Overview

overview

3

Static

static

1

ea9f05b806...8.html

windows7-x64

3

ea9f05b806...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    75s
  • max time network
    127s
  • platform
    windows7_x64
  • resource
    win7-20240708-en
  • resource tags

    arch:x64arch:x86image:win7-20240708-enlocale:en-usos:windows7-x64system
  • submitted
    19-09-2024 04:52

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    ea9f05b806bc7b53bdd273d2fb10701b_JaffaCakes118.html

  • Size

    53KB

  • MD5

    ea9f05b806bc7b53bdd273d2fb10701b

  • SHA1

    bc38951abf111a38bef092b3ac6d63b42b9c52a6

  • SHA256

    95c39076c2bf6300ce70cf19019646102d8c9f0f3b12eb78b5e0820dac259b4e

  • SHA512

    e3806da878deb0b90be031cbc528e2e5c41d742ed9bc1047cd1ca2576c3d40150568ed3125ad2df021114e5f3854c52ccac015a88a4fd58b86a9bf464e64de90

  • SSDEEP

    1536:CkgUiIakTqGivi+PyUdrunlYB63Nj+q5VyvR0w2AzTICbbeoO/t9M/dNwIUTDmD4:CkgUiIakTqGivi+PyUdrunlYB63Nj+qV

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\ea9f05b806bc7b53bdd273d2fb10701b_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1720
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1720 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2372

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    d1aafce8c3c87d56827f7ac2b3981fe0

    SHA1

    c9dfcb0186862a8dfc702ba6b4ec8216e9252790

    SHA256

    3e6aba78a1dbcab859b2c2f48853d84d7e0ec0100e0597386a7ac514c25f9cfe

    SHA512

    4cc54b2e9c2c39e706d7290b2a0ec585c45743e02e2dccfe352f312e906d25d0cd3bc7d09716d1088de21a2ceb2fe900cac4ab54e0476ae149c36dc1a57235f7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    5361674123bf6aa8c9944b2c35f92ba4

    SHA1

    f0930ecd6bc3b85d9ae46399303a8ee7ce31bd4e

    SHA256

    b4120a89f7fde15c68cc8fbfa697e54733f39a6acd43cfad03390216c7402045

    SHA512

    30b230be5f9717d36befd6b7a72d9cc590b0b793ef7d0f93323a779fdd887d63c03e10b92216160c9432438cf181fc6f6d0033b5d4933996f1889ef8f35cbefb

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    1bae61d5160f3461c6df532bc6b9996d

    SHA1

    e9eac70661db641377f73429dcf96b4aa0464253

    SHA256

    1b407bda4606a57d9aace2d732f54335b1bd3198e7bf460c153f5526a43b3fd6

    SHA512

    061243aa2bb3266bb05bae0f50e89174d62cc62ba52abf510a1688498eae29caee711b6bbb292516b48a4629172c60a0d290b50ccf1eb434cbb5a5b450cd06bc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    a88e4326fd979c8be158dbbe89771936

    SHA1

    76117d1abc543e0ce906270abe1d93d6f713f155

    SHA256

    3b2601ca9e961b9f22e008620bea96b4508521370fd77e9aa82b23b1b2d266b0

    SHA512

    850f856dabddbde59df95f395b63d78154f406111014fe28a9533c8771b40cc64d23a5734cc60d72507fa620a6253d619ce3b91e1f946f2cf239a1cf1dd9d997

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    40a5994739fbbd7643eb126fb76638b4

    SHA1

    456f4b7ea855588c1514ac28ef6b0ad63dba054d

    SHA256

    d1f64cf87885c67abb4966cb756f771b20977a6f7d93b660d8d75f14a87565a8

    SHA512

    387a4b037814e582a04511243d99b7356888ddcedbf51e83cc1d92eeb57f430847bba626a6082c32e711b64ef857074d23d1139362b5a4a4da7a1335460ea0f0

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    07b79e2cddcd64115ecb09d869bf43ca

    SHA1

    fcca3ca6c1713598f8c07942638ea80b573666ee

    SHA256

    18e77594766f38268352b98c4dc4d528f2e4eb436a9512c0a24e30c20685459c

    SHA512

    0eb6fd647e2c14fa6def30178cac30d9a289a6b605a7aa458128ccceb29919c4c9d564f3a3783dc035cd70d8e188f1c74efab3c1a5a065162e855243806db1e2

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    8a52b454dc4bf1d6f1c4db7b4559b3dd

    SHA1

    1bc6efcd5c8dc8ae7fd514d5f40021833798039e

    SHA256

    711eb58dd9ba1f8a324a1ae73772bf779a69661b6ddc831dd62f0d95fdbaf1c6

    SHA512

    2fccc3f20ef192a1e627f7a7f0423ff5640650933d0bf17d412004c9d0b8fc316852fc66d1a8a1e63173f9bd73f3008d522c87922e0577c0833dfb80e63b9d33

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    a6376b91e82a2e860b8336fe1a8fd457

    SHA1

    d1003119d3fc786df662d1aef16d626e6fba0c46

    SHA256

    e3bf970772dd4d0ecce5b3196a6e719eb4a688f1a871fa281c2cdc10ca48ef1b

    SHA512

    3088e8807c99add2e73e1e0f6d95eeffd84bf0eb1f1de9e46014c944d2d754626dc871181834bb62c9793d37024341815dbd2a067c261aa0879231b2d10408f0

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    05cb1fdf796216907bc9d9bfd5ad61ad

    SHA1

    bc37dc165737cc96abbb5e5535161e93c4d73bb9

    SHA256

    b35255a8998b8493ede01670fe6d4d5c67456a07dfd3972a0bee9bef2f3cbe7a

    SHA512

    d50aa72748120e63d768bcf38139b6521a9a0aebd6e66206ec2dc260405a08eba3d3713a754859c49c82e763c117f92db437b71e97a21a8e4cb88786dbd23a94

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    7584c444d5ca6fda92f647677c339988

    SHA1

    808075fbc605c9fac6c38aa585a991b51b2fbbab

    SHA256

    cae555ab38bbfa18a5d1bcded572547635fa7a473b074ddd60be1cba73782c03

    SHA512

    c92827523203fc53a0ba950dda5076ddbdb1b98caab0b13db11abe12acb591714afffafdcf40d36daf7efdf88e76786dd0be981fe355046a6efb368a93d36fa9

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    03a49ac0d04540e11bffe53b8d5ae008

    SHA1

    877822ad6ff53a791c80b842d5af1b8eea4115ec

    SHA256

    7978d5642386d42487c6ae73f87446b5f160d97d47a330ac781b9c846942e337

    SHA512

    07e7cbe298d73af2463f1b92a39609df63f8acfe138f13afe2f453b8731cd0596b73a75cbf7d43d7aaaf14a14711079232e7720760fe78140a94250a00037681

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    cc2649fea295761683290d5b51429fa3

    SHA1

    df10f65a09e1a0a00b964a906c6e5cc8fd495b39

    SHA256

    57a73b4ddb0ed843f17d09676dc3ea00702daad19e3ba3fbfcd6fecafafada0d

    SHA512

    1cc62b78154983bdaafa94500192f06ba8a39df9e02ae2fb34ba7cea58f724c25e5f434c01afb45c65d11bd79d24c4b359a855a833686b0e733232c4813935ec

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    2238ac43d1ca83cfa644ec987b04421c

    SHA1

    f315cdd52d3eb2541b3059b33ead649752f6f2aa

    SHA256

    7c279ba3ea449ef85f4443ff93014a6a62784817c5386563e32f34fa522068ef

    SHA512

    02defee6e516ee4668fb71524bf4de50b48ebc89259d56c99752f2e4acfa751283242b06bac9ac5328c42eb3c9644290706f143f85988aea53b8f079416372ce

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    5cc599bb3511e083efb7dea62c04a2b2

    SHA1

    ac6511aedb5c6f573e7c09bdd2e3d0c6a649c0e4

    SHA256

    d0914d24f80fa9b02d53d0c435849a80d1b66e2bc40a2bb8bde0371b491aef57

    SHA512

    9c92e3d348656511b6a8bfa61831e3da00f4046555a8999b4606f3e1db3290ca90427cbea43eb57cdf31917afbe95761f3ec3947994ac7775ddedfee743309cb

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    4bced22869bbe93deacc31b864763492

    SHA1

    bfb46693870e9cb66ddff71c16b91b6c94f32d75

    SHA256

    f5a7832966bf6a7fa3e3ddabaed0ae0041b636955177a9b27912f1fbdaf15bf2

    SHA512

    f3a02d5588f2ecb90912bf0c6a8db2ee8fb390be7290cbccefeafe2fee077a55e1e9d26ea526b637297525dea6099fb63302672f9f85406875ca23251473beca

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    b0daf1f0e30ecf16a00e2530de76d1b1

    SHA1

    c6ee9a2e890c591ec9d787c331474482e12cdded

    SHA256

    d2f005b6b71a63a49436163c62f3ee4c7f288e6f37d685ee8f9c3810eb6e0efb

    SHA512

    a2adc0a5103f12405133445bdcfa450a87e0629fd711adb55b0d35116c8b2b8d66769d5e1a1d8a00ce45e8389278035bf9cde3e1a747c1f4386fa532858c2d8c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    a5384f7271e2c384d99c9f488a77cd93

    SHA1

    c3302334582b3f1fc12cb26c073dbf8edd494df2

    SHA256

    855dfc6bfe4a0505196fb5ec056837c6c015859ea7996f293c789f33c196ab41

    SHA512

    e4e452a5d7117167fa1e8334a2c25d7a171a24c71ddf0c0d27fadaeb12307dc69953a9be9dc2eb9bcfa8c7f3aae67dd818d0712974cb8a2eeae977da7a3898c5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    759c597049e76948496298a4dd00adc3

    SHA1

    278dc231ad620107a794a46873bf532dac999e76

    SHA256

    bf67d7c319fffd4818a8f1a6f44245a17060f20736b730a2105713d3c5b19c2f

    SHA512

    fdd74ab2ac2f9ecfab260698b019742d3baf063972def8472b6b4862c8a272108c3b11f114d882c1da05eb733f6ba0c7afc91cdf0f85b0311c602701104c2a31

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    97b54c1d6d8ab93d998481470fb69e25

    SHA1

    f146cbc69250ab98781214a7fa41b4b71525e7fb

    SHA256

    3d7f652dd2e4fc182eb75bd8c5e710fdd7f1e45c33d24d6fcec8f2ba51c07186

    SHA512

    4e71181cb38853124e1d65f7f58382da1d551c7e61df2822e0d01446d2c2aed4b27866788734cc430292a2b15ce69b7e906f885af03e29b4fd763a9762240f3e

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\6XUZ2JLF\print[1].htm
    Filesize

    706B

    MD5

    67f3a5933c17b3ab044826d3927d0ba9

    SHA1

    5957076d09bacaa6db8ddc832b4fd87ed8f05f8a

    SHA256

    97e800f4836b7030dd58fe6296294b7ff5ef1b5eb0e88353f230ea1608d2bb64

    SHA512

    03ba224055ffdbf32b7eea30c764dc18d66cc6d8707dc5fafab74e155b0bb3d4d691c5788b033a68f05299547297125122778fa7e3252f93e7343d918936643e

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabEB9A.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarEC48.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit