Overview

overview

3

Static

static

1

fe3faad368...8.html

windows7-x64

3

fe3faad368...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    134s
  • max time network
    129s
  • platform
    windows7_x64
  • resource
    win7-20240704-en
  • resource tags

    arch:x64arch:x86image:win7-20240704-enlocale:en-usos:windows7-x64system
  • submitted
    29/09/2024, 09:33

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    fe3faad368529d6dec5242aaf107efb5_JaffaCakes118.html

  • Size

    21KB

  • MD5

    fe3faad368529d6dec5242aaf107efb5

  • SHA1

    14bb9821442a7062757c988f90fce55f5c4d6b05

  • SHA256

    c9d92dbd05937f4900e7ea1e05f7c441043584f706bf56e81e73af6589eb3d45

  • SHA512

    23e6ea27998b4c9d2e5ee5d2e35bfc1a336ecea7485e0f2991a0c32aa6c8025279de110340118e0e35581ccd9abd74d91f04c3173de3988cea2363268d90a022

  • SSDEEP

    384:FSE9mmfAopz/CSvo8ukoYBK8EFzPoni0TgSsmTyd8Nc1iVBEJV+9bTk9fYHwe0n:0mmmfA4o8uf8EWStmTyn28fY0

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 34 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\fe3faad368529d6dec5242aaf107efb5_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2844
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2844 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2460

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          81d2c54ecd60773aaf7c304f1e7d4ba0

          SHA1

          3f4e85dcd08a42feda7c373b9cd7966e154d6e08

          SHA256

          401b82b49d0810619d234d7305f0af7b40eb7e65073b3cb80bd65dfe91e59757

          SHA512

          5d546350126439c3d13e0d8ed6d039691a2ef25e244925629c17df4fce85092e18ea5bb793a004eeb43f924842c2b54c396a56d1304deef3eeb4112b0872830f

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          9fd967272366c11d85a99f90f5148f12

          SHA1

          b4264627ad8212724a0f36ac537881be0d67f395

          SHA256

          c6934b02d1ce34762d25a544f02f8dc67987dfd323192992978f94d56ffbb2d6

          SHA512

          0eb26f51c3feafa55f73ce0d3b26fed31981c081f2b99b75895684ca6713a099c3c3a3172ff7aad8e0e3c9ad14ca1bfd162da2bca3f0eda1d7e7e6cde5eee3db

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          8e13fa5a9d434464c7eee640cdbc11e4

          SHA1

          8c006fc11a321b04d6c28f80497b9e50a660e8fa

          SHA256

          27f755c868ad20ce7e6726f669e225f70002585a6471a34483e9292ceaaca38c

          SHA512

          a6d7e353eaee454e55f4ba3ea9314052bea61d06b0dc9f46fdbbb327bbbb3e0fe42f0463aa01124294eeba57f8433466aa011853af8bb18501d1ef0593def39a

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          924b0f135be3db787379a90d5913cdea

          SHA1

          2dea982f68fbf14aa7e4784716f815747b4db0cf

          SHA256

          5db8ac68d48e57257204b0e02e86a48381afde72f42e2375fd2e05c0b45d0c48

          SHA512

          cb4c644c74c71040218a5d2848f0c19b064b3a516f0aef6c313d6ec2112cc07cd65e58aeeae7abd492b0cd41efe041009cc2e3788c5b0c89b9c613b3ab391b8e

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          9a313adc501b8065573fba7513dc7b50

          SHA1

          c09fcf6e2f2f0d1aa7d597b5342dcb7e54d6e82c

          SHA256

          ebfacb6630e2f5fa5c44870c1663c70a15ff217f637afaf0bb942631c9c6cca7

          SHA512

          a69107080b4c8c9fe0cb668fd8ac8554d7717c554e7391d830e954679bdf54790978f1d2e6c42e46227489caf9477429ae89e04bea3b0fbd56f9f34e9822840b

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          9ce8cc3b25c85f9d210282ae908c3aca

          SHA1

          4969389e9004e3c47ad72fc66c8ddc453362f9b9

          SHA256

          ba0fd32df3aa6208a1c13005b2fa4e3f695cd7e18da6f615f493d0890c3098cb

          SHA512

          543cb9542451dc3c9255252ac2b3a27a3b542f6d230558c1dec2b565ae279788bab3bca6c814cef7cffb3a64fbff685330b0af9febf48b98ea76b8db823087af

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          435bc3f4c2078e077a6b0b3bd35442f7

          SHA1

          795542643a0b12a41335313e44645001ce512956

          SHA256

          98a7b1367b80f89b5c9198a2656ee676559ff179eeed6b5fa51af8cdfe575e95

          SHA512

          fc8ddac89410453c115dc16f6ca68f7ab83568d610866a94aa457d5373cc2eb23bf25ea1e8e21502f0e48bb3fb58ee70105eb6530788e2db8de1ca809a319e79

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          42a93a6911aca61e30cf7e7c5ff30d73

          SHA1

          029f5427690b4637ec5e088b24b0847eda3e51b5

          SHA256

          53e8ad02a2a723c2553134c0c0c2d449446a6f83af7f0b60b685668b040489d8

          SHA512

          798348a92eb91bacd96bb84a7f377015e2f5c12b325390ce653d647407d30566a9ceb6ee37d016909081cb772d2448af0417ed2859ab7f3a13d227f9b057cf5a

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          a322cc4650e854edec9dbe169d24d700

          SHA1

          82f002f8239ad80d6de5c2dd336374e519c87641

          SHA256

          f5f8357bd092705ad5b556da795a40a1921c11110bfce8c2727f06d15f990412

          SHA512

          417d47170580ccd05db2cde7aac60a0a416900e84da18bb296c6d56a5086a2b7ec20096f20ab560a307363dc7e770d4c6b57104a0d7335b939e9c5ea71ccbce0

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          b3f054bbf857a6bb85cdc4b9d676b2cf

          SHA1

          ebc7fa1ddbe5c9a07c6debe91a640e3e4f8a30aa

          SHA256

          8cbed4970c6d25a246aa7c7da6e4d214af7506147bba5d96af09ce02e89a11e3

          SHA512

          7fc228e18aa7066e2b7c69aee0b6dae9de732df56ce6de600c98eb9f95faea227397ff7bac690b6fc164e440e8fa2fb26a413eb050fa024612ef4a36f00db07a

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          a22cbf60badaeaf420390baea23ee1d2

          SHA1

          3058201b61d2b83c9641b5d55a0966bd75810ee5

          SHA256

          dd2bb34b2510fe240cfea4d416e07d5c4955e99b8d882a7727f1e6d41b8dfa50

          SHA512

          a580fa22a40db461b3b521861526e5f2d8ecabe817a8f946b8344101afba580d0899c49575d4b5fc36278e94bdfaef2883007c827f0b202030c6e7bf819492d3

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          320ade4790945375080bc9e0f6bfade2

          SHA1

          1dddbb17b43e97201205d9fc74307137b27be8cd

          SHA256

          51f5a9b2d8905201940846f6b824156497a885a06b8625cf123c9a9e3a7734dc

          SHA512

          a63ce806acc24ebdf543c6d6fc28c0e44ee9f13d4fbb9e7e4f33bf679b9e18054133a2fa75caaa4a681193a722331fd9862efd03bd67c32b4947e28239988e67

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          7c02d8b00c62cff529b6d8018169cb10

          SHA1

          e4fdc078692382e8ff93a4255e125ef04ec7d7f7

          SHA256

          88ec989a50c21552bb11681cd5c1465bd83bb211cc61ade6f91d7c2c5d8a5c0f

          SHA512

          3318344332d6bada9adc2a538abf516dfb7b24cfd64245a9345e5680762261736144cff34b3b1e89980f34e5222facafbaf85e34ced075456f57ee4dc417c538

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          eeef047b3fad6d6dcd1976763217828f

          SHA1

          bce4b540a6a5bcbca369919bd3dccd743f0a866f

          SHA256

          540e5663202ecfbcd293d8a9b8e562bde743d76946fd6aba3db1a3f69149b157

          SHA512

          1d34f3d1dc1f248618fb652f4e549473a49360f1d9e678371d02794160abca992132820acab415c6e0835af5bebc574ee008587b8d833bac0d908179b33ebe02

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          5dbb77360f3cde64e98b5228f15635e2

          SHA1

          1a0b31471da538680d254671d6d7c17b972a4299

          SHA256

          0ef6ffba0fdf6b88bc19e0717dedfdf82d76c432d7f051bd973dc84b35481423

          SHA512

          e3c1653b1dcd3e951427a353cbbfad7b2854d6d12e8cc8a78191708de88512a6b39c324f6e80598bcbdae5a1cc798abab85eb7b6853f49ac3bbf74d6d77c5405

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          96acb58221b89eb886a0368fe03c88f3

          SHA1

          f87783871df44768d534e54ad26715c3cc019ea3

          SHA256

          2e9cf184e31ec43de14ec70bda91743bb80dc944d4b00808793cef456f98d8a9

          SHA512

          9a00b7a55fc5bc7570b75cdf40e33cadeaee546a7e1c2f58eed8591954004b6b0a561d4be28d036799c2d3f1d2832ba81b8b3bd9454093039f31a4dd4e20255a

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          6bbc0e74462419f25149b54fd98cc698

          SHA1

          fb364364f81c5485ef3bd39aa8aa9302c0083602

          SHA256

          199426d58042b85311d7f1e29fdc832cc0b6706a71a29f6ef5d081bc20bc116b

          SHA512

          d98fe9f938f11d651fa34e9a8d3c79447d9e020929a574b1459a5e125d96e3816c661f41cc008a2e8011296105e5192c5bd6d85fcc518f99d5b191dbbef6d93e

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          633f9fe205adf670a38b5afb7d610cc2

          SHA1

          cc2678449c80f5bef53a5b6da6b6fdaaa11a2f2c

          SHA256

          c87c0e996bd158b9b028eb2104961c6ddc5d8c74c0421a4b7363ba2268c17bd0

          SHA512

          1771468e81e6d5d917ae85d016e01479b56d1ff20f2811f3c18a3e67bd8cb04a44d4278f3906f407b503df1953bb4c345e1fe8b223a2cc8072cad7c75904bfed

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\CabA086.tmp
          Filesize

          70KB

          MD5

          49aebf8cbd62d92ac215b2923fb1b9f5

          SHA1

          1723be06719828dda65ad804298d0431f6aff976

          SHA256

          b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

          SHA512

          bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\TarA135.tmp
          Filesize

          181KB

          MD5

          4ea6026cf93ec6338144661bf1202cd1

          SHA1

          a1dec9044f750ad887935a01430bf49322fbdcb7

          SHA256

          8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

          SHA512

          6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

          Download Submit