Overview

overview

3

Static

static

1

f673458d17...8.html

windows7-x64

3

f673458d17...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    133s
  • max time network
    127s
  • platform
    windows7_x64
  • resource
    win7-20240903-en
  • resource tags

    arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
  • submitted
    25/09/2024, 16:54

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    f673458d17ef655c8d329e1db1977ef8_JaffaCakes118.html

  • Size

    226KB

  • MD5

    f673458d17ef655c8d329e1db1977ef8

  • SHA1

    bda052b6b8fcdd228aa9ded1ad24556273238fd2

  • SHA256

    329b28f510769a7f8d0123a1be0cfa4288429bd924092ce20da3c344232a89b3

  • SHA512

    76ba7ce2fffc16c7546bb69762054da22c8bad66e8a3a3d634c889b7ce31cb4209ae40b164de32b5204a80012b03580212b68b4d05ecebc997f14d4e00fffdfc

  • SSDEEP

    3072:O2yfkMY+BES09JXAnyrZalI+YuyfkMY+BES09JXAnyrZalI+YQ:OzsMYod+X3oI+YLsMYod+X3oI+YQ

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 41 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\f673458d17ef655c8d329e1db1977ef8_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2896
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2896 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2968

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          d8e71f2aa562ea4d2733be6c49b86f9c

          SHA1

          533f6f6887ccd6c059392914f6c89aff30a15ee5

          SHA256

          75a3d4b465498f2273b0cc74b83d1cebf08769242d9f5ff3613cda3fe058ba82

          SHA512

          7ae0da3c5784a9de08b5ec65a30ee2d8f732a6a4264db00e1b99d58a3c811db2cc1811bcac170fcd8b5ae130e84fc4fdcc09a216b46df267ed07c48ee4e106f0

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          bda29b8637f6f4d35d5dedb9feba69d5

          SHA1

          e50c1c088bc5ef48d34a972e815f8fca045df702

          SHA256

          9dac2e7b39d3d3f4272e57b35c1f9df5dbbdced1ba7f9312d1befef613bb8319

          SHA512

          ea49f4a0f398e806023da3a5b84049dcd3df1057ce556bba82567fa68fb2ed69e6c32a9df0897779cc449090aeec3083fde033cc743c781e26c719967caddfb2

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          1f67782409969e832c4915c2af82d2ab

          SHA1

          c1f351a4145ffa261977b5ff8b4ebf6aeca8da23

          SHA256

          2da474179a2ad8054fa08fef9c6c3978ce58caf1fed9f2ffb208153ad722e02c

          SHA512

          ff8b632ebb74efe95b42d1f9433cd42be628b8c7cc0be4ffe13af53ad0d9fa41037e0eb148826623d85690737f99c7297f71ef880ea7ba624ff3b56279803726

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          0c2d536086da3fd49cde3caec934b26e

          SHA1

          df097e6094e278885726285503e10d9550d7f4a1

          SHA256

          d854777023ffe1512afc31272dd2fc642c8114d66a14666b6f5963e268e59762

          SHA512

          1f8059bae42d1337f6dfbcbb33978ac22cbc32d70c2323e3cfe6cc143b7981798a4a04c5025a5141ddc239d2c7e7b3c545f2aef7e3d620262487a2e9cd63e5a9

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          f539b18d46b62551695ffb10743debaa

          SHA1

          bc30ebc2e3985403519066cec261eeec38d23099

          SHA256

          e5daa8402e4d8d3de2ca315c9beee59f719ae0916373c1e45a93f202b2e3b7e7

          SHA512

          f370767fb09233b752fa25044156ec215e0a24f4d8d2d502b4ea890a130c6af867695d8e8c27d409fc2307f7092b473111a9096d61b9ddec31a1da646a6c1424

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          db85194ab32f7a18ca016732f14159b6

          SHA1

          890c7e4da86775553a1579b0046413cde9906854

          SHA256

          e396a6a5e714689fdfdcec44065807b7d8e0429de50aab4f6b098a28e2ac58f4

          SHA512

          12be488da35f16c3c2a232ea8e7a20fbcceccf8b77ea64c03b75dcb214dbbaffa8c699b2539b764d10acc5c017540443351d92077808f2767f8d9a051543d3cc

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          3325a368638956bbfc421116d7dba4fc

          SHA1

          2d811cf53a71148e81bc77c3aa9005176af4b56e

          SHA256

          83e12ad25ea35c46bf326789ad208646c290872e11002b7d0270990248e8f15e

          SHA512

          7ad860e2cb47a3db21260bd355e094ab411723cdd1900163eff6f991f4ea1d70d9593c48868b771cf45097a138e2653c64e1bf1aa83264cc7de2768891df6921

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          47009784f6356c956b483b6b54793ece

          SHA1

          9206acb605184932c69b59d7f62746fa0eafec5b

          SHA256

          ecbf50f2b13a706cbcec0a18fba39f5dfae741a456336dd1113bc92f3dfcf6bc

          SHA512

          fe20515cdfc08b66d0452059427da6865da0df61de9e2edf6664a12a6e87f1f36eed9b4699c09691db1586007d3a390370a2a7909378288cde42aabba31eff4c

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          8c456f5661846fec76aaac934b8d987e

          SHA1

          94c766446780c21f8b0f59e2249d37a50d04d999

          SHA256

          116d297d8a5f46c3eb9d1b4e6c2f0893c2fb2bcc45b672e30c413e53927dd762

          SHA512

          5e21a49c60a7435f8427e21afd9ee5e17d1c050449f8098864ce94f403ef4beb7836d3c24fbd285a07d8299338890dd03d7560e6c0231af7e5e88010222e4df1

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          8767f01596e89dacf6451f4b406f5dac

          SHA1

          8439ba8ea1803d87bbf713f3d057ababbc84d52c

          SHA256

          e647fbc865ad07d18dbeaee1a2e867b5f82239a3a240899ab9f29cf290c703d4

          SHA512

          775801cc45ae250e2a246d4ada4366fe70855b204cea7444160fcde0651ae96e375c994ae5b62b5ba897913607703e38848fad8dba869633057956dec47b9446

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          26cf74b8bed376b951f3488a0cd1f5f9

          SHA1

          7edcbecaf00fbdbbb6b1588dca99749983746679

          SHA256

          9c0a3407aac6735e4b67b484c56b2a35671208b35a2de26e1dc1fdd1c40e565e

          SHA512

          87c36d2cdad37e16e5565156a3f88aad13e1ada888ef4e9383aff71991e79e3426fdb9184b4f8a389d596e0be49ac5b879b82c5a30fed2b276bc49798d63d968

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          f9245a784314c156d9b834ce6c168e61

          SHA1

          d153ddd8f89d1f99eb86136c56dd7e9b207b79a1

          SHA256

          0463b51d56a63b62f9515cfe9e8c69c78455cae616093ac1a35c6ee87c6d8dcd

          SHA512

          39b410f61e2a8c065e2041c305a9c62211764ab5bfc2e1ade6519ab21642eb79a81d28d967730cc5a49857b3d9a4f57c0502fc5c3318d843f7aad4c22c02756b

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          15e7cab08a1278266b051c642556d5c7

          SHA1

          cdc5fc96a130ff5c679456b5b1885510ebb8ab54

          SHA256

          a5fdc2ab13e58a99822dc0a22d14e37d26dca73d1fd8c9c58aa8349e15397a3e

          SHA512

          6561d7077b65b7595c8be4614c274f99193a4d51104ffdd091eda9eb9fb75295db1850e5f718ef707337820bb18b8927ab30bc8b04005ff13c2199d101ce9d3f

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          c051b2ac49bccbb48cea7cced78fb52b

          SHA1

          f35c2dc3b3ec57e45185beac500e8a4f41dbe588

          SHA256

          11e56b486a9149d0f1bae377f03c8d0a03b170e561d09425f1ba8f7e2e790d42

          SHA512

          bbd69569de13bc0d4b1816558c18575d7dff21e2b619f61e5633bb411081c240d03a05a57d962b03ca760d8e8ed167e1115d1b25339f2ab6495516357b6064ee

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          5c3bba9563bc6c84be45e2794b5563b6

          SHA1

          199704c932e887f88d465ee290da146912d37cab

          SHA256

          24b787001384cdc1e72f74a70a092e66e511a4cbb460894fa557662c3ac1257d

          SHA512

          a8ae5e0fd9f78d2445ccdb8c0d284c7947df5949a67b40309207e5b8e5252d274a05cb0e227b0fa2c30a9080f4d87af1dfd814749d075a5164f8969709dbc018

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          98c31647ec044f114d7ebb7143dac87f

          SHA1

          afb58cececaacf84df575d26f2e44a9a27199f27

          SHA256

          d4fefbcafcd4f929c6a96d0bc02d8fa9dd599923e7e41a21671705ed5191a453

          SHA512

          9d0e75c6edb27153053df840bdfd77fb66c01f37548cf7dc33c5075fff238be9fe45327ce47d8775bc2232e59e857690a711740dadc3b060f98a23a96687441e

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          7f0937e4c538f98844ac815c30ebd9fb

          SHA1

          fa3b1d1116e11b63e2ae3585f7eff4480af1d967

          SHA256

          7e588861946ed8568ab54ff14293a4a21c9f87f5efa846f85b596b073b2c3065

          SHA512

          34024b3b8a3b227aca9d59ba1fc013f4aea9b34ef518f355e68db725a7e1340946ec985b5fcf618656dcc721eafb65913d0c407e6bbffd93f2006f2b53db805e

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          3600a100568cb45927adc565e6189f48

          SHA1

          d82f55dd8f7224599f8f3f122de782790769bae6

          SHA256

          1a64376870daae328c727a46b1b6913c1e6e24238826eceb72ddd4bb83a80004

          SHA512

          75bed06c0efe194dd7f9c266b7d8365073b6f4ec3fe433a0a7b698cc150449e2775efcd884baafe7d9c5a799deccbd20138bee2a592d5feeb5a7502b78421e2f

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          c6addffd82eee4c8e5cb1bbb548c683e

          SHA1

          25d7babed29170017dc788882ab7a3769abce487

          SHA256

          826265e9ef550f8ee57ba7fe3ece8436c66d9283de49216e775c288332aaf69a

          SHA512

          1dea53f285d287e80b2941ac8c9d78e2e2dc092fb3c5d3f4d1fefcf38ecf7de6891495c0ce69e318c92f2f3ec2023883e3c9660d53a5bb5ef3a6eb1f632932f4

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\CabF367.tmp
          Filesize

          70KB

          MD5

          49aebf8cbd62d92ac215b2923fb1b9f5

          SHA1

          1723be06719828dda65ad804298d0431f6aff976

          SHA256

          b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

          SHA512

          bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\TarF3C9.tmp
          Filesize

          181KB

          MD5

          4ea6026cf93ec6338144661bf1202cd1

          SHA1

          a1dec9044f750ad887935a01430bf49322fbdcb7

          SHA256

          8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

          SHA512

          6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

          Download Submit