Overview

overview

3

Static

static

1

fb90550743...8.html

windows7-x64

3

fb90550743...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    133s
  • max time network
    127s
  • platform
    windows7_x64
  • resource
    win7-20240903-en
  • resource tags

    arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
  • submitted
    28-09-2024 05:07

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    fb90550743b0f7e32a969fd8b5db2adf_JaffaCakes118.html

  • Size

    460KB

  • MD5

    fb90550743b0f7e32a969fd8b5db2adf

  • SHA1

    d8584a9ad7008dc42e40e85f16514af8cba27609

  • SHA256

    f28d1b803799769d2b261b6d1821d29c61d681bb67511d244f3dbf733317be38

  • SHA512

    0ee6b33588908bae090b5d193457731a3f4545cd9547ae4cead459afd9c23a2bf5c9ba2b1bd4dff8b89fcee40ed6730ef5651010a828d0f69a74d9a2f62a10ed

  • SSDEEP

    6144:SDsMYod+X3oI+YdwsMYod+X3oI+YYsMYod+X3oI+YLsMYod+X3oI+YQ:A5d+X365d+X3o5d+X315d+X3+

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\fb90550743b0f7e32a969fd8b5db2adf_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2584
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2584 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:1384

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    c718dcd3791af11d0cc8a8207e115e72

    SHA1

    f8cbf13ccf29a62320ea3a408ed49290e4e17820

    SHA256

    2e6485c11abca41eb6029b4df3f7784eae3e5665be4eda3edd7d273d7c9e0467

    SHA512

    0eddfd6f1b8938213cd4d620afd3e9bbc81b5989d48283c6a544e19b523c9ad594190ff4f38564ce3ddfbbf3d00e7b6906ac463a9bc9d5e3c81e82a17780f58a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    fc875da42d6854c1e4c087b35b50435d

    SHA1

    e804cccfb4e66050bc56ae9d9f78faf4f29a6c87

    SHA256

    2748ec7686bea6744f70fc8457cf62846f74208dce1e85021299626625a97424

    SHA512

    d5bc20744a8548d79dc5dc8b0d53acb1d8d06fb1ef90591ed7647ad49f423447e26b7a6dd85b1b63885d4c334f6e1b0953df37ba24fa07720738e5d0ba9684fc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    a5374211cfc261fab7a427baedba469c

    SHA1

    454779218bc231970d473d889b5aee94696cca96

    SHA256

    b34a847da391a0a12015a821599ad533ae848461713dc77eca391722f2cd4ccb

    SHA512

    a75c22a78c5e69604d61655f365c7e8d039a618ec764e59fa5406d400d72deb05e1588083c969b5f90888d365c808042c2f857bee91238b3cddf8bcb2ad362bb

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    b0fb9c2dbcbed51bd045d5d476cfd30d

    SHA1

    8f9545cbe286e3b67a947f005a90f52f36e4408b

    SHA256

    1eede1c1d3ceae74cb7296a440267a7c6ad1466966dafd2f4176a03eb8db5d30

    SHA512

    151c2c159fa23a85fc57fb304255320a8df1aabc8e690394b74ae3a384d83d90500d2e7e7111d41cbbb46c60f033900757534661d6984658098fc33f147afa9e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    3124529650e10c3732e6258d8da6367f

    SHA1

    6a7b152252428309fbda1cef38a39b2f3b9f473b

    SHA256

    67421314582ceb28096ed6a5827d0d13f30aa08f50c64211df32be35f8a2d8cb

    SHA512

    dc5932fd83068f063b8c41a7a5060f1a23f2daf576085dde86538b1afcea1c04e821cc6f36476b1cfb1a2aec2a2cda118683829ed585c7e6fb6e54f8d32483c8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    d5297b4d237d7bd29ff0b58811f8e1f7

    SHA1

    11f4989753d63b43c3d841e0111345e31419a41f

    SHA256

    6d22109d402d56d61f773676a35ec87bd40c65af18549c486e11ea5f094b7ee0

    SHA512

    3faf683e132421c215aadf5253b35cc65acf590e3d1606a7d4e18b126ac3436cc8577c0003c38e9e59641d1d2f6f28a69d5afebea3d30cf402867752533d893a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    fa07edbd665f3e439dba2db5313add52

    SHA1

    0c46d796541588bee95fcb5e00f5b37dfd3dee42

    SHA256

    4dbf74148a521a3c8af7078ab04410953c561453f29ffcf59656963f05c3e38a

    SHA512

    6629d8681625e3010569ad1a66c61057874d667f6ecbfd06b4417c9ca39a01b5eebbc1a85f8f2d8e3c9314966cf4f8bea22f2ddff019ed9dea3b80e4c085642e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    603c28d6e5463ed856edbeb7a75f98bd

    SHA1

    39f1981833cb84baf9333934a2aa6a3e01f59ed7

    SHA256

    4e26f94b560d439f2c36d773ac22a8b56977a571ba2326347d257edb5258332a

    SHA512

    f81263ace2f891b9feed4f5a0ed83829aec1f67ac1b5d006e41282c7127665a5c70bc03d0a8f46be196729c1a31a48333b79c73d2a2183ae763044ebaaab9e69

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    4a1bf782f036320a71bae224acfbdeda

    SHA1

    df8da8f4681384e196f05242199d845767e7d001

    SHA256

    170dc4f8c5548c528d6899650abaad0865bd3f40943efe1bc506dc78ff44040c

    SHA512

    f85d7595a0865b19d5d926b1b0ae2a789bafb0f628ec5b99b848917aeb6fd9a40b52c552d011a790e9e4c1d273bf79513a8e5a71cdd80dc54bdb5bc4d75a55e4

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    cb6e131af3346b149a8acaa1927282c8

    SHA1

    16aaaf78544074e0e0ac794d6982e704755425cb

    SHA256

    c309f79bba410c706cfd151b72987e39a01d89450882529b7cc46d6aa20e0759

    SHA512

    b15fb894bed963a8490e4308a5beab77c53e47ba0f47aea2bc854202e5699e8d98e3e69984dd8c6d87ab0683d9231caedbbd37209fd6e826ec89c9d9c099d394

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    76e6be3425e57838bf519a856caf3ad1

    SHA1

    5fefe58420ed1686e653db0339b4c7415ce272dc

    SHA256

    e32374e98efa14deade15bad3277e765517fc1ad11fc91c01bcb6b8bce645bdd

    SHA512

    1d1f2a6ee18b95ee02f1ea8605fced070b192227ea2e5dc1d0c00b396c1d493d702a73c347f5047209b19a31dec2b1efa35d6130a64c14ba774213307ef8bd06

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    d960eb0fe94f35b25daa280424ecedfd

    SHA1

    a2f68c71efc57604fbdbb2399b4748c454748924

    SHA256

    05c368859080ecfec41e8e8409ab50ce0d37651f0ffc6c876867268d8082c655

    SHA512

    aeb7824eef710b6b99d8c058e25c7c31caf4f94dc344fb596289aec64ab5e34d06d585ddda758895f727ab05c1df8831df3ccabfc0c1378dd54df15d4b6e8c8c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    cbc4a66baf95edf232ab226a4b783957

    SHA1

    77004bfa270f251e1907df3b61c002b3fed5b6f0

    SHA256

    1a1b40eaa4b7a07f5086dc20328f8992f71a969fa23152a7ea6155530c6952c5

    SHA512

    410f0e58342b21e2cff854264d196facf66841f231492f720cbe0d96b9427b904e3071db61d9ddd73c9069d65cd3eee856665b49bfb5af8198116e1fae1aa4d5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    abefdf4f163a2aa1cd6d9882749ed0b5

    SHA1

    adde86757226cfbfd6dcefbffb25c71fb69a196f

    SHA256

    13829becab0394c3c6c457b79d22d8e4325fa3a1c6314db7a304ddac4da7fc0f

    SHA512

    cd990b84bdda5246bdf800f8f0663adf88b353e65c69badf6b0a5be1953accb937ba7b288367d362d9c2ab5c739536467a0f9cfb5ca9a35fa79b8a0688631676

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    1af9c6ebd5fe9048202014cfa96e1ee6

    SHA1

    01dc5311101303b2b9432bf5c95ce730a9ab83f2

    SHA256

    adbabf6b61ae57ecde1cee006eff6859e1c1e8566d46043c9892193b75284589

    SHA512

    482f1cc402a62c39b3fd5c9cbbdeff0f5c7069b9e679ac5556e76140329b730ee5b2327779e8c8ce410ddf28599a98d5ee14c9fa0ebee01709377bb59ebf14b9

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    afc3087eedbb071a1f5cf12876986f29

    SHA1

    6c091bf4b735e80eb483534d3b322de9c0ae4d44

    SHA256

    d1c9eccdfe886816d27844b4a155b864616d84dd5d2450334202fc215b2c4953

    SHA512

    65492bca41ae01d97ac7c40879f9f56fe21dcf03c3691f490136611a163d0d375f6bd16b838a15b6961664d75d289ccfc8f3a97e63c92fb52a19d91639694773

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    b52b21bf9ac6f18f6e1f35ed03bcb504

    SHA1

    de962fae489da08b21d098d3980068f96b77ba55

    SHA256

    7daff77d5a389c9f1a388af8a020db377152a7bdf1b475ef9bf45ed48ca4a096

    SHA512

    b7f84763ec73b300781138f47cb8b258a266a8a4398b91d5f137e01284863daca7d6c8e47f37fe070f283a795623c85bba6526b9112807f37aa987367c7ef50b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    73f9ce3583a3ce3f8f9501985dd62fc2

    SHA1

    76524b24d4ff304c0264471b946f523493d38c7e

    SHA256

    c7e4e4bfc9c8281dfbd408dde9c751a831a0cb08a2c924ce93022d7d2b3a594b

    SHA512

    b93a7ed1e389d75178ee950373f22e1443c4591c1ec9160f255bda4a7da6d704764256b67c35ef7fd7d8c12cf33f0ef11195654b8d01b7b6eaef414bb26473b4

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabF430.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarF4D0.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit