Overview

overview

3

Static

static

1

ec14b6c191...8.html

windows7-x64

3

ec14b6c191...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    145s
  • max time network
    145s
  • platform
    windows7_x64
  • resource
    win7-20240903-en
  • resource tags

    arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
  • submitted
    19-09-2024 19:54

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    ec14b6c1918e6d58684e390e89d36911_JaffaCakes118.html

  • Size

    43KB

  • MD5

    ec14b6c1918e6d58684e390e89d36911

  • SHA1

    72cd61aeab1e4f08d408b89499c89d57a5b78615

  • SHA256

    b84fcee2046b7a2029eb30cce8066706e929321af1063d51cbea628a5a457d8f

  • SHA512

    15ab99060a61cb7aaa9efa99d6b18a0ec371a376a77a0d4e56034f43375c7e29fcf1bf2c3c9df37c98bd60e3e9c21607f9a72473d6e063071bc28237c20f3de2

  • SSDEEP

    768:jbQULzGkG5o5b8yjzr/ULaByZ0286ac3jK7UiOg66g8YzgVvW2xrqmRtVNaj3:wklEjihDVy3

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\ec14b6c1918e6d58684e390e89d36911_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1736
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1736 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2440

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\8B2B9A00839EED1DFDCCC3BFC2F5DF12
    Filesize

    1KB

    MD5

    7fb5fa1534dcf77f2125b2403b30a0ee

    SHA1

    365d96812a69ac0a4611ea4b70a3f306576cc3ea

    SHA256

    33a39e9ec2133230533a686ec43760026e014a3828c703707acbc150fe40fd6f

    SHA512

    a9279fd60505a1bfeef6fb07834cad0fd5be02fd405573fc1a5f59b991e9f88f5e81c32fe910f69bdc6585e71f02559895149eaf49c25b8ff955459fd60c0d2e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    3daed591be560383a7f4d2e2605cd384

    SHA1

    330642b8e7b395d36060ea1d4ea477e2f5047372

    SHA256

    dfa8fd2cf0a906926021205e97bb63aa27e3ec22472939edf5c2a9c8d839539d

    SHA512

    7f8a4a256ec99897bae06d4fb1d48af2d2eab217d03943d16ca61220ebde8bec177635d06228610aa4d8a05bb4ae313f683f70b9a7fdbec66817476cbf1a9f4a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    162052084082b3747bdb115f63e40bb4

    SHA1

    153ff4b131ec885d3e126babda42e226b77940c7

    SHA256

    81e20f7dee260be40330abd142c6d3ad111f2dc807676aa270f04e962a11cf23

    SHA512

    8e46db95a46c8c784b113465ba312f63341fa85fe20b951e3b600909bf4da985d99c039103a9a4ad15a80dc63fd40cfa79200896bffc98bfd138b4f441addefc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    1cf6c1f1dc0e2c076e8ba254121eebe8

    SHA1

    90bbf24715d11a7530d42f4ca5d817e804242643

    SHA256

    4a05d62f5b5ab67e402b30b7f39a72270ebe3be43d3a44cad7c174ca773b08dc

    SHA512

    edb4c2aeb338b5ab5733157807d146cdfc01e73b1972f9f8a13fcc23525aa0a67d0a9ff2b82df397a400390bdbc93e2ef0dfbde7d684ad421285f750945538dc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    37e1d0be8fc463bd38ca3dad79c9947f

    SHA1

    88c3db049cd6c03770b8bc10603d983a8c5fc2a2

    SHA256

    b0ba2092bbc9548ab81e862912af06c447e769c8b6196be2b1ab91bd99608807

    SHA512

    2531a1da86f8e690bb9abece18f6638041faf35e6718ef72b71ec7d80d0df4189447447d47ef6185cf5125dc173bb8fb6fa716cfe7edd8d08da10738a13c1238

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    d14c2bd5fe069c0c34da582e1469d424

    SHA1

    453ce6c1324e000d51386760c5f30a2bcc5b4855

    SHA256

    8582da30128acf4f0e9e109a6e41fe9fd033dbd95f8e02b8ed2fb193c20e1df0

    SHA512

    2c948773072fc47b90f8411e23940c57ebd39f793a566897a54592faebc5ea67e03f8896837923da36c199a36154c7365cd04266a3532691dea71beb686e4e0a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    8e183c98303e36c28fb2fdc95f16ab55

    SHA1

    a6e588f36845a64b601f8673da54331f1527832c

    SHA256

    8c9db358404fd2dc1703167c162cb4da0c131861fe94321df0f6932e1709177d

    SHA512

    76fca0fa3eed7072ab3f68361997dc42554d90f12c7f6548b97a293ecb1e64574015e26441a77175c2852cfdd89b09e5ba256c64af16e77ca72e2118007ab154

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    2351bf0c139b5d4ddfa029ce6bdebfaf

    SHA1

    8c0965302af467d7d8a8c0ad5d5b5e0d3284cf8c

    SHA256

    44ddff0ac433058ce0b9c4af01115d37c49b3ad8de3b4fd1abd9a01018b639f6

    SHA512

    bc9fef0f0a2c6abb197895c5c0bef2644f69f7dfcf68a411552c42331003508dc1aba8a9efd3e288525dd31aafc60928f3e3850233b90290e8e56b417787b303

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    0dfffb0ca3f43ffe04faaf01392c7745

    SHA1

    1af36850c12f58e3ac098d120df8f5a1a22ae2a2

    SHA256

    de5248f5025ce5d180271beb2d93a59d7f679660477b69e209744ceeb36ba45a

    SHA512

    3968a46d36e2a8ca49812cc6c4f545a97f69684c0588e93feb918ed9593d7d139ccc4729508e11391522eb97403608b902df43c4ae3ad89c814839c468787213

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    0b3ce3b6963fc8a3e1b319cc9646faf3

    SHA1

    3eb7c7bcdee8306902180aa14e61e1dc6d883803

    SHA256

    91f0c2fe4299faf3afa96564856f159596ab45fb2fe6a9c72072770528f17360

    SHA512

    31d2fffb58a99e93a8760720ae83431892fc12f273508ef8d314a09f43a4b9829a78326277ff71dd5dc328c6cb166fb97d094db91f7164a87ea0a90933e08b2f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    5ed3dd52f38e4e274f7d5e1ae1d9cb16

    SHA1

    deebe3dc74f03899ef189c41586aca6455738e1d

    SHA256

    4d2275fd351109e82bdcda667a35c62ec33709b8f60a44f9b1895a4ee49ae170

    SHA512

    d9a1b8d137e5df61aff017e8e4b28d2dc9da65630fb1219cd00f8a3ea5b02059513733e0b6317bb2f655fdec32a4f8bf62f3e77a7386cf2c183f8f26ed788404

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    145b43d6ddfa6692fd6941969b497d73

    SHA1

    2ac898a392e81329b329bdca63d7438fc91f1228

    SHA256

    41b031ec357e553969cb50d260564c6f95d05a1c67fac85731ba8e7e035d3233

    SHA512

    6d2e686e8fe2012f7b28377f037f71a453083cc636737d7e8afe34063ec340af33fd79354bae3ff7ef9b3cc049c3ca6064f6bb4b68344e9b4261d4002453570e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    303aedfb2e199eddc78b22eead3f687d

    SHA1

    3dfc20ddd437b5b3dda61dbf5b65edb474ae57d5

    SHA256

    6e3986bd6d1e6a806230d35696f2d2534d210ed43c80db2667105579219bad94

    SHA512

    e45a5a5f5de093199f32678a31ebbb5ae7d8c522033339d21fcf76fdf3514a418d1d4b7de7bd7be4b12ae55784667d6c8574a918a468cf185a1f54a06b5e58f2

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\1LNUKNV0\22GY3ZCY.htm
    Filesize

    134KB

    MD5

    7c8339f41b9e966a0478392a6137b468

    SHA1

    de5fb0f6352e94258c88d98c353146f24247053d

    SHA256

    8a9300b0fc7f0c0e3b4d74390952b97da876df42943fd1b615cece4650ed411e

    SHA512

    5990bdceb4e283df4e13688ee5336fcdc499648d6e965e69c526d43094f76794068cdb00ad7833c748ee624ffc809c76e9e964ba5218f13d2bcbff42d3feb0ea

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\K3VL8XEP\XQHSHNKJ.htm
    Filesize

    167B

    MD5

    0104c301c5e02bd6148b8703d19b3a73

    SHA1

    7436e0b4b1f8c222c38069890b75fa2baf9ca620

    SHA256

    446a6087825fa73eadb045e5a2e9e2adf7df241b571228187728191d961dda1f

    SHA512

    84427b656a6234a651a6d8285c103645b861a18a6c5af4abb5cb4f3beb5a4f0df4a74603a0896c7608790fbb886dc40508e92d5709f44dca05dd46c8316d15bf

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabCD6F.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarCD70.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit