Overview

overview

3

Static

static

1

ebd730dd92...8.html

windows7-x64

3

ebd730dd92...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    120s
  • max time network
    134s
  • platform
    windows7_x64
  • resource
    win7-20240903-en
  • resource tags

    arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
  • submitted
    19/09/2024, 17:28

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    ebd730dd92dd8763802c785b85099d80_JaffaCakes118.html

  • Size

    19KB

  • MD5

    ebd730dd92dd8763802c785b85099d80

  • SHA1

    60da6501379c5c7d5268e347da62855368d8f0f6

  • SHA256

    56381413da02d8a7a9ce21c45e10b5166ca9c9d754f668f007376a306753c3c3

  • SHA512

    8892f0ec57598e6f8c0b987cf2708101363552113697d974f0c79dcadaa93a35d0d67f9da5c90592c4f1b26d3895cf4f03df6d43b833fdb65dde43a482842b6c

  • SSDEEP

    192:uwz1b5nklnQjxn5Q/Z1nQieaNnUnQOkEntrJpnQTbntnQmSgHMB6qnYnQ5XNnlnM:/Q/Z4QqOta+

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 41 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\ebd730dd92dd8763802c785b85099d80_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1348
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1348 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2852

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    bde406fe49d23ab366d6d6b8554707e0

    SHA1

    a868626f9dbac73867596ccbc57222677e541933

    SHA256

    67f8470ef741c6e2f635990d1673e91f20ed59ce0e020634126205f24c5de42c

    SHA512

    59537fb0edd08ec74ebfa79684399ec8b236dd72bf6c6b37a2513690a35f3fc709d0c0e2b0dcbd628adf7ccccdb48c5f5f835199f471e709ccd06b064687fb21

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    d009376feca45181b13018df2ba5970f

    SHA1

    9e1c8d247f46daa0f3d6e3a814f1d924becbe689

    SHA256

    857b0249fc5833151e47c9ece9088bbd50db9c56027e4ac4e5c3722743e0c00f

    SHA512

    02dfd90d93a25bbc3f85e40b0da7ce407b8c4f5adf3bbd5fc039d9b9f6d2646a0af5b7798bf68e2eee7a0812f36397af2fd96386895c32dc8a7329d509c49353

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    26357fb3ab23496a51c8448c03ace971

    SHA1

    eaaf00e512c1dfbb8fbcc5f38a10410f660fbb07

    SHA256

    f988401d4fd0e7f51dc84a0a9c487c3590163662be421bccdb3e16a3544cf8f1

    SHA512

    fdb16c8d35e84af5c13d573bf95ee74751d9ef2f4f0374fea0e2a9fcbc1d0ab503146b446682e42704ac20cbbd0905e5574ee19a946f494e252fd79f3e43e0ba

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    92e875153b42146d7ddb6851d4137d22

    SHA1

    d3dfbec6f19b063aee44d42394a03ee062699cd7

    SHA256

    e2fc3f37044b84aaba0e4f6f756767a76239b614538992b0b9c3598f6b012143

    SHA512

    017f5680ae1c38215384dd2ed3a16911e84449d35a08227fb3d5b7c9d2c3d913e3c8efa83c9018d038c965f71a4d93d56dec03c204b681498a8af53317f306b6

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    1c96649fab264f831125da66b3bcdeba

    SHA1

    d464d1da97f7da4e63ab926595888cdda493588c

    SHA256

    98152f7a27952626aa6d7198c7821379793f0e7d35cb7aa7b8ba53450e271ae7

    SHA512

    0c25dd9c6d70eb14d5fcb79d58212cee93cd71e4c85440183598f4680d31366e1cfce09325e5e02b0c4e83bee5a3bfb33c964c33ffa72e0c20a8d8b22bf318f2

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    c6808431dc461a2660ee7560b30d1cf2

    SHA1

    7487cb7b373631c568fdfb1c98347472154a2025

    SHA256

    478282bf1bacb1d97bd29c0cb8b49e3a95e957ee5a5bc825a6a8653bd04407db

    SHA512

    10e288ebc7a6a2b8960abc8a453fa779339445125120c655f20992d079171e5d03cd8c5bf5d9c72b9b2738b1fa264f4fd35a2fed4defa7a21b092155586fbf7d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    bffd9c25510934dfa32957de5f9c63e3

    SHA1

    fe3b21e822e5d4bde502e8421790fa991c83c12a

    SHA256

    793c4e7b0bcef468102b484735c5ac196411d16712d374b137cf828a57c50186

    SHA512

    ffe8457c91d626f15df22f2b76948cc93855be0784715b1beaff7f00f9fe03b49f541fb0ec34bd1ce2d0f1f1585c92de51120142550877c35c9ba1c29cf4cf37

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    c84fcbb641211b74320947abc0361d97

    SHA1

    945ddfb8378fa7bb3c5b84352137dc6ac64463ae

    SHA256

    9fc4ffdd01950c02b3a4bf2c2bae1c1fbeff5e6b8ebfe670afffacf9d8ec1005

    SHA512

    eb1a98678301133aaee862f4878131338edbce0378bf183350842434eb8d8a9f5775ff6157670a80dd406c039e19fd5a2129e1e163263fb2cc420b33a3c6e452

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    5768499a3d6442613de03b48a08a06f0

    SHA1

    b42277100243ff86ec0b7dcb2e127ab1c8254a21

    SHA256

    79b5d3ed9d745ad475527e2f97b1c28514d611649097bad63872715aa1dbbf0f

    SHA512

    3b61cfc90aab26ff4d987a972b8275332a39c1538eccfa558a115e08f4bb590b67710aeb03ae3d0b4bcac951d043e99657f488548c35fb1a0c8c86a2489e9c6a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    742fdf507ee8bd6f7872300c156c0c15

    SHA1

    58569d071d390fc0dd496b9fb52aa287c8cf957a

    SHA256

    acf9d610aab61709610a4335eb533f9629825c825343b6c22e059848bdb0a21f

    SHA512

    75395018a014fc0a32e1e2e1daec91ccdf02536caafa6c163d74ae0611c220934ac94401a1267a7dfa0242f749382a5805f5eb380c115bf681405bb0f462f289

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    82d99a70f817c2a87e8cdf4c40181b9d

    SHA1

    2a819ff15a4fb9f0465dc9f00d1875183259f09d

    SHA256

    36e5569883e924c6227a999aca7eb1ff0bd358b9e43dd124a628884ce0cf613c

    SHA512

    9e93a5d99b342d589aee72ed80c3fb188af3233b4e7af88b512e23e19a64325964d6be6b3397de8bcfce5b4e347ed6c89d7591297af85aa29ad82efe8094f595

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    b826ad79e3591ee90ee3c03d0230f79e

    SHA1

    597fb49dd826885156bd66567ef61da3af6a1e44

    SHA256

    f43d847e2690d71f4160c03eb9a505e52ccd7cf3a09c56e98176b90d8b8be252

    SHA512

    da44377e187e77322f7b262a1a4f5c9d3b6753a03b9ac1cbed2b3863379b723af0e4f8a89fd709e51001e0e6bddaf838eb0aef1201f75a5c005f40714d1f1ad0

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    13bcb3e1e5e87d13f6f240a3a6440426

    SHA1

    eb093d0a0fee125de8dfc628584bb8c0907629d0

    SHA256

    f808962ed032370ba6fe9df06fcc87b12e842f599ef35e6cc78987601fdae6d6

    SHA512

    57fd4442021cd7c1f0bb6a04bb9871889015eaf67ea86c626e8bee9d86a840a52e7fc4e9baa48745820854c315fde2ae68f7266588652081015474d213d14a93

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    ad2e671e2ba668b7042a5e58f0a8702a

    SHA1

    be8fa67a0df1d603203ff141ed508d058b7d3b84

    SHA256

    9b822518464d713ede0afd44028ca9c86b9dce69e2c603fbcd81853651f425ff

    SHA512

    fc2341f4cfb4533f69a00b88e87eb36a833ef3647b65d7e187ee12fc07033d20f5ea2f3313fba3dbb030011df5d4d404d6362a1586ece95ddb37a89ac9d572be

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    5cbf0964e5ddbc06347f9e54d8ae62ba

    SHA1

    1f44cc0de47fabb02a8cfe84d74d0466d887bb11

    SHA256

    9763aeb80386f0d4ba837a44672d21511decaa73f38a3c0b88ba42cb9acf3474

    SHA512

    d3ea90ae1272fdc66aaf6736090a31a50c5b1917c2ac8d05879f49d13ee2d53e5922bffa5d4a95bbe264f1e9a5d0ec92800deea01641886b6f62630133c301d8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    9a0d2a259d734726d2e733be28611d0d

    SHA1

    16ef05e48269f0126e9df06c77521405aa6c2135

    SHA256

    b4b071291d9908b1851a40c1cffd7312137a52fd1c58871e96c757169fd4d8d5

    SHA512

    98f208b6ebabac453935f115483e1971aafa3adfd6b135aeb202b551ec2ae4a10fd86573c64ea261db5959945327ab86775e2940668dc31a603f91c948c3bab8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    157b865718d30e425042466765343e89

    SHA1

    50864ea792c5225508c2f01212035a514e579e98

    SHA256

    2b1f77b92267f05f1179ce1094be0a58e4f027eb917ea074ee39a42954427dba

    SHA512

    c2ff34d8a808fcd2ffa1a96b9feba0c285a59281638d8b568f9e58e0d5e1ce865d1f895b7513ba9621f1ce0982fcfe02719e40ab18ecf81633f60fd6439fdba6

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    16b7462f8bb1566b8d412796f961fa17

    SHA1

    91c7d7f126d4da829d12ed8689d02c1033fc67d2

    SHA256

    93a2cd745934596264612283eb5e19009efe68357dde97d87eaceab289eeecb0

    SHA512

    5acec2a581385de7f55f3caf1501de673d6dd9086d6b0213688b12edeed8169bf13161cfe13b2001a985e94768f6e4e14eeb36e47996eb235f83d99db28a0e27

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    03ca9d0b7b9054bdf8bcdc684f9db1ca

    SHA1

    b1ea8340c7b0d681f3a33f0aea336bfcfd581f7a

    SHA256

    b77176f75f3377fef654efe1c99758833f5b03ff315c2461c603370bbd61aac4

    SHA512

    580a3bb42c05bf170d9f16e87f34ff9ed3807a7874ce91092d39c24a9f7cd35fa11523a5e43c8856ae77b44509a9d5595e7f1a9f9e7656340b24f30db7997d62

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    6ffcf67a8d8a42286ef75ccc79e83416

    SHA1

    e19ca55e8c0c5d58093c6e39696f8c23d95a3dfe

    SHA256

    597dd66ba805b54a7aa79da87d61525af34b883f7690999fc6e4ec0a8a6d812f

    SHA512

    6cda235d05faf8e6f30c005e51b4d275158065a6dd92b64d8181057dbd1c2ac3cd942fd251db2c6fb78ea5810b29d4c51561bdc23765ae2aabaad0ca63681d7a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    3c96fddb1bd6e750eefcac8a6694e630

    SHA1

    75525675cc0a163d4cff4ac73ff85f6afabbae87

    SHA256

    4215558c664ee07d6e6e1db3ec3cf458b010dfc29a7d285b55087e7319ad71f1

    SHA512

    4a43c4dd42fab6f8de215cf0005e7fd8e4444887b7607a81b4e5c7c6a1cf4810c89d9cb68673b7055e77ad699b5c38abb1e2b139b29ef5fba32154d105321691

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab57E1.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar58D0.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit