Overview

overview

3

Static

static

1

f5eaf09830...8.html

windows7-x64

3

f5eaf09830...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    144s
  • max time network
    145s
  • platform
    windows7_x64
  • resource
    win7-20240903-en
  • resource tags

    arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
  • submitted
    25/09/2024, 11:32

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    f5eaf098306bc3d9a311dafe60d332fc_JaffaCakes118.html

  • Size

    62KB

  • MD5

    f5eaf098306bc3d9a311dafe60d332fc

  • SHA1

    bec391b3ec1c6e26412d760a1f2ef2351cc622b2

  • SHA256

    8fb9dda06d64eb83ecc7b0467080b67166b711a71df3bf6db48b703dd70f0f35

  • SHA512

    38fa138e11a6d269884a53a4aa4f235882d5d9a299cf77c5b9af3442172151641ef19ee94914bd57d868dda946159f37c7504858ffe04907d92ab7f924ea4a62

  • SSDEEP

    1536:i5hj5Iv1PDTK41mVK41ZyKj16eoe11eUxEF1Nvev1emIXXZu1j3D+1rR1eflji1J:i5hjT3Qx

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\f5eaf098306bc3d9a311dafe60d332fc_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2948
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2948 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2492

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    d03e1f861bc41a4f29a7747255830bd1

    SHA1

    50e5d01b3c24c171bc972e7bf9f260a767f19bb9

    SHA256

    4bbd8f902b74d5c304964df291ed2683df326d6713f9759767fab8f5423d5a15

    SHA512

    76c23899b426040c786b26ed0211fc7a05031dd26d63440fecd74edb563990a7b47abc6142c4b2b6d4f081b2d9a59d34133d80ab58ee9b83cee319b4bbe8e05d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    15f039b9c8e6d23814e3446e561f9bb6

    SHA1

    2e7e79a3adc295b086bd5b9907560efdbfffa0d0

    SHA256

    2a0d1b449ba24cd19c1fc4fbd13971ddc87205bd472857ab0733d644e69dddfc

    SHA512

    dc01774dbee99d1c86394ca6090c279efcdb09634d5498b8c05cf59a5bf00b36b8ff548ca5be35c525ede27479320839d3fd14d106bc5aaf8522498051c802f2

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    e417c07297b60b978f41c98fcfeedcfd

    SHA1

    5aff12f2e9cc5c2bc057e1064bc550a5c8bd6be2

    SHA256

    14f0b089e16aac741203580720aefbefb68c9d09b63af3888c8e5c883b32202f

    SHA512

    4930e3aef27f1bb0041d095920469edd030de0fe54056fe60dc8d2763c6173d6a2135a238f6b9277ba1e6079ee0928d122c2c4e8e645d8598cf364e1d6ae9c8f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    da94f38c928097f657cecbd5ea1cf0cf

    SHA1

    28c05e16dd77e1a28cf5ebc31202d7a537494900

    SHA256

    acb3db8d295f43a05706ab1cdfeaab0a3eded46fe83c1771fbed8906773f5292

    SHA512

    84c08c451cfd4ba95796bceb98da5cfa7ea7d0c3e7d7a35644b310c2868f9aa7df4999a094e9c84d3ea837807b2ec9e66c8ff26e1a5b69b91a09c32f9a8902b2

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    6a17f0ffc8af92134495065413971d74

    SHA1

    4d499761e1bc4aa30b31918c5432a437db426440

    SHA256

    9236a92b1de7d439a854269ed195aaf1031e4e4d90a8794928c3840d7d094392

    SHA512

    0c8bb282e0c6a14152bab33ddbe2bb425d162cd2fa113a53ec04ca71afe737faf766692565a748599e38832fb3e7808bd2068d3b35b27d516a565c3034ea62dc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    565c5745c47b89c41ce4c06bc6bfbe6d

    SHA1

    546bc18941439852b1c533d6de7c460121b595e2

    SHA256

    9a8575ba7b052313fbd5d54ad3e9565b600947874ed1fbb75612ec4982fd6a65

    SHA512

    cad120cae6c5d582ba6e9b53058970ca9a1d4806165b93f367ff220a84976f80e87cde0eaf211b29751127cae3f1b2e718024c4dcb82a6dc48982957e97d8a31

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    0a5e1f4e3fc07eea59127be2bb3bb7c2

    SHA1

    1e9b1a0f3ef86d50b2a51cffbc6b567a103e740f

    SHA256

    6cb177782b5f2d17b98123f9d7fd79d0f3a98ffeea4d7546631d69e89b066a82

    SHA512

    20ff41dc8890dd45eeac39df7cd2286f89d189008b75fbf41ae7f0d871a7efb549baf5e37897576b98cad78be3c2862752dc5c42a6b0dac6fcb075e4ba1c8936

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    bf83b62afed453f804d054bb7176bb31

    SHA1

    17d3c229ca7fb5fb1b4d6e0ea17ade63d951d6c6

    SHA256

    03e1034d8480146b958e970e6fcb97264dc2927a8c2027519396b199d70831c3

    SHA512

    d680b9a14cf6a76a7d395004e81614dae23446b158497ec0e3bbf6d9e00d57b8742b0da489c2d87d3c99c36368bd47cb5e2c0b31046978058699f141e3f49ce6

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    48211521bf3c8440d381294e2305e8d7

    SHA1

    106224a2367f849c2ce80cfb65439473cba6a5b9

    SHA256

    953b575ccfa9db77f7f5bec84dc2e8120a103a46eef88717a8ed68a072753ed5

    SHA512

    7179958e3b794bd0adc7041ab5c2226b06e2ecf67bf995a632d8430beb7fb7fb489d1cfe02f2da9c653497ca8bc9b99a0697d61e1b9b7429c2f367315b43d272

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    6f7a78803a6ca2a6328bb309b98ac37e

    SHA1

    9dfecc486b6303266c6c049df6406702055fa850

    SHA256

    3ff043a0fa5f7b0e3e26838568247831dc3a3bec1e39e05e3dd8f75999b769ba

    SHA512

    4d83012f2900e62e890b550151a742781a8c4226cacb08063c783562b53fc6491ae62a7010dee968c90a53309cf4e33d151a20a759be6a41135275c66f5ba64b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    a5a3d7c20704c84fc7f61c9d0735b784

    SHA1

    e380a58261aced5c3ad54a9700dc779475032daf

    SHA256

    485e29c761105a96013d43219f583349b6661f4f6a95a3acc21fa642e8e3e826

    SHA512

    71567820a9ee36db2b814808da0544eb0e79230dec1adabc664f2a97ecdb5a20f2c14288eacaf204b44c9f8867c9e7237725b2d84770bff3af10290457f1f5d3

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    3d649463185c428fe3b75c62c4238dfe

    SHA1

    9227d460fbd43894cd4cecc1c92d41566e5f7b65

    SHA256

    733d6c740cd618caadebeb7d940e620c045d9d1705772305d7641ab808d8c271

    SHA512

    99e96b9b909641145d2e33d7b693dd00049f72769d9a806c99dfc5d6ca6a439cff750875180037410b55f8baec380127310e621b64ca11a3d0c7e366ed282f44

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    1404038ee63f0c425b193f6db722ab90

    SHA1

    7f87e3d8b09296044e2ff7d62f09eb74729632b9

    SHA256

    38e62e0362b5b87ede208929d796114dfb69b017e3a2aa44db665aea86081e3e

    SHA512

    65f7949afcdd8be61cb5e6f6ea45be73a390c2be8011ee8f23db3185a259372cc46b1d811dba87250ece2e259242020a06f4bc053d95dd3ba9313e06b35f60b3

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    4678b031540aaa7d228a2c30af54d169

    SHA1

    966b09669765d44e8921881d7ce4cde61d3f033e

    SHA256

    8c790db8c9373561f128361a20a05ce94cd81f62c5e5a0211dafd50539100779

    SHA512

    f51434e922abeee465ee1b2e7858c42ee927cbfb9b3dd95e54501851737c17d5adda336ab3aab7d6269c8665efdb22fe04348b6a1f45fd02fe920b272ddbb4ab

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    a558d0937537d72824c7e8e72b0fed64

    SHA1

    99106e0bc6f84011e6ae174235fa5e0efc1f0365

    SHA256

    c74d83df840f80ce04076b55a028c19e54ffc286b92ab37d804a1193127f4874

    SHA512

    745ea4d9b9dc774bb589f4b1678f56373f307cd00c4a5722d14a65fe7217f5ccdf26fdec54118aed2b33f51957d76e73a07555a1860bf043923444aba65a0f70

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    c08b3769c4fe508c078df76205c493e0

    SHA1

    bb0df192809e62524ef55dae162eecaace4827e7

    SHA256

    85cc7e3eaa844c375b0771e0aaa6d1079f8f083273df8eb8e6361fe460845cfd

    SHA512

    8abca474f45cec88db094649f10a9025b62b9a9f59604c726d111c5fb5d352c29a6bdd89cedced67acabdee5c44a738cb2d25258d526ebb910a7c7fdcb5549df

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    7f9e1b5bbfe9b8a9b0a965ccd844b697

    SHA1

    da34ccf9add0f2ba692a978290e595b0d82b0327

    SHA256

    745bff0571fe87b718bec59fe1353b722585a03b058286a316d49453363a4755

    SHA512

    5eead4339f40eeab884a524bcd2b14880919e8096574d7df2f467e3f281c6c083b2677409b5db8b85aab444ccaa705702d75a7b6459dd086817cfa944a095f91

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    5b64411e06be88604fd75ec6335da9e7

    SHA1

    168b2d20be7fcedb75fc9ce949baadd9d3e9ad0e

    SHA256

    bcae1109d70270d2108b2bb609f9e61d1e5309440dc39d040fbde6bb1f71b4b9

    SHA512

    6d83ce3fc91563b90c8cc327c7c3ac840e606612bf90738fde43806e1a65baf8edbd1ea361d891785283ec2be3af1096c7abc68e5462f8e784b1ac93bdf4c936

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    1ee659fa0c603e0eea17baa7799ef1df

    SHA1

    10bf2874d3548a9c1c5c502aa6e233f29a94a05a

    SHA256

    79e42d3c835f4b6d1ee92c33de58c29f1f30644ca594b8ef04db06b8050c76f0

    SHA512

    92ee2b922dd339d6b56cdfa5c2ee72bab93b0fc4f888f1ef9ff9fa8aafb65575485501eccdbdedb737450798cc1d252fe0066325971b047e77519a2d84eeabbe

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\ROLMKJ86\core[1].htm
    Filesize

    169B

    MD5

    84855c13836b389d5ec7cfd4c9266173

    SHA1

    1cf3056ff23c4176fd7ca9816a000ed461d6d323

    SHA256

    502083c916ae481cdd413b8d93315300653df5fb3dcc5770c01991de19977eae

    SHA512

    2479112004884d42d4ffe1174dc358c5d1b0fa2b41641d32f2fb67539c4f834d63cfbbf7e98c63b9a64e49b26390c410bb7e50f1ad4a755f32d081367af05fcb

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabF376.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarF377.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit