf8cbd62d92ac215b2923fb1b9f5

          SHA1

          1723be06719828dda65ad804298d0431f6aff976

          SHA256

          b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

          SHA512

          bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\TarDC50.tmp
          Filesize

          181KB

          MD5

          4ea6026cf93ec6338144661bf1202cd1

          SHA1

          a1dec9044f750ad887935a01430bf49322fbdcb7

          SHA256

          8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

          SHA512

          6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

          Download Submit