Overview

overview

3

Static

static

1

ea8fda064d...8.html

windows7-x64

3

ea8fda064d...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    118s
  • max time network
    137s
  • platform
    windows7_x64
  • resource
    win7-20240903-en
  • resource tags

    arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
  • submitted
    19/09/2024, 04:11

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    ea8fda064dc776175676903984a1b9a3_JaffaCakes118.html

  • Size

    11KB

  • MD5

    ea8fda064dc776175676903984a1b9a3

  • SHA1

    855b2e697fa480e9a036417c6d7716f482f4c90a

  • SHA256

    423fd34a673611656dd955e57cde2425f49648d747837484345a2e3e3b2fdcb0

  • SHA512

    547bd4de58f61276ed747b1ef1ea7e714583c38d34a0067999a87b31caa0cac6edd79c099d7a655aeb481f37000c16747aaade5367d22842cbeb08f9faea2274

  • SSDEEP

    192:2ValIsr0r57M4HxaOT8IR/w1wvqLkt1z6uBuLbdU8d:salIcIQ4HxagR/gqz6guLZ

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\ea8fda064dc776175676903984a1b9a3_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:904
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:904 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2764

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    b82a64f06348936546124ea332d0af37

    SHA1

    9bdc28ba8672eca136c33670e005add77d0517e4

    SHA256

    cfe2be9045f0821fe515f601e589d144c299084b6331c9a9527ecf61fb2e4726

    SHA512

    0e3bb5b51f3d35d15f1836809170e947d6ef919b1c397b0b8ecebcf56773414cd2d4f3d0aa174c1b50d02a938aea83f469f390bbea8692b16e5acf71ca33bd60

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    db63d36e4f38a1d00a4aa58545c77b14

    SHA1

    edbbb38d3ac0a8faef81988be873c58aae2ecb87

    SHA256

    a0c7a380e31a8b1548f7d17f8437e24b94eed5e48ed184cdb7ef8b4a272e104b

    SHA512

    86d66942e1db223aa93ae79295adaa5326422d84975487512e7126f405c60736d49c8297f48921f1641f40bbbb0dbdaa8129f75d7212c95247c45a455c17b242

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    61f9919ba188524565280e9324b67379

    SHA1

    6524b55168e6e09a42b8a5de279d1029e34c50d7

    SHA256

    7925e4d3cbbf041c9584d03826272e85ef768b1129cec845140f2280a1394c71

    SHA512

    d53b32ad674160eda1c65a33150accb24f2905d03093eef14e32336a3eb652018d665c29eb19322dcf60abe91e1e257d82e6addb716250944efc403d02c68f30

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    4a2c2ba950921956fd1b1150201de052

    SHA1

    648c86a69752d2efc67658c41549005333fa4bda

    SHA256

    f9448106151d099f1ccfa38e4a59fd45b03ff8c32c32bed835e6b7eb3d777ffd

    SHA512

    31c9e47b5b9f2c7469994f2bc274e3e22f0bf3fb8cacf02a4c1979d9a3714769c25bf1947ef593755b4af7d0fa118d80f63599b4679b149497be4b4d87296eb7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    6a12a8f09790a1410564204efc02923b

    SHA1

    f433379d9319261061ee832eb52c0e3e138f8a79

    SHA256

    0c57dd4ca1510544bb1db319e4c9a0b6b4d95c190f8a494218d5cf22dd2d40e3

    SHA512

    4a9511a99e906a7b79bb796f24ffef44c394c5d7c817e037efaaa75ad67428da51659961de762241f02b6f2157703db4b171ef492384ecccd56ccf6baeb26ce3

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    e1d6250b45a6542bb50e72f02971ba2e

    SHA1

    e3a75f3d355cf5d1d31069a3d947a8648a4c31b2

    SHA256

    11cfe61ba1471f4aa999e6acfe5be50238fcc63718f5b33b62d9ea21b22b0541

    SHA512

    8fb22ad634f0b1a61e8ee5445bdbe339760dcc06d9cc8af32d3b443d358345d26733e6eed2cdf190cb769c513756a3c64ba3239b6475e169e17d3739e5171a2d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    f948d0aad4937d7ab8e19d88bcb63f33

    SHA1

    d41b62613499a4fc11ff557d57daf0deec9f9396

    SHA256

    e2b2b5f544d09c9c1d1296935f87bc652d7ea5e441bd1b5a507c5b4c2adaa7f2

    SHA512

    14baaeba6d329f0c6ac563a76cd7467d996be72a2dd600a2c2e700eb4eb76664e5bee60ce5cd0656d713313b0fc421426d85b66de999ec015ff3ebcc0167edf5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    9418bdd021c41ac186ea16415b8786b9

    SHA1

    45d965d507eca0eb06b0fcb1a468225b0a234d65

    SHA256

    8ce431b727835a26fe61a9dbfc715a777738a9cec20961a8a1ec884a164b8d76

    SHA512

    cdac98b863dbe0968b02ca83e13c624462d0b6f93d4ba19f10092a94bd3a6ccddf4bdaec0b493da436e6b9189a91faf4d9640bd698d82137fd898aecd3621a10

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    7f9b566d9d4465c08defaa579db0235d

    SHA1

    3b080cfed6837b78412c40581e2831483ea418f2

    SHA256

    2ae3228690e3dfa362e9d6e575ca98bb20db2cf916f6f73e29131b10c67782d0

    SHA512

    b394c2222da307ffe4e545cd674e218590c6a6cf059f3691b37a6b864dd4d4f3e87d40e79e5496240709567ce155dbd2a6b8cd5d18264ae36b3ccea88ba73cec

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    c7ca2717559c9c55faf123d1d77d605b

    SHA1

    07d6932e464c4cc36c2529b3034a6157779b4f0a

    SHA256

    aac3e773ac102f4e6c9d7191b14668cd972a78b2b0a8171f013ad4b76487786a

    SHA512

    bd7c2584997275da8f2a808c6a63b72d69a57a09dec3eaa126afe8c5ac5364d1e30e2db0d51121d776731de9a92a146017b3b263cd8c95ef4f2b1f8b6f369f9e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    1d2339760049a216f13cb59645cf48ce

    SHA1

    00f23b9f397d823d617ead690f18e6abbebb2afd

    SHA256

    85c4d31a94024b47024fe010265604bb225001eb64ff6267341d4f55b3bc925e

    SHA512

    aed3dbd40d93d506191518524a9d7cd1303a589ebcf527f81f6a7342dbadc19a46db24e6961ec29413d8e135342cb7f4ae1f5c0cadd768b313499861575c2b39

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    9069278319be3c42ec3f70db13cddd2a

    SHA1

    f059e86446ad5f8e5d9e4d231064d670c1aea60f

    SHA256

    5043ed5da170e50ef5897449f53bb7633635365a3d70b9afe0f09cefbec189aa

    SHA512

    c6859a21e128c62b7c8aebc526c24c3d5c6f11a62d74452c7b402dca1445dfb791c321d31ba93b30f760930bb3ee1962dabbc2f78c67f1e1c2fcf8cab38b44df

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    192cd6c2195cea48cf96efe833ff69fc

    SHA1

    645c1155c7fc50686e0fc659c1a5dab9ef483d28

    SHA256

    5ae237be7c0a5b649b259b949e4114aa1f91d6728512922577865edcb095194a

    SHA512

    4ecbfb18547072d17a441e138349c760ef44b6588361c958923fa48a95cc1cbc40d1dad383e796e8c494c05e3ae7ac32cdcfba5f58fee4e4e2b8aa7a89e25221

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    7efcecc4a4f62fc6f1f5bf09af21018d

    SHA1

    5641b97db13632e5e23914170e14ff1d9d2a544a

    SHA256

    d972f20821085f6d21221e4347c14542df1dc804d7413779903577d186fe1439

    SHA512

    f033e3e534a678b21454ee84a5e84534c108e036cce6f11a60ecb9afd3486d2e06068618bf131ed447fc0885c97a7c4b95aadd25d2449b8671666e8927167e93

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    b7070bd0d1246c2dd762fcfacd43da4d

    SHA1

    3b0ffc649f323bbc8120ba4cff843f8abc765df8

    SHA256

    a4b549eed23a46e2b6b9010b7fb149cabba0009b073a446d2a2db530b47b40e5

    SHA512

    2c5f591d2bcd6ae7127b4ba99a25cea02feb892141fd3e203e7a4fe68633db407bccb8f899a0cbdbe4c60cf4af6a20547b1fa1e398202bec1a65325fef5c211c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    d4421c75e039193d0aee57c2ac8fde55

    SHA1

    934948f71e2d228b35e655d54dcbc9ab6ecf2b6e

    SHA256

    9bb4cf978a8f771fc61d2ce0498c8784eb151dfa665fe6cd273ef2026040bd46

    SHA512

    53d0808010393d1db2b24e463f6caa0a921c4c2bef627fd9987dde1c3b4298228d1b116c56c1443d3851448fbe1f23661ccf799de2760e4825c106c89964f620

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    081001c7132f314d42e0d40fd88b7a46

    SHA1

    df03aa42444c7d3a17cec6866b851525e2df71a4

    SHA256

    f9d4b60ce9ed94a440ecba48a28bfe2bc1cf53c57d0c09159a1c5f8d09bdbd33

    SHA512

    1f56dd44191b1519918feeddbbe14ac5362904e2f12daf0bd135f41d3e44f296258a0bf24de533347ba5cc80c1004e51096fe7945ea077c202c329617a14d87f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    4b1d3f84c2531c84140d3fa4385caed1

    SHA1

    5cf0ae2f11d2294c115f1448c09badc25b0070ec

    SHA256

    ce743e37450544df939f807f72dd512365130a2702dc0a9bdd6ecdcb11357656

    SHA512

    024c5f336f586adb8654bcaca94f647b589d1b08ee44d86b5950922f11d83b37573202712056c6d5ff197c701cfefba0005291813ef8411145b3a9afe0ff2b8f

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab956E.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar963C.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit