Overview

overview

3

Static

static

1

fa6d634ad2...8.html

windows7-x64

3

fa6d634ad2...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    149s
  • max time network
    127s
  • platform
    windows7_x64
  • resource
    win7-20240903-en
  • resource tags

    arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
  • submitted
    27-09-2024 12:44

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    fa6d634ad2b6dc659980e33becb69559_JaffaCakes118.html

  • Size

    20KB

  • MD5

    fa6d634ad2b6dc659980e33becb69559

  • SHA1

    d941f267efd471b4b09937f4527d74b44a8f8ddb

  • SHA256

    6f9d4c848fb824ce5d91c815d47545fdca1c33331aa6fee0a2e9ab665d33935c

  • SHA512

    a1c1ebd935934356cb8811d7488953f8158baac633ad2ef5df410ed3ead09208fb1d88f38db51fda0afa2ea144159afe0bbc6910ee92b4bfcf7d3205a093a14d

  • SSDEEP

    384:0yRrpiSYhMVAe1ufIq61gy2RagQ4pAS9qgtgcVfrXK132mu:HFiSjGLfIoQqFbXrXK1Gmu

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 41 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\fa6d634ad2b6dc659980e33becb69559_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2532
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2532 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2112

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    7743025d999552338f4b8b94499b8fd2

    SHA1

    d1cdbb6fece78391a1619a090a004325b26c3b87

    SHA256

    51ef237adfaf9056e85e153545477f1d827627b4e888ab582ee24bc7388c6207

    SHA512

    42c0e5b37a09b9b8d98e320905004b9f1200a74c7bbbcb9d6bd02ed0ae9240fb413c6b9ba8fb71bb9f0391f868b5ab825b63bf6693fd1be05dad748da27d49b1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    b46f924cd57014aa488210a89bf60523

    SHA1

    51a51e8417199336f4c7b16455da43ba647f9dbe

    SHA256

    fc4a1a01e5dccdd31058fb1fc21f312d842c9ef0e8a45016c006c00a180d7e55

    SHA512

    8b52eb0bd097e640c6f3a1b2aec5844b0f17aec1478aa2c18d9eeec56cf8aafd5d5db2b033c8e1e9173d295fa9965302400442eaaafd078a9a479d56527156b2

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    0ead4de0d7e525f9d4e85ca720ae9a82

    SHA1

    d80b94de714fbc417a539cc1bdbda21b64cb1f7a

    SHA256

    526ae1a4d2bb6f1d1e806b52492ab2ed9b1e70af97c5b096d0788d68eca593e6

    SHA512

    b82034c9dc3b4cc4f4b7bc6206e5778ea96e21a2253270305f1154b6a3c6c2e0412ca23e694a4fb44d4491218894ca2ee8b68a5a5f2bd39ebc553d8854f0df0f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    6edaa0b0b0602a62e0d231cbeb49defb

    SHA1

    79e257e9974052778403d91a1ec638e30d0f040c

    SHA256

    bd4df41e3e23ecfc5b4c15c192ad74d0f4e250e8277964507c6bb0f7cf1d1785

    SHA512

    c4e2db2c9097f7f4788dcb3996a84cf1e717372adcb30d22b36a1294411cd6ff126bbb9f80e4e877977ea07a754d41d7fed663302a92916ee0fdfc15de19062d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    4e3a1f808473c1daa095ef7224ec2e72

    SHA1

    8c09a61da9b1348041f3cdd434e86320222806e1

    SHA256

    52f61ea62337343dd9bbda2079040f9f8ce3633b36cbe723d39c1c77455a1483

    SHA512

    92e6c430943c836a266dc7753c0df71e2488957ab96a0268e73a92d6c6359d3ef907c75ca818aecbde63c7f6b21b770a0e41abaf4b39eea854498757d108b972

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    71658398f4e93beba371ffc45106aa45

    SHA1

    bb2c6976eba63d8be4e1b63ccb33921e56184dbb

    SHA256

    a619e42bd7e8d6dc03ad0d3ca23fc7b82aa258276c8096145d2968629a989260

    SHA512

    b06bfd23a49810914277cfa89bc3dd38f70ee9c87398af8a60a33638eecea37077f9aa11993ff26d0769f681584a844461391ba5a06a4d3f8b3d5df7508387bd

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    5a4455898392802b02e3e0dad4d88c1c

    SHA1

    0c5fc1825f98dffc143399e4ae072a03e1302ac7

    SHA256

    c2c20873af1e664de4c892b9776407629bc68f7833bf699cf84e973efea471b8

    SHA512

    d0c90d7ffda59f2a632d4699c1945fe0f8fe064f7350eff74d8db7b9af310450381e5f57a9c410cd28b9e610ccbedf27eae59deb1f973c3d8b3b93fc30c14ab0

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    5bb9fcaed1c7f43741e348efa5ae35aa

    SHA1

    31d65313b8f9bf8d20c4cd0101acb9a38d8f796e

    SHA256

    6fb21feaee8da500f5cd450cee1fed40ff28c4e2ef3347069dfc36d89efedccc

    SHA512

    a190b54386ec26265f82f8c41b426f08ba827494d8a772890f4799694582c8fe35fd8a4499eb33af70910f7ffc12a909ea99e7b9481d8af4a106c72873805ad0

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    07f0a8da40a0ed2d5427de96e231679e

    SHA1

    ec63b8e8f89bbfbb68cfa7e5318af3b12d3ac226

    SHA256

    f62a038d7c483d0da4c1df4accfee1b4618882df58361df743ab4d9611170175

    SHA512

    6161c4ec7be6b59ac5542554f84444d3a06e97f6a0ae3454fd594b0d0f7658da6fff62d84cb034b71c9ea4358723533831e51ea3882916aed3a59d4a8530da63

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    706201f50abacabdb47768de1b217263

    SHA1

    8ba9b67bc1f80c2f0a51a8420db403efc16a447a

    SHA256

    bfa4254143317be0d77e7f305e6c73ad8923117706e80bee686105f832f4b447

    SHA512

    3f244edce19af1e1806d5e8198b316908a0315e1d0ce807a52632b0fb8edc9d397341fa06f1bfd289afb8379fee810457bd1d290868c37362c978df5a23c7861

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    71242f9ac6acc836b83387641965d744

    SHA1

    0a8cc887b12c46e7b9385bc4ed9a85155496a6d3

    SHA256

    a8ce59407b4950f8a745112c08324215f152b8e01db4a7ccf5d8aa4036df5664

    SHA512

    aa470c854cf501c4ec15e259df766ff49516d6a449f47a3c15ab850dfb403074bb73b269c79c0fd9a74aff74c362f28d4e3ab9a22b137065cc27f30a7bb61b3c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    a1c2d8b001d293d3c3caad3af8a7d980

    SHA1

    ff7c5fbde4c83532272fce638c176da5eb676016

    SHA256

    775602d01df5435bd8b63baafb2215a3022da044b36b5626f374368b08762a54

    SHA512

    61f9a0eb6d7c6dc69c23a10f559829a49813a16b7e885673f791d38942f7ccf009c847e5e18fac01f53a2e59df302ef828704ab9f2a4315f9d30280df9735c7a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    6ecaeba37a7e0d33c6d5b395adba1d5c

    SHA1

    7fe2be8cab6bb6c1bed8305123f6994661650137

    SHA256

    60dd65ae1ac3f6913a909178c9bd75e112212746efe8abcde70d27eb17193347

    SHA512

    a0e4e04623ecde1691513f1f8eecd8465e1e6c254ee8cbf97a81d60502f0540c6ab18bc1663b7ca611ce1bdf0300a4883abb6469ab7870b588d9a7f4f8aedb2c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    04ef1bc26f5b98fee44fe6b89340f605

    SHA1

    cbd8eceb7de08b4f81d29261b091737bf64b2e31

    SHA256

    8bb76eee6f25c9eca950feaf0982f8abf1a1a633af2d0eeee94a2d66b8221c45

    SHA512

    45706f8102ca35e74be8a97135b0f2fb1f56e9f548c4a4cd470655325b37ae35796b21ce05487cfad27c48e37762ca1218c6ed3204c3220331bd742771b58b31

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    ae759c4823fe99744cdab8f6261d5e33

    SHA1

    fc6ad73198af29b36db2162e6bf40f423a1e42eb

    SHA256

    348c3ff0b5fdb5c16bf99f0beceda5e712b2e8d823eabc265a64c971620f3fe7

    SHA512

    80207f45db9806e8d7ff3380335e09071ed79c23c94ecccde4f9913412ba2008b2e276b8c43248e570c0b7633afde45aee83a4cd6ba894fef8011b68faeb6dce

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    cf0a657013c37b45c7927a7e97a52d07

    SHA1

    11db6b81944aeaf306ad1b3413fcb01eca619b3a

    SHA256

    3982794972c9709cc56df49ef24fe80de873fe49ba2a6747de2b87dd36f5b54e

    SHA512

    5166911d3c3b7ed277e7238f03e472479fcd07e18584c640a2f2c92ce08bd5423e8827709d7ba5c42ac6db618993659e2d0dd5118993bfe3d2b69c9eabbe42bd

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    6f474b13682071935cbd7b3046b9f340

    SHA1

    9bef7420798e87e64201c4b0c909a97dfc8b0ff5

    SHA256

    76bf61b90303916edf361f5a34d094f3caeeed0e20a8250d415f65009ce15b3d

    SHA512

    e41e7dd762147b1e1cfa6571c225f8bc7fadb4fddc2bf0b2191fcf9906f00bb5cc69eeb15fe458ba530755ce8bb1f037fc00558d1546ac9e1de6064ccde8c3e2

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    97cca9579fbf18ab84bb193a28fde1cc

    SHA1

    0a0a4502c58cd537d586a4e678cbeea620eaf7e8

    SHA256

    d82a9c3c61ab348f5c22b745b1dbf11bbd7bf2930cff11b57dda58855de06846

    SHA512

    e8532e6cf954b0bf7cfd3289adc7dce7558ba7d502bc0b6abd9d5b5ab196b5433cbfb3b6351a2e60799417aaa9a62f3741b06d196ed237cc1d6c35be79df90dd

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    3f58f9d155f952c461d8488dcfc9ba02

    SHA1

    91bae865814c2b794c634ccb86b4b60b23380e92

    SHA256

    a3f3adecca1d78111935d52fb7218be52e600c8382188983b2a6d8715322958d

    SHA512

    d9be40a811d341ea76901d911ef7a6d2544357e10e7a9dfb7f5521905a188c7f2149f139d0867d4fc95bda18f241b6433c5cf622f0dd1484f3d628b7d82b01f8

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabC536.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarC5D7.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit