Overview

overview

3

Static

static

1

ebfbe2c3ec...8.html

windows7-x64

3

ebfbe2c3ec...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    117s
  • max time network
    127s
  • platform
    windows7_x64
  • resource
    win7-20240903-en
  • resource tags

    arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
  • submitted
    19/09/2024, 18:53

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    ebfbe2c3ec78ad1efa16deb775a8ef94_JaffaCakes118.html

  • Size

    23KB

  • MD5

    ebfbe2c3ec78ad1efa16deb775a8ef94

  • SHA1

    d05895b72da74b996703ad1ef57eff4362cf95b1

  • SHA256

    6a70a6aa69c217ba569e6725d726fe42143db733972cbe36bb0d797c9d5914a3

  • SHA512

    d06778d0f8a7b901d80e5972e2528b86d0506d5e55a0bb2c591bd3d7583bc0d7b48abcb9eacae25b081422ca65885fa7988bb3e9c78cb5d1590eac347ff3aea2

  • SSDEEP

    192:uW4g0nsWC/f4b5nlzc4MUPtInxgvjAnQjxn5Q/XUnQieLLNnkTCnQOkEntxWCbns:EQ/L9Jo

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 41 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\ebfbe2c3ec78ad1efa16deb775a8ef94_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2332
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2332 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2696

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          46cced36e05641ca954cdb9e9f2c51f4

          SHA1

          eaa118746d9217fe9246a8a2b7dd50b8cc20e977

          SHA256

          a46b0260cbc0419e3c8a1ed1cdf7c22a6bde2e0a142b35285f2e98518b5f27fb

          SHA512

          32a89891984dc0437b94212affaaf7f2a9a692db42431d984fbc73f7625362ce386a8fb866d9590df18ebfbc44bf784c0ad5c70f2c7ca86e74e38ca4bc1225d7

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          5980c75db6b62ea3725ebaa01443b109

          SHA1

          d199b7262525851f5e40c6ae099967acd42e3608

          SHA256

          8e9da5ba83f9839d853c144d44ac4675db22312b3c299b27206565a097a6c6e8

          SHA512

          5b063ce4e5f0e8f06a40b9f841b94b7a68561eaef6257c72665c3a03b69444e5fba6fb7ec67ddcf4368fa997b13436e8f2732bed89a0781ac3b3ace614b0173a

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          89a570bac7728174de91fa110a0d7332

          SHA1

          ef12abc5da80f30729e2dd460afe6345ee14b225

          SHA256

          cac34850a18285b621db2f91ab8d4c7bba96f750c2d58cd340f3ab8686261c3a

          SHA512

          4a33a4c9fc09c4ebdbfb8f54b3e3dc7254329fc6c986598c6a0f0fe243dff3a41bc0b6719482fdb3d4d75b575a92ac54d1b57c372317a8c4d3474fc16c8925ea

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          8dd22964f1ea3189c553027f88d3958b

          SHA1

          8d67ac863c318e46b5a88b2837c4e6f84fbf5489

          SHA256

          be93729192d4b58723ea254c9fdcc0cced0477e2a1e83d667864ae46c2d9fc93

          SHA512

          f9ce2f6afe9b97b0693daecea62dc6fa38fd680c3a3beab721be85d5bb59f220a08c84b1524241b65247de23a1505214fbd2f6d7c9ef90244e28a3998f590a8b

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          b492719077c16d70e40caa2d756f20ea

          SHA1

          c5e2ac6b31c1d2a377437de8fda67e9fea7b1eb0

          SHA256

          974e5785558e7b53c1a3fa99a7c547f93f933696bf34eb0f0797496fa28340b2

          SHA512

          f1bc117b3a6d748668763c127bbcff48a95b7ee967dcb69bd23d7e8aeec5c1fcd40f975ab1133cee97db5be0435b325974f29dfe0417153e60fb392a62f0d5a7

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          960d1ca7b7ace113b3fd25f20a1e7e56

          SHA1

          836228645e6124592fc421d09024242ac59f911c

          SHA256

          45605e2336c2e8e351523f286bae3ff8b382b4b84b3479ea5c2b21840d2c7ce4

          SHA512

          31fb430128a6a5dace7e6a3b1b27d00059f9039e528e31f3deda80d2afb7bfc23e4ba6a5e6a3cf8aafce46ac68f9188be2a4c2403d3cb7c750bdca729d00ff95

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          c0db3083c5476304e63e2debba5c21b8

          SHA1

          e865f770adc5eaaf866232369be3f61603ed15e0

          SHA256

          76457e44416ca1eaca2a98e674764dd5d7ee9f92bd86271d470db0c61ee5a3ab

          SHA512

          9c11e568e3b0153d791bcecea1a32ffb8e3253bc4279695cb2046eb881d1287ad81e10dc3ee504a04836ede92ebb5941d31e6b210784ab2ed017b3aa914663ff

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          51a220a6c813b039521f25ca65966c55

          SHA1

          cb1d7489a817430679171992b329b01f617950b0

          SHA256

          8064d0ea6ee31aaef25d9b5ab7c0a3968093617235ace172dc077f0d7c9dfb18

          SHA512

          70e3a3db301ac30721fb2ec4f198de2f6cb881e6fb145723f80b638df915eb50e5f62bcec4cb632f1bd8fbdbd20be4c5e3552b7782f018966259d42c6ef02d4b

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          3c2fab7e58b8195c964473dd97fdb9ec

          SHA1

          eb37d65ff9593801f11a76a4acac6c0e9001291b

          SHA256

          984036261ff5ce6ae55b99ee122c49e7e58c26cf91c88e734552481da325d3f0

          SHA512

          b5eb45d900c3ca6b36c3856a16fafc77afeaf9dfe0b7e6ca5206f5d1a77ea418b10d038a8a4af3b602ed236dca1c11e36419b0c23a3a10e6dd700726206092a7

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          ea77d6d4d7244e6d2a0e25236bfa7772

          SHA1

          e2bc9299a3d2752383f0e9dccb5b9321bf13fc95

          SHA256

          5e89efc22e4adaf8ce5c52d7b841af5b0e7d5878d341446cdf7f1bf2e6591952

          SHA512

          2b52292c111f075d2a88a3a789d0d1285a1bbe3dfb34b068567a94f65b754c41f0721764c33d942793c58f98f3626434ad5c8c46b90311407b7b1edbf9fe957b

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          ce4754c499eed242a8163b44358313bc

          SHA1

          21fb71c13f82d204fc2199fc94631b8fe7ee98d8

          SHA256

          a13080f8735990745d009c06870f643d2bd8780c21ae29ee5287ae43730b1f8a

          SHA512

          588560290ed905431bc5ef4d83b8a18ee706bf87ff783ca03226479155d9e2fa407ccd55e4adf3d1e95474ef628c9d39667243700014fb4b6f567d62f4de24d5

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          c3c47af1d7377149538992ce5d94250c

          SHA1

          c079a99f19f59effd99628d2732ec6c941e3caa0

          SHA256

          62043bd38704a8f61b4d10f144e5e7640729687d9e9921b6ce8fa56df1374cbc

          SHA512

          8067b720a8d1f7781fbd2f3e8692cc019a57cb56093f068e3137964a7327d31b74d92002e0210b0cf17ddaa78f4cd1054677e62fa539239a768aa843676f9e80

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          41dcc3c1909c58e5c01c13d729d5ec03

          SHA1

          819c86455e517ea7290c9642ccb1c3fc10e9a65c

          SHA256

          456aa739d1ad6173c5165eee0a90df7423a088bb8532b8289d4df49c3ed2d708

          SHA512

          df7cbf3105056bacc8792ba5cc6969038cf804a9cd4532089c9e1f257c76512d8b10fb9547b51914b494957be8a0e3df6cea198d4b679e4fe3731e3f78672180

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          9fad4ca5c4a733809fa67027718b569e

          SHA1

          390690019fde3e7d7afc12c482e5bf6b635a695d

          SHA256

          d1eb8d7bb29d8991b307eb639aaaa1e73879dfff830b523ad5faa854fe2b0fac

          SHA512

          1e64583ba48b68fee22f3a7626bccc35c103dc413b7a9954d8bad660d89cfc89dba0bb776d63a4afb122fcc43b4a3a74d260f1a4577d2f16b3d9b8246f2a9b6e

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          f975725e2f4f8c1e1636ba6f68c99ecb

          SHA1

          8dc260a0d91c96cf0f5c3bca76b03c65aa5029ca

          SHA256

          9207dcfcffeaf1444e7a2b441d52b425004579aae2b8cfce01705f088c2fa38a

          SHA512

          1f197069dd710f57a8499b407f870a08a1ae6efc0a10b0d2bbb898debbe580e5097718e6c5ecf5b14f3252a1786824046b6e2e44d76f18586911086163b275c8

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          c4ca33e55cb985d3f234848fcd4f6f28

          SHA1

          d5c7f8a7eaa492f0770323949f27ec073d3c61a0

          SHA256

          89d33a44735199a4f0631a4de09adb35b150780a7917ec802f60353176036ff9

          SHA512

          298e1677fa1a17cb92f09a7a1910a477011454507d2f32291295799d3e65bdc2a2e4e4b015943c803af1ae5895a25b00f8b66a62537905adbe26b732a68314af

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          ebe607fb75135c2dc6d4a1c9ec4b4717

          SHA1

          7cb8020ddd8c927a751a760b12d2014adb496114

          SHA256

          80edb275d22e5b39adbb5fb35542edad23c18bfd7d6291f2e34ac5c7fc105ed0

          SHA512

          3781808dca5e03958ddab2f77a8b26c258e2568aa5e17d20d5583228e0a7700490c5b8a26754f7f6118f074a51a91da66723912f9e98729beb5733c087e218c4

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          d4999e59fe2316f4da809226bf12239b

          SHA1

          390641ebacebdc46a33b9aad71e5e1e1bd5dddaa

          SHA256

          9bee5bfdb43f2c32f3790484cd4feb1bce1f57888cac50356ea8451581517207

          SHA512

          f94be601181d033422da72bc21927532437e3053dabfd9bdaf499cca74b39fdc2a21efde1a87907d97b161f10e4882003d3d9afcf1640ecae81bbd6963457121

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\CabCE2B.tmp
          Filesize

          70KB

          MD5

          49aebf8cbd62d92ac215b2923fb1b9f5

          SHA1

          1723be06719828dda65ad804298d0431f6aff976

          SHA256

          b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

          SHA512

          bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\TarCED9.tmp
          Filesize

          181KB

          MD5

          4ea6026cf93ec6338144661bf1202cd1

          SHA1

          a1dec9044f750ad887935a01430bf49322fbdcb7

          SHA256

          8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

          SHA512

          6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

          Download Submit