Overview

overview

3

Static

static

1

fa7d2ee702...8.html

windows7-x64

3

fa7d2ee702...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    133s
  • max time network
    127s
  • platform
    windows7_x64
  • resource
    win7-20240708-en
  • resource tags

    arch:x64arch:x86image:win7-20240708-enlocale:en-usos:windows7-x64system
  • submitted
    27/09/2024, 13:30

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    fa7d2ee7025696cfd114eff293a5892f_JaffaCakes118.html

  • Size

    128KB

  • MD5

    fa7d2ee7025696cfd114eff293a5892f

  • SHA1

    6bf03035e97a9c82e70055e497b2e4855c718e20

  • SHA256

    feb9181e2b169d1c951c276a5036c300da5218199a300b4786b75b6e97290885

  • SHA512

    9bad9823c4e0806593578d1f9e8782c8d4d21516d832298cbe6f0c4731f352adc477cf83219b77d51717b7d8a33b0eadf88afb0600eb9ccf24bb769629b02599

  • SSDEEP

    1536:SZU6gkwJCBG+c+JYxTOGiRxYyCQR6LO2KURKlcNchR40J1iPlNWSKyLi+rffMxqN:Sl5yfkMY+BES09JXAnyrZalI+YQ

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 41 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\fa7d2ee7025696cfd114eff293a5892f_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2860
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2860 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2700

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          f27a7bc4851418986695357d61adb0c4

          SHA1

          b51c4719fafb1e9f80a4f5a1c928184f523360a2

          SHA256

          0f10b0bf70d8b66deb970bb6b63fdfa0f52b761a97c7712b0f7d8c1bf5311b87

          SHA512

          1f1b20fd7d9a8d772908966755e72d45e7605f24433a6a7e6af1b924a6a22e45f42cf66dca1e1cdd1035c6700dd71dab50b9ae6742710e39661a90010517ca46

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          9a099415b2d9691d3bc98030122fe4f8

          SHA1

          04815dc5c4e5bdc4897628c4ef66cb00e8f7fb1f

          SHA256

          18104f61c4e379ca9647cd76e3c0d41260ceb1985a5e2da9b998a1dc9ad1f8d0

          SHA512

          76412d2650b8e23a8329138d64390e0285b6697015c030bd703ea5497d2ecf57fe3b5c80b942eb73bdcf1788d00b7f722dd30030ebedb2fc7aa5fcf11aad4a14

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          1698cd84f6f14c5e1178bb283dcaa755

          SHA1

          f34b9d3b7ce618792256f6eab3430f1f87eed99b

          SHA256

          8e11d540f09838a0779ec072893c7db07ea31356bbc6268ca4d7930d9fc8683c

          SHA512

          a71eb890d5ad6da206af54935c034b1ee9dd209c083093bd07b799e8abdaf38bbfb806de6525f751c784fbe51856cd14e1fa239584239793c3cc5ee5cb3317f0

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          c8a601f3606a616d083603da18758dfc

          SHA1

          512625e5bd2c8a29f7d06e8521362876b361f80c

          SHA256

          c637c4f483c7c1e4a3eb3764e9df1729d8dd654bb75b945de1749882ba5044fc

          SHA512

          3acbe86aa18b7d36dc19af3c0907dbbc303cff621eabd069e14b3d4d8f5e7d11ff051dc9cd231909e44c773feb524407fde83d74b8c02fcf45305ba955146245

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          725f54c6583cd6dfbc3761079be2561d

          SHA1

          3be2d3f2e33d5db12f41dcf4c482e27e71f8c82a

          SHA256

          2e4212a3ae354be61fbb725d6066d89deeeaff69f2378268d5a0c2c42806341f

          SHA512

          d8d91dcf9b175565f08d8ba654bf77e4ea5293aa077285828689ad1902c716f2e8277eb437cbf0fa1143f37953181cfee85eb5dc07fdd0a528d82cb4e35090e0

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          bf88777f68ab741cb9dfee71ba2a33f9

          SHA1

          9cc513c1f7b4516207b4688d7c6f20193a04db38

          SHA256

          b997b3389fd014331a415410a963efa88891e288d0bd14bcaa07bc879a3395db

          SHA512

          f1129795a6b616dbcd823e0dc022a1e103b2e0cf6f310b559ad3f60e42eef1e31a26ab2985f6098b25b15eeabf1165ff74ce72fefb3c15bf71df6aee77cbf640

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          acb845f2573d5805a59e6ce862d99310

          SHA1

          7d8fd75172acbd4633cd8fe2387bd9dd08f4a35c

          SHA256

          203429e36b142e82266073986fb792335f26ae79060e77dc50669bd3d2a6d539

          SHA512

          044c3de003ec254dd727907889890dffb53baa8e0f1aab1a41ea11f0c27fa55cb93b52ab850e3152fbc08b1d28a74fabe379f800d185d0126b0b5cee32790d9a

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          9f24fcfcd05e75a1606f5115e1230314

          SHA1

          b6b61abe12f9ef9b602a012bbc3e12a6115f374a

          SHA256

          5c35f3448001f39a5e8e325f050a61f06b1b2d8883b8a00735d3e7a23df671d2

          SHA512

          6714f491bcc457ba86d74276abdd142e740bd8a32e19f9a08acd6ca87db70fd00245ed28bc60040aa1dc357552e520c457db48aad070ec4840077e9cf07a1f12

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          3b84fd4ca556aa4345ac5973a08d8ac0

          SHA1

          a7be667cbd9b99bf2b7ed8a8a33741141aca2d78

          SHA256

          61cc91929b9085b89a18e9984d9489c06e051ca038b1dee35506fe28c77c6918

          SHA512

          a6dcf35e4e203cc10b3ab0a05316c4d1c5fdbe827150e843064f9b219fb0e14e96b4fcd2a914ebee32683230a4a9c709bc2c17edc98ccf241c10ae6454ba2d76

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          30047a74006ba645e84af7380c6cf2ae

          SHA1

          1d015005223419fc1ae0ada4cd984a7f0bd39b5d

          SHA256

          5b96f7b4fdf8fb19500be381c5f0ff3fa23e7231a6d7e2afc7ca27a3e90d640e

          SHA512

          67f3f052c9a2f8788896ec4d7c824f089f0ff08e97ad5461081d6e4af564061dd1ee624f8bf3175cdf42dbd432cd9004133f468b71dec3aa33f547e9b8af7399

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          ae86341cd1e670d817cd88be020123f7

          SHA1

          fc32508800d15fbf23a4fdb69dc2ce502add1a0c

          SHA256

          93d4467893202a33bf028b1fe25d1d84dd4f31fb00e4c009342c792cea790374

          SHA512

          372be190f84181b5a4c5fe487d3c9ea5a1680ea54d6fcfac037359e9ebb9858f91f3508aaa7697b90c1825dac00cd52fe96ca19576f7446c74fdc8e364a40b61

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          03290a615518c012eca6c300e1577006

          SHA1

          6bd5b2beee001b0af0f954fe436121e7c531a61a

          SHA256

          ba7a4a53a6f743d4ffb09e8816c24a29f1530a23f66af96a248301a90da4ab7f

          SHA512

          6621237943d61d3f0f26e4f1943ee2a1bfe369605a8c7f74d3715ac0cf0bac55638c526b963083ec170ea633a58686deb8d3b4b3bba3f44e747294bde33a2871

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          12727c538f31c3726c90504e1fb50ed5

          SHA1

          c531dd32bb7683fb79b3857099fc4a340561e2c2

          SHA256

          14ab84609b955641e500856f73c341b74a911c8eee199628138894e4ef579c44

          SHA512

          b82b6c0302cdb2241de37f6e5965ad0059fc1e6c6690e1b94b0f37ac1d650520f1d8540d8208e4d23509fb12a9ef9d7c553df1b09ff5ef5fe825912cda0608eb

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          8b44c7879e7ecd50a146cf9dfd825f39

          SHA1

          3308039e7fd14cae1449571606b115327bf01bc2

          SHA256

          0c58ddfd5fb14f892c6e6469591f70c024f6b169bf960d23c5ede996b6a9c455

          SHA512

          25dd7cd02d7b3f670404e7a0dfec21633e7a29667937318eba8ac8ab0199123437eef0610d05c47de19ba19abd10a54f58a583417d3c1bcc77153e7117e6f84f

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          ad5e8572d39e66e6f05f3a291978eaa3

          SHA1

          d678530426633d48af11078038969f92411a934b

          SHA256

          02b512f0ca605b502bfeb1da76e539a23d973f536ead4125237b7f38528e9d49

          SHA512

          002b54fd61300483c2c44bbb8c687edca7984714eaa2065b7636d1c6f0471de47cd2ee5565c49409b01fb0746446229030872532c298a015ca5104d73e855336

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          c34c3e954619348d6295935852a889ef

          SHA1

          9dc940ca39fa1add27ddae70b3801e4c692c2d3c

          SHA256

          0e6193a22964ceb1d8db866492684f926488f69db0b3f11e06ae98761d093390

          SHA512

          294aca8cca871fa8b8cf9f522b13f7544ebca5b07f11527d888c523787482e3a69fb97dcba59e3abc34883e551970423bf80c9062621d66bea182a35a735a69e

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          05ce06b8fe7424434267a3623422acb5

          SHA1

          4985aaec35589412f59ea85098e4b7d4f08afe3a

          SHA256

          2c598bdcabbffe976764269838b0ade024057a32159d42b9ef0e06aeb613f3cb

          SHA512

          c66bd63768fb06b8ba2fb990e4735b2486bff5a9f8aeeda9cec0e7c286e08ef488e05aab004e789bcf54bca9a2f1e9511c918fff31566fe4e7dcb1ce381d789d

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          f23cf27830d72ac80b9ca23dca5deed9

          SHA1

          0133c805b2662df7c559af6bd9d73ce164fd1cf0

          SHA256

          227cef71eb972e27568067eac00aa087ea8a86e0a84c548a00d079a5413559bf

          SHA512

          62593b7e1d745bc516be0b5dfb61506b1bb480ac122f291462c5c750ace915e1f2ee191aa96f88c0307179c078ee36994b5850cebc4f424852e26525a4f356bd

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          ea9eda3f8da32e6202b37570777614ac

          SHA1

          1141ffeb879d32a022bd430cfe7c4dcd7dd1a191

          SHA256

          8e619075141de5f2404a5266b6da9ffda42a7aa7cf98d1a0975c22d33333a476

          SHA512

          100c317cbe1865e6111d3a419c8f52adbbadcfff61cebe51a0dca3ff3b7e04f40a39b980acfaf52388fd9502184ea0339f79788df6666eaf079a4a2b548b40e6

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\CabF789.tmp
          Filesize

          70KB

          MD5

          49aebf8cbd62d92ac215b2923fb1b9f5

          SHA1

          1723be06719828dda65ad804298d0431f6aff976

          SHA256

          b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

          SHA512

          bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\TarF82A.tmp
          Filesize

          181KB

          MD5

          4ea6026cf93ec6338144661bf1202cd1

          SHA1

          a1dec9044f750ad887935a01430bf49322fbdcb7

          SHA256

          8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

          SHA512

          6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

          Download Submit