Overview

overview

3

Static

static

1

ea6c2dd59b...8.html

windows7-x64

3

ea6c2dd59b...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    119s
  • max time network
    127s
  • platform
    windows7_x64
  • resource
    win7-20240903-en
  • resource tags

    arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
  • submitted
    19-09-2024 02:31

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    ea6c2dd59b2b8e5e1cf2cafc2e071a8e_JaffaCakes118.html

  • Size

    27KB

  • MD5

    ea6c2dd59b2b8e5e1cf2cafc2e071a8e

  • SHA1

    a4a10376e970e303d598aa5be84724107a243abd

  • SHA256

    e316dc50e573be5b743d0d767731524e30644e199e46a5e7e447a176f0a33576

  • SHA512

    18556ff5998227ef4c72e5f164c400ba5eead8aa671ae688f7dde6824afe7928a7b379628939e90df5429ea1504a06959be3dea23bd69ae61c75082cfcf1e0ea

  • SSDEEP

    192:uwfob5nkmnQjxn5Q/LnQieKNnABnQOkEntJxnQTbnJnQ9eMOm6PVagQl7MBqqnYv:FQ/c5GNaDSMHd

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 41 IoCs
    adwarespyware
  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\ea6c2dd59b2b8e5e1cf2cafc2e071a8e_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2792
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2792 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious behavior: GetForegroundWindowSpam
      • Suspicious use of SetWindowsHookEx
      PID:2616

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    465a6dc3e6038e3e185418c6673e9cf4

    SHA1

    9b03df26b816004e88a31fe71035e688d370dc35

    SHA256

    2ab652c90adf747b194b17720f3414b13bc6f6b3b5c94253135727608be76f65

    SHA512

    c3d28a32ef0b02c0e36990ae843e34c64f4976ef468af5e706c9376a1b10c8b2d99f7e87a218660c65db7e16a2e2c3384f65782e73b9ed4a28f77fde26d20103

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    4778c526f2c775b2d13c053246c7e028

    SHA1

    b8bac54e49864d81a73386410ffa6643c61d5f17

    SHA256

    553b3d13c99a45c766279de2b8502367d3d3e6f3b54245d027069a55a258b210

    SHA512

    bf47f065c3ddcd8aedf0776154e3e06c8537993e3121de3acde519e15ef7211cac0e04562869e1ed3dfb4f12730cafe6d99cfd7db1d3d3ecc003001f28f060d2

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    814b0765db6b5540b91a0721c9d0a92e

    SHA1

    1f189133af2b59c40e5339c8f8bc44b0597e148c

    SHA256

    09e35e187633e1865b782a4c7dafdf39253f6f25c05786ec7b53393db88e7471

    SHA512

    a29314f70ce3f8e28fa4ab6e904d99b29e493923211194c8391ad4c76e2902d81033798d1f3dbc12f94fe4039dbc76802714571552f1032a56a82dd619e42110

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    b491e416f9fbec32019bd1e3f2f37026

    SHA1

    4ab0cbfaf7160dc40833a99bb5c2e960b08704d6

    SHA256

    f122d2be223fc093287debfaf93ff1d0f53f097b86a0f7a17ce4ae21d99eb451

    SHA512

    b1966894b154616f47f23510bb88be8600e1fbcab247af27631ca90aa7a5ef96485b0383dc8d5fe0a55f7169b2583f24abbf0ddbf6cfb21d5dda18443b75e5fe

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    bbeee24f7430be28a953b6ab2fa424bf

    SHA1

    156ca69b16063f9e449e96cf1cb7f33ca027d633

    SHA256

    8669e4775f37f2ab3f3cae028feb60e2612810aa14df62f447a55e84d3428cfa

    SHA512

    4501c3681abcf9475879ec9c5a579a16864e2bbe5eb4fcd0121cac8f51fe5e2208c570a683b04c85cd68d9bba6da856893e77ab31fbd4d6ae2c209fd5e29d1cd

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    e38c40b9caa5b424cccb4f7f28fd582b

    SHA1

    7d204a895509732ee21722ffde3b5d4480681503

    SHA256

    07c90219b7a1b0f2a0b5af705dff4347b9351514256481896249ee82a48e9558

    SHA512

    a5f23894cb828ef5e0fa0d390ffc623e3702fa4080b411ee08de8ccda90f8c88835bdaba25fc0acd0726f3d3246f0ad3bcdd1d29407df44a09b7872978360849

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    d8d101ba83ab4bd78238551a9904e9d9

    SHA1

    83a5ff510b34e404680675e88f2b70f6496b1e77

    SHA256

    ea850b4e66452dc5cda501bc61350f231910bf8233791c4159fecbeb05ffee13

    SHA512

    9a72323123be1875212c6235dceb9b6e75eeb0debc0a21ffe3690b2cec795f0a73ae053dec00a0d3fa3ff7865b8fa571b801316d13084fa99f7bd5fadcb844fa

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    038715b58e51520304bcd0cc92ee46d3

    SHA1

    4f3570e5f4a0f9945ffc7f7a8ce26b03c8904ad6

    SHA256

    f40aa9207597cb0c44a802982a076db81ce630bef3ed51d7c447e82e71e49450

    SHA512

    4824594afa5b29768407beb180e50af3a468361c0c157981ef50df368fc4680e07308a5e671b68cd039b7d4fc7d06205aee7e56c45477ef37a1dd631677f0e31

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    d168079af8b196e173e54eb776006487

    SHA1

    f9dcf32ae1b078a80d7733b2a8f61fb858e2fa31

    SHA256

    1cee77b4ae0b4c2741b31251c77d17f8a21f9ff1330d5df2e2a1ad6243275266

    SHA512

    684217b9041d4e2bd9779eea6976646269eadbda5a8e8d0e7c295e1a58ccecbee0d4db66de827bcddf33da5be86a0f8b2a91d60c0ff16c99cca9380e474a10d6

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    25cae2aea0632982ffea0d234b88aa52

    SHA1

    bdfca4ab2d96931c9d922d32af1351f94906fd7b

    SHA256

    9f8dbadd75ea0e74299c5ba5889b257f184d0aaee08c23bca0baca49c4cd2049

    SHA512

    8524f0560769a6b08021172a1dd1a4e62e330970dcf6b8257b33835c3b07e9787d7a6922594659a22de7a4a0d7096a1479e1c9055b39b4fea755d819ae8facc9

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    778c2f7e4cb05b410ea6bbf4ee1575d1

    SHA1

    363d84b74ef71ad8c1873a4db9e35a9b83476db9

    SHA256

    5f5efa138a2275a0f8787fa419b0599a1b8c33344f33efd9ebb7d28badcb7a84

    SHA512

    bb8e1affd6e3eec2be02814dfb0ed4fe660a54b75ff5df3528aa238a61253fafde394b3ff612d2aaea9bccbab269fce609f229e7fcb5df7a164b746788e67df8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    ce5e5114eb56af3c1c7fe8ef08ce5ef7

    SHA1

    0cf8a93055bbb32146787832d4220b1ec9bfbafb

    SHA256

    16accd1b8580c2bc6f90ed31db86b2cbe70ae596ab36d7eb24f1497b3870a115

    SHA512

    d0797bea6643a663afc26d0f79b09873bddb77b17e643e98bdf4bfd1c05b7a876ce80fe97fbb1c7f0c415707a5c06b9fb644dffc3e805fbf46dc7b95422a6322

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    c1d3f1e486e67657253a7fc32c8cc389

    SHA1

    37751519e771561e7328fdd4a15db674a3bd6d2b

    SHA256

    611754c298a6ba6c1ab70d310a33a79e70bcb268425be35718d9aa7556274be3

    SHA512

    43e4b9d8d0e9c3909237e9524bcd2625ace196007b24a44eec7eadb496b00f68798c0cfae135f185ab95b24bcc31cf2196e0878b3639223deb7b9cc901cfa0da

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    2405990f420911961e08278555037754

    SHA1

    75f79a5d105efac43fc2d2db6bab61c44874559a

    SHA256

    33a245a748f6afe12ab2e5cc138c56dd337fb5b71b4f395979471249d8cf9255

    SHA512

    940f3bc19d1d965580d78e94725b091663f8c39369bbdf9f811a1d31a4c78e9af97983dcad116c989e012bddaa30ea36af60f5ec6312bca2438a5a5fe93a24cb

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    3f4b25a59e63e328fc5663c22c38b9c1

    SHA1

    b5c33649af446dee7a9b69a8e7e33e8ef0bbd01a

    SHA256

    b76f73154e0daa0ac2d80e462654cfd34331bc6538bcd903f48e63f51aaecced

    SHA512

    4c6e634107cc831a00c9038911ab3dc824b9232f4a32e5f1d17e15db221c72695e49131483830213210d01982014c441619bef3ec006441ab3fb092d70c6cebc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    d4b6f94ad11f7378f749a0ddf4ccba93

    SHA1

    999fe75de1d037df699b56a2491d4747fa95e8f4

    SHA256

    464bc10b5d08a96f7279ce1901d519b4d1567fb7b83ef85fd98aed9c8ed24fa2

    SHA512

    968ab3fe13fed0eba2a784983b391dfdfe2c558c3aa8347a78dd0fe5ff59eac26b6b1c8bbd84c8bfa71d937bf364fa1d4137bc381699512bfd58b6570900ceaa

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    398507871b8c6ea40cf9d28acbb5b0d0

    SHA1

    a37089a18b4d455eca00fcb5225af1d21cf4b6f0

    SHA256

    47ee4238264f63e701996d269af58ec6cd2ec1dfb9fa7991b9d6448b092db2e5

    SHA512

    93b3f8e9848e4e11873b3021683ff7a06fc35e46e7c6271e5ffcaedb9d7797d18456c2deda079efa50a08dcede00e65516f61c946b1f69c58673c0d159d3c7fb

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    bf1ff8701a955b2021db3d80509fa534

    SHA1

    019e7b9470a3f48fa573cf2896f1c90676cece18

    SHA256

    1d93b75095c2412b342ca40cce169d602a411088d03cd5b59ce8b3973b101816

    SHA512

    48c1f8e4841339ee073f6992f473a792922213f5d79f41a5cfe2909fa46eac34acd23d8d0c2086e73ade67d59e799fc0c7ff7f79d1d7fea662254e77d49d8092

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    3b4b7701bbfb199dd1d79d5b2c365f4b

    SHA1

    2e221dd08330328df803a634b816b44d8dfe791b

    SHA256

    0842ce0d8531a99682717db4da6804b627c231e4f76cfa21c524c3dbbd94b7e6

    SHA512

    5227b72b8b7dd703d75b631b8884f7ddb3fbc964f3d1a731fdd38f6b84467e2eaa5d5f955e70189f4f7baa81e5a01cb59a6705cd35e5c2a21e3cecec98a6901c

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab6F3A.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar6FE9.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit