Overview

overview

3

Static

static

1

b2c697c20d...8.html

windows7-x64

3

b2c697c20d...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    144s
  • max time network
    145s
  • platform
    windows7_x64
  • resource
    win7-20240708-en
  • resource tags

    arch:x64arch:x86image:win7-20240708-enlocale:en-usos:windows7-x64system
  • submitted
    21/08/2024, 08:32

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    b2c697c20d6d5d090bfb91e0ef74551b_JaffaCakes118.html

  • Size

    82KB

  • MD5

    b2c697c20d6d5d090bfb91e0ef74551b

  • SHA1

    2ce119ca3c113c44945cdd5972471d9dbafe6e55

  • SHA256

    1d8ef70866e5bbc411f23fb029d6bb3b5eff099ddfa5c7739d4d3a6b56573c57

  • SHA512

    b9687760205d6f5a9019109e1d30446ccf560f7059c6b6956899a85ce96c2759cc4d7ffe4ca84152fbf2d0ac97a004ec235f100e26b3acb877f9f33d939333fe

  • SSDEEP

    1536:gQZBCCOdE0IxCJPypdph7RNGQYSdCdv8TlNMsWRqMvW3RofpaXUgUuKJ4ZE2c6GO:gk2q0IxVpdph7aQY/dv8TlNMsWRqMvWv

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\b2c697c20d6d5d090bfb91e0ef74551b_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1928
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1928 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2404

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\3C428B1A3E5F57D887EC4B864FAC5DCC
          Filesize

          914B

          MD5

          e4a68ac854ac5242460afd72481b2a44

          SHA1

          df3c24f9bfd666761b268073fe06d1cc8d4f82a4

          SHA256

          cb3ccbb76031e5e0138f8dd39a23f9de47ffc35e43c1144cea27d46a5ab1cb5f

          SHA512

          5622207e1ba285f172756f6019af92ac808ed63286e24dfecc1e79873fb5d140f1ceb7133f2476e89a5f75f711f9813a9fbb8fd5287f64adfdcc53b864f9bdc5

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\F0ACCF77CDCBFF39F6191887F6D2D357
          Filesize

          1KB

          MD5

          a266bb7dcc38a562631361bbf61dd11b

          SHA1

          3b1efd3a66ea28b16697394703a72ca340a05bd5

          SHA256

          df545bf919a2439c36983b54cdfc903dfa4f37d3996d8d84b4c31eec6f3c163e

          SHA512

          0da8ef4f8f6ed3d16d2bc8eb816b9e6e1345dfe2d91160196c47e6149a1d6aedaafadcefd66acdea7f72dcf0832770192ceac15b0c559c4ccc2c0e5581d5aefc

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\3C428B1A3E5F57D887EC4B864FAC5DCC
          Filesize

          252B

          MD5

          2f62765c95d76558c235de7615f7a78d

          SHA1

          f224cb933b7220387b3f945c0947ab15057ab9ba

          SHA256

          0dec0c9460a7c40141e9f7510d7d7de13a657391680ae66ee776a7bb076b3ab6

          SHA512

          e82677cf78b395cbd3efa95f0c1c0d9bea9789b6d8f7b8792dc2e55cf2f9d7c4d0cb26fcf86381463af5ddb1aa1d4600f36257021cfadd864c37b480afdaae95

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          9b7b4d0a45fb9975786c1ee684e5b32f

          SHA1

          cb93d76a6dfe97d71e30b31a7f0e8a009dac78c6

          SHA256

          7bf488a31f2f5baa7d7deb6e54f701bfece2dcff6175854f4bcb092e27e34c4f

          SHA512

          75d0cb2b882d09e3c4a1da8a38487eb5c8ce17012b99897f449c8caf4798c843055579ac9a3a2140d7e917c1541ba5b5a67f5f11c9e746d0e7804b76986423e2

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          a151af542f929b216a6a31b398848c80

          SHA1

          56bb3ec5e7c18a07203ee815d1a96ecbcebebc4e

          SHA256

          ddaad2c434a2118b2f66239b797d64308966e4135033da7bc0a94fbe9f22ca97

          SHA512

          d5c0391845a90772ebb33c0c6ecf73396cb5ed614a3da178c007492614e9a492ae2df970425c91c10187f61b78655fe685c576d45e60396e60e612c869eea80c

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          e3650b25b4d6192f4679ceadf1bdea88

          SHA1

          57c999972ed092d0ed77cc749ca5a0613f92b3ee

          SHA256

          a964eb1ef052ff678fb27d94aa34610ad0195adfb1c9700c6d13661e3b7d6d42

          SHA512

          7809ceb426a7639d4cdf28664f69fc6370401a94c0f803706eafdde53c4f198bec7fa247634e0ea12f2a2f58926cade02b6cb4b74f8c7daca0bc85206118b8bd

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          6bf65b154932c7390a0ea8cfe79c7b56

          SHA1

          c09a14032102096306062a03360580fb3081ad06

          SHA256

          2a84dd913fff3c3f7c89b0f3f6791d0e21026371a13c7bac9046995f8646ab76

          SHA512

          e0b01e75f37ddb5f703e218782e978d51433fe4c337b8d2ed1443302ec6e8da855d8e78bb90fd761002ca1a5605207d981df76d93a8691b5910cc7fcac69f870

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          26185898309e0bffa746d120fa7e01fd

          SHA1

          d03af6de7adf70864707a7cf668b3df2f5d4a101

          SHA256

          ce8f685aa92b214d4db6a518bfee62d14af4233c81166188dd7abfa45f97271a

          SHA512

          50369ec6e9f549f42c06de198c66253c843dccd6cb9966765aaba63daae90263de001dc8e0e2c484b29ae5339b183d355687a48dc4998c465cee01cdf9c75649

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          6a62dc3988ccb4070f943d0afa3634dd

          SHA1

          480c6eae7e252f59990e0bbec9a428b760c45f89

          SHA256

          d72be0c03a69d338a8a51b4471f78f1b81fdec2c34835b7baad0877bb8b93390

          SHA512

          40c587f45d395e245e192b51af13c7171c019295c4c6e149dd43b626e9d564c810e66fca49fa3ad8ec9a29504d8d26ff259b2d9f510d0e6fd64848618dd1a099

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          ff5d46c01936fa3e58d24bff5db5d724

          SHA1

          9d6bdaa2babf06eac2e9cd7714a34f26a9f3d0b2

          SHA256

          4fe6993ca0881d69fe352021eb8141bf18ea1eb07923fda4fbb0773d22a3dce0

          SHA512

          dcd275990adf07c9dc7f77adb32e44c24d34fc9cbd44322544dd37f13d868cbb2b92f8055d5c0dd4edea61c53073897f4fbb0c8def7dc1c6d05d383f5de6351e

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          089d76ca1f921a43b062b1605643a0ab

          SHA1

          e85bfc18a912360e3b5bf15338c6b7e420a3f8ce

          SHA256

          9d1a4a1aa2f7753fd7c2652ea121e3b9d3f83258ba0635f8d54b3a6a5e1c5cea

          SHA512

          8624f1d9ff29976af269b0bc2b0a3bb11e2329e395959bd9ebbaa82c93e84bb43cc3667b7aa3a79604b138d29c807cb98f89f7f15738e98f309b227b3e3b3a39

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F0ACCF77CDCBFF39F6191887F6D2D357
          Filesize

          242B

          MD5

          f6f5bd0f27d6d1edaa06bb6ca64dc46d

          SHA1

          6a9a66976498f46537246fd35e49807001e29a0a

          SHA256

          a0edc082a11bf5d80ccf1ff88103e098c70e14b744cb26d1d219fa721159b9cd

          SHA512

          12fbb30964499b1084fa9bb829105df8754cacfe902365bb358fb1c155c7e57267b99be36ca424648cd4deba89aae3d7c35d2006f1e71d4c37e84df032ea8fdf

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F0ACCF77CDCBFF39F6191887F6D2D357
          Filesize

          242B

          MD5

          fb088553583c8e3d615ac57648eca325

          SHA1

          a9579920d271ba6e1d42f46eabd1adeba777bcf9

          SHA256

          028793687730cf1de4981411ae066d63c0de643c397529bb2760427659db3d63

          SHA512

          936ccbde237f376f5c03eac78af81a22d6751559f428d52e7c87ec68b910ad3a7b253ec5c50e02a4fbe28af651818a13af1c49686b570b5cf0d35f65c5d53f3e

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\CabE764.tmp
          Filesize

          70KB

          MD5

          49aebf8cbd62d92ac215b2923fb1b9f5

          SHA1

          1723be06719828dda65ad804298d0431f6aff976

          SHA256

          b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

          SHA512

          bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\TarE765.tmp
          Filesize

          181KB

          MD5

          4ea6026cf93ec6338144661bf1202cd1

          SHA1

          a1dec9044f750ad887935a01430bf49322fbdcb7

          SHA256

          8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

          SHA512

          6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

          Download Submit