Overview

overview

3

Static

static

1

0015fea225...8.html

windows7-x64

3

0015fea225...8.html

windows10-2004-x64

1

Analysis

  • max time kernel
    136s
  • max time network
    124s
  • platform
    windows7_x64
  • resource
    win7-20240903-en
  • resource tags

    arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
  • submitted
    30-09-2024 07:03

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    0015fea2258cb7bc890425f14a939dc3_JaffaCakes118.html

  • Size

    139KB

  • MD5

    0015fea2258cb7bc890425f14a939dc3

  • SHA1

    ab9c560380c883d8a87ce7389c96c839d030dbcd

  • SHA256

    166879e8414426452157678f47463ff090a4a5e63956ef388b2446e134b4fc22

  • SHA512

    8a25f43e37531c1356020b5272b99c9afe9d9ea15af9a223eb7cf50f97aeecff26d36b690787a5ee7460d07004a812eca356812f7b28fbe082777259cdf1af7f

  • SSDEEP

    1536:SYF9ALMqOL5EqiDC1LGoznj3wdHAlQPyLi+rffMxqNisaQx4V5roEIfGJZN8qbVC:SYFBwPyfkMY+BES09JXAnyrZalI+YQ

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 41 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\0015fea2258cb7bc890425f14a939dc3_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2692
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2692 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2688

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    ae2e377043729c9b0a4f0c9b95833d78

    SHA1

    33eaa321f1943b57035db95630428b7edcc42b74

    SHA256

    e6b60b6566d4e438a3efa101ce28efc31662675fad7f7b4a1d257dab90cd1ebc

    SHA512

    9ff501fd72318e487ccee99e0646559dd76877964ad4b85f212b7447f21c5c299bfa45a3a6017461d644d8d23180a8c1bb52413b2dcd6fbcf1bc0347df11ce65

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    b703b5a170788f7ae68d71f6139c7877

    SHA1

    dcbfa4afcba180caefcacae0bb3b94656c19b1cc

    SHA256

    c04269e7a79bd4e719dfe60a248a75b405a1d47b8b4304c96e3f46068852a5a4

    SHA512

    153a5450a18ad0960504e6c1d9ce3a090b9f716a712ca8a1eae9a1ef9173edb9c33120a6aa5496fdc5ea1eb5aab370f4f8e85d3521efb0a1a0ae638103035288

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    c47bdfe5bfe1dc310693185b6b1fbafd

    SHA1

    c0d9f82134f069c3a972420d074249ea831b3200

    SHA256

    722f3721773fcf3c636980a108f208e49b7127845b35aea7fdb698edbc7adbcf

    SHA512

    d87f491cb160829bd7a75d7103bd2178eb2e5f44906721d100f4bff3b1229cf02f5a63fd99718005b17af7da29ad61f96c8d0c541d213d3f77d922e987b97084

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    fcc66984e1be9507fbda16986d6860ab

    SHA1

    924aaf718a17112df53d865f7dc20f873bf858b2

    SHA256

    5787a3c97248448d7ef6639bac13d771736018c5c59cff0090b388aa4fb38f5b

    SHA512

    125d929c6dbe25c69995e0594c584824876b397ef5a5f05bd376205addce2f151a259ef11d2c7a76ee78f2d4d0dc79705efd81a24c0ed65fc99e05afa52cc0a6

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    760f9abedeae75c70ea9c1459d8c1d05

    SHA1

    b9f1672c629cd72842770b6c31a42a630ebb779a

    SHA256

    ac78363734b8f5e44ff07e5c9fcfe7917ec69ab5886519f22e7e16ee0889d7d9

    SHA512

    730fbcd16e9165b96900e50b30e5a24bb4f3965390d664ca5fdd5711856e02ca63f6075107d6fe9dbdde718e108b50708626a9c0aa9748d9273155287843c1ab

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    d5c9a5c92da7088c3aaa90922715a023

    SHA1

    2ec61f877d44f601dff0b750bfa16614328e37e3

    SHA256

    256b02d269f6899db05cc936ac47c9a2a811590106408238da5b68ac3dae5b4a

    SHA512

    dedbf43dc61a937a45775ef417d78bd8366f54ec857b824225c5b4f131d2f7f3d8f9d3ff4588d58ca155b7743fef7f7bf3e57b299e036fab77dc9739af05ce86

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    115f6f34b7f67cab3abc8f1b0aa3b672

    SHA1

    0256ecd60678259e6b81cad167620ffcabfa61d6

    SHA256

    379a1338c49c6a347bf93185c25e4866589597636388854fd9f72e1c6655f884

    SHA512

    ae91298e760281d8c5ec013dc5fdcb38d981ad74244a25261b44a079e7a96c7712b597ddd38cb7d52c49c44972b7fb7ccd7e1497652f6554f8510a4315012d82

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    5b0ffde3c942ff811af63b5b882fb2b1

    SHA1

    47d9890165843e514a9b3979f9204d6eec841d1c

    SHA256

    805764a1586d1def0f8d7e93cced14c626bd7a7c13b4368a1bbb15abb19fc765

    SHA512

    65d651ff593fc099b1bb3ec7cf7ddede6f8c77845fbb74a94437d2700c2b535e2beee1a2dad6bed49e2e8546cee441d4ed0d01c84ae130dccd8acea7bb2ac5bc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    a703fb6137bcbe1f5aa8a5f95275525f

    SHA1

    1442453561ef0c3df147cea37572a3e19be5eeab

    SHA256

    9240d8c514a02e03de5d9f4e29bc4e22c57aaf47699966cd7f5a7b7fa1456c97

    SHA512

    84421ff34bc38b40944323ffb5af6e3b68abe2407270fa20edf718ff6f154db6aec0203e3a5b0554e5513cf5aafd59f462b69d4df748c60c22434e971673a62d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    ae9d3a2bc7f1ef3648b06294d5e199a0

    SHA1

    0b07edde60308f2d56f5e62d6793a79fbbdc2610

    SHA256

    a4c7ff2d7d3620042841156422c70fea3f74a75b26ee4a84a11fa4a5daf9ba52

    SHA512

    c7d8162af4d12ca64cbf2355b01a515787f8833631e60c12fe25003b0468ea5cc6f305e5c637186549f8c2dda589e701e7ca0146c4116c2eb5994aae3aa4597e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    d7b5b67b7fa8f4babf1092171e5d2a6c

    SHA1

    5b5f31b98d04172328b4cf884d6bde4237cfd250

    SHA256

    82461eafa42ec9872856819e59454b127ea7bc0db187ef4ed14e44a9e2e4d1b6

    SHA512

    d78f4cb885257b541e2c9e71075bba26516792070eebaf970a216ace3fcd7c6bbbafee35dd1346dcef7c92dde99697a1030c60023cb0462e5e8cede43777f3b2

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    95293234c22401c4b031f2e2f14034df

    SHA1

    6b86f2b00c9e356f3cee8897f3f50c52cd0c2a20

    SHA256

    80631656926172ad7cadd373103fc91bd2b2d6b046bcb04b53b5a413492c74d6

    SHA512

    f795fd3700cad0e8b060e9f8c86ec36f006b246f819f19e0ffb4627d133887b09c8afcec68f4ed574369a411ca36184df233b20440a50e7536ffd2e32f8de357

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    9ff0cfd16322166006d69baca16fcf85

    SHA1

    02365f225b5eacd387b159be2efa7153babe4a9f

    SHA256

    5ea35cf3869c7aaeb7c742bbdbf6af3f9765f35192a91546af7a18969b4cb7dd

    SHA512

    a5e738db55de25827f5efe1982e636870f7e820ffce626c2d460c2c537ae6b0c631f5c13b1ad2ff1667555d296333fed918c8cd329c0568e642c02224cda885e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    d187fe925a215139cce25f29e4bf6969

    SHA1

    5ceaadd26690ef3b9a68fc6f6a79c71808d3427f

    SHA256

    c1fe027de3c333d88ed55cd9278bf6351aa4f124b6e4f38fee39e22c71a0126b

    SHA512

    6cd3c93c3efd76d8f8a42bbac55082578bde9bc2a2ec7991b70bc688d6094f725c2eda1ce894015344335043725b34046cd5f100a9185d795654a43a887c7c55

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    750eed41eb1ae325382f3c12e89949fe

    SHA1

    af5f8f1abda258f61bfe334cfe40673436730d23

    SHA256

    ed20dc0bd58208a4cd75326204a829f776fc8bc344adc24010b411e788222836

    SHA512

    62281c101825e8d1cc2a73f8a5a3801467e3a3bab81170825ff2a5337366bc1ad760e0e177aa981490ea6de39564789b6aefb7aa5655b9c1a13500e4c883af29

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    16f08fa1078d1f150155141c818b444f

    SHA1

    dd1d04dfec72b818f7f3a0111c3cf59cbd38eb45

    SHA256

    2cc5122970884f31abfd6aafe2b65f2959ae725d3901b514438cfac1ffc966e8

    SHA512

    c4d2749c57b34bd271a3d5665fbed644dd8de4dcc020111ba24d39a417e10ef393903b92ebfb924710093b45f9a26f1f7040aa3e278c22a3e181bff2d96cef31

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    3f2dce9f5e55dc66516bef067797ea49

    SHA1

    34bf5112d275cb70fc9066a1d4cf05be18f8efb6

    SHA256

    c29494412db5d3b3ed32053a8c950f89fe71e2ff69bb5a73c260ebdafed0d17c

    SHA512

    ef3f277eea637a5a95d9353cda5eec87c2c6012ef24304fe0081e686309510ed881e7433d71dd5e11eb888ece3f00a86140d4d872a3162485eed7950cec0f39e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    a99cfc013025c1e3f4f47de0dd57db42

    SHA1

    b900ad9844c63e1d11354925617d32f94346c9a2

    SHA256

    80206af4bd6affc9705793015ac2bf0815a79b6beacf65e1caa6bb852ba81ed2

    SHA512

    1f2fb32deb394236565e6f9a1c9df29fdaf7006a3a21fe0f810359b22ce3f829b985e715668371d42d8f7ba83b4e87c8ba1868b8c917cc1f622c7eabf2387fa8

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabF05A.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarF108.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit