Overview

overview

3

Static

static

1

ea9241d8eb...8.html

windows7-x64

3

ea9241d8eb...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    121s
  • max time network
    127s
  • platform
    windows7_x64
  • resource
    win7-20240903-en
  • resource tags

    arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
  • submitted
    19/09/2024, 04:18

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    ea9241d8eb1d172f9d6474c56365b8d8_JaffaCakes118.html

  • Size

    8KB

  • MD5

    ea9241d8eb1d172f9d6474c56365b8d8

  • SHA1

    5c8a1099407489adff908646a271bd2d27de5c91

  • SHA256

    405fcdde1e665a0aab71f97d6dabf4426dbb127e5358753f9df87eb070b0f49d

  • SHA512

    7ff96134ea657a889fd7c157c816a38b6f2debb348c5437b533a88a170fb44f713bf7d1f8e9ecd8259193d3b1b3cd450a1fb7202f7cb32c1babed257c9dabe31

  • SSDEEP

    96:uzVs+ux7gyLLY1k9o84d12ef7CSTUrOSvwPO3ALcEZ7ru7f:csz7gyAYS/tSvwtb76f

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\ea9241d8eb1d172f9d6474c56365b8d8_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2072
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2072 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2164

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    e51e799220246695e7d52b6d0e543dd6

    SHA1

    890518d5ef866cdf7b19830bbe01420bd4b27266

    SHA256

    28a51c3ce29f5378496053d87df17bc1890eb31019f2891d21ec2fe1f1e58928

    SHA512

    237888dca3340aa106314a32b0b22ca88817debd4f3fa6415a1f1600c383e75d1b9e674c4dd384a2c06fbff04e3c333283513fc595fed1791358944c1e37c0d2

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    588298639fc00670ebc7ce4a1125fa43

    SHA1

    8aeaf07e6d6f0bde9e0b3fe873f53ef0a27a6e5b

    SHA256

    c4b3580d426d577c819c83e194eab5d4208b29b810a371a7728b522b6a959d75

    SHA512

    f28313ef111c0909dcdef09e261d596d52d2ce4933a30149a72a8096d68afb460d28329202afb4e19ef3593a0ca6d3d9ca46a65c814f5cdc99ea1d19e8e74386

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    1aabefc66c454fbcf8e98a98d7567f0d

    SHA1

    b83dbb61ddb97b0ed98e8cb1829a50118c78c6f0

    SHA256

    162394573f158531baf353bc4d6d62d6760d6e1d8241a728b51247a82d45e0bb

    SHA512

    3057da7b25acc0dea2786dec7a6e696acabe78c8582fccca8f75fccc0158489b0d52e69abfa4bff75da7a07176ee1eeba0b25ccdaffab9a26e0a8804af4b7e1c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    3eb96be680303272da398495e78e7202

    SHA1

    0b56a277ed9d273c906710a07992ea55d8a16e9e

    SHA256

    91f9a493f7d3485902a72256c4bc932ebb9f117fcc158287629ad55c29eea649

    SHA512

    1c3561c78c9eaa816ac5119cb9820384345eadad012fdc6ccd24e5821850097ac08d8854b139c2ed9a29db1af4bc000c8bd4fb33fa64ca4aa236a58e2142e6f1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    fe5f368f2f81c02d0eb2583e2ec792c0

    SHA1

    6ffc19a071b1ed453d50fcfe493453bbdef1a845

    SHA256

    95ad8056ebee76ff82ec14aac1d4cb224a1a3f40342a3be6dd13fd10b14384e6

    SHA512

    ecfb5cec7729d6cfade391cdba5a070b10a8ae727725ea15601424a474ae5cce51528d54e6588e75f8465deeb608c78490e432b1afd5639d6872c93247a24d8a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    6e9e8078284566af4022e563166ec90b

    SHA1

    07031eddd1738282ae7fbb5b464a83b691923298

    SHA256

    0180829eb1a7862e5ba397e2fb9c062c76c7b8d446c518cf3150cff2167be0fb

    SHA512

    737f476f8b0ac2a630d46e4ea526c9778e4d4f00a9f8e1440f788a2c89b1682a4d2908a33126b5b87382c1696ef2ee36d4f11dfb9c2171051a6286f4f8acfef0

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    551d24a3f489519d4299b65d3eaafdca

    SHA1

    622de0fa49c03b10a2ff695ace67e8588469c1d3

    SHA256

    555550e1fcdd8a485169cd187fdf67943690545f03046bdabd8e26732d208ca6

    SHA512

    ab454906c4a9f2c0ec91d527eccf9ad191c0125dace0c330e9db45e3cb9e3d34d6a8f2e2608e1df91f662cdfaf9ccc9c4ece041a35c61fcd1ab1a691a8d3c924

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    ddbf043aca8a0e74454e2cb275cd4ef4

    SHA1

    049788ed112d152da92ee5b9b4c3ebf14a1e906a

    SHA256

    f165b1a2c7dae42e633386490e69146047ea60c01e5ff2445a9a92f3a8b33ff6

    SHA512

    666e2da00651d265093ee600e16d275836e57e13c14c20b3ae80abc358f7304f5783b09add262706582696f7b63c21950b4d8a90ecfa90485654b2e10e8019fa

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    7f33c6849f3dc2063bf2a38f99f97e8c

    SHA1

    1a4d78ca065e7c6293ef783a1442ef73fc962bd6

    SHA256

    53e91f4da40746255b4f1be34605dc5795c239866a210525f38c2d5da8bff30b

    SHA512

    e2fba5bb338a288b08bad8d651b846faf5133ea2c3b3b544c38ee052d79e056a66a80af22a18cf4f26e335a9bf739aba9dc22970574f357a0fc9dd61574b54d7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    99702ad32c9359c9834c4a62e23aaa5f

    SHA1

    f4c52ccab96bfa832f2f7322df90db24b07e7da6

    SHA256

    253b98bfdfc493d5caaf4bcaeefe85941d3c3d43897d8a837bad64e1d6694a56

    SHA512

    eb5950d5a3b7beb14b0cb780cbe9aaad0b15c3ad209ecac02ad996cb47924e399f63c860dc0ea4880b08d2cb231253b8fdba84949f0f5f5a4491d54c907cc1ea

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    cc0815d2b1b5196b3c8ecf17813caf94

    SHA1

    6b8494b737a5e028b51785168bbe7389c1d70143

    SHA256

    04d396d9070739b9af13b2746cc6b2514543238d55d30a506d49a3505334262d

    SHA512

    36d48c4c55046bfcc5c92a49864a3e1273c125303da38e66dd7362284516e08322d59dba3d84e86b17ed56a6e982f10c2c8ad49df7886b3da8ba2a118d1ec6e6

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    6bf06ea10473530b3129d62a5fe0b0e2

    SHA1

    c7562310e037cbdd28db90957472f4d17d5f177f

    SHA256

    52f6f9aa1aa14011671477e8c66aa80f15463a9f20371fe6545d3d2a450113d0

    SHA512

    7f84280b6e2db5a40add15fef2855b57e38938fda2befa52fff848bf4a2c669741a88e2fafd7897d57a9ef64f94e5b9cf2bce94f69670b786a0841e06d393aa0

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    21f2d3cbeba0875c7d107b5ef74a8b00

    SHA1

    26dc4c0fa1b43647935b45c93f70795965b8f6e1

    SHA256

    dafe41bff56a792978a4ee3b38ede41da41c8c5f26f3ec2d019498784c54d5d9

    SHA512

    3ca6680310e90bac54437460c2e5865d79a6e512bf946071a806ea51f14eb5fcbaca9fbf7820b36a0682c752e9a427db71e60e343513b6e252d8b44e6aff00b0

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    b40078505455c7a05bf78063afc9ab80

    SHA1

    712555c91622f3ed0b52e9868af2976fa9f7c3a4

    SHA256

    30be7f7fde7143c41a401c108b6d7dc0ce127d0d5e9ac85474dd66e917fbe0f5

    SHA512

    3de24ebee878e70e527bc736c581ec41164e66e971d27922f7820c3c02cc89fa840d043240f602b770868fcc09af49d796a90e795182057d40c6529e96b4031f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    884a91e8db452816a2ce6efeccb6f25a

    SHA1

    30bb09019d133069eaca1cf29aaad24f56437bd5

    SHA256

    5ffb1c29280327901687690c687d43dd95fdcd19a49109cb06688406f7bc02ae

    SHA512

    7062205b1cffe2752768c3ac958449b52e46574c4e38de2aa1590a930871030318f322eb09cea6037a676726e77731da65c96f85506686cd5e1dcb66c035bcf0

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    c5a3a14ccef88f999d62a157a3021af3

    SHA1

    462656685df72c85df3182245e0bdb127d2d304f

    SHA256

    72309aecadac63b916c7a32fdbd4c3c77982f9815822a4eec959d991d3cea214

    SHA512

    949dd3f651e7aa3488c46f1b7d54bb74bf0b33d6b38b5a054f88839a6834624dfb89ec029c528ee63508b731e8fa21448c3f8313b2ccc2a84d4841a0d18d5b67

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    2a781baf3f22ea9ca2bfaad7751895be

    SHA1

    72730e38060de30c7db2fa51405ca219b59b1e52

    SHA256

    3be2e782b486d18e0d5f463bd8f4ceff394c15a1e13ba0a1aa293d3e6762ecc0

    SHA512

    75038c845a43b95fd883b7844fcc192f003a79d0ca578d79cf5d1f827209f3313c2321cb931ccebc42a06dcf68a50c7688a1d072db93a310338b3f2a8a62bc56

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    0c41cd0b3fee594da229c4c1c3f418c7

    SHA1

    01ebb25c0e6330ad5047e43894ed3d85b5fae437

    SHA256

    1f87d2c329f1b6fd90156c239dbd78097263e607e350e0414a4948b677e5221f

    SHA512

    5d53b0c256440b4ed48609d11b21968d2bd3f1581275d32c103922f09d766916718926b3234e269d94e79c710c0abb1687e3042755da6e89e27b5b48e20a5201

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    de655038ff11c9738266437bac3c6bec

    SHA1

    db4375f1f2ff6f539ea59b505906100250d101b8

    SHA256

    044b391052a1165d91f8f628e1985b702b2ed4aaff67e994ee2ec2d1aac2dad7

    SHA512

    1daf5f96ee0256c3f77e49dfed0255f2daf76abf8a1f1bb5778205abb3adeef60298bea2630d230a04d3be80a8b49356478d5c75a5ad6373cb62c7873e2e2ccd

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabBF6C.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarC3D2.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit