Overview

overview

3

Static

static

1

ea90e5ce2d...8.html

windows7-x64

3

ea90e5ce2d...8.html

windows10-2004-x64

1

Analysis

  • max time kernel
    118s
  • max time network
    127s
  • platform
    windows7_x64
  • resource
    win7-20240903-en
  • resource tags

    arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
  • submitted
    19/09/2024, 04:16

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    ea90e5ce2daf0ca757617848675274ad_JaffaCakes118.html

  • Size

    23KB

  • MD5

    ea90e5ce2daf0ca757617848675274ad

  • SHA1

    a84bc16c5ab39c8dcb3f9f0df18b9efc59614bd2

  • SHA256

    e2b422cfeea49392bd464407099fd6e8fd9492695e9e9e87447963bd92ac5a69

  • SHA512

    eb35c614ad4ef9e8889f069b5e10f2cf9f0fa384a0781c90b13f70d4c3ef186e8eb953e6ac976f4d5c3a3b049d5e77e6f5e8a0ecdc73a7d69bc1f5022ec2b9fb

  • SSDEEP

    192:uwHgb5nHsVMnQjxn5Q/znQieiNnkJnQOkEntZxnQTbnJnQtBXQvMBCqnYnQ7tn5u:HQ/Sl3y

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 41 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\ea90e5ce2daf0ca757617848675274ad_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2408
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2408 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:1644

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    ee2faedaef65cc8425dc046a3774999f

    SHA1

    8d84d49d7b354dbaa3e648e3fdd4f218ad42cb99

    SHA256

    10dd67fb3195c3584b389e2442f0ecc2fc53850b31ef01a3debed5f303b87bb5

    SHA512

    bbd797ea8b0390b0713d314e63fca67a6526bf9d0f5437f3c4be04b31b4f7669b4b148af414d8077c9e3a6a8bd9c4deb1cfb1ae2225f08a79e53bb4179d1ee47

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    60856c363ffef3e174d5a1c88fce2f73

    SHA1

    9040f920bdbb73fd46bd240eee256e039d89517c

    SHA256

    73bdd2aecf338604170afb999312f2dae0e17905b759a8a40a9957dd5f30760c

    SHA512

    ffb75e41ba45cb9a8d8f50d6eff4f67298ee981dece8c50f0628cfe4a283a83f35115193ca7de885521d275c87a4bf4144b8786c572ad0255b05785a4f19e8f5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    5167c33214a2e80b22ef6e698b7a66c6

    SHA1

    769a7973ac1536e6c605dd418e67c743eb0ceb16

    SHA256

    7551c0a852569c9b1c0e922fac9b443220d6041366cb394ee2d580ec37e36042

    SHA512

    41e41db6e91849eab7780b6ffb101695c1d4d1ecf398f163368dcddd2e8a202c26ce18c82974016e3ddadcb4b66ade1adaf979cacc4c654c6d79832eb952826e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    e43468f35dd1ff07b4959afa2eb609b7

    SHA1

    c72ab7b1b6655cbe59d5761e87bd928ed0fbe082

    SHA256

    d932f04fbec6b491804b149537d471ac3802dc26e8ab7478571ffd8948cb41be

    SHA512

    43d63c962f9dcb3d273b3553d5f0f1384022b844b4c34c01dce1de8eeba72b03ca2b5f23d1246b413fadd7b2d75461b310a0f351f7f6ad503d9d9f8d844410f0

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    0222018aa8e3783bd0c5b5322aac3d8a

    SHA1

    ee94d003cf3716095c57d4cd1e1c839000bee750

    SHA256

    44ed4bfcbe9023c5f3f0657d0b68590812b768cb9fd856c923dd0d724e8226be

    SHA512

    b5d4a5b362cccad1571cc84d0ce97a9c8901a64c1dd987c6bd4b2ed500151e6ea1a16c5b8d4b87f5539cab5e613f6404e43caccc994153b97d5055c7ce7cb9a2

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    0aa20205db20fffbe82d2a590a63354b

    SHA1

    eed1b8f0dedccf013fa758e016eefa3aa7bb3c0c

    SHA256

    186791e233aa4bba498872eaf52d1c45f7a1e70b5b8f2d3e68f5f337f1b2b6fe

    SHA512

    43499e726ac40976b68583b16cdc37006014d3e02b3f61cf73b16a61199a8284fd1f084f49e28ae4040769d691b32ea9aec1466c8b5a3bef8dd6f91430e6bcd7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    6af7fbe09a76b625eb62629feabb9ab5

    SHA1

    23865a7e6e8bad3cea2a5a39069342e0b433948f

    SHA256

    3167e0457b06bcb8c509ee42e1275a2acbb4c52d010bd6afd1dffd7f21627df5

    SHA512

    ef49ce639fb08a2eb8d8b4386be755bffe4dc81210c43e17f9f2bb9e8b202d39d192af6b695724b2fdf660f20e54e98c1b5c64bac2847a9c81b4c6b7ee4e69f7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    925beed95426dcc983abbcb9930220ea

    SHA1

    5c7893242b74d0cbfdfb3eab8351fb3bd522ebf4

    SHA256

    fe7782b6648fc6619d6779f144c730f3e799583bc6c2a4ebb1aa460847331e93

    SHA512

    7cf46b59d5821cdf90c71b3d48612ec692c51435787143704114ad6cd6e285ec3b473aee5bb10c17f94e98331f45ac5c7038b5fdf6e543ca5b75f66a4313230b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    e68f81b91f460d6242aa128bdefbe48d

    SHA1

    e7785f684178c547c13c7d2f32e5818a7164394a

    SHA256

    a4c885ae9227a487bfd78a224be4709207d5cdd7d2fa7ae74d705a5759c58a14

    SHA512

    9e22a60893a6fba68e5890513812bc06682eecd1c22fb3ebfa2f9771332b0e688f0e0b998913cb88cb86a72bc174b5764bbd3357a5c4def7f90310d9a1239cde

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    c600335f1d6944be48c972169bc7a28b

    SHA1

    435838ef49e0a7f19ab0902610109a86509e1b24

    SHA256

    aaf6ec527823e44ab0de07450bdee842265970c7579ec19702af4bc59bd9c0ac

    SHA512

    1639a1fc8c83aac1f06c7efab876a93eefefae6ea961e316c8d9ccdaeb1b293d0185bb8e9c6a973308022aa3e98e2a82dcc6e302e3caf73995036ff395360697

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    8b791c31ee4f1aec4581bb2da1107a17

    SHA1

    f28f025ca2c390e5fc52c8ba1eb08dbb046cea58

    SHA256

    ccf2bc6c6010088dd8a8611d0051c736bb0886abcf1d1aa2054e86a59c70e871

    SHA512

    7b89b9dfdc1418e56fe18f8e020b896867ad253aa1240733cb76e6bb3f9720f30862fcf66467f4a3ee42358aa58966c72df7cdb2dd3732ddcd4e34dc0e648975

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    e4bb19dad05fa45d6a3322b5752c9210

    SHA1

    93c1967c0a0b7458bdf95e3313f9b63ceaf09803

    SHA256

    6b5413a78685fc6c7fdc2c0c6abc129c53bb8365f94f3508185c0671f1112567

    SHA512

    d9cdff643ffd35e26ec448a5a52b886372c460ab17518daa61e7eb3749b0d0b2de2d79a4a0715854cbd4b45a9feec77672ceb7e5bd3b6130b826fc3c51eb9f65

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    079e677eed2510e4f1be77d49956082f

    SHA1

    f3626faa4573f4274b236dec130aeeb38b7564de

    SHA256

    fcafc2ec64892b591e3ce2c9c77a4b62c5d1e8cd95f5bf18b95b7579b2e207fb

    SHA512

    21e344b9d4eec44949cc811bb4a8c9c18cb2b769cf02da39f39c307cd6d81906d48f6d044b7af6c3bfe277da829d54ee5dd284b5d8a061ff267f758b8ef0392e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    1be00cfc35296efc937e3d1debc8a7ed

    SHA1

    e31be1699d2935751441aaa0a4bcfd8487c487b0

    SHA256

    eafaa30b0113a2d9ab7baf9d5d8a5ad3eb876b90931a230c2bafefeb9ce1697f

    SHA512

    3d726c6986ee61d569878fbf9cf02a8d030de1350ab6f1064cdf5584be9343feededaba4aeb5c57d7dc36b3b217058911fbca610de2bc234baf56e22f2c8b8d4

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    318c92623146d2f4b85547a527a1031d

    SHA1

    26a5b26386265b65c9660e9877380013242c3b5f

    SHA256

    8bc77ed7281700d57a2e05126c2072dc7aa4de254b7a984a5bbc88a377ce6538

    SHA512

    eb6e4b9cf2eb66526f52d20738abfe3bd04b0e74afd7025d846c02097594a1c089215c95282345e386f28c8bb89b0b1c0b24fc3a700faf0f9d9db11f1304eb2e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    032080421b396db9d81beca56f02c438

    SHA1

    e58a520797f21dedcd758eac0d98f19178d3326c

    SHA256

    10e5036ac67727c132c515d646a687a8b2203b519c6f3291c552664d7f443ede

    SHA512

    a6148b531812a066acb332177a45efa49e87a5e6d16e1516614f706c5476fbce14bf73d5761e26fed1e6268fc1256c10bd3ad2e4184f3a4f7c7e7bc6709fb28d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    37d2743201dca208248ab3a33b541e55

    SHA1

    30210cf33cf8e18ae3656b14597ceffe146a4903

    SHA256

    0482d4c7ab065ec20f981b6d37fc7287cd0eeeb143f2d78a86f946148e6d7605

    SHA512

    5c349daaf1dab3be172109a2d17d155fccb0c93e4a33dc89cb83ad4e25b73afffddbe5c0beb5ec50dba532264266e81f0e3f58c5fb1ad62b305fb2a3fbb25d18

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    28d02bd40363ccaaab39f29c4044e3e1

    SHA1

    0a34240d59349fcb85eacb7f6cb2ba40251c7cfc

    SHA256

    8a070a2cb2f2b10d26c277927a48337b498940e518e0e5c687d176539c200d91

    SHA512

    a64bb9d9dbef174ff62243f2dff6943055593a366c703073f5b9f4502f21796f87267573fec18998d1660cf63009e841f2ce9702ee9165e35c07fca0b0e9771e

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab6D18.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar6DC9.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit