Analysis

  • max time kernel
    119s
  • max time network
    127s
  • platform
    windows7_x64
  • resource
    win7-20241023-en
  • resource tags

    arch:x64arch:x86image:win7-20241023-enlocale:en-usos:windows7-x64system
  • submitted
    27/01/2025, 20:52

General

  • Target

    JaffaCakes118_4394db2fbe28c0771689a0b515bea645.html

  • Size

    4KB

  • MD5

    4394db2fbe28c0771689a0b515bea645

  • SHA1

    0a6bf8f380696d219766f1f9722043989d8bcecb

  • SHA256

    5f73ea59351b24e8e2db8c2d34d94c4f204041fca14c161fa60c621560c8c29e

  • SHA512

    08eb0cfbaeefca2d8c586ff1a75ae0ea9eac73372355cf91a800d1549c423a9363fe27b96b6eca5331d3ee5f6c307712727f12cfafc7653105daf9a5ee2301f9

  • SSDEEP

    96:784i28Ao+xufeEeWhb1fwGu6XVDYMyjX0fgfRtMwuM/6uciypM:7qJJD51IyXJgBMw9/6FpM

Score
3/10

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

  • Modifies Internet Explorer settings 1 TTPs 41 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\JaffaCakes118_4394db2fbe28c0771689a0b515bea645.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2712
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2712 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2756

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          0763fbcb745d0f1c6173f1bf154384a4

          SHA1

          bdee75c26df478ae1cdcdd53adaa5a045e5da77a

          SHA256

          1c4b622c76da28eb075c2023f82acc8d169de5bbbb21e27cc3739afd1aefeb74

          SHA512

          0cfd8710be0f2220fe62882926f15c0ab564985e84a99fe72f651779e2312b65fb6fe43c808f936dad3fff655f1641430975c51e998832acbe3d12a37d32022f

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          228cfbb065c458400d1992764a341cb3

          SHA1

          1a09fe75640f7421f099c46f0414d3f5fe66725a

          SHA256

          058ba91a624c3f4e3e862f661af8f8f581ca7063ae1d899c01eaafdd14841f1e

          SHA512

          5be8c89d0ded92f5d32087fc404b437d7052b939c98aa5fea40ece948aae6a59718f4587ff0ae028efb47dcf4a27e85c594c76494fb263fdfbdc171700e6e408

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          fc1e4d1fb31019809ac110388750a72a

          SHA1

          05ecbede1427e1b3c8ac7c5bcd50ec3985645f1c

          SHA256

          7079ea9c9215d07fccb4421e8d65b1e84acc1cfff8310318dcd9ef791455102c

          SHA512

          37e67236978aa49ccca49eb8986e0f3a6a912e6ff0d2f6e854d9917bb74fcddeb4d867827b1ffd9bd78169945ee1d89fab649a7f65cc4c540d0a843fd2c0b6d4

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          42bbc6aaf0361bced8bed15fe7de821c

          SHA1

          4544977695fcb50007836964a941a0ed74927e3d

          SHA256

          a6a18937e82b6b1d8dbdf04662229991b03649c64bf089969ad8abd90c6c3f80

          SHA512

          ba942b700e1c993db064ed4fdf061bb74c4f647c8fc8faf3612fd7195aa1c12fb821d8729e8773b60b891de9da82734026f544c0c6b73ee9ed5d187f6076873d

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          b89b62d34ea0b02a793bcd165fc00b3e

          SHA1

          f452f626de2f20d5530d1e5c46149754f4aec252

          SHA256

          70bbe2e5af4a8d917a80f9a2fe76eb872b150851e53c92d838664b62918d9d02

          SHA512

          461ba463a581c9034332351b531a93b85220ca19eed23689ceaa665438fc59e4f27d947dd6844933ab398789fc20bad5c4c9388aedffd02f4f09ca05c559b34b

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          e688a11c24f8a718207c162e407df2cb

          SHA1

          8c636e1274e33bb43601f01f3a608a7a5673e605

          SHA256

          4f3477c0c7cd880f1113f223fb6c6a6be25c5e13db4661a4805e36fab89b61f1

          SHA512

          bfdf6108fd3dd11e16fcce6dcf9445ecd007280ec8c61973b5b68354d3e580a19a143dbdd8acca732a4d339352baa5b59d8d9becd7cd4d5b77035d1026851cec

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          6a41566f255d354e3cb6b6a771e33ed5

          SHA1

          eaa19a38bb4abc26cc7d819b960dea6fc599623c

          SHA256

          9bc9d191a5fe68c6fbc4f654d1734729e2785a6a5e9faf3a36ff43ba1e2158fa

          SHA512

          61cd6cf4e147d8852fbea1e6aa2bfb7f0f47fa30eced9c8664baa89f128ba9bb9106ac27915a917ce8f0e83b68f14be80482fbe1c0b3e594fc8ca8338eaf44fb

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          6a5728b4cd41154740cd195f8bbcd2ab

          SHA1

          61a6a8723e611e5b91ab931181b5387a77994f07

          SHA256

          b863a6b493b0dbae4de880efb5830dbbbb9474b109dcff7974d2c21524a3b3c5

          SHA512

          dc78c33b9cab9737712fdf178b309ec9ab93d4450282c8eb526bbb5901c24b4e5a238cffea8b87b0e0832dbc7e0ea20f32ced1e05c9a586a0edb5d62e02ad43c

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          3aacdb1ae61c1067823fd107f6df22fd

          SHA1

          93d8a7423807df84dc08e3be754e02b0ba18de1f

          SHA256

          655ba295ee628ca6c1eaf13c0fad0aca00cedf38bdef724102e04a2e88a75535

          SHA512

          9a1cfd03cddd46b43d9982d5876f4359393f4d045a1f75b624ea836a9363d96fa66920e68797e692eec51554c8dbe085c28d30b35a11624c555d6441ccf03ce2

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          0ac436d7330974badb8286d5dc91fd36

          SHA1

          18963ce4c1bec0a17f371ce9ba81d3d6b62782d6

          SHA256

          f692d05d921bd0bae3990a8ce1edf18f122f7c3b2f7bc0787486f1ba9244a783

          SHA512

          d4200c8c2cecc89652272195218137a4d3e00f42426bcc5d9ba8e3028a05ae7e51fab52382b12aaaefe887e5a59e9aadcc86de655a00fdfb239713f6a8ac5b9c

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          191092b0faf1aa4c4457cd2304bf43c8

          SHA1

          4856e3cf2cc62d1a5aa1054ebdc4fab7c9ecf1f6

          SHA256

          7c4fa05f9c79b8c490e4263f3e58d99857a6a54a47d00f145ef056d407f3944a

          SHA512

          c5551f41ab9e6500e6270f90bf0f15d4abb683d8e89b8ca2136124bcf165e42023dcdc70d0b8702ca45be42aa5e4e6c57dce73ac53b90c7e1d29f6ec4d08ba33

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          74f555f4e1ed394e0212b42b4e10133b

          SHA1

          39ff4a623519e774c06b005b16094092f09ad90b

          SHA256

          d486384fcaa67a00c2785190917646ebe5eb360eb5aee37a50ec10d54c1817eb

          SHA512

          8ecb162ccd4602d53a5c85ad30946faa271d0bc62075cfda006af72e716c3c739ede7cadd0c91a6edb00bad19134fcc49fe99edaa02550cfdc88c63d6747dd9b

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          890875db50d194fb2e4383efc51067f7

          SHA1

          5e5e5180233483868d63e2962455c4cbffb2d1bd

          SHA256

          4ffe2ab6ffe68fbb2146d7f251ad8dac50c776c1a5d9dcd898d794042480aa78

          SHA512

          782034ff1e67867d0c3259b8972e497f60d1078afc139c5fcac8e4ff289b5f53fe03101724a9401e86872a090858d0d07c1c47372599ac85af410712f4761594

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          9180e2acda856ae7ca6dd068d9280956

          SHA1

          c8173540ac57a8f62fd8b2c19fa1a9ce29cae256

          SHA256

          e9ec404f910765cc84a90b60b5c856e9332e2870713b6ceadfef35253a703699

          SHA512

          9ce10ae2a321e7cbc93fa37046d0f07709dd2ae4c0aeef1926098ef265b507a38a26894967637af04b83350144131024c9a88bed3aa423d2e945440ac12b5252

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          f46976b96c50f00340c0ee7f355da48a

          SHA1

          63fade3a7751325bcd3260bf7a2f076809d3e31e

          SHA256

          1d881f2d1a956fa5d42f09774e1e92491ca059bd69b1ba388ed041746578496a

          SHA512

          8c25531fa90000982911520e5c6d46275c2529adea864db1190207cd762aa8685880cb8683e40138bcea76e24116c61273427a454b86af19b87443cb64e051eb

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          382d2fdd4f6b0cf2fba652b28dd11f8d

          SHA1

          a3916348af4978413c10d2dfb42f07a00a2cd68e

          SHA256

          caaa32edd62a1c97cc90ed2b06d9b896cff0d77d4200f8617212505566d79eb8

          SHA512

          7e8467c7b09b63652e1f7f03f0ce62cbb0e2ee5e060cb35652fbe81dab5b4b29a17bb912411f99b5e9d3ff3db8057a342d9e527b6a1c5d49911a64a33942fe47

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          0b439434522c156c2e4de9f53942a3f9

          SHA1

          0ff935e2d67ecd829f6dcac2ba289ca7a34bf276

          SHA256

          e3bc36860f343fe495aa41f75dfa52b37d4d1a220792ad7aecee19e9729fa2ae

          SHA512

          dba05cbe29893b6b85fe5e53db5c75b81b02019025b665827f7ee498ec6660b5b9bf1ac7860f3b3141d54318061e4639921f24f6341f3462f1863b7937c79233

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          c1b37aafcec6919732378cbe821065d6

          SHA1

          353139993965456d777161bfb6049e841e9cecfa

          SHA256

          6934deecb32cf9f30cbcf27df067ae5160daa1c758ebde32c9596addfbcbce58

          SHA512

          c284a277882727e05c23556951ab5bf10bf6dec64cdece7546447dfe4a6bdfa7d3f1fd1e4a36a453ab818271e1c05a9287dd7bd7d944cdbcf88c4a555c1c5a2b

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          0a19b96f344bbb3c7d2e4e2608138c28

          SHA1

          bad1512d464ff57616f661f22d2c1326fff44e87

          SHA256

          26ae06d81c72fa436dd32729f19f6c776cf71d2add784235c74bf1d0b7f101a6

          SHA512

          2928cc545fedcb507fbd92eba7034a3d8b377fc64d65b2a8d13ff1bcc9a3603ecc0982bb237e98d7c75f40b4ceaa957f724a8a27fb4ba8a6d5d56ff9310e368b

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          cb7672dcf9b16ff27e7f1fd1c76f5f6e

          SHA1

          aa8c43a52b03e1c2b109299bace250931e3a68f2

          SHA256

          f1d0f710fb519d9e2d54f20afe86a6665725c32b5ec601c5b48fe5e2fea1873e

          SHA512

          4ae524309c07a04cdb5371dc23848cf2cc5b1edf72e596e47e336fa3f0c1f22d7ffb6165ddcbdccbdcc4b437926d649e6460d2d0fcc1d00b67c8ff823a696949

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          ef1dca2e43f3c8c3200aa380dd181066

          SHA1

          f70cafc4fc0832a7e99466e464a4a702f266fdfe

          SHA256

          39f0a93061fe135fa18d06d6fdd4fb5ee3bb730558fd117aa0e9e3a2ee5a8a94

          SHA512

          98cc850c96d06ea41c1111bd041f57874a53c1edc9ff9254558152d1a5b337aae6b3e47feaac34a58bed263f0a3630e44b2a94f228212abc4193acad3bab9b77

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

          Filesize

          342B

          MD5

          7070ae6259d3060fea3487dd3619884e

          SHA1

          1d08c0241de0c3b088eb827ec28d5e59d0e4132e

          SHA256

          2c2f904b752d23ada4a6b3ed4a28c67cb62c2c01e474a79733ebdc12a6300883

          SHA512

          924d2880e2c3d1d699a7f080efc4852de4a6f812514ec5573c93d966d31c83ab84fc8a333bd66b8cdee429204679d4079ce28a7f2239b74d99997edc101e831d

        • C:\Users\Admin\AppData\Local\Temp\Cab7724.tmp

          Filesize

          70KB

          MD5

          49aebf8cbd62d92ac215b2923fb1b9f5

          SHA1

          1723be06719828dda65ad804298d0431f6aff976

          SHA256

          b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

          SHA512

          bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

        • C:\Users\Admin\AppData\Local\Temp\Tar77E5.tmp

          Filesize

          181KB

          MD5

          4ea6026cf93ec6338144661bf1202cd1

          SHA1

          a1dec9044f750ad887935a01430bf49322fbdcb7

          SHA256

          8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

          SHA512

          6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b