Overview

overview

3

Static

static

1

eac6a16fb7...8.html

windows7-x64

3

eac6a16fb7...8.html

windows10-2004-x64

1

Analysis

  • max time kernel
    145s
  • max time network
    148s
  • platform
    windows7_x64
  • resource
    win7-20240903-en
  • resource tags

    arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
  • submitted
    19-09-2024 06:39

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    eac6a16fb76b6ac98e9da056871c024c_JaffaCakes118.html

  • Size

    466KB

  • MD5

    eac6a16fb76b6ac98e9da056871c024c

  • SHA1

    960e651639449d1302e6a9bf969a2be06265fe36

  • SHA256

    bbddd751bdd9da32020d6484345ed7427f3e3f64f7fdd2cb9427b8955fa5398d

  • SHA512

    5a8a5d93a62422e1b52533209b512dff0bc1c23b2d30d8daff586b0d1d4e7de098c7c6e9720121df82f95ff4866c18cd76bed5b6cf287612c95c1b62932a9336

  • SSDEEP

    12288:zU3G4k5QhL8atV42wOoS/0Ib+b+FmKgMx3uf9zShtc:cG4k5QhL8atV42wOoS/0Ib+b+FmKgMxi

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\eac6a16fb76b6ac98e9da056871c024c_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2896
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2896 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:1224

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\05DDC6AA91765AACACDB0A5F96DF8199
    Filesize

    854B

    MD5

    e935bc5762068caf3e24a2683b1b8a88

    SHA1

    82b70eb774c0756837fe8d7acbfeec05ecbf5463

    SHA256

    a8accfcfeb51bd73df23b91f4d89ff1a9eb7438ef5b12e8afda1a6ff1769e89d

    SHA512

    bed4f6f5357b37662623f1f8afed1a3ebf3810630b2206a0292052a2e754af9dcfe34ee15c289e3d797a8f33330e47c14cbefbc702f74028557ace29bf855f9e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\24BD96D5497F70B3F510A6B53CD43F3E_3A89246FB90C5EE6620004F1AE0EB0EA
    Filesize

    1KB

    MD5

    ba9164eb7fff24bb8b02834a1ebe84ab

    SHA1

    d96530a6510fbf8da500a0b5edb4fa5366931460

    SHA256

    23aaaaf54e62dddcca4a36855a83dc28a070c814f87e251ae0b68e36f1a555c1

    SHA512

    ecbce18b9d029f6595165bbc1825c2709e689bc96e73a8fe2d20bcdf85813259ac138737679f17c3df67b8f155106c5c0655c0ed7daeb12030081c133cae2096

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    fc6eee7e1672e14b6f7bd7c994e39ed7

    SHA1

    cae37efda86c1f7d4581f70b780c17fe13a1f7b5

    SHA256

    feaf29c9b0b00ac13c68089600b4568082e6c1778a3120381cc0e2ac08941aa7

    SHA512

    1966865eb06e6d71fba394e49f37a1c26b955b9d12d32ac5621dc9953fba349e27a51d0f44f1763acc13531d59f3f7ce848fdb5de6a11bd55e75a06f1777b659

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    76b847b53b8a9e360db7555f08ec1e0a

    SHA1

    690fe98c9861e0b8b4fc1f6237021e2f9f5907c3

    SHA256

    ce9b544ae023caaea143edfca2240b10d2c0409432fde600ef047c2430ac6191

    SHA512

    59dffe75a1a9001a97bcf0b6e9cb1f9572377870f07273df6c6cc016f1598e347137282d3d998cab04c13ca13983d02897a501575d6605bc2f1644284ce2a3db

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    4ac3b5ee2ce667f0048434dd2bba5173

    SHA1

    87e010342e9aedad120c8d7559ace9dfc2d5eb04

    SHA256

    e886d423a52de05221645a8e7a0a02b380d07e45f76d8a249eacc1a2a3e959cf

    SHA512

    0af039decbb31674fa4f00975dc55deb0d9b24eeee8133a163c14d3177e83502ef34ff18a3e728492d7123df28af5409647f9913cff4e823299566cdcf6ad521

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    a062ca01f750c35d2e68949c31d9e2ff

    SHA1

    a07e9c93ba811b3685eaa92cf2e87a06d8a91b6b

    SHA256

    b46e4edc525f0f4bff3013a377056250b66e4938fc801841601abbcc5f5756cb

    SHA512

    bfe52a78b01c92ca29a66ab28160d566db0a65c85544e3ece3a60ddcd974effc34a485004ed354f0dceae52627270db4705de4b5da471da476246804d9ecb948

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    601250ca34d6bca0ae843ac78a6cf413

    SHA1

    f9cadc651863ae53c196d816e3c9a0f5307561a0

    SHA256

    dfcadc5e4e98c18688b3373423089db1e9766db658704a30974fdef641d7eb2c

    SHA512

    d7d6fd6309db7aa2c7d2431a7caa710c80290f30f5d34cbc4f4d1dbe888e80c74135fbf1eebf6b0d9af41f7e210114c2f508d4050f66aae2ca8906683f0d5d3b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    a61b46407e54fb0d4c769f2bf6260f5a

    SHA1

    1da9441cf67ec99e586f8df49e488c3be9fd6fb3

    SHA256

    f43883ccd4fedee7b4cf3af6aebd5cf46eea83511c5db38c694b151d0f00c18d

    SHA512

    f9b112c444d9cefcbbbe1300522309c047e0770ec673812d01de5d0c50e176aa5e4f07a3bfea96a91bb74880dd5f4446bb07b1ea040962d794432eabf8c11422

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    3bab3d4bf7ca91ffc90784779f1e7a90

    SHA1

    b744d13afb12707153d658923e1179e7deb63523

    SHA256

    7cf1aa49e30e4a31695554a1f832b08d5bf3285429d504a42c194be2504db933

    SHA512

    08eede2aa460882243b4c45bf4c2d468e96541c2e8d257e70de1a5eb281a4f4da7b0684545d2311fbad08ce81a0e0afd47ff7032ade15be46bb1e3a531ff6bf0

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    bb6bd301b3485e129e6e099eced146ed

    SHA1

    5278158d946f89f50ed79197bdb060901740dee2

    SHA256

    6e48d7bd1bd67dee874ae2fa0ed336d27eff94271d937a267db43aae2c4f8d55

    SHA512

    744d5911b10b98d9384723eb964507c034eb672ff77eceab4e16ae3f671a497378e758900200e9242c21531671dc64c9ba3b4d13978721eb0ce88c5ef92adce7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    e2f9255ceb366b0114afbbba959060f3

    SHA1

    fb4a2dec444348339f09b8249af8454513619cdb

    SHA256

    6b21d5dd4529be0892dd5fffe282781a17ec336e48b200ae071d74285f3e6aac

    SHA512

    91da237c9ffac3fcc8a2d52ada1d509668677968d06bb5fa92a0903ce52802b3584c738c40f037be65a81bae13ffaf3963656e8a65e620377dc930144cbb712d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    ed39df8d955774ad87f43e75a7958ebf

    SHA1

    2493f68f8891163f65f61878353aeb2ceb64b16a

    SHA256

    0b6333784fc5c6656ac549f3166788163d66d0194c681547a8d02c7636b30afc

    SHA512

    10716e33dae2c9cf2042296422170b92dded605c9288b50ee36d82481cf0854a9ce9bcda68b78daf285267d443d2addd46c3e6f887b46d5973d7ad35e80fb610

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    9db409c2fee75e3cd2a4648f73fdce68

    SHA1

    eb599e5b87ef9e819d97fded1b3d547a41f656b2

    SHA256

    0984b9c64b40b1a4f28163cff94c20f830daf04613144a784168d25476d67833

    SHA512

    2b6017add16ccd812836e57e4150511925b000daf0b9b90a53cc8a0e350f55b54d8f2014ca73b6b544d28432eb5cfee0a5f77cec7022ad1bd2a356f4a79eea3c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    66b4409417ab18b2440b996a4c3f5eb0

    SHA1

    3223431ea325b5b3cc56c327cbadc37cf189767c

    SHA256

    4837b19b75879aebca59dba42d2a3e97b294e88ac39f1dc6cbc40b9a15104edb

    SHA512

    ab43cd063fdb273115da9448b4c3acd892819a91bbc0672dda9933f17b4d1f1390b937d6d583ee2eb611fb9389d8bd85ca1531d9d820bd0253ab1431531ac11f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    eb9c9e918cd86bb70ff8115314a2c7dc

    SHA1

    4ddbd674fd78f27527ba80872362c679589bf81c

    SHA256

    5342d887b14d7d6b215e13ab73ef592627fd2fef7fff4148e19ce57c64ad516c

    SHA512

    19b9fd836d775f405b6d0270c1a9aa4a77e93c841fda681643cb41ccd2853459f1aa7226acd7daaefe15a95afcff12a991cd501871c5633cee21090f0d7fbc63

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    ac340e00a0da1b3f49071bd89f1c641c

    SHA1

    ea976d185891f7cadea331345e8dfa0cb68fc043

    SHA256

    ecabedf9e98b4e04e9853cafa32d2dfb341329fa14475567ac6c3ac8fbab3a7b

    SHA512

    e48dd9035aeb27d36e32f2eec228c41212ee628fbfadf328395ce6facc8f5d33a0e0688cce4618a5bde814c888c7ddd15bbbee5d63fd53c856a46ecc8947bb4d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    5de8e4366298637dd9ce4b9b29cae920

    SHA1

    27f9c5b440e8b96ad731f3f393f71ac32674cf76

    SHA256

    e81c3c91ccb96ea04de734c7e0aa98f04a3b0ac862a900528625dd28f0519f90

    SHA512

    dc7f692ac43b420208c03774f30e0807ba09aa62b2256ec81dfe09ac87726a94e0c35137982d481510ef95d75a25e3357b5a4ca1f74a61495d2ce0828ff8501d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    3b89778b0d5a372b31d3169f197fd939

    SHA1

    dd5c10f123f5c1e0586e282529f8807a84887a19

    SHA256

    0a20d404c84d69ce1ddc2b00557fdf1ef0975bdedca8da9a75e5e1c438208de2

    SHA512

    9f80cc025c5a939eb705cf028f6fa9fcf8a9277d2399e3d0c319afb17ce61985ae1323561c9c8dc87413135c989447c224548f312e735a4c988fed51a95b2fed

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    d8a3b067bae05029e98af5837b32c100

    SHA1

    12e91140ac12b26d5e5554b7058b3230c375dac9

    SHA256

    7b2534dbf36e320bc60931fe41a1a00e9c21045093649f3deb53d0fe7f3883ea

    SHA512

    5e840bfc825200515f074013b81789c9c0f6ef018cc17845e70f8006bbecafb218f8f95abf1c53a28b6f0d785edbcc461fec1e422314072441d8846d7846a6e4

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    70ea3b6cff6b7d2c2d755a71b965b0a8

    SHA1

    fed210d258d37dfff151e81f5e56cb2bebfb49f0

    SHA256

    671cdc895f9ceb9f034abcb3e5f6e78c4f96829743d4042b16696cf2f441353f

    SHA512

    451efbbd9ab47fa6acb044e2d47c947d32e7c92d677ac061281dc623427d26e59f55e78282bac6e66454650cfe85c3becb7cf9882039306e3602cfc34a72fc0b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    b1f73dc5e109819f967374b54226ccef

    SHA1

    e60b86d626dabec2437dab9a992d203f40629ed7

    SHA256

    7ca627491407867902e018125d4eca61bcf00d0fe26e519628baa414e7bf1376

    SHA512

    ade4c6baabb8d46bede39c70c907189221a30ba32aa7eb4dabcabe9f4e33800f95a708fb83602f29c40028b9adbd9acf16c56fc7784ef44c31c8e2ff06f99324

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\0I0VVMWQ\plusone[1].js
    Filesize

    62KB

    MD5

    2b72da5279576c62e6e3bcdadcfb86af

    SHA1

    93255909ac2892a54fcbb2a4445ec1aff46cac55

    SHA256

    4243c6d726cd3e7056a4ee7efe04d9eb84ee713bae54f0374d6f8d71d0822481

    SHA512

    51954e78603f08d4eadcfb58593624100eb8ecff1bf3f7cf4c6c43b5cdb317daec90e6919a71f12e850f424e8ec7e0bf51a9c782beb5a3b7ca6a8c604a522872

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\CXRG2YQS\RKZL3M6Q.js
    Filesize

    157B

    MD5

    67e216a27dda24bdcb086c2385b0cb99

    SHA1

    17141c80f5d32bec3691c5ab24741d8b7dd5f0c6

    SHA256

    9dc433b2142d3ba0803fcffa53f19d34da26996d20c829df6d694bc887325dd7

    SHA512

    802319543dc64cb011bc2684004e878a842b73aa55e4da1141ccb8650cbf42fabbf2b46c730760bbfcc7a140e11700244b9f5da78bafe9fca7ec7825c12b4255

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabCDDD.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarCDDE.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit