Overview

overview

3

Static

static

1

fcf4056584...8.html

windows7-x64

3

fcf4056584...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    133s
  • max time network
    126s
  • platform
    windows7_x64
  • resource
    win7-20240903-en
  • resource tags

    arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
  • submitted
    28/09/2024, 19:04

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    fcf4056584a6d6dee4199e8638a79032_JaffaCakes118.html

  • Size

    27KB

  • MD5

    fcf4056584a6d6dee4199e8638a79032

  • SHA1

    9a9d784f470ed802b27934633fd15bf9d316c43a

  • SHA256

    257a9a7a5a46bdcba92ad12ab2bd4ac00191f0c18da81a0082b91b1fe6e6b0d3

  • SHA512

    98cb84e15665fe69e3a7a69718e2995a631d5be3753c684dd7e063948ba7355a54b4b791955a65962f60a63c9414e31dac95308b5fb55fe467ea0ce0bc26156d

  • SSDEEP

    192:uwzgb5nqWnQjxn5Q/VnQiegNnAjnQOkEntnTnQTbnBnQ9e+Im6uLOaEtOKv+Ql7Q:rQ/6b3wAOaEhS63A

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 41 IoCs
    adwarespyware
  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\fcf4056584a6d6dee4199e8638a79032_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1628
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1628 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious behavior: GetForegroundWindowSpam
      • Suspicious use of SetWindowsHookEx
      PID:3048

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    9c8802ab0dcc74baff4396746ffe845f

    SHA1

    985668554e00bff4f9051f9d2e8fb205373fcf69

    SHA256

    6c09c604fa6e9a6db04a89f1a9eddd12b5e10632538fc829acc58a8e244c49e2

    SHA512

    70c029ac61db0257c365efead3aaf0945b7e6eac644a1eaac444f2741871d0f6bf15cc733204430dc6514be455eb4417857b4f096b8bc7088e851f168838e396

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    4bfc93ed2ddce7bc8dec12e7f64a62b7

    SHA1

    93ba2766c9d770b7e99af4a1a69658173acc1627

    SHA256

    1a30e82f7d8d0c4c4aea788a10a986b916d3aa3c443e554d75ba7761d382107d

    SHA512

    239f0114de7cb702edf74ab5c0f8c39a59a953c985d9e743baa708a262bc9f62607c31493e78a735319a0c3db4038761a1514b19496d3be0200b426bbcc56f82

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    70e901f9c3d99349e845a8dec2585a14

    SHA1

    6d18803cca2331a4e301ca060891292114c664ce

    SHA256

    0df78bcfd4acf143ac73416e8591cd96a571ae901ff26ef8a87aa2ae96d61e57

    SHA512

    523a9ec1dfb0f6c40bed8ff7faa445df0e0516c88ebdafb23ae353623b002dc84883ef886c4f54c3c51fe99b8462b4514be8e2b067cf6d46a6bb9bb0d7a06816

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    59fb69d2008823daebc752fc519f9920

    SHA1

    d9022ff38756f11b6c6e94f4c5fdfb4f17369943

    SHA256

    0f321dabc4bab3a8d60a7bf9fef33b2c7992e776770ef40d9435303bcfa2527c

    SHA512

    7dc3d02a483a7419d43e8d0e290e89e62e3642038a0ce0de6bd3c775b939c1446b2fda3b3f720793b3cfd3e7280b58b074d52859ab54285eff3eddbd7434bb29

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    f512c9a14bbbbc0fc81ae48550bde95c

    SHA1

    2d684ce866eb702ddd73c8cfcb38a771539e7ad3

    SHA256

    59ebb098199890f2e6635cbebde525c25b141d8ee05ab9bee9d4811ee67f84ab

    SHA512

    73efdc1a87a26d571a0d32a9f914fa77d156bf77bf903783b54660c88d2dc7ecc2550d0a7c6fcfd94d4df3f76f8601d3a988676063deb56ce9790343003ec8a8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    2cb50060897f556957060178c1171797

    SHA1

    ae60483577d68bf5f8482e543baa8ac812cb0168

    SHA256

    92d2c0425e856899a423da0988ecbd5947cdb2e94ea1e4c58bc080964fb22efa

    SHA512

    a0bcc20887ca98dc7b115f93136c6594ef865261cf7f4f98a4711a2244da5ca0803a7bec11a231577f5263d181145e589855d5e6679b84448bdaea0b14bbed38

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    dc99e8b11f90367281b9ea228a3cc533

    SHA1

    50abbbe78a3d6578a2d4bfc2a2a115a091c290b9

    SHA256

    954e793cdd286b5f009cfec7fc8b94a365556b7e6f764c0d1361d5a5bd760ba1

    SHA512

    95547f6bd091047c0ce177283b25b5e0cca967bc4fd0cc358247c02ba3b3491f2d2b0dcf6413c9ff250f6af66384c0e32b0696b55f14899ba57c9d74b71c13e8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    a8c0063c27e9a5ecf0a0fce63913cee2

    SHA1

    c8e0e0216fdc92ed73d08f18d1c5dbbabb5ece38

    SHA256

    0ea942284b445c2f7e3e79a3574e8a8cd2c9e98442c04f66a04287e90b094917

    SHA512

    1e357b703b35ee14d5ad6615cab2d48a3f4006cd628b865261e357280729648c5883f4a2a9004b1bc14f293152d1dbd564f90ff853ae988768a4832457f166f9

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    f5a009617ff26f3d6623c291dbaae750

    SHA1

    9b9e187f38c34df287888962a8dc367377c3278e

    SHA256

    fd58de2a9183d4b6e38cc96cf080066c7d501206605e9c76a22f10d7dd6f120e

    SHA512

    4c5c41de65360d02b7e8358d6278d1c30640f890efd27be327bfc5ec000fea2ea65b0a7d7f21a6a1e10e0173c9853d0dfcb0a6bf03fbc3f355e3036a24d8fd67

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    0921291cfd0a8475a20e953a1e0cabe5

    SHA1

    de445d495618c7443be1afedceeaf5243cfbe680

    SHA256

    57fc57d636ce44f3caae2c89f8a3a853c97e6edbd21f7f2d20777a0517b3f4ee

    SHA512

    de28884476bf5547b09ce41bd7ecacb8509e8941ebe0511ceb646995d1d9dbc22c9e282d8ef373b72140986fd9b4df6a726a21a6a99a109b3928b7c76f411e10

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    c50c00fb5cc6192e430e737786954f60

    SHA1

    60d0c13b6407e96876419fb1c3a8ac6d80044026

    SHA256

    eda1be4aaa1db3df474b151dcc026e0b5b9ae096c5724f36a75f4f839e65cb77

    SHA512

    254452fb708278a2c98ff94c1775b99ba425297ccc45329df175cb0d867b8ae8b7d5f185d89e2a4ceb1e23540491ac46a7b0a3f80e175d70a6ef207eb361c664

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    080f1e93f5ba2b3cdd3ee1caf47ce2d4

    SHA1

    f58d8aebb31c55d713561f3bd19ea6ffa61de674

    SHA256

    2d458ae6742e6681e7b2cc2e7c8bdad117c6f21a08bec6e7a892ecbc426a5f6a

    SHA512

    89c4f5467545611cea7db65f61a0fc414f8f03e7798e619dcff9954269ef335d1706947aff366314248635bf3665c193a115bca397e9a0ae7f390e8f1ef4225a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    6a881c88cabb7dac3afabd0da6414715

    SHA1

    7918bc4a9bf81c10bad670088df0f4a38f10de8a

    SHA256

    692e0254eafcc10b1b19f9bf36a0820657a77df9cc25632c7a087ba875b0c9cd

    SHA512

    30a5593969c31b9db775f6d96776987adf66058684c22e173a17c72f2d9176fb72aecd7c65eeb70b632c5352562eda46f1ad7c0e846dca5e19e6e4ca021c4762

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    7eab68ab818bc5e636fa87182d6808b9

    SHA1

    1f9277ee1aaee83ada5deb617976a76721282742

    SHA256

    dbf46237e796b8e2a76ab4f09164834416d556cfe75b1374c3bd42c542e1218c

    SHA512

    0d95176c0c327fd0e157fd717f62989ce41fc1f3acbd6bab410af7775127773a120ef42dca3bf49dbd05f1c9f71e8e44581f1f72f3cef8ded5ceb5d06837c8c5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    0fcfa5f2ca9718ee3e70884bb473599e

    SHA1

    e01e563dd7f340b153cb079f5492095822424aca

    SHA256

    77457d84c87074a86774500dfd9b57d835efcc441625189e04248f47fb4b6389

    SHA512

    23539c646003b954ca12b9f7e419aebb89c3d9890ad09a71e9869661e94a3829b1435640bf0d6d482312ff4d061acd355ef1295e86e0a53dea7737a12d18df5c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    114609395eafa65148962103b76cc18d

    SHA1

    ca022372943f74b25702c140d31dcb0cb2fadd44

    SHA256

    5abacda176a6080756e28a49d4ac298bfc14e3c5e70f5a55db008d6356e791c4

    SHA512

    69fd7db25fbee6e00e7f5708314a5ebf7a6f620760ad2ccdd247503bdecb0322bacb58c44e2943b167573cf0eaf8bf88a474a4e726b20918a621a6dbf23e241e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    506a8137525327cffb139d98440961cf

    SHA1

    adcd354d5f7779cad599b9ec3ce7beb5191cd659

    SHA256

    98d75a52a6dc139fa7b3bac3f01be7a2533997a88d0378c38a8dc2f914e4aa54

    SHA512

    afc6d00bf21045b4a2e9239279c99432903da171e29474903462f9500188b798e0d9af4f414cea04c7daff5ba185e949724892b77918f366517f5a17da42054c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    7de1c1cb823e3775a840795891e3a8ad

    SHA1

    83727c1d7657a7d498bd26a4363abfcd1b07ea6f

    SHA256

    9a9fdf11df9f3d06d3c7ca268a8b10035a834ebf94f45422f61285e0e2858ecd

    SHA512

    20b30411c780e50153110cff91a1a27c2b8dca3710c4991fa7948b1530769ddbbe98d64f92a5648ee7cfdb88b6c9f58d13af98fa2042ba7d03a2ddad6a96bc2a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    22974c5588c9fbf9abce9ddb7b7db691

    SHA1

    29b643370d7616d5c036b86383b34798ac410611

    SHA256

    34ef3c4abff26459ba6ad6770f0bb7a113d8e99d1781f5e1107f156e69079131

    SHA512

    c1c2fd6a3c56bc913316a7a6f223cbac27e813d2f8f94692c845ab0817a421d2540e6410b0c2508ae994de1cdbb56daa97e334423e437b94385bee823c2284fc

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabDB24.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarDB86.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit