Overview

overview

3

Static

static

1

eb728c99dd...8.html

windows7-x64

3

eb728c99dd...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    142s
  • max time network
    142s
  • platform
    windows7_x64
  • resource
    win7-20240708-en
  • resource tags

    arch:x64arch:x86image:win7-20240708-enlocale:en-usos:windows7-x64system
  • submitted
    19-09-2024 13:39

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    eb728c99dd36f53d852f681d4f3c3086_JaffaCakes118.html

  • Size

    35KB

  • MD5

    eb728c99dd36f53d852f681d4f3c3086

  • SHA1

    811728697fd7d71f522dd76b47f88db4157d519d

  • SHA256

    381e2c1abc6352f64e986b0fe80215d6a337be5b208103da5fd6efddf32a9b89

  • SHA512

    f0ea45bb94845eb7aa6e6c5956d8c59202d1e4d5ddc01ec105a4f961ed7fa906125d38c33b7522819be35de66ff04ae83dc58add9c33e263c9f8e0bceadf6c06

  • SSDEEP

    768:4zr02ICmC3C3C3C3C6C6C6C6CCCCCCCCCyCyCUCUCuzbOsYz9r7/FYbZzSP8AJPK:4zr0LNEEEEnnnnJJJJvvNNj6Rz9r7/a3

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\eb728c99dd36f53d852f681d4f3c3086_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1680
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1680 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2636

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    70c852084c0784f5013f2bc40346c851

    SHA1

    8d7e345c0b01c6b40bcfcdae3ce0a355ad6c76ce

    SHA256

    04d80940144eb94f853360878ca529776fff0da0c145c4ff9c1399a86a8a45d5

    SHA512

    17cdebb1b247cea6e49a9c0d95bc5bbd779ad64c146caa55d10ff25e7f851a506169da922875fbab2e85287ba8a127e59b66afecf7f9e05095fa473978fbc5e0

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    5e00e34c47276ededb24ead20cae333c

    SHA1

    0a4065a01b4379ad4cccfc4b6ca8e4cec11a5ee0

    SHA256

    ee15c7e562f35777d44fad8e8d7df0dcfde5e842f710fb7d363d170ffe0914ae

    SHA512

    b48ed97d6f1bf4cd0eff79bb3a02197b38f19e0ea2aec6f0f2dc9e134b7bcbc9374cd6c02d7be34e880708dd02885c99399db187abcde88ad5bd91a11fab279d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    0b441afe0fe0c691b7002b9f2730995f

    SHA1

    f8c4ceb7ee0bd291ea450ecba40aed3a5b06e1e2

    SHA256

    0470bb3c52153f0b8f3e600b4e8050ba14750148aeb007cea55291c8005ab3f0

    SHA512

    253f3420fdbd7d387c8a02bdbbba7b8865b1b8cb3c844aacab8158bdcb6b29d60763a49da4726fe92ced0df09ff8a18a7881421cf08724cc8447a1ce6b05439b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    280b0ac3ea4f7c98edb337dffb05acc2

    SHA1

    5328aed6477aacfd6975b84ba8f7dc47ff642e84

    SHA256

    34bb8ad1c510f387eab129a8a80a4f4e5430a84a25ecd21d889d4e60afa651e0

    SHA512

    685388f4d4b90e95a88bb8d5ce23b0b37f76caee6670ce31995701aff4c12c7e3ef5ee3dd641f2ab3b17f77d47ed3cb605a138050125bd8e1dbb4f3a311cde0b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    b455b81b3b9e343c4aeebb231a87617c

    SHA1

    d5b61fec55801d4ca8e620183ff2af4561ad87c3

    SHA256

    636da241eed2e059683f484a7436cc5386c5032b8239c31a9c514f25ff5a548a

    SHA512

    6fc3bd56bfdc175491b91a77e0afae077b04c957ff758f9eb43af725d571da4f9005ec8cb4bb444db80e25d07dc958c78a3e3b4e1360b3d7d5cf28bf6fd64486

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    c9e163971a8afb6a06b77ef4695c5a50

    SHA1

    e0f52520fee5af88908c72c06a9ddd7eb0e15a8c

    SHA256

    fc53bc413bc03e7badeb5dd4abc2f29459c91884b9bbc55257e6cf3be16b3d77

    SHA512

    0d586939a29e44680465d1a79d6c391331029c2d52fd3c52c8c2f81531ea637028f70ab147bfbe87c5f0fe8d7ec5e29a8cfe9ce9cee67f03ec087e7cee83ba2e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    83e4411a922c5f0a2dcf4ebed1c4d7b1

    SHA1

    49a11737541b02cc48d715410a9771883982229d

    SHA256

    29a9471b6f46cbea5a8bee9f4a071937e3255812724f2bbfd94d829db0b5d9cf

    SHA512

    cc4a9319ce6739a6fceff31a41a5d4c8f8987fc13046af687bf234532b626e8c4652ccc6c6c695531b7eba1e8ff361e44d7de9b2b3b206ea66cd3e298a510d8f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    74eae498e0687582fffc557140a7c0f9

    SHA1

    2cd810f5f2067f02583a8aa3ef749024bb5ecdb4

    SHA256

    cbe50a18cbf27d2a6e6e7dce5a3bb240736b6774d34cef348f60b662410d1857

    SHA512

    4e8be1f03b5de16538a0eef52c95c0680deed152bcf0be1cba40edab7f8bacb61d3f860737f8cde5647c4e38a598dd9b354ec63e385d03c8f360a97a2d02bee2

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    704433cef29cd2ba18a6bcacd60d6c80

    SHA1

    c93c08967a10854b5df7ff5b895105d2e8eb56d8

    SHA256

    5b515d56721863d0be5a7d253945e7bda67f8b5829f3f62e4d907e506e76b666

    SHA512

    6a1c39f9b0f92bd3039ac7e12a0af20124a05b11478cb8d135f7158897fba31f2fba6a65aad80fcb797c52c63320a7e541f99d3fdd5f254469e3ea976ebe9796

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    394d25f1aa6a174b017faa57a8e4143d

    SHA1

    a8839a936448e0031abf2a1e891ceca085030ab7

    SHA256

    8e961d5e9ebd98de654f62827ad385be3448fe500e39417c3daf766f7c6f5e0e

    SHA512

    1cfbf7d5fd0882f790ad4323f2864f456f781d9001db32b7a9e98df6d392c118237ad8ef1abdd8969a0f8279def66bf10e65b887be1dcd37896c9eeefdef3ff6

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    8b08015876a3c362bb20c7c87afcc9d3

    SHA1

    474983e059e9722db064c82caeddbfb005d5a042

    SHA256

    2080d1c7e1430f34ad4c35c42251411eb021b6fffeb6e2b2f2c7d61cd07a5068

    SHA512

    28243816dea3932d7a9602fff449c39b02047ff312aa193d486f2240e3399919f953690da08ea5fd5cfb7dae4d5428348a7a1f29aa46e03b17270b93b2f8a7b4

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    82b1cb50a9c51c0d5d87144bd2ce5235

    SHA1

    ebb838ed7b6a7a32c5a838c3510e807ed63f242c

    SHA256

    a2d7ddd202c2cef03e2b5fff7087c5edb99e85c9baf3c486d9967b16fcc0e77b

    SHA512

    72f4cd993cc427ba50fd25d5d5a743ec80abb8f37066be401eea2e751f073bb155c2a13ae26104c7c823a72b07657038d2b4d26030117bb4bd29fe9886c599d8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    67e2aab42b82fd226fa47f485ec0ca60

    SHA1

    f0ea32ab50014b0e43af865eaaa079004d63ccc2

    SHA256

    31b267ded68fca1ca8bfd6cf26b2e86aabfa07bd5848b13f3d3d13a1c970181b

    SHA512

    cd872a9bca36652265b46040c734a8c41b3564be51b1428b85e646bde905cb9f0d84537facd9a395db06138f1fe18c21602f61356030836d2ea1fce9a98206a7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    1be2d2838bd01dfe6d1d2afb36d443fd

    SHA1

    142fe9872514d1e8d888a22cb7d80e81bba97acb

    SHA256

    5b59ed47c620f474560c1e8bbcaddf295eb2cdcdb3f04973374e828828e45124

    SHA512

    6bcb1a0087a4760e95a969508bdf22e652f87c9cb8a9d6a161bd1a7e2d0cdaf7ccd93f1422d2ae06ce266b73a85126d34c49bcbf526e1b1bfc21696fe0aa1149

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    0dabf73cdf16ab366a7c0b7136965c25

    SHA1

    cbfa05fa7ae35f10d1668271876e16b367561a60

    SHA256

    f0acb30a8bfdb81217b0d25c67e619ae9b6a0bc1f54c7d07a94cadbde371b54b

    SHA512

    cb970d3ba066c3d190cc0849d2c69b84444ee10c0f2eb48abb0e3bc3ddedfea316ac264d6216bb3ffa888babd5b7bf3a888f1cbb3962554bc9fc5758c3c9cfd9

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    cc6a371ba1c2713bd6e9dca56f30950b

    SHA1

    bfe2c30c81f49bf0e62764c455d99e062664408c

    SHA256

    964a450ee534bb99995055babfb49595005a0fd8c58a5184ae16ac96620165c3

    SHA512

    37f66b8eb1b8b038ae167677c4591535a0a85d465d1f249f2ce705264499fa93a69598808b42c9684dccddf3d66df3b1377759931e3f7e608c816df9ed9adde4

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    bc3de7e83441e9d43f5931394839cef7

    SHA1

    e2c12c12677eab7fa909c7d6e019e9c51e7e1a8d

    SHA256

    5105e913ba5a5179bbb2fe77a6044c70d539268ae49c6ce3bf37e3a04537956a

    SHA512

    6ea53decdaea82f1a81ffb52afb427c7155cf19de6c3e8960b20b159c5f68e74219d7993e0c9b845b7587258dac15adb4c1028d4378f7ca5ccd6156b64606617

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabC8CE.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarC97D.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit