Overview

overview

3

Static

static

1

fa81e1cfc1...8.html

windows7-x64

3

fa81e1cfc1...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    134s
  • max time network
    127s
  • platform
    windows7_x64
  • resource
    win7-20240903-en
  • resource tags

    arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
  • submitted
    27/09/2024, 13:43

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    fa81e1cfc1a5d4e5422ee852da94d160_JaffaCakes118.html

  • Size

    213KB

  • MD5

    fa81e1cfc1a5d4e5422ee852da94d160

  • SHA1

    f77fa37eaee9b45ae4c4f096e6bb2a5e5142ed96

  • SHA256

    62ad3611724efb622f6623e99a3ec80ae6c41af44e906e0b4bd3fe5c9ba6c6c4

  • SHA512

    fe2ff9baf475c839404be3ff0c0264088bbab1d08708c242b3322c1bff3c6e3c3a6ad73e183076fa5651fa7c459345c5612c970d178de182237343a11a5039a3

  • SSDEEP

    3072:+rhB9CyHxX7Be7iAvtLPbAwuBNKifXTJo:Gz9VxLY7iAVLTBQJlo

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 41 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\fa81e1cfc1a5d4e5422ee852da94d160_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2028
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2028 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2332

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          d6896d10a0b8844c04a03d8d55e15f6f

          SHA1

          e337c430da55a2add3ac667cea22efa3789528fa

          SHA256

          f5ee2abc6bc1fc63769c9446db2cc0443807e5764379060e9b95c99848021752

          SHA512

          d78c753c95ab426a984c01d4293fcc14fe3d78234de60b3d9124c709096a7b313335a05cd8a35640e8abe686ffd7f3d3210936f88cca3e33cd34b1aab45d85fd

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          7f1faa8ca3bcb09be4a8973ef4f7a4c7

          SHA1

          376e7fe059ba1878f32e1fa85e756f1dd1302295

          SHA256

          040ccbb0ecbce5f18bc160eaad7e7527ad36b7c54749a46ddcbe6f1738d453ee

          SHA512

          0c3c7a5df4703b4a3e31cd9b87ab8d58c2446af8d8d1d3c3fc4d6570cf675828888756f9fb017ca4e0a91bd52496259f2f32ecaa9ef075734ee58c4d81bf869f

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          7c9e928f014a7296d7211405ac095b93

          SHA1

          602ea9fa30990f3dc86e939ed0d5f95a95d9d3a9

          SHA256

          49187ffbf5447743394ed786cc61dfb75347059aab74bbbbd60ea43ab7172751

          SHA512

          8ca1830870ed839d33e1f443052e133474ea731ff086d655e677efd1074017862aadb29c8a2d29aff02955c2a3635cb3d56d56bd5390758758e653ccfc1a1f4a

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          c5e7bd6b6743192f16854df8e1a8636c

          SHA1

          9fc665c385e9212fc7dc9d3ada38029017f8746a

          SHA256

          6d239363fbe289b9b2533fc9701fd8395f278956f1623ddc249ff83f0512e375

          SHA512

          d58bfa16e6b74a8bb4e5fc2d9065cb47e2078f8df378a66fe7b759da2e2881b85e1a023bcd8a1322b58134347a39e9469baa7ab13c37542a2a77b4ea34d419de

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          959f2a2b73fc37f1871d5427eb13f040

          SHA1

          bbe9d3d1f66ce751e9b57523519e0f6a5fcbce81

          SHA256

          e292b296dacf5413ee5dd17b600933ee69093cf25e33410a9c42a916885ee8a3

          SHA512

          d2a614d9161fa567bcc65997c9b58f2f84d0271674325688c1eb282a721d6f468a6ddb4c0f1678317a06a7d4466966dacbbfd2282e9d820f7b445ef23a2a90a0

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          73a0f90670132ab29e8cd75501820a2b

          SHA1

          aeee3f5c52b102f9c4dea27331a6e3e241314202

          SHA256

          5754f577fc5a48e15c78f9aa70c6c09d7942ebf72953588d3a216e7c4d675a35

          SHA512

          11793a585c0f5e486a050508e9f024eca1ec95a8deebffb3b22d11c250e367bf3db25e939abad219d56fdb8ae92f73d4ec46ecfe10d499699a9599509b208665

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          86a260e69caefe389d32107589eacc5a

          SHA1

          a22814446e06b1bf50703a7b1f00e50eff1076d4

          SHA256

          35fcb6bfac5c1216d8d61da868e8d861dac9b1aeddeb0535b137d0fcc58ece5a

          SHA512

          e1c2dca313c91054b547cbcef5c7f6bbd46dfe977aded732e9e2aa1355d336833c3b66e46a8681437b86fd9e38ea6c1f50c2940164008507ef0ee8bc44820f99

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          8b9f3ad008f8b6b4fe782be3632bbc9e

          SHA1

          74fea1870ae9884178977cacd5362a482d17b4f1

          SHA256

          2b7f86245bb15ed0fb655560300f465ab727efe1a2e54d039d05205559682cc1

          SHA512

          c6e569f0a231802280cc47517c306e36c9e10837c39952b5174b2e7ed7e2a235deb75f4f3966aae09c61c63d86ba506a4a05bda6280c2aff2e97775f7e2cb319

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          6e14cf1aa9a8f4ab8cca30f8c9ccd6e1

          SHA1

          fb5d13d4c451fc6eefc1bcf3d64a2ec65f98e1df

          SHA256

          5eeab4bea870533a4a07cedfa0f15c27e053fd4a652258efd6721ca5b00c11bf

          SHA512

          dd103aaa7fa56243f3c8047da640c153ecc8aac4b6f72bec6523e314d967bf0cd7eef26aa46066fd181019a26227e4a1da275939849c294c77f5574de7b7447e

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          905c3b474122c73e43a8cac23faf3d73

          SHA1

          1603c863a8895c69712d125d63e40d36b6f027ce

          SHA256

          93c5d9d666697fbbcf8a8dd6254984f1d87bd606badf6c200b72451304a1e1ba

          SHA512

          62a7fc38b684b610f36273c74d2a13c500ad55f88d5e933d690a02a2d331eae6974e52474eaa27e522d40d15c40f334623dfff44e5c8f064e33179b4195ddb93

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          a0c95844db146d25adb024126915a0ce

          SHA1

          99f7daa85579c54018b96fb1e93fd6097240bab7

          SHA256

          6472ea65a6ba4fd341cfa246c95f7e33df48eab280a1eb603606c27936d7aff4

          SHA512

          a6e8b501b93f4972f851e4ba5e1a51fbc15f3307d9a00ef8a7e3d12858084b534d7e4c8e6bd9e762fb342546a26ad352c5276007e32d28021af7d37895f33341

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          f3fb0c311e09a3c8d12dd7eecd75635a

          SHA1

          9c4ae395365a48690581f289210a0fe09ec6f2b5

          SHA256

          a58dd21dac2eccc059886021bee7c9ee9f17142680a0a36671ac4b32c99bf6f1

          SHA512

          906ffbdfb9dc5cd042b562a498277aa515418740a1fbe515932d5fcfced59057f0f7dc4dc423e6a9fb535debc7edb74dcd90b90ef79de765e18886ab1f40f615

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          170fed2831b9f459f54bd17e14519260

          SHA1

          1578ef8494e75a24530e0a680fe2ee98f6946942

          SHA256

          0aa186af17394fd7687e68a1591386b21ed3d1b1c759495a64d69dd7b9fdc2b3

          SHA512

          22c23e3a716fd103eab2e2c86203e0bab2374630f264023fdd2bf3ece075984aff0d1189f22cc59b2df52c264f8a0c9a3ff76fd72dfa4203849ce9c64e58e49c

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          185a36195d6e4d710133a3b1bea545a4

          SHA1

          ba20b05b87e1fa2753d9dee1d7b7f2d6f084f852

          SHA256

          46b64f8d643aff6aa0e477cfb2b01cf2b0960a7ba7d88535e1abcdc11a381175

          SHA512

          e757740838ae7478f67a8b07b0b8aa07b0ccedb2fcbe463cb9d5c0cbae37f1a4b683924c9f254ba6274f4baeeea66ab8469c3448dbab5a63da02ab2882d74273

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          3791fcea77cc0d64e747107aa3bc3c95

          SHA1

          e1d907daee67aad060f05e3572562882ce91f052

          SHA256

          4e0674e9b4b8b1e507519565aacb3ee8fdb82e007811394a49190ef9a8ce8e34

          SHA512

          fba2f42e36a31d23cf8c7d5465e8ec7417c3b3a12c2dc37f83d74e44d6c58d007ca859e331dc9e66e714c8b318879a1ec194a7e88e11b7c89025b6b997ed8650

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          861ac0987ee123be1194b30f198c23fa

          SHA1

          f20a042f4e2ad9b0def4cc73eda6bdcd922a125d

          SHA256

          e9e8d9708278d1862c2e94c45ce63e74607cac82727d524b755b5dea2580e679

          SHA512

          3875ecf2fa8a07d73747e7969577bffe3d358545d03ba11c6142e9ca49b6b9c122c4666293996072a3ad92bbc958baddb2138c4d0cc4b28c34ba49c3491c53bf

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          60e49b5d1f0ca700e93a865d48b6a614

          SHA1

          bff88e42bf9066701ed708e4feed7913cfcb4f98

          SHA256

          df877966c1e82a9454a996b17ab449887cfdedca05b44e3667b26c4a3f79a11f

          SHA512

          4c343955edbb0549f4f97c8cb307d64b3faafe6425a0dd013bb8d22de8027252aaf2036d71c1201b26d6373b8840e403f08349a7f05befb0aa5a6da0b913ecee

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          cf4c25a232d5b47bbfc4e90be3d55d9b

          SHA1

          2f83e28bbb9be2a19cf64aeb163cef7a3da75319

          SHA256

          6356830e5fac4fd2618aa418f0138387068b24ef2d2c55e84ab254b1eb81b707

          SHA512

          7753378920299ef947a99a152a0c9637cc53ffbdb3f529b759f33a5630cd6abb028e011f37318143d96f965a7fb0372653fe5c478da8fc1abfc99e90540e48eb

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          0c2b6801db31e2b3cfc2e3ed4ec84b77

          SHA1

          a9bb4700090b376529841a63797dc279ff54cb62

          SHA256

          3be37b0240bc29c47ddaf59789605f89ba9e4d9a8fd0a331872d23d9a7107219

          SHA512

          aacd68a4c58cd6cabfea490d9b69f7ed9bc4635fcf7c57c4362fe2d8eb68c585f862512d79361ffbe698f1072160eea62bec7437b3cad83602632559f4c08056

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\CabEED3.tmp
          Filesize

          70KB

          MD5

          49aebf8cbd62d92ac215b2923fb1b9f5

          SHA1

          1723be06719828dda65ad804298d0431f6aff976

          SHA256

          b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

          SHA512

          bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\TarEF74.tmp
          Filesize

          181KB

          MD5

          4ea6026cf93ec6338144661bf1202cd1

          SHA1

          a1dec9044f750ad887935a01430bf49322fbdcb7

          SHA256

          8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

          SHA512

          6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

          Download Submit