Overview

overview

3

Static

static

1

fe008de43f...8.html

windows7-x64

3

fe008de43f...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    133s
  • max time network
    127s
  • platform
    windows7_x64
  • resource
    win7-20240903-en
  • resource tags

    arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
  • submitted
    29/09/2024, 06:54

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    fe008de43f814d4d846fcf5df30c1126_JaffaCakes118.html

  • Size

    4KB

  • MD5

    fe008de43f814d4d846fcf5df30c1126

  • SHA1

    2b95000d1d184ba4de6126b09a0fd55cad5ddf9c

  • SHA256

    569e3adc9436346f29d217dd595e4a48d78afc89114c7584f2717bd50e86069b

  • SHA512

    786e885c6c464932bf7a9c9fb507c48ae8468efe6ce11339cecd4a79d810beee2738c8b6e60daaf79123fbbdff5aa6b14a75867fd5bb2001e27e3149d3408b4d

  • SSDEEP

    96:Pk7yJozTGknaEFHVKDZTBJl7sNjtXATIQFMA5e3fhrvDJUgwa71D5iJ8oQZ8B9rd:Pk7yY1aEFHVKtF37sNjtXATIQFM93pDQ

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\fe008de43f814d4d846fcf5df30c1126_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2332
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2332 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2508

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          5af5736d077ec8eef492ea3f03d77fc4

          SHA1

          c9d2a994113818538ca3128393be5df81dba365a

          SHA256

          2662c9b0ccfbbfd1f7fed09d4aae5e9c27100271b44dc8e8c6b838b79cc04e02

          SHA512

          27d0c3fc9b3fc1b07fd42f0d5672b61578c3400687bec29101f6f28f72f6b511ce66c78946581c859419a8001cb687f30351c69c2cf4c872f8580913723d27e5

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          c66aab3c7785ebbefa13a6214d03499a

          SHA1

          3c7f3354d70170503cf57540a85043683051db95

          SHA256

          046997fe835833261ca13bc3cd0c7dada4733996b9a1ca6eb82147e614f69553

          SHA512

          b0f6562b2c3d20f13526417eb3c8cbff3299bc2611fcef0a68e6467a1bf652e5c1dc4c14294441b614a1d808fa596e51cc2e25e7fe24a1f5a73b89ca023a6502

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          a7741a1dd0823c18b7b6fa4f75a1b7e4

          SHA1

          9a8f0963b0849e2e1e0d34024c7eb5c8780a8006

          SHA256

          302bf96d1df4f4e958285b836eb996d98d629afde5d6a3c150aa5b0fae345d16

          SHA512

          4788c3e154b14172aa9867f7f89adf8bd3b401dc2abf6f9233a799243cd452797914a45778025e0ca736dceec5aced01b825c2db002a66258e7c23edd595b55b

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          2b2ea448942cab10f0d154828d73e6c0

          SHA1

          e802a2dcf54196d3a5acc84607c7cba45e03e3fb

          SHA256

          1bebbf7733d92c22fa2f5de783ceb80c43c9075ef118a4b3a5038df82d6b4810

          SHA512

          3e68153a4ea0fd86c6d57b08392e53aa41b2c5d8fdbc8fc855bb71e07e3440ac90f0d4701f74b24768b02d2537c04e82dd56725f92f5d4743c419ea5b9da6054

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          831eee5f7e036083522d0817f99280ff

          SHA1

          561c479b032d48bbfb60b32418064c8c3a1dbdd2

          SHA256

          20001160bb3d04f3fb21d6f85ed697457334d16defe6ddef9c448a646eeafb8d

          SHA512

          c814c614b8f10d92b8e0d8236404e103099033a5c67055cda91a48f4a989056021d7d1f996d1e80f0170ade6ebd8a607785f663e16fb3034b041901698e319f2

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          57cbdb3ec5269e1dc4d55fb8b995cbe0

          SHA1

          7fc607f516e79d420b66a62a1fafbeb40ea40f71

          SHA256

          fed5c9582daf5e5c38879324acc8afa360e4b659dadd33f033114b9264226e4a

          SHA512

          5a9e3c9e4bf40f3ae7253d2e89ef8bca2f371ff0484399425d4af20570023ea3bf5829a6e322bd94e0e8de321c62ca263d402ef24ce86f3f257381477607db99

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          814ff43afb6ab14569cd2fefad7252de

          SHA1

          20b0a39b1f4cc684c3d8e3a2aaf2fae7312e6592

          SHA256

          97e776d71a969730bf6016601d60e8db402494598daa8d5145daa33d3cf313f0

          SHA512

          91ae2963b565bffb132456a25d11394c787e44e72678014f1b633dd304a24575a6d97324722020ced955461a63229e21aff8f8485a400cf8776a0b5db05776df

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          a1ce3f217933a543413063a461186d37

          SHA1

          3008fc85d3bf8c069ea5f0afdc7ffd709a281f03

          SHA256

          c55741c374d084673517404b28967f983bd5b9e9a58ada7b13bed27b28c1137d

          SHA512

          72d78913b2554387f723244e6aacfbbae26a333cbb04eef6d0072220eb679d1a7a009ddd6a841e44a2c88a9d5a2f2b5105aad0fc2d68b577b7224ec0dc8d2baf

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          606f638c99dd58d5a72451b9ab55a525

          SHA1

          0439d347809d56084dcd7c4ed9bd8a580dc0bc53

          SHA256

          cca4d37357df16a2b4f3769f38c5bbd162be545fab12303282490690155ba88a

          SHA512

          13acf3f452f749f5325de1302da1d4783aa95962f3248141465f1282fca3f524b7f459a5907fdb4f52c3d39a5aab22f33e71ac6e4a18e756bde2888f10e274fd

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          a7f101f87f7af0d44da33d7e14f4a2ef

          SHA1

          b2d44f8fb2905f462863134f8bb01ad03de9f795

          SHA256

          f5b239b3f305208ac91953b0e8c11f37e765a858a23f03e79d9a074680ee955c

          SHA512

          813e2e4ed1cbaa5ecf31e3ceb556c48b44bac954282af33c09aa9a7eb9baa5b9bd8f7fff2b3b810bbee4ed140f1e5a3bdb187ca2a8fe4d982e66433ec15a73c8

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          3b0c93c6672862a07fc8c6f1eec447af

          SHA1

          a854eff9da4d202f59f827dfe983f17c4c2961ec

          SHA256

          6b8d1b179c8b35ae65ebd5e3693126b75ceaa00740ca78ae3d746888fe96ef0c

          SHA512

          771d51d642e48b370e7246a373a8d1e9c204b0bfaefc800685687be58b73f179b91ca7360ac7c7a9671f13fbfd4f626fa02b31847b73b7b9daf151451d13cc40

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\CabEDFA.tmp
          Filesize

          70KB

          MD5

          49aebf8cbd62d92ac215b2923fb1b9f5

          SHA1

          1723be06719828dda65ad804298d0431f6aff976

          SHA256

          b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

          SHA512

          bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\TarEE5B.tmp
          Filesize

          181KB

          MD5

          4ea6026cf93ec6338144661bf1202cd1

          SHA1

          a1dec9044f750ad887935a01430bf49322fbdcb7

          SHA256

          8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

          SHA512

          6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

          Download Submit