Overview

overview

3

Static

static

1

4294e47b36...8.html

windows7-x64

3

4294e47b36...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    117s
  • max time network
    127s
  • platform
    windows7_x64
  • resource
    win7-20240729-en
  • resource tags

    arch:x64arch:x86image:win7-20240729-enlocale:en-usos:windows7-x64system
  • submitted
    14/10/2024, 13:38

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    4294e47b367c86a2fb12b05def14d8aa_JaffaCakes118.html

  • Size

    27KB

  • MD5

    4294e47b367c86a2fb12b05def14d8aa

  • SHA1

    7db1548443fc8643e324b3801960fc91301de192

  • SHA256

    d1c190f22772627ed8dc5c6162ff21d01dcd4855a4f1da427c387f91a5a9d9aa

  • SHA512

    01444fd5234f1517e6b50926180cba5b03b16951b4f6bdddebe2b2cd8edd1f49e106d5f14da261cefa55b16d917f8445acf8b9c23427fc8d88cfc38d3eaa97d0

  • SSDEEP

    768:Dqkrf23hMnaU+2Jo2Ydi7vkpursPFaCDFW+4/Pgej3jv+w2PCrwprldvw+vLhj2b:Dqkrf23hMnaU+2Jo2Ydi7vkpursPFaCU

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 41 IoCs
    adwarespyware
  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\4294e47b367c86a2fb12b05def14d8aa_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1884
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1884 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious behavior: GetForegroundWindowSpam
      • Suspicious use of SetWindowsHookEx
      PID:2788

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    9b92b37964cc55904142bbc7c0c4daf8

    SHA1

    ff44285114a81cdb789b1f3563247c81a26fe7cf

    SHA256

    7bfa8cf6bdce77d2b47b146ff2cc7ff38ccae1a3e20e3fe0f7f9714ea9e74ec1

    SHA512

    95f791a78e757f9aafce81f15bf5c645be4eb7aaf218c7f27c2c8785c883d78dbdd7257e153bbc37a993704ef7647202c74bb24a51782b6e462311d33fb2ab0c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    fa7a7668807c77f6f2f19bd0f72f5aa9

    SHA1

    b01f8e31946ceb6b6dce063a9574ad3c8da02884

    SHA256

    e8fb7729b2a3364bd68277281a47ec8e5df0ec206c6a02764ee3131b94e9f7fa

    SHA512

    c929f3d382398ebdff80793b9be4cea370360acd9007c30211669b78da2671cc9f3351a2445758aa8c5215a0794d42993c68b2865a1990ac0da9dba82f9a2174

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    718af2ceaf7e3df6c95dc708912361f5

    SHA1

    e84895e081e1838f43a41e841cffa74ad2aeaffb

    SHA256

    3ad7eab7d8484ab36143e532f4ebf0de1e0abf7d4e65bba25c387bec90c80db3

    SHA512

    4b34d1e1ec89997f4a168e35d29527e5052d5ec60f57dd534dd2fe92f514fe316f554dd4272e840bff942050b9994bf3c7b8f5ad8ba758ddb78d094483941cf2

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    486c6b146b7812ff244820dba7672205

    SHA1

    97acbafd9e748df481e7eac9cf99aff91f07864a

    SHA256

    4beb060ca987ae87c418368d9777c0bb360c4f133aa5a786f1695dc166505aee

    SHA512

    4b8cf7fd6dc9d633fce2aef3d136375ff4173b62cc272a86498cc6e4ec2a7a6c24e5e60774a04fdd00b9d849d65a4a8f0a86b9889e8b0deab62c852aa91647fc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    495d4b634490bbe94472184817c9e85a

    SHA1

    32c172cf1afac70fc37f6d856227459f40101625

    SHA256

    c5863481e93d6a1fb968924702c94d5e2837eabe8a94f41848b4098599bef149

    SHA512

    2659a6a0b8a2121906ad01e74ee970fd3e3f6b993b6afb660e4deda37453cff7e5ee8232d9e622553b513a09e5bcffe70a731bcc242b69fea9393fd47531a5a9

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    2992b57e61cf13b38bdb46ea1432e204

    SHA1

    e56fdb0cce49e960fa5e48ff7b0dd7ade75bffa2

    SHA256

    398d93c85c4fa9c44f8336b26f1b238b3d76f6384a686d9ca961fc831a80489d

    SHA512

    e43bedccf9167b05252546a6cd0618613c3ebe45092e45ff49d61e7d6b026e06220bb1cc2f8b4fb23955306b21f53ff4c8fc2a59391a8824a90093ed912994db

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    7ded3516859b66f0fd61b9f3fa9c8348

    SHA1

    711b2de6fa63e1f7a3f3f94304ecb46686367641

    SHA256

    620b1802eeeeccd5f16c891f7df3742989f3801b8c60d2e4daf27882e5877e49

    SHA512

    0e4854efb7c0eb349ce63438c66815ce34f2d59153109e93bab9782e4363b1d987a8ea961cb284bf37c22fa6f3018ffe1501c78599231a87e928a6009e41e945

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    3f5c971063ea4092505c79f8eca2dfaf

    SHA1

    3ad1155c30e25bc58a5a8c25f625de849b2292b5

    SHA256

    b09aae5fc45157cd2874f214cf8b160c0f61a4166f58b94cdc7ee321c669ce6b

    SHA512

    b75128f34026733d8d064e93e764fadcef2b79ef2060ec284146903f1aadef729ea0c109ceca8b2bf6944e8784e0710c9f012d7be5402388d79f0b14de05485c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    a34a5c62161ed46bad8986d31b3e4948

    SHA1

    5e0cd373ac76e31b695dd3850d0e5943b335faaa

    SHA256

    7e630f1de327817be423886dd637b99d39852b1eabfd7e1eb3a828fa3517549c

    SHA512

    16b437f45681057e0148bdae6254f4c11aa6501390b78c4bba5da216c042d6ebfac026e470dcd091af71b06250a976780bd0ab5acdc6956b15ae76a88eb1e421

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    3f52697e89966b51633c757434023fe2

    SHA1

    f452f98bd67f1e8fb135e9adacadf3bc65f1f6cc

    SHA256

    de857491840d776ba90fe0577d78690c48963a32e7c4cedc0d386fc683089f4f

    SHA512

    481c7cc960104701aa0f0a73c640ed473e3ebee7c7f111a4a2812fdbfd6dc9cc8682666b7b007b2e6ff248d21ab5f55735458518f29c1cc047d8c664ce174572

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    d620ed5e70d613e75b7554bafee6bd98

    SHA1

    6fb5a9e437e51dc2057abd2a9c85dc97f109fc88

    SHA256

    54c6d527aacc57ba5464459ca5cbba3cb31e15ccb8387edf1fa973840fddbb51

    SHA512

    6873c68d1ed56be2976292871ee8c2a3a2de0eea4345450664ce865104c414b4eecd0c808ab1a0b76d64ce0ec92101503f72dd6c4a6108296aec915aa318d239

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    26c1952ce8bc570077d09eba1b11b8a3

    SHA1

    688d3e5f2a3b895cd87c6bd3eb91cfa4ba32ec14

    SHA256

    f17596f1ad5707b1ab9ae51b8ee4d595681c19b56bf1f4efad512f3ba77f79ea

    SHA512

    d44b01941a7b265c811d530b0b268728d8d2e9ecb4b75ceedc46d80277b6c7bb065748a55aa505bc8eca7a7cd864df51cc192588c91d53f733ef3e9013f2a6cb

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    b6446ec62d8f9a7a2cf8133f85e0b448

    SHA1

    8a37b9743c1ad8b8ba97d905361a6278b1d0ecd6

    SHA256

    97b0d080cedd40564322350d54b2233f836b736126ec59726d52f62dd8f5b1a7

    SHA512

    79c31cb3759302987db2fc640e59adf2b2014ea1fa00625613ddcbe7816a5849b8d10fa32a814a152d30c765d1e614024893978ad34959d9920a525b277faf5d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    c8e6275d31df16c4265726cca880f385

    SHA1

    15e4e6100c32fd4581f6a68a7df21558aca0d4e9

    SHA256

    7f1df8cecde7ca7168efa5bde28b2d2b8d9f73a074dffe29372e0573ef3cf063

    SHA512

    5fd1a48536cc94d86738df72eeaaf48bbdfad6a0f08d8583d43ffae6804fb39422c274904d3848ddcc6abc31a48dae759de9b184168c6f7996e22490c4671cd1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    9bd37e843747a6c1097b5602dcd18f52

    SHA1

    2ef2ebdf82aebc83d2be055594c27e6f96fb5deb

    SHA256

    df70eec45748331e54c9ece4f1852772d44e1a3730c2bbb32f12565c6cb1d697

    SHA512

    7163336fa738b004f686f891ae50d1b0269beadb2bd7f5fbc8d55e1f9d7f19a6fa3e454f1f751784974af9b7e6b069d723ee2873e36cb5eea075002ad073370b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    11ad1c691d4f2fa627c353edaebb1e2d

    SHA1

    242af5bf0c19c74f09c6f6880c453669647a5c62

    SHA256

    5a5e831882c9ad855be34c334ce30d08218eabeb354056ab3efd7e8756ede7c5

    SHA512

    a8474dc31b53bef9edfe6782061a91b2c8214d739d9c25861c3136655d442608a98c436e8eb8398f4d08ce95cd9a4cf19aaf89187a98189b5223d24402ad1797

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    27b02276ff47305742acb9fb1b0520c9

    SHA1

    fdbad478b32a140ce6a95f0c7a9b2dc8afef52ce

    SHA256

    7bbd5c741aec26d1bac71eca89d3f8e2153002d955e712d2a357f106e4f767c4

    SHA512

    9d8c6b3f9d5babccc29cc22a6d25ea045517369eb8e8bb9ccdf48f9037d947257346b97a394723140abe3ed9570c524d338619298555fd59f300dd5b27a10d81

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    4e9f280aef8d4e92860aab9aa69e15be

    SHA1

    2c04520c84f5f61eda045e8b5e79f1e78a403aaf

    SHA256

    7107ab4dbf9d42996010d698327e52e9d9efa81ba59c46c055806401c4c96cd2

    SHA512

    dabe3e6a26701fe790b1d262458de1ceda97594db839153c0f65e2b2264300fb18e466ce62d8b378b76758463cb46e26a5f56b673284e0c5653f1495f3d0371f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    e8694fd53304c947a7925e330760ef84

    SHA1

    3c21b679a72be9e04a785594ff011cc289e99a77

    SHA256

    f0c0ea905c95b469668ecc9fb768a8fff0de596b54bb4cc74e94aaaff08b0fa7

    SHA512

    7448b83de752127c2ecc4a6ca23c7617c2d4cc7f4443abf3fe5617f64d6e20eb76185be61ced22d76103b98d0dc67903037cf869f77eba549bd083fc3f9a6bb4

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab422F.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar4292.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit