Overview

overview

3

Static

static

1

fe9bd5a4ba...8.html

windows7-x64

3

fe9bd5a4ba...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    121s
  • max time network
    127s
  • platform
    windows7_x64
  • resource
    win7-20240903-en
  • resource tags

    arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
  • submitted
    29-09-2024 13:17

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    fe9bd5a4ba82330953ae028802347022_JaffaCakes118.html

  • Size

    27KB

  • MD5

    fe9bd5a4ba82330953ae028802347022

  • SHA1

    3eabb6183ca82109b38bdd9255d9177e1bc6bca6

  • SHA256

    6ef975d2b3040677eba01dc5a2aba32015220bb7489cd4729cdb5aac180b23dd

  • SHA512

    f419c7c44cf6011e15c2d661e638e1359e1af2478faedff088d30dba3287e03d29743a9b1d31c0ea6a9b6b54eb24f00e410ab8042ddfe5d551ecab999e8a8992

  • SSDEEP

    192:uwrV90eFrAMSb5nQ4lpBNMHboatIMWnQjxn5Q/JnQieaJNnYGgnQOkEntzxBnQTJ:/Q/Aj0jYtS2hC

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 41 IoCs
    adwarespyware
  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\fe9bd5a4ba82330953ae028802347022_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:3068
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:3068 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious behavior: GetForegroundWindowSpam
      • Suspicious use of SetWindowsHookEx
      PID:2812

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    3d67a7fc79e01e844b77864b2160f426

    SHA1

    dc07cdb1c172ae45dbb0bca2724d5153ed2bb714

    SHA256

    996d57ebcb6b8a86850225027af8ea2d1ac3e56e937ecb2813457c0f099f911e

    SHA512

    447fd52bd9dc1f3b4933d9a3ac1ab1483f57f15ce0ffa97676a48a59558d0351d10c1c08fcc7f38dfd53a57fd12c385a783ba45abf082e7b050a459806599155

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    ae86461e01667e178f7f3d02e8cf2606

    SHA1

    7d071434733c9fb0b7793067c320ba6910bac085

    SHA256

    28421c855ce2204a11fadb2a029278500d7d563b4bae120bce99c339e84b6769

    SHA512

    fec17b50a0331fec40d50ec94d4700a7556c270ffb5ad08c03c83779bdf4d92bb936daeee93b2b1b2921fbe9fe2796212d0b81d026e70ee0af48025bff456401

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    27a14ed6b026f9e8a69212ddb520c234

    SHA1

    b72948e7fd3486cdd084b4ad7c9c81f06e842423

    SHA256

    3adf7b873089a19af373c7587114cc6f894cb319bf5a538f5b56e5f14778cf9f

    SHA512

    9ac53e81da9e80121cb4560dd8bc49437f83b1d16b27451a4b394f71170750ec45b7a2dca8b0bb63667ca5215e8c28830aecccea0b1478cab1047d468501f85d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    1ca7b16c3d40067d2428e8b823753b8f

    SHA1

    47c2ac3f13a65821284acf2b37dd2c112662fd13

    SHA256

    796f21ba8eff1d1c07c3587359d984dcc8ae14b1c693a71123e49e3e9d0d6dd2

    SHA512

    2a0b3df36ba2330829c8b90eb026ba519f08b108b22c9c45f087d7bbbff1947ea1db0029f9947d5579478397ff314f30c742f0beeca4c241c59728158cc3feb0

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    c4c2779ab0cc8aca83c1af0538f8d39b

    SHA1

    a3d11edb02b61ecbf66cee3e8a72fc21c5412e53

    SHA256

    a21eae0927b4ad3e4cbd5bb7e3f1b83cd37c91117701de81a8a9e3b1d382337e

    SHA512

    8b96daf321933a5f97fa9648c060a8093041116aca9d2168448a5bb10959c2368b346ab7c3eaf098801d59849a3ad1fe8ba8238be3659395d4fe45b8a95872ea

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    8d8cf2137ea515e63b42a296ecdaf7e0

    SHA1

    555f19ed8f1f88c5ac81caa20ac475f9bad63e80

    SHA256

    20c8394bac216e30264ed53d260b2e9875dbdc056f2e841b6f464a58b22a5fd3

    SHA512

    387eea51b3045190d5292ade98d22bad92e784022298cf8a40087dad98656c45cf640f217291b0db17cda4de7686ef66c0fd7ba8742c063f20cff6df453ee95a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    b3473065c88b72cb8aa7e0bbaf48ee81

    SHA1

    1ea539440cc52e8a820df06eab5f6b3bebbe24c1

    SHA256

    37ae4e20b3b8acf1d566b8fce77a4a1c489aef072751b987924c3921f4c26212

    SHA512

    650231f54742d569e508e95818a3c9e9ce21a536a7bea2e804a4db848a6c13640b70b00a8a8e85577545f73566c6b2484b15890a0aaf85b5fedf4b3cf03983aa

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    b67a930083be0c88072f651068a34f5c

    SHA1

    6ea27453b286aa9109123c3a188eccb10f074d3b

    SHA256

    8e143f79279f9c12397678eb07e165a307b98790f9afdbc268794eb1d3994cd7

    SHA512

    af4c02a44b3513ad0297037a137cd65f00780abbb2a0986d68c70791015c645857dacdb2bf429b4e714432331a0cd17db55982ab237f0d2695b4dea138bb613a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    1c75d0002625a4fd05c9298588a64deb

    SHA1

    db27750685146897d268387d7b45ebad9ba6846e

    SHA256

    38ded2a8c0e36c9c08327a5aad8720a280f17cd62887f8b85f9e582f63668cd1

    SHA512

    67d08351a0dbe724397d4d635294682ef69b256b4c2a391cab6c3e51125e4bd1c1c5f920faac38a6e88bd2b4449b183cfddecc806edba976d3f051c393e8b15c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    ae0a7d8ac4259a8075a0870a46a11308

    SHA1

    144a767f619b2c3c1d01aac536ba75b28b0e1b83

    SHA256

    5bb2fa533cce7fa1aa0287251d6dc55c8b4163845246e8fbe4b491473682d9cf

    SHA512

    f1cab3c8f76e5e59c3e27208cbee07f0ec3d57b7b4e98d2f1504ab427409dc129262353280cfefce7353a97017e417c76f2c61fffc1203887f180c84ff5755cd

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    70fa965714790cdc3310a6455fc67864

    SHA1

    e16c3760f6414cdcfcfb96cc2c3f75b872312d41

    SHA256

    9e002682f1992cb081325d41772f7852be0be89415d38ba2827262fda20a2157

    SHA512

    3a94edd3161f50adc1d0b80040d7965a59aabda8e8863a8d151cec96cad810c876fd0d69c210c08f3072c731bba58ac6b9700e8b9ec1a1637f31c71b109adb6b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    0ffcc84d4b797c2bafe9f1b97d640b18

    SHA1

    281ec5df903d5d0761ace2ec2484960f9cfcca13

    SHA256

    6bfaf4ed35c4ca29411d9066bd748234fd9e6788ddc63cf08cc7cac830c71bdb

    SHA512

    3d7fe8db3944954f221ad7dec5e5e1e32eec6a3cfcfbda07d6d8589258a1a9bf5ebe6d46fc88d806d2b7c39a267fdebfab30df7a5d106f5db6992844475626f0

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    c0de4133e334ec6005f842434c5d58fa

    SHA1

    00de4bdf031b1f2f33934926f8a814fdbf1593c5

    SHA256

    b7b6a2a6113223a756b9c0c6df5ec3cd3ac049a9dea3e4330d620358f0dff5de

    SHA512

    2fbf6c46aa20977c85b1b2d82257bdcfe1908f87a9685ec2de62814fe67d04590859751f3a06926d8f30b455fbdc112f97d117b39a8d155ff32ba489363ebaa8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    2abe924c9e54755cf3ab70581f2d3810

    SHA1

    f430e34c29003d2ef83039704bfe6e052f9f21b5

    SHA256

    e9a8cf6d37ddd197507ab2e6b5d2c37825870a1011e0601ce6e79717312ffbcf

    SHA512

    4a5ac7e1230e785f1feb18fc1ff6a96b7355d0e4a886459b0faac226a837eeda86dad63d05de49a029bd8fefb296b156dfb957b0cf012f1852f679f3a9640a3e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    ff0a85b54c9e94d98f6ad2620f758d6a

    SHA1

    8598a73f06468214caa7e6ca8e9c615a8a406c53

    SHA256

    f63c301c3ae5e811f292e3a30d7b94a80db798f5772ee34c7b6c7431f33e296a

    SHA512

    598b593867d91befb9e30aa25dfc6d835a4a9c52fe8d7676e9b4059ccd6ab992a07077ceee98f7b722b36411bbe319dfa5afd0e9b62db1c9a450367b085cbd60

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    5de8453d7ed6da70aab0c65b21c6e551

    SHA1

    33270cb24d26b739a986cb153957f5b9e52299b3

    SHA256

    59394b98672f795bbb22a3979283a936c81e30f4dca1f0e6b8c426f09d7bda48

    SHA512

    66b572cf5cfef4a0922a7579fce2a46487dfdd3f0ec3e9c8e31b688ca224584447b9de40494d97f68d76f313516eadf92b7bfd6e56c1d200195d66502cc3e44c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    b61e30893f8f9310fcbf71b877f54cae

    SHA1

    390574f5651dee5dbe2a3901e6c70c7f0ffa9d0e

    SHA256

    8e8facf19e60dfb677c488954957063043ba7ca94b3f132d89e2fb197c136e2f

    SHA512

    cd39642c1f9b856b95b6c562f035dacbda7d7169c06c7b00a8f87bdced2cf5015fdc4f2b36fe0aeaa0ae03aacd473f5f82e211957eb037c5ba19c3ff9a9368be

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    8003b12947a57a7e4052718ae56ff59e

    SHA1

    4513d7c5312e8f297ec6da5de95c0e3fbafc2ab6

    SHA256

    03d3460b087ffcf6ca866b877effa4e00f5ad59034dc9c23322564e944292e97

    SHA512

    830e5a601e4e1252b8d44e21db987a2e719a279f28cf948e77699360497f9b554a645215554013d0f2e5206564149b850892bdbed6896e4eeb37276b6c49f3f5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    4d566252a1784e3a52385b53a55604f6

    SHA1

    87b971e892f6654a8c720dda2d51702a6a12c1fc

    SHA256

    feb4b6347712082aa1d0e1bcd5adfc0422bf7c0d6472097508fb23e6fd590e4c

    SHA512

    169066de1590e0dc2403d4fd5f323955cc134436161df5559e6b2fa18a7a45b0e1f6e8b552f33fc647c1ed82da6fa92921ff5f747c422ccb0bf872282a18dbee

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    a433928d604ee01d9c9275cc44eacf57

    SHA1

    098f1bd0af09cf904b6d6715dd3cddaa812bb9bf

    SHA256

    224cde6e9c759d86d9be6c7cd046f2e42cdff66d3a83457097f2b68b1d5b418b

    SHA512

    fd0b06d764dfb630f1c26ec654a5f4ef9d12577bbb7f400318a2010baadefd724b758fc657e2d58427e74dafdf282676f6b0d7e437a217bdaf1935ed8b3760ae

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabA113.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarA173.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit