Overview

overview

3

Static

static

1

eacfcef597...8.html

windows7-x64

3

eacfcef597...8.html

windows10-2004-x64

1

Analysis

  • max time kernel
    139s
  • max time network
    122s
  • platform
    windows7_x64
  • resource
    win7-20240903-en
  • resource tags

    arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
  • submitted
    19-09-2024 07:02

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    eacfcef597f632ba5d9c1beb34e8cc13_JaffaCakes118.html

  • Size

    175KB

  • MD5

    eacfcef597f632ba5d9c1beb34e8cc13

  • SHA1

    e8d15b5fdb122208b96f088dab46a7d159bc48e6

  • SHA256

    96bb651b372393c7aae79a19f6e63e7147737db04e68f8a98efa330fe5048649

  • SHA512

    0d2032a841942c40972808d49508a9832ad984a9e269a35b08d8c460dcd7a5d5b97b140355b705b8357944f861198e6f3601a3372b56fb98da3f81402a80cd1c

  • SSDEEP

    3072:2VnjyfkMY+BES09JXAnyrZalI+Y5N86QwUdedbFilfO5YFiM:2VnGsMYod+X3oI+Yn86/U9jFiM

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\eacfcef597f632ba5d9c1beb34e8cc13_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1904
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1904 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:1680

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    0eaa0ad25c059f0b613cae8b4a3d3100

    SHA1

    ea4e606ee7f6626c3b1bb3c77a1d9399692483de

    SHA256

    b90418d309c3c7e2eb93d4eea20b6e2cf8e54d3abd2c4b65a7d0de96f07d8599

    SHA512

    f4710c6c328591d4e910c2d4775c702008fa0d2cd31899192fb20a7cbbec88322fa2789787441853518d5fcfcc99d0734339182f39634e691b368ea9a9879c56

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    6277dc1ba383d25bb7c017acee8b1c74

    SHA1

    c02de295b6c35a21118ea0fabc0492ddf41fc568

    SHA256

    b7cb8a000a48b91fa2a40c73471cdb253af730e4e6106d25cf2452f7b4feeb3b

    SHA512

    927f43ea4e9d5c6c441877696b1f9ba6c69bc2e74879096823dce9016bd1b17d8ee7dbbd9e2ec99078798c526fbf2a84f85bc9c378f840c83c32aca0109085e1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    273618bea7376fd00027589a3c447da3

    SHA1

    ba3045a11f4ea2e9c8f6b44d8f210b2892313112

    SHA256

    08001155287fdcb82315e6f333faa2ca7d373499be45a4b36f3cfe2b2e73aaca

    SHA512

    8dd17e0bd0b30d1ffa68f315c84026b11b6dd4af54bf8a7d6ca053da3323f723d7938be44fc59973f67e1edad158d10092b9e15fb69c1ac9f884d4cc30d68bc8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    586bf98a49898dd15e5dd5c764fd43bc

    SHA1

    d391c736d675635c9f485a1802aa49f92f25ce37

    SHA256

    bbd4ac56df603068af41943707a29a2cb9d583d79f837f8442b01252a5963a8f

    SHA512

    76d17c3d5f3140102027d0e1e2deb72bc567602440f1809197869e1ee4d1f82bdc2b47c7191e6c0b41f99b3c8dfef866362f200f26c60350de1629f5fb1a765b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    7e0e0ab5a0bae85751b005f23c9fe24f

    SHA1

    cc2d1fd2a4057dc70315c6bca1803166055d3a9a

    SHA256

    7848f978d0d7aa006138f636e207d42365a00acb371087e69c6b4dc8cb0831c7

    SHA512

    998987d8afc00759b7f7711a27b5f82d0dca63d080f651cbdf3bd541f7db1480467529e1757bf2244c6b84266ab5dff6fad2918a80a49ab5b06f9bb92140e145

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    ac36a5147cdad30d00acc1b5a4e91efa

    SHA1

    cebd0b747990124fdc5e3b0b9e412531d1900995

    SHA256

    f332001ce31421b6d8ee745d3001c1d6579abd64f003c7fa4a59009f0da53a37

    SHA512

    d158af3c6eee3ed0238539338c40b6dc39a6250584737c621e0d9a381224cba55d24af8df5345dcf93895f70ebcbd40af021dbd899f26aaffc730a64c5d17682

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    8a517962249358e7b3379514e85bc595

    SHA1

    0fa6b3b80e7324c5d3439935fe3d30b9dcbc42df

    SHA256

    1ca30c32afafcd11435313df951021c9ca4ba7e2b21ec033493df013060ea579

    SHA512

    fef9885dc98afebaaf56a6baf5ebdcb27f736ec82c7284e39b35345f2159fe43ba312c913a0cd45ccb083c24788d10879035623bcb659358e9ff8d562fbc1be1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    4f559dde5078e14c010dcfd11ed4bcd3

    SHA1

    8102e8a062c2b876c477c960233c5d55d6748015

    SHA256

    ffb206f5243d29fca8e43362111e15db55d9edd83aac4bd4cf46b75bb02dfdc2

    SHA512

    c207a0cff67e8b5a52dfe032db3e17a3ff6bb0b5d4530ab0051308645f2def0d13ea98fa785e63bbd8c9d76f643476787e29f73dcaf907c1ad8c9dd67f6eab42

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    e48528517c98fdec11451c7787d14343

    SHA1

    d5d3a7f0061df8472c4ecd1c3524303b548bf8e1

    SHA256

    54220f7bfbb3bb99f3bea60459cc96406685fb4fc59c61a960e07d7e2bd76755

    SHA512

    c7518ea6b556b05792bf839cb3278e02999d95b9d958b03e350ca8b42eaf1cb22f7cf6a3b631f6f44dec3319e467a363d4d9e989738596f3261aeb9dfbceece2

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    439075d809f2c332006f5e91af076b0b

    SHA1

    3bc6692734486dbc463e732edc3d55f0b41fa929

    SHA256

    7f7ba509752cc6113dbecaf96a99f6c593677502b702c845f3410f3f5addef8c

    SHA512

    c4b2cbf032471999f6c82a9012855f707ffe1870cda687c6ea7738fe5cfa47b6d5246979411c489c3b5a8420fb0f6263f515793098d561c63d79cf8f55ddd546

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    f551d781d9c830f79e4a29292ebce1a0

    SHA1

    658756131fe40eade432658dce17c388ad3cd5ef

    SHA256

    f462dd768f3f4ce9cd090ecd57a930f573330088c88a3881ad2d37492668898c

    SHA512

    32746945b168de2fa6cf483aeaaffcb3d6cf60d22fc4cb0c38a3aa9d3a6b05f2bc40e6397769f0f39615213a638f2d78247cbaa140aa159fb4b23a005f7d8e3d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    72550288502e757f57bd98951fa2d6f9

    SHA1

    4d4308e9a8544a68e85246e1d85067767995febb

    SHA256

    43ee09038761a8134be700f5e7b94a439d3b4572ee37ad475eab40b33991f3c8

    SHA512

    c150eb444c6f97c23088bddd202c2c2f8ee68ab8ff960cdbd2da36b240b6ae3fdf20d37728bf584c7c068577d494d0052788c168674261d1ee7bf6d71e92645f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    d3ba17435b4aa23000c947026ae4fa56

    SHA1

    335f48fe08057a8da6d952867d941ff114d59343

    SHA256

    e354b05562a0894ca0344de110a5a1a33f4affb314aff9024328717842ec736b

    SHA512

    633446961c173cf32cfa2f8b7ccb56addb4a959828b532539c256ff509cd2b03d3fd4bf8c290c654e47e274fb5aea518a2094ca3fa20b9961dcaefe3f30c0870

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    0acb297a2d2613371b52f0758bbb582f

    SHA1

    c1a5dab3e49d96548df0c5b639ef388a818519f1

    SHA256

    d94da7beadfbf394994be4feb95ff5e57c16c436b24246e7fe37a01bdb61108e

    SHA512

    c8204df806b1491a9c7fa3037cc449255997401370d41906515bae9ec7da94ddb17b107804497004cc6f1d68f52b0ac3d51408bd1dd548969e3d76b0601df941

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    3b4b52bccca45828cf893bc84155573e

    SHA1

    c658abf779823f5aa44d172b0db08701f6fa1121

    SHA256

    0b41603af713a31537185f460eb20536070eefaf837935a80000e95be357dc44

    SHA512

    cf6d030e4955476c2091ef2148646dec8d31b30635b49f1232a3ecf67b8f27a14e4d497e4ba6d987795e9d5c1b6712b087520aa1a502c838f1de0c9ad79d99c7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    b26ccc951090c37431e2837a299d9f0e

    SHA1

    9f56e66112681ad520e24de191f0151097bbfbcc

    SHA256

    d2a3d845af1ff1b9bc54e4cac7b7f7050f2722d3150e732dedea7c7b2d799ee5

    SHA512

    9840700e8659ff81963c269aa48ebc10e833a94b1855cfbc79c662fdd02fbe3817676d45b6c2923cad912f2ee1da230310f558d2d3d2e4b4dc4cc5c9b6adcf96

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    18c44d58b8a9f5812be99c44bd1945f7

    SHA1

    b7c88c8cde10367f3cc8ad97d36a733f5f01b2aa

    SHA256

    0a811c4cd8e6e78d1f809fb1f24f4eef556d81a8f5b4755bc08fad199794952b

    SHA512

    93c44a603878ec89308ed2008dac1738a62a501fc4638cf1d35c90107ea93bd5a0efd88285cf26a4197eb09aeca68698f261ecf5bb86f9577cb7af175cfbe26e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    e1fd1a6d83ba412ce7d19b45203218ee

    SHA1

    f5151c01faa803dba911b3331cf2c4878e0a7cbd

    SHA256

    4429c95440b053486b8f2009a79730c8f4dc20e4ffc94d03e1e8d7cb21429aa2

    SHA512

    58cf69707ec6188169f03fb1beceaeef05be7730abf3a556ae97a374ba721b161c9b7c3e46b38ff46e2ebcf29aea60a9302b747f166daac72376f670ae584798

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    0d427ac19dd5bcf696de33f8cc303c89

    SHA1

    3871a035a5797ec4a98b0febc2413b26a41822f0

    SHA256

    9bf600b61b8a2ec664f0c74a99697442699a6cf20750ab901e5a4a4b0f265df3

    SHA512

    ba6d2b3fac48158e5d042008d47c5522a18f9a7a677565102fd34d534d4f327272ac4accdfca9896a75f220a5b2af43eaeaf5c3772e371eb337479fa431c2c06

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    811ddce3c6e81f0e87b66db0e823dfb9

    SHA1

    84b33e7a3b9338dd0d5004e0620a9cdf05abda44

    SHA256

    9c5a75a2421515f62b3c148e254fe6b9795ceb8b4e3abfe95f9efb981577cbf9

    SHA512

    effea72626c02d2285c398eac6c6836ea041afb6471bc83e1a029f0af35eb4712069f0fa94f9b6739c488bdac342c08b8c51a2ff9bab82f691c30aab566dd55f

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab84C9.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar852C.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit