Overview

overview

3

Static

static

1

ead047c16d...8.html

windows7-x64

3

ead047c16d...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    136s
  • max time network
    122s
  • platform
    windows7_x64
  • resource
    win7-20240708-en
  • resource tags

    arch:x64arch:x86image:win7-20240708-enlocale:en-usos:windows7-x64system
  • submitted
    19-09-2024 07:04

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    ead047c16d1d3f45e3da2175d5c73d9d_JaffaCakes118.html

  • Size

    158KB

  • MD5

    ead047c16d1d3f45e3da2175d5c73d9d

  • SHA1

    67731c4663449ca170f0dcfb42bbc85a7b7f83d5

  • SHA256

    8820609a0b4ecc4c387061253c4eba9d53c39597457470ef3882810d6d4ac46e

  • SHA512

    0b0194d20767d35c60d908937fc613d572df1ffd925099ee43a2ad78ddb42485363ab694eca4cbc60e80439da8db6acb126610a13b065c3296493cb4a305f34f

  • SSDEEP

    1536:ShXM+XVgUldOEyLi+rffMxqNisaQx4V5roEIfGJZN8qbV76EX1UP09weXA3oJruH:ShJFgkOEyfkMY+BES09JXAnyrZalI+YQ

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 41 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\ead047c16d1d3f45e3da2175d5c73d9d_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2116
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2116 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2564

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    a3dafa0327be82ea4905f1ffe32ab6dd

    SHA1

    14eb6359d64164e99928904db072cc878e9a4a56

    SHA256

    299ae878611c4bec9a7c049329c0b7cbe26fc6483593c00e0afb16193aee4078

    SHA512

    9a2a9ccec64d62dde96c4c5107a8fa1e151a06aa6bdbfd6f366fdf35c2b215a2626a7a9ff3bbc112c329e2b5c9434b34be78009a3a7c6c35d600e92e743554ea

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    d4fb81abf72551634b29d602a9365b3a

    SHA1

    2d066f5339c99d5885d6d1ad44f32098a2a3b394

    SHA256

    73c8d7e2b62e34510ecf54e4e4eeac7ddf0b96b160c5b71b24b0669ffdcd7408

    SHA512

    d0032563e0286be9c445ad72f2d9ed7d690f5a23d6073f9c9b0881fa2aba4b0f5bb808620d1c11f0b7af8c7a1b69186d020a4d4f3006f548f7ae7c0c62f29c33

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    a9d74309189fdb7b067e3236bb90fc2d

    SHA1

    bc1c24e82df7c547f4ecd67d519a8799de8b2f3e

    SHA256

    27b569f5e537eae5ad92c114fabb0027612c77ec13e8afed16ffe3d8e1bebbf4

    SHA512

    7c563c6d8f1c0c8eb3f074e8a9636f3f147b419b232ab4497ac618a42a8b41d56018df341acb97825e328b81a637265daf2a40d24cfc7a440fa0525dc4da0bff

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    32c2b44324fb3ec00655ac9be5ef320a

    SHA1

    65928c7d0bf6edb6ca23344aa00135df0c8d8573

    SHA256

    98278534057ffa603a789820384583474e17c510ff5b9066ba7ab311902a07ed

    SHA512

    5a610d6a1655a462a21b4ae857c2b5d71486cc8f2139f418e054769154e221468efda0732428592754ff3f1dcce167418fbd8e4f84df05dea8be35d62c17f52e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    b9087c93e69c7f8aac1ed4eaec431801

    SHA1

    c962d4d0ff91fd6f177d82c3ca829d7c44c5ba2e

    SHA256

    0145928cdfd5a96bf0589b0bbe293acd08179fe83e7642b821b0ee7eee7af2c9

    SHA512

    608e6566ce3f0872baef175548814c875603120d885e5af06fbcee010a08614a797e1100c54ab28f0d2a02f775b3e4f0e19928b2c64e16eeb6c5b8863837560d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    ac1f6f1c187e8ec2b2053b5db78c6246

    SHA1

    0333a74bfb5ed230ed39678cf4443019c9ea5f27

    SHA256

    b525359b7317b32bcb5ad8ae87930fc0db43ef62f452899c250cabc37851e79e

    SHA512

    f424fa6958af1d4f6ee8c822c9c5b2837558f8414ac83c5b0006fb9465a3779a10315138393e5622c0f16b4bc7b6252861945757a50e2af80391aad242c88128

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    1112a4e75d70f2a53d094f250d21286a

    SHA1

    3265047ce93aea10eb88a1bba9a53552a761d36a

    SHA256

    ac49f448fcf0aabda97b0bec4f0ec389e99f87ac4dfcf5d1d04ba01e37cdff3d

    SHA512

    259a1ffc5c8dd8a7b6a0c9885498eabaa069de25a5892f6b2ba42a5603dce81e4c322eb02b90410dbb7eb4c6c33b8e72389c3ac872057e4d87bd7a8e6c6714e8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    e7490addf296e88f31ebc0fb740b4929

    SHA1

    94e1bd280a627479eef2115c18dd85eb23bc4b52

    SHA256

    88f8526e9b857c45a391ce42e234f88b2fadcb2b8a99ef0b0015c1e9a8237f05

    SHA512

    b656be1d444f265b0e3d4f7c5c0ffaa7979abb8e3741f65f578a5acba0862415c94629b12c3cd12a9ddba0ed86c733f6413c720abf24e12953504034e9d57600

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    70152cfc3b662d3a983b398e9e50aef7

    SHA1

    848d1ae88b382596f98a162242fa3ec40179eaf8

    SHA256

    2d5e788d6bec203dd255763507b84de0d317574b327c53a67ea82c7421158b03

    SHA512

    259aa3ae3f5839c0946109f04452210d98139561c8b66d351e6884d82ac55ea897800b131c49e35fc621bbf3e8972ca7bb6f3273dd42b7d6e93a60def607eebb

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    8e99ab0d3f75b50c30571322a2804c2b

    SHA1

    094e60ff34e784769c3763037159b6fea02bd5e1

    SHA256

    a619748b85a2fc0d9bf0f6055038c2d2b91f0bdb8cb01e01c0b7cc6f2fd9829d

    SHA512

    8c4914bff3757a971f1e86b214d66b925d19a0189fdd2119b3b21a09ca7877e53a5af832195117f1b9939a9d2a64f19259fca91b56b51c8c059ed031d9e6cdd0

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    abb8a85763709910f91541cc537f5d8c

    SHA1

    25205755a604be86bb97283576e2c5acccde5b98

    SHA256

    2142e3333dd7a0ec5832fe8e0d0c707a283db6cec3f1d88f3f61d136c14fd9c6

    SHA512

    6452893c00a429b4c509b3dbf3398f05aa38666276f192d8dcca5e930acc824c70d55800e5e158555dd23c42a194855cb34518ac7d385d178083036df58f545c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    25038bcf672ddbdbad16a333ba64b1f5

    SHA1

    95dca55b6b90a94e28c2ee25e90e1c38f5211100

    SHA256

    779b3b57d5b36a6f054a1dd3ccdaad6c92302ffcf94a02b03e43f6690c50fc59

    SHA512

    958d2aa76e8e5fdbea8c9e33b5e3cbed7c3c971254d761a79f1a5295243a9a580a519d222b8338a676000f50367f97acca2a7aa884c4e96ad39f885e3c006ad4

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    33cb64613089f54420b619c4f71c85fd

    SHA1

    1b3b65d891ee5d6baec93ae985168450c9971632

    SHA256

    6bbae8a4df01366b831c78a18e15f0da1cbe52f5cd5ebcdbe186e2b3fbde2278

    SHA512

    45fd2cd851be2900c740a48c54284a541c1c82c7ece80e2e429edfa97f6cb0248a2b8f19ba548f4dd3ebdb2a69c430450fbdf55e8fdf24ad9395c2f547413fff

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    2b6b8844ba389a8ef240d9b53b2c7ac4

    SHA1

    89f811d5beb79d793fe29f907ee4b34aac8605f3

    SHA256

    6c91785853bbc5b6f31a8e0526ed3a2855230e75bf8187e72c0a745c37458248

    SHA512

    eb8d7a91f24d2c57473a608ef9780e61897bcec86188fd3733a239664acc1b7f564f0453ff217fa2da5701bdb094db28bc72a6b5cd2aa047d9b003a243b4e1ac

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    0cecd39eed4c32ba380d39d8c66e14b1

    SHA1

    1cd827a20dca8a817b34a62a024974b53b6a9279

    SHA256

    15a65617d5492e1bb40be87a786534d7a18eee4d85a6dda4c849f05d1b9c9f2f

    SHA512

    fc0138379d72cbafe2a5bfe621146fe3b47d7fe82716ee64e723448e93e80a27e61d9e9b3cfdc357f251e1f1af46829d772fdea5eb53d06cfc887bc96be941b0

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    1f8efadfd87321c2728d543088b68ef0

    SHA1

    723eb787e19c34befe0790b7d17f7fb4f3cd432c

    SHA256

    a4ed3044e457cb5debc7b0731eaa01ed3cce3e6825dcc38888348377315c376a

    SHA512

    0d9571bb37d786e16ecf52e637a9c173c74b47ba17777ca10965fb844eb5644e509b907bf842532d682856de2093e53350e7fa5d9696b49618f27ca8b593b2ef

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    f103feeec6d59e472da7420a126d8e55

    SHA1

    856966a87680725e1919305453e06bab28b4efa4

    SHA256

    994f918fb03f31bc49518a92a925d78bfc9014dd08307b89eae93f1839f18069

    SHA512

    7d52520335f0817ddc83fa5aecf4d0eca21801ae14f126d3d0f20b5fa0e0620a825cfa89c879c783786e96f196162b52923e85e1ec6ea2d69c18fd3f941e65c9

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab5BB.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar66E.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit