Overview

overview

3

Static

static

1

e1857f7cc7...8.html

windows7-x64

3

e1857f7cc7...8.html

windows10-2004-x64

1

Analysis

  • max time kernel
    143s
  • max time network
    145s
  • platform
    windows7_x64
  • resource
    win7-20240708-en
  • resource tags

    arch:x64arch:x86image:win7-20240708-enlocale:en-usos:windows7-x64system
  • submitted
    15-09-2024 02:24

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    e1857f7cc7d414f98d49dbd58e1982f4_JaffaCakes118.html

  • Size

    54KB

  • MD5

    e1857f7cc7d414f98d49dbd58e1982f4

  • SHA1

    a2df0aa4c2520b318ae0cde89537c462f3f5d40a

  • SHA256

    34e5f80f81c3bef7200223f6137930a5a616dde3b3715d2245b45880d01a6312

  • SHA512

    67f5c99d018a63a72aa5ee951a8370bfd0e1aa06348aa5c87a45b6a6471664766b8fd174119a8dba4c6c893abb5a75c20464a3d6111f6d7b0dbd1e2aff952d3a

  • SSDEEP

    1536:LHSjfn2o02ucw+wJv1ea25y4IHHolX+XjdV6nl36Y:7SjfnVq4Iny+XJV6nl3v

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\e1857f7cc7d414f98d49dbd58e1982f4_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2468
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2468 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:1056

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\3C428B1A3E5F57D887EC4B864FAC5DCC
    Filesize

    914B

    MD5

    e4a68ac854ac5242460afd72481b2a44

    SHA1

    df3c24f9bfd666761b268073fe06d1cc8d4f82a4

    SHA256

    cb3ccbb76031e5e0138f8dd39a23f9de47ffc35e43c1144cea27d46a5ab1cb5f

    SHA512

    5622207e1ba285f172756f6019af92ac808ed63286e24dfecc1e79873fb5d140f1ceb7133f2476e89a5f75f711f9813a9fbb8fd5287f64adfdcc53b864f9bdc5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\F0ACCF77CDCBFF39F6191887F6D2D357
    Filesize

    1KB

    MD5

    a266bb7dcc38a562631361bbf61dd11b

    SHA1

    3b1efd3a66ea28b16697394703a72ca340a05bd5

    SHA256

    df545bf919a2439c36983b54cdfc903dfa4f37d3996d8d84b4c31eec6f3c163e

    SHA512

    0da8ef4f8f6ed3d16d2bc8eb816b9e6e1345dfe2d91160196c47e6149a1d6aedaafadcefd66acdea7f72dcf0832770192ceac15b0c559c4ccc2c0e5581d5aefc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\3C428B1A3E5F57D887EC4B864FAC5DCC
    Filesize

    252B

    MD5

    c3f1cdf1de65f0a558303d7664cfc353

    SHA1

    282718e33a4fe7dfd99b7811b2a6c5d823aa61ed

    SHA256

    081a1ec350ad46b694230254b307814b86196c2fef37788dfc5c460ba228d60b

    SHA512

    72273dd5061d868a471cd9d0876f6ce979245b46992f8fb8b2981dcc1e9a1527eadbd5f27aa5fc42f6d5ef41401ef8df988af2aa2a798cfb059fe6e0370f7a23

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    a14a6443f42a7a16d8d102aeb316df3c

    SHA1

    dd15c2ad16343d2c6c2123df459ad971b4ef689b

    SHA256

    acbc88ee804dfde0ee95e78a3a018894e29f8664ac6b882ad358f3df08fe7d17

    SHA512

    f674d5765f7d440e22ff6fb508befa9ed82288501401e180b35df573e3245c315eaec389b6331d5c8ccbc26ec32a4e81c521f95e7b4a6511cd47590fadf7cbb0

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    acd3a316772545411e44589dca07d9a1

    SHA1

    d17e3ce329c6294473fc189530972b5958430b84

    SHA256

    c9a8fd80a75a400a24f6349dca805fd22213c173bbdd28bfc8145477cc2f57b8

    SHA512

    c85847d8bc811bef07a29e16b0332269fc00fb6e4e6a2639c68507bbb347cbdf94dfdc8655b910281a22d8b596c3edec505eae3b5155c2f8d87c5671dc457365

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    7d0df7a91f9da2593af36468e761b888

    SHA1

    836941df94348ec3fbae3a7712c82d42588a50ab

    SHA256

    fc5c1f529733b591c35f526d4586d5a388d72bf3a637503a923f43e21935e9c1

    SHA512

    a729fa1879826546f5a8124c9783cef1c35faf8402e0415735083d8c821c7c0738344fdf5092e8663cda80c599d77082dc8b8f8892486966c4244e8e6b1dff12

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    cd9221e10ed88811a6eecf011cc8d766

    SHA1

    75a6548490928b452600b0b7fa575163e180786c

    SHA256

    5c8bae102bb5ca03fb53f45be84908f43b43196439adc5211af7fc4ae2efe357

    SHA512

    1b6bea1a4bf08479ab1a1850b125f38c69385efcbecb5671a93607671e6df183d5a3fd5568f9a013741f43d0b8937865f5e2357e5b136e3d9fb6c5c6ca71f37e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    e98b1c7bf09389fd931114967dfec3fe

    SHA1

    53fd121a72d1426110d91e60ee5c824e28bb5f21

    SHA256

    47dfe6331627d108d3e13095aaa942958a2f1a9e4037ff5f6fa8bd5c24232402

    SHA512

    303d45c0aceca421dc2837cb728bbabc9ebaf2e98801dd83357c294cdd36ec8f6596048845e7c73e7cce70dea81444f14bebc6088dcda6249d453841f6bfa5a8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    211cce3566ba3a0dbe7389a039ad92b4

    SHA1

    294c5e1b2a91ad0c730547f4dec10bbd94f9cb1a

    SHA256

    da89fd96b1f2accb666cd940c02ba3fef3fd6e0b7f026c24c503edb52275b924

    SHA512

    47dd80ecf5bfb136a973ff145c0068b02c69d42e11bd664f151f7562ba73aee7c2c91ef54ba62a954979fdd9334f5d642da8bad3201a181d413a7864ee776cbd

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    1526a7e5fc54d901fc0a84a545ed5c23

    SHA1

    7fa23b9c05755e4383289152a5ac9d95acabe37c

    SHA256

    864785efb100ed83f48ceb9c0746d47444932023763c0906ff55d625fcbd852d

    SHA512

    82e0b0948062122e48f7cb3a2cb99b8a82a0d8daeb9aa13ab2bffb85174860b530f0a4259ecfabf6996cfd1ebb0c689e255fc8f17f94b001b36b1291136d416f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    ac1a7b7e35f60a90b96bd0c6c104524b

    SHA1

    0171923b78df8d1ffb0ae8052e7cd7679e3a26cb

    SHA256

    433db2f70f3d44a9038abc404bccdc92e4ef08c1ad87ee6fea63e1501817120f

    SHA512

    f1ae98674d5b37f8ac08caea22a647ff3200d9af785169a816f3c00f5cf18f1569fb13b002238d9edf21ee6736b62703701904a8fbb57d34d2c803a6f7d3d0a0

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    45d1901b2b84c521bde4dd295eb42a4d

    SHA1

    8dc9a504e0a644a8e396e8dfce2c6807d4e5ec3a

    SHA256

    8cfd7914f85b9bc4def699bd1a2b81cdc8f21f4a6007cb12e9b1d92789aa9f2f

    SHA512

    ff39d43d6b26af8ffa5cb428617ffd40d52fa044d70273d5e90281a1f02c8766d54b2b2d1a2d5071c31e828e47980ae3ba924050ec5d31b06d769ccf655261c7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    2775ed31cd4ccf05e7d6e3383c5d75c7

    SHA1

    b05bf43443af2f28da44493c2137310b119c6c7c

    SHA256

    41a5ad4dbada2fad634b500a137213c3c4a041edb023224a98fe25a747fec416

    SHA512

    906138192bb7a5a8152d09fb257448a619b301a8b18e6cedc174c618e5816bc9a68796ae206a54eb59ec2f5acf3f9427c53f4a60b3af515222729b45056433a4

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    c3da3cc888bf5f4a6c251170fa9a1cc2

    SHA1

    3bc506f0bcbd8920a5edee11ca158d986169be55

    SHA256

    d6560d65c0267dcf8c0904ae43672f605b4583727694051f915473177a362fa8

    SHA512

    8d0292a99099bf8c42f2b1b2379842fc1c62e5c43cf16b510fbec88e3ec0a4d2d924e5d651261deaf13f9caa3479864c2ab82b8e370e5a6b5dfe3e6587ff7901

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    ba9bbb49e4597b6872c9e7a5c9c061da

    SHA1

    ad28253b438f7823f2c29434592a4f4069b873f4

    SHA256

    cc940deb760a5a887c49bd7f3ba74a815e194598f04b1c82cfe6ca3e98205429

    SHA512

    c332a1ab1f90a0c3e9c14f59d28ebf4c25a86e69fa6412e76ee59f7332eb570a45240689c96ec1f2ee3210dc65008dd1ad4c9debef04c40479e989e8f3ad731f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    2d52af25046432248576980a74a4e4fe

    SHA1

    69ffda1105ad3a5d6c785ec4fdde0bdd8b440f9b

    SHA256

    a917ae0e4409e07412fc4cbd8a7f2f6791278872a827cfebeb99e54f3fd99393

    SHA512

    f15310fb8035569ff5c6449e44fb6c6e1c68df84278eb83b353c8fe65a2d467de10fee9a807da19c09eda3e263a69be1f4094d5bcec5682504fb65dd58d38d1c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    d30e2e4b4b47bdd897191f557607432d

    SHA1

    49c9e2627cd51273b6a78e11f6bea578ffb3e49c

    SHA256

    fc66a24ce8e13e3802a7824410d054ddaed8000b8824db9396d897598b52d65e

    SHA512

    afd81f27723c57ece8c308c68d82c4a5b02b3153b49df9060d81c68423a85d803345d35db4cfc2e616756423e91b937b1c1b9a68f8fc14564ec9e36158b6fb67

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    61ba6c4e986531e4449c2b7bd8cbce31

    SHA1

    3ea445da23419ed38dbde452445eb8a730b6f353

    SHA256

    88a0b4f6cfeb3c9bf23da8c7854c42456d25830d50036b3ac7d71af7ca63d9fe

    SHA512

    5ac1305263b7008fd935807be50f3eb988bf0f8dbd67e8c0295888004f74d3401901b1841191edeeb1ebe1be1a4805b7e35ebe707bad19ebc278d454f4718d8f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    00c2101a2b17628ae9a7b507404a832b

    SHA1

    3030998360224ef4019f030e3c9b85f0d64368ad

    SHA256

    0311902e24c8a3e3ee5f7307780f00c434148ff8e28094cf29b16bc4d25f48d8

    SHA512

    76e816aea041a1299635c5e452ce49c04985b88f24edb62efd7dfe17406aaf68c17d5f116222c539905536feae68eecd2f757332774885b0f8a424a89c186f6e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    52039ba17e16c746b39371498fe7b3ef

    SHA1

    996996e501b43b64a683dd7e423a4e83673e2765

    SHA256

    fcf5e4eb19afa0c2741015f21022f70ab84f8489cf277cc17199fa99e0ab64bc

    SHA512

    29b49ec0bfeeb5b3702ea9a8ead16c61b93ef86a49e6398f44b16603a52667fd17c7dd1759c32cd616fc5415313ed743cff33075001be531eb59c617899b1737

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F0ACCF77CDCBFF39F6191887F6D2D357
    Filesize

    242B

    MD5

    5a7727b561bdb213143cdb8f4836e810

    SHA1

    9728354401355fea7add5ebfe4327363d678f21f

    SHA256

    4f9043a7682460b70cdf28c1e98d8c74ccb3c3503ee1f808298eeff5884ba6de

    SHA512

    48e1b516684dd81200ff06ed5083c6d9af2862138d96d7a5ead53d4b7ac3808c0a99e40f7913f8160af68e4833e643a2859a54ef0ffaa714980d2ed0aba0a820

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\39GEHZPO\effects[1].js
    Filesize

    37KB

    MD5

    0dea24894889a4c537e1a451a35f03ca

    SHA1

    f72e2ee2019cbaceff0b7fda89ebac9faa7c5b6d

    SHA256

    055be203cf7225e94dec4a5f72ba1f469a499ac78c24d9366705c1099de812d0

    SHA512

    c532fb6dc13525a9ece1b5be74cdd3cd03335865778bcafc012e4e7d7b6332384a75c99245dc8e17d48f3cb9461faed6a9188bb0c673b35e69fb4202ba0c6c22

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabBE51.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarBFAB.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit