Overview

overview

3

Static

static

1

eee18343a0...8.html

windows7-x64

3

eee18343a0...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    69s
  • max time network
    133s
  • platform
    windows7_x64
  • resource
    win7-20240903-en
  • resource tags

    arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
  • submitted
    21-09-2024 02:13

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    eee18343a039df4f3a6dedf99b73304a_JaffaCakes118.html

  • Size

    227KB

  • MD5

    eee18343a039df4f3a6dedf99b73304a

  • SHA1

    a4e4b29eba3d12a112d0cd948009c71d3ab19610

  • SHA256

    f1eb26e1e59b0c4659f6a60b47b46b93a770a9b750b00d94ada3c900223b9596

  • SHA512

    36cf4aebb62b255193a7424c93a05e543e54320e6d9740ec9841403bfdc999cabc680c230145ad93b25eb09a5abfe5b4f5224d13e965aa4215235b31a5d20616

  • SSDEEP

    6144:SPZ8bNRsMYod+X3oI+YLsMYod+X3oI+YQ:QZ8r5d+X315d+X3+

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 41 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\eee18343a039df4f3a6dedf99b73304a_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:488
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:488 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2328

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    0b875ad4a15d0eb62113f534eea7f0a5

    SHA1

    728b904687e72d7fd8e21b46706b58b0f97a972a

    SHA256

    c05c0e0bc2bfdd4820eaec976e917f688ad9fed912527c5d50adfe914bb55e3d

    SHA512

    5081c8d58dc1c1273139436bc73dc4f970fa81f30f75abd744ba09072df57a92de2ed4b1ea0468a30d1275aaf2e9f4767684b3cebdcac4fd34b2c6e4ef0eb6c3

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    93064e5d06542adc64b7c90944aa4521

    SHA1

    1fc11d5757311d2494359b9a2bd1380dfab802de

    SHA256

    6539535cd4ed9a00d96ec9dd722c8cc721a73e8e3a0f697c3ffcb14477d54ddf

    SHA512

    32d5c9d07be214e9b6ca1e48893a9abca8e8128864ff5ce449e319930391fc71b5cdc95dadd75ec6761a3182ea7183d8be87a9f9c3bf814c6dd931bc8ff7deb3

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    ed324b64e1618a8f5f81922f68a8e1f9

    SHA1

    69160fe0b04dcb1d6e38f6727c30f772f8c3c56e

    SHA256

    e487b881372430e9f294f072a246a8ed5d1af2b37cf4d6958052da63384db966

    SHA512

    1a910137d2300176f25a304dfb8bc6ce1a0191eea9f598dddb8899ce93e245109a5558fcdd810be770fe43b3d30148e1638864e7fe8b0ae1ddd913af2963bf6a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    bbf24116b99db3d1bf8846aead77187c

    SHA1

    859c613f1ce1656f94951cb088c5bf2857f8ca3f

    SHA256

    a1626697f17593ecb329a27ef602e7a669905aee69b29f298ccd788c3c87e413

    SHA512

    2707722cade04a08d9fedeaeb25dd1d628addff48f3629593ee09d067a97af048f3a6bbef921cc605c834933b7dbb8a1af7468b02439645e4c0a897a80a0e0de

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    7fdbb7c7a8f01f7c331b212c5fd2a738

    SHA1

    5dbbc33ddb69bad1002df18185f1725284864b8b

    SHA256

    ffd819bd75489e23ef84d10aed9f5618c367c8ea5b60b9bcc1a679cb915bb6dd

    SHA512

    3889d04cc407563f45bbd5b14b71d6c0c856a897d0afc746ae35b7b9cf4f945a846f9551825efbde08baa37331ee4f34ad1241d609a8044b45d1f2aa414355be

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    107795668ee59a2d9482f48b75f808c4

    SHA1

    b681373c7963424e9265087e7b37b81a111eeee5

    SHA256

    38071550809b3030867429580c242c633afabd446aecfe949cd144a429451510

    SHA512

    2b3caed17f64de9f005e74d7a8a95a912a5629ccccc966657d1ff8b58e4853e31a228da1bf1a65f210ecbe1ce47b6d2d272d72e35055f84da433aa8538fa00f5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    20606b58da3dd56fafc6f2f3c6187c73

    SHA1

    4e0694d177128de8711d5c365aeea90fd20b08a7

    SHA256

    aa41016c3d7da9f43ab0ad1552cda2dff4bd9f573c93208cdd3881f8ad45702d

    SHA512

    29a7487a129a89b593b555e1d59e602c2dd9c51bed8b14cc71e71396eea265ab2f4f027ac2c22f5e31d9be1b62947cb126d8e77a9bf4f897b18236eab74e3ef0

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    7ea8c7e5068b0a47ec2ff8031a14e45d

    SHA1

    6afbf0774cb13d130a4d7d3ed93525e7da8f9145

    SHA256

    09c13ba9e63e18be1aa4acb3ce00b0613d015c7de4fa761ec73bbe2ce34510ad

    SHA512

    37af43c1f77f5c522fd43687f26735b97ef44475f54314b046fc4c99cff88086aa38649cfc660f092f2ce4deeda393fb131bcb7d7ddfc2b8c73c0813db17b15f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    42ec53b0b8eec3b07169a9fafb0c4424

    SHA1

    39fa550c048918f1f41a04487403098c28be2d24

    SHA256

    df88a9702bde4b96d673f8361401827dc2977f75b24c543605d039d1167f9a72

    SHA512

    3633d65e5f62588ed593d23529ddc52b2fd3fac9ee145d8017d81cc0846da812038f2f5e411786f04c5f84429f497f92ec2e15c4696dc8bbd0e883596474c040

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    3d3971f225afbee3042f9839a179fbab

    SHA1

    9b06e01b9b637125555c7e86da5adda2be4fe8e2

    SHA256

    a13fd7ea633db2cd0cb0e2fd7f23ad0543db2e29aa5cd0e11532930a2605821a

    SHA512

    30ad7d43a2676d98bbd3cbdfcc964aee1de0db02b6640190cccd8de977c2c7f0003fed76c66488b2e9d925ee0e28b12590058004d8ae2ec718127471f98504d5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    8e64b2b1fc5261695ee6a915a4332cb5

    SHA1

    f5a5622e61e176812b87035348ef2a107f495c8d

    SHA256

    9158cb58be43b7f15f6186fdda58fb96acdf18367a1a9020e06e5c9015e3c383

    SHA512

    ac7eccabbb345f76162fa22b953c74417b751efde91a9035c744e7354a83d6ac171c45cb29fde93a9b7142d904532516162c259a4a4e7c9d3aaae3df8b3aefb8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    251b76cbd5d5d55f2939bfab7fb43e9c

    SHA1

    11aaafe3b38e7b7a930e48ac13cc9b83a0424e42

    SHA256

    7b39dd14162d521c0e37573b1ffb6bac065f96706f09780ccd967d9843fa0438

    SHA512

    246ba7289cb16231957d8e78035fe118eed821c6d230f798a0384fe94151806a3b6e3ff5f93328f5e7194aba661e2c17d20f330da3a7b186610fca4325d034c1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    c29d60e33a1c9bf227c4ccaf4023bbb3

    SHA1

    a6c78d1774eadf59e036ac9e78d57ed447a38ff6

    SHA256

    c18713479e6a752e5d493c7e81006aba401451ac0202553feda366537962e1ef

    SHA512

    4ad36e44c368ed3963f030f7ca19ddf5aaaa550ac1fe17a50e13ad268f797fc414ace90f49d3fdce297ea77430a3b3ff3c8aef161cc228961236a1025d2a44e3

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    b466d4396f44c9a172a3ad943f599084

    SHA1

    528aa3be9aab68185c7b0123e02ca2a0afd1eb1b

    SHA256

    53cee24bfc5bb6f7115409f6ea9c303d26994983f2e162a8455587a8d21589b7

    SHA512

    19ce1ad1f264c5b4673e66b44c2917fc76754cf8dfb9ff02b3d10b0e34cd5109b5f0b2742f8af6e25db8199889de63aead87156f47168f93863600b415ea6680

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    8b62fac1e49a4423026526eb44edf0eb

    SHA1

    5d2ea9dacdac1b77b30bcda509066ac027e75f03

    SHA256

    826efa592e00091ed9346b3b60f3135a724ade5ef9470c7d08dc7ffe6a4be13e

    SHA512

    cab353f2dfe97a8440a5394756243fc7a3fb429506565a05604e39b832b355aacd7964da4abc90f00212b5176722972ecc8de22337b53f5a23ecae9eee183050

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    c6ec062777c91af307e55b564291cd82

    SHA1

    d4963752435fdb94b0194da06c475fdf38f7d42b

    SHA256

    d328269f3d12f34e2be6c716a30c17bd55cfa8dfbe88dbb6a8a4665c51f759c8

    SHA512

    0e8112e0c9b5381e5f42f0542a0da1dc491b2fe0ac28292ce4e9ad63e5f111b0be01cd50d82d95295ca99b06ab7242b6bc0816e2f3dc1bb44b47c2523daab913

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    7314a96191babc6210de5d1e8975c550

    SHA1

    812d628782d4fef69678cce0300e446d88c29bba

    SHA256

    e444f9f82e8141702c3ed5a3b615cb32c21871e9eeff0a7c1ddee7e0528050ab

    SHA512

    7de41f017a7ca4753abca6529467ebb082c56cc9d2dd2d2e0e8be183ddee31b2f75b376097a5dc814cbdd6b47ca232d07a474428b7af4c3650ca1302a7860ced

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    07f85ccba60faf8f618a81beb217b27b

    SHA1

    653c3316ff4f4719bf94f558b67ef3a964c58ba9

    SHA256

    ce735ad3dd6fcb26386d3e97866e7fe82ee38fcb695b5ca5ec318a944e72ddf0

    SHA512

    e97192a52d4b016f6a0f3c6309c6ee0eb87202a9fbc35d7d0c75715b5cc95f4f2b5e4b0c4ff399a16dbee2cffdb6727a243a52b1917c8713734889e25e52fe7e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    49034b8442097e2bbe24c921e780dab1

    SHA1

    ff1435a11b7c1864528673512ab598c94020cbc7

    SHA256

    d4da4359d73deb70bb5673cfcca7e6e7779481acb78218db704b7203bf59036a

    SHA512

    bbef5136bcd552fc0e07c55a567875991df69e061907325b0d7a0753c186c6d9210334826ef40a39a553e4c912a8d7ca4c89f07c329dad1a08b0d1300e052396

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab1143.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar1201.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit