Overview

overview

3

Static

static

1

2a67ad5e5f...8.html

windows7-x64

3

2a67ad5e5f...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    139s
  • max time network
    121s
  • platform
    windows7_x64
  • resource
    win7-20240708-en
  • resource tags

    arch:x64arch:x86image:win7-20240708-enlocale:en-usos:windows7-x64system
  • submitted
    09/10/2024, 03:56

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    2a67ad5e5f8ea26ec43058ed4e69b76b_JaffaCakes118.html

  • Size

    139KB

  • MD5

    2a67ad5e5f8ea26ec43058ed4e69b76b

  • SHA1

    ed26b6a0bce7bc86d3ae0cf7dec892c9111d55db

  • SHA256

    2340f2072aa1a20ad35245036321cfd7066be8fd52401ec677c1252069a6781f

  • SHA512

    b937c9d0f0d9aceaf27a3bd342418ef664d31ce47d8f9739c590bd3b437890303efd319068baed55019c9c95fd75db43e492c274d5932d4bc6cca584ce93fec2

  • SSDEEP

    1536:SoRpS7qlWVyLi+rffMxqNisaQx4V5roEIfGJZN8qbV76EX1UP09weXA3oJrusBTs:Soi7tVyfkMY+BES09JXAnyrZalI+YQ

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 41 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\2a67ad5e5f8ea26ec43058ed4e69b76b_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2184
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2184 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2412

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          c1caffefce6dc1c1d6b8a5302a96795d

          SHA1

          2edf9ec29309275d440a2c535feb0b4e818b53f2

          SHA256

          fc9d744ffcadd6b37baa7ae42ad4ece022c17ba990540b57d8660d35b159f4aa

          SHA512

          857737f875ac9cca75445b07d50d7209a3330a3ea289e2884d248cdbcb7ebf15d6c683417873eeef2c10d0fbbaf0e04f3b1dba710599490b465c2f0b963ba85d

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          b12a74e23c92554b62977fc077e2e2bb

          SHA1

          3e0da4b6076c72b204a3028cec80adb3ac63c87f

          SHA256

          877bf0fb6c41cb57e4fd2378790fd09c9833e89d873ad888cfc4ed6babeffaaa

          SHA512

          e5462bdcd8ae5dfc86f2bd648c8705d6f539be9a4e4a0ed9e5634816127b5dfecf7ca06a81d20af4b57826e8628035b4b5b8fb94cfb09bd50b47df4485bc2510

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          74aa5871bcf21e984a2562f51d96eb8d

          SHA1

          cd86f92ef11bb64e20f2509ddccace394af9bf66

          SHA256

          18fda9f15717e812619b8ad80282d4e9dc526c043b4f3160ee7b05e1d95301fc

          SHA512

          3d10a40bef9db21556dbb07f4ef78ecd9f3f1e32eb1fb6fe267928c9b444cf3c0bf33bd36df509af9b245cf10686eae1efc7017702de45625b92794bfb0021ac

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          5120115da040d5f640a5ee6a8ceb76f8

          SHA1

          f699b3da58d03f76db5ffefef7590ceccf43b9db

          SHA256

          408755319beca66889b468b8aea2bfd8db62fd3d8ffa6101fda03f98e5a35ad7

          SHA512

          ecfbf398a5bea084b7ce6631132277bcaddde66bb05b03b2831ddf1f2a22bc21e554327d96c4413d335e6007ab9a3746573a993f979ada10e8061993a0a1ec8d

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          0ee7fc7ec0a405a74460df37b337a7c3

          SHA1

          a82ed7515b907b7299b2327d99974e82d4aedab4

          SHA256

          1e5edb98c1c1e5ff762e8ac9bcdb5173adf748e87d8ac4dbc938c447ecbf0c98

          SHA512

          40e79937af1a6abf09616c74232a19dd16ce0e5fdbda84cfe392320b685ed8c3cd384015d8c0efa719b2f9b91534e593066a8b64f952ce3dbfd405e49a12e4cb

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          8f50656350bd7cc0bd51b9b2a8e87785

          SHA1

          399e4315673f4f29b74cf11d54056913e0c6cfd3

          SHA256

          0f365d4af911cbfa41fc55aaa485b3212a95b7219193e4c856337aae00184df4

          SHA512

          08fb7261ec269c9c6cf9dd883fa238d6ef8cd6152b846a603e636544f2c722cc8f1be6927cf5f2b0e88ce99ba136552f82daf4953e8ac06693a1d90675687c8a

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          004ebb5dd712a7b313293147d63240e6

          SHA1

          49cb142b37131a036126b703f1dc2469b8d243d4

          SHA256

          f21ba790ec2b76f2d38590d620945473e7f99b5b9d9a9b0cc6c8b313ecc614d0

          SHA512

          a4b31cf05aa7b856e6a8a9e3b4a39eaf87494173576f9b6d504ef67e62e4bb50f438bab1a1e43c11a83f96366baaf06229e871595908536036f21973b7b386c9

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          cc39688883ed3a314c9c1342cfb66d92

          SHA1

          bc8f07d02672857b4240d3a941903eebfa67d7ad

          SHA256

          b49fa687a6b579ea56e5423235502b69a67c11a3ae813de5fb60cc128c16bd9c

          SHA512

          9b7da5c266b1cd316051a79a9be973765bcb51f09d9bafcb8761b91e98ee7d19c90275a7599d820c0826bf8bb7ea63c3156759a61cc1a84ad598e75fee6deb9c

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          a53174d29922755e0528a400acb79273

          SHA1

          085fe73bf523129d340fb01d4395785edf14f37a

          SHA256

          7c329e302fc3fbac894a90eb6ae3938372e726bb7efb2d4b6117d775adbce61a

          SHA512

          6f3996c604dd0cf650526b4a93d91e3db34b14d2be864c5aaf05331bb93bb13fad876e5577df8f88c0e069222297269166746864e3b0b7423bf987eada4a1e18

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          0a1ab5c42aee6d7e50a0f9866fe0aa7d

          SHA1

          f27a144899610dc5251fb9d3068f5e794592659c

          SHA256

          84f0db0a53be509ff8bf5015625088fb7a006d98ce0029aca5b3be4c01257d1e

          SHA512

          8d47702971c2acaa202e7b963859e9da9716fcae2bf430d0790398a0d85a2e6c05e573052247c8f2ebe749b9ca3d09e20e24f0f4711579d6dc492b17a2aa28f2

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          0765a70e82f57234ae63292eaa721d4b

          SHA1

          925be285c01e014fbfaf38232d890d36f22f7aa7

          SHA256

          470869e56838d6f62a4682540e0e1d1fa9ec3a0e50b01e858cb09d359cad2bec

          SHA512

          4d91ce73d84aadab49c8eef3969399623f7dfeae8d68ce6021c3c6182a3c21cb718f053698339ce763a9c78a5f8796e3aa845fe21eac7ba01ed5900c40386d8e

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\Cab8D73.tmp
          Filesize

          70KB

          MD5

          49aebf8cbd62d92ac215b2923fb1b9f5

          SHA1

          1723be06719828dda65ad804298d0431f6aff976

          SHA256

          b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

          SHA512

          bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\Tar8E02.tmp
          Filesize

          181KB

          MD5

          4ea6026cf93ec6338144661bf1202cd1

          SHA1

          a1dec9044f750ad887935a01430bf49322fbdcb7

          SHA256

          8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

          SHA512

          6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

          Download Submit