Overview

overview

3

Static

static

1

fee44474e5...8.html

windows7-x64

3

fee44474e5...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    141s
  • max time network
    146s
  • platform
    windows7_x64
  • resource
    win7-20240903-en
  • resource tags

    arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
  • submitted
    29-09-2024 16:13

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    fee44474e568632deb0f2c55fc2c3e93_JaffaCakes118.html

  • Size

    57KB

  • MD5

    fee44474e568632deb0f2c55fc2c3e93

  • SHA1

    f6e2a321817de38c5a45bc85eebda20a6394c077

  • SHA256

    4697ca8914f2f540ebf5228f0048f9ed799bd7fbf5332f1bc256cfa7f616f749

  • SHA512

    d79ece2a8d2a303289307a8042b27b3a90ab8c4d259b157a9c7141b256951fd1ffbd304b1ffa168c2dfaa5873a189891c2714daa25c285dd6b1d82243933816f

  • SSDEEP

    1536:gQZBCCOdh0IxCFn8ofTfKAflJf2mf8fJf9fLfVf3fJfkf4fC6flfkfnfrfYfbfwl:gk270IxubdtJtUxFTt/RsgVtc/zAjYjH

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\fee44474e568632deb0f2c55fc2c3e93_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1152
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1152 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2868

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    8bba00a03008e73e5b27e4c41f3c8685

    SHA1

    63582c992816ab6788e51f8b503576e5b0c28724

    SHA256

    468e72ced3440c77830e1c212e60181afc1a1d4897198e998a3be71ac959b00d

    SHA512

    7c20e2c87a9fa423331762b643d83248f3a527a1e9861403bc44c1064650adae21c1f9c7df5699a5b9cfe472a60583f906d430421f65159340cb207402c3a3e2

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    e58a716fcd8ea8faa0198e053f9d2e6c

    SHA1

    fa29e23f8462d7a0d860f1c22b1ca104c20b5ce9

    SHA256

    d9710bed18ea711ed62b2712c380eeacdccd84f67ab073e7cb5351608da0217d

    SHA512

    a0643e84592cde39e82bf75e65aafe18e979e86d4bed40a831ca216e4e8c5ef5489ff208a846912e3520984e410830c74b7a4b034ab33dc2adcfa5f3ceabe1cc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    7a6e4fdaf1556ef9f0d0b5a247105bb0

    SHA1

    8e03c8750eb197a4724a409dd24f5a85a55cddf7

    SHA256

    95e85e13a38cbbf5008ff9070def81bb234a123d2386e4ef32763fa5c5f2250d

    SHA512

    690c2c9c6ee481e9e179a3deb4fb3ff56e4e02997def07efdc464d4c277d69e99a8e34acacb258a3a3b3dac9b4739fe53da0fbc1179ca03428c2fb8acfce7750

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    5465fc7678f19645f044be27533cf6d6

    SHA1

    53db66295619b6c44c1a5e957f6f082316b2b7f6

    SHA256

    14da354776f5d9ac453c0ed385876e9c1ddb6d5d25ef9326ae290f2f9cdb7292

    SHA512

    13dab12cbce95da2644d803c80fbf8abf9ab526acf0ddd820c0a96f1ae104aec940a4e94942aecb5d930f9b0dbcb7f0d5a5e24ea6feff8a68acb4bdaccc900e4

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    84b084e37b8d2c45c29dc2cdb7358547

    SHA1

    765a79b28a3cd8867e270e2ee89ae57aea255704

    SHA256

    b68882829168270fc339b1b168b35eed9faf96e4e63d1249326e8ebb8837b15d

    SHA512

    e35327591e265d5545d55162fc45e8d84bc0812197d17b8aefdc3c34c8d4f7202aa2ddc8523ef14deec73a14bb39238327632bdea0e033150f553b2f9ea291d6

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    1ad551ee55474a153a0a12c590a4b9b2

    SHA1

    ad2a147df4dc790552ac4335c3821a9a3faea3d3

    SHA256

    929bde278279f2d1952e4ac74d72cf9d6c56cf50dd5efb505f1cb292beff5eff

    SHA512

    351276c86935bfe3052bc9aa97385b43a0c4517c3680a6117ea26ccea75739fef7edfc055ce88f13cce9632fab78e539f006ab9945e8995ff76c45fa1fbd04f3

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    3ca67c3ee5e7b6b81a22a4f3263224f0

    SHA1

    6ff36e5112b9442da911ca7f89d9c330fe50ca87

    SHA256

    04b9600cd20ad65b2d5a8579faa44db626b783d9fb8d08f3fae98a22569f86bf

    SHA512

    611f8f0bb3da55913feeb2781604820a203baaa7c48d932d62240e0897751070e382b7cd4f359b095db17181439208c6eda9095502ddf71d7de1b49507d7cdd3

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    e1fbfbb11964f2861b8fa9ffed844733

    SHA1

    a78163fbc8f3ed83437058cc129115b64ca38321

    SHA256

    e6f021aed946ddd8b959edcfbc31bc8a91b3afb09538cfceef344ea8e7ad3de4

    SHA512

    5c2e0d6f861d17ec09bc15a1c0c988001e1691c50839c949327565d42f001bd116b97907a2fd937f8815a905a34f8d6d9b408a17db2ccecde92e050824b4fbb2

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    4e210a72e87da8668067baa459956098

    SHA1

    38727b304737148e505358f5236744b4d02ed76e

    SHA256

    ebd4b0fbe56d32875339e2a121c2b6298594717d29da1779cbd2d722e76ddf25

    SHA512

    61fa013175ec8893da5caceef6ea347254a83936d0b9d55ab58d80ddbcb03f5bae9ecd4fa4843587dbc63aebb2ea555685668466f602d7fa0f6641bbedd8347e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    091a98cb804f0dca88c2bfc42f5b90db

    SHA1

    9a889cf8b72eccde5fc964e47ee47e631090a253

    SHA256

    0cf3fbb870b949bf49c94d9a2ec17f9d0de8e57ddff9de085f4c5580c2549600

    SHA512

    b4bebf079c6f7990edc539232e4bbfaa2e24ec7a95b6b76afe29a48a70ec81526ff4c17233733c1cdd49d7688cf9105679a570f38be35ae1e7aa6ad203970d35

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    78f74c7e4bbcd62a8a7135fcb775fc62

    SHA1

    b39504d439638bad06ce6aa795b90527f1e6f29a

    SHA256

    c08f3680fc807e66e96da38f40aca841c5b0a14a770bbad483d061d1f566837c

    SHA512

    3f45df7dca6cb6d214779d81dbe5c7cc0b5b68c7d6715e2cc874d0147a0306a0bd0be805e487c79a7fe3c498a213fa72e85aab62c2cb7e7230539bfa1de8f303

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    b992bd55e9183832f4b87b723fe5fdaf

    SHA1

    1f91c4daf01a5833a475cc85fa58efbcf058056d

    SHA256

    435ffc4e391b420f819ffbc6e12f82c4d90703a49761e5ce3c69a8751e0f25a1

    SHA512

    97f69af140fe8db2284c1a77ace9b290c61cb1f15f8fca0ace44bb4ce45ff47972e26198ba966411d3d7303bcb54f1beefcea23ba880826ea0ac6557b573f6a4

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    3c9c7d86bb2f781702e02be005fbf362

    SHA1

    a184e9b69b7574b7737581ae4a5becfed3bb5b9c

    SHA256

    46183a616aa71136d9ac6cfa4040cc8fdd638e434911881a6ea16dd647ec2167

    SHA512

    38576befe36920b1fad849c6e58d65fe206cacd2eb8dd91b5384650c191c1c092989296beae7f31874208d8ec62c2167ea5cbbc666d49a73f21853a061c1bfc0

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    3365dc39542e9b802daa92630ac0177f

    SHA1

    167e443f044686d943d60f2c4e3da66eccf1709c

    SHA256

    aa53ca4307c3c548fe9024705888780ea7a7fedf65c9e159c9783c53850437ef

    SHA512

    481c5a036ca54887ce683a00b036ddd44b7da4f3ba9dd983c0fddd9afaf1bbf83ed27e8d5e4ad7c8325eb38f0693a8385555c538fd7090baffd333b46a0d8920

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    729fb917d4a8d25817356909f6d72d47

    SHA1

    fc4cbd9f4cbc28957a98d9c7244755b38c1546d1

    SHA256

    2f8dc235004ab0608f51b1b3872673d25e8bae11066fa874e726eb657edf14e9

    SHA512

    de0c5db9313cb6806e95b308a7f39dc01273eabe1344a0a55fca6ced850a8d5bba0d2d1fbb3d876e8a0edd602920263001aa4fa2b35d9a95d600f01157208732

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    c027830a69833b2f8176219cf9d34aa3

    SHA1

    1d27be2b4dd465f698f5a5604f1954c473c0636e

    SHA256

    e2ea25ef977742d1150ff26f56d50274b2c216c3a4aaba6a41f063213105d325

    SHA512

    5648c967d114bd59944af22225e98d70c6bbdee56a3df65dc0bf9c5ff05594d52d96250ace753a1a13d81cd510cc9e8234c2794d6068bd8421c15100c4a9b1a3

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    78f6a41bd4840676aedeacfce62b19d8

    SHA1

    64ae16e82f47e09df0170fc29f606d8b2399c9b2

    SHA256

    4a78ececeb5c61e025108e3d8a417e8f1c05c7f3e264790a51b7128944c13289

    SHA512

    8efaf64c08f782873ce614eab56655eb88f21be9ff5f1d88a8e684a764ecdc01f5e3bc150419b7a85cd284f5565f0fe69e3af7765b82ee76802189ec3b45fd30

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    e014a07fe38d96e02bd295dcec14e5d9

    SHA1

    9d0d1b9762af379cd1531a1ea14ea8ac298c83a7

    SHA256

    36ba6820b1012f759644ab6cbcb9c874a7b31745d4be14c21ed9537fd0e58b50

    SHA512

    9f8ae57efc2fa5042d51ec6e0bb9c63282e61b819ee26ce004ddc09c80c524eea23b0459001e4fbf4c40b5ea6fe5cdcff89cd94f0af69da35a7c0bf3e72c23e4

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    99cf9dd613219441ab3d148733078260

    SHA1

    80e04371aa979b71e45829b547866ebf538ba306

    SHA256

    ef5c0ad326a87a1229caac459132cec40f2f2d31a367af893d535bbbfda136cc

    SHA512

    2dafa889dd36e4ec6955a439ee47b83a7e9c25ed1f243e6a79e439d56d134a3b97dce0e5df0c8d89c13d114838eb2396aee846ce9d79a66fa425d644f6e14241

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    2c5bd784837a1c51d64a1a99747df451

    SHA1

    334f92222f632dbed57e97bf3bcd0509dc56df83

    SHA256

    26376e5089b0792f3f7ef6a0c2516be53da4234a94dfc84b8c37f0a25e51f055

    SHA512

    9cd841e3982815e7e43ee024dfb0a3cbbf918e872711ac7c728bba2ea9767d19b5d2e347838ba413c899215f321c2b91e57b905e07bb0a23eaf7dcc9e31d1afc

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabFFB4.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarFFB7.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit