Overview

overview

3

Static

static

1

ff3e604570...8.html

windows7-x64

3

ff3e604570...8.html

windows10-2004-x64

1

Analysis

  • max time kernel
    118s
  • max time network
    128s
  • platform
    windows7_x64
  • resource
    win7-20240903-en
  • resource tags

    arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
  • submitted
    29-09-2024 20:05

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    ff3e6045700b3b81793683a3e9bb76b5_JaffaCakes118.html

  • Size

    28KB

  • MD5

    ff3e6045700b3b81793683a3e9bb76b5

  • SHA1

    2ddfbefd4ee131bef9f410b5102fa489478a2963

  • SHA256

    42b353a3f08e0d5b85e4ce24b4bddeb1fcfe7dc2b8f9b28b2f3b7f29dacbaf75

  • SHA512

    4911ac5649738b65fd180d8cea24065c03dfe4bf8aa9818ce5378a9be5e153ab488287f889ee8c33d5c9f57b90bc9ccbb2e26141bb335877f296b2d1fcf23032

  • SSDEEP

    192:uWj1Db5n8PAnQjxn5Q/inQiepNnlanQOkEnt6cnQTbnlnQpXCPAEaEaWcwqHAi7U:oQ/bSY4xCp

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 41 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\ff3e6045700b3b81793683a3e9bb76b5_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2140
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2140 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2936

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    ff203ebb533d48e913c42cd60fa8d9cd

    SHA1

    286bbe1c1bf2dad6fe58d3cdc5c89e82b062f2b4

    SHA256

    c2a5541085de085deccde0a98746bbf4fda3f756a1810cb74f933c29b70932df

    SHA512

    dff99d567640942d14669b61be848bdf2dc9c50f419b13ceaffe8b8e1cf1253ba26adb2cbe6aa9b2506b764a8d3348ad1ccc44b35317723cae05ae0bf99e2c8b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    32967cf8435621ba74cd94e69713fb7c

    SHA1

    aa8ba522c27e9a4f8ae9cd13861b762a3b3caca3

    SHA256

    3d044968481d776562d0603da77e3333a7e8dec7b92dd1b3c4e27c1561f1c2d5

    SHA512

    17715a7acb1f24831a630454668903c2863c33774c3d7b969638874730a33636eef2b7b2c5c508e8b1dc9ab515b3839756662fd71d7578611dd7b1ff03f5282a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    842db9cbf1e43bbcb418bb7fd4e599e8

    SHA1

    58446b423f3c958552ea907359bb859ae3d992d5

    SHA256

    184a65992225b4160f9d7d423c627535f99a3ca53f628e4c70d100ca3de4ce30

    SHA512

    f9ec5a0cc86d693d5ca63138f851fedb99b89c8a8503624a9fd8197c73a009596766e94d68d52a672ff4f347eac773c7ec2577f9eaa1cd33200a9f7ca8ac7e4f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    758d9ead2a3cf5ce07fa369b57b349f3

    SHA1

    da3a86820500d7d0e588c1eb6a594afa741971ee

    SHA256

    cc8e7b3d9f0a33078663a36dfb995d4b4e51c92cf4823649f5749b4d6a6fa6ed

    SHA512

    761b3add287ca4723b65ce03a88a175560cbd2e42f7e1e407d47cc4216c7c80f82d11c1a57ca696a5a6ce8632f8beadc75d90f9eb9337df89b2e30297baf4ca5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    396054465e859f7fadf3d98511ed11fd

    SHA1

    cefe384e1a682f6ad11e6ff5125e724a5f98d8d3

    SHA256

    eaf17d3f2a2c80186874415d1aa2e7866c7834d53ebd4bef1145cbe793e009ee

    SHA512

    27c29c67ab6a319d41e09720187e9d3de9a01a0d0d7d764f9055f3ce8003040a11c27004e1f1bcbfd0c852673142d3970e2e73e51ac1993e25a4f4bee5c49084

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    3a7ab13ea0a0a9ea9e8e3f242ad29dc4

    SHA1

    e61fe55d64648c49cf6af47c2143b590e42f857e

    SHA256

    634045389c9e52a15ba21a1c4c1d4ff88d215a7a5f7310b4b9d43d81a2d52ab5

    SHA512

    ac546927c9a1104dbb975bb8f4e7b6566c9e36c5de0134abe5e056d095166f3af6ff6fa3b519039b312e392c831bc4ad9234a42f9fbbd70740b4af1d577c2edb

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    f54c5b27cb94d5e8e9bdd6bd76d72679

    SHA1

    5fa56013d6ec9c0040079e9949939f683a91b0c3

    SHA256

    af7e9769b7b440af905dad979eb7b2dc315844f976a0ad0b09adc532b2623cc4

    SHA512

    25a27eadd1f4c20ab6b95b7197000ab69ec8b89ed1973c66337a52c640fc1326261c68a43bb2262676d1a8b1ac2f0fc21fecba9d0bbc95bb62042faba52ea6ce

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    57b5a30010bfe18541dbc7036203ce53

    SHA1

    a1423e3ffc51c684b2a36d6ba7c55add4389508a

    SHA256

    314d97859e478d68b92273498ea4ab90e9882f644c4266d83cceab7bc707409b

    SHA512

    a345a7df5b9ee9fbcca783b9f75925ae9da7a606df6d782f79ae6fb58185baee3cef1cd996d0ca98b457db90f4f3fcdf5757ec575599c4ae6088670d294ca657

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    564922372f355fde4d4784f34da15cb2

    SHA1

    0b363a8aef88f6933bbd9ad90c5a6df960abcc67

    SHA256

    8fc5d931f3e3f3a7f172c896defbf0ae6291f238595df61016900c68b203ddcc

    SHA512

    2c332c88846049e832171750d2dd6864b70939d338e61478c6e93543492d8406c42b0f8e77857f93c2db5f4de12e5f271885b59e3b2c9a2202b00e1475ae4441

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    a9d50306dc21154fc9090dfd40e9ced4

    SHA1

    1c1c4d8435ec41ba6a5c932e53a8b9ba9b1d191d

    SHA256

    21d19b3d2e8da7c694513e9770eb92d0279d4297e58b4d81432b83a868770774

    SHA512

    f4788e47c559da7194ae08774587d35909a657d8f145d7e61d9441303bd9ddd01f688cb7edcead72ee71b3c590688189622d123a07505d0ba75d6bb6fd69c743

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    9caef000a276b92721a13917d8e8d16f

    SHA1

    e1c77142133e06d07395743eb941cbee538b376d

    SHA256

    0d2085451a709c67561539b094fa35a12be6ce422571ec85f7e57fdc43b27649

    SHA512

    7becc623eed2a03eed3b3231709bfdbd69e360eaea6f72b6e9a078e47656e33594dd5ad3016cef5cf3fb94289f7e04d592f6070032d41cb827af9e65a08dd023

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    ac7960a2b6baf8594bdb924fb91ab152

    SHA1

    f399f7411c5cac6f4f9562973299a16252dbc4fc

    SHA256

    23b0efee3cff8e67c7de7f5981ea796b9abf53525652ea9bb52fb05ff712ab6d

    SHA512

    6128005a38573db1bfc0e2899465c4815ca9d0f920d856c6407a99e649ca2465e95ebc0a9ca22af4c8ab9882624f49d1e01a7cb065646c3cd73b79f335707977

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    ee00c48b2df6ff2587a30acaf92a2b3a

    SHA1

    4aa35910abdba3af2e3cfc05ffb3b34cf5c48955

    SHA256

    be2e53da16c41be55ae128da06d734171c384470416414f61d8cd7ed268f068b

    SHA512

    3503475dd202c3f97dd20f33dbd5ade629e14986b3190da8ce0d0c992c6142b1bd7b9227cdeaa984e0a94dd9b74fa55951d41d6e24fec4a0c5a17c01c561c17c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    466c3d6d72bfdd84f570c227aba063d2

    SHA1

    68fb6a13640923011d3e687a0cdcf2e076762dd9

    SHA256

    1588f3208ffb5b18b1b64e59271a202595a9ff98ff7c4c25c5f3c24ece23a764

    SHA512

    5bbd1ddb2f9def7249154ea409eff3ad7e85b9990ed87ed0f92ab9929813565685b0ee9a406990d9198ba857a6619640531a0f267f691675f8ac64d21910c58e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    af70b21e44cc3380e0f462957a101fb7

    SHA1

    796402fec2305f973bf566ce8ceb43aa7d1fe80a

    SHA256

    b24ce4758d74c55f5f1e0b1844a52b230c5312e09d8e2bf8c90cc52ca855806f

    SHA512

    8f76e66842073b319145ed0b8a456dce738edc8688927593a816abf894f73d2a7f6e3551b1fea82fe84c20588861b21812093544cb82a88ef7f31773f018159a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    a2f07d75e67857949b4718d9f29742fd

    SHA1

    eb0eef535c53f6e92e2bcade8fd7171424efc50b

    SHA256

    8644214481032a7c2c52281a554e2664edf33a23788622088eb0601767ee87e7

    SHA512

    b77af598ce1ae056c6abaa04cf61f54c99481ff863c5a89bc4ee0fe148fc0c19905a4735f45ff88bcf0e67460e270d2db742a2a6e8e260e3a535f5ba9c29477c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    c465ff9dd034c91f23dcd398b6df2cb6

    SHA1

    825a868d604e01dc940ce23c884829e4e9737a31

    SHA256

    d9d49daeef4eeb9e165c676d37309de65c543e9dd85a67dd3ddb953ca6bd92b5

    SHA512

    fc279cdfa0f74d49cbd982381c0e08ceb7986e5d1215ce58032dfff61f5af7c3aa3ff94805d279fe31f6a0303ca3caac71dc99458f381deb64ac972b5455b43d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    316e20d5d78a6cd9ad71d745d8294a12

    SHA1

    dd5438bf0ccbfad9709bd7802cc02931cac0ad6a

    SHA256

    e73fc578712d843e142a59becaaba6e85ee92325951b87519d2b591b8bb4e04c

    SHA512

    7b76ec3c004ae9c7dfc9a8c6da1fb0e7f1d74bb6459a14d87e13872629e8a6b65908b8abf433f0b334b286edbac3be958c6ad386d99c92b6ce931413dc6bc66e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    24933ab453d28458ffa68fb2da57c983

    SHA1

    b0da12a7811747493d46a7dd2ab3881a7bff5ca1

    SHA256

    9ba8c2c5b45df805146c59a27ea1a5403f2aadabbd09f8619ea88507cc8f81aa

    SHA512

    1fb7791af8a289d8ee359dc3e472eae45bf9e06955d597413283444bcfa24ab408d9d9240815d6c7d5ba896501cadbe5ba5c59f7fb0e0574f099bda9ada92caf

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabF30.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarF81.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit