Overview

overview

3

Static

static

1

f613eb0b41...8.html

windows7-x64

3

f613eb0b41...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    144s
  • max time network
    149s
  • platform
    windows7_x64
  • resource
    win7-20240903-en
  • resource tags

    arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
  • submitted
    25/09/2024, 13:05

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    f613eb0b4141735e12c29c0d569bb6c7_JaffaCakes118.html

  • Size

    201KB

  • MD5

    f613eb0b4141735e12c29c0d569bb6c7

  • SHA1

    6729ebe4560fa314379c3f6b570d98e4da8ba685

  • SHA256

    629cfebdd23c55ebdaf3abc15d78be6ad765249a2d6084b39f83ec783109b2f1

  • SHA512

    dd998d38995cb62e4fe90fcbaf19a7e736798510163b8a151f676fcdd68e806e4c99ce1f2e78a5fbfa7a6b1dc5aaac65ef102fa0542faee77254825d07c62188

  • SSDEEP

    1536:kaC8+kPWh5b753iXV51CPfYRPXDIO0O3Wf901LqFen4/kGvM:dCoPXv3d

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 41 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\f613eb0b4141735e12c29c0d569bb6c7_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1804
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1804 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2856

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    9ed8d8f8da59e09ba8e8d9fd9836f2ef

    SHA1

    2c3fac806eb6b715722e39866910abf72928ad2f

    SHA256

    04145db870be3e3fada773376b12d60ae44fbdfcf07ad331d877c10246a0023b

    SHA512

    fd37bb5695a86ee6abe2ad6a3ffbc182f31733feeea0b8b35425742ccff43d31c1975268489ace44b8506d2f359ee415f94399d542401024df10ccb6b641721d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    80fec4ff55fa7eb0004c851f1fc6b1c7

    SHA1

    8a17328a802f1e7dcc76f06962d5788a89b6378d

    SHA256

    ef9d6050496ce5ec467d809db83b08c4ce0763da783c15118ee12f06fbb4b2ca

    SHA512

    39b811ee6b672e1d3f009eb78ff646bf14289775e794674248412ec27b19401cad8b8efad2a969a2e24e8dd7077876ffa71837e3e06911633d7efe5cb5d95a2f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    e040bb40ad72377ae5e1a78d20f2eda1

    SHA1

    c5e356317098aa01f34bc4dbb15b9efce627d50d

    SHA256

    95596af9b053f3b0b86ed0e3a5e2f7e0928016d6ad17d39c34825aa7161f59f0

    SHA512

    8c711a7bab0034463228b7857d696cf87304f4432061cd0fe7931aa97838542714e448b1987c1af2133c6ed270a96dafd8c90008f1d1fd0dbe1eb340a7377e87

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    0568f65c929ed0a42b67b04cbc871aec

    SHA1

    e34f87631eabea27e6ccb0359aa320f56cb89dc0

    SHA256

    fd950c8cea0d7ec91fd51d8d94cc77c884ae7bd2ae2b16bef0a934dde54316d5

    SHA512

    901a3c10dbc8f2c84627959a1a63fdfe44aea1e9cfa2d7a3a2c5c56845b1ffe828b8aa669561719e845c5a5e1472f13f8f4d1357b07ee63e3762973f6a41bb24

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    12c1cef5d20c9a5096c03b7fb6be0de9

    SHA1

    a736a46d5f6ac93cd4e563df1bb71684153561fb

    SHA256

    6a1cd17e59529be74409a613555e1235754c4c71c05c8d90b615f63fdad552dc

    SHA512

    a838e8a9f8ed2ef855080a480962d6e61351d72d1e5b49432408c7f9d256fbe76ad89a4ad10356af5ab17d2d7483a582d3bb39d81190e63f5d4cd870198951f5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    6033bdf686b37f8612c1b7d16be7f513

    SHA1

    58e5ad3b05326bde6ec728824d7dec9b689c7a10

    SHA256

    95df4915129f480da7d6057e09d59d2d30ed9b0f934a14233ff07992193c327f

    SHA512

    07874899b4b39eda510e6e6dcff9e9004c975925a18f2fa2f7f5576e0325724b3fe85497188c98168031b64e4c744e00101206c840b3a3d17658ce4c415bac97

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    a977a0e0e9efcd916544d3e980e2c9c0

    SHA1

    928906f80a3617cb61f57771ac8409a0ba771f31

    SHA256

    19cbe07512462c75ae96763d33c5591aa79d6115f178610ce3c5880f9ec83470

    SHA512

    cf883cad7d638ae8f0e40d878b9eb8425d579e227c728ca123d7acde6b41824050f44d8f3ff509aadfc48156152885c34f03c5ef80916315d4a03b11ed1f594a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    2b1cb4297fd181d9dabcc9c5451fa031

    SHA1

    e7a43ac14e6e100051a3cd500bda068542620a73

    SHA256

    06fa3d6cc21b00212aea76370c87bc6a516f8f8049d247a5532ca11e873878b6

    SHA512

    e5d364fe491f6d470fce1d46a5a7d684932409546b641e818629cc23e8b5939551e8afa9a6abe7ebca13ef196d41d560812714ffd43272fb3db99618a22bfdbb

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    0ddac1a2cb1c63b5893c125a618aa3dd

    SHA1

    ac4cecf7b525ab48c899749e4ed1f04f7a72a001

    SHA256

    ce77aa25b8d79c302a4ad65c9f9565c95b5a18dd437102c1c9b222082ac5e770

    SHA512

    3dc46c931a6bf19203587a7d56822ca0e97a55e3ed6ae1c775dc4902f4698cdcb2d0202f410cdeafa81b57e18c8f16d8b42bed68f47ddcfc74a65ebbd169f107

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    2887dfac140d45ccd258060cd4522451

    SHA1

    eac5e1815b05dbb1626d22bf40cf4e8bcfdf7775

    SHA256

    dd9b5b182d04299eb91391b24c189074c28bf06874eeb778c4ef107e4b91aa54

    SHA512

    67f8bdd316f533f19eab64746a8141e6015bf219208e5c1aca6f0dfa9a534638a999cce8cb0afbe98f97121d070ff8ff96e2eaea614d6165cc9f0d192a1e5591

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    87b55de633c2e950938a71a164063d1e

    SHA1

    2bade8263e928409b0f4404051be585cb17b83fb

    SHA256

    5f15e6e0e328b9db4f62f33add4a4a471ad9b1d172005eea138b53314831b759

    SHA512

    d73094f665741fdad63999bb92e95bcbbee98b231d1900984c3faf4b21e282e2d0ad201582dad0fc8c2a37a434d919482f68a044d0798eb6400c3f04040a7530

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    6d95ef11b3af545f5b119dba3a9e22a6

    SHA1

    670c7719e387cef4fdca88199da3c60785af88ff

    SHA256

    3904c723133489e515b9fbded7048a2fc57adff87c75791e4983e0813d3d6af2

    SHA512

    42d993c5d61eb21a820713136244d06604b7bf70cc536ea99a3535be89ebe4f8da933f6becbd4f7ce06fda8d894ad001139864b32e5bccff73e39955c0e50718

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    4e2b5ce29242f0c1c19ed5183e7db38d

    SHA1

    001fcb90b892cf050ddeafa0bce1d0ada6aa3e06

    SHA256

    5f68b8ce328e3f99ee806dd18742c540c0fbc277386368eba224d0d38e3dc7a0

    SHA512

    9a32e604dba60b1ea47447cfeabbc9dde330f0f5aeb17461c10967b47b4459ded5a65ca1b449583ef0ea67b1b646bd93911ef596c0bf939276343aed2e50e76c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    0309e0047b76a727acedeb7fb2de95ed

    SHA1

    44d99798321fa482f428d63aa36cbe01858cdbab

    SHA256

    911e35c085a5f3191960b5cd940fee3699ecbe9b1974d3d883740742fe5083c6

    SHA512

    ba463e3b9dfae712498c98c8305fd65fb6d10899aacd505e66cef2513b2346361f780c6c8cc814ac405f68324829635c4214ce0e1037d11158a87a315fe2a5fe

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    60418dc5fca0c1bf0a2e1c64cb73a31f

    SHA1

    e004cd27fe923a01d5d972f54382e0b2b5145bde

    SHA256

    6b83acb44f1362ef0924b1deb8ddf8670c84f321aedc0d0bd2320d90d68c69df

    SHA512

    a83d1f8c02f3fc8f36500b84075e6b2df6bac7cf0db49622bcd85be0e43de2eb6393adb5a467eb8241cdac7aa3012723cb5ceb708f7ceeab3614780ee7e80999

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    ef6ddfaed6ad42938790b3540ebf6700

    SHA1

    a931c583ee889f4f3824323844f17066ab73b6ab

    SHA256

    d007d62e96ae94a88319b8fdd6ea9ae030b3e743f71be4a910c2971231e4e0c9

    SHA512

    f67140472fdaf9ec0d3fab12836c1a84f311352d0f60cd028c974f7da0d8c159c25f80331a56f517f58ea032c365855f675aa1fb8804887078d00961db73a07a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    7a582d2567afec9003f6816abd951d09

    SHA1

    5f2d53b13648d9058d562c7de18416520271164c

    SHA256

    a623f3088de44b39e3fd28e95d23835dfec84a5ad84c0e2489a265085d5838bc

    SHA512

    8744a7e49007fa92862a0a5b3116d0f636ce8a4029165eb6ab63ef189dde04cec22002e9f43e86135f4c0fe0f252de045e755ecca4cbf0425b8f5b81c1b4b1ce

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    fa4e65aacfd33b3040d64cd56cd6b602

    SHA1

    98e9950795023e210ee829cc3cf61f9062c92b74

    SHA256

    087b8178e46fe9a390e439e4681dc79d3972e104ebd52e9df88a2e8d5c726194

    SHA512

    ded1da5eb6d49334e3ef8bdeed92a90999418121c4ff7f8b7f66f25f0554ca874181c17972908fce7050e483bf38a4dd3f4e2ae344875e93bb364ae67d19f493

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    e965c0de8f3d7171feaca8a4b8bc233d

    SHA1

    e20e8f12370bd0341ad2ab068b777688e409733c

    SHA256

    63f85fd7ff548a962a3b146dd8e24d417d6217d2584a35fdf4bf501d835b55bd

    SHA512

    3db1c122a3c541d17fb1d9b42060ff4843fe9e84e6d79078580b25a02779d4ea8dda880e55a5b5a042ea62bd12b7b7d824a786d3ec82a6832c85dbee2de7b3c5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    c9f0e9ee7e2373dc8adc5ca4b1338a39

    SHA1

    1c9884ba3b0ad37e3c3a3b352a6a065d0859e11c

    SHA256

    3fe1ff44305a06be7a52a215994818492ba8ae6ef989751fb4b1476fb12a344f

    SHA512

    10e7e0ff66a75d8f212823520b4eab0cd9693e57ab7372234540453f09018a96f28db8220663cd1aaa7543547350a0b29cc36fa63040ced3137c4cdfd849bb5a

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabEFDD.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarEFFF.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit