Overview

overview

3

Static

static

1

fe86d2cd1c...8.html

windows7-x64

3

fe86d2cd1c...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    142s
  • max time network
    142s
  • platform
    windows7_x64
  • resource
    win7-20240903-en
  • resource tags

    arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
  • submitted
    29-09-2024 12:29

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    fe86d2cd1c5db34f5ae039e0bc7d6dac_JaffaCakes118.html

  • Size

    21KB

  • MD5

    fe86d2cd1c5db34f5ae039e0bc7d6dac

  • SHA1

    8c2e40c649dde668073806b44a9630158f1090d5

  • SHA256

    ddbcddf183bb07c3e5dc33463831804573384f97061bc103cde57338fe32f405

  • SHA512

    403a571192a7a88acad59499c46a98b1d97b739131b6638f307ff324c1a33b4aefe73f0c787e229a2c914b68fd992d64895f0999d7c03fe0551a49721bc60cf0

  • SSDEEP

    192:Hqvl596UDrvW/6YsEEe9So2UQB7A09Vea9XSdNVMjP0kuP:Kd59RuuEEe32R8ahRP0kuP

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 34 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\fe86d2cd1c5db34f5ae039e0bc7d6dac_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2532
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2532 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2100

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    3fde0c8f64cded9218f5807a9ffff234

    SHA1

    141fa4ae94f656992c7c57dcf1f9fabd85dd6523

    SHA256

    efc446dfe7080a3cb80398736c152c919e81fd6facf91e71e03d49998a01a7f5

    SHA512

    84c85df00aa4f3aa411796ae5ba22fda9f384f6c68e4405c3bb4db41e49799297e1206c790d7b311ea2bfd3c6da31825d90084750a70857b97610cb41cd24b32

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    fe0d6c028794faeb2dc8e4369e697587

    SHA1

    b141162b96a14be0a3889e5514a64a07b1709b19

    SHA256

    d4e2b5d5e4b6a62f8152e827baabe9a30ff854049fd34a124640e0ccb4b29607

    SHA512

    2947b1bb73fc661e9f8b6554101e108821626787c6e9cd56e96ca76217225ba0f4c3abed386b609feec73d3b591b010385edeeac728ed7c0c16b332587e6be08

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    a6e2e570ff756dba342ed50632a900b6

    SHA1

    4b37be13a25912cd0c82e3d30eee594ecbace545

    SHA256

    d584421057433720388567f3ec5ea9a1c1c5f935560e55097e668afdfea85cb6

    SHA512

    a581829ec9d8f8f6c7dbc084624b4425d32bdf8f7d4a1e0f6c8b532280afb5feac30af6f272252f0ba486e743dd0aa6342a393343df5497ddfc003da367aa678

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    3b33fae36091af194ca37abd055c5cf7

    SHA1

    27bd7282fe13a970ecd19197bb975c86a7bda020

    SHA256

    417f8d6a6ff5d6c02d7f045c3a70e57c18a924b927857ef9d8bd3600cbe4e6ca

    SHA512

    8404a39c97860e540f66e7cb1f25f524813fe2af67cfec5c0f7566c9eeee167291bbaab4842f04fc083cb40386fa40f75af0db1a20aa59546c7514343f63e068

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    1e363ccca5724ae6d24e7952c1e519b8

    SHA1

    bcd23eb324fab8a71774d90aaf7877abf3a06ef7

    SHA256

    a2db98e5ea7a5832573822152d7bdbb5be9cf0b4f0e3a844fa757c14b805b357

    SHA512

    9b41b16fac34c0d8358a1519606f8a93f95668d5d4569bb42d62bc7f857de17532719a1caeb7f5c2a35de15f5b1fae5a62f6baaacd9f51b0ffcd2c2cd5930546

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    7e015466398c1585d1a4cee4c5cf8be8

    SHA1

    d4d8e9080ed2c67e9b696f8490398faf425a9246

    SHA256

    d5e5d81cb8747e94c1b4c4ae71d6a67e6ff4a3996c5e69a56ceeb06f03e0d58b

    SHA512

    0c127d92d2e10c19a19b7a0c14efd0e64c2ca9aff2b8420b3b838290a8b8638bcf2ff208f3d88ae40452e7521527ef7b221539ae2de1ae62755e935885a1de49

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    b8b0c48ffb55fa2d94a11bb37f0ae67a

    SHA1

    34d15b4b2bc8d5419f21ec31d1a124482f0b3899

    SHA256

    78d88f979cc57e3f59bc538a0860678f3d80cbfa7272c1539233bc67449b304b

    SHA512

    19e29352326b330d9d94f4dfcfe9525f417a6aec6b911d5e06c8ae3f99c1ba9b901641e6a7a6f83f434a073df21665cdc10b6fe813032d8ceaa8399941a22d94

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    6091a949ba17362d6819486cd22ba326

    SHA1

    402fff9353897c366cb0db26c0cdcefc698ee1e2

    SHA256

    af06373823bbe43cfcde3dd7f2d1e65ebcc9bd834c4270b342099bbe01b8fa9f

    SHA512

    72182b7fc54085bfdde661fdce4dbce811b27b6b96526e04ac615276404d8ffe27003f1f0175df855d0e765f648d5d5556e0c7d86361c66b3cac5f5ad225b57a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    586139b3d323115a22259f3585f06ccc

    SHA1

    5675a556ed5c8dbac6e3ca22b5bfa8146be7a3da

    SHA256

    676b57ba1c2d30c40c3ea28e42ba904e9a0d0a0ea103493f4578bbb2779729ab

    SHA512

    143b01f345ec606f32aeb98d1adc115f0cd566ab96433c1f8e96bb30077f45a15fcce5842ea14fcc81f067b90633ac04cc2e430b01b640f1dcf67d5610b498cc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    348277265a02fcdaae7a4382f25c3802

    SHA1

    b28000d68bca908369d625cf783040bba2cd5f28

    SHA256

    e1665a232f68459a5558d8db705b280922a66c88f67eba70df7dac7f5ffcd8d4

    SHA512

    418c471ff6648eef155669547b1d0b1b789787bcd4926fd9abc5d3c33c100ea011526da7d1cddef8589a11d2e4383868eb823935e548b4771be0b79be46f4c21

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    f204939eb7f2915e8fc1d771da641dbc

    SHA1

    15fe066c3388c9210d468170e9546df9f32a7916

    SHA256

    14ccbe1a5492b69b9aa0e1172464f9fa21ff1c4820cdaaedf20325a918111701

    SHA512

    cdcbf28116f54a6a77d5b706c3642b7d71ebe0efa314da4dbdc32589dd704e8b7b79be970cb4319c176bdc9ddef7de70e6b6e0e2ccbc310f71fe2aac8bca0b4b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    cab3e3c94525aec30b5f86ab88990845

    SHA1

    a2de7d6d22570ce49e58903d3c80a961ec04d0a6

    SHA256

    ae001a177efd3420d1fbaebba843b2b87a51ad43e1b0c88203eb0ed8fbdf130c

    SHA512

    6616f26e3e78c29c31dc7491dbe31e15d334c0eba5874f5523032e9f4ba3357a208b347dbef151ee4372b22e952741b32866449b9b897f989ade978e0aa857fe

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabC958.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarCA19.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit