Overview

overview

3

Static

static

1

ead110c5a1...8.html

windows7-x64

3

ead110c5a1...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    136s
  • max time network
    135s
  • platform
    windows7_x64
  • resource
    win7-20240903-en
  • resource tags

    arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
  • submitted
    19-09-2024 07:06

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    ead110c5a1bf356ff7bd5c153d36a537_JaffaCakes118.html

  • Size

    26KB

  • MD5

    ead110c5a1bf356ff7bd5c153d36a537

  • SHA1

    814a0d877c421f6ff40b4180ecb4e657f70f9012

  • SHA256

    c483dfbc720216bc9d1214ed154d4c75ebccec3f6961d5356bdbc89fe10b7d16

  • SHA512

    0a74fcadc461329c057d2c70df4194823d37359799f238c392c3887ff6c115d6a361e3666348bbaec60de9f00d404ee20788f588a80be6caba5dc9275263be10

  • SSDEEP

    192:uqMDzGb5nQinQjxn5Q/nnQieONnAnQOkEntx9nQTbn1nQ8CJVevo7NtBFo+NzQ4q:n6Q/tygcyEsr

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 41 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\ead110c5a1bf356ff7bd5c153d36a537_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2876
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2876 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2684

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    b32433b2fc2ed2c37e60cb86df3e4ee9

    SHA1

    0d41781cc5210f49634c42ee94018269dee9fc38

    SHA256

    fe7428a02cdaca195cd317e5968f10505a5fc0a851c6cc665c548a2fd376ea06

    SHA512

    ebdc02ef9607ece93368cd0e1a725f09546f4f1a430840171e277797e1bd6793d349f38b7b803d680ba819d0b4232a996b03fd3f0ed2fa60e432f599f9e6dbdd

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    c1accdd30d3b5fed8e3152dbe941ae23

    SHA1

    171695d008f3e408a43b9babd04ec6f985b0d253

    SHA256

    416830546166c82485f25dc020f25cb5c824a786bd8f44d5de09d2ec71dd9cc2

    SHA512

    42e63b986fa7179f5b5a78cb72b9f61dba1f0ed6ce15595a37fba96f976bec6770c7382dbd6daabb6498383aa665f437b7583316210e9e44f74fdd8604d2c251

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    1953465ac9c6f6e374bb303e20550f15

    SHA1

    a764e06e309f581095f68341e906b0f34f2b73da

    SHA256

    4aba8a2d67595031fec6de25c6fab2f3cd876d791b0f1e30a05a7e6de511e8ec

    SHA512

    412bc64867b1d4ac4e0579789011d58502cc940c9f5dc657989e6d1c47e8275c8c37fd784488f7bb9d2df4fb191c6756666e0773168dd61ceba4bb95233bfb6b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    e3b783aab4ad9b9848f8bcfb64e004d5

    SHA1

    72beb7bccd0607eff74d05fbd28ad69306c49c3b

    SHA256

    ca96a69fbb44236226f1e137dd970c209ca3e9b66e366e1a7bca23ad561e7f99

    SHA512

    c64258dd5d3f31456c0317a456d08a99203666ea85eb74e8887a09eeafc8aebe26cbb7f61681088c447ad17e373eadb24c4e86cd529a454593b0ac074252af13

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    b581ff2727dcdcdb04249cbe68f00ad2

    SHA1

    03555167588579d33281078a2de587e68b323085

    SHA256

    65ea37811dace707b2a01962306d7fab7b29e0ed2a45f34ae08000426ec8fc99

    SHA512

    5992833860c1d6d96b0ae2803c58effa36cf4779d2bd67c453885cb6c5d0f8ec8d42fce4c606d52e2752173b42a56ad20eb4fcf0a6b276742a4754f5ede47e17

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    541c27fa27ea2307425fb413cf480188

    SHA1

    3007a74f77ed3692351afb96bfa55928f57d53c9

    SHA256

    25a47d68e0518fbc1044af243a7ad0955a8e47bb7af6f9b80843c06d7cd44a30

    SHA512

    496e5d850ae79e9e258803f8c342c640cf6aa0df6fe823597e9f2f004b3924f358c7a7b445194cbf91d81eae00aa1373d03dbdccfab523837b576bb905346187

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    44c11854e15212a71e64ab2f82c5ff3e

    SHA1

    bfa81445e975560f73f34f35c265b0132bfb00a6

    SHA256

    7634752501cc7411af05962c348c80a33b785645071c792e419f8738a18627dd

    SHA512

    bc88935df6cf342f5de62cfdb34b5c56d8c8e0424ea44b53d6ccc15604459b295f723766f7c9485ee93ef19f2c789a92bb63a17530d8f932f733de41ae72d6df

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    d71f294febc3c534761956f2cff24083

    SHA1

    a842b128b6082773e7db6f3ad0fe933927fdd585

    SHA256

    b9a3882f3fcb5e3cad6aebcf429162c99c69f42b568fa2ce2306c1b41ba9ac8e

    SHA512

    ef7dec2a2a3537ccb97033d9d35f9b4831ad274f7fcce8eecf93d7b583a5f7b404700b3416f03ff72ec27ac9fe8d8cfaea6e784fbd20aa4ad93f4620ca8da5a7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    8a8b8f75719600f3cfb6e5b719212add

    SHA1

    84a16f352dbdf68ddc21b9dd28ccc3002dada6f7

    SHA256

    157e2377aa878e9a480d62e765f3fbaa5b446f3e89c44f25c344235bcc3c443e

    SHA512

    a08d53e4f80424fd16bb95ff728483ecfd40d67b7d09065d543436ed42efad893f82cbf8e06ea147bcefb13826caafaa0cd01693e8e30ddd8dc6217e574e79da

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    5829f9b4fb1a630ff1f641d9c350c218

    SHA1

    a41500c7649968de4238653f16a961035d35c201

    SHA256

    51b88244334232ac9a73e73a9add1819deb15880173e517a730c8212fe309604

    SHA512

    69f9f4aca85008742dc886334ac0480c5de4b5b1f868f840aba67190bad28bed961a439c6644084b33aa56544bc032e8a191c010bab5696208eccf33db64dc02

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    ad54a9bc650f5da83fa89e4052c1ad16

    SHA1

    4f4ac73aaef593e91cfc231c00fb3020fa19da68

    SHA256

    5f12bb432c50b0d05939bc783f29328028a1e3dc25c7bd7dc22dcbb986b77562

    SHA512

    e3b81d5ba6343692395f5e5a3133f4808bfb7059605f5628b845b2aa984b8e079cd3523caf7d6718eb46e76d6e4fb8e249de95b5e6ce9e48eb4304df3719c0f5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    167c4fdf88aa6fbf474ae812817cc7c6

    SHA1

    7af4c7bbac4c16553308f0955c12244cbc015181

    SHA256

    196ff22280fafbf1942f8f864adb8350bac3d6c9339d329fc84a217ca291c1b5

    SHA512

    a96fdb642eb66ec438db21180dfd5c99f908a85150f36a748f353820e2e434186e91933ff98c8dea43df75481ed4576a9989d72b11c84a78acbfd9e5e2e38408

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    feab2ef7a96b2c3fc19a44daa275df61

    SHA1

    c31beb166f4aa5f8ba4383a9be43d255bdbbf47c

    SHA256

    044e1843f10fc21d0307aafd434c5904b89cd9d838ac0d574bdacfff3beaff63

    SHA512

    158dd6ffeb1b31a1a9dd69673962b8f2c6ce60fe677112bb6e74df29eb91c25681d9736aa03f8276383cc2073fcc8d016890eb175ac64c9b76582eb8a7191380

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    13a16b73c7b0f7451cb2dde704adea92

    SHA1

    61218721532112b80284ebb409ad57c44e7514be

    SHA256

    6e21112b004a570ed99d3c5ca78a0416c10900394082a8a7f8becd042dffdb6a

    SHA512

    8c115373f43bacda49caf796d848fab6428f851cdbf81e9199f78e69310efbe7940e6f7470b9b0ad3543f10d7c778cfc47459dff654713e8e3644e4678fe6b5b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    27f8de5396d60c679f1264e13e0d84d2

    SHA1

    f34c05fff95087182f9a63be1a99eabe1f7f87e0

    SHA256

    86ed0757c7a15feaea25e5c2a6f45d11fcd4098be4637be1162de1540d7c29af

    SHA512

    534f84f8527e54a6f2e97fcca64d73dccc403b7610dea43ca1481be7183b68794247ef5d8fef86d80f2e0b0cb8b950073d9511700fecb30b1f39d60de2beac07

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    201c898e3d0e910708bf8e6fec13b023

    SHA1

    fdf02e60209efd4ac19badad3e674cdac3911091

    SHA256

    79cfe24af8a55a8647cc597606ad00c8ac2bc6d88b277fcbbe4360b6d0374c9c

    SHA512

    f63819104d1ba6c9026f3c474b079b0b23cf5686b06d267eacca78b4a691c1a906322003e89da6286a37a623d93600527b2f75ba9daed8be9c379f28c0404737

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    91b752167cf79d2a94bbaa90c3ddf5d9

    SHA1

    e8a62ed953e09ad7507be03b76a97a646514299a

    SHA256

    0afcd1a3fadb79a1e555fdbc70822ef9b2eab7dca074287debe149a1d0a1eda4

    SHA512

    339e8dc147bf37d6c4574ce4ff9400e3044f80ddd7152131bf871765aaeb0d4f440c4734f8fb5a020826b06e8064b4eb8b6c92c4438841708c03618487082bd0

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    96ada04118eeb2d064d851dbea4156f0

    SHA1

    fb311b11d02f67838a3b04aa62ceefff8faba9b8

    SHA256

    de95c16564c59add41d3a31403037ee71e7766b696b99198af986f91a354e409

    SHA512

    3e77d25204289ef54d881b3e52fba5140b7a9e5cd1d19997c4a9b19dcc6dbe24cc5da5abf04f5a5efc358062de35b2d88f11daa60c39d3092d0908d424d11586

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    014407015e7ea0ecbabfe902b5943c4e

    SHA1

    a2ad43f52e475aacc8ab389f2cdf94839bb13517

    SHA256

    eb15d6cb982f5ceaec334b496642135aeeff62e451c63cad341af3277f5c2683

    SHA512

    44dd77869bd55e12fdc1f9923eca2f291aeeb908afe7e68d622b4daba222b8dbea9d43d0b624f7f509b3275b05bcd3cccc083236cea59a5dd038184c59b6506f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    9d52c3a983b2965d069b18df93f87487

    SHA1

    2021406237223dd310b3aa754371caa56f493935

    SHA256

    14c0ac0630beb562017bc9da1cd383fb6a7486685c5bd1bee7bbe4876a5b3250

    SHA512

    1bf81203dfefa5307180a5143481640e95e46bedb0a1d02ae6dee86e2e845b4f372ac948fe6da3eae00fb4698dbc528f63f73f552f9cdf6f73c8f44e11540f88

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabAD14.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarADB3.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit