Overview

overview

3

Static

static

1

ea83b146c2...8.html

windows7-x64

3

ea83b146c2...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    118s
  • max time network
    134s
  • platform
    windows7_x64
  • resource
    win7-20240903-en
  • resource tags

    arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
  • submitted
    19/09/2024, 03:38

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    ea83b146c2a6753d869f707aa703313e_JaffaCakes118.html

  • Size

    39KB

  • MD5

    ea83b146c2a6753d869f707aa703313e

  • SHA1

    1b1ca693602f7a77d38619602222b9589984b0c9

  • SHA256

    636a4ead21b4b318d99d6a7e1502c0373c58fddf14701fac6636bb7cf83da97c

  • SHA512

    100e66f52d65e1b0fa0b3ac3fab4fa371609f06c7d5db67488ee649b52fcde830d39b0df4d38b6bb8d9ea99dbb874ea5413696ba543cf0fb14bf0384ef62e60e

  • SSDEEP

    768:Qyp9mmYlIZCrmAR+mdRCJO+L6yELQ9BQcjgN4:Qyp9mmYlIorvRldRCJO+L6yELQ9BQcjX

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 41 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\ea83b146c2a6753d869f707aa703313e_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2784
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2784 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2860

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    8f69ddc8ade5ccd43bf286ab8db60531

    SHA1

    aab8fdba64326d516cfdbf82e04b9912056669e6

    SHA256

    d942d3ca96e4e44dd198d0615ca155c621ec3b8989caf30210f8e0764ba60161

    SHA512

    cc0c1e63652c924a19d02a10bf0358fca91d756249568d7a031ba2a014da883c9ec9960fb4c6c17fec52f26c1d9fdf57902daa4a590558787ac1750e95a5c4cb

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    90d27de2d6e7bfda2814aede7902f3db

    SHA1

    1fe9194ad82c58f05022beac2643f17c30a08bcd

    SHA256

    e3575973a0774027fc5deb510524b4add46472f47ad6b431b4f2d4c09f802d1a

    SHA512

    1198db64f241a2570bd65bf9e5b753347a81723ffb10dce94738f721e098f5cca65ed5e3d80a5e1b395ac49aec7bf3eedd4a68ebec00d468f4bb6663f599c8fe

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    994c2cf9c122aa0632076595c27900bf

    SHA1

    ab939de08dcb1652e6761cde6d43b75efa6f201b

    SHA256

    42e8f9f11fe4093f5d44a3aae8920155d03dcbfbea01650425320df51da2d8f5

    SHA512

    a5c158b0b689f7ca613b586263069dbef348aae465e28499e8362723c6e5b8f9220a8aa7e40f00f9e346f8873471913404d1da055a1a3312bef64125ccf8b82a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    af1a71f0157198fca12ecb19dadc7c89

    SHA1

    fc03b693e0bac769d0d4ff45d76418aaebbf48ec

    SHA256

    42d80b2b36d26841de0a82b8f984a081e1aca03409487d6b07cb201a9651efad

    SHA512

    8207f554630e4e00b902a255986c955033143494939c392c3921688848f6b99e7b3ddf73f66288620f0b0bec7bd1fc4fa255fae0e559d55392b629256187d2b5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    376951c08a9845bfb8c25cadf0933b68

    SHA1

    a35ff20d2eb71a2e7ec6fd42c00911ea21dacc8a

    SHA256

    0dc3fa26027d7a51d6989f88aedea815c6e07bfabfe437f57e005dfb25701a80

    SHA512

    26b670d522456ddb9cf49a2df6b4f79d16e315656e02538737a84e604b25c1f82be9e9a8ebe68db14ca60ba36acd8cca0b3321cac081078319302f034fc8a359

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    087170997793d4a178567492a096cd8e

    SHA1

    8d25439a0cb4eb630f8ad04fdc1f0f70b75739fc

    SHA256

    9d5bbc3df889a61451b074c190ac7453bebd5ff50533c1524fb1b870f8b8d1ec

    SHA512

    3911d868e96d07d3213caeb7e6a1d64e83c684a68bdf70d58606b6f0ff2db21aed74cb0bd09838af784d425fad520f3ba2feaf410a13674cce0f8e69c6413ff3

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    ce975ea0af6c681189731a188d823889

    SHA1

    3e8985e4f20c4486b5bb1bb35c980491131fff6f

    SHA256

    6b1db4356e3d4d4a18ea9de7c7af7d74cd9e7bf275109f768ffcbb14186c3d2d

    SHA512

    dd7337bcaea9a2b3995f3d14740176aebf01a0913c48c92606bfcfd02338b9f4089b78f045152d131a2bedd3f553207315b8d4ba5d80b0436fb7624b1e6c0f0e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    8d02c0bcf1f89b80c5f35b105d89d67a

    SHA1

    7673eb3fb8f0110a84e84419c1be26ec77b6acb0

    SHA256

    b252afa013cd0aea9b6593fe1fa40d20f8bdcc79dd627309ca07699b050ffde9

    SHA512

    a08756cf5ce13d69e40dcff9db6109465c28685ba243218b08675fc7ee2a6c754fa8e8ad1e5711da81c370de4be73fa178cd7068edf4deca8da07a665d065eec

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    738cfa2d701fd9f501db2cc2b7f82a61

    SHA1

    6029903d362fdfc1f934c8b40526018584c4c9a8

    SHA256

    d6e521b8059af28f706f9c8285d2119781a743194ee4c42163bd9ef40dd8c696

    SHA512

    a762dacd84270d930366f06b9f6453fc5790fc46470be6e6580487ca85e36a7e10c8bed8cdde7a6c404f876eda32b8ef9b877ef96f4c01cfdaf1a58c49b21914

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    920c31648512ec232d0a72f13315f0ab

    SHA1

    2fde2035e9f01bd927263393aa741a58788676b7

    SHA256

    ecdd67e53f359849043337666f440f3d1ae05e42a4b35d902e0588b2c3fc4d71

    SHA512

    7f874dac49bc3f3bd8d45c7e0269ddcd67ce494e018451cb1362f0c599ed5a41c72dce7a879278732838ef9cc1ffca1fdc06689a7c78703a78f6fb0ef938bd5b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    b29746fdb17cd4054e84fd34cf73b426

    SHA1

    c109dc0ffdaaaaa6478b964aceccb2a4bcf8b803

    SHA256

    19216f7d1bf0f1cea14ee76f005a9a376a64906890839b56a36a0873501bb86c

    SHA512

    7efcfbbfe668b834e2b44ff78cde260aa403192adea0066e11f75574f0e67452cdb4b15602d8634eb0b86c12753862716afa7284debfffb3d814d7951a5315bf

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    972b532a90521d398306cdb6901198bf

    SHA1

    59275c60e1151ae27d585fb49d4a5a8f0ee0e916

    SHA256

    89a1a90c19b390ea86c6401641f420f7ac367e96936949b3f6213a20f611c65b

    SHA512

    2a139f08af465024183c5d16ae21e300021d673673a1a5b4ef82a18833b67db43d4e50699c54d77f7ddccc01fb43aa473582ac85711c71d87a327639c988ede0

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    7157ff4045fe2a49515cb368bd0c239d

    SHA1

    eab7b7cb0c0e8ae2e90c7d063317d9ff125acbe2

    SHA256

    0142575e3585eaa783c2c32a7d0d13bad74d7fbe6c2128a8de3bc0a576ddd115

    SHA512

    c6e42fa640d5f5db137b264cd1b5bccacc0f065282c6bd5ac7bbc096efab5d1c858700327c6cc4d4b99468469522eccb53b0f34acb4d2e58614d6aa7f5277928

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    f753f18cc1097485b028415a6cf77e3b

    SHA1

    999773c1c0e0831e59013ed263720c0c7345658d

    SHA256

    455298a1b9d046dc75cdaf6c1088436da32395bf2ca5848dc5bf1b730a501b6f

    SHA512

    630577d300225ddf22db70d2627933d8d80d6b12a91e5a567e2d35e7940d37d8672a2ea8d84ae31baa7d93fdaf263374fcae0e2031b52824395cf65a44a072d0

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    897c58d4487a99ba109a479e8ca3aed2

    SHA1

    29f47db8071844ea675894e2477fd5b64e4d8802

    SHA256

    8e379ddc34a236f87450048ed11b0cd56f7b230fc6ce12fd95132302b01dd0a1

    SHA512

    e5f2c7d3c7e6b35991cf597373b0c8c1d38d910977fad3c3c768d6a8e8bb5fdedcd645f107bfa400c8a5e37c724d3bd3124bc9c4a003729701d417d3eb2c6ca2

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    321da6bf6355354b01f0f3058d0216f7

    SHA1

    9daf47c729ad04cb2e19cad295c5aeb1a9e68e57

    SHA256

    87ec987d0e2d8a775cdfec65fa6c6d5b3de79915d761491ba76af83efcb874ef

    SHA512

    bda14b5ff1c82e1bc894268814874dcd4a1c85cb851e102084161aff758de3fc01c2e62e60c9aa9a28d7accf3aa94c617be0fd797774736caebfb10894b436fb

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    6e4ae785c30d9b00971007135e6e69d7

    SHA1

    c33c2844b4b18fd328dd2c3bbc9a1ee5a3494a6d

    SHA256

    805c18e93d7d7513059b250445d2f3216e1ce3bd745e43899ff6977984b5f9f3

    SHA512

    04a21cfaf5ed49703715092aa584650291acdc36d3a7f6f10a4a153a32a80e8163509565b4f874245ed10dc8abbd0fbccb98712c996a7599990ea0d62d651325

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab58EB.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar59AB.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit