Overview

overview

3

Static

static

1

eac1b8491b...8.html

windows7-x64

3

eac1b8491b...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    117s
  • max time network
    149s
  • platform
    windows7_x64
  • resource
    win7-20240704-en
  • resource tags

    arch:x64arch:x86image:win7-20240704-enlocale:en-usos:windows7-x64system
  • submitted
    19-09-2024 06:25

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    eac1b8491b5ea742c3b36d55dd6e465d_JaffaCakes118.html

  • Size

    11KB

  • MD5

    eac1b8491b5ea742c3b36d55dd6e465d

  • SHA1

    82683f57cd95498eb0b09808d71e4ae1a81c61c8

  • SHA256

    d7d0bd16c5221e0ef6dbdc5443673e7e31a7d137cc5affe1c05122e696d7cfb6

  • SHA512

    322442bca37de4e822056337d7e19a7ab52e73241a46d7b90bb9d09a976e7462a737b510d5ba8a079dc7e3c5d2d128a6f82e6c2c74166d5df52f2b7632c76544

  • SSDEEP

    192:2VvlIsr03XU8k/w1wvqLkZKByJnH6GKzM01gsw8uBuLbdU8d:svlIcuXc/guKByJnH6GKzM0gsw8guLZ

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\eac1b8491b5ea742c3b36d55dd6e465d_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:3032
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:3032 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:1568

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    cfa5d0a490fddeb1fd7f450a18bee974

    SHA1

    4b72926dffe1ae4f31c71e850a2c2f483be554c5

    SHA256

    9d57d727634f8a2d70c40e9850c646442a5a7e33cd1c790a37b0c3c28e0a2fc7

    SHA512

    6625e370df0ebecfd1bf5ef4506199866adb237a87a8169559ccdfde1da1a66520f7e6243af1b6cef6925f48462b474ea82d342b568f063cdcb04bfc1c82049e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    8a1023d53068baea1c4c7a1a4c71fd1d

    SHA1

    833434736375e37d5b5bd1f965f082b2a21a6444

    SHA256

    96cb7d3caea15994d35f73463b29c7a03d2eddd8c643ecff96c3879cecbeed85

    SHA512

    1163c89e2dcc4febea9ec2a4aa66e65bd12997f9839aeccedd71589a38ac94a8c5f5dd94bbafd9e22c7cd43a1ccd7da1ebaf49e2456f7edd240b3a135607e472

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    b5bb55e1cd3c10bde1475873ac3f2fe6

    SHA1

    93da52c29b3103f6c9d295497762154b5d679785

    SHA256

    a8f81a62edc9c7fb359a7194f873c972317d4edaa3838e0e5f32b2acfbc9fd04

    SHA512

    308a2079ed2956ec1bcf9d552277cff82189b7dc992dec32509c0326923f7ded674faaea160d50a1f4846e55b83236c9a3a413a577f7c76fe8ee2bd95bfcb0eb

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    586e1dbdf7de66f0981a26c52c281c1a

    SHA1

    b3deec31856f8e281e7a9305c13d79b979363468

    SHA256

    6b3d0bee86bb0536d82eb62b3cb491570e578da501271994e49dc61dc8699497

    SHA512

    ac14fdef4cb7a8c1b94dcce52e5d7503e656a16777266e7130a1b8a431daf5fc6eeb25b65ab2ae98e61307557fadaf6e88f06fee8ece928ffef8f03928a5ca2a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    26e57cbc565bdaa64a6c89e65c4267f6

    SHA1

    49674c74f7583491dd9a740dfb9776ee24fbd763

    SHA256

    5b207b04a55d115583d30dc97e28feafb44ed58da08f296f461b2ae4134c12ff

    SHA512

    0c2983c2208ce19a43dff71e3ab91213cedfb04b0294bb641af3fad10f0878364d4078a2b1863fa5c6d0b25e3fcd80aed02ed3c8b9010d323f4112972ba38806

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    e505df3feb4eea6220d5a6869431a007

    SHA1

    a687e62d95202bb1437a8b43521a2ce1fa48e36b

    SHA256

    8a5694e5c27c330343c8068c9331802bd7514d64649e089edfaf5c2f79c011ef

    SHA512

    0a9f8395b9423ff28ed73bb2a41208d4e8ef892e3f9c09628059b4133c8a05f9e703641b53ff13d9552fdc6827904550f0915ec88770422230127501b4f5bf01

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    3e451b9cfcb5a61a27193d8531e40679

    SHA1

    dd0131c79a8582a223baf8549c1fb644141956b5

    SHA256

    d3fda6ea044538a2a8906b02fd86558203609998c8f15bb051d7d99aaac8ca10

    SHA512

    24cec9567ff0a611eb8458ebdb67fb1772664bf9997d18a1e9d98e9fed82b93d581ae28ac7b1e71154a85dcc3b155cec156d6ee44d1e834a1e84719e8a70080d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    5b3f7c9e9a5d3d75f1c64a36564d1bff

    SHA1

    0e5f830229d1a4ad0dc4244114d23af0d8a387b1

    SHA256

    253fac2b84fecf17ce7096693919e8dd38ff2cf1d996363fa27c1a84ed5407da

    SHA512

    ab8390c0f3d37b138a62cd1c8d2cbb5cfb45998331a42de2c88e3081d88a1da931639b155fa0f58f23bd473203ac5ffab568bf70851015b5c7be2f3cf37ad8db

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    7b1c9fd68ddbd27cc79c9f42865253a4

    SHA1

    f164109fa1ab27288b6dde1252c5e8edae2399b2

    SHA256

    5fe7439c273bcab1984e9c4ceca410cac78af9c8b38e4ead2c6482b3c273dcc6

    SHA512

    7c678839701c39cad634668c2208ad977783990982be7335da66237cfc49ccec258cc1e189257a9b415ec422171fd3007474c8facca0e3d5b06301eaf195ec54

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    b262c5255ca067398aa29e3c454158ab

    SHA1

    a9d989927d42e8019acac768ca44c01bc8d48cc5

    SHA256

    8543b94285e05ace33f1f83b8c2dbd5b761e98d8a42a928aa2488c61401834f5

    SHA512

    3d2815402a44106c50075562b1ac2c07ae190a36223811054c812edd68e860d0fa72549a79192dca14b1f602fd4fb94fa7b995207640ce73e1cfc3deaf3aa819

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    afc7e9fbc8cbf47adbb4bc911526b86a

    SHA1

    388995b47be614cd597194277968be612bcf09d8

    SHA256

    8fb7d1fbd4af54e473d32f8b19703fc5a351c31d4bd141615cbc1ae083f6b15c

    SHA512

    5c513920a108e630e4a817c042990db9b62a7931eed2be2925c0ed5fd3da2d191ba27daaf259de5b8d156cfc63101f7f27e61aeee7eafd989de1519f8207d8e2

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    7e2e9bbccafe6b98b7f42ac6901f6379

    SHA1

    8ca3c9c6e110bca7da49bf0c4efab936cee59a94

    SHA256

    068e9525e760d8ba9410b59b9fe68c496a7ec4fa82b9be8c12ae65b5327ab004

    SHA512

    e412dde3d411783c4cfdd5ca84da95d1eeaff0cab26f90377a58cd27c4c50c694cb9a97013ff7ea79b8c0efa2613f5a6032d9888f87af76cf1b0ebe1b7983f09

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    dc836ebcf26875652b6723d6f9337997

    SHA1

    69795c329f6dede8a2c0ff0af88e86826fd81580

    SHA256

    f1a2c60c3ff13ef2ec0d7a7e28a302264502c551645b4396811dcd494e96db96

    SHA512

    388b159ca5020cc663a30c95cd56c41aca49a28e09feab38a2002862ca39cf693d195ca033c23675a013dfe971d4561b13c0a2bf08c1db59efe180ef7e5fc6d1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    e4855a8e071ad0aaeccb754ca5ea0fe9

    SHA1

    914605a2cee577de09ae0138485fe88238aa556a

    SHA256

    884c8f0c5443e70dd6be9e4944df242baede02f148d1ddd4119427e96785a789

    SHA512

    b57ce3761644f544994f161109c6e386b372b5b5752b45ff962198c0dab7084718e6c327afba4b5b9fbeecfd5e5c2234006f2a0e072db0ee1ea58be65d86b50d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    6593ac27b6d5e69e6e9126fba7cba2a1

    SHA1

    9fd1ccdff3d062cf7c709808c5fecf9b7b5ed1b1

    SHA256

    5a57257cf72f78f7a0b1c2b9e5f9e1580baf5762c270d2ad85360351abf4bc0c

    SHA512

    77a46b2b6dc54250570bcbb91974941c58ae208156dc1107acac3adf77969ead8bb945ea29eb726da6d4a7c2378420fd2bbb748a7e529907ce36dc81a93aebf8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    3fce79d4f5c59617b176bd9ec0394371

    SHA1

    7f3a2a15155594ab60689cfbfb34544c549abaa9

    SHA256

    67d1bab63269f26290774772ec9b20fbe3043ca944a7b6d8a66f7acda22a25d1

    SHA512

    b4fc9dbd1d24340faf54f1a1d953670e28e66fbd24266f3f3a8e19ffe8c04b36cd3151618466f746659a691f9648d61c5c2fa859869e3769e23e0193dd1d59e8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    5431afd42a8c8f14a8a368bad06bb634

    SHA1

    541b2931faf749b86b3b6403bb3d7411deb850b2

    SHA256

    bb7adaa5a8b167d3f9fe6d9a1ccc6dba64f38676c2c63fa340b633edef981f10

    SHA512

    bf1ee2a946502813c3691ce8e8d80fc43e5f93788ae9fb679fdfde08c0af280804e38f3867c6b07b51ccc9a0effe7fe23caa7e4ab5430e32bd197884419b584a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    1fc839c317e0705159eb22e25f330790

    SHA1

    7d5675591e6b386c1a662d7af9b86553aa7da31f

    SHA256

    3f41cf9f939893b53de883bfb740f28bfa9017408b577f38d198ae5c54346e89

    SHA512

    92e35725a56ec9fa7ba6e49bb7647425b579a1e33c269c52510a41c4a650e3a6b951e73072cb09b6d548dd057fa9ea8366a54f93ee383a8d585ec115d4653b6a

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabCFB0.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarD05E.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit