Overview

overview

3

Static

static

1

eaa6018ff8...8.html

windows7-x64

3

eaa6018ff8...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    121s
  • max time network
    127s
  • platform
    windows7_x64
  • resource
    win7-20240903-en
  • resource tags

    arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
  • submitted
    19-09-2024 05:12

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    eaa6018ff873a79b4f32458b8dbb20d5_JaffaCakes118.html

  • Size

    51KB

  • MD5

    eaa6018ff873a79b4f32458b8dbb20d5

  • SHA1

    85bf436e82e17d18bb1b649c3a86d8e123f65459

  • SHA256

    9331e9338949c7b3f080c9996198689fbbec88cb7a7d9161a39b8d0f79c8734f

  • SHA512

    8f2040df71c95fbc2d3291fab7f08200c1e2663a9284bcb00056961de9ecbf1567a38f8babc11b9633097ab01775ee8aba12dfcef3eedabaeb98530f93cda23c

  • SSDEEP

    1536:TKYrZW9+kTEUgHyaH1OeeheaNmMol/AHr:OYrZW9+kTEUdeeh7NmMol/AHr

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 41 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\eaa6018ff873a79b4f32458b8dbb20d5_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1916
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1916 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2516

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    3286c9a37acab13fc305084437d42314

    SHA1

    1821a99d1bc2fe05e7f40507e02a3271dbb267f6

    SHA256

    b0255beb8da15edd2237f53f75c299964ef83bce33d31f99f4999add47abac88

    SHA512

    c8b9d1657b5419d6ac9813bf82cbb58e634a604197af4e965041917529e57864540dfd896f578595aec875d8b23265f9dc0012c5a4b637d0e7716085fa1ef955

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    1d7b738a3fadf1cf434fa79670504cbd

    SHA1

    c0ac4e1843b873a58aeda3f78e47696bb079ad5b

    SHA256

    1bc0238765471e45916a70260350460f9ef57eee41d329038ab0a67ec65b7cc2

    SHA512

    e5e934d56733faaeca5791cd33b51ba26f22c15d73078bbc55001e96b4fe286bbc9664f40415f88c5ba5fd2ec09e89db026c51b53cdb31792d5aaf10b95e4f48

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    44344cfd0dabce4848e94b72ac1c9d70

    SHA1

    64ee8ba890e9062b46b7ee552d090b2f2d79b31b

    SHA256

    ac794614a825f1b41a75f410a53b968520ad3228dedd6661ccc212c997d72022

    SHA512

    f95bbcf398d30b2507c553656e02c22cc00a8ba44a2527179186f275b4423b886096573e1050d5e947710fd23ac3198afc53bc8effdd3781eefcf1168480cad7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    646c953bae455cc1a2f9892bb95ba58d

    SHA1

    8ac6bc91a3bbd61e34a7cb74e2d3d22a9381dfb3

    SHA256

    f9d156d3a3968a76c797ac4d658264e4cf80c9767194ef67c80611ca1ad28b17

    SHA512

    ad7d7d7576da2e925c44b8fa5063f024f34910c8f5a8e86087c9fcaee108a1457dde473fd4d9272e7fa021b9090b9381a2791ef91a3bd139d0d8c5c85d140600

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    f830c5bec93b56c8c2036c060f856c58

    SHA1

    a30ef7c3c3458860b5fb462d46436a74da712f49

    SHA256

    6100d88971eb1406eb804e8a76d667d05b83d5d8a0e23320f9b4244bc037609f

    SHA512

    71f82c3a078d5fa0b14032d3a797aee012e7ed5fbda4abf9e11cf685b0eb3e49a63f702ecaf787e9c975b89663853b5fa6a52b0df29266eb9d927d92eda3fe9c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    283495989c3da8b6d335fb6f098a9e5c

    SHA1

    0701ca2a50f096df93cab3dff5f1f52c9a527b61

    SHA256

    e3b7464a5b51fbfeae63a26fb8aba21deadd77a3fb75e476734298ec4509928d

    SHA512

    83f93addf14ebf4203c86ca80b20bb2870b23a6850ba83ae04ec3e94dd986fda2dfa81500b93ed3bde5742f445d0da8fac07903f3e31c63af30e767c9b1b40b2

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    90a37f7d52630cd34fe260ed4e1c963e

    SHA1

    1816c4f952240315d8d501e40c5b04e9f5dcc327

    SHA256

    5cc07feb1f4607abe20698734f58ec9abfb844c68cb6312e3bfac24dcee702cc

    SHA512

    85875c191c25f9e9319a3465bff4d2acbc8b1a398b9ed6e14e045f5b13f4d9ae3847e4402c68f118fd553c0285f636878e255e4fbbd38e9836cc7e996fd9a171

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    495b8e11c2e285fcb9242ccff54c1532

    SHA1

    6a41d989d624685c81fd3dd6b5ab5882628b45f8

    SHA256

    fcdbab5b2ad337ec0fafefa228675e7c7bc47a338699934260691a030779accf

    SHA512

    4c18558d8919357039a3f557a764f2e5f4fcf60be2fb46e61878140fd1f91933cdfa0cbb49e5ffab233f36b0746b24e3ce76ca835aefc0be7def4769e74c5216

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    8d28dcb2d6893ed595d809370a49094e

    SHA1

    1c4913718727ce1f39bbe2eadf5c647b7e4aa7ed

    SHA256

    14470a8b4c4ae669ba0ddfde7430e12a97d007270017506f11a74c7173c10b78

    SHA512

    820c788575bb57acc43934aefc14910f9464c4881e01e0f6eb454179b1740af734f79d33ef456f0e38206a0d696aaa6ca36a4ab8a8a38f697156b35b7d6be1e6

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    327d3bd93a9db63b6ff7e30934d9d00c

    SHA1

    560ad4dde412f69285fcaec8657d5c0777d6953c

    SHA256

    959402fcd4c5b2f7c68f7e860c139c7651d49deb2add176b504ebed9c14a3f20

    SHA512

    3ac286a676b98eace35a1eb0e4bec4e0c03aace5ba052be2e574f4518de2b1d00cc4515fdbc17060c7b57aac46772e605248c0e7b4f70d1e4730caa6d0c0e7a8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    b889276f2de4a6fd43542b618a25847a

    SHA1

    1eb1c7302ffad482fb52cd679f427fb3a360d0fd

    SHA256

    e3e044fd20a8d47a48468d418c9b599c602d4be27ea7f67182c21fbe1a9dc972

    SHA512

    944f3d9e73861cd01f13850dae1392627563f35137bf8a141b3a36711775d570848786d102e0da89889423fea7cbf27a89543ff5762f854159c93897a8c774f5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    7eef07caf2e1929e715aa457bdb32513

    SHA1

    a5724c309bb598f1ad2b9af661c465f55ce2fd99

    SHA256

    26d08b57e9f45ee91a16dee7ae8623d3e919aedf9056af567546f057870ff854

    SHA512

    014595a33c328e501418a38541992a51ecfb1b718ba66e7e9651ac2e673bbd0135f23e40368a6ec545ba62ea9d4ff7a5ac5d5bfc10a9769dd19441fccb279c13

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    82bfea5d352fa1090652833a6d0ca697

    SHA1

    0da9bff85e793e19b96460e8adfe60720ab7fc5f

    SHA256

    677c81041024ed544b9e899e881c650a8c2405b01fa74576a3ad495caa7437c2

    SHA512

    575b893df3770d86853a0d158178bd4fd1abd703e61473f2ca34358d4de93e54904e71ac2e897690b7b15ef57c3d4ebbbaceca8ec903502b4687d3066ceb10a4

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    9c4bbf1ca87a9e657730cbf5e955361d

    SHA1

    01862e50f9640d4cd2b980965ff6bc30cac7a569

    SHA256

    d19f0300d4f950f1917672194caec2895dc8fff4fa57e2048f7caca78f600fc6

    SHA512

    10ff60a206066dc3b9f9f6b9b5bad4c3fdc3eaa6fc58ea361d5c9c94522e648fe49fc456e9e21fc99a0ac815d5c4f743746098b60601e9b17111cd3e7fa64f77

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    7bd957ff81d107f417f8ab37de518997

    SHA1

    c7e1fc64ee2c89fc9f941eca3b553414e39c4504

    SHA256

    d724dcba51e3ddf7cd42101eecfc929bce26960188479244afdfd4d441b92745

    SHA512

    bfcb4704dfeb6cf8ef787498011ba4ebda4ede2d2bbfbfd5d301d9782391d8ce0b7e253802f00a231d6f18007b6710eac4a645e5addd98f37d2182bb6f39c907

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    503d64130e7f2d60cbf3bd7c947465bf

    SHA1

    ed73be91df3a8b778d46ed6337e9eb85bd3e6ea0

    SHA256

    b6f2cca6f34cfceabf24f9d152d7c9a3bde5079f0746a8148685c66101736d2c

    SHA512

    182cf6d3e6215449912b5aa68e708d869aa8a71bec1852749e098edb6000c9b17b2bf42e114282a69288a8afbb4aa90789b57f904ddf4ec01442a6897c0ba435

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    d46a9dbee2ba36095c702824b6859dc4

    SHA1

    99410c72e7c66a6507caa62004f40665e94e3029

    SHA256

    4174dcdd86ecfd8f5663042bd96593558ebb2cc68016579c32828c46b29bb585

    SHA512

    95e626322b9ee22d16be1641a1d0ff70ef4682063a70cff4418f6342b64cf71f0c2c8811f5cf5146f757ea905dbe8d1cd9ca4c841ac019e0df3826373acd43db

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    3bbe7dc941864719be7cac0cc245451d

    SHA1

    ef50b456226e9194292c270ba0042f8ad28c6bf2

    SHA256

    b31a6960cc329fb34ee9eba8b59e0427ae10ac362abbcb64cf29174207ccac82

    SHA512

    54682e89d5df292a5d10ec0db6cde44f9b22eab76530f6491542f22fb330bb193cf40174d5a0793f324956ed139976e8a371783012c780787439f27145a147da

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    1fd0c67ec31e0a3b4e17b826f54da727

    SHA1

    643b91fef200736617bab2618928be333427e93a

    SHA256

    27ada0dca394af8f14e3937dba0912f8c1a87064c8b54b4290aaabbfaaa28a99

    SHA512

    64c97a95fe74e3c666b0a1e809fe284ef66b487e219aee6ea4712b2f39f531a6743d31eda88ceb64065a337ed70ee349ef04d9039d7a28f07122c3dcc6e5172a

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabFB33.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarFBE2.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit