Overview

overview

3

Static

static

1

eb42641d65...8.html

windows7-x64

3

eb42641d65...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    144s
  • max time network
    122s
  • platform
    windows7_x64
  • resource
    win7-20240903-en
  • resource tags

    arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
  • submitted
    19-09-2024 11:42

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    eb42641d65140382f24edb414a745a41_JaffaCakes118.html

  • Size

    139KB

  • MD5

    eb42641d65140382f24edb414a745a41

  • SHA1

    7ecab6ef45265a5b10480d480fbdd608d0d97b78

  • SHA256

    578d91b59c7708d4f9aca430b1b4d3e3d29e3b20039484f12dee965e0eaf47f7

  • SHA512

    4fbaa435c9b91fb5210ff54bb6d56f7e9e3844650ad41b9b01c323039c8c0cf05188d85c330e391ba1f08899a2474b13ddcdb610eab3816e10b6844bfb89f0b1

  • SSDEEP

    1536:SgvZM2g9ol3yLi+rffMxqNisaQx4V5roEIfGJZN8qbV76EX1UP09weXA3oJrusBw:SgHg9ayfkMY+BES09JXAnyrZalI+YQ

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 41 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\eb42641d65140382f24edb414a745a41_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2352
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2352 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2148

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    791abb334276626d8d55271c438ac0b5

    SHA1

    83f9194a83566026f9c42aabb2fbc7c613b63559

    SHA256

    b7a0532f1104583dc69ac9af22ee9f2acc3eb1d1900ee7f5ef07f3c44dd26ca5

    SHA512

    47573ab67524017a2c317bd10df5e66112888b38e34694bfdf518c43f08718df72749fd21622e0a07271abc9b756355a93dd0d58642c8d65aa422ce3cfbdf0f9

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    4df5046b93b6d9c1ba7bf100740cf435

    SHA1

    2e1992be3ee10fc4a040fbc6f3b775bcb9ba9b28

    SHA256

    5d85b00b1195a984eea8962039b8a9b5e35a3daf8a6bcc8c7ecf5b093ceece01

    SHA512

    a64f271b23cdb24c390f55729a8e35889489b97fd1c79413d683af598852e15c50eecdc0746909ac8bc5d8bc0017a6cc365dd21dd265abf5cad226543b8ca766

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    76b39b66f771d79e1b549cac92c1be3b

    SHA1

    a216cfa6ba4142cf46053ac372b8d702d59b7fe7

    SHA256

    829948c12a49ade481c8aa0ceb4faff36bf7a7a60af7d4d836b29c1c5cbfba4a

    SHA512

    eea25c8facfe44cc15c6266fbc1698f475057e2a3012a1afdff15f443de4dcdd53fdd1bf86e80ace3d85ef50c7766a9b8ca27df711c1a15b62367afc9d12112d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    b509715699ad9e410524fb0f0548b6bd

    SHA1

    639362d43071f0a4c3a42245fefbdeca90323dfb

    SHA256

    29e3cb88ffa40a54f39b369acd411e47a764d4cd16356e64b26ba10237b523e8

    SHA512

    e12357546c8ebf2b84b20b09ddabeef6a0730e83ddf16d0898e74f3ca9886ab6d626646b5f15918a482a48fdf6ace4505b7868f899e5b3df4114142773daeef1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    a980bd5f62bfc0e1c054085b3a07774d

    SHA1

    e8e3aae30df3db436b8e93877010519b5db18adb

    SHA256

    8a323e6dfb1790fe7aa143eb9d18674a4b45cbf8a0b67f330217f5758b560e98

    SHA512

    d99cb949cf0f5bfe29f8b55bd0e838f767ac87cf437f39a60f0c327dbd471e628d7ec41a2acf6052a9c47541bb6454cfe4400e2808196b00f3d6b55647e36d00

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    5837b5c11f9e9e9c6e1468b6bddd81b9

    SHA1

    0d6ef1a51fab8abfce58231e8df14ee706afa7f0

    SHA256

    7901fd1776ad9da46feb5b7a4aa27cae4d484c637d2f6c398f09764bd42f4445

    SHA512

    6c4722818c621d95556abdc1b07467190025fee5628858264ddb4472e00922302db361760fc15eb1f9fac825c3f2a382fabc33d5972405c6445619731e0abbfe

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    5cb036ac078d165621d846e0034c535d

    SHA1

    530d1c2dfaffc274efc780305b604c784c2fd741

    SHA256

    e92fc10e884e7730334581ba551c0d079309216849f515adcc80569eff21bf33

    SHA512

    dd0126b6c73d56fffd2487c7116cf2457a7f0bff8d262e125655fa972be728af84a630df2676741892dc6527012a1761d26bd4637d260cb07f6335b9beb32aeb

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    26cc49885a2a3d7ed328e25e64c97912

    SHA1

    b2e055b1686775e6574b00a566344ad749eefb13

    SHA256

    f0be3456ad4e6a6a682fb03870b8fa7832177f394fb75b80fa9e54980e1418a6

    SHA512

    cf48af00458333dbe42e0c26583f6ff679acc5cd5570a9e13e2da32ddf3911e7492d622de3ed3f28a259592fd04745caffa51afd243c9cc962aa4b47ba647ba2

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    267d11b103c550056687dc03dd0879f4

    SHA1

    0ce5d5a19b4a974e67b311d7c31032e4f0b8e1f5

    SHA256

    d268e20e03cf6c7c2e65374b47c43676506a1375e87ad05e683097d8e88c890b

    SHA512

    cb1e1040603e88ab8250603b0d82b956fcb274426252b0b33c96fd347665c8dea5b4831ab138aae7b34400879b09d9eec6e9a7ac17714a0b0f67f9ede4c7b30f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    c2170007e8fb268a63d85cc37a96a313

    SHA1

    46b7fc92c09e1da6bf29a05bd0880fe61f7ecee0

    SHA256

    377498e0d1f367c62012a3d576e7e2eab6e49bed4e587d67f748fe0d6d88daad

    SHA512

    d72f85c0714aa16ee1bc61558e4c794ce48870268f793a98075da6f4821c4f800a5a172e5295d8b12d90ae4fa2044357f88fdacdbbd2f0235e3db31105e132cd

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    54dc053504e6fdfbe086d7ed9178e31c

    SHA1

    62bfbe671914ba5967bb37451f23ae0e8e22aa6b

    SHA256

    cc5d5e4b674c3f8095282d83e9cc4d9c6dd9540d661bf1ced05fcea4814ee5b2

    SHA512

    767e2026488064c6c05fceb428e2c0701f392c22f274280b54b6599e084f43926c1021233b1afc9cf0a9f213788631bb521230efe10b0de0b88aa376c3672eae

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    7552683fa5240a96f8dba9ce3aea5c2e

    SHA1

    b270b8e1eff11589c29d9268d02f12f501ccbe41

    SHA256

    697e259cae2a30ca737e485e69de10282c34077e6254f8868196548108bceae4

    SHA512

    bd20ce0139d8298ea086ef60ccc4821f4efcc6e632fe0610e2aeb1cfb6f939629a7f3cce536f4ee24781641295d66a04e350d0b9ced1745116a43dacf38893c5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    e6004b5b06ce4a51518b05eef424bf20

    SHA1

    5db995d784013c07c0b1c34e9abf0d8aa7e61fe8

    SHA256

    8b244c7e95c085230e305bd133b68664b5d2a50bdfd0713c2a8b5b0d2c893fc3

    SHA512

    efb0ceb3a01b3750977a031c2fd053cc3f0867e253e2cc7e6c6474db0deba68da41471e0762f83cb720671740f905f7e5f1bb7d12ec66da96627a5894a4f6513

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    7a7f54fbe08ee424e66a78176119951e

    SHA1

    8a35f1660e1ae40669e5fa3427f0a8aabc0edceb

    SHA256

    7e2a20f0c8c25febe7251f0630e43ffdb373072cfd3db22eb86b2817762e76fb

    SHA512

    edc0d9e1fd8af6d8fe72c4e6ac04c97dd0bdb6f3f5010d62811eea4d2e7d6b96f81f6e81a3081a8f179d183850a6089078f71b69c82a5a03c4c090819d0b81c1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    0135ec926c73c72ec73b9bc46d53793d

    SHA1

    b9cae6fa7241a603df2fc215ffb7812fbe8fedc9

    SHA256

    5e4bf54f0aa24c2cbc490cbdf0c5ae51c0706a85ef5d6b313b24f6f609bdb5f9

    SHA512

    2bedde75d95c4b33ac7923141c94117d3772602247d8ced737a01a36e0777511b5d2a4bb86d4a1b87fb1528b118794af40dfb35da818d232e3252e4fa84ed888

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    db5451783d198c214d4d192c07f8c33b

    SHA1

    c28940634dfb89b7b0b6001336edb7673f552e80

    SHA256

    4c2ecfa274aabf3cfb5676e230430f20c9e35dff34a7a42334d9658740657dc1

    SHA512

    dba634b31dc2ed132ee21d0a886996138d5f161323bfcc3d6281857ed912d25cc55efc1cf8bb5b36198f4b853f2b0a572c9323199bc2a1d962913f9553c4eb02

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    9e46576d2b486f117213c3cdf3a8b92b

    SHA1

    19ab6e0131336b784d64c4e444dcec464dcc97d5

    SHA256

    7f144702c06caffa8a87ff6b73fd19099f1c4de321b53756a78bc247c2f6eebc

    SHA512

    925e175ee9647a8eb11e0d2e7deb090f265d8371cfe153fc5724f90eca2a981ddfa4b8073f811df7988c7f4fbf1e590270cb5b79992def0dc7d396173287a9f4

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    7f5ac2577e2154579a5d9e355931c919

    SHA1

    ee427cea3841842a869b5bdb7a2ef9673f111983

    SHA256

    021b3fe520f653a51525f26cf42bdd392da7e4c46c76e6c935b94795f093b4ff

    SHA512

    12bffa005ee93d657fd4662e4697c79e0d83a6e36d44c00585bca764d773829dc8d658c9409db9c406daaf6fb90d7e1c539eb2925b9cc9ff47006952aa2c6991

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    8cf1c18b2f39267f38dea768f8e74100

    SHA1

    3793ecb05eb9508990b3d993c0cc2d87d345a462

    SHA256

    6590005941a957f1e1d41b30a41091d7fdb0b0e7781ba488e0b2c59399e51482

    SHA512

    fb9d045f3ecd8beefe188145cc34f38816188d45c5551c659693b50d7231d0988bb6da1aa43d81ac46e429a02276c0d4195fdb9a39eaca61c48f1a8e23f12761

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    78e07680e28feac829dc57388c86cbcc

    SHA1

    887140e70d796f01610683cde4cc68fe08837423

    SHA256

    833adba5ea0f53c701f250325e79aa244693506b54ffbcc3c2e6848f103ee1d0

    SHA512

    ca905cef15acf864ffa2f5bcd9b49ddfc986b3e359baf89f4c23fdb527408f74a309f68d9200487891531e8ce5458d8e709a21b195d76cf53e8c11f5b051bd1f

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab9407.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar9478.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit