Overview

overview

3

Static

static

1

JFnews2.6/...56.htm

windows7-x64

3

JFnews2.6/...56.htm

windows10-2004-x64

3

JFnews2.6/...6.html

windows7-x64

3

JFnews2.6/...6.html

windows10-2004-x64

3

JFnews2.6/...ex.htm

windows7-x64

3

JFnews2.6/...ex.htm

windows10-2004-x64

3

JFnews2.6/...ews.js

windows7-x64

3

JFnews2.6/...ews.js

windows10-2004-x64

3

JFnews2.6/...ews.js

windows7-x64

3

JFnews2.6/...ews.js

windows10-2004-x64

3

JFnews2.6/...52.htm

windows7-x64

3

JFnews2.6/...52.htm

windows10-2004-x64

3

JFnews2.6/...2.html

windows7-x64

3

JFnews2.6/...2.html

windows10-2004-x64

3

JFnews2.6/...s1.htm

windows7-x64

3

JFnews2.6/...s1.htm

windows10-2004-x64

3

JFnews2.6/...ws1.js

windows7-x64

3

JFnews2.6/...ws1.js

windows10-2004-x64

3

JFnews2.6/...ex.htm

windows7-x64

3

JFnews2.6/...ex.htm

windows10-2004-x64

3

JFnews2.6/...dex.js

windows7-x64

3

JFnews2.6/...dex.js

windows10-2004-x64

3

JFnews2.6/...dex.js

windows7-x64

3

JFnews2.6/...dex.js

windows10-2004-x64

3

JFnews2.6/...ews.js

windows7-x64

3

JFnews2.6/...ews.js

windows10-2004-x64

3

JFnews2.6/...ews.js

windows7-x64

3

JFnews2.6/...ews.js

windows10-2004-x64

3

JFnews2.6/...27.htm

windows7-x64

3

JFnews2.6/...27.htm

windows10-2004-x64

3

JFnews2.6/...7.html

windows7-x64

3

JFnews2.6/...7.html

windows10-2004-x64

1

Analysis

  • max time kernel
    119s
  • max time network
    128s
  • platform
    windows7_x64
  • resource
    win7-20240729-en
  • resource tags

    arch:x64arch:x86image:win7-20240729-enlocale:en-usos:windows7-x64system
  • submitted
    19-09-2024 06:35

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    JFnews2.6/CNews/DaNews/20061114111856.htm

  • Size

    4KB

  • MD5

    c3b978a27d202822dbe9475e7840b25e

  • SHA1

    37361e7c22c8dc63fce77304a8e52f228adf994c

  • SHA256

    0b01c4ddc1163af4c6869e319482c95bfa9674eafef0ba8370611e6448df2451

  • SHA512

    b61b3398c8122c30324438455f149ded908bf6eeadb02e7dcb97e879855d35d1ac57d48e581ae5908152aafec1a64fe587cdf6059e1dfc3989e1e81d8d675972

  • SSDEEP

    96:XRNf83ZRAF3fnr6JeyaSkU5UkoLe4HtyZkKBgUuYh271X5gMxOuy0P3aRAsRARRj:XXf0vABfr6c7U5UkoXtx2Y+AwAmAHA3U

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\JFnews2.6\CNews\DaNews\20061114111856.htm
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2680
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2680 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2708

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    05fd3334d0cb28e9b0123d9a0118a9a7

    SHA1

    4a8262b7651ab77be6ff8c30e4193a73a12f88b0

    SHA256

    19aba9528ca8c9140e30bb640564dce5eeab78d9228ea649647d4f6d0dd25ebc

    SHA512

    54ebc806d4bbeca8dbfaf3116cf25d56744d7117f45c1b13f6b9dc70004c6dc151ece5c77674beefba4b19a2b63d14e12a4d3629523d6cc65f88d90c78ffd282

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    dbec89a7863ee17497e820718904c465

    SHA1

    0a515f55b905544c20384ecb65f0adf73c3a22d1

    SHA256

    c014078a1dfba69c67375c513d0154b99a85ab2feb266b2aab2b8433ee27ec84

    SHA512

    294e712a940966da679dbdb944aa94ed0daf5906387493565d391acddc706aaf67997cba296f09185bff1f7a59eb1d76343d87e94d553106fb33e0cf2cbe5b58

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    c301375b51fd830494ebe00050270881

    SHA1

    043ec51ef74d0ad6f5c6f7eee0d1225a5766f96a

    SHA256

    c8b3ec0c3197c352687016edf447527d2b78eb6c649daf1fa4524b8dce56bb5b

    SHA512

    1666288203fa955d0305d490af6144b2a46dd0c16b5eb03c3cc4f5c56018640999cbadd4a9e3a45b5cedd3ece3344c7b2506d37006e8f88af9af948339ecf6a1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    eb73660f601b1dfc4b741b3bfa806145

    SHA1

    17f29a8ffbca4b81663d6fd3436a6cc1ca2b92c2

    SHA256

    cb1a9c17b876672ef9d549e2865686ed079f7c0a69bdaed97e969e69b4f81d61

    SHA512

    7688008af35c99203e4dfb427da563949e8a5ae6c154bb7850a45a0eb05128fcd158384804d2da34b4128e9adb1b0ba52064f1a498f5c33e91863ac249a01f11

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    8475c38d3704f4767362cdfaa067802b

    SHA1

    e465d4b7b9e1ddfe0352e1c9203bd2067cfc5ec5

    SHA256

    4d87510395831d71268611ba5d65acfaff98b95063fdeda3ffd7d7785eeab5dd

    SHA512

    532fc004250f217c829c7e96ad885fbd03503513cfb2368af20a8111433cbce904e14e9287a96b13b0cd1deb3fdf0a8e261869d37d5e93be9a3ed3fb0b06c51e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    2c807c39db1b48f13a38d574e42dbbe6

    SHA1

    5d8ec521a03c3d3ccf6c06dbe68e86000f3249ca

    SHA256

    6466f0fcadff1e58bb316ca3fe68cb5aab161441e6df1fca2051c6c7323ada78

    SHA512

    15a931503c60b018699a35fef3d4c57ddf9a952c29d83ecb8f90dc64f8d8c8e748c237e76b4aa53fe204dfa855c5218b143faf2b437008eb8174ab17686b894d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    fd95e1a992367f1cfc841eb4cd339fb7

    SHA1

    da3fc7feb1881c8e2f3105d17fa212e504233b19

    SHA256

    d3b2acf39d8c14f2455bb124fe6b0afb9000f55ed6f53484c81d5407222a5e16

    SHA512

    876d91a54002584a494b622471db830d8b89ee0687962c4d4a91927df8b51301870d53577b53943c97fd48b6e32cc2956b174b371badfdd1ab9b927f36f234d4

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    4baf96f315dc8e6cd448af0f60b687d1

    SHA1

    476ae754f3faa85ce3cfc5016ca53370dd7846a7

    SHA256

    fb2ca713efbef279a6dd2cbbc7972dad2e3d951ccca73bff4036db63e9241a71

    SHA512

    5d5d0f63439ade6cf14da8d2632ff9004b6b25fced04d2be2efd9b820006ae80c9c0e116a0dbfe4fe4962fff8111ffa64cb5ad60975b4f5f3522b29230655f2d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    430719fb092e91da3f0d91c6e7f62590

    SHA1

    637f2d05a102f6ab29d250ba2f4bae0f6662a0ac

    SHA256

    1b18a7246ad2a18aef482e6917a8c705fa8cfb6e9af09eb04f23577d184e9ff4

    SHA512

    b6eae750e539c0093e7abc433595bd0b9caf2f8e18cd7fe99b3e62d988f9444e13c98795b1008aa6607759b6bb8682e0227f91b48d64003355953a89fc0b9ccc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    7d606885918f463f2377afd996bcdc7e

    SHA1

    a65da982c3f14c7a27dfa6befbc9461550d5233c

    SHA256

    9b2f529da8c6ad2c2938b4df9f477391c184dba25836f0914246f796aba7e5ca

    SHA512

    a01778abe630337037e0a77e1200cbadcf2330e71b9e13e48b456b1d8397817d4fc47f3480773f61e8f4d30d13c49a66cd6a4986b11c98db16d2d1a2a031915e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    3040a51bea2a71be7b6243c7ba40ae6f

    SHA1

    19a08814c0d63858edb1f86dc73935ed5ccfe9cb

    SHA256

    631d9b14ab6f050cba6639243a1d1c450ddc91686f8df2f5359c2e1e5f018ae2

    SHA512

    a9f5965df601e803885c760418de1fdc1495f97dd037be0c726dff993cdeda28d1a44da12f05d3f3defc08298d5558b3dc36c84346293cb024934316865546ba

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    ed05150bef9473fb0a31205abdb1e5ef

    SHA1

    f6c9049bac15d3d0b163afb51fe26b29b5296a08

    SHA256

    634306b8327cc1c4e89429357b723ae386057ee4320aff4c158d88c6aa64b4ce

    SHA512

    53ecab801037f7a5ec6a8c118e7d14c5032de53addfb92038a89605a7fac765186482725aa4c5d7471738433f6c603e1cb7cc93c18c14d74abb9c7560c430bd2

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    a9e2d9e702c12847bf28b231d56a1eef

    SHA1

    590bbd38794c51538d1976f238096dd8fce0ca3c

    SHA256

    270fdcd62e7be51e59be5f5ce66f0d1db1c5f47a02145c24e93f550571d8bc81

    SHA512

    588495bd2b9b69c06b0ebbe956c181a195532954fe2bdedf1077f97467ae70609210838c27ff3a16da76f9feaa7e90bcba8eb1cae6648e3782e1f8396f3734da

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    e4e2cf8d61543483e20afc44525650b6

    SHA1

    21b81b0afe177afd88b9cd55748d5bacd7550e8a

    SHA256

    79c162ba1ee523598c6579f635b9d3e0f765c7c36fa757947aaca424da62edc2

    SHA512

    98eaaf00fbc315fa7a46fa0138afa9ec9bbbd78745609e75596bcbb29556272b315d5cbf8430acb75cf12f2fce6148953cc080bad8f06ef53db3eba65a2367fe

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    f32de2eccb81d43860f976467a8bbedb

    SHA1

    2c4bd7c72d1067f6f4931a8bf92a5e691369a1c3

    SHA256

    4b1ba0627cfd48e41248337d46303793baf28f18eed058fb04bc6c5ee5f0d9ff

    SHA512

    7fe5d1622fd94fb40820ae2610e9affa4f702179f89ba650f4ef60621718f2b3f707e07c9f4a5cdfca4d798c249c3a07aef5d1a83748b8febc582a580b485147

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    6e139fc34fe950f0914be6614c3711d0

    SHA1

    698df93aed6c485235200c8b589a12f849c33fe8

    SHA256

    6d589d40967da572bf0f4b63b0899ec095a70ed3b52274c8f55e7a8b0517aff6

    SHA512

    b3c5aaa8e27ca5e78fe46be4e0a91b1f6c27f5a966f6df634c3b3a388ac14019bc6e7a915ac12f13b303381c3caeb9be08a4d90a06768cd6b0db6481f88e89ef

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    5fb786183c7713d4c90aacdb0720666b

    SHA1

    50a366b306e69b3907ac06e18f4394f0cd4dba1f

    SHA256

    da91e07659cbd0473648357cecc3128c1cdb2c92f22af14f67c8c83d0b3e7cef

    SHA512

    cc7a00409f6fb3c3a94c45cfae84addcef2c65ac98dfed024224c03244a6dd8b46ad15970bc2dc3b4355f7b6c6bbc687b446aeadd19e11d55600cf2c0f0b5e4c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    1ea777ec493a44848958fb8ec35a7620

    SHA1

    473013b01c316745ab5ab9381f4ab4e1d1a5d573

    SHA256

    4d92547fe9f57ca68c7d8ed5314bbde921d4abf56b981ec3d9c0081a0bed5a72

    SHA512

    01df9f92e1c0e67f65f0e4a3826060c33467628d60a5e67bd4316c5e0718dfbbf48a1c26916b0feed930bb98ab308487181a44511ebb4a0701b0b8b2b9a14388

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabE18B.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarE1FC.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit