Overview

overview

3

Static

static

1

fe8ed32b3f...8.html

windows7-x64

3

fe8ed32b3f...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    118s
  • max time network
    127s
  • platform
    windows7_x64
  • resource
    win7-20240903-en
  • resource tags

    arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
  • submitted
    29-09-2024 12:45

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    fe8ed32b3fe4e4de67697955d8861c42_JaffaCakes118.html

  • Size

    27KB

  • MD5

    fe8ed32b3fe4e4de67697955d8861c42

  • SHA1

    9701285f01dac8d013826bdfff0b1e9002d36a9d

  • SHA256

    f17560016dc567745ec2d638bdb232a048174f7dda73a9d859c9095aca3a816f

  • SHA512

    ad3a75d0112cf9f22d41de79151e567182e73db22a169e41ebf55c35d5a4ef690e540c3813fa04288f54e0ddc85698ffc8c198931fefda97010dc37abac43eeb

  • SSDEEP

    192:uwX8b5npqnQjxn5Q/4BnQiefNnNnQOkEntKNenQTbnFnQ9eLrm6lHlDQl7MB/qno:oQ/F29NlaS1uO

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 41 IoCs
    adwarespyware
  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\fe8ed32b3fe4e4de67697955d8861c42_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2280
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2280 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious behavior: GetForegroundWindowSpam
      • Suspicious use of SetWindowsHookEx
      PID:2772

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    57aaeb97bc1f5e46d7754d23a464a20d

    SHA1

    f43ca1cf243c5f8ba1ff275d6e974781d07f9af9

    SHA256

    24bdd96b1d5cf9ea4e686e7ee1ddb4d3ade4727fc42608cff16921a7a6a77d9e

    SHA512

    13022343c68ebbeeb6adefdbbe83a1bb342d445393a76119d18b03f3b91447238c1e123673b0094afabe50d38dff281bfc874c4534752244a86d51c597541329

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    5a0876314ad2ee9c729c131f38335b78

    SHA1

    0b7a539543dd93d031cc0989ce9a01584e57b988

    SHA256

    5523d91db058a49d1bf7bb920d98788d59d256722499ef8e497226830c6ef5be

    SHA512

    095ffb3bacd007e0a97ad86b0962073f25d694bd512c3ab7054b3da84d2e5785d6432aa2bb41b3d6174893945a1d9c147ff3adbfaf4f77bd03d552bae1cb04ac

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    85af81e943fa5287deeba2a9002aa9b7

    SHA1

    526e5834ce66069bea465157aaef8664f4372890

    SHA256

    3105179b3c7a602671d7d83abaac879ba78249d149f6b8c99b639cd15ce13e7e

    SHA512

    d6cb2871d035105f8cf3bf9d767c1b8ad5ce2bd42e551a745b60ef0808435182f62e2b7f5d94f311d579610bf2496df6b631cfe009ce466ca6cf98c8e722d405

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    b972296f5d12e85217c9f852093aab4c

    SHA1

    e031bc8915040d649b8959e834a683b0de0f5231

    SHA256

    371c633d84e361e0b78008a589244c8021750d2dc86aaa7fe4cdf03396a147b9

    SHA512

    4f291e0024c737e320c0b822e1522736b048e977c8e7379f6fd65fa8bde88d05b238e58985f31c35efdae7d7e8a8a1a806235dd27be4f9b822ca67887b9d7e01

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    76971aeb948f329d6d886740940fbe76

    SHA1

    d7ce1937540235f36edc37b331bf003a3f74a4d2

    SHA256

    df535cc6e39f036b9cb0ade1d8ef27d5121bc82761bd30076876bf86c845b8ee

    SHA512

    4e3e75e53d65791d6104e18d5ff50d4e292ced2b8dbd216c2e88553cc47ef02a4722686b6791dab36629fa2fdab07441cd33d784c5b2471d3e68b912cc0ff127

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    07d3eaefa39f4a8031a1a862c95cf481

    SHA1

    8f724c84be9b54ffd696408959240908280a98b6

    SHA256

    dea275c4ce7fe641eac5101bbb6abdcfd3f259e116aaaae6b12c7939f1d6f440

    SHA512

    9cde63de927318f70c9bd6ce6a793859979d78ec15127550bfdc6e73be2c7df7a3f7fc9d8de2199d142d323068b90faabe9ade696428fd43944d386ce272d6df

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    f9a749d554f4680d0f37f992f924fbc5

    SHA1

    ab6c6a1ed362d1303576e29c3dd37431db54000c

    SHA256

    27eb8743990d68b196a555339debf3381b5748da965353ad7cccb2115be190d0

    SHA512

    ec669e7478989b4afb19d02fe5bd65c21bf484b352f7d8d1cc3ebd05e16a1b3d1f5fb7a7e97b4a5d34536ba76d76aba0d3b7347e4183217e3d6833bb52e48962

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    7551329c58ed38bca1076981269574ed

    SHA1

    54785afe293ce071545f32d8003db91ce77c31dd

    SHA256

    f690f721daad663ccb79142ce98ce2da60d2d8773cf6be15cf6014ac9cdd3e99

    SHA512

    90de2e80a994a532b4b9afbe8e50e2fd207a9df05d2acfb0984e333f3fba54c6b29be2e1fd61c82cba9c41981ed587c6279a287dfda72833c77bb6e6af75f2c9

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    982d99fe94827adeff46c759073f3aeb

    SHA1

    ad19181310b98b3c8f76863e80bb6e7130300c26

    SHA256

    c72c6027123082771bc27675ed2f48015d45b84a227b2f6ef11c165a9ebaf5e1

    SHA512

    5ceda343d616694b2ed9f08b49f07e1450e2937e4eeee04938d660dddf05663d4c4820c9336bda6e1ff9c3afb837206eebba194e330c7fac59995772025de133

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    b1c45ee73cae1592c39575147d791114

    SHA1

    15b0c57bd0084a360d792edaaef21fe6598914e2

    SHA256

    1d13e73b556454d3f2b8565ee9ee949454bca0e6fce574576b36d1681ab02a0a

    SHA512

    0058ae24097398b833f6b4ac62f8ffbfa9378b8bfba6416cf905198aca2622f9d55d4a48d2b46571c69e0a689a4eac0ee763b2b2cdd70984ab92fc5d200e89d8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    6d008e4c7375ad4e2b36ee1b71c48083

    SHA1

    4c19d76445aa4610841a125b2094e9d27097d5b4

    SHA256

    016a175d2dda705e4795a87aef763ea0b9168b729b40cdfa40ae49e537c600f5

    SHA512

    3af43893709577f3c251449c2ebdfb0b967268c2416984ae53e886c84ce6b333b07e2e80185c20210e5dbd301093433565f4f749230cba07696c30082fd0c69b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    e846e9442f4a4f070b3f1c459a81117f

    SHA1

    59c83b6e0dc6dc027dcdcae7856daf2a29b09ca1

    SHA256

    1d0d45582d6c5d81ed3de6164dcef1044e5d9dbe5dc82b5438163fec1c7db5f1

    SHA512

    097e74c260eb09c829efbd066a99e1fd911943cd159d128bfc72bf9111468ddc03112965c61a462e9ffd7edc40bc15830d2b9b920fac48ca4c4767d815cc52ae

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    d4fb3acd42a73bcdaa4c2c11334eaf7d

    SHA1

    d28338964863bdce703cdff89f566782d4afec46

    SHA256

    7d2e8693bc9756b7891cf4a49b07b8617c945d626eb576dd044a88aa261c6198

    SHA512

    d47af4c51a913bf3bc0d6dd1774d0fe35121867966262e540bd700b36f6a904a6380df9f0efc95f0882b1c57897ce629f2fd91481f7566a5abf15ad033142a3a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    f80ffb71ffaa88852e9c1f87a828ceb9

    SHA1

    b8aa9d45ea4cf46e7d90f1e6d2706a01868f6a22

    SHA256

    500917e2a2b83d49df633181463ad08eacb294981a004515c9ac08f883700bec

    SHA512

    0302632ff0b5e584512a4d752bbfe562ef0874c2dff838a972db0306b209824b865c06d3d8189b0193b9bcda56686c5b796c7ec65197de43cf8b4dc042f05304

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    3fd77edcb798b9f5c9e344cbc0e47127

    SHA1

    869fe0b4e8d8cd2d89ee36578d334b10983730e5

    SHA256

    bb08c8509cf7e796d3adc75890de1d7c3ddd644bff60e2a39df7978ee5a5f956

    SHA512

    f979ce5d11f1287c1f35e44c96eb8551ba794408f486f20a3d8a00e3dabdec2b7e2253ab0454a59bdf73ef7c41d6e84387da3e838cc4b2ff4771d294fe1e1244

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    6e184136f32b00f1f11f33c44896960c

    SHA1

    7db71dd7990bbaacc296b82d67e2f974e0893144

    SHA256

    692f8d4f446ddcd8c92f8614e10e9087c9273ef641038903d622098f72c17ec2

    SHA512

    f891dbef92bf9a67292f0870a0916fdea76aae4196576da6877c57c6e00003b567972a05700bdb7828a4c9e2ce5531ebaa9f2ec98e6de76c56c14e8c9d9afdcf

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    c5e801bec83d4710c7b26394aeef5435

    SHA1

    56a46f0436ab06db29fd6c6a00f4b08d05a1bcbd

    SHA256

    e8355811e5fea708a3850706a11f972ec916ea7d95af0fecda23d7de035c549a

    SHA512

    7384082db72f48b72354c16e2e48023f10a7ae6c6aed479e36dc77acbe2edfc15d71e7150e818a34399a7654224c6847a675c4b78a60212c515c18b20597513a

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabF73B.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarF79E.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit