Overview

overview

3

Static

static

1

0bf8b6a91e...8.html

windows7-x64

3

0bf8b6a91e...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    146s
  • max time network
    148s
  • platform
    windows7_x64
  • resource
    win7-20240903-en
  • resource tags

    arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
  • submitted
    02/10/2024, 18:25

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    0bf8b6a91e8ed387656fdd866e804f2e_JaffaCakes118.html

  • Size

    107KB

  • MD5

    0bf8b6a91e8ed387656fdd866e804f2e

  • SHA1

    90af48ab7042dbe98a91505c79c846a0cf82d686

  • SHA256

    290b8689739687678d2c78cd888624f27ebf5c61e9edd3569726a2136a5bcdd2

  • SHA512

    a6aa7bde9a9fdab5b55a74945ba84d18b2b2627d0269415cd3192fc0be93296bf435bf13d98db7db4bb5c0b7ed50d8a36e239473e6f81230a2cb9c42d9db97ac

  • SSDEEP

    3072:VtZmQAb+feUU82DlOmeBg2rjLgBF6HPu+:L9fJs2rjL/

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 64 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\0bf8b6a91e8ed387656fdd866e804f2e_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:3068
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:3068 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2800

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\3C428B1A3E5F57D887EC4B864FAC5DCC
          Filesize

          914B

          MD5

          e4a68ac854ac5242460afd72481b2a44

          SHA1

          df3c24f9bfd666761b268073fe06d1cc8d4f82a4

          SHA256

          cb3ccbb76031e5e0138f8dd39a23f9de47ffc35e43c1144cea27d46a5ab1cb5f

          SHA512

          5622207e1ba285f172756f6019af92ac808ed63286e24dfecc1e79873fb5d140f1ceb7133f2476e89a5f75f711f9813a9fbb8fd5287f64adfdcc53b864f9bdc5

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\F0ACCF77CDCBFF39F6191887F6D2D357
          Filesize

          1KB

          MD5

          a266bb7dcc38a562631361bbf61dd11b

          SHA1

          3b1efd3a66ea28b16697394703a72ca340a05bd5

          SHA256

          df545bf919a2439c36983b54cdfc903dfa4f37d3996d8d84b4c31eec6f3c163e

          SHA512

          0da8ef4f8f6ed3d16d2bc8eb816b9e6e1345dfe2d91160196c47e6149a1d6aedaafadcefd66acdea7f72dcf0832770192ceac15b0c559c4ccc2c0e5581d5aefc

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\3C428B1A3E5F57D887EC4B864FAC5DCC
          Filesize

          252B

          MD5

          7916af14c838ee9096413a4c97a4c8c7

          SHA1

          34829171d0d7c0ae73df81a0560b81f29855c68c

          SHA256

          aa66c52c7cc6601f95666fe11e5aa3cac1e72c2db5dc54ecdbf21ab4ceb41d15

          SHA512

          00dcba079896d602784fe6743bb9549935d4b747f32713879fdbd454178a3d7a574ace886cab158db33d251cfa569afe76097e0410cff929df7662a9df5aa643

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          d85699583dc61c471a097ea9197c77a4

          SHA1

          a272e504923780cbbd334f5183e3842be6af1b12

          SHA256

          fcba9551e20ffb6be45e52298ef24ddbcf05fc65c305d132f44303bae046ae55

          SHA512

          e857bfec7ce81cc54cc4e511bf910b881196a72409eeadb070909215d641f37f5f4c9ffca701cafb6b6d18e99814d78c6b21558d6bb3e7a54a8234669ba621a4

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          2b928c1576a661416320f13aad688543

          SHA1

          138d732ec6c72d150acb929a4802c668a775c725

          SHA256

          c4272897357f451f9083da9489e7a63708470040ce9f2cad4f5e33e7d34671d8

          SHA512

          bbceb99f983f45d64ed161e89248b35ed328e76877b4612e12a334344c523f03d330c9561573bff89628a8189648908e434f6011c12059d18a92147bce411fb9

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          c50288a039c5104b12d5e391b3afcf6b

          SHA1

          067be835ba72cdceac48fbf32d142cc75a9a2682

          SHA256

          441e369ee69073dc8b0b1b2272dbc55c49d6ba3f94597d86122d939ef538190a

          SHA512

          7b7f6e24cd7dc70ff2211ed005987c357acda8585cd8d28d8eb0ad0b19d1f3d992061ceea8ed68a089fdc26bfc5f3cbfe9fa678de6a7ce6fb91a5027e34d67d7

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          025f1a85b72d818969c58aece32c11a2

          SHA1

          7e26c7634e0fafda85dc06aed55abf7f00b95fda

          SHA256

          acbfa981360bca8dc80aaa53018940472a1a643df42bbd149a62001fa32dc7eb

          SHA512

          8c0f0855d1cbeaa503ecf295f67ec12574bd9748a05fb6c85a2a42255280f31a5081a930d252b1c5e80ef9c73e32a6e092bbfc04d2e628db32b0be6f5277fd9d

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          aa79e272e9c602cd3f3f90644cf2904b

          SHA1

          d01229357634f39e916be6f2fd427d577a749b43

          SHA256

          788977d9683be7275af597abb27f5caa87f5a853f089e093dbfaf5a2d23efedb

          SHA512

          31a5c4ebbc10b0e19fe12fc93ff705d0ba87bb577613822622c945bb32444339d0ab67d5e05b0f33e8c47bd04937f1b85f9994d6e1789d5849477247bb6ac5a3

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          6e9ccfdc046521bd8014f20bd10dfefc

          SHA1

          db0d22b9dd5c90f6defb044a14bee64ac27b5662

          SHA256

          0b7819d36fc7dfedecbaeab5fb545696dc24cbd9ce597cbfaed02479820809a7

          SHA512

          19a0deff453463ad08e61acb30bb14732f6b2dd38a23ea968252256dcc8dbcea23071d49611e15d853bbc14fb40bb7be17552591cce27588243683ac44a85514

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          7ea52ed799ecd251f309e71e0a634cb0

          SHA1

          70d0533dd0792625fc03883f45fa9aa68a4be920

          SHA256

          bec4006451d465f66a6b395b75654ca73fff634fcad6b4672aa64207b4c9f4ac

          SHA512

          fe64ddff8614601802590b17183b656f1fb48fc82dc6d263e663668ab8e6339e2e4ebb0fd627c01659e930d4f03dcd9eb37c2214f4f78816f3e245a57c1cc20d

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          c94a059018a91a31f9b1bc0984e1627c

          SHA1

          8b3bd2843ec95a6b6127a4413b1170902e6c43e5

          SHA256

          c51a1cfee8c1182fbb3c4fb0e0596842e4f14ea579393c51f08d190544c8ead7

          SHA512

          cee8fcaba326adf18f74432143222d6e7ba9a0ab5b0ff0e1b79c66c9718e91b763547c06a00d7588264376caea47a4768d726fdc15cdbe7537912e0dda0dfe26

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          cb6c57d0e46db5bc8798205161628fc8

          SHA1

          087960ccd6312794a357f359fbde76269c8cf02f

          SHA256

          e3d6eb013ee2820d3d682b525639d8817b5f35f8bb01c0fdf09fb3230728cd0a

          SHA512

          c5aad6ba23ef4ec852c882a3f36b4d5d975acb5a99e4b8c64ee054e60140eafac3fb8abcd8f243761e38344e1cc4f0b0768a71004fa9f00e16df1ec9131f4454

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          655be88beba75db90dd4e2e7897d44aa

          SHA1

          3a41d8f3f98d4734216f45e7f98a5e95c1a54ff8

          SHA256

          7561493fca6ecea90f4fbf8ed87e22bdc18960957045a82826d843fa35fdae89

          SHA512

          5acf84e6252cce8dfac0a6bb1e0e3f716c1bc3761fbcbc6785a2627e60ff6681671644796ade253c4e908b00db004870b2ad5a8b1ec8608b96dae04720274739

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          0d4ac25621a8f2a867d5bd9a24c760df

          SHA1

          4bfc5e1663eeb2044005bbceab6a9825215f4ccd

          SHA256

          54b82b71917e21078e00d654e8d792330c5238c7968235796b1b40011775ecab

          SHA512

          f2e703aaa86897fab05cc852f9582b1906bdbe16271b4cb3dfa60e6de49272c2bc04a046a5164dd257acd122cc4b4c10958a97260a3beb01c623fba0f3447558

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          f899da8e1b6b6737eedd544aea812d8c

          SHA1

          e1e950a89f35538e7c512608020f121db8790742

          SHA256

          319f5766e72d2e177d6cce87d0651d1d590b1b12d6079472c16ae74a153d6ad4

          SHA512

          1b449f3a066a44aefbd0198f2b7dc77eaa74ac7401ba2812babe6b4c92385c4cf1d730df413d85cb4e9bc577abb3bbef3c1a6339e1edaeb05dbd5b9cfb8d968e

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          cce01514d352dc2d726946967e7bec23

          SHA1

          bbf1c89c9d63cbbad682f32b7d899f9381cd2df1

          SHA256

          05f2d186f5b176e61e389182cdca092e9f1ca0feaf330edb0f323fe5ea7a3b3a

          SHA512

          97c35fb21be7c9c4a90d413bc812424d9a9cc0624943718529a38c294c68c422030eb7cd40114c20438f5f9ab94c27fdedcc3bc3a34ca87d20bc4353e89e9fc2

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          5ae67c57eede79264dd3202a87d99f3d

          SHA1

          b297d1aeef9dc398b0008ce449fabe6604ad643f

          SHA256

          028a57c0c48f6612cfb8d183c9cda07971890f1024c06417f37b86f182811f00

          SHA512

          adcb5c0484811c1b081b58416a913c10489fcd65a5913e3c4087a924a9b8bb505abee7c70bf9d94b88f3ccd3be196f0916d9d5113a305252ccc213fc1a2e4b24

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F0ACCF77CDCBFF39F6191887F6D2D357
          Filesize

          242B

          MD5

          00f971ed2baf097acf31bab076bd2bfc

          SHA1

          42bb3e66a96864e4f624eef55e5654370e00bc15

          SHA256

          21141d0e169944dd3f37fcc970586f60d150894a4f7171cc42ac73d7a5e49994

          SHA512

          dec27778017a9fb96a0f0f7a4d81d66011ea7aaf9a3fee1ac22b5f78cb8f67eea49644db6842d4b6ae8a6ff62dd7cabb629133ca5d1964d659e14fcb8b9360b4

          Download Submit

        • C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\J9X66TYW\www.youtube[1].xml
          Filesize

          18KB

          MD5

          69a2e0aa849c85fd8a9d3b1e73459d17

          SHA1

          c092d0dd5703cba970d4f2343e844c17de77c02c

          SHA256

          606306142b2961e9e38b2948cd1d8a75c5ec35c2c22132d3285b11ff15ebe62c

          SHA512

          94ab6b81d61b0a6fc0883bbc7a0020ce9cc05c0d807548415f3fce795137d2539f725ad2a455dac62e1bd35419b5f731fea7a54ca94280a93ba8ead50437dd23

          Download Submit

        • C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\J9X66TYW\www.youtube[1].xml
          Filesize

          990B

          MD5

          9bb6aa8bc67dcbb1bfc84578d872734a

          SHA1

          d56b1c08cfedf88dd20fdd1dbc94f9b199557c3e

          SHA256

          6bec7a65b62d762be548136d5ae41940cb724e14a8e8bbb13dbbfd22dbc03640

          SHA512

          090b569d9cdc3bef208f5a49d3868b4ebf6de1ae166bda50086cc198bd73edf0593758da6a5c00590ec5dbfffe7d8ed971304e16f980872ab3b7106a218bba63

          Download Submit

        • C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\J9X66TYW\www.youtube[1].xml
          Filesize

          990B

          MD5

          4c77350db0daa5897e259635603a3752

          SHA1

          317977998a967a073a75c40aba43edc63136ed38

          SHA256

          32213aeeceec89f2d18aad78d4df97ceca9a0052a93f9fa4d4b6996ea172c02b

          SHA512

          06a5f3de04d4083d3915fa35357992fe745b52b87a14d19cd0fdd65c56d7fc56f20f77fca6787be373328bb35721750e8821de4cc21bad0370b37e1006bfb265

          Download Submit

        • C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\J9X66TYW\www.youtube[1].xml
          Filesize

          990B

          MD5

          7c37e62197367d117858aaf3a1cbd5a7

          SHA1

          bfe30c55827f1836e8e4eebec93455a9060678dc

          SHA256

          83326ad37877829c54714a40ca9ac9e42937bf5a1ee7f028efd217bf8aff3d6f

          SHA512

          c222e86bcea127e2147d3bf14a8fc2c7618c6b0059f4e4e818485e0371dab966d8c98d633929d8b1560a89d5e320a27c4dfcb9b1d88575ee3fdd0e2a2565000b

          Download Submit

        • C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\J9X66TYW\www.youtube[1].xml
          Filesize

          990B

          MD5

          2023edbdf1cf372aeb32626ade202430

          SHA1

          85451d6fbfba6310dc083010b35f04695e769985

          SHA256

          16a8067ab01099e095f63f00e456786f922c03e0a0f0839582c3785cf0dbaf79

          SHA512

          a20102ec025b84bddc56c85a611ebe0a60a58e6048e72aad706d5cda18e8a578bd697169c4c2d4401836adf5b2cc27899adc8c8e41d6a395ad8d852d8f3bb92d

          Download Submit

        • C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\J9X66TYW\www.youtube[1].xml
          Filesize

          990B

          MD5

          2e76f525cc4a98402ede1644eb0b3949

          SHA1

          35784306b7fecf578a161bc83ce6a7bd13ae05c1

          SHA256

          99b313eaa8abb87ec0e484f1f1860a8e59ee3540e040a738c4abcb6f636f7eda

          SHA512

          b851d181898ab81b6a1d1f28442cab96ffc06d35918e5729fb378a3cb2a08401065f098173c6db74f7664e83b2a176f099177eae2237d47fc5d99bd06f67dc40

          Download Submit

        • C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\J9X66TYW\www.youtube[1].xml
          Filesize

          13B

          MD5

          c1ddea3ef6bbef3e7060a1a9ad89e4c5

          SHA1

          35e3224fcbd3e1af306f2b6a2c6bbea9b0867966

          SHA256

          b71e4d17274636b97179ba2d97c742735b6510eb54f22893d3a2daff2ceb28db

          SHA512

          6be8cec7c862afae5b37aa32dc5bb45912881a3276606da41bf808a4ef92c318b355e616bf45a257b995520d72b7c08752c0be445dceade5cf79f73480910fed

          Download Submit

        • C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\J9X66TYW\www.youtube[1].xml
          Filesize

          229B

          MD5

          b2f8484693e9b957f440307d82c47659

          SHA1

          f6f090507d104c5b9cd8eee647cb18f5ae831e50

          SHA256

          fa479b780da82806ae29e20a0b5efe4ec4508a2f71cd4371bc1eb50d71754850

          SHA512

          3d295067e74e72f11cbdab3c4e19a9dc5165b7971353ff3b2bb535bd8fa77be53ec051894e889ede2490c63f4d46a02154972ca789f4bae8340471d8dac9f0da

          Download Submit

        • C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\J9X66TYW\www.youtube[1].xml
          Filesize

          641B

          MD5

          c2fbe214e0e6cf157cea980b3f146065

          SHA1

          5ac29a7b9bd65159f3b669e99e08f7215c9be537

          SHA256

          3403c2324c80dca60cf94e9d1076a66f136b374817d704f73990c6725e887094

          SHA512

          a0815b09d004ddcea0309843bbba9b38771ff89a4653ada2aa3e4e2a088e5149a032ab8e5616dbefa08d46d35f6f502ad3dbd1816703dd7f2e48ebc7a6966edc

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\Cab3850.tmp
          Filesize

          70KB

          MD5

          49aebf8cbd62d92ac215b2923fb1b9f5

          SHA1

          1723be06719828dda65ad804298d0431f6aff976

          SHA256

          b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

          SHA512

          bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\Tar3852.tmp
          Filesize

          181KB

          MD5

          4ea6026cf93ec6338144661bf1202cd1

          SHA1

          a1dec9044f750ad887935a01430bf49322fbdcb7

          SHA256

          8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

          SHA512

          6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

          Download Submit