Overview

overview

3

Static

static

1

ea7525bd1b...8.html

windows7-x64

3

ea7525bd1b...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    120s
  • max time network
    127s
  • platform
    windows7_x64
  • resource
    win7-20240903-en
  • resource tags

    arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
  • submitted
    19/09/2024, 02:56

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    ea7525bd1b01e4791feb7364132ac9c5_JaffaCakes118.html

  • Size

    30KB

  • MD5

    ea7525bd1b01e4791feb7364132ac9c5

  • SHA1

    cb9b5f475de26559175c844891f9d018fd643539

  • SHA256

    6572e6a6bf5d675ee3c399fa3533641a46575898aa8d50f2b962ad1190f16668

  • SHA512

    f4a8a66d5086c20c1a3036bd5e37dd62355c889c70268531517e365e7d28b43e43c67c45915a690b56bde90b730fccf42ae97ec256268fb6499dfa6f0857405e

  • SSDEEP

    768:/HfGJ7kix+fHa/l2tBuJJfBFPkrQNcNv2okM/BmGPmjyDJ:/K7kix+f6/oHMJr80LvM/BmGPmjyDJ

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\ea7525bd1b01e4791feb7364132ac9c5_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:3040
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:3040 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2528

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    cbb21b3d1c1746987545a1b83d8323f5

    SHA1

    d6e497cf6ced0c43f21fdb3c667d4d0f8b9103fb

    SHA256

    510611837468815b516522002956bdf6dd2297723b010a989903b5b63b6e2a91

    SHA512

    4bbbeed5d593accee2b35c56a6c88884d68d9b547971bf1e32ca831b6c2971bfe103d6f064c0b7a331fc37d398e32c33c4e935598ef9966ac4870d4a0be9ea28

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    2aedb7cf51c5cf56c2db93cf2bb88978

    SHA1

    5bdc946fbae148a842ee0bf9d3d5ddc31e1456a8

    SHA256

    e01fc19520631b147d4e2d14c1cdd457aea174d404204d8d65b1a645c1e17f6b

    SHA512

    40dea44f92d2e8e34ca94a9cf67ed474b24e08280491723cf89f56458c2f3607139794f067110679859a0f9747c0a2a42c75c84b9531b97e5ae09b14bb14615f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    0b4bc2327627317280270a2cecaf23bf

    SHA1

    425eb1649e5722202793eee5729e687217abfd1c

    SHA256

    f3f13dbe84750c9e9d5dedfa928b489502c3f435cee502b80befd9ce6a21ce1f

    SHA512

    ca1040a2f0691bb1bafd85c651dd136d424b0f234d1ff2a6f5057cc23a93878b7074afb02d3653980e2b26689eee96c88c5c34b45099f86db3dbaab3315433a7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    a72460f1fed2fecf023b08884ed3eabd

    SHA1

    39b965f9d86af64165d4686ee5c6c3a7b4e03642

    SHA256

    5cebda4934998a0f12c534137c68acd8d0fafaedddf7cb00bd54c3d36d7c1d8e

    SHA512

    1975e7a7a4d8d005b262ac8d4aae56ee1a89948340901377f6af2a31188d537c0ef2121ca3fe20d4567b9db0e751689d92bc8ee48c000c8f4aa6387c74e366fa

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    74668ae3da5d5daf9f60f14010074569

    SHA1

    db8e64b40bdcd14e20954dcfeb164946b3adf559

    SHA256

    72133c63a03548482f40f4e077fe583809c1abab24ec8206aee464a62fd19412

    SHA512

    dfabb6945e756a978aaa5b44e7fb90bf219546b6cb346aad8e6411ecf1887d1f84e53d3e59b0506bdc11e9b406d41c95a695070954857b64c1c570ccd86f9989

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    721e5f416072370dbf4217783eaf48ac

    SHA1

    e8ab98b79e3fe8220b3b29eae203db72f0114cfc

    SHA256

    d2fa6308f0da83524f730e7dad7c4ca3c23e26ced067cd493d4aab1b5c898c9f

    SHA512

    508565e5f3d55abdf7270bc7c4d788dc911f6e44ded91e96d8e3de8350edf42a8d0f24bb3af63dfd4a7f90dc3926accc4f2200b8986a66657f7565d45079415a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    895803e74c39f39d6794ad2f7b683ba3

    SHA1

    7feac3dfcb1944e22b120b4620ca7545a882a3d4

    SHA256

    f48965e220dc10768d032d5f194ab949219dd7ff1b2b0e362661ec888621da7a

    SHA512

    575e56a93681f96d325c67f1357d7b63343a9c6997f9b90eab91024482de3d937b35298a870c6b93ca03e71a62713d0642ba8e273535695a47dd83f633a6eb2d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    b014532e12db36a4c60fd29e1025c170

    SHA1

    b434d2dd4aabed7219a082518e2af619e5faebf4

    SHA256

    d5dfd73359c2449744369fef2ca5c73d0d06641fa617a358911299fa0d783675

    SHA512

    a0ff1939466db43acd6cfd485c685a11945e60b90ce1a6341001fc745a839301b02f8bac81906ced20cfa2670e28455c81bb2292b6bf7a50a387b6e238b9ba7b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    4415f85eaeed26e74205a72557545d4b

    SHA1

    2b29beccb64e1f1feae139242e8d20417f18b414

    SHA256

    c9cb67f6538da7f6da8285c0767e07a6ce07d937a8116c090a3e42a8ba80f02d

    SHA512

    a71d48eefda393f80f0bf961a611975e632adce7cdaa53c0f2e229fb0438e15d90918eed5bf4438f1ab4120a49b6866fc41915278e4be87b5f417f6fb1d68da8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    631456be2a01f47652e6651ed27238c7

    SHA1

    5f74cced9b5b1e31b5c19a1440962effdfcc5580

    SHA256

    f0fff3aff853da0f5d86100178c7e1b5a29eb61e90bde958abf308d3bd412d67

    SHA512

    49b2b1400cf6fc420227420129072827f6ce163179c9d0909a647e4f8792c4bb439f02197b338918b6599aa843efbd560de076ab0cd73694ec1624912d6cec65

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    54e8b1bd64fe2eb824da9b8ae6ba082e

    SHA1

    b3ae9a93692facffbe84eb794dfef3c39df5c8bf

    SHA256

    125897683127afe9b6241bb94c9e8c04b70f999a8d25290d57ba9b42722aed4d

    SHA512

    6ddec205dfd0167d184ecededc6dd28f42821711ada8b5316003db4e9a77fdbb995aef87e2eb8edca62da7f436636cb75845cc0c8bfc89887e8592643432c47e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    c7e73977acd191b356a3274359948c7e

    SHA1

    94782d90f29c5da3088fd2baa4619be75c5f5185

    SHA256

    3358bcc6538d2e0dd2be31c4746382856fbe972076aa8e77485c9d18e6bdf642

    SHA512

    643c550000e89ddd3c19e33597fe08dc6300fb07f7f66bfffd86a73994afde9e759b2c8b0bb09a29a78ead8b5007f18d1914453b1d7b3395708c27d042fccc91

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    b5e29f53a3a5138d655b878b5a94e8bc

    SHA1

    7064c130755df4ef1106219896a294528952ad69

    SHA256

    14edc0f53127f1b93e913e804847b58a5aa176e992999cea0f67874ccf2be452

    SHA512

    400ec867462d7ecda380cc250755557dd12d097c772475cee601d67a920faa08579570616da04c2be833ce8468d4d3d0fe7f3420329d14cdcd3ec5049c7413a2

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    e306b05fe36a719333a0af9e599d7b61

    SHA1

    fa289740a1a818fd0aebf830e102ace131e4f3aa

    SHA256

    52ad3d09f77cedbe5ea161b48b4a44ec3ca172fe698e7f10906cc4c89d745d27

    SHA512

    72af57f7002da36535505e8f20132e13fc9c6621841de07f828cf6d549c1dce6a446cbfe6c3e43ad4b29ea1983eec8952cb2efeff2f85284a66a57739a7df00d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    d41483bae7f3dd6199c31dc9170c62eb

    SHA1

    b2ccf29c3cccb3c4214919dda94be647bd1c20cd

    SHA256

    451c8ceef176eeb2d995ffdc84db31d747baea3d0bb66cd845905ece7ce2e820

    SHA512

    2dfaf418cc636b0d1a8ebec6cb35820efd69ea6539c8d296c251c4c9a7afd3d2ebf19c257c04b52efe58dfdc69bf7a6fe2622b334a8c270503ae045fb526b4fb

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    1eb54d9c62192d6da50aeb8ee33bb705

    SHA1

    087f0eba466f9f785fc6abf5e282e7789a765559

    SHA256

    47237595f0d13cb331f830f674cec4fc62064be6b467f4e555a0146a139376ee

    SHA512

    f380be619027ca04d7db28357ad5e019e3375df7ea05ece583b92fdf037c958207be7f84f69f49ce4c69990db2e31be65e36481f00cac6e9ac0a3b525f97b0a3

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    121c5f6e194354f79c2fca501b9dfcdd

    SHA1

    b596a8480896539459d45f5719f7fa91dff47ed5

    SHA256

    393f0448f4f82f45f3aa775240b05a205b93e4253bdcaecf4395415c6cf14480

    SHA512

    b36e2ff6e86027d8ffea0210cc192800921111d2763493a59e856a3f08af0615abd54334317c4df811ebb706600619ec2908a6dc99e872bbdc49a6d903dcd8f1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    94f57ad9bcf015fcda0ed096a90d83b6

    SHA1

    536ca56754ba2925478a58cc3f770f42dbbaecb9

    SHA256

    73b00a2d90d03832341390774a30a33f333b592fa273d617687c31a70c26466f

    SHA512

    f9dae023b09c892d130819d70e69ed8ca48757e92d17c46f6f47c8dfb58e6693055e91f7a612b11fa26a5a43d5f3e1cd715782c459d361a21ff2e56199046d33

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabCCB4.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarCCB3.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit