Overview

overview

3

Static

static

1

feb4177aba...8.html

windows7-x64

3

feb4177aba...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    138s
  • max time network
    118s
  • platform
    windows7_x64
  • resource
    win7-20240903-en
  • resource tags

    arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
  • submitted
    29/09/2024, 14:17

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    feb4177aba58a366eb4061efa2ebaf1e_JaffaCakes118.html

  • Size

    163KB

  • MD5

    feb4177aba58a366eb4061efa2ebaf1e

  • SHA1

    1f1393382240e90c0ce66c0c60cb3ca9dd4aca10

  • SHA256

    dc2ab8783ecb3ca92af23a48aa16d165bd7d0f36a0488129acb15306d99f28a1

  • SHA512

    339be334a352e3e21c9f4d06e636cda697414d3bc9aa608809fd6313c53ee8a2e6b16dfc3f2aa77b6b194eab3459bb215ceec928b96cdc7ae284f5c0f89f1eef

  • SSDEEP

    1536:SnVH/JDjuDcoo3ylROxKRhyLi+rffMxqNisaQx4V5roEIfGJZN8qbV76EX1UP09M:SnRh0HFhyfkMY+BES09JXAnyrZalI+YQ

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 41 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\feb4177aba58a366eb4061efa2ebaf1e_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2540
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2540 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2524

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          5cd0ed43b5ae82c88b7c05a066ab941c

          SHA1

          5228bdc985666be6edf7215a5d6e92003dba145b

          SHA256

          090029391041b18ff9b45df94cc632450cd4fc7d74763a60cd629d98b548f3e1

          SHA512

          0436513404db5cc62a6c2f484a8d17137fe305cf0a412742ccce954c93f33cdcac363da3d7dbb28d34a6a812ec97c950797918c6b84180d7242961e31a7a5e37

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          ffbdda33d03bc1f1c88b00b0a3c0da0e

          SHA1

          5f4bd4497e285c6f5ec7cf36e07f6306022a9460

          SHA256

          b88e67ce23a0f7abde52210e31c2ca053559eb6de7d7ecd59a39d76ce5079aad

          SHA512

          d4eef1ca35560be57c1aab80dfc08ad37488c5f049bf3a9b17abfe8a015c7b057990e9c2b2100ea3a2a1bb0500012a648ac092958586c08dc5908273e0981df4

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          1dd4c9c5701f54dbbe4ee1cd30d36851

          SHA1

          ca1175ab8cda981dddd04174642f8bf176ca67dc

          SHA256

          9b51d2410ba4d7c173a56defe4e6bf516dc6d4e1f116a2bbc2a0c2ca3a70d13a

          SHA512

          6d6acf8319e1a3dba868b2aed0ab442e961c0ea3feb07059125727ced4f64421d2b41d189bde8154631d3f0ae9cb4ad7d41fb14710ebf71d6e88a02f4d1eaf99

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          773146f96c3f313fbbbc47c7f595659c

          SHA1

          cb9dbfa8e282623cfd7d239c7730b60f61685ae6

          SHA256

          0d38f93a2a33acfa3cdb1b468bd881dbfa252c32181e8426bec0fcf6d524a359

          SHA512

          03b0726a50c78b671e7697b033eb627d26497b50930c63cede25e9fd13d07302b257fc90ce2256f755f9475c992e2fa4469dc3e75ef624177a2efa4a30dc7dc8

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          6f64195495dc18c9d056f2de4429d5aa

          SHA1

          086cdd31d8686aba17607cd07ff6d541390c5282

          SHA256

          3b05fc8b06aee093aaf152c3e48275f21e3c6dc3cc919d500989a06f49869e39

          SHA512

          fe8bf877b5f62f62f900ab1a4df54c8d6699d50a964a55bf4f95ad7f9930cc60f2316e172d36cf235a9a05d855d3651f63e0d57b391115e2b4882d000fa4e359

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          0ec0134cdce2017085b04244016f6437

          SHA1

          71e85461fe8ce66ed2ec45a66a7a3f1c436edb16

          SHA256

          75071f8972ed6454e25be3140e232a6eaed18bc607a8ae9229a248c5e825a2b6

          SHA512

          3e47c0d6c154e39d29c1aeef761569f75278f9edc0adbfa545967bbef98d2d26994fdc675d311d95b12035d91b5d836b3ee7b436351cda6da3a96d50b799c59e

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          2a25c622583cea0677ea1620accc9651

          SHA1

          01f1da0c1b96c9fc17662fd2ca5b688d36075ec5

          SHA256

          d584231d83cb2f7bd53b70164ec0c0ca0801d2cd5ec8cb3eaefd31b2684b122e

          SHA512

          660e7dad2a4712f9e332609bf9777315c9b053a2b91ca173a5913b4034e59bce18a386b73d02d3cbe85e73cb4151c627c3800592c36e288b5e849178815245a4

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          32c8953ad4bb1fe4e85bff80523c4217

          SHA1

          c8609a91bd28bd3aebc547e38e5d88a1a9bdf3f5

          SHA256

          21a61acaafa57c2c22691071568c3fc9b6394ccefd20f21412692a9e36357058

          SHA512

          5da93fbd300f0990d574280b805af022af7215e12af7aeda58fcb72b67170d8ed44fed9c56d3b1ddfa71d0039dc9b5d9856e66bb48771fc1ce8548aa60d7c09c

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          2123aaa5eb13108973a67706a66019a2

          SHA1

          ac0543ecfc363f5877b2f6336cf2676428f1ea10

          SHA256

          c5a8ae5f637cfaa693415492d7b654c2e58dc896d128e8895b7e6089c0066b15

          SHA512

          f41ce9e0dcd9aba98224ef356d3490ec09bcb1dbe338781c92b4f0aaf07db231eebb2d9acbd8d450d0f9f5c758bedbabfcad6a5ac1cc363c1024eb485b7d8a9f

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          3385812df284e7ece5f34353abfe9c20

          SHA1

          d4fce15217bd0d29c8159037555371208e6f33c6

          SHA256

          5bf908b668d7cdc30f9f3f42d1154e30f7183107bf46cb391107f384eefa6d72

          SHA512

          c187d7782dd2a205263c0b7fc6cdfe202fa8e4071335e4f2e8aad380cea56b71dee94230eefcc3993116102856ea95caff61e0c5d01b29f8ac83bf9d312679e2

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          a71895eb73b7c5e23fec30568c98c6be

          SHA1

          17df76f29491412d6bfca90b80d4de80bda1115d

          SHA256

          7a3d2a23dc518df4358c7162a272b6118da0b9c93351312e76b0d58736560f1b

          SHA512

          cae5113e8a742b11ec06da6a137044c58e8ea6daa75625fd2a0c36c7e2b0ff45229346c03be0c49de46479f40b1af61f0137c4e2bcb4490ec1ff7ba7e3dd101c

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          92a250227306b85166e1235175e24736

          SHA1

          d61feb288727093da0e4424977c4e2a23ba58736

          SHA256

          51661f2b0832f2f5e0395da0b33e162cc2bc93a5937a218c80b9a64fccd87ba4

          SHA512

          86387c4b24d6a64a33bc9054d83e0241a51cb7240116a180011e05a3f009684120025bde5ccd54db469c7f2cce071636024fbcb4eb93b26bdead389c728695d5

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          fcf1d6658246ff0426385d934d22986a

          SHA1

          ecb3c0c0a3d2cdf6ba59a5828cbc98e70c274c2c

          SHA256

          c3f566e6ce04ee8b16002ec3ae4319de1c0c89545092e53db8bcd24785067161

          SHA512

          58e61a43effd436cbe1c8cd8712756e2280dc06fa758a161a1043816a32589ed97b13b96dcee914af9cf984d9df56c5791085deefc36cc778b29ead0d9b37efb

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          e2eb6dda648be246f996bdeb29ccb0e5

          SHA1

          1bdae2ec1cc1b05f3cfcc7620c024a9a6948e9fb

          SHA256

          00f1348607b23e60c73d9011300b5157b6a3d4b5bd04142e79590c73537e99a0

          SHA512

          5fda824c65e9533ea9a0cab256cf847c7eb00f0f798272f01440e68e34d2bf8af24168f96d1e25a6629058ca5d165ba316e84dd0ef10e0d561f230cad28d0e7a

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          0a2e747cf699d124876fcbaecbdfa9c9

          SHA1

          481ea22701bfe9e940d2ca5421d2509c7dc1e91d

          SHA256

          f2f61d003a77c6a7125ce88766433f43174f5e4750546dad053451b78637f491

          SHA512

          66b7d2c68b57c606ddd4439628be1188df876b81d8e99bf64409c14c55f2580702fa7f5a838f699dc4fd64959969ca1655da7e4f3c74c9487daa893545d7e764

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          79b798bdb45d835be7a5d0364de5bc26

          SHA1

          09905224ac5418aee54bb86c9abe1ea69cf34146

          SHA256

          f91f2a125b491b43b85419bce765e08a5dcf35717d0d2802805ed09f776cde6a

          SHA512

          660e7c3017ade14cad797330bd881fcc48abdebd24f88e03605113a7c4d2a19db4bd553357dea28d634c55989452d491e505af350a5ef41fa397850a7d58e173

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          ae9f8cd5b98ae77dec199fc61f1e1b62

          SHA1

          f7d94aa1a8d83272a62fb4012d77cb0f861b836c

          SHA256

          ab1e76fa66c67178ca02f251a41a17d30005b3ce7148ea486dd7603d2bfff965

          SHA512

          3de0f4e0f6a0b618489f8716cc451361cfb90832e9728f9cbf0f8d0f642f7885f624bb1a8c9d0ff6c9da6e9998d47e3e52fec5b4190d5b65df044c28c62d10cc

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          aea5a395439c85bb33ac453a0398e195

          SHA1

          4421906b2b6c681f10e8c457b6390a3f028f2c25

          SHA256

          b2942417d2cbab1421c4262468a76c2661b18c886447881585f480177c4576e2

          SHA512

          2dfc2c57e7ce00eeaad892c99f76d674fe1e4879589bd93e998ee67fd60d3b7f6ac3daeadee7835ab57310897d9216d7583065a7ae59a5c98b6e247df68579f0

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          64edd4f463980d007240e1d0c620c9e0

          SHA1

          36429cdaae9f99745b49379941b4b7c624fefb20

          SHA256

          8530fe3bd2afb9fe3a64eae9b61aba80e16fd41d7154a7aad3274f0850753dd2

          SHA512

          1ce7735fb1d70836aa352a3b3ebf76da159e3d9d86119115793dfc586f36f105f7761574964cd42af009140fe0044855e115dfa52e70adcf2a32228168f964df

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          569482491ad9f66cd435beb57381819b

          SHA1

          f8a9d5b7c54bf0970f74548469a5baa776f3713a

          SHA256

          1be29387598c6914c9fb08956ccbc42a3c6c5510c0a72f8072d03eceb5d1ecc0

          SHA512

          8eeaca12322a6ace8a3c330662779e4a2923499d499ba10cc2b48849cebd8ac79cc6679ca07b7c64aff392d3a6cd8bbd962a678b61423f8e14af50dfe61755c5

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\CabCDDA.tmp
          Filesize

          70KB

          MD5

          49aebf8cbd62d92ac215b2923fb1b9f5

          SHA1

          1723be06719828dda65ad804298d0431f6aff976

          SHA256

          b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

          SHA512

          bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\TarCE3C.tmp
          Filesize

          181KB

          MD5

          4ea6026cf93ec6338144661bf1202cd1

          SHA1

          a1dec9044f750ad887935a01430bf49322fbdcb7

          SHA256

          8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

          SHA512

          6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

          Download Submit