Overview

overview

3

Static

static

1

eabe18dcdb...8.html

windows7-x64

3

eabe18dcdb...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    142s
  • max time network
    143s
  • platform
    windows7_x64
  • resource
    win7-20240903-en
  • resource tags

    arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
  • submitted
    19-09-2024 06:15

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    eabe18dcdb2fdc82b49326d156a30a9c_JaffaCakes118.html

  • Size

    25KB

  • MD5

    eabe18dcdb2fdc82b49326d156a30a9c

  • SHA1

    71eb92f57b5b9459725363b1f40531e7c7abb8fd

  • SHA256

    d7897060ee594896037ae1b76fe8d1ade27cb7573de40178c450c26cf05e281e

  • SHA512

    2f36036b34abb4e83609167b00bd47110f24b1e975c1edb10d3def3391ba856dfc8209f537803ef32ae6f9c572386977e3719213d5d8af0b5ee862ad2ae8fbab

  • SSDEEP

    768:SFzdsFqvfudlQVV1C5m1CCCcmzm3C/CnCQGCCQBlz2:SNdsFqvfug1C5m1CCCcmzm3C/CnCQ3z2

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\eabe18dcdb2fdc82b49326d156a30a9c_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2216
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2216 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2752

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    266a51b4b78e23d516dc39760e0443d0

    SHA1

    3e24fa5e88a80df30ad0c9c9f74bab81b24d8964

    SHA256

    2d34e5cb2c65e8f6573c39ac8dbc706c1aa6f036c15b3eda78744e0a12cdaa88

    SHA512

    b81d7be041c68a00f21f31138fe274288c4cbb736e0ea2d34edc73fc740270e1af4f43a596ed8c1254b18ed77b499bbbc32977165fb3047b44200a3640d0fcd2

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    608dcab021226179e81c3e3d0f0a5faf

    SHA1

    a8dac7ebf9984dbf7a99dde570869348eaf782da

    SHA256

    e3d005e5614b3e4e7fa0139257fbc6953aa88fcf9d16b8b49a2348588a072f15

    SHA512

    9191bbddfd040a36d2365c4eafa6e7b988c0ffac4e60cf875598d8c041284402cf3b25cac22737ddb23b844486eebc5204bcc8ea70438efb1edb836215e7ee28

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    7fb76fef1585be6e00c0b08178e57a58

    SHA1

    a0c7c9439f055039d35b5156fce4cd3e61123bac

    SHA256

    ff9688ecb62a2b0bfa6bec8145cff66b56d7b928aa53b5e34a63acd142e0954c

    SHA512

    6098f141dfd74796356d012d8a803303274e6da084e97240b538888de9d9a24c7934ce0a9adee031e8e0c13d0f4d29be48234b20bb3166f8a6b76ea8926715b4

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    22325d9f7e5a1cceeb7697aa3e898b9f

    SHA1

    a06cb3d12c4246be015da28d1cf21bce02f275e4

    SHA256

    78b4b3d36bd9a1bb9f07d318b5ab54a3b6a84ef1fef76c7a2940a7864b5c312c

    SHA512

    62029eee1e00585540145132343f83cd7f13679ba9585d731e48b89a095d87e2802fdf7edab8e722e94c56cbee0a343ebe9d5825a4d76bb2b7c260af274751c6

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    821a9da5c79feea9c42406a321df35b4

    SHA1

    d13fa98d60bc42ea74b21819ddcb2ef257cc4ee4

    SHA256

    e6d57d1433a60496747a2ce7430bad8263ed4d6f67291c47f995689c623e464f

    SHA512

    00ffd28e4b9a100bbf7dacc08ff54b5a0673b52c0d8655f0294291f483757af7cbd823d5f0cff16ed3db127b876ea768f9c2be53344e7c2792d43fc10f76f7f7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    43bef993a306f31178c90ec4d53f46a4

    SHA1

    bea3f666d85f615e71cd45663bfaf37e7a33adf4

    SHA256

    7c82d79b011c1ee3d196effe33315e28d5e4739cf40486fca7d83412f32d98ed

    SHA512

    12880a00e76a141554cc54eea487505e3e0efec09cf26affbd803b03a1b81e6724707f7edfe6599ff7367a71e4c3170226f5640ffdfe04946115f48b9e0b35a8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    83e970a53c07c3176117a53578332af7

    SHA1

    2afd4fbdaeffddeff60c481cf5349610f4844818

    SHA256

    74a52bbe4d6a430f5dfaf20f2fcda0238bba9527aa5b3c9c1db909af7709300b

    SHA512

    a53b9f8c5e6da8e66955f9576e557ec71c7199624dc4c22ec9613e6c9ec1547bf9b9cc6efdbdfc6a5b10b42820bd5e07b271aae11203a9135cad2679eca70797

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    d063f62e2294c70a9682b752ef7254fc

    SHA1

    6bae7498270f0047b038f08025d1701801701c03

    SHA256

    2669c7ccbeeaad139932efe8363c0c330b91f159de667e3604025a3c48cd07d8

    SHA512

    74d97b483a3c83d96f44cc8b8ffbcc36b07685a5c006bd0ae9d0d8787edb9d889ba8231bf1eaeef688ab052175e5ef899206d269ab15991bd7b7450e84fd39b8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    2cdeec55b9ecd3e00bbaa8795ac7963b

    SHA1

    8742b55317b88dac77c8fa76ecf69e7f0b81dcbe

    SHA256

    7e547af07a969637d74ec6332756142b453bc2bb138f4af8930fa54da44ca51f

    SHA512

    7cdf20bbc5f14f596b1957d0b857cf07ecb20e473401fe4d072d9e9b15efc45db5faf09ae26fcc3856e9f376269f6a34238a59a3fb82998392c03cc161a8c754

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    aecbedb03793c199f803e06149f230aa

    SHA1

    634146bb647cbf738ab1893ec00009a93e18cb3f

    SHA256

    c6b5fd0ae4863da32e4b1f0c50a5e2525cd96152bd1df10300436005770c3c63

    SHA512

    ef595f2069801b094da8bd8f5f1443010114caead880283a7854cb4acdac18b458fe83c58f5ff8ecb0b966119827c1d348575027aa033e1979dadcb7eabe795d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    e4ff08b58c3f78b0a10966c76e8537fc

    SHA1

    2fa3a2e75828dba50ba29040dd50cb950973469b

    SHA256

    d85d651c8043f39dac090d7a7ac61683365cf2270484e88a61c49ce313901a89

    SHA512

    14ac59254ac292b2953999743f1a227bc067debc36fc0b5513b2edd71395a64a3f48c7c4be82bb5b9067361ae1bdd5bb5f6d4dcf5d995c8a1442a1a604b06cf1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    a19325cf539ac0151de9e3b1fafd082c

    SHA1

    e3a47e902e6d744d7123b0c1ffbb16d673345966

    SHA256

    8ca1698c6bc368b16386cb4b9b01f13b44eb29a7cc8f673b193ef682b3b1d838

    SHA512

    74b76a08da66cd125edb248562da57db3c3968233d8e310b2248ca895362b8afb139af19f0ba50168ecf60e3b3dd1944abc5560d5ae0e29ef96b4dba3a9f6041

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    4999376a7f69082585e0e56bed2a6df2

    SHA1

    b16f70f65077f9dd47aaee313cde821cb629d000

    SHA256

    9a609816df7b7e034c2a6b54b4f9c673dc93e4e68a61623a2799c0a62f7fe16b

    SHA512

    4b322e3696970fac56bf8ffcb065f1805ccda929d83f57e135f449f90d6ce243caa3ed2e8ce07209fd039b66bc2ddebcf07e6f4bace0f22d1e3a2398caccbf93

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    28a282e6e09007a5c8d0b07e692e99f2

    SHA1

    70dcfbae30768a1a865b627d99419866e05757bd

    SHA256

    114a5a56c50a55a2df1599e3f0356d8d648f4ccf42d71f821982c32ac0a0d965

    SHA512

    f9721ae20a72a97fa6ff33a04aa3e46ab6018d0a53ddf8756d1a8a46fb30dbc7771cf8cdf0b667245c852e2214990a8282111724d9eed9c54d4e722939668a67

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    6554864eb7fc8b322e6145387bfcd789

    SHA1

    14e17f35244a03e04dc1bc2ca22e9fd2efba4857

    SHA256

    4da3a42ec7231987ab98394a0da35cc520b06423def84b21e830d737fd57d808

    SHA512

    b9eed62778684332e8c3a8a2d954e2480482c2b8e70a30c2dca4c64ea2fb2d3cb564b5fc085fdcb9bd2155cc7d053c2d26d6dc007760cfd500197f56e4eee14d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    0cab17839fca7c5624b442f0b539e999

    SHA1

    d5b04a56b69e1f5e64904104dea4cf9c3de62a40

    SHA256

    031019d1a8ac3559458bb920a86727ac592a5b03000d9ab29d3cb88b07d40698

    SHA512

    d8961b6eecff40b04aa224d9d695e7794dfdaaec05e2c57cdbb6b0260fea768ffb8e435e959f6102685b43188fb6fea65f93254d3934626d26260f96916264fa

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    ba113f65ea169a53ffbb95c7d2b2ae69

    SHA1

    f48c9cebd765bbb933d0ba6ba82f0084b1192df5

    SHA256

    8e3446192a18b1a785a5a486814d498c0e6227cdd5cd30db97345e64a4e281dd

    SHA512

    2cc2e178366b429fddf4e235ceaa2dd104fd8c3c797955f120d44b839dc54fdfe6f6297d75614f943bd71e43c5c40a9ba6559bb1de5f47d3e70b7237c4d63f09

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    7268c4ba97da3f08a327aec965139790

    SHA1

    bc42e52cfdad9439a50788a431e4910a88ef639f

    SHA256

    3faeb3a983afcae540ee16a3b1af4d0b59c1a03c737ddd2c61c17c03db2f7bc3

    SHA512

    542004dd606675eb20aa77b5f1a0274a6c40db4a95bd540439f17e4891fa0e40fc637946c84d56a84811bc04555869fd0fcf4c63594e7a26e22aa5442be52343

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    97b60dd9e80f4e7d5c379a937ddeed75

    SHA1

    087b259e1f76164cfa6e7670fd68cd556ca52560

    SHA256

    90366e01a7f573245f82255c0c5481a43e3304206c4e49bd20f79d828e4dfbe9

    SHA512

    5ba6c4a87bdc8bad8d7fa227b0d1c2fa019b83b71297bfbeeda71e2e5fde0a6db216c766c5581d7df8bd6829a262463461f55a2d84d4bf9b279e0da51ae6c226

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    b533832ca4e695e077ab8d7b7cdee10d

    SHA1

    fb4282bb9550b729ea926b30e6e1ec91e142f0e6

    SHA256

    770586700d2b6c103b5ab3a6cf42b30eb99f75bc03ed9659e4512a29f89512d8

    SHA512

    36fd735fb82f604ef3d88b6fdc5633f982d29b60989865a01cbd81f45b10a1cdf7af31a36752ea896a4028acff49962eaffaa854f1e57a3b57e032cb07ad3b11

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\8452S9S3\grid[1].htm
    Filesize

    114B

    MD5

    e89f75f918dbdcee28604d4e09dd71d7

    SHA1

    f9d9055e9878723a12063b47d4a1a5f58c3eb1e9

    SHA256

    6dc9c7fc93bb488bb0520a6c780a8d3c0fb5486a4711aca49b4c53fac7393023

    SHA512

    8df0ab2e3679b64a6174deff4259ae5680f88e3ae307e0ea2dfff88ec4ba14f3477c9fe3a5aa5da3a8e857601170a5108ed75f6d6975958ac7a314e4a336aed0

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\K3VL8XEP\allskins.min[1].htm
    Filesize

    122B

    MD5

    00d64a82ba2d055e5facd3a30efac924

    SHA1

    308e275068e3bec5effca608fe9df2008c979650

    SHA256

    aaa3feed097fda6687c7c27860c24980f3ff105b6f326d10c98854145e9afa6b

    SHA512

    1151e227086964ec19c11eb388ace411a56a6e1da96409b2bfdb5313fb5df75223add437a653decf3afdfbd2be2cde421c512f9de423ad74f2ebbaf81119d8fc

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabF45F.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarF472.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit