Analysis

  • max time kernel
    149s
  • max time network
    150s
  • platform
    windows7_x64
  • resource
    win7-20240729-en
  • resource tags

    arch:x64arch:x86image:win7-20240729-enlocale:en-usos:windows7-x64system
  • submitted
    09-10-2024 10:42

General

  • Target

    2fae8f1d605a7906db1b8200065de582_JaffaCakes118.html

  • Size

    10KB

  • MD5

    2fae8f1d605a7906db1b8200065de582

  • SHA1

    f7966b9b2c6777254beaacf67847f3d4feb4bf2e

  • SHA256

    7fcb2634ad01b346fabd7b994262d85999418063f467aae0eae480846260f44a

  • SHA512

    5f5369559780f6616cface9fdd7ce830eefc725449781bf09ae8ed9743ef3de759bf4faa0a42c574b7a2f3370bdc8c5d78de9bc3363c70b7134fdf82b3fc7779

  • SSDEEP

    192:CpJSEosEYIA0/eqbGQiRvCDWuKGheJeBImE3mtMMqVrXSmGjLDZL8PfqBq/SXuDb:E0/e4CDNBMIR5anNL0

Score
3/10

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\2fae8f1d605a7906db1b8200065de582_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2684
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2684 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:1968

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\3C428B1A3E5F57D887EC4B864FAC5DCC

    Filesize

    914B

    MD5

    e4a68ac854ac5242460afd72481b2a44

    SHA1

    df3c24f9bfd666761b268073fe06d1cc8d4f82a4

    SHA256

    cb3ccbb76031e5e0138f8dd39a23f9de47ffc35e43c1144cea27d46a5ab1cb5f

    SHA512

    5622207e1ba285f172756f6019af92ac808ed63286e24dfecc1e79873fb5d140f1ceb7133f2476e89a5f75f711f9813a9fbb8fd5287f64adfdcc53b864f9bdc5

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\F0ACCF77CDCBFF39F6191887F6D2D357

    Filesize

    1KB

    MD5

    a266bb7dcc38a562631361bbf61dd11b

    SHA1

    3b1efd3a66ea28b16697394703a72ca340a05bd5

    SHA256

    df545bf919a2439c36983b54cdfc903dfa4f37d3996d8d84b4c31eec6f3c163e

    SHA512

    0da8ef4f8f6ed3d16d2bc8eb816b9e6e1345dfe2d91160196c47e6149a1d6aedaafadcefd66acdea7f72dcf0832770192ceac15b0c559c4ccc2c0e5581d5aefc

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\3C428B1A3E5F57D887EC4B864FAC5DCC

    Filesize

    252B

    MD5

    8c5d622c133070c8bf282cf02e013a1b

    SHA1

    28b24a9bb6beb47cc0fb81cc6852e1bd908c29b4

    SHA256

    681124faa9bdddbc0298cb279896b9ee961f69dbb2395d3fe446422e608a65e5

    SHA512

    826aa15e1eed349e912b7e5c5a8f9adf3f23dc6bb649d3778a9ff6f82dcaa70835cb3499a1fa383844e014e7afc338be7b4b1f1668068ebfe2252fc110c12c1f

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    cf5f98f5f5febd901c68f534b68eefa6

    SHA1

    ae58d0aa61d31948771625c9e1f823dde34ef7c0

    SHA256

    e8f7fe8dbb0b6460671d239cd6a467d828cf339ff86f2a4526f513314a4a1239

    SHA512

    174b1a69371ae25347d0c4d92c8ff04ae8f289896815900be3d250849bc9d34f584c3776894bd8f23636f295e9c541457d80b0c598ad64853052afb8fcdf3a9b

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    351f6288fc2413dfa07227581cf4cb4e

    SHA1

    6c85f9c34366d4cf26eb0e3eb18886d7ce6e0dda

    SHA256

    f66165abc562c4c208b2eddd07dad4241d0b586973fce66b84ca9c0477479bb2

    SHA512

    c962fd4a304377d79381ffcfe347eb76863b033596acfc759d5c211fde8dcf6a1eeafc40099a90f4c76e8c1b7f11d735b53df02d96f66bb407df8c53e42c0532

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    09d18868b0b6c6fb4f4e974d3bf5b1b6

    SHA1

    cd1778e9b551368cf987d67dd748bcb29595c8e5

    SHA256

    42d654cb309263980f671ce2c6fbc07580d4e13568a725c9b8aa4e3e962e9838

    SHA512

    873397a57acf4a0692b5b9b16eb2479d823930919897f043e88a86f8ee052a781b4df44a3403eb68b4b80e86f34f8a5a9c8ec8d46cc02eb59ab8ada0880786ba

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    fb9e57133ffdf9b21164a965fe525f15

    SHA1

    db138b29b76fce43c84662d291e5714239da6c14

    SHA256

    27643c5d5b8a5a78fafe3a24798d0e7644258f9ed986b6aeaeb42b1087076153

    SHA512

    ffdb34a0b31be057bbbaa023d5e857187302eee69fd35178a5a18001b7e30fb1a9c328fc524b288c9698800966bc3ba632b7d0478d74ff8c8395a2122285c6b0

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    9fb1e523ec1d818280fa92edfb1984c4

    SHA1

    2b6b41de55c998a5ec11027d33520847d0afded7

    SHA256

    33dcfb20aedb6e69999590a7f2a84ed6bf2b99b14ab74a96ca54dc5b790330d9

    SHA512

    7afbe678cf04e313077ca77dafaaa0e3b6cf32fbc78b8a8465e6219b9eb0c51db85bf09424ecea12305b5d2a5f86bfd10cd1a79853ee84b9c9de0823d95a048d

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    5b1efcc1e0e6aa35279412039ac3bc3f

    SHA1

    3903022fefff9f9d74cb7a19950771dc462a525f

    SHA256

    4ef7e12d632200850b19a9a0e28ff30163027c2d96e962da8028b1d929193466

    SHA512

    64adff255e6c7a4e20cea8147b20e54469a197e725c6500fa06270d2ca05160b095107a97a362af0a2cde377ee81f9d2224d22e0ae2af5cbd325ca4049188c15

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    7e0b0987f881a129288ca11819a0f233

    SHA1

    3caf3e8e14643af31bd3cc00b2df489a132cdf65

    SHA256

    669bdf2ca885b32d13ec862092196019402afb69ebdff93a6ce75847ce1df932

    SHA512

    7a69e4ae46b200cf9ec88e4c0a632802712a11a1c6182e13a25610bded8991280efbee448e21c9ff3b7f77e03d7bcfe94c938c66f9a2103e053299d7e7f39a05

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    36db565a1208b99b3d4646aafb336e27

    SHA1

    398913d1459e26936782c639def8021e82960ac5

    SHA256

    87f50bebe36a93c79a2523f7fd525bb1e95dbbb1b2ae1418e7fa334f473692ee

    SHA512

    6d810e18899934de629be4f8093ace7663a6bd7a8cbd7c9d6c3bd2b812dbae1512fa5b737737ea747fd5e9dfe53aaa24844716182257b06ddb399360b677ed7a

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    3c25ae701ef3ffdc5bc4893d439ee1c6

    SHA1

    d2ad399739850c8e163a6d15ada15821835c0d48

    SHA256

    c8186b359814e4a0892fa313dfb921b165ec1f753c681a0ae55dc45f24227eb1

    SHA512

    306d5c5bb042d4b9829a6a10c5b4d0f9a9927797a9d52b63b9b593d026259d2dc963ea7bc2e148f16fab839466e4e44c593b91ec26d2531abae1065a5d05c70b

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    7118365aedc4e94739e417494fd2bf34

    SHA1

    266d258491b58b708737c9ba42621056dc11223a

    SHA256

    bf0ec44e77f3a97e134f7f6584e531c93700dd9a9252adc1564a60173a024045

    SHA512

    593406fc2ef0bb891467399eef4378e9bb3d84d8fe76671af4e116d2a9a98be9db688193544479c57b567fbc12aeef1912cd5578b00315614d3d04f247a31a62

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    8fa4f4b5a94c1726b42580523409cf81

    SHA1

    b0bfd87df91e855fdc0ea216da2f37d867055a4a

    SHA256

    0ca022a248660d17964abee17d9d456addfd1acc7d6ee89e0ea4cf9eccf628af

    SHA512

    64958e83eb327033b70ad7cd93d2399713dfc5bb9b882d4ad038dc89e85ceade024ea4b6ac7ed0d34c22210b3d3638209335fea7a0315dcaed59b565f702c4c0

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    0d529110184e17dce3bf50b5a89e5d25

    SHA1

    bbdf5c96f9cdec23ea3aa7abe34c282fe5528768

    SHA256

    f820296faa85a96c2b23779abc94d1b8ddde087b4730fd2220347a8e776c5654

    SHA512

    02cb9875963144988c77cf09766616bb1a6fb202eb841d800ddf645f8cf9a0e47f29088189ae6744a54dd4a2138eb0be60986f591c7a666a05148c4397f31ca1

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    dfd4502a4c36dfb6d871b524e30a2edf

    SHA1

    e7c500a2efbf429759b38a08b179680030e8a5ed

    SHA256

    d51810914989478de1f9adc3daa1a87977dcd10b7666cfbc000a9bdf8a1032fe

    SHA512

    d831e3b240b4a119bd6654351a657be0e8ea64ee2cd1b8511f2217f7c1b60fff3f37b376a43584918cc31a17b938819607bdb41b9778051c33d3b2525cbc12fe

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    9599c4ec87be731a39650030e2de55cc

    SHA1

    59a6557fda5a8f75192a41355fb7ff464c1b2ad9

    SHA256

    8ddd2c3f64bc9a3616a344babc6da9f80b186510415ca2ea9b2d1d575fe577f6

    SHA512

    4fdbc85700a6456dbe34cec8a80e4cb6634f953fe7e0491b74901f029b185463abf8f025f09f814ed3a783327c3c77d59db6b7e36c7d956f2dce92b87e24b831

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    50e2dc8f952d43dbd83bb0bf0590720a

    SHA1

    dc9d3796ea2dced2dadac232580b380de65ca1e8

    SHA256

    c4858977131ad2f3e1364123a455d6b86a3cc70cd6437ddbc3cf3397fa902638

    SHA512

    c22cf3a25c5c794d3536099a2831793359f9b713aebe1c5b2505b8afbbad74b8ba51a4c4e40445baf795a217c0f761ef716fc884d6494ddf5cccaed8456d77fd

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    97d680408e0d6360273c21711b1db80b

    SHA1

    a4982da34d23b62baeb0a1c736973d289dfe172c

    SHA256

    0af8a2830ffffc6aae74c2dace8025a00776d5d01ea459fa6386d2c006ecd4fd

    SHA512

    6915dbd20f15720a43ac1df96e977cc871963e260331039e9862f8405a86e01e7620dae007d1b0360f252a0b9cc80775466d967fd364df3d382bf8e977810b0f

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    cd2afb3ed5ba213e26813620676a53f5

    SHA1

    97c90d42839d786dafa8195eed6c5d705067e062

    SHA256

    b772063f23fdeedb2302a8dc9c2e97d49275c65812ef4214a693683162f9b4dd

    SHA512

    99f17f116d1d4e74979928a4271ba0a70d93cc51751381c26b480b97b4b9fd298c9d5452be0baa0d2779cd31a31d0c2a3fa811e67a2cf3816340e1eb245b1e0d

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    d2826d5ae767805412d80c4a7fadf09b

    SHA1

    070d1e517a220e9953384100a910ff63def19028

    SHA256

    42fba4131043da1ece3f55c5688d1aeca2d16aafffe9aa48676786487cc751ed

    SHA512

    4375f2e4b8ca50112da3b7773e6debea8c78d802d213fba7b58f9ee471e9d82f599853f8aac1971c1af139cc2bc2a243c4e4ac6ebea3543b6a3659c6bfb2a0b4

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    87199a0c8134239bf383e8a120302b4a

    SHA1

    724372c85bff08ef069eba6d91eea74dba076cb6

    SHA256

    bb5699957ae1eb70b15d7d3f0cfeb2a0fd1e98e26fdb79bcb3668e4959a08642

    SHA512

    3f6e79dd2a719a4db3f82eb0a6ec9f4b2926fc972ac18fb0dc46f5ea63d7d15a8898c83dae541d7673f5853a5908a3fdcb1e8915731d208469abc8241c045c90

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    470c73b3ad054fc5be2b228ae56571cf

    SHA1

    2185f6f8d7f818f0a340612c20aff3bfee3190df

    SHA256

    474f570dd625490a29911c22a29e2ffa28791d6387597a9e5c8ef9be2bc1aec8

    SHA512

    8f46c7cca97dc4e9f5469fb1b2154373e424f0dea2f81328ac8db24a8097da416bd363cfbc95f6ad1458f16b12a35018d0f0b029af8c1c27f4e2ff849bad6f71

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    b9d54edc73624579026988aedc4e9eb4

    SHA1

    720f8caccbfbbab336ce31689488fce14844a6a7

    SHA256

    57593b14469861b037680d6c70c0b30a6e0219a56fe69440b812c6624b5377a1

    SHA512

    9ef1245523151f2ceda3e6b3d39f8c5a11b5ab2a9584f5e2a4fd128dc714b8ffce866c2f96b6a556fd746791f6dc1ba54f15efd4bc3bc79fcef8765e939d1621

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    a3e7b0e394f75dd0eb84a1f47e2ee7ee

    SHA1

    1dee69db6625686b46de766f7f226c35ea514b0b

    SHA256

    cf6dbf288806db54da4c74993c88ada1f80bddd78ebd671554841abfb6da7a5b

    SHA512

    be48ce7c7695e5a469523ab699a38d9d4d99b2acacc58eafc4e6db4428c97c2f9bccd0259fa3a569da515c4607c9b706c0d61aeb5a2c7e2b65ff217f4557291d

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    43ee4298b49ebbcfab298aabfb9eb250

    SHA1

    bd8d58305f9eaadacf3c2ddd2437b30552350785

    SHA256

    348c44032a021aceb80c8b0b06629b1d7b3ca6647b2f706c9d2b1b97244c7922

    SHA512

    ec28b2d2880d8500b79e7a044c80beac16c64d370d48d3e0cb5dcfd0554573730da386cbabd1efe03843ab961f9197d6c60a791ee226dd2fbfed74b7d27c200c

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    5d20f580dfec7923719378645819865e

    SHA1

    0b2cec8d3aa18d474c88abfbfecd940295956306

    SHA256

    cde87b93d08310fde8eca7927ae45ebc66b9d8a01554d49d5e09569c8a80f64c

    SHA512

    f5012843c58aaf67c7c0ecfee39c020866c16b1d70115000284f7d1c8e64d1e67b6341aa4d2ae91d4c197cb36031db60ed9a6530076e65211a50ca63795f0f03

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    e5c599fcc0a9d92a148aff8b20f29d1e

    SHA1

    5f63ac3e3da5fa5821e96262a823a716c161df14

    SHA256

    4616c9791302cc2e0bd92fcad1221a1196e2ffe890ce3e2208fd73febc1bfa3f

    SHA512

    f1cbffea8a242ed33e31408d995e1b93bf727bc9abcaba0ff17d9dd0d6b2a10778b6defd26ed41b33b5e65c7b9e92bae0e4b7a175cc157899a766bde938647e3

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F0ACCF77CDCBFF39F6191887F6D2D357

    Filesize

    242B

    MD5

    12cbdcb034597585e4220c1b0dc8435a

    SHA1

    572346c49cbd40b5136c2cb3834a7219176e9381

    SHA256

    c04b1de72a1c438ff248e40b46d5d473b0af8336d6f60fa1b2cf35ca4dbeef8f

    SHA512

    8acb7407eaedac3192234e94a7bc034d7e6677459c2dd33a26dfacace7664d7d1b7545b00d08890d23362f99bcb2a04575defa2a354d1ba22b97b68aa66da583

  • C:\Users\Admin\AppData\Local\Temp\CabE60E.tmp

    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

  • C:\Users\Admin\AppData\Local\Temp\TarE60D.tmp

    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b