Overview

overview

3

Static

static

1

ffdad89290...8.html

windows7-x64

3

ffdad89290...8.html

windows10-2004-x64

1

Analysis

  • max time kernel
    69s
  • max time network
    135s
  • platform
    windows7_x64
  • resource
    win7-20240903-en
  • resource tags

    arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
  • submitted
    30/09/2024, 03:21

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    ffdad89290915d6c6f98f31f9b327adc_JaffaCakes118.html

  • Size

    11KB

  • MD5

    ffdad89290915d6c6f98f31f9b327adc

  • SHA1

    6b908389c4ff9a00339698e8350657699d4fbbe5

  • SHA256

    1b98bd4fa00b182d350c6eb6cdf35e1d71441d7d362a5fa11c951965d75b6b3c

  • SHA512

    efa99f0b9f2093435cb44832ab3c2123fecbe85048333b8df75c26d6bfd140fa79ad4f583ca733556825b8b764fbcf6dd5009f1a1e3df0c993b8a41cd63d0686

  • SSDEEP

    192:G/M5eS1diDD8KJMlR8HPHFjYg9pr48nug7JFzDacVw29ngMTe4ZRm:GxSjlqPFEyprug7JFzDacVjy4e4Tm

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\ffdad89290915d6c6f98f31f9b327adc_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1140
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1140 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2276

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          4a9d67e68c610902104de0cbebc84aea

          SHA1

          9141b13dc1e39ca9bec85a8041b1071848a297ed

          SHA256

          1f350067f94538d15acca5d1b9e53fc4f55d742866c9377240edd31e29800206

          SHA512

          d71c2b36390e653e0787c2b9f978ab7c7a5be68d4ae729de14271b61245ba31346e27b75457d9852cbaeaefad592c5b3f11814a3a7bfbcf79fc3397c354240a8

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          64fc251b355643959e6d89dcfb135d4a

          SHA1

          8772d5147629efada04b9ad6b614f095f36974e7

          SHA256

          74bea4fbd3e916d4b674128fd6da3d2593a9fd00346a751cbfb0b391583b01fe

          SHA512

          a8ab08ecdfd81196db12b57ac9e2a03bea3b6cc789bb6ab57bd4692ee6c6a537f23965ccc19ec064180518f8af9bdda716e1d2ec3455084b1ab90482af3276c2

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          4bbe8a6c951f0998647c43de65579add

          SHA1

          319d84737bcda1381980d149019d4c0a90b00348

          SHA256

          ad30606f4683bf052db94c413db2e1537f3c088ebd836f4f654229f6ab3f0cca

          SHA512

          888d712735fe22c3b2fe3ad830ba6203a84483b4030e9a432d626709f39a73957310d6ba16c6ed55700804977ccf0bf92f4bb56154648d3cdb4350ad9cd6b3b5

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          fef6db31a277137e70e46a2b6cb4bb33

          SHA1

          f72ace84309cf5868c348c060425c5b61c30661f

          SHA256

          2c22c3b46501266d4fdc5b0f1998eb2c3a3c35642e64cfe08ef7d1aa56d5f9c9

          SHA512

          9b2d27aaa786799eb939c5b4a5f6fde6de781b8556e4cbde8400d390ee1da908335d6144a599c35775bdce492b78dca2607ae27f17c19d54fa62631aa647354a

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          478e0761da75e17768c747e3c96f031e

          SHA1

          f40a0236d0e4525e821c9512f6f590b246494d3d

          SHA256

          b048a9fc7c88b26bcaa1ba6d9d690b816353ff256ba941c472c34781094c424b

          SHA512

          86f32ce73fc1713acc679612b56e0843ea2fa8e4ecdbd4f55cf7efd8ad9d1c0cc82f597c6fb5afc6fc89864f24957c8e67d3f3b8d73750a27499d76b5ab39863

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          4f1c798bf25e1d576be8d1a9b357d420

          SHA1

          9950f26416a93699b8e46bde8bab63e780ddbbd0

          SHA256

          a42da2748813507b917db5aee1ad3a550f9659030f379b05efa0d69e38e76aec

          SHA512

          ae10a73f8727244e82f03e12dd8d6901e43a62b08f4f4e93515f241a8af935fbebdf5a2e217dd8821add88f106f17f334b3959705bd0beff0044830995f71cf1

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          7a2a3845ff9d2d1125d251db868f2395

          SHA1

          45a844fbfc292676a6d1809e5bdeeb95be53c395

          SHA256

          cf06a833db3b9d7b26bfb780e72b6579a3870ccc7fc79ac5b9ce4ee08cb70462

          SHA512

          4a733528f84eed0b79f61043d7b6e8b93b440dfaa4242659e5568cee374082cfbb84ff40964aa178c5548bd5bf5537642a30eeb1bd1ba27125a4e16a72c7d621

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          7bfb7d7abcf6748d0126211a482529f7

          SHA1

          10a03fd4e83c709a6f90a5c8534a54e5842a2dc2

          SHA256

          d49997069ca09bce596ec1e22419fb1737ce2c500c316a797435002dbbbddc31

          SHA512

          01f9e0fa079c2c1bb8e25670bf98ad6820f40a41746019d31c255788f116e63f6777dc87ca910a0602be71a9685edca904b016f376833db76e04d375208a000b

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          2440448fd6e2773317e7c6e65fab45c8

          SHA1

          d73842c8103683ccd671b958a6f5fed0e291c4d7

          SHA256

          dccf8918ea7f18aea9393f79bacddcbc0dff64423e23dd20705076283dcdcd8c

          SHA512

          d8a6d5fbd396a89ceb379663d1dcdbd56a6d5ae2d8814b46da74f2a594d2b16f750ce36ffa8c45f8c5a67c431e87bbf0be54ce789c4b0f9b7a4292260724658a

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          f388fb9f5f86daada55d30f91a7c025c

          SHA1

          3c39e0823ea43f8849baccbf9223ea32ce2a23a8

          SHA256

          54af586324da1b0bb4b1d31ddd278cd4a33a8aa1d376500bea0a3d4c4aca39e2

          SHA512

          935a4ea777f68c62f3fbce1f10868c8e3e368d43e4060c2f1271e15c92491ec0c8ee1fa6149afa755f0a002ef3fc82f00d32ff4f430b7535611c164425299b95

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          b1cc1a24ea3ef951a3d7b19f5bfbe514

          SHA1

          32486071c0cf41028e364848d85b2b23bb877584

          SHA256

          e75e2f778960ca8cae449ff8ac694f7ca765ec6d339c8345e3d240d4e795173c

          SHA512

          99e2141ee58e739df961721e65e5e933fbcb94881598c0806d064b3d71262ba83fbe60adb2d89f5678202ce5150b91d466216964764a3d974ab92b04be9f625d

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          b9c9bf2799553750b77aee346dabdd90

          SHA1

          79804095038f918cb430121323388e7e12f3acb3

          SHA256

          011e565b2253849ef22f0ff30a7aded9f5633d1cd7a5289471526c54e5bc46a4

          SHA512

          d7bb0dfe25da28b87f7b869d3d8f0959808aa41ab83ae08fc274406c6bd10d102afa96dd04116b417e12e36356a9ddb56f1c056bc01990edd6ca265b79514525

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          2e1664e04b20f25a0ee4e12c7be55a46

          SHA1

          117a62cfa8a3b19f8cab25e7c9fdd72cc39bee97

          SHA256

          5c6e33c1d4db435e5db6d023060bf6f3a175eeb5a85f04b51dab7e6f53040cbe

          SHA512

          7d5d26266fc8986e5f9b109aff5194d31b36b9ef34c87dde50890857e7db3b3e582c434324d6c6c63ada6ed3cb37c910f69751fe35b95aea0e40d9d5188f0ddf

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          bd8939d154555ebe60ee6e6990c6cf5c

          SHA1

          f6cad53f104979e0a4ea929b53c6006239de4e0b

          SHA256

          64c820105532d54aaa8c47a33ecba2aab3f69513a6923840cb800d0789dde5ff

          SHA512

          d0babe2354dc5c5193edb3aac1b569f64fcafec0f4164cbd2cbfa70c65287e4d7344e337aa0c4836aaba9342a72582e27c705a712c4d1166639231ccabb46560

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          f7258af733a8beda2bd9400ef6a876ef

          SHA1

          b502467d4cc1af25b459cd3117b1a7b680ff681b

          SHA256

          13065078c7b6d9a82e348b48f551bc2f6b32981e9b35837aadd4444e567c45f3

          SHA512

          b4330ea09c0f8c540d213daf3b81531de21ef70df3eed65ea5e7d23919b46a6cb3444f78ed47b0e675caeeb672442a05c170d592c20225c632f5621b40824f35

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          1036d861116d87843da951be42e9fd19

          SHA1

          f1a2e2b393ba5e9f59048245dff4a4c70da1641d

          SHA256

          b1b88347e3e9b4912e04009cb047357a628cf4e948d8b58fa6e35e2930ac0ef6

          SHA512

          0a0c074cbdaccd95b61eb79ee6727980ff370ddecb79d4e42636bc11226db898a417591fbde764fc3aa2afb8edd3068723d971816633f3316b439e5e634b72c5

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          63aeaa1589188315349f430826b59874

          SHA1

          c24ccc23713f1495a364ee5fbbd18624130b0291

          SHA256

          433a4c83b9a36ce0b7203c058e2dcedc9264303828f46794b7e33659eb922fb4

          SHA512

          7a9c95f74b791d84f111a83caf9a9fc7323d5f96b3d57f4b451779add3c48c1b7e3faceface724998d76f4cebc989556762ca55e0642ce838f87c491953530cd

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          87e0a8d0df0c0d2db42e687330d2d293

          SHA1

          5487481de25607c8f211d271d1520e422c307cec

          SHA256

          565db0de6e7e7b968fdc33e035c679131170d62d7e68f527627868ca1e8b6e83

          SHA512

          c027fda2b698d390b1f4e79eb764d35f6b5337cd9dc12fa3b766fce7be7aa0033909fdd35723b02884c31f369cf2358668e63f04c80828b008a09e38602c30a0

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\CabBEB1.tmp
          Filesize

          70KB

          MD5

          49aebf8cbd62d92ac215b2923fb1b9f5

          SHA1

          1723be06719828dda65ad804298d0431f6aff976

          SHA256

          b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

          SHA512

          bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\TarBF7E.tmp
          Filesize

          181KB

          MD5

          4ea6026cf93ec6338144661bf1202cd1

          SHA1

          a1dec9044f750ad887935a01430bf49322fbdcb7

          SHA256

          8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

          SHA512

          6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

          Download Submit