Overview

overview

3

Static

static

1

e081292896...8.html

windows7-x64

3

e081292896...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    132s
  • max time network
    139s
  • platform
    windows7_x64
  • resource
    win7-20240708-en
  • resource tags

    arch:x64arch:x86image:win7-20240708-enlocale:en-usos:windows7-x64system
  • submitted
    14/09/2024, 15:45

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    e0812928968df522eb2811add924664d_JaffaCakes118.html

  • Size

    27KB

  • MD5

    e0812928968df522eb2811add924664d

  • SHA1

    08e1575d4a2444e3676cb9525bc52dc2419113c8

  • SHA256

    115046264f1b424d0693f10296c8ab41b61174e1937781616b8d072a3bea139c

  • SHA512

    0346111c53887962b56e8a2ca5896beef8025eeff370b2edabb8c9c80030b5bca84ad1c6d73ec31b07c33198a4364d1e251b67f73361f3cfcd7ac8d65d86c917

  • SSDEEP

    192:edvzmeprFkIdfGiSoCDO25IOdyurZJpWY6HR6Iko+nORga3jlPrToyheLETaadvx:sdoiSoCq23dyuT2HRBmcjF3oaeL1aTJN

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 26 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\e0812928968df522eb2811add924664d_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2184
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2184 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2552

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    3faccea249a08b281b5f76e1fb7e9762

    SHA1

    fe9edbf41c60e112b45a5699d66ac9494eeb2b2a

    SHA256

    b37cde0e7ae51a6838365cd78112e8084340064d412eff08bef16dd9a200cc52

    SHA512

    0048524a8ad7a745e93ea3312d32b678c3a47cac7c7378dc7391ec43dbcbb7da09623158c76b823be2b4e1d96a78ebf2a746d9f7d2809ee97543bd76939db8ad

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    43a7cbfee8fa9848a08123245d957266

    SHA1

    d9cb224f3e1ca0338c8f9ad68b9ec075fb183546

    SHA256

    fdbaa2fe17a324d8d99691a24362fe8df5d924b130fa29723a3ba54082ed054f

    SHA512

    60d7c473e23cbe6d991484a4e9fd76cac3b953dcb2827966aac86f29d52d7cb763df304258d59fb6a1885240678bae396180558512f4c2e833fb92bdbe78461e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    56234b912e2ec5e95f3c05e8966ebafc

    SHA1

    af21d7cda813f4ad057ea98166dad1de4b82d5d6

    SHA256

    75af54437bb32a0ab6babd16eb80938ea5002662cc5ba45509e48b8ea5ef2cc8

    SHA512

    24438f6a3936002c6c25e6bebc6781bd1fc2a328e266d91364ff9b543f7bcacae8a5ab08b0269fadb72492f864b92440686be3c576a1a167eec6a37412e5bcd5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    b1f79f79ea3df66cf74680310cd76105

    SHA1

    94b4e50d87bb93b7843bc9a2c2c4aba5dac78e14

    SHA256

    a8759be14dc8bc58dc091b508e77aee7c3c08132a185911a7fb0e050c19c23c2

    SHA512

    29b32b1cba42fc19fb625c654d2bebe8637b1625bdc31659ac6a33b3a6ec40efefc8a54ee4926a3de43f2e95dab6369a8087f6d71332a61c8f1ac067af5e2552

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    6c2e87a9b04575495db9c7f5818c8757

    SHA1

    a0b6d22fe9d6f147b53bac011a16cdf465bb0698

    SHA256

    58cfb640f9059998c2890b9d10f9e08ef84d6be3981729a1a012523981fb7184

    SHA512

    bb70228444cb3b346830b5402841c1c60d011c14d27994836d766c04b51b36bc6ce3d14b62ba92001990937cd65a56eacb79d8d774ab712eff1f5294c1dd3614

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    b7611f249eb6894653962e3ee1e95219

    SHA1

    35d7e1dcc176ee0c7e1e8ae760d63c4949602480

    SHA256

    d0a6b29dfeada04fb110766e75765071f9be62dd5d5a8cd8a161736f08c7dd62

    SHA512

    7c989c026e1e3f6350143c9b061edf77ba6998d9deb6e54f85d5331fc329af9db012e5eb40aad8cd76141734e677ae35a34b9869a7e85ad11747e7a3fa6722b2

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    1451a4b3e4507b1d886440eb3496cd85

    SHA1

    2c1ed020580503ef7103dd0c2d76d05eba6c14c8

    SHA256

    6e5071cb4acddef105823c66fe7570125c87fb40333e1af361aba9798dc6d3bf

    SHA512

    650729e48fba4014b2f558aaad7cf07565dbf98777c035553074b15a667e28026b6191fed4aaa2f416954d6de352cc8ceaccf890f89283fa59fb5b3e9ef230fd

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    69d4fc0800dfbb9ddce60c536567e3f4

    SHA1

    19b41e3bda570149edc3a1fd33c0f5cbe597f80d

    SHA256

    a4ffd41a76c775f8d4339f07f1dbd948408d974778c9eddf56a0a7ac412a998c

    SHA512

    515bf03c1ecfc0ea9bd769896a96a09d8494a40323401b29d0ad997533856e016a44cb912e67de949b0546ff030273b3817de7aa1e8de389ac07357c906e703a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    7de6b7f8fe9224d7490387d30d012fc9

    SHA1

    4c3290d37e7a2b00aa322aa1909f21c8230d166d

    SHA256

    65602fbc1c0648a5d1843bc781876334b6a655ed15656e3f9caad1f9ac6144c7

    SHA512

    3ae7187f932081cf79c71f49636beba9a86587617d057104a8459cd6130312f8519026fb3c4ce6dd7f975bb0c20ebd1e5b8169ae4ec24ce86a42a92059532e90

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab8D34.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar8DE3.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit