Overview

overview

3

Static

static

1

fe3a06f5af...8.html

windows7-x64

3

fe3a06f5af...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    120s
  • max time network
    127s
  • platform
    windows7_x64
  • resource
    win7-20240903-en
  • resource tags

    arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
  • submitted
    29/09/2024, 09:20

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    fe3a06f5af628085a841c3aa5a2cde61_JaffaCakes118.html

  • Size

    27KB

  • MD5

    fe3a06f5af628085a841c3aa5a2cde61

  • SHA1

    14c34c01f5d466c9a624548632faa7682ed508f8

  • SHA256

    a368b723a887fb191015345b1d0ddf34c04583697cdcb04590fc0015b83e0b4a

  • SHA512

    ec18d72b816e09c90a2178b386f04b0300ecb93cea4ecb44fb44f4509e6c34020a9b1c9fb019db66ff9b4c7c56a85dcc2e0fa22b8fac850d7d550dde59b0d50c

  • SSDEEP

    192:uwrob5nR+nQjxn5Q/MnQiePNn2nQOkEntQqnQTbnZnQ9e3nm6MXZfQl7MBvqnYnn:YQ/4WZQZeSRit+

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 41 IoCs
    adwarespyware
  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\fe3a06f5af628085a841c3aa5a2cde61_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1964
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1964 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious behavior: GetForegroundWindowSpam
      • Suspicious use of SetWindowsHookEx
      PID:2428

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          d8efdf2bf60d25402872104ff3ffe3ea

          SHA1

          0b55c97d61ec641f0c69d727b73584f613e3a424

          SHA256

          c6b845d12b4faeb6fd32680b55e76320db34e18c6b4d0b918fcea11e149f6ed2

          SHA512

          7c349eb96e40873ffbbcdb5f4efbfd52cccdb5bf5a53e0a591c7a7834ee0079fdff2e5f2a15c42705f182bf763750f4a02dfc4c714a84498ca38332596592e44

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          725ef2dcf425728bd27769888f2a2bea

          SHA1

          5553fac3e1736bb4310282d8a594fc71e22fc8be

          SHA256

          987abc2d4d06a18d31a56b18d10fbebd59780d089cb5636a763d3709ac580c09

          SHA512

          38f2cf4655c71811c9835ab5614ecc2822c2d8fcf2a2d2bfd1f2a001e0c54cfdab86bd0b881ac46fb46dcdbb9a7fe1cbb9405dbe9d0b8e135bd13c2e73f5cf21

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          45ca97eae67c7830642b72c8412ac2bc

          SHA1

          c7653c14e9017ab60f3f659218328364c07ff975

          SHA256

          111b26792a8d849cb90d2847c469748acebb4a76338637e26951eb8378f460a9

          SHA512

          ea8c1ad69c2298495f281b052f700822f0df8fb2d41aeb108a0075ac047bdab515b97c762daec6dfcb612096753b1aad890f7bb2867b38c87c1144cdcf855aa8

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          89024466e11c1370baace21320ce8eb7

          SHA1

          98c802d2508f420be5412cb123ee3f2437d0a472

          SHA256

          4ce8ae2aeb77e75d13ca370258641df061d1643ea1a47b31b667c87b48e9c3e5

          SHA512

          e80b019aac9a408e79a754a20b3c10083dc782b6c25c39ce0b32885196b60e99ed16c44127bb0b881084c17d18e0176351d396f31b55e1e8cf8ac1ce00cdbc5f

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          fa13804d179e9da76ec024a6f542ec0d

          SHA1

          b736c28918a8a2be09d8cfaa972afd309060b1a1

          SHA256

          2d522c9a4d3aefd57dc9d10bfa7e3990097003cdbcf6d271afe8367e7347374f

          SHA512

          00f71d7e84cf1457ea3a173887734e98813b92eedd66e302bff472dff07128f0fd7853b5231383ad71a1b70417889a2df70ce3b56ed49a2aa5fce069ee34e39a

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          935c0389010104334f32a79c4df689a0

          SHA1

          37728c76a5c95f11e139e1a47dc256c2b4909bb6

          SHA256

          3d51ef51b145cbf12ec01d06acec541c0499141051f7205d0cd875b53ddc9d34

          SHA512

          938df1c1b365de0a4132fa1c10368e10a2716db08adb11b9ae4692722d0044085c8de72f860c12b88bbfd4b0ab8e6ea65608f5f0e4c0ad432ef8e0d6b17f0f26

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          5d7d23672c557e5c583e2d823ef69f78

          SHA1

          761c71e3b517a82cf52a5a490de81f35bad316f5

          SHA256

          43e2e5fb0df3bdfd4ae9e8ce73490343fe4f661291468b61bb6ab3b3d52ca293

          SHA512

          85b5dde12a786ec5e92b3a0a37294a9bd4aa4c294fe079327649aab70dfc72691fba95ddff8b841983c9eced8d5e629a5e01d6dd516dc576152821ea4edb5fab

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          15afb0b9976e7d02efc31e88dac95bcd

          SHA1

          172f3c5c7b234489de0f462ebe00987ab39bf2c5

          SHA256

          685ff94f76408337562bfeaf7156a51dbb062c2b518bf252c99288990f162521

          SHA512

          0f881693d6e9e357f5f2e71f885179a2672611f6abd36a60bbaf9b39b821282a86c8388a8bc7c1e61b37b1fb6edb9dd193e5ac96dc0a95f899399dfefab2ccad

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          02aed2052edb8aad52abba4cd4876f21

          SHA1

          12e95c2a82fb6d8d7c7de2dd26feac5837e931ad

          SHA256

          cf6c741538addb00612370acf43e1355017c3243e2c6901864a62c7dd81cb48d

          SHA512

          6db9570498e57044529e1113ffddd3a834d6d955148d8585e86a02beeadf780fe84d5511ab308220a6bef82b1533287704190fe52584f08e0f8b1d8e6664297b

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          64099090ff47387578cfa5655fd6bc33

          SHA1

          c2bca1e0e7c28ae34f8d74d1d46a4ff072e314b4

          SHA256

          3534a8a44ff031ced7d9cdcce620ca5b713d83d59c6bf5da9a2880f1638c5aa5

          SHA512

          58e6ac2dc5ba50bcb931a631c87ee94f4c635527913fade8f357496fd016f4263f093151de7b7094b2eea8f62dcefb04642c31b99c3326531f27e17f7595742d

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          3fb98cb8998e1de80b38322fd7fc7f4d

          SHA1

          c758785e5bc3797d12fd58bd113d2ed2186853d2

          SHA256

          02961cdf32b9f65afb0c3c6fff36f0bfcf918a1039b262a15052dca7496bac73

          SHA512

          c5104ea347cceb494ce88f59d8c98c2d46b134ce18a9b4edbef1cc5855f4ffc6a82089eb9179d4c292a3530b4822a869d521b51eb36d86cb8a2c620a5f2090c9

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          a5f31222b94c85627480136cfbc1876d

          SHA1

          7cb45bdb4b5d658aa6d7284522c5d7f0175d0a7a

          SHA256

          eb2f853dded8442d5d80ae2d043294e801062984ecf9be2ac6a2ca145ce7a9db

          SHA512

          ce9460513e0ee0493f839fe3f02128622cc0c3e461aa00a7d390c5759b4db56229be31a0db2a1381928832cc11b0a7ac6ee62a3504a9a847544ddc6671474e01

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          62b6ccf5ca442a0c97e3366e2e41a378

          SHA1

          ec53247ace3f0b784642ea17ca9b566aff1cc2eb

          SHA256

          51b0265a1a7d8ff107062b1f231de24c27b35d23c257398fcbf62e32409a390b

          SHA512

          000080a59cc5f2b4c234809045a8e892badc166c18b6f58934828613c80a68f8abdaacd7b34d17df5f77d9c4573bb7b82d80dddf8cad3a2b7de761d128212125

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          dd0c7763142bd7c6754e2bc663b485a2

          SHA1

          cd9bde98c5dcdfefcf437bd71875027d286df90f

          SHA256

          79011f5a937761fd68273969238224487265ce2088d135d8e85ef340a97e1a84

          SHA512

          db51b171e8af371507c4320d6a332f6a1ebb1a7b71c52efbcb578e064632debd579088a84dde074cbe85a66b3d23189cd2c561f530d8ad63ee81c0072a2c3600

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          f77f5d468fbfea7391801f5179ffa298

          SHA1

          9bda93a4b16fca7d4d8b61ddd8c93c64460b3320

          SHA256

          9a9accef5422fb9a789574321cc28c4daac7cea08f50778095adc34497144ac2

          SHA512

          85f22b57cea986a5558992bd2ffad9540fe8a8c8f273ccf690f855fd29516014261921c49d8daf96c4e5172c68b0dcc68d744252810d392be41056b0418e11bb

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          107f8335c7821de97f77d2c4380eddd0

          SHA1

          d5f2496550d53a37b2170dcb75ba12bd181f5b89

          SHA256

          d2b94c4b6799162e94e6834549ab6f87cb739c9a5b320cb44302c75ef9061de4

          SHA512

          10adf9dc51c61b77598476831e3eeb16ed49477bacd30f7f51847a62b9af0b3fa921d43313f1c2483f06941de12fb2849cb8e582a3fd0cbba93e64f6ccfb38ca

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          e1c46e87dbc30a1d39d253b18cfdfc03

          SHA1

          71cb14b77afdf6cdbfda5665417c43c7e1d4d024

          SHA256

          88d5a55f5e996ad1dad21c3b3df2b7dbfc42e751d64a7ff76bf876705ef5f2d6

          SHA512

          35c18845b0c7b3c04e656ce12279eed08585a23cdd45042506d5e7b7b5efcee7a48a4ad967105d2b2794dc3d067e8cac6e93d412b540fce73a1d275675a83cf1

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          64ec0375bf1b60e447b02542aa6ae870

          SHA1

          2ed23d8e8bd754cf60b9e00303fe084429069ab0

          SHA256

          c2f1bf66b04980bb05d5752adf9459765a34a8f74aed17f007e2c96afac691c0

          SHA512

          54cbc00194f637d0c4f0de490bf472bfa6bb3cee054c0d5b0cded911a02fb6911d403063f8c2bfa56442b1a96c16caf82c0f91cda85721b68b5a73547dbc4232

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          b82663f871c7ecc223d1b509186101f9

          SHA1

          4c16da58ea07e028b2c039b4fc199bba5d22e926

          SHA256

          75c1ab230ef5eddeb7f7c6500441d297d29e816b0d579172f023779d1b8b1b9e

          SHA512

          e611458c56d9ba2f29969ddd5af6b93f4e72a00b3068d5262aac6086e9f13a6f4be578d8f98bb8fbe0cbb9d2461fb8fceeeebc210be787852f7f985ba1f22026

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\CabA3EE.tmp
          Filesize

          70KB

          MD5

          49aebf8cbd62d92ac215b2923fb1b9f5

          SHA1

          1723be06719828dda65ad804298d0431f6aff976

          SHA256

          b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

          SHA512

          bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\TarA460.tmp
          Filesize

          181KB

          MD5

          4ea6026cf93ec6338144661bf1202cd1

          SHA1

          a1dec9044f750ad887935a01430bf49322fbdcb7

          SHA256

          8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

          SHA512

          6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

          Download Submit