Overview

overview

3

Static

static

1

0fde5d863e...8.html

windows7-x64

3

0fde5d863e...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    138s
  • max time network
    140s
  • platform
    windows7_x64
  • resource
    win7-20240903-en
  • resource tags

    arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
  • submitted
    03/10/2024, 17:32

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    0fde5d863ed066698cfd273bb8fc4072_JaffaCakes118.html

  • Size

    21KB

  • MD5

    0fde5d863ed066698cfd273bb8fc4072

  • SHA1

    f200979fc47c2c87a43eaa0937e26aedaa2dbe9e

  • SHA256

    e98e966f3449fae7942ea81021909d3c061bdd9d43e66013b4cfaa920768b68f

  • SHA512

    615482651cdd2602f20447ebee188a62742e72b0cc7f2a8dc0c9ffc330fe2d2a7318a1fbe585904466b9124865d79a34d8dd403ac8484548f65166eff547714d

  • SSDEEP

    192:3pIhliZTVh0dINFHMFAg998wqh4vdZixCE0PxwWvTKTrXbiiTsK4Hjs1MAujdaMj:3pIfiZX6VCg998wqh4vdsSLwMiS

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 39 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\0fde5d863ed066698cfd273bb8fc4072_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:3048
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:3048 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2752

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    3344722e87add8722d0c26816f244f2a

    SHA1

    21695ecb66077d0553ef8717f118d7db2883da26

    SHA256

    dd2a09fd8f2abfccc3aa6e8657ce0f946c6c31d44e6a56504aaf6b5f90190afe

    SHA512

    a649dddefe63a219a8d2f9df69892ecea9bc0f4507644228b584811b08757105cf25d7d8461fae9eacd48af068259134aa1c4f9ef72e5bac619a8b92edd453c3

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    2fd8930f68cd9e7b4612745a67946eec

    SHA1

    4fea967542b8f73b44d0d7170cc92cc2504781ec

    SHA256

    c0a074f6b0391cc9b5ed9bbbd56c8c9e6553d5ebdc27d7ce05c018a8cae915fd

    SHA512

    1254fd232098b996fb1b15b9d0bb7354e0afe765ca2ebcbd7e088d0bfb4533d373f84cb318b55122d8402a3c71ff35017432c441120cf7ce4bf72ae5579d5871

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    06abb4d9ed90f8c6de565422d3aab89c

    SHA1

    21505f4eac2ca089b55eea5df82f6bbbef29b7e6

    SHA256

    7c65e63defd95f1311541f01b9d56dd3d4b3c11ebf1c1dfb33b09d5eaea6c8a3

    SHA512

    e14b053b778c2ee083337297531fad37c48d497ca5b6ddeae7ff50fbe38dd2a4dc9c757e045a721e40a6af4aebb1db1719b58382c3177e0b637ba0d89ca9fc2e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    8495f477e85892ae2fdd55216fb3bbd0

    SHA1

    cf223927650de2080a2e8a49aeedee67fcec134a

    SHA256

    ddf035959622ff8790e6ec0e4692042acdd0f580404559073ae4b20616160d2c

    SHA512

    547a12544232b7950043c91e22a0ce344a90c92f135b7dad594063f11f2116326fbcfed5e7d9c18a6c1574a8cb462e6a5c4475c304edcf5d8a7efcf10c77935a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    5efc7d01f1900f9a05c073258992d0e5

    SHA1

    bf1c747f7f7fa2ff2ba311310f00d651c2699ba8

    SHA256

    e5a436b2f88ee9ede30981118f502448b610a9f9bb1bc1d3c0b6c0628664cc7c

    SHA512

    b9330eb1f4029f2ad17bcbebe7d8e11dd20cab72c718a58397c670a0ffba5c8eabe3b7aa08c4e82a651debc74d951f2de2cd76f5bfbadd0b94fc3999b17964f9

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    49998e55774b745815a3c0126f3688c9

    SHA1

    7de4d35510966cc59ad82a73e94cd47e57baa328

    SHA256

    b5f260534b14c6d3a03c7e373f9290906257b36521fb49531ea796926a63bc0e

    SHA512

    1c90e06deeb6270650d05418807509b42a0c9d87df723baa2f2458a89915d9f8af81d7b6a08cad332340aba3875cbdc81901dac39fb20dbe11277beabf392e2a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    5a478a33da3fea7912d90276c78120a1

    SHA1

    e60496860162bf39aea678ceceaefdee0a36674d

    SHA256

    9eb96e56b23ea8e7a0e05b3fc8444389236cdcc1d268d2dcd71ecd0e3c920814

    SHA512

    5e53a5c119a2091cc5b904846179ba96d9146366778cd1960e63324cd98276cf0691adc8f1dc5dfdd9964849b623cb1bc25b89d06cc5c4f9fb07d839c4aa14fd

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    0a7159eb4e006a06fb324a92a5a6fc8e

    SHA1

    37683b3380f3989e7fe5ac20fd1f26a8f1cffc4d

    SHA256

    7a5664c4f0dfe03eed2ad6b2f8e79362c944aa5c6121421bf4f0618d43b96721

    SHA512

    029b80e27706a292179fe6c29b38d1d44fb13108e4077edeadfdc946b2f6290eb0a3b01532a40ac7da1a189d5d4b44bbc0cdc4aaedb7e48642d57055f6a48531

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    dfc28c94b0cff398321c233c84fd184f

    SHA1

    387f3c2ac14372375295f998bea583e8f6912808

    SHA256

    3035bbe3f877a46acacdedf041a701ed53e0256ce7587e7f91bb0acfe9094ad1

    SHA512

    eb8d6431e9287559693e4cf06b89f1f4874c670793bac7e37b5248ca9707557dccc53851262d50d1c775f8923cc63c750fd84d95ef44c4ad461f4c7ab63bfb24

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    de0affdd0da1b76d25feb3f905e99c6b

    SHA1

    c8236bfe91c985e3e3d48ceeff1dba24a05188ea

    SHA256

    8bd09403e73a00b949f5a1f50d500001f5afe62af1f71837ec202a4624b389bc

    SHA512

    0b51e70fb50ef7fb87c8f3271ea8b924a2949ba19060b2e13dfabb22fac39da97ca64e5c121641b956315dbbd9f1e42df56c705d1f4034b18e8fdcb745eee66d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    f69f489ca11bcab0bec6da5a5f3943fd

    SHA1

    3f3ed37b8366c64e146191dd1cadcbdaca4f4dcf

    SHA256

    af7af0e765a23d3933e124736f0f9856769c8c91b854c04ffd81e2312046538a

    SHA512

    5be7d32da7eec3dc8a52a06a628bcc12257437affc928d2f649890ee426b6c502359d67aade7f49d0ea0b4c267a1dabaf3a6d6e499a7efb94d1e80f4b896aa3f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    83cd8debfd5e1ca0ba9f471afd521739

    SHA1

    4d6e3eb20b6848c7a2984d20c0a25f2814f0fe7f

    SHA256

    9ecf92d12bbd3387ade9ac9fe9a0f05c3827445c6572ad25b9c74215cb48f4c1

    SHA512

    e557e4caf815d5f4cd7a50845f72557ad72fd4053205e1676dfe22a14dc7b10a2ec592ef8662928027dcd7290be4155ba45f511ce1e7b29f910befb8dd5e7847

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    9bdeea1b2b8a7b3bea68e07cfefcd9ee

    SHA1

    bc99555a062c2b696740cd3e773951ef12dd8c59

    SHA256

    5885b44bdd449f6db604b30090d8d4e8db0490e93eac61ad0bbb3017b949dc6f

    SHA512

    621df99904e5799438cfd277ab70534bb336c890d34a27cace722a43c02ce8581d538188a305d20cb84add6b06f5ad8046bd176e2cd2883473814bc5fc5bd438

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    cb2e6885fa2aa86d8a28bc2c53a1e5e5

    SHA1

    f62a3d5f22fded6f198da7383aff00ce62539aa1

    SHA256

    b08f84267179822bc2576d0891ebd41ab352e127e40fbad84917f16a6fecfb66

    SHA512

    7ae7def06dc8a441412ddc7d9b07ca918ef1b7ec683f24ba6b5500f8d60b63d0f26d8fc1176c99746d3bdb6322557c0ec67cfcc050edff184b74cc235c159842

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    6af546117de4fd399a139dd6fcc70415

    SHA1

    51ad230ab452f38a76ee385e927865c9adaaf78f

    SHA256

    68d4b6a56f090b733fc95576e909475b396d5b3cafd3fed89fc96e15e6ad0500

    SHA512

    752ebe80af6d45aa57eb7959d0a9d277b61429e7eb7f1de655ae1cbdcd7bc9c43edf8b2bf009b7979e09c2bd88f40485f809cfa92c731cefadab8ac337ec23cd

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    09a06dbdd09a70196fcab0a3dff6bf5d

    SHA1

    7f7324184164eeb652a2698eee6ca0bc36748211

    SHA256

    50e5c64a755bd1e97ec9c1ac4ea0174d10eed607fbd08855ba39b457ca04f16b

    SHA512

    6fb8224d3fbf672d14cdf0bb12d551aa3a2b6951994d287f895b160a7343eb96ce415444666845b6a1c0573be3f15393b3c218ba9e7c104bf78a0c38adf2815f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    b1bfba4835f16c4088041f875943d180

    SHA1

    9dedb243c61de58de8add8f0d013bbe49016a22f

    SHA256

    3ee56757b296d662dc4d56b6bb689cda6633e730a528c765a8e8a9f86bb5b4cc

    SHA512

    73e5ce6301020195a7e75abbf7cc0d7dc51223bcfa0ba52cd991e0e7044a0b8075c37753c7b7314746f9b7201fea113665b745d793a2ebbf39c1253d0375e98c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    a4e977c556dd0afc7d93cea6dc2d6d33

    SHA1

    4c146b1d7795e23036e00ac06dac5e95024df159

    SHA256

    73b5802ea38ae116a9bd6da7ea4949f28eb2c9b6d778706ed2f69d8d2c4b1a51

    SHA512

    557423d9acd9e525fb90a0e39b5a20d1e6b36438b0c0cff5e8cf2a8864a815f3402b6ee18b5759f31b5b19d38788680e9e66f08b8b35c7c869923e1862cb2f63

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    baab60d8d6888defba13edda06674946

    SHA1

    91606d24c7098c8a94f2c0fb74f0dfcbbc10e2a5

    SHA256

    9b8edb6d0815218bbd6bfe26ba0c541c610d1a9b915d500f097baae85e336c35

    SHA512

    64bd2b2ca2219566e0c9ec4bdcdb7c3f0d93a9eea59f643acbd0fa19beaf0c0ac549f9444dba99246bfa2fc71659594a3402e6d6783f028f40f1571a378aa00b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab31D.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar380.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit