Overview

overview

3

Static

static

1

fa37cdda83...8.html

windows7-x64

3

fa37cdda83...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    121s
  • max time network
    136s
  • platform
    windows7_x64
  • resource
    win7-20240903-en
  • resource tags

    arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
  • submitted
    27/09/2024, 10:15

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    fa37cdda831cbea9d45c17e4d658f241_JaffaCakes118.html

  • Size

    36KB

  • MD5

    fa37cdda831cbea9d45c17e4d658f241

  • SHA1

    6015e80d75b35c3395ac96ade97485013f128c99

  • SHA256

    39ebea482b628bee12e2d4184d6a3fb78b502839a7956bfb8d529e38df4d6132

  • SHA512

    6821c2cb2111f285382d31472e3601949987f8988034dbfc1d1c4864f08f1cc1087a5e7bb95b1af2ce1b416bde5e44b3dd443b23a23601f5b2580a926b3748bd

  • SSDEEP

    768:zwx/MDTHxp88hARPZPXWE1XnXrFLxNLlDNoPqkPTHlnkM3Gr6TtZO46lrl6lLRcS:Q/3bJxNVuu0Sx/c8RK

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\fa37cdda831cbea9d45c17e4d658f241_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2060
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2060 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:1424

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\B2FAF7692FD9FFBD64EDE317E42334BA_89854CA6A0F0936A4D2ECA78845CEA25
    Filesize

    1KB

    MD5

    b5049292f72601454b3986feec564273

    SHA1

    f2642cb98eff339c8de284d6ac3fbc76e9514cc1

    SHA256

    b79c13228a9c3e4fb194526c28c6289eeb3eca1bdb038ac9e9a002f3ec405615

    SHA512

    0a0f223f88e9b8b3e4eff55fc368affe9090e116b66eeeffba5bd46fc640958b30a4f8ef66e0b4418cb7d60979f8d6330256f71b992d467835a5bf8593bade68

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    c68e3527f073dc9fcc26eaec7066943b

    SHA1

    0c40198521c7f99a2688ded42a7f0084406bc34f

    SHA256

    38c8fe48398d851136ecd7dfec167cda2d65ddde8e18eaf2336dc2e2daec60fc

    SHA512

    c5eb09edec5e38e4f7e83449ead09ea88aa746032630ed029a0349028eeda16257f1ffa6bc874c65e72b2b246ea786d6f615c8c27e316e19854799aff672b676

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    00eaaf7abf34fb57e6d82fc90845a6d8

    SHA1

    01fbbe6c87a194fe6d1a52477fe441a678412493

    SHA256

    23a3a2dea85d3719b0617574d7122ffa26c70d164195900dbf153457ca5a8832

    SHA512

    49091ef6134d39a10ed76d223666454d5a3196f7a022f10e7a40327a522f95b9c9efb14c0bcaed4cc9eeba13870d9f05262f0f814f8bfdd089f8a5ace55fa2dc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    e3a7afa3379599722710e0ff41b6be2c

    SHA1

    63438caaefe9942fc01b29ea2307dd47847a8e2f

    SHA256

    f25b03550e9ac7e973f3487ac8ca0e53a61948efe920f6bfa553bbe372523a7d

    SHA512

    af5b97b8d47ce0f8c95df3f2c64fdaf1754d43be222c8f82ad95f5db9c54d7b1ef334ecd71c15e0783935ba8127105637205ad3ec49932849dbb990b5105cecc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    381c538cf30d42b3cbd2cb81d8b43ab1

    SHA1

    5a48659933e1dcbdc25ff445f6c3de8de8510452

    SHA256

    38f6d22ce2940edeb865e760cc4a6625879f494dacdf97ee814c1935a3637964

    SHA512

    23f7735e8c4f703f66c243f6ba312c812af0c086ba599f82d7775b7dfdf5581f22c17586508a78717febde27daf7c7625b06dddea9b04b4e6f2fc5cf72929f63

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    e293938c692d8713f6c42846cd0aee77

    SHA1

    00579a1e4f6fbc194c4aeb54dc6eb87c240e45b3

    SHA256

    288042b794058457f3312d848c2af58395eb1a75c5a69a16cd2b5ea128e2575f

    SHA512

    99d8c6fc96e38019b6e3cba0ed1b3592f13529018cb8fe2f71c30788501d9dd10af59259e7a9ebade47dda4c63a51348cbdecabec40430065a8ff363f4b6694e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    8601cfc764cc1013df52da9873e6611a

    SHA1

    824a34b6f18f1f3072e134fac568ddd1dc60c1d4

    SHA256

    112c2f90af4bf73c826c96cd46a29fdfd0709b55ee0dddd0a92cb4d290e6360f

    SHA512

    d222e8b8e50dc8f193008c05dcd69656ec8a704db172fc7a0371cfeb2f535cee487ff2d929116c2447de44d510cb500e3daec198fdcd194a5aa7ae2316b6c887

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    3a1faad53762996cc78e54d7e4be5f00

    SHA1

    418d9d10e8be7ebf96c13c59519faa848b68b652

    SHA256

    e9af9287e65184fe1dedc146de99e421d4f743638b492b6e545b2b7e03b157b3

    SHA512

    dae01acec1ceda3326bc940414cb28e24a3a07189a3689585f7f27ff6e0160af7b68593aa5fce13d5dec57bc5db819d401e0c561dba49706628dd274520b2799

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    ace2d756b9568e30e8e4fb7b60ad1c94

    SHA1

    c57a2662d7bc7d5b77c72fdfa8f7d9076a2931f5

    SHA256

    b844e21d329e277afd00d5267cc36127f4b10f5b3eeb4d9635c6c2811f63d6c7

    SHA512

    0dc7a98219f55d88cc221c1c78dfd99dca040ae38656cd4324bb6c8d22471019c6bab0b026153fa17434e2ab575fe2ba8fd7422ce23b46eae608bdfb76d63c57

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    606017f987be7a1e012d07d5e2c78506

    SHA1

    6ade8a595fdfd37ebdb7e0dee3e30587f2ebacc0

    SHA256

    fa50215df862b095bfc2deba7c5fe32caeb787c0ad697403b696b570030e196a

    SHA512

    8ec045291a8bdab685254ea7dd1d209c18ef57a7304c6009fdb0636a2c21512dff15d19aeda100f8906cdb599207ef4db80c2ef835d72408b626eea67356ffd8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    5746d6ae426ff352625bea8b139c4baf

    SHA1

    abbf5e31ea1fda892a0dda0cb7ad777462a5740c

    SHA256

    ab1d6ac398574104d42e6892b10ef1e679e8e45c1e2686c7af71942ce066c1bb

    SHA512

    a7e743dd6a4dd46a037132d68e21d043ffff00ac14d12ba01a0d64c0c7f9331dff004884af1a24d1c1641af34d09cd96cca0bbb4a6502ead034d0e7f576f83e0

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    0354a9f545dc61334554dd56c2c8a127

    SHA1

    060ae6970a60f0f316ea4d3f1fd532e2d2320eba

    SHA256

    7983928fdcfebabebf287c0df2caa9e3206fab20c95ad58eb03169f64df03a7e

    SHA512

    b93c1386145c97c26d743da4056c56ec90aa910c3b4e55b6a3c3e1699dc0c37b6ffce89eb110ed362f331bdf6a19d1b7bf200a8997114cd6100f7c71dda78f03

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    ee9b6d1409aea23a75c018aff3917481

    SHA1

    e8347062f60b1df0c8f79fbabcc847a9c0b6c250

    SHA256

    28bc03f69770b11eb5fb8bc2c01a971f4368998f21a2379ccaf7fda43398cff2

    SHA512

    fa41c17361ff8dfe7c7698b35d3d0960fd8fb0a7e0683c58dd6be43e5f8a4af05040761e19f0500aa1c835104f875c25eb3703f4d2534931ec7ae0aaf8e3caf5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    1311342e738c745e8de85abbbbaa76f3

    SHA1

    d8495534786aee9fd74289d271b8e636404a07ef

    SHA256

    383731c765ff28eb0ab9ec2b0d0d5403ae4e49acb7f4b8bfbe2936c9a54172e7

    SHA512

    b24e6d8a75469541e4a964ba6b71e4522e4bbcef9811d2ea09d64fd0f9412ce3a5707383f754e678baf2fecc6be9aee6c287457219e8be224dbcb7ff16904817

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    38f94790df0222029a9124b85dcb0999

    SHA1

    f1eb36ad9cfe4b11a80d3e8b74a1b2750dcfa7fe

    SHA256

    feb054455d0b8c544c350d9bca1a19e9c1498d1a0e53444e58826e46af9641db

    SHA512

    e19d7a96a0d9623cc45582e44e5c238496536660a6ca18f430c39fa8a13968c19bcb04904aa47ceab78b7bd2c553097b1b76721bf0c999ea2e8e1f452c5e51db

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    d45dd2e13c256e55bbce1313a5fc731b

    SHA1

    c05e7edd4252448867c52826accaec6b27208ce5

    SHA256

    f5aa3af9dc7722d1a89f4eba7792f1fd33bec47351044ac1e2bd10cc1ace6351

    SHA512

    acc4005b364fa7b65d1c59b337b264613630cffe87f16f0782cf438103015f554e1a1b81d41a5fcd91b28169ec1f8d1e33b885023a4761c2933ee173d4b9e02e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    2841c5bf75cda7ad2d4715cc1da8a036

    SHA1

    33a28e0197565bb2ca0b1d25a796d93cfb89d174

    SHA256

    70c572690d71e0befd57a6a97c1a4f47ca76df4be435cc265711c611bd9856f0

    SHA512

    636e17284d5c8be76a48fad926bc3bb06ddb92c454b4a3a8b68e6c9c165dc483cce55f2921cd3ae74c4bcae476f6fc5054129affa88ad5d4633c56f38a3aa6d2

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    e8394f790951191b5fdeb020b907702f

    SHA1

    153f2650869743691a8958e15e700ce389fdb0c8

    SHA256

    4b477fb7145ac87c31a069085874dce14fde487583eaf626ad621664813ebc95

    SHA512

    72294109ef9a7fb031adaf4cd17a587991025386d0e0b74d484cf579f9d91e72413710de199e3e6ccb6dd3a4b4ce3a2db9fe9fda1bed569c19c424caa67fb2f7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    050f731235a100ac340579544d44d5a6

    SHA1

    408af61f0e67deea2e316935165984ba8b893992

    SHA256

    838ab753d301715e87fdbccbf98b3c768005a97105941f73972531aee25ac4cc

    SHA512

    fb886ae6640756785e9b80234497c63cdb3f1adf028e6718327a3e204f74c7f58ac3b439667c207d3697765d611180cbe95e9cde2bea00cb49be234694f1c7bc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    7d7800d3250c699ad4c8ba3581ab821b

    SHA1

    7eebb8c257825ec699cca72d7c6a342c81930b7a

    SHA256

    c41d440f495c1d06b9425af2e7ff252fa05eb6399c1b4506194713ff6954f5a3

    SHA512

    26d4ab77f00ef4681ef5021436cd69cbff80c1d57bab4748b84b85cacd7a621e2f681717fd9d3a6aa1027a950225dd5323b4e35787f2fbc885b8fa8d313290c6

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    0ab3e61f7c3fc1659c3640ab2e03ae50

    SHA1

    daea75bba123f34089290072cd4aa7e17714d4f9

    SHA256

    54b68a2ae8310d87d6733ff180b878af0972437f227fc8bec8b290bee585e824

    SHA512

    ae72366c45c55f8665c5d93c55c819ac71af658e41e2e878f52fc6839244eb3b8a7e504964a0e534dd392c3f81d22eb231ecb7608d7c5244b8af48c90d9ed501

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\Q0WBLVJY\59df318a5dd5b358077fb9a7e56e80a2[1].htm
    Filesize

    162B

    MD5

    4f8e702cc244ec5d4de32740c0ecbd97

    SHA1

    3adb1f02d5b6054de0046e367c1d687b6cdf7aff

    SHA256

    9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a

    SHA512

    21047fea5269fee75a2a187aa09316519e35068cb2f2f76cfaf371e5224445e9d5c98497bd76fb9608d2b73e9dac1a3f5bfadfdc4623c479d53ecf93d81d3c9f

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabF634.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarF636.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit