Overview

overview

3

Static

static

1

ebd6b2d8b0...8.html

windows7-x64

3

ebd6b2d8b0...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    121s
  • max time network
    137s
  • platform
    windows7_x64
  • resource
    win7-20240903-en
  • resource tags

    arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
  • submitted
    19-09-2024 17:26

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    ebd6b2d8b004e66e00da3425912d7455_JaffaCakes118.html

  • Size

    18KB

  • MD5

    ebd6b2d8b004e66e00da3425912d7455

  • SHA1

    6404be701435d25433ec177360020aada07739a4

  • SHA256

    1e00eb6c24adb79df36e0c3ff1469207a0c19ae179a9b6accbb8660b09568a05

  • SHA512

    5fcb07f5da5816465517659028781558c0e2aff1ae2d7369573f012ffd9d04b65de9696aa3ca5430c05c0930a7963d0104153d45e9c69e2ef130e22815723b32

  • SSDEEP

    384:smlIc/tu483THm19bwgN6Z8V//gb5LOXguLZ:Sz8V3glExLZ

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\ebd6b2d8b004e66e00da3425912d7455_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1920
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1920 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2324

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    ac8facea2ddd13065d25ac41a7929342

    SHA1

    cd3e1aecaebc5d2ed1b34c31a1eff00660bff060

    SHA256

    9283655563e7bd18355b867eed3ff74917ee213fefaed783e767323a6369d256

    SHA512

    25f8d9eae35b57ff6f1e0ce5f1ad2e17b1011fe5940b679040273341222a1989bf802aa925fe13e2603b00af8892948f712bd06bf4ed86355bf2d05717000549

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    53dfc3d6c1425df9b47eac5e01cdc48b

    SHA1

    d6bcb9c7fc7a68f4e69ecd213a5e4c752dfa442d

    SHA256

    51a2449f79444e4cb4fd6c0e95a5a057b6b798132c0cd86eb6f968e0dd008b94

    SHA512

    0d1e0f42471aa64fd0876dde3334050be0c8344ac0355185bfb423ad0d42a66d06b8790d74bcf27e2d3cd87614a5617ec82675cf30c61756fa49164bbf5facde

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    2be15ba35130cfe204faaf1a6f324160

    SHA1

    50680d2fb9f83a45f66e645403b5c3f446895b0b

    SHA256

    682d91a50ef3c742b1f5a21f1e6d3d78a4538acf935c8ece64801d32300d564d

    SHA512

    c7c58f1ae8df3dfd4118d96c24ad8c1aab25cff140268fc720ec2efc4d708099e6daab07bc777054fefcc09d01e77449e744d772c524a59051584c5ba0f96790

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    9797e5add97bd49df90bba0e86c6fc8b

    SHA1

    941c738075462753fca9e13b5ffc14dd59564d27

    SHA256

    98aebf14f2c7e5bf2d7a3ada4cdf2f9b960f452e581823ffc445335cb590df51

    SHA512

    31d918955dc0afb499589d8932e5dc67cc4e6e208f584b5522f37bd66a72d875a4b1132efb7669f554a0ed147ba9a0ffa69ca6d8a52dd346c453a5bf2a042ea4

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    f83985a60fcb98b3bbf00575d19e7c8c

    SHA1

    606f668993e85cbbef54651e5ce974075385a5f7

    SHA256

    a4da138bd78c9b1198e628a758c8814b34e55e5797e28956e561fda5543ace48

    SHA512

    29bc39911563e94369bd777183673829fc19224e87c14dd4addc66dbebb5e84164acdb7569cdaefa09f01e7e1b169ddeca9550d27305bf455a7804af8c5820ee

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    7556396f4c076b3b86427637bb2b370e

    SHA1

    52751baf48e78aad2c72f2d38512bc9ff162c648

    SHA256

    5106db3e6421a1e7cfbed7cf3201c598223063b0c1052b12df7db93349ddbbde

    SHA512

    3eac6b009a7c32b3df02d1321a973fa60e0a3130320961e6e70db8ba7149923fd2becec4925f8594de2f4121978d7d9b1d1a0e6ee42a35d4464dae4d05a8571e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    1919113b5bcc0cf480f7c1bbbf3e2113

    SHA1

    29f571a2e2f91a512bcd28ba4d9408899c608a9e

    SHA256

    2ae16ab30d455425ebef16755719f5b54c194f342b6a3c500ce10a6d425defb4

    SHA512

    8bcb47eb5ca90451c1ebd6b2fc9fc84bad9d9591e35cf6c3c106e0c545a298c78ac5cd3038893b36fc671f7278216f1b8c737174ce1a122856be416291b3a413

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    faf9fe653023dacf145bb1705f804ded

    SHA1

    bc4c3f4da66b5296700c51561b16c0dda2944529

    SHA256

    8ae4838d3120ae260063b018fcec9779f5ac281c655081974c9ad15ab153a7cc

    SHA512

    6c8a99e008f7fdb11e38808ea16e6839fc145248fe51df8e3bd1cb86bb6cd7381642414224371549de5ddcba1b4a3bf6bc5ea6c239bc18ffb152bfb5553d92fa

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    f1c57b2d3c0cf718d67f6a1128ae0d9c

    SHA1

    46cf8396163f36b6c728734799d45058947d10e2

    SHA256

    268231fafa69674de8c2ae2cd94a51cd85f991788fdf72940e1d7598c19de9d4

    SHA512

    a43209dec3ef531f1f7ee18e4ebd789cc7bb9baf3802040e810c352636975b77ea964e6ff234dd8a6677afe4e7be08e3366c2705bbea60680b79c7073b6d53a7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    07aa809444e9206f1bb865e4886de4ee

    SHA1

    c9b623d0f4a6c2fccb713bdef0fe8d31618fbf27

    SHA256

    fcdb40a12edf549dc94f6ab85c9bec9853f403fc086a481721c17c4216f1cd45

    SHA512

    06eb3c093983a5ca2f1256c2a219ca448625cf1aa0ef2eed5cbe16d697a0e56d146b267121583d723642adc2781821f519a3dfbd8fb1a8e51846f7b8cb6d3935

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    ec0916b89e603970149aba0f073bbda2

    SHA1

    596095e7a81cc3dcc288ae703f4ae5ecbf922d51

    SHA256

    2234640c32c323c04fe704b34fb785f75793b0c4ac851b1fe0af1991b5c508c8

    SHA512

    c02621b088607e8b39c41af5c3a81d3d7f68b129d1c4e91751d2a4e6fcef1b701bfc299ec1d9ae2dbc793360946a3f90d39a327c68076753caf426a4eb679fdc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    d852e143c09e08f0b37379bfcc4f251f

    SHA1

    e7c694df1cf995b446319ff833b9bfa502282657

    SHA256

    000d0e469dff077fa120ac4571d3ca43affd339b28f7a19b620a72cb7b51a5d9

    SHA512

    3ba8dac6fc77c5c6eebbf6f44719b54cd87505ca94e6f84b0214fda3e977b5da5fd8bfddc7e374436e36f333fd028410621f15d6b01b8c76b6969ceb7f716142

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    de9b8cf7d800b7cc5996fa65de188c2e

    SHA1

    9d391e0b83052f78f76260ee1326e210e03d30d4

    SHA256

    7c34423bacff57876aff83b329836df7068a22f16ddff836dc69c405e7303377

    SHA512

    9e240da75337f3036e98dbcc66037abe903d1abd00eb5bc2de1c6e1d8260dc5136831181834679463ddd03e92671cbb2f0d079b862c6fdf2a81551c4ea7bce30

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    e7757edf1b97aef1f0d89ff398d424c4

    SHA1

    05d14b6ac7a03ecda856219fd59a6ef641399283

    SHA256

    a8ab04bf49f689cd639e918a65a5ddacbdd72cc36b6c7fc42431ec789fb7007b

    SHA512

    c502e0d50295659f75bed8dc12f7f4e49a06864c307df7d1d5b5426cf401564341a54c1cb6c043830b72aed5dca74b2ee023b47d65c021bd85639a5890bd17ff

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    b76f5276f1d3b08360681243ad7aacfd

    SHA1

    8fc2aae18c2aa0a6d29656460c8f88900531d1ff

    SHA256

    2562d23bdb2d2b41d2ab170b310665b6cfc9650f40a0b2eb33a7b68566fd0802

    SHA512

    e184af6767fcfc32738ee6765c59bbff56deb2d74e31e27e585a550923134f57e876139cde428c2c17b96a3c98c64494df28ecd072bbcebec1289297cb1a976e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    b91e619bd273963ab17758aa547d86b3

    SHA1

    31dd71478abde0ffcb7f82a1d9cc75557f2ceef0

    SHA256

    9ed85ef16195e2c4f5e5ecbcb5fc97aec21e152ed8ba906fc329aa0cefaed233

    SHA512

    adbca56015fb7bdeec6fe3f2db648774579f7c4be68a85a25d17641cde3208892b82dfdc235438fdc605b54d94c192c315a38e20f6e8f5add2889d017d39ca18

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    cf4ae0211f7f19c6962e9eb31c7c57b4

    SHA1

    3abadd8d80d1efcc05507762ebe4e412b14953ce

    SHA256

    89796973d62cff1c38696f1468471682b66ee4d087b0edbb8ea5bb81cf22d649

    SHA512

    ee74271ce4e418ea877bb8fdf4cde2a5b76925960a9db7a02fa1d3c38cc444cd542a63176cb9a7dc9daa9dac19e0f2ba486f7f53ecd50676854c6b28353df293

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    f579670c330de0bba2d6be691b37d85f

    SHA1

    1689f5a7479c4687c776845e0b058abd698c008b

    SHA256

    5f99a70475dc4b974aac85ed56c1fa369fdf7b79907dd2ed75f6fe07ea7a5b3e

    SHA512

    bc9a54395495350382ca86cce33219d57810b576297fec908234a7ef9d65b35abb5747cad02acaf21bd19c3fb0f52440f640e735279a3d53aad9020e8d4f2c72

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    ea6c46c3f2921d4407d7353fea150c95

    SHA1

    6d7e092e28aa31abdb395f65d0c63f4b7194b905

    SHA256

    7754e26df9965ece668d3e353f66e4752481311a75439f18ce940105c8a98f76

    SHA512

    d626b1339c0895ae5bff8462e3e397dde43fa711dec4e29deb065e54e695cdf6c4e98baf69ebe8ed6ed315901cfbffe7460b33d4443d4211cc03c2df744ca574

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    bcb8983f62c0d4380bac256bd53fd293

    SHA1

    162a11dfb4b56963eb303f402d70b85aea7f7a25

    SHA256

    aba9f1cb7fc845451623a67b314838d5c04a874d687d5038ac6ef20046295499

    SHA512

    18e71bd05dfc7e64d7788cde2187e4698b0c85bc3a192411f5dc8ab74f840a0f5eda469166db29a47bc899d748b8ad988ae01ae5f9a9745ab2ca71fb819a9905

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab9B17.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar9BC8.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit