Overview

overview

3

Static

static

1

e9cb464a9c...8.html

windows7-x64

3

e9cb464a9c...8.html

windows10-2004-x64

1

Analysis

  • max time kernel
    136s
  • max time network
    115s
  • platform
    windows7_x64
  • resource
    win7-20240708-en
  • resource tags

    arch:x64arch:x86image:win7-20240708-enlocale:en-usos:windows7-x64system
  • submitted
    18/09/2024, 19:08

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    e9cb464a9c3b807ab19aaf67a1c22fb9_JaffaCakes118.html

  • Size

    214KB

  • MD5

    e9cb464a9c3b807ab19aaf67a1c22fb9

  • SHA1

    16e3a3ef23db5bd2dcbf4ef0eaa948e240ae7918

  • SHA256

    5bef0576963a5919723ae7b8bfef535ba721070af3e213059b669a7a67ef0abe

  • SHA512

    ad719a16018b5c1806b05dcd1bc01825943750328bc5549367d3ba1ecc7d8bdebbca098a0dcc8219601083000f839bc9067996700cee1d156e7c0feadea21b17

  • SSDEEP

    3072:qrhB9CyHxX7Be7iAvtLPbAwuBNKifXTJA:iz9VxLY7iAVLTBQJlA

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 41 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\e9cb464a9c3b807ab19aaf67a1c22fb9_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1328
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1328 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:588

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    80b8b721cb3c9833568478118b602482

    SHA1

    496cb2e3243244b4e7ecf26f7c5368e34719b245

    SHA256

    0550fa038b7f560930c963d1defb3a16cbdf0527d8a5de094ed1999dc54c1226

    SHA512

    7f73f8821c1f9bce721a286d19d34e7517e1318ace3db5faa0e5ebd1b82a3ce922b0722a51ddd0c9605eab510f5fdbc3f525a7512d8755bc03161893d692ba83

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    f3dc7c4ff5bbdbce05d0a45102b9b166

    SHA1

    31d4e6f61555debdaac22cbea8a8edd4dad301e7

    SHA256

    4535ac44433b891d2a0e9b004e2212299c0c6d64513d1eb46bf8d8d5b3fa00a4

    SHA512

    ee8c629aeca050dcb46d627febf729760b9f11e0208835410907d875f2fbc3cb28d9f0185697d14f3e3ca2a1000a925df1cb7d11d0286b0da9e3a5f23be44e97

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    c5400acef7b6ced9e601bbf59bf58222

    SHA1

    caf542cc3f3c84f60ad9db4e98985c01ed3710d4

    SHA256

    ce59c9757a8bab0038ca2f8cbc0b61ab39782bffcd4e95bda62cf89f4a98ead6

    SHA512

    638b07169cf7f760f31eb9791cb97503eafb360b6e1a5fd121b65072d1204b9b8cad3e5f3ce0d59ca890b21fed55feb4e1ae539fba6562e877559a27ce17595a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    d6c3deab922e6d9f87e3d8451404c7fb

    SHA1

    b72e930d2272e16b1977e24d70c0c6bbd53e23c4

    SHA256

    a8825f3956d13732dd4467b2ffbda981efef28057a49143d05f786744405de3b

    SHA512

    55563b3f7cf5c1aca269d0fe3a0867567e47830441c0112d47346b579aee2d66eaf56166cba3177ca6be3b24e1c07407f437365192ce953ffa4de271ede2426c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    9a1177bd35d860719e418580a24dd079

    SHA1

    d85e51db249c9a27e9530bdf49694514bd4b6901

    SHA256

    b987a9753d9302ac5894ecbfc6915b01ebffe4753cfbdbe504a26f9b3eb14cf6

    SHA512

    3eda5703e4a04213dfce472f3a91e852486854f302723c63a378b50a34317e762c1ac63ef4c3ae703bde064e93465c8ba267fd9d33caa95422e72d1ca8b5ef08

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    e177bf888e2f80999266920e713c6326

    SHA1

    0b1a0d00883565794b1af1fcb975b23870710543

    SHA256

    7d05d4a2bf19e301a0e44fdcf43f81fc3627c53e77083b49de3b896430cf8685

    SHA512

    2152206d6793e0ee4629baae028e2f2958fa2cbd874b0ce823926734156ad32b5ea77a97829d7aed5d30a43c297c4aa99f480cc84c9be8c25915c5371b841ec4

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    547e365e44814a7f8ee7e7e92b213b3e

    SHA1

    866f00cba233f3d2b4e1bb7e1643195f00710126

    SHA256

    b4198fe988170e0f52d7c64c25c50805f4729f8acb7fd9277702062be11b7ade

    SHA512

    a6ab61fc7c4df1a3b92196594c7475be44149969f3f3fb32ed4ab225ab78a5643283e6fff9fe0284adc03aebf82ae2aeccaf3bf32b26d59681a439048ac4722b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    2aa15606e5bc2cf7cb204eb218583158

    SHA1

    d60e7adb19eb442bb20adf8aa2b111881c79c6df

    SHA256

    2bb0f7f69b1c55b8313530611ce1699ae153578775e7e9528c8ef9e7eb7e99de

    SHA512

    d901d8f0edb9fa40e22a0e87e38d4e95e19e72dce946324a1b5edcf3190df879b65230d792ab5f7aed7a528e72bf2820a10dbcc12e5ff121349fab69dbfbfbd5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    d0f91632bceb95077c30569335e62340

    SHA1

    01754d5d474acf50be4889fa84f35eb4d21cdd66

    SHA256

    8dc1cf95c74d14e238791dbbdf481241f2ecfd89aa2aca331fe4f0b91ddfc365

    SHA512

    3f473f74450b783dc97b6b16f8f22d449283c37d1c4c908e9c22c0427f71c41402ca5ae0c9ea86db1da39ef605dabf8c4f5423c8027c8ee360f0b18fdebd9797

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    d4fcd7685f2f764dd8ca9c591dc43fb9

    SHA1

    6a4db9faabaf2eaf809709a215211cc8a1485895

    SHA256

    e927b04bfbf109872cf2335c84166fb42c7809abeb3dd12ddfda20631d94cfc0

    SHA512

    6ac9622ae45a5001cbca0966aee7b9c141e7430f8b5d0955129279793f5c3cc2279a8b5b6b78a76dbe174fdcf02187eed3b4a0988bc4fe8c9a61bc01da429840

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    848577ea3c11ee1be9c83e0310f274fb

    SHA1

    e7994716421a7d7889f050f0ae341ce439487d8b

    SHA256

    ff7aa479dca249281f296e5d7ae484090ec41da7ead3d53c898a791a4d7964df

    SHA512

    b7633d7c53b95e01d88cf95d594a32668022cc581d9b1d78d749535d0843b7545e687563a686e59cec21277802d8c97906fa50d80434eaa55527c799bf0ca8f3

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    3a2abd0a6b3958217073a0a7d955da57

    SHA1

    5de3b400ef838d953435b39f551901aaa6f7c06b

    SHA256

    9b47b4043ee10abc1270e75460dbc4c1cfc75bd22c2402a9ee286f8b36c3d3fc

    SHA512

    352ae8d40793b629e23bd996140474513663fe9ee78fd03c2d29494b97794682fe990303f1c253d0f03864d647b50577e9594c3ae2e2a6f372f63f9d7d725280

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    2a1920424b845ab6eab9621ee08274d8

    SHA1

    c605af9dfd09192b8744ab0dc60533fcc89411fa

    SHA256

    1e3ae9dcce1f899661411dea4ed8a029be1267e19e5219114c29fe966b2e70bc

    SHA512

    2dbdf2dc4bb78c29d713e0e42930763e1ea1d6e2800cac90f77fde4a5bb35878c4dc2862fe4fcc73fc369462fdfc8616ee0cde77eab3ec7add5489772a047184

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    2f21a6df6f8f5392fa0927d24a082328

    SHA1

    bde33591365562061db4c8aea9b8b770014209c0

    SHA256

    f96ee1321c5fcf5a639c806e6bcdfc4fb336fa0c479483f6796e0a41cb33bfab

    SHA512

    d1c19373f847331353b70b9fc6a336835bda8509858e6f07d207147bf600ce8e28b847d91d3efd08987ccf88aa1f7bedb48f3a197f5577498abcf065c931872f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    404339e6bb65f0490d7c3ad01a29a347

    SHA1

    afd896cc2f6b0807034f268b8b8fa4ef56a845ca

    SHA256

    e19b1808518173f2bef8904311275f86eace41b135b3db131788546834ecd121

    SHA512

    ac157ca15d354a3ea9cc89578876a08127074cae77ae0d51db4024e9626f3c03d50b6099f5abc7e4563ef9c873b5e32b5c9f36d629701410d6c10fc4f15c6598

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    ee630cf9fb3baeac647bde13e8016ed8

    SHA1

    fed0715c409e3e17a151a4ad5564bc9c5fe6247b

    SHA256

    babc6d5e15e575bd3a2c0a5f74afdf459d312461aac0d4419517e7464b5b94ff

    SHA512

    5168fd25683d7844cae106b55d09e578c1999671a77e2466a4ff3827409ee1526655b9e0ddc7e59818f2defded6ba1b2be1b2b0f0696e246da38ae9d7eca5421

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    6249bdc94e5dd3b5ba5ef45e6bd9a5a6

    SHA1

    56ecf132ec165bedb2f409aaf95199b38390523b

    SHA256

    0983d783b307cf8d8af41f2e04a8638218d1361d561c2f6672384a7eccd0a0b1

    SHA512

    9e9ae2583ab9e94e2d3f65272a4a8c3fa6d874ff3d78285c44f95996401ba24098fa7184a32cd5a6c85a24f785f47655dd1b91ee916d0250cb53747c22c0fd01

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabA110.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarA1C0.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit