Overview

overview

3

Static

static

1

ea9cb0f981...8.html

windows7-x64

3

ea9cb0f981...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    140s
  • max time network
    142s
  • platform
    windows7_x64
  • resource
    win7-20240903-en
  • resource tags

    arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
  • submitted
    19-09-2024 04:46

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    ea9cb0f981af8e2af0ee09d770a70a73_JaffaCakes118.html

  • Size

    67KB

  • MD5

    ea9cb0f981af8e2af0ee09d770a70a73

  • SHA1

    a192a7899d6b49280d2e30df55a300401d9ae23f

  • SHA256

    4e948a28b85c2d873610771494e611df53563cca3a0d25af2bf6da656e8d0c09

  • SHA512

    161c6aa1d5870bb276a9e17faacaabdecbafeb39f4cf9e2d879a25d73d381ecf815c9ce58f5d1d725ada07426f4621b1f777c5a2a71cec8383a956027a1918b1

  • SSDEEP

    768:JiZ7gcMiR3sI2PDDnX0g68aLRq8voTyS1wCZkoTyMdtbBnfBgN8/lboi2hcpQFVh:JsUQF7QTzNen0tbrga94hcuNnQC

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\ea9cb0f981af8e2af0ee09d770a70a73_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2820
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2820 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2848

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    d9a1462536911243531ebfb37ce01b37

    SHA1

    c5e5f3c3c2a50f8cd77390fb3cf94e88d20c8a1e

    SHA256

    92cdf9160af8cfc67693e340d75cef5090a248934bc351e03049a5e582f000ff

    SHA512

    9c9f8b039adb2df5161b3b65c2f21a1ee629402dcfed7a9bcb6484ab83988a0cc2c30f2a53921d5f6b4c184b07e15adf78994495da7a103df1b608696de866b6

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    91737fa9e45b60cbce0ec266d9a674e6

    SHA1

    95b5912608f42342f35694db0c4af10be5bc5ad7

    SHA256

    5c838f18ac7336bccc0373efb069762eab1ca95d8f59537846f1ecc407a8685f

    SHA512

    c9f0b2de53fc4d51680ca8f27e4090a95a94ab678526b4c8a453e09846305f7644f3908cae648fe311764ddc53a58e9b6df43fd6e4873cd3e87e71371822dbd7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    324f0d62fc318ad860384e630a674b99

    SHA1

    2d9e92ea9e5823af3941aa353bd6b29813b5d86c

    SHA256

    2d514fc9d0b36b33f5859a6483d5ce908d1334920f4a38920918dab12c7b0e04

    SHA512

    36b57857087bf2fac9e8878a4b5fcb68388f248a29a1c781c68cc5de854e695e45905388603d590c6ae8e38d9e1fc9c6915cdddaa69833c5ba64e768299dcda7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    a652f369dc3f00dbffc4edf5980fa080

    SHA1

    8ba7cd2fd561dc1bd5fe8fd5892dc88b627f21a5

    SHA256

    9643d1996f960716736deb43a9d17ef913c832c1d10c169647afcaa0f7953fff

    SHA512

    4a0f94d70c66740b826ee8d003e3c491d7cf4989f549dd570d852472a419ffe187dfd3818cf1422b29fb392b951fefeca490d91c37a12ee58fe7762550240cb6

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    752ef1fee96046862d74a3f555971d55

    SHA1

    ba4fcde187d58938cd5e29f68cb5930a6cdad0a4

    SHA256

    aef9ef8179e8f648e6f0b3f67c0f642ea3fc6d3f5dc54b95a205b8019e8ea69f

    SHA512

    2cc26985c2ce1ee30e776ea13ab023be67cc20488231e34d15d1256310a65e34abef405b01a113a75ee88333e314260d38c98249e1a6ebae6637e69c5e996729

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    4e8f16b1cd4088c95de26abcf0a4909c

    SHA1

    3d78d5e1ccbbac0b6288de31839af54399a12ade

    SHA256

    25889c2771b0b2bdd0fd8bfb9828f04f9bd042f39193c9d467cd86fb3a155729

    SHA512

    46632e0b3d7d21fb9d3d94eeaa2e4f9a8bd42c97618780debe72de8712c213fb305a2f6acacda59fcb22f84c46113bbe9521eb1f4dad5ce4ae5484f3cd26cd9f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    3ee5205dfb9536622af5691fe2d1bfc2

    SHA1

    19c0699e43968c4231af2f58c4d4cfd75ea50f7e

    SHA256

    20bcd68612dfec2ecce427ce73d7417b42e98d075a36fbd53b6739a9d0f7cd8f

    SHA512

    0cf777c7fb702270821ee63a4458a76b393b5b5aab356e82b441c55e69e6e6593483294c63cf4c7f4526c804a0a0520f39d7424c319cd621413afe1fa022b218

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    29450b991507025fb546a5078005ff92

    SHA1

    4f12a1c3e29e04e79d30b0eb403b51e9b7475ec9

    SHA256

    9f04f9ab63d5fca62faa12be2edd771ae79de282234dae76e26f7c66038700f7

    SHA512

    4e6cb515b1400dbf33257a7aa11ed308f2f9156e587dffd5899db25080f7548f2ebbc81f610b8de3477dc185a03e9c33d218e722cfd8fa5d435bbaf2c18c2f8e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    d016906d19126346f78af96a0aa4b63e

    SHA1

    98c4d66067bd6a675d6bb5881aeae8731f14a261

    SHA256

    3f9f0391da94b5bea4da8c89b2a4391dc88dd304a7565b895ffc1f77178c5e4c

    SHA512

    dfef4ef34aff9d6ab7ab152c9b03522541fa7d39f075e3f47a55a35354ac5e80dd0e1b6a1a16ea097e4cb3edf40883c96d1670078985a658109533bd59ecd053

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    baf5750f4f83df887ee9bc9a450d54ef

    SHA1

    f8128a4d4bdddfb349940c94cf2db61b1ede1359

    SHA256

    2c67714b1ebb2e8a045a33f8f09008c632237e39bb4ba1187c0d26f8c7c951e5

    SHA512

    21b10981e82ceb611d913d8a4910ed07ad2cae5a6d30afb7bcd4e54eae9e4e4c28db2fd0e42467059d9d0386d5513c8bfc3f3d3b2cfcf810d3314231e868574a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    4fa56dd894dab572afa66b1ae85e6cd9

    SHA1

    a17d1fbe121101813795f39faee145c7f930a23c

    SHA256

    53227aa00673a7edaf38e4ba16ef952a6f049d8043251a3f68a2c2964a47cb0d

    SHA512

    146e534001164c043446e0f2c272ed8efacdd1a573f2273b5c509f858912d0a6b7ae4c1a1cd1776b7868a0c5ffa6ad3423151625ea9c650fd18410b005fda89d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    581757984154354281419dc050924f3f

    SHA1

    5396e88678e99383e3059e997a5b1d8e5c918ba2

    SHA256

    ced6e66f7f9ae189488b1f91cf228751ccd7d23c680db1caa3c557e946af75ca

    SHA512

    ea4543d514fe6be2fb924a1b4281d2a6c55441c84cd8500f3b143b808a5a86ab00e1694159978c57ebd4817b7d9441ec81c9b54a870adf98198c4746c3be20b7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    de2bad3c76c974944b664d1a77762991

    SHA1

    6bdd3d540d68e9385f3d5cf1d4a93047c9728dcc

    SHA256

    e519e05c2dc7686bbaaa2afbcc6edb5ef8f350d09e16deb1a0bc643fcb33be39

    SHA512

    792955d7ce76044ad4b9f100a06a7670358eaca824e8564c518f1ea8d5ca515676daf5f8a119261ff4d78791c3d6521fcd13133ee1ad930f6e42eccb57c45dba

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    627ed11756c2a2e7e2f1250085eba3e8

    SHA1

    c051ef872110accb14479865794f13d95505e62f

    SHA256

    58cccd65da297d547081e219998aa1a9c326eea05d8b99264fa3046580ec26b9

    SHA512

    b15b3a5710f991ed49c80197ff3254d7a54174b3e0bf9fda0d0d44a8812fa18d1b417f39a3c697b5b799b99681186209af405012cc7fd24729aaf21610673490

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    6988bca6a969b13b37430c7804785d3d

    SHA1

    a839beb7231b81a892c3dee3b398eecb6b6f6125

    SHA256

    e0bb672ac4c535816de540518154481532e9b5433175abd659951e92819e7b66

    SHA512

    ded3bfb1dfb1d3159a6532294c42655ff3f8f3515472f17f2f5622aba5f68cd0a2d84620fa9de177bdf01ba4dcc811c5efcdff896f683b1be31826718da2cdb1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    959b6f89f4ac23c61402ebe4aba0de50

    SHA1

    53833923e3591f031e0a47d753a2a1b05a7fbea6

    SHA256

    507639ca8268715efc9a063d050030dc32cdf95966e6ecdd8f0b57ed77a06113

    SHA512

    bac0a09a7f2f206eebc058b5a0c799e4946d7cb398ae505ade9b43dfc54ce865be230f1cc157fe08bc7b9066cb3d292b228328e1ea24c50a2d46fae65860f22c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    de8bdecc7383bfcf6332aa7e2a1ad52d

    SHA1

    ba221f5908a53f2c0cfbe2323a43b01431573c48

    SHA256

    9495d98458327313253dd3bd9961b71a1a1e7f5a0e936d24d94d0b9a620e1c32

    SHA512

    46732c31d41180c317f65e815c41c4013b3ed9b79696c842b60ac18d3c1269e70715696e6cc39bb661100e48017e61a89b55193afbf532691c5eed362948d2f2

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab74E5.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar7555.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit