Overview

overview

3

Static

static

1

eab98fafad...8.html

windows7-x64

3

eab98fafad...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    138s
  • max time network
    118s
  • platform
    windows7_x64
  • resource
    win7-20240903-en
  • resource tags

    arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
  • submitted
    19-09-2024 06:05

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    eab98fafad22d4149a5060647206225e_JaffaCakes118.html

  • Size

    214KB

  • MD5

    eab98fafad22d4149a5060647206225e

  • SHA1

    7698ca19e8ef4ddbd2ecbd8b8c0de5cde16e6ea0

  • SHA256

    76efbb26fa1223bb218b5f3c11ab1c7d74be0ac23b501386d0b0d86bc6635428

  • SHA512

    e0a295b0b1ca89ca2d94b6ef981a9ee1da6616b4b21d4087a5a5d5131256dbe45cfcef8ec941e0ed0639c623223f0a1c01c9a4e8634c713334f85c6464535ec9

  • SSDEEP

    3072:lrhB9CyHxX7Be7iAvtLPbAwuBNKifXTJ6:5z9VxLY7iAVLTBQJl6

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 41 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\eab98fafad22d4149a5060647206225e_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2096
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2096 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2372

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    aebe9906e6817d9ba204415b0900b1dd

    SHA1

    b667cf6cdf4b4f8abfd730ab85ea581f7d622817

    SHA256

    02d0e0c5d3424fcb187a321749ae9d800c2ac5860100f8d92fb29eb08cd7e426

    SHA512

    eeac9f44bc0b8eb7f70f91f0f03c5dc802a60e74438569ea6e5e8a43a9684a881fb6e443cb28b49d8371cc3f92d614b40b2fbe142698df48c7585602c587fca7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    536865ee8f1be27e375083cfb9951fcc

    SHA1

    5e6febc6879c91937897985f6c48f624bbb94f7c

    SHA256

    76d96bec417792ba5720e4151101b5c5dc7836f52791dd5cc89d2a171bc71a9b

    SHA512

    8d31d8cf82d2330a7cc79cfd33dc569a159af7072c9ca322c4fcec35d50ff00a60cf5a0011b09631cff8d5e022cacf3ecf05a24328c6db6f0d7c3407533170cf

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    bf6418487134b6f7586f5a892e76b653

    SHA1

    ce2ef7cbf89f2d82b6309c225b86d07ce8110644

    SHA256

    8c8da8a6a14aaef03ef10b8321561a667e92d1fd5b0dd4d5b2720644a549ad0b

    SHA512

    8c8f8569f2785210c3981fc3b714f2dff019e80a7c76f3c042ed217eb4f9d3534ee4aa2feb55da9a1f6228dca406152420f84ab5ece26241df415524c1186aa3

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    4c7f895072dd9fe3bfacd61d15d36b41

    SHA1

    c7f4bddeab954db0bca577e598e0e195c0d3db26

    SHA256

    195e9cb59bb027730be2a93822747e2545573a3fe0b21069b1b1b1faae7e0c80

    SHA512

    95c14687cf9677babd42742f6aada11d1ae5bb38528eff872e9a4cdd792ee8a8be99200d080d3e9e629cf4ee23a7995a543a473b180a7f3280a705c8f227944f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    022f9caf3b0485ee7133bc6df51dba8c

    SHA1

    0c76782ee727f2577707bc289fb7933c965e69f8

    SHA256

    589bbf3500342f73d42951a4b09bb94496485b83bcc6daf6f2fff464d565751e

    SHA512

    eacb50e70a3d526c82042dc027613f9c68a10b58df3cfe79081ec96e2f73bc9bd6f670cb543bccaaa0720db6759ec7f26f98d8d5ba2332053a8ee6551f61c9b1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    b7839829f5d04a8fcb269e93f8803bd6

    SHA1

    8f22b781a66a933905c3fef6e180a3bb3667cddb

    SHA256

    07b5fbdf72574c814eb0d6c347365cfe873f22e3b808dd6f647954e91576d554

    SHA512

    95490d9d3354abe63a470c2bf0991e3414ecb183aa08bb0f2e555541d82b635a8a8e12c38c2f7e02e6d19071fa1b518f4a22e5868212d98579b72b77a97c98c8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    43bae05011c341e19af84300b1a020b8

    SHA1

    90901992c632376704d2a1a698ecf52b14b44fa6

    SHA256

    284ecaecdf8f7f29177dd771a1f6fa098a8a7fc12ddf1fd1a9a791b05cb169c5

    SHA512

    ca9144abbe267988754def9af97436ba96daafb928bdd5a25560e43f406b0de8014a9b390f6f08a0b17f67cc57d5298b1209165ef8797e0a2d4987f846d996c9

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    c5233fae977da0a7cc54df774babd5a6

    SHA1

    7473e6fb433e4aab237564d93a02b68122e3527d

    SHA256

    2815431b14ce7627db1cbb3e9d0cf6929ea71319c48b2597e0198082f9605b76

    SHA512

    34fb1c91fc8f2300299fea1b3308f0445001d9d63ec4e2ed105c96e323c278475a91e22ae4cd612456961981a2b44160ac0929360125ddbed142a132685e52d3

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    712820c2b3c73a1c7054f9a015b1f757

    SHA1

    bafa600cd009b8635c35da6699baa6d9046ed2e5

    SHA256

    42b2c0fc0d5516bd0bd9e83e18d9c8394ea67d5e5494a9ebc772a30c6610202c

    SHA512

    8a2be20a649696352dddd7e345f769fea84d8f98d78406dd9f37b8f07ca57af17de7273d6d15f67c5a6be78072e0be306115fb8b6d9eda14d70014c933e3b1c7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    c91448f33fe24c4d7a2f169d87abb315

    SHA1

    3914fa02f4cfb1c70078478565ddb9b7dbcf08ca

    SHA256

    a4e34652bdb4c589ddb24d3d7dc2007b7714b0e7e31866e880fe62e136ccf7d5

    SHA512

    d15d2f9fc57d9cb193a97e2fd932e4761fba075d94699194d8224346f845e7e1cf0fa06a90c02141fff5c9fb59d507c86a49a1c41f694a0aa55651f620be9f65

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    8e06e11f3abcbaa89124cef27f1b65d7

    SHA1

    9488aa32cf927d105161a47e57946a28a720bec9

    SHA256

    c0d7c086a2b846c68191e7827f566100bee0b0b332fd2c2365487df0d4dec695

    SHA512

    1093d3f12602f2036deefe302ca858091179148e203dabe8891200544db95685629ed0eb6c67fdf7c99218a6061c7692a854a9a9640353740b3d37042421dfe5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    b068a499d6756fe399c90029d82413aa

    SHA1

    969e707ce76c34ae80799e913c2b4e1b75ec0adf

    SHA256

    f5684e2873927ada1260170705dc54cda036cf2a23e31533e9363043e79e39fa

    SHA512

    a129566c383442269776f67d19ab16ae4f840e3951177b858ba54ee9566db25853549113ecfd8f60a8c8dbb9647ed40a9e1268b010d930af5451a52de1331837

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    1751b823ede8026bfb66d58fcdce8888

    SHA1

    937172f2271f7ace764e5e2f9936d26bed0a9ee7

    SHA256

    220fec7f2a4249a5ffe70a1dbbfe206f23025a3982296ef97b7923d03b050dc8

    SHA512

    9cbca032a24105c5e45f23278a9943a2d8593e7237b4587e112db77f1b2904fbb6bbd0ab7d87009206e725dc30504fca9355c70096b15cfebe8854c8609a017d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    f7ed2c8fe18c09fb43a02cff49aec43a

    SHA1

    d598c2fe02cfd9c740b2a5afb827c0d5e509f1ae

    SHA256

    3dc72f06aaa5ca5f83c9e7be9146fb9b1d513b4ef616c6d2ba2582f668f77ed0

    SHA512

    6d5c2323a1d9b5de09bbc85d3403bd7925d100eb8c312b64a287011652a275b0b45f44d7510283f427350346f53626d2231be80665477d2bbb8dca9af28d9c7c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    f14d1f2aa14414e0804cf94fab93cfd2

    SHA1

    b717fbdd50ddf9ca09c99c08751f389fd31fb577

    SHA256

    37f861bf3e8cabeda7cba79aa41bdc67f31a403fba201bcf5ebb84ebd41508b0

    SHA512

    83d1de10d9aa0a16d845a952aa653b9960e970df703473e75c24788a77c371d3489ba228cdeadb349e0a6b0a358b03ba3aefcef6e36d4d249bf8073c18f1485c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    cfeb766015e89ef44af282dfff765175

    SHA1

    33614088ae1a39d38e27e5b6a7f54078443f507c

    SHA256

    ba0cf4845104e30035d59a2675667460b2c9e52c3a7f495b0f7a925e3bec7309

    SHA512

    df14fe854401f4b2d117bdb2f604493342896f53f5238b51e454dfc1929e883d3a4df84082edada3290449d1bed96f2f4df3c2ea9645562ab2031b554d1e73d1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    c89f5eb2b39ffdfc2cc6d62a214dd63b

    SHA1

    97d7484ee15f9f77fb7515bf01e2a57a404552e2

    SHA256

    71e608596726a937589fcd18477dce7504e9cfc4a8185f3749da1f9f53fee388

    SHA512

    182bf27326e6cb955532873cda0c58a318581aa916e2af95283176c3753497324e91477c2cdf998eb21c31dffcdac762e55f79dabe044cfe8d3e6c300eac22c8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    fa473a394ff8bd35d0d2db5fb4e059da

    SHA1

    7bec54fd6185b9e6fbded4a67b9494efb3b9727d

    SHA256

    949b489e7523d4ae2709b6fbffab987b37923251c6e7bcdee6a6418048704f80

    SHA512

    7e2390bc6cd713b113c866ec0395dedfeda43224b6359bd3069fc74890788a9628b5055d844231daf1e68fdb0fc9a64438e0cd9084c35ceb335fce329ed9e0c8

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab80C4.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar8126.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit