Overview

overview

3

Static

static

1

eac48e4342...8.html

windows7-x64

3

eac48e4342...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    148s
  • max time network
    148s
  • platform
    windows7_x64
  • resource
    win7-20240903-en
  • resource tags

    arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
  • submitted
    19-09-2024 06:34

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    eac48e434295bb402247763b6ccd6c12_JaffaCakes118.html

  • Size

    123KB

  • MD5

    eac48e434295bb402247763b6ccd6c12

  • SHA1

    d06b06ee54ce7bc90a6e7e327daf15156625987b

  • SHA256

    10a8962cc649b3b267d483e8e1b979f47622203e3de352d0cf55ac7fe5c3880d

  • SHA512

    5fa17d8b00b5f1af369c8d09aa2dcf4011fc6055cf0447aff190b58d5f71df9c689b7d234395bd333c424bd66981c9486f460807287ef6a3438181dee327065b

  • SSDEEP

    3072:eDV1eoPnz7Np1C+4/aAXt8hX1BD4dUPdJsAABn2hENvy:JoPtp1C+4/aAXt8CAA8J

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 62 IoCs
    adwarespyware
  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\eac48e434295bb402247763b6ccd6c12_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2440
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2440 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious behavior: GetForegroundWindowSpam
      • Suspicious use of SetWindowsHookEx
      PID:2772

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\05DDC6AA91765AACACDB0A5F96DF8199
    Filesize

    854B

    MD5

    e935bc5762068caf3e24a2683b1b8a88

    SHA1

    82b70eb774c0756837fe8d7acbfeec05ecbf5463

    SHA256

    a8accfcfeb51bd73df23b91f4d89ff1a9eb7438ef5b12e8afda1a6ff1769e89d

    SHA512

    bed4f6f5357b37662623f1f8afed1a3ebf3810630b2206a0292052a2e754af9dcfe34ee15c289e3d797a8f33330e47c14cbefbc702f74028557ace29bf855f9e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\24BD96D5497F70B3F510A6B53CD43F3E_3A89246FB90C5EE6620004F1AE0EB0EA
    Filesize

    1KB

    MD5

    ba9164eb7fff24bb8b02834a1ebe84ab

    SHA1

    d96530a6510fbf8da500a0b5edb4fa5366931460

    SHA256

    23aaaaf54e62dddcca4a36855a83dc28a070c814f87e251ae0b68e36f1a555c1

    SHA512

    ecbce18b9d029f6595165bbc1825c2709e689bc96e73a8fe2d20bcdf85813259ac138737679f17c3df67b8f155106c5c0655c0ed7daeb12030081c133cae2096

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\DDE8B1B7E253A9758EC380BD648952AF_F968CA97A68F4E6D5C104EC7FE3DFDEA
    Filesize

    471B

    MD5

    a8b199d725e204fa9db45cf198e23b91

    SHA1

    cfdb28ca6c3d4bf5873016fdc265d4d54ddbd086

    SHA256

    f1eddef6988eb7ef72df5c71df7e57aaf2e9097a8db30479c97c0417cde415e2

    SHA512

    b6edffbb3b072034f804845e9c373ade96b8ec6c42ac9ef819c68dbd2840f2a8728dda9710c98d56a4b59f9736342c46edcf1c646525bee6eb400a545d8224ec

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\05DDC6AA91765AACACDB0A5F96DF8199
    Filesize

    170B

    MD5

    c32177d202ed7f07677c21e9b85a55d5

    SHA1

    0ce9a0da7628ecb8f11cf33c3105cc1534cec051

    SHA256

    2259fb5d1d3b6640eedcb5ae8e7289ec18499291141bd80debbe407f434521c4

    SHA512

    c115e77dad12e085fb085a0bf7d8019fe71ab303925b8cfe31435b379d2c4d2c497ef0c36b4c6a19b0d09cabab71dc31357c02a36cbfa0653598a60703710698

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\24BD96D5497F70B3F510A6B53CD43F3E_3A89246FB90C5EE6620004F1AE0EB0EA
    Filesize

    410B

    MD5

    5784212c6ce98b8757fd77840f9ac516

    SHA1

    cfff0048a9ab68e8c8d554d34886c957e87a4846

    SHA256

    19db80e501498098b1a6998ecbf65124aaf24c47ce524a107fb89a14c49fca18

    SHA512

    376682d1dccef74a4fe0bd3ce66c7e33e352be9201f8bb2bc91010f039b8ed66ffffdd0888517dcf54c1f596c36e17a7ff46e0b0727948f26a3c88fdd9604723

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    dc90c0899a6fea76eee5767d883c719e

    SHA1

    1bb27e16c053a8fa5f895ee6889ddb1928a0b3c8

    SHA256

    fe3c1625598425c213a71d89547d90ee7693c94552c1f361b126aa6c2a2ca2dc

    SHA512

    1102ede157b71b44052e0bb170eeb1106d6d952496311e6bcb7a4981411e5ab31534444d8014949ad2e71750a3ce7abbd81676ebd66c0bf95c37d9c227b4c483

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    370b5008cee3e9c7c3e758eb3e8bec1d

    SHA1

    c148a559e553a699835cbe2dd8d94bd7a2d0e978

    SHA256

    8d5e6e1dae8f3a795800cd025a24cba2eb7b93d6ce4d4b6c01d53a973af1f4f8

    SHA512

    2e0bf03525ce3e0e57b23bdf844adc1e81158762a253eba496752104b25e03e159839cf2ea9e0e2ab8e2a8d09eddcc1b8e62a4fed772370be0a4537ad4aeebff

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    2829b105954b24767ea9ac558c87c90f

    SHA1

    f81038113931e4d5ee189e24c30d1c2e5877ab2b

    SHA256

    7df2ef10c9f5109209e34c9756d3bd0bee530552fc354c3cd00d5185e253376f

    SHA512

    c0bbdd9caaa6c75d54b419211f69f0e85414c8b1b04ffde3deb34e5140813f64ec54cef58b8f90439d4a40a9b48e50ec63a2db8487fcec5cfb3b56b49cbe09f8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    49094449be0c07126b5738e885fa31f4

    SHA1

    a56c443d62f34fec3e7193a5a3de407b8ed7acb7

    SHA256

    2a1e7a76ac568471ba0856ca1614b26d9a13674b4f60c148f8f5f1c8726f3b29

    SHA512

    e1a94599a8f1de9fefc55b45d100537a3748f3c891c962b198b343ef501144d24ad72679601bf57f730fe7bbcc4f001079a75692494c4ee93d11560f3631d3d0

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    5326644bd8355c17a71a8c2a1a508233

    SHA1

    9b3c4398b01a6a60f007fab16e325974bb53708b

    SHA256

    295992e00511e35a3e78391118348e915e2e9ddc3f7c8c9cce4bdeaafabeb489

    SHA512

    3efbfaf53343738ebe6140e1971a34289bcf853114da8fd332eec466fe4628faf807f3fbb0b41ac4b596cd0b0a41aaf8f2cd4ecef9078aa52d6b46341c1fa661

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    728ce000badf371b1acab8a21d24fc0a

    SHA1

    35f13d0801b279e18e5f01638712f15b4663552b

    SHA256

    313b0d59ca68e81dc8447d3b0fdc3f20dba13ae46ec58b269ff36aa595510a8d

    SHA512

    224b976d895de8ff7c109830056d7e502f7a3cee74bc8c6c8753452a37c4a4d850625fa5eee1abb6fec83a3397ee3ea50520aee050ce1464e06dcbd9359b5caa

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    bedf211b3b4e4765ac5092ff22f3cadf

    SHA1

    10d384025f9a0840ee4775812c2d926889c76002

    SHA256

    1044391a4a181b89ea9e4cb762f3abde84f7e92bd894fecfd42865859ad14d94

    SHA512

    bd50e28eab6c2680eaaf3fac66c034947b9d9bcf7ea8700360431a0d197966a2d8df412cdb54e3e508f03174cd7aa7345f6be19283490feb8b240e52d6fbb35a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    82cecfbcd6e1755036b9fb1052b15615

    SHA1

    01924db0b4f0f88902dfd3f15c04270572cbe054

    SHA256

    de2603a8981a11b6e38534becc9b981b20997489f30fa426fe8b1b7bbf2dce57

    SHA512

    a921a9be61c77db8a6bf16dd792a0a98ac329643351f8e7398e82ed389858d2970d096e6a324fa2358fb1cb1dbb53937fab09a10ab115c7ab6f9df2bfbab2d5c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    91f06f5570af7021e056fb97a9552933

    SHA1

    527ad23003d8e1c47c318ef5af075d6e0e8fca9d

    SHA256

    6a49813876f5e6335e0fa0a68f9d0b75e106f77e8a4f88bce8aceaab64b7f67e

    SHA512

    84b5c82e5a5425f75464fe6fff4ad159912c64ad04d83c78c6e96ba389368b2124a3150a1b466b40faa966bddff070c319e1d7c80b9afddef6c21e92f34e723b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    fc23c90541f47210a4b5b1cbe646a43c

    SHA1

    3840399a004484cda10b4aaa353b88017d802044

    SHA256

    0ff6ec8ded05ad1ac3b3748fd7e800f74125adfd2c8957fb615dd0edfdbdb050

    SHA512

    79fd09a7b0d37fbd34862bdc320ab6c7c517c7eb084e8b70463dec39a41fba6a8e5a03318d27476a7622b4f291ac76919d68565a60f5246b969678c7bffd5e8b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    8215e954b70c23e687b8fcf2aaadd251

    SHA1

    63783490f1504cf5d4336ae9b02e964d809b0c37

    SHA256

    6d84a27b7a3398b34690882135baaf0dd48bf006e2ba6c4c6343a91cceea950f

    SHA512

    6cbc518b7dd783cb4f62636d9769f1bf2fde900b6d42229c0786c66934e800d316cc4b214482b78cacfb7a30cdec6fe4e6aaa6c781d4d545c271f5b20f6d2261

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    05ce6d84958415716c582cf9a9eba226

    SHA1

    b5138227f384a2f6234e7e3d6d9099741544846c

    SHA256

    bf1008c5a5f1aa9ca6338a04e660e213013c843092595b9ac5cba7c64ea673ec

    SHA512

    f004372d81a86a60f22b2245d4ff681232360f7521542813fa61e8609fb805aa6fbf3bf3c1af844fe31477e96a189cf2db63adf3a9da603bf01edefca4f6af48

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\DDE8B1B7E253A9758EC380BD648952AF_F968CA97A68F4E6D5C104EC7FE3DFDEA
    Filesize

    402B

    MD5

    5ee7f4a5755ec98ddb3c70091729fbe1

    SHA1

    99574bc512aee7e61cb503e35753caa4c6ef16a6

    SHA256

    a98fd7616f679cf376ec64f25e8e9c9bffe3c425954c110cc3992004ec2ba64a

    SHA512

    3f2b3ea020424420803be23917cfffab52a924c2a6fe2da7a6a870a3274d0b9c80272429bf8ab1a4bd97cf5bad8c99ef688fd9ab9bfdc3ad6f57525a9814c238

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\UPG3RVHA\www.youtube[1].xml
    Filesize

    13B

    MD5

    c1ddea3ef6bbef3e7060a1a9ad89e4c5

    SHA1

    35e3224fcbd3e1af306f2b6a2c6bbea9b0867966

    SHA256

    b71e4d17274636b97179ba2d97c742735b6510eb54f22893d3a2daff2ceb28db

    SHA512

    6be8cec7c862afae5b37aa32dc5bb45912881a3276606da41bf808a4ef92c318b355e616bf45a257b995520d72b7c08752c0be445dceade5cf79f73480910fed

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\UPG3RVHA\www.youtube[1].xml
    Filesize

    229B

    MD5

    09dcd1d37e83ab88af61b715f6fa983f

    SHA1

    d74129598e5972dcd50f8f946e68da6ce9fd6126

    SHA256

    765dc738ad198a760d83016c80578b24728b5f96c8d3b155de3ef33b01672f94

    SHA512

    1c50ef136bf44f3d19915223008cf268759429838792e294cf2626aefed213654c735635225a146a75982b9beefc5781fea7d86743704591766443a91c80a92f

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\UPG3RVHA\www.youtube[1].xml
    Filesize

    578B

    MD5

    ac5386017b044887c4705f92c3862894

    SHA1

    f52563684dca84bae4d61d0e456a3b5787e07ae6

    SHA256

    52d625a8b8a95530b1b0b0c053aa1b6579fa1017b660a96beec3614a0860d5ef

    SHA512

    c5ec140bddfef6b3c6b58f3d31c2543687bc3a92f138ae92277376413fc177c56d10abfb5a1c26fd44cf0192b609d72376fb2609fada87dad45011ba8bab73cc

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\UPG3RVHA\www.youtube[1].xml
    Filesize

    578B

    MD5

    8e3b97a88b53d4d4166a855dbd342a82

    SHA1

    f2e96833cedd144eabeb56c2e767049af4828d06

    SHA256

    6848533cbfa70022810938bea95270ae37eda6364874bb0295db5e0d81d9dbf3

    SHA512

    16f7b802f36f964dcb65c85557af54ad07e128ccc19ebf4c61fd6668dcc4597f144e2080da33ecb85fc89b6130460b8f7fbe293dd25ec338d1142abd27dd1e6f

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\UPG3RVHA\www.youtube[1].xml
    Filesize

    578B

    MD5

    26bacc16372aeae6f94fe143e85d248e

    SHA1

    483af90857c7ac40f609eff9527a86472822d147

    SHA256

    471d0c390ed5609c38b007614da21c68f3e1bd50f24e496ce225ba692350667e

    SHA512

    ed92b81076322d6ead73b3e178f2601edfe699f59b2dcf88cb6c5405c0563097521e5892f4c7dbcb0fbfef14d482b691c3e8c3259530e75a44aef1b2d0edc8a4

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\ZOGPI1N2\plusone[1].js
    Filesize

    62KB

    MD5

    2b72da5279576c62e6e3bcdadcfb86af

    SHA1

    93255909ac2892a54fcbb2a4445ec1aff46cac55

    SHA256

    4243c6d726cd3e7056a4ee7efe04d9eb84ee713bae54f0374d6f8d71d0822481

    SHA512

    51954e78603f08d4eadcfb58593624100eb8ecff1bf3f7cf4c6c43b5cdb317daec90e6919a71f12e850f424e8ec7e0bf51a9c782beb5a3b7ca6a8c604a522872

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab55DF.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar568E.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit