Overview

overview

3

Static

static

1

ea7b052cc2...8.html

windows7-x64

3

ea7b052cc2...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    120s
  • max time network
    128s
  • platform
    windows7_x64
  • resource
    win7-20240903-en
  • resource tags

    arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
  • submitted
    19/09/2024, 03:14

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    ea7b052cc271e9b46546a38723a2839d_JaffaCakes118.html

  • Size

    189KB

  • MD5

    ea7b052cc271e9b46546a38723a2839d

  • SHA1

    c75151b1f0118b23e397f996b0073fd7eebc7b74

  • SHA256

    b562e285bc65c77ceeae7b528d53f92211f693274402d377d49e675262766cf2

  • SHA512

    e03057335dc3427737334cc0d467e9ad53dccafffe589f3d01c6f1d0913f7b420545defdc63521fdad1406b5527dbcf566446264b43b93ac3c0b41dc864d16ea

  • SSDEEP

    3072:SRtueZByfkMY+BES09JXAnyrZalI+Y6XXI6EyA8:SResMYod+X3oI+YS1tA8

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 41 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\ea7b052cc271e9b46546a38723a2839d_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1568
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1568 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:1828

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    428b19c0b8a55ba5eb9d87fd9e48b538

    SHA1

    e8c781dd14b5a0da6d910dbe4f2adc393656d0f1

    SHA256

    13563c4d0abb347bed3dfe360473974fb2cafd2c3769701b71c23fd81fa64b80

    SHA512

    c086679bf9d8cb07ed2ba155dd1491e2390dc4fd26bc93b24df896f20c7d2b371f8c02ea48fc996f661a79432efd70d1f2420caef199a0501c810715871f08d7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    19136ac83a23cd229bd6c194803d3781

    SHA1

    b214e7a8de0875705f0b6eeea82984505a97040e

    SHA256

    469a6d61a2c6cc37bfb801257f762a7b899ff1a9dfe93ff2de0323d411882356

    SHA512

    f12427127ca01ea3414cf853ec1686fac9fa05773be7a13ee027384a66e24f84806e1b77ab5a77684a250878526382b5c4023792ced81b79a6e731ec4899c7da

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    e6773d5b5346f5804fc142705b3de188

    SHA1

    85cfb0ca48a0931a91bc1793f9d6e3d07593d68f

    SHA256

    2c469ddcfa43e20bd814181ccae46ee2e71e9d472429dfe158f1cba0296ccede

    SHA512

    d3212faeb9dedbaa5ac77e148f41329869c3017ed564c9d73dc45b9dc13b4ae9531d7c4ff682f2d3e72f74e5b71ec3b3d43a583776601706dfda3a3b1064f76a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    102fb6d2f11092939f5f67f76c4d7695

    SHA1

    a0adc8c0bf98ed8b75955873fa0af55743179462

    SHA256

    41bd061e6edd387c8e256628ad9e50ea01d61a4860932ce316b58ac7710136eb

    SHA512

    2af6857960d125aa52477a5de958ba0ae58a0447234298aa41b7750eaac64e4194734b1db00f016115e832c32e20902973203e42737fe0b9fe78f2f1d77a5a19

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    4f636a524d0c716a8676ef2e6c626dc0

    SHA1

    73bf02b64f6c911cdda54fc401f64c6b85712ffa

    SHA256

    3b2bcdb1bfd66e0f0705905ffa96c8a986297993d6dec61883f02449925e47d4

    SHA512

    47018dac496964f2d79333cb86c83bd9fe9edfaf975cf229d428eb4c02b46d9f4e14df09a2fe33c89119be85320e6da66a9bf636e2358501fa5f05b5ae3d2871

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    aa6c9dbdb0bffff72170a1e3613a7a19

    SHA1

    4e93cf9ea6ed49ffdbc4a476b28f994a0782290a

    SHA256

    613c2014681821deccd81c57a7398befb2567191a25288c917e5513d4ca450d9

    SHA512

    70154319fc6bae02d4627a77c9b26ebab46fedf997521cd50713cde3884e2d542e31118acf47a7cab81f4f2737f6dec2ca96ecf7b8ff9b572462acc8b8002e8b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    22202b11130b3192b23f85ab0004e37d

    SHA1

    2845436e095be2a2aa867b3087201632e1f81ada

    SHA256

    1f66586674470d80efdd74c968b0a93eb9593bcf0200a92f3d7d8b80bfe72a62

    SHA512

    005132e25959e945be4e095ceb24d0a9a049e7d1dd1bc07a82dfc55e4a9a84e3fe3a35cb976ee2fdc3241addc6e782d696063a22893c4d7eaa6ebc1ffc0624a6

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    1abf1be175a9fa76f0b84d93964c4c55

    SHA1

    3e26d79d366c284b940547e55367ae5e493f2155

    SHA256

    031f4afce8a6fac3216121b7e71bfced1b1cb21434f95c5aaad6f0d1d9c8cb59

    SHA512

    814d172b0218907f93234b14fa228b2e18db1fd658eb14ff8bfa23c0693b6f2b5237ce7380be89b73b743e6ad5bae9d9780b4f600014601347e35c704af7a872

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    535730ea8ea9ca0cc1a408d6b3fe59c7

    SHA1

    6896599fe716d5a547219f1cb685315be099fe66

    SHA256

    42a58bd67a1ee32adf455bec4a6a6be16970269d8f8f434187d78ddc67687b8a

    SHA512

    a75b3799f0498894b81cd8f64386992ebd1199bc6224f11dbb29d4786ef0fbe0f5d301a0b5c7d46897aed9431e33d13c56cdfdef46f5e2a1594d8f7495fb4f5a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    2819ad90ce689fb13745e9cd68b15d2e

    SHA1

    6ec78c5fdb357a3c838bbfcd7b551039be7e6804

    SHA256

    c868f1be88ebcae333ede3393bed47d11f3ab19520394aa71c775e068fcf747a

    SHA512

    673c0b1c1d2260e8e7a580b5ce84fd25fbfb9015c03caf100d4900a03230d6edea59fa77461ece322a3492f00414bb1a8a7a7a7a332c02b47218e1e151e2ff1e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    ea4a9f9fda99f912ad56513459dfc12e

    SHA1

    10c8a2f07f8a285488780b04ef7b902382caae1c

    SHA256

    354d4a69cc5f5664f2310ab9ca1512d8e2bba620eec6977b82113cb617df7e67

    SHA512

    fb32484d0edbedc18f8115cf8e58d54ab8d964465072544895039a6b5c09f7736d2c475d9d10dc999b8f67bc5d6b2ec7852b739342a884ee1c481448375d0f7e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    363ee557f7a31981fa17c60761488b8d

    SHA1

    c05a98d03de8ce55c0de37ca2ffe1705a54e62d2

    SHA256

    b6a9d1dc0a9a5808f426f2e2aff73223b7a0df3c9d3a85f012a7d7bba0457413

    SHA512

    3b9fd82ed8f8863173140cd63ee761bddf988d53c0b5573036198b3177b2c7adee8fef01cc41dc54d7f221bc7c25c907529aaff65036bf06d5d39964168fec7b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    920d675b99138975f6929bd63011922a

    SHA1

    5f2d7329e720d4162a56b76d393cccda6d9ba097

    SHA256

    ab198ad74cd822e008d42ac79fb44e709a07352936960006299e214d17551701

    SHA512

    57b2de8091e019e82503a89d25824e19e77b7925dc5bbf488a2f8a2a0fa315c33d5b01af746dee1b541526063b1d58bb39b7efac49d413f1b846772c430c38af

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    0071bc63a639569f3fabf2fae1716354

    SHA1

    ff895c14b36267673aeee6c11bf832f3b9dc5007

    SHA256

    eabcf88da811b836ada35d2148cba14f6514f6083780bdff76a38a0c5717bea1

    SHA512

    025634d8375e6292d2f5b09301d969347d662c90efccd5ac3b7561291cfc46bbb2e9ff30e169110181ce4efed5db255b19a8be5efcf6700bc0c7fb6189504808

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    726fa4ebddb0da75865a6419921e0fda

    SHA1

    b5a9d1dc49e1ddd104e4ae853747c632cb4480e8

    SHA256

    15c62d01141b753cc82d05348a99dd46a59d325077b863160308a218146f7ce7

    SHA512

    61e45c02f621e4f29ad5e1dc74a9f2864417e3561938265682d34d9dc60fc1884aa5ce0a3e99be84af0b61fcdf5710b1c329aeb682f9c1d6c21d0c5253552e29

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    69b23d35eef50bac668739bd0a3537ed

    SHA1

    b3a4ef3d7cc83b558008b4cbd4d497b788c9809b

    SHA256

    2df5cf45ee25ad6c480316ddff1775e1b68dc34fd322e3de7c2aa657aa9cc187

    SHA512

    c260fc7420e965f5b628d121bd04873fe542b5dd6ea8b9f1ea38f8025e3310a6787e29c6c0722457b7989e178f45aca9cebb7f146e9c713eddef289b99c844c8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    fa957e5ee4c83b5a889c4bf8d1ca6554

    SHA1

    4259b6a9b07c12c67b4a28a3c974dfcbbe434e12

    SHA256

    31f5890275b70b374f0a22db0c1f1b4c23d2d3c1316f13e3b41c4a9027d9d17f

    SHA512

    17c75591b74eb522ec249c70f24180a0c3fd8cbd35623ba9b361a9569f89bc514cf9ee86594617597ea544b28436cec1bea1664af1b59c9e232b3eede8e9017b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    874af17df7574fb039c6684e78340078

    SHA1

    824c2de80d88ace42e02da9352af3086b0480486

    SHA256

    63038df1c87a56513c02bda3891cb580fd0097221d717276c5959dadb44bd7dd

    SHA512

    7bf481d74b17c2afe2c7afda901af33cfeefd383e866acbd09de36f1c481bbd9c6e14307c9f90ed2073f69634ab5687fc798712b7ca722167cc969f764f95a50

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabD166.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarD214.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit