Overview

overview

3

Static

static

1

e1d1b10b94...8.html

windows7-x64

3

e1d1b10b94...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    105s
  • max time network
    149s
  • platform
    windows7_x64
  • resource
    win7-20240903-en
  • resource tags

    arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
  • submitted
    15-09-2024 05:46

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    e1d1b10b944b1d389a8a78f16e31a241_JaffaCakes118.html

  • Size

    11KB

  • MD5

    e1d1b10b944b1d389a8a78f16e31a241

  • SHA1

    bfac29113e019b71594b3acd6bc62b3ae8de106b

  • SHA256

    95aec319d9c4258c3328d3c202239211372bb763435d05455b72631c60118edc

  • SHA512

    e8788686febd2c68c7828c4eb2eba7c10444ed5a6989f69485641ddf90632fc25c6f2cdcce59eb65692fdb217bce50edbf8012dba7570c426f18145ed1ce812f

  • SSDEEP

    192:2VnlIsr03Wr8k/w1wvqyjBtEnQ9Lvlz018LOXuBuLbdU8d:snlIcuW9/gcjBtEnQ9Lvlz08LOXguLZ

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\e1d1b10b944b1d389a8a78f16e31a241_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:3060
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:3060 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2744

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    06a0fd2ad08bf153267cc5500732bf5f

    SHA1

    a06e7d3b499600175ce9ced6918c9e721caec61f

    SHA256

    731da1d2d3027cc1f079231ad8858ba71214fe5d8749d513a55b9172be9cbbde

    SHA512

    acaf4598b6531bd7d399885ff0041f048a9306e7ed5f3e68e1fa6e4cf0356e95925372a8fcf897b6c57254400a1941344f79e564e9be9fb097ecf3140b09b956

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    bc5427dfb18bc7919742a1f69ae0ca6d

    SHA1

    3ef0bf05029c07e6e767bb3905d83cd4787ec069

    SHA256

    9a9792c4e2a3bd7e8e981709990b50f4b81737d2c2aa45a7daca7890d4a78834

    SHA512

    0cc110d5e1abd574e10958dcb9a1a79187f267fce5de37ececeaff307936d85f74fe4103ac3e10a44300783e8e4d575c73def330bb6b76fff042f9ee9549d69b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    f4f12d59b6debdb9c6948b02438f5260

    SHA1

    3b08df0aeb9e3d0073baac3d6bdcd3e0310aaebd

    SHA256

    8ba6fb19a7d1705f232618b9014a8d5a51e07d511b7fb41a9aff1eb192a1facc

    SHA512

    4f9f93cf60d2931ed8c00522af4dbf12bf766259f9f3d61a7afde14443bf95654219208fbd3eb2bb48159e2d0bc026c0b04e8e234fb9f0e1e82b48e0263fea8a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    1eaf839548675920ed04513e420d0981

    SHA1

    0830b5428e388622d30ddada09c2797589eb0786

    SHA256

    f2969950d90d198d0ea545fd4b4e98f0837672396ea8131b0e638d9ad1697f41

    SHA512

    489d73394588dd5531a2d9b790aaf471e3333287ac5508d38fdcc745bdab0aa7f1c5be4189c4d7ab4f4baf66046a49af053c7556f6860813920df180ab9201dc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    ff5aabe55345eac5cc9383b348861030

    SHA1

    4347bd79c86106c12003f61540c9ba01a23c5a53

    SHA256

    afbeb06dac50f6ee5f851cba6a672edfd91f7f9fd08f6350d5f0ce79b96dc369

    SHA512

    de6269ac1ed4e47f427ce58fa98264f1293711a1381a51c6cb8250122aea2ac6f6fd858ae6627f947cdd47f6a5f8b70da944f7d36541354a1ff667f09acfbc8a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    4dee41c370f21222ab98ada24badffac

    SHA1

    0643735d2ba0438d8e2d66e411cbd182583c1c60

    SHA256

    7ef36f1272c440fcc06dac780b6faf546e15fb72efc0aa0e97655457ca3595c6

    SHA512

    9ae3046e6a8f3cfec1a5d4d9862f991b99227a367a63b94d36841706e1074b463b57ba82d0333ddbcc30b8cd806d079a865efe38f925a9f7d8b4216548e94593

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    d6bb21789ad2c6fdb2e699605e574b74

    SHA1

    cc43391025af494bcb61ead6bbf0332fe82e562c

    SHA256

    ab00b17deae0697c31af69ea26ceb6b3b77710f6498e19a7035735918fcf1e58

    SHA512

    59f75596849b748f7c36e4b906344927a6fd9aef3a48cbb0c3fea185051b9da3b154eb703753f5662995fe6bccd4769001c7248981cdc5014fe080876c42a51e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    3af06e260b92ff071b8de1d04978b3ff

    SHA1

    aa522b35c95e208054665d341b7a53050ccf20bb

    SHA256

    7932ea79fad43511d06a78a84af2f74333ee4ca0dab61619b1afc3c243b68eda

    SHA512

    ce37e15c3b53e3c0d00ee212592513022a3e7ba0c2fefb68bdb895d35e8cb4f8caba3214087d2f001e3e80a9298c7b994ee6012c7c45abd11fb868ea76c4be85

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    b63f000523ed7928dd4cc2295406808a

    SHA1

    a39d3efc3ef793c57258122eb7ce4ab84db78725

    SHA256

    57842d94986fcab9a5de1e4a738707f12f2ef20bc80635fa38202bab44983efd

    SHA512

    96db3dac82f3b0cc27f8fe9fdfc62a88d0fbcf4351fa034c6e20d3e262c69f4d7420cabd973f8a9409206e03f6861f70ddcde29800b96a09cdd4e160f4df16f1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    4e5e39424719d5e3a07598161019c47e

    SHA1

    f4ff6be0692f3cf962aff714116e5deb1382b13b

    SHA256

    73383e0a451dd29e8e0e54d9b0cbb31292850a79846daf3159053b009966bbde

    SHA512

    c38c983a9deecdde1da54db07a81fef93b89ac0a08137dd13fae4da999ef7c699b6bddb90f7abe403ccbc8e9da8f406765d82e52bfef37c22de18251db3f498e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    2fd9e38f1beb659d4b44a4441958b183

    SHA1

    c6c41538dcbee53bd00fe6bb7fdb6cf5e042e6c1

    SHA256

    11b3eb0fc13f89098c9eb6abc5664377e3dc793a470e52d56067e03db2f0be11

    SHA512

    bee0a4b8c02eb6380359d92ca32e60a239d335ac9e0b96925d723bb4ad277d00de1a242f060226a0d1af959b01cf5272daff3fea5de2d8510eb5e465b8a9cc29

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    8ee4739c224d5f59dbe6581af97d6c7b

    SHA1

    bf7aa553200e4285d85275e41a991677daa9c241

    SHA256

    e563ab0319dcc681bc8fe728abf97f5dbae42bf550befb411c341d4461daa6f2

    SHA512

    d1f10c3897fb8e19b9d6c35336cc69ea4098b88973b19cd9a8e6b1afdf06c1aa1a052223991b3e85a563ae4292997e68c1c5d103d69a59c7b60d88889756f5dd

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    eadc7f35e7e6fea190bdcf1f2545bd76

    SHA1

    34c5eda32a7f5d4baefda13d46bbc9152a7b4807

    SHA256

    4fed0105c800457b980e2b3459b2369b9207512441af9a4dd8c7d0fa555d9869

    SHA512

    0f90284865c31bc00855f444575a83a67ef41461fd43aa6a703449771a8dc89d156f8112e9fd30f8fb6857208222a9e80ff00c3c9166c802de83ecdb6c1fc84e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    13b1a88648b3513c27f1d10cd5b7d423

    SHA1

    e1deea6bf548d94befdc2bb26dbb3938ebd39f24

    SHA256

    8878868367a4622aafb710f4729aacff936ec91dda7d975a719253b5336bd44e

    SHA512

    825bbae0795840b0f71bfee1ca798f6e51781a3a5b787e51e0ad7ebb91c116c68209e0a397b90a235af5a62e50dffbd0075303ff8b49173ad5ac44b8f0bf2fd7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    43e72e9e8a9b56681e22acb943cc9aa9

    SHA1

    830472bdad7b33d75714a06b82cf343fb1d45ed3

    SHA256

    b6d31800eb6c7eb16bdddb67f65c5b37ec04a05adaa477f6012d8e3d497a6b15

    SHA512

    5dfed0183aa95568ba79701dcdc7071ef241f7c673cf7b4c59574514d4b6b03231cb8e9e7622c54084d1c1ae15d12d536aa2f7f41f977d3c2056305149afebc0

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    4e69e75d67544b0d9e6ff7a0f6958f9f

    SHA1

    1a44cb913d6b23a6c7c2d133585aeb377bacbe3c

    SHA256

    ac8790850a951af4686d344e31904dea1a1c756efb17889d7ee79af6ac4a1507

    SHA512

    5435a5e9d374113c57e35b7a3948c4713c82cfcdd987e6f7609ea32ad469c0a7658246a02e94c0059461ce3eb1c719e4c4f54388da90fdc2076340ef105b033e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    756ecc5e5c0106db05dcf0cf87f6db77

    SHA1

    cbf9830eeb45d156e4acc615260725d73856bb48

    SHA256

    c540a36b56ca32e1ff1d771971167ad57d968fe9d39df16f08da23eb66180f7f

    SHA512

    d45c93a4cebf333bf9515bfe0b7ad08c24bfb9bc4f5ab24a3c867b9a051f3b4bef787c37d5bb3e5186378c3faa3af0b8cf99eafc5db4fb28e64cb2003d41d38b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    9c5f9f7cb91cf30d19f658239e1cd782

    SHA1

    bbd9377cc1f0285f681d9f20ad374eb5d9b5a352

    SHA256

    e79cf0380a4ab05c91c6ce542ee09e48b629373ba64f205a97ca730c21b3ea82

    SHA512

    82a085cddcba751f8168dcab04af7ce6f26386151d4579a488c9186fb5ecfcfbb9988164f5850ae7c5cb8b3863e5ae8b131299aecff500a8ebd6ce89b295321d

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabFE2F.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarFEFD.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit