Overview

overview

3

Static

static

1

eaca85e9a1...8.html

windows7-x64

3

eaca85e9a1...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    136s
  • max time network
    135s
  • platform
    windows7_x64
  • resource
    win7-20240903-en
  • resource tags

    arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
  • submitted
    19-09-2024 06:49

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    eaca85e9a11d50ac6e5b94125e113f55_JaffaCakes118.html

  • Size

    23KB

  • MD5

    eaca85e9a11d50ac6e5b94125e113f55

  • SHA1

    d0fa3d53a8ea616bd99f36abb3aad253088c1440

  • SHA256

    fb4b2f5a641a818f524ec9ea00b38cf4d481c6e57f67722546689596a81f680b

  • SHA512

    0e77a145ffc468f36f437400c5cc864a8717d05a3a6b3e709aa2cd8c78fab189c571c8f7ba316496d7969c6b2ec008c82f23837ea7ef3c98d33602e0f36f2b11

  • SSDEEP

    192:uWfMb5na+nQjxn5Q/xnQieUNnznQOkEntjbnQTbnRnQSCnQt+wMB0qnYnQ7tneYb:DQ/nug

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 41 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\eaca85e9a11d50ac6e5b94125e113f55_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:3060
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:3060 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2744

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    21430844cb4d39f1124368e022303853

    SHA1

    0bb5dbe1d59eb6954ac10acda71df8cabe722969

    SHA256

    9cb9d5198f6b4654b87c41d06686abe51c5f211dcca690b35a3ff88bc82df41a

    SHA512

    e94aaf169ed7766d229173763266834590cabcc2b2849a02c6fd94f77bfb5844b0aa107246b2de147c7e88e11e849564dd496d299f83c855fefe4ffd1f3c00ed

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    7df836ffe888cc6c2d1b98f293b16009

    SHA1

    b1ecb017412302a18436e88cddda93e08fa94499

    SHA256

    188fe50964ae51ade16f8e3c3adfda0189265785f38fedf484003047c576fc48

    SHA512

    d462d5fd34e1669034d7d1eeff30ed948ae1fc78bcc337262d3baa7558f6ed5cd1a9292afe5a91e6dc66eb6e5c08fe25c55b933f8c24b89234dd6c92f419df40

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    b19cc306d240dfa0b3b3717733a84608

    SHA1

    051aa7296ecacdfb36a7ee08a606237121e515d2

    SHA256

    e8fd10235de83c470710ece13fa644524adc540fea8064ff1fcf0b4d77c11d3f

    SHA512

    4a2f27155d9fc202109986fb9dd8c8e84717357ef4b02b9203da822c1a86e6c25800d5dcd80a9631a41e923f032c0fcfda1d03dddc597b4155b21dbbcfa2cc11

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    b3dfef2871ec40452d71726f20e7b35f

    SHA1

    b88c3947f98d4244973e13614d1298bbcae760bc

    SHA256

    5537da51dad4a4adc9b070194e8eaef9d95d94fb6a34d9c7c58e6760ef2a6d9f

    SHA512

    4cbd8c3ff1ec14731d51285e8a141bdb593430e7590564f94a2b2bec284039bbdeab9b6a3328ae59d734e576659ad2be1b9ba32d1d725603ef20dd5c79d72cb0

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    821f055cc117ee58f20d27eb39c58c35

    SHA1

    212c81caea610838a9d13812b816971327148f3a

    SHA256

    5be10000f2095663e06ec7735583674ff32e64c3d0cce2cb8e283b865e49be99

    SHA512

    594f770e0a29b199b526f08d01a627d7414fbe0decc9ade5a569df1bfb83defeaf5b58474bc5b9cc1bbb91faf77f42c4a49148a28015bbfed252c9302cea5f53

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    dba16aa6d8e3845c4fff12d6a4f10109

    SHA1

    40ef355029f549ebf467b5a4668de49b5311a14a

    SHA256

    95312aac2cc30843a9f597b8a8c78a7a9f0065908ed848c45dfbafc029ab970b

    SHA512

    6486b39f86a21a155cfdfa38eb297f8cd81a9172bc423ecc1f9358f7ca552b4da572919fed1655fe5ab9c5a11751a9cdbbe83e55785d5e2175a8878e26d95fa1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    816173195b623f1a364139cd37c551b2

    SHA1

    2a8bf49ed304d6e34def0001b5a18af24f141b3e

    SHA256

    54bc452298f226f62b2a9357b432a07af4beb3d8c6c8639d9d1c4d2fe8c92a52

    SHA512

    ab6c5c4df5cb206245e71828ddd94ad59f1365e8ac9fe86c9a5568a87271b8585c68fa594f0cdd72eb1d865cc7f3f97002a2bfe2e5dd8370015380d0160acda9

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    98280613b57e9cecdec70f226c12a386

    SHA1

    d276fb08832e81186bbd39af061b9d78ee96687b

    SHA256

    95c0ba2b3e016c10321482dee775decca88cb8ffc463c6459bd20ffcee51fadf

    SHA512

    3c866e607f87836e3b58504b321bbf5cb23a93a36b96a994986c21978e89636a91c3cb30e486392ac9ed2191dc9d216074cf9264b2a0cc44aeaf2bd5aa915584

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    5ad6f10aff364bb9e299e740a24d3deb

    SHA1

    cb02540e927dcf8367fee2553252a84cb55743bc

    SHA256

    701c1741487348376557805aee33c925d4bae3449c7881ffff777755bfc22709

    SHA512

    8f91ccd1cd8a6945149e5a56fc730de856317aacd0b4b8e725c08f179ec035d4c2678d1d70cd159a8827d2b2fe39a636357d8ad06dae3b92d8c5852dc57ebe70

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    60bbd7ad181e5e8d9bcae52eab77872b

    SHA1

    2825ee9bfc109b064602b984cce96f29f9fe2feb

    SHA256

    aa7d0622dd8add3c0fb6c05b16b15a2144124ceffa515008e4e9317c48709c69

    SHA512

    944181723809a7cfbe990d4c8e1d756713814e33f724fb663c50a43b54fcd0c64fe779a89c353f844895c6402d1a2eaabe72cff869994e6f7042a9198438599a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    4b8dc29997c29b219542064ef648c52f

    SHA1

    89810c270d06f62a0b69f69f8627c45f96cf1078

    SHA256

    ae357d4c2b5740681c72b355e8245f501d921c7d3726ca0294302cd927f4eae3

    SHA512

    377ca2d56d95dfdb80df01bcfd7ece0af14e17050efdf8b7226a4eb4ca8417dd7fd56ace815d096a5771bc21666814b6418248bc968ef88ddd16e8f2e8521a41

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    679f4aefe7e8c1e4fe487b9895d51df0

    SHA1

    a654545162753f3a083aa6bb28f09c75e8549af7

    SHA256

    dff425d7b710474fcca705abb6149da105e83c4778e91555ce81dbe1f96e6af0

    SHA512

    acad0e3206d602692d31d3a3f82ebded2802a323565cf433dba6bbc01d2922d87484c71c04df59b96508d1d9707d676b3a62a32d090ebf2019d22769ee320b3b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    56798a0147c8dcd474c12becb3ce30ec

    SHA1

    231e12f2efe58c659255dd0cbf0641a73db25b5c

    SHA256

    2da557882a5f05fdde8b4c3dc52238c7c0106550f84180e5a03cf27dba10141f

    SHA512

    2d62dd7c48a7cdcb7ea3fa9eada2f3e9c02d92983906b3783631ed423664dfc6af7d6f40fbefc5b993a7c3380728fe6579d62e27214f39f751c7c0d5d0677635

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    7f81e90bfa3d6716f44095f4fced38d4

    SHA1

    6f0522e098d42072b0067bf25ca0d5b10cf9fcda

    SHA256

    d57ae3e28e35846b10ea75081f7d756cb6e7769ca8c7ad16ff2e66313ea9c831

    SHA512

    9f22b789fed03213e773d050f046997806af744440d858bf84b6513309aadc17b5c0ca45be435c8aa7acaf26e43a65049ee46fbafa3d55900e1e75983a8a29ef

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    d54a6b38c39232a3c67937fb25d1f124

    SHA1

    cc849c0c4236e946c7df04a3a148bbc954f03f9d

    SHA256

    9630aeefa563da809c2677e1662750c42abbdadbb5d3daab53fdf50aa563de80

    SHA512

    285a2ceaafbf3a3fb403cede602f214b04d0c5a020f8d8ca328686f8b1c5515fdb0eb1e95552109ab56c640b9257be436c3a9d81891a7eb6f80bcb2dabf5ba96

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    c06b1fcdf63fda0ce87c68910af3eadd

    SHA1

    66ca14ab0759cfa5eb6d15d455a61e1499831a73

    SHA256

    97223eeec8d722c5fae5dd05eee0fb5e1c748400cb4beba3d7c0292f2e53738e

    SHA512

    84a7e44ad085f50a11bf56241b32258bb5441a606d0361217f98cbbb948a879b24232376bf80c99dfabfd3174db3d26e01714624f6890cec73202d558e0f61a7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    cdfc0581e1f4de9f2e4ddeb9be519f8c

    SHA1

    65d0451c8773fa9457fd5b3b16e35ddb1e41bd1b

    SHA256

    cc7c3a8d8587b631c0493c35a30c45e2fde97df051062cde7f35a169b5083764

    SHA512

    4586cf4568b7190f6fe6ef2b3c51cecf5f5bcbb8c61defee3e0685f16f2050b23442b176e3b6b1047549e6082ed05ae553b5d18b648f86068d16d544f2b87a93

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab169E.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar176D.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit