Overview

overview

3

Static

static

1

eab9ecf779...8.html

windows7-x64

3

eab9ecf779...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    117s
  • max time network
    128s
  • platform
    windows7_x64
  • resource
    win7-20240903-en
  • resource tags

    arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
  • submitted
    19-09-2024 06:06

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    eab9ecf77935bd19361275cdb2da7990_JaffaCakes118.html

  • Size

    10KB

  • MD5

    eab9ecf77935bd19361275cdb2da7990

  • SHA1

    c5bab840dac9f29665894d8510d0d6c891a52eab

  • SHA256

    791c9f357667ed4fe88deeadc9748e11d36a60bb8f6efc25605b9605bd771670

  • SHA512

    cb9cc58d3cecc2e864c5ba3cbcac458b226dfb3bf1039678121f2f1e49f7ab9f9230afc25e52c9f01150bf9a95e71231cbe223273ec490e67efa64b8ebcfd8b0

  • SSDEEP

    192:SIwb6LVEQezcuNwSF1BCv84Ffc5it7xNc9rhaoClnl:SIw0EQezLqSF1B484pc5it7SrhaV/

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 41 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\eab9ecf77935bd19361275cdb2da7990_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2168
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2168 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2920

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    8ae4eb4e9f280d58523d92b45a652463

    SHA1

    004f44875aac4a8fbdce4963b45bf8492c438fdf

    SHA256

    3b5d75faac54c4dfb6b96f1a6e3daa6b9abe94f7c037ab6b41cfd2a5d3af4556

    SHA512

    e542326e5404625fbf67cab0576ee127dc2daeb43e89d1fbbabc34edf282e8f921ab9ff44f4dbff5413c2422c683855ba845e7241029096b370a051e21512455

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    eb6c25d5c7437f0a1fe1d7b0b84d2f33

    SHA1

    4ee28de2d38447dedc93674378531a93e0b8c7a8

    SHA256

    67b5040294e96725d7bb36e26741910690f107313b46a6421d8c590c4f468838

    SHA512

    ac8ea97ea674c62ba3929dbc7722c313bcb946f0b3c89e1986a7af1c9ce68d1a55befa036be3deb5ba357559d5421990fed295afd68b35a90f5e9fafd8704d18

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    fda88eed946f1e0f811dbb81f543dc8f

    SHA1

    ee5936c489919a2fe5d4965f501128973f0a60e2

    SHA256

    d1f0a4b23092b0ae31f6d23300d32a0afc7d2c4589f713ca1e9ee74157f43c96

    SHA512

    b4c2eedb346ac1957d87c36d30f42da5b59d1a6d3d2dbf9b75186697a6f8f766b6deda30fe7ce792a93b09fcecea594b60cc9487c3d285b3527a07465b5463c7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    af1dd7c2ccfc7fd520848ea6c6cdd5d9

    SHA1

    1243cdfae157f6dd879919fc653055cf446bd784

    SHA256

    8df46662b4937a482a5ac8edb92bb82634e56ad7e8c929c195420f042d21ee10

    SHA512

    2509f86d93498b3c38b3f96fd6cd0a5c65384bab3d4322ffc1ffe779f90de1b8423922005b040ac8c7dac6756abda982741a353d694bc44108544a07200da7f1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    bd4df2ab9d626ea20306d0f59b10d3eb

    SHA1

    37339f9922eb924811e7b95370ad5a18618b1d10

    SHA256

    20908321acd45d380725e67088fea42d0ab8d5a335c30f4eb6269fcea3dc0104

    SHA512

    a93a13ed35cdb41d97ec9b07e265fc079e90a098d94282d25a5dd13d1f1211091dac806636c4a0fb9d5f1a40021450952a5b4d0893178a5804dedd859f4db6cc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    a1661b343009f6cd070c2b201add10b8

    SHA1

    6dec454eb050a04e100b0fb285f95ff602c483c6

    SHA256

    1ac510b144daa771fa584425ad90a36b487a9e0daffe55f038d3bd7d3b9eedc8

    SHA512

    ccdbe114e46c957da82258d8b90860ee1440402e46023f157ba34de7f30862344e7748c40a0c46f5bc94f16ab8a698008e7b8b725a597693d83bdf33f9c2f1ca

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    e4f8807a4c62031a17ddfa48978d80fe

    SHA1

    fc18de999db44f74abd9c6ead8855941847a05d5

    SHA256

    043a80b62d06cbe5c8e62edae4301c8cd6892867eaec23d2bff8fce575bd4b35

    SHA512

    6eb049dfd39cb477dc47ffe40c99bf426aedc675714906e1f9330b0093df5436f7a266285201748dd1d2016043beee0e7744bbd171db87cc81d0b6e8d3069ed9

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    26e2431703d7173c5e888b4cdb70cc51

    SHA1

    ff9dd1adf9c365729d95db33a2c09d3352b0d0b2

    SHA256

    119d3b45a52f983f582d3bec0cf87f06e120cdc8094f2f7a48af60499f8437e5

    SHA512

    4a8a1a6eb2137f7466e3a9a0999903274ea098949bf0ebfd8a3f10910342272f26c377e8870262578115449008a6f5355af96d719e0410dc499252af47ff1790

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    6d3860de90766005afa1ff2015450743

    SHA1

    7f73489553fcec2ac7f49ffaf830868a3f3b331e

    SHA256

    11d08278d17f1f4b60efd9db28a8c9b00473d8732a82c6e372e9442390a22d4a

    SHA512

    caf9c19aa51e45fc5a37211c8f665550629850c97b9f87f7a6ee919dfb871fdbec4abdcbce7873b9c582afd2d9434732ed467f1b638cda314b85180ddca9e79a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    968daf6b8ecd3850ec5275a92032fd73

    SHA1

    88bfb7534bbc8c5e9bf65904ccee65aafc9661f8

    SHA256

    19c4c84a6b338b8f35a38936b72f36c445fea40e128c4962ee9d0baeeb843f4c

    SHA512

    4d96f09d4f7b778972c89677cb483b68a29388bd29ba25b354c0bf31d8853bf2f7d447b28bd87664e1001ae3eca0814fcadfc92a0072d5fa11a6ca639cbd0ef9

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    019285379143ad3369a0f360091fb840

    SHA1

    f9f38681a53306fa0e3648dc8261bd45d21c8207

    SHA256

    9a9265841cc0e00a8c93cd38e0daf43be37da415c92d1352b249f3e8be117549

    SHA512

    dad31b0a0528e4b32cb4b6cd7585c29b542dc9912aefd1cc8b245865f4554ae3b2971376e2d64c8f7413e5161533a64598d72427c1bd1ee09bdf74449239d053

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    c1db54096f06459e22b0acce0b696404

    SHA1

    8a29fc92f9ed4d71ce0f3d0513942fa4844e1e2f

    SHA256

    cd248fbe8558675a078153cdeeb5bdb61f5ddcb57f2a18706271386b452362aa

    SHA512

    fbaa4354957a68612c6c33ea299e89b24f5062209c0d986fb2e01f464c5124e397d34d5fb70125c39e283dde30f7cb6504545f51efc1a4e916b98af61822b315

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    2f9edad56918c688aac1fdeae1c531de

    SHA1

    4911f08e81b54fcb2e05362ddd50bab573d35a93

    SHA256

    d0f4692231d33b9683e367a131438d87946f525df70a15996bbfeaeb8b7d8a3c

    SHA512

    fed69c8d14eb5a47cf2032bc3bb90c0a842a6519012a0f208e4b520bbf6e0fe4ba25289dae09a20c17c1890712b467ec6b418f11eddc3f9418b063c44a9c5396

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    a5a9a695cbe30dda4784016be2d33b22

    SHA1

    e31a627593f1febd330cc4e25fca082d73564ed7

    SHA256

    b09690c01d27de7ae07db3f5a381ff7e5305a0ce86cfaebadb25fc8df3635cac

    SHA512

    2b06b1d31a581e1ec3e2d5f251bef15784d694fb615ab78e1f1dbce4c27f99f1fa8933273b2edda3249174125cff5e97bfc5ff540bda2330954c3a76ae9ef15b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    fa95ed17ef1f4927cc2059d6456b37d1

    SHA1

    3a72710591e2852b5abad0f8f7919f2a2e967a4a

    SHA256

    c196549ef942ba79894239e7239286b0f4608d5600536e083c1bfc4b605acfec

    SHA512

    0724767ab72a2802dbf1b962d9d7331c0c1df69be91cc44dc5b8c1efd63eb0b9079a68d1e1af9543426c65af42d2ce2c8b99e1b8ebf27f448a9685e9395f719e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    86baf28fe70da5bbc8028c4790f74a34

    SHA1

    17a3201a8a4d1975ff248fc97c389a3f96d56046

    SHA256

    fead21f01932d2e94df623139c7f9263f4aa7fe171f70b8068dc3edb16e60f96

    SHA512

    61950d2fc2dca3ebeb3aca368ba477117d2a47a9c2f77a157703004368e66bfa975c13457e6f9585c39d481a08940a2decd98506cb427ed4b47e632c6c71bfa0

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    baac5dfea1b9c7dd918f3dd4b3047ce0

    SHA1

    33439f80354b63792a9ee8a2b8c8351ace4eeda8

    SHA256

    6d3c6f78694f76a42944ec7ae14f07fad7f2348a8f9a7d296c3cc91df9cb7be0

    SHA512

    5133ba8a4a1a7878f41b66c213e60cb6780630390a7ed2f37063d83effba83136ea9ead62e2590f3fa80fe06d7fd39bf70dabe735bb8f15301d8f5f5ff67f195

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    34c037e5b68ec6a447dcde7d6cc8e255

    SHA1

    8699fca17e05fef3ad35d19d1cce066ecf9b2e27

    SHA256

    ccc080d99b20b437f20b66acf48d1b2c1aee4e4ae16490fe9cf5e4b68dffc204

    SHA512

    9b6f32eb06df3e81aae2d12c24a1f5335d4f4247034a265011cb5b9287b40c10d062919631da0efd6f214eb86de3295721ae7ebb2ee99a3863f0e8521c5298b6

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    84c1675afa6f9ff378e85dde916e3b87

    SHA1

    d94f503f9bb11b8aca0ce9972c31d7188e764c8d

    SHA256

    7058ab802704271ec3680439597f8a1a18d2c610d3e8a13f62d69e18d3656cb0

    SHA512

    a02eefec458467e8f6135f20202126df71c4fa9f0da7075144f33cc773424b9bb201db617c59ccf09d559c66eefd67bc142c1a4673a53baf8f901204212b3bf3

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabC9B6.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarCA67.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit