Overview

overview

3

Static

static

1

2aa9151f02...8.html

windows7-x64

3

2aa9151f02...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    120s
  • max time network
    128s
  • platform
    windows7_x64
  • resource
    win7-20240708-en
  • resource tags

    arch:x64arch:x86image:win7-20240708-enlocale:en-usos:windows7-x64system
  • submitted
    09-10-2024 04:16

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    2aa9151f029811332d1b1f42120805c8_JaffaCakes118.html

  • Size

    33KB

  • MD5

    2aa9151f029811332d1b1f42120805c8

  • SHA1

    f9018ebb9232591866488f05bc3a9375ce7b06f7

  • SHA256

    bd279294c0f7235335adf65f05107103ce0c97ab0ccd01b00f067aec63b9ce43

  • SHA512

    dfb3254597fc606df64af7b0b17eee72488900ad483f705b3c7d95317563547251752436070f61d774de3b50c1b478679a20f292f7ce4118cec6431219e06834

  • SSDEEP

    768:Ns1//MzVSl/ul3647I31diKX3M3TXyLBxezzlsua:G1GlbCd5M3TXBzqf

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\2aa9151f029811332d1b1f42120805c8_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:3056
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:3056 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2104

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\3C428B1A3E5F57D887EC4B864FAC5DCC
    Filesize

    914B

    MD5

    e4a68ac854ac5242460afd72481b2a44

    SHA1

    df3c24f9bfd666761b268073fe06d1cc8d4f82a4

    SHA256

    cb3ccbb76031e5e0138f8dd39a23f9de47ffc35e43c1144cea27d46a5ab1cb5f

    SHA512

    5622207e1ba285f172756f6019af92ac808ed63286e24dfecc1e79873fb5d140f1ceb7133f2476e89a5f75f711f9813a9fbb8fd5287f64adfdcc53b864f9bdc5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\F0ACCF77CDCBFF39F6191887F6D2D357
    Filesize

    1KB

    MD5

    a266bb7dcc38a562631361bbf61dd11b

    SHA1

    3b1efd3a66ea28b16697394703a72ca340a05bd5

    SHA256

    df545bf919a2439c36983b54cdfc903dfa4f37d3996d8d84b4c31eec6f3c163e

    SHA512

    0da8ef4f8f6ed3d16d2bc8eb816b9e6e1345dfe2d91160196c47e6149a1d6aedaafadcefd66acdea7f72dcf0832770192ceac15b0c559c4ccc2c0e5581d5aefc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\3C428B1A3E5F57D887EC4B864FAC5DCC
    Filesize

    252B

    MD5

    cd55730f220c4fc381d8ad599ff94219

    SHA1

    c3a35b348260c45661d85a673f6521d1e897df7f

    SHA256

    5920ffbdc5c51ea22a9fad86a0445813d559f63a975608ea84f126b83384d068

    SHA512

    5d2f731a9674ebe78a2fa82fbb267f359ca5d8bbe6fba7a8aa566b91eca8d9b88dc9fdffde2a55e516858d804d06358a25237886ded2297f6e3cc626e59d9642

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    8d50c165a82274edb971ea8775db8c97

    SHA1

    6cd02b994d16cc0bbbce80349a76dc5590d47f8a

    SHA256

    d996843f2e5a9ce6957f246188ff2d2a06f0c63e78591b2bf06fd718fab3430b

    SHA512

    9cd7508c55bee854f074dcc2517aa01dd3ac517a14d80e585fcf9c57f30fd9282818e29ffbf9478e12bdc6a9c9113c8db8d4a8173517107f4b646204434f133d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    8b988a778810572870a08c0877722f65

    SHA1

    7f31ed229ab4a06c28c6ab94013265508d4e83db

    SHA256

    3938b9b6d2261e0fc1e5eb164ce15a1dc84053a34822b20652a44a636ac80ce0

    SHA512

    c0e3b93cd3e7b589234d2ad4dcfe13e55d46991cfd837a19e6d0f180ff783633d3311bed3455afddbe3680e27204302840d3c480e7aa27cf193de65286ff31a6

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    162873b3ef5d74737ec693ebed65cbdc

    SHA1

    5b31793e3afd71ea19e22050b80e0accbd98364f

    SHA256

    89318bc72fbe9c0ba1c8c7fc68b4a8b021492e0bbd8183f70b8ee6daf7b6e822

    SHA512

    0b5abbaddec2c7621a0465583a0fe6a9251fa978d4818e6208373bbcc1fba8b42e31c4eda370fe67c97bd103da384cb948d7968ae438cdfc2f3f743d2b4a7726

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    e4a7fb7b81550e14c90097adb48ddc63

    SHA1

    20b7fd6495ea53d3f9928f4d65b112044c661267

    SHA256

    d4fc3cd377d4ed705d8245de0e3dde25761f00b827c40b90d1e8ead98d4cff6d

    SHA512

    780a5572b4f8ffaf7366919ed132964cd48ceeb628f7aa7da6f11a38df6f29afa1512372cae1f92e8b061bf63822dc494d0e93b48815239336a837cbab843940

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    fd105bd40cd61168f956c916e72a82da

    SHA1

    22ce1a22e3c01cd7e11963cac178a9c52425fe2e

    SHA256

    ad7031147ccc97ac87789dc42eb0d52247f371935419cb6bdc8a2d3a250b181a

    SHA512

    83d9cab7451d140c5fe1b701d51d09303aee5f729df9b38418a5a7b676ac640e2764d831b27e33f4f9d3c0f3e6b5a461b6a0eb390ddfe21a0944171c81fda5a6

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    161ddc9b47b3de497261c62fbe86b866

    SHA1

    fcbd8a274bcfe60cb8e644052256118d7fc1f503

    SHA256

    15fa521a359c9bd6053e84b3aaccf654b4a4d14f9a16bcb2cd37294938e87c8e

    SHA512

    b23ec2d0094a9f6a0891b4357ebe32f200f16da65fb378c6bdbc6c3e38ff6e41e6d981fca520c75ac5014d6dcd893f6687e8af103b9e4c691fc9ffde34e7accb

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    62b253d99878cf98443b1c1037c05320

    SHA1

    ee3059344302ce5e8de54fd07b820f2b3c334c00

    SHA256

    9d31ea757c56cd3215af74073cb042807ca7b1092098dcddb0b32e33e3935b23

    SHA512

    5b3a826993c734c9f23dcce673532f0c9e038bfa6332933faabf8dbfcd78726d76692d4e648675264ae7d91f2cbad54770bdf5aaa3595a77bfc0edcc9cd64e51

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    2c3632f9c417a8c7116c51a71862dcb6

    SHA1

    f6f97c1f6f50c62acf2477df154865f8dec3d787

    SHA256

    3325f75eab539cf24eef3359e9b306fee870ee968ae112668b0a591800bf29f9

    SHA512

    5f08a8a7c1e90f9ab4ce537f6058a7bf9f13fb83b3b71d638d45b92070e7ac6caa23de09cc9101e9753b8930633b3817aeae8ff3f66371cb0af0654c967b20f1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    ca12ba0d9bfdff1b7b6966572107cc9d

    SHA1

    7ab262f885a218e3115eafbb0755479bab6d2618

    SHA256

    66b8fd0ed07a1cff5a05fef92cf3e1d7389b5085f11692d6cce4cbb04b662f33

    SHA512

    c2bf795ce84078a704adb2b86f22601f02a96d72a5e8ffc9bac068f4e77589f669caf1ac3449c63a7100ba818d729240c138473c3f2dbce4ce1663d9219bb247

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    9b1dbcc2fc25af5e5e35d0a663494868

    SHA1

    4378c0c13848f9f9facf8bcb79c29ad63a48a8c9

    SHA256

    a07a7e1b88425ab0eb9cbe34a4ed1cd9beaa3888b88893bebc24b7264f10edc2

    SHA512

    cb891986576b5eda5c28635c76719b77d42b351ee73b035633b838b39f965d7ac2096f833314486dfdcac13bab909c227e3f8133110ea4e63cb0bffbd99d300d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    e753bbdc2ff43cafc41e246d986b39c1

    SHA1

    80b5abde3dd8dee139031fc382b8054e3154153c

    SHA256

    9361f59cbb2dc9d41178a6cdf89a77dfc7750417215a6159cc09e592bda02166

    SHA512

    0f3b7405c554e8c14894353e452c7e370dba7077a3a0c232b831af7ee65ba7177101c5694c5add5d11b4865feee9bb47c392f7ac6d4bd5bdceab22bbda78a84c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    795393befa31835c65863b8f05e0344b

    SHA1

    48b771e7650da213261f49cdce8cd1140504e9f6

    SHA256

    c720eb281bea64cb90069083bbb1919a4d797c5c2d0640563b95012e3abb734f

    SHA512

    7b12caeac7efab9fb9ec77456ad39b6434650cfaf524302e4cb7116e889d2a97be1d1ce56ead281b6c979a76abfa978437569d43a975d4f48e9813b693bc9e7d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    10c44780382d53593f41d9c694642eaa

    SHA1

    4b7e5b6dfebe7ee855e0dcb6324a519816d8d8c7

    SHA256

    ff7c7ef4123a195bdce656e0ea7a5710bf26492bc8ad8398ba860bb96bff103a

    SHA512

    4c326f75c095557d2b10f5e4fc0af9fad8166d6762ab6796934302e20a05ac7b83dcdb8a8ed8e20c698eb5afed61f02b63cb12b275138b87dbd5b032c44a534c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    1ec6b07aa19321f8865d48e6b3a1eb6b

    SHA1

    cf41ad98fca6b169a4290543b0b08051f81ed71b

    SHA256

    932e9df768203d2c1e66dc8e8be958da4d713ed117153ceb76752027515c6595

    SHA512

    6ff8ea548cd911049b50f523497ceba2296fe68bfcbf5f5f7044dc34f54d4eb01ea56353fe4619311dd98d0014286500fb5a629a1b4b503ac4600039a8dd6953

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    3bb021092735335da6d134f0a525656a

    SHA1

    8b5c636afebf46a95f2f36d2500b8d6c4ed448c4

    SHA256

    70e00f82879d5772b684ab05c3326ca203fa30df38e9a74d497ecb78650bf581

    SHA512

    168d580ff6518a139b44811be0d6851a2811150203103986f5c56716b7fae08b247b4fe35a0cd11a37db2c5f075bc72dab5c6637e94451499511dd6fd24489cf

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    81d5d09cae3bed5bf2ff386186565c38

    SHA1

    59f88e38dc408798f7428cdb848741fbee7b6ee1

    SHA256

    c5d859a0fc1eeb6086d2666181dd6f6312322c967f19b6e80a7f56a14ec2cc45

    SHA512

    a4650726c7443f922491de172b8569f2e0df0835e79dd110be5915c39caaa10be31d083575eb5905af88f27eb8c9a3dc48d918c992f72a8ab6f2d3691c0850bf

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    cceda67b45417c012d6a00f8229f27be

    SHA1

    223bd9eac9cbccbd5e5525b25df9a1035003b3b9

    SHA256

    b255508e5b18db1200f4c1d879bdaa6177ffaad78ca26c9b3b2cc5efa46327fb

    SHA512

    3be28ee369b23bd4ff7770708b26e15ce9eaf9d7285845b867f24909d458615ab8d5920909eb11754453f8632473e915875f8dbaf77d3f6b41843ebf5aec19bb

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    cbc9843462b672571007cb19f1eca583

    SHA1

    6f8efbf3ae66d871ae399a236d1d95c8f2a55b8a

    SHA256

    477086e802fe7b7becca1512171bea119892966d11f7520829df87efaafe3c8b

    SHA512

    39dc33e3643c3efcd325ea115250e57351b3c49a604d5cb7ddd2fb998a58eef716428f6b4dfd7413df60892d8dbbbe582d9c89ee02e58327177ef5e0f22f9252

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    3e7d2e6c7596fc3e2e232f1ab4af2ff3

    SHA1

    2334ee96230f02d923e194b2b000559dd30009b5

    SHA256

    b3bdb0ff98335107384f6a4ec92d63a67186e61ac7f3b01f25e2d52042473877

    SHA512

    772835cc7fb58df18766d2c183cd9a16fd55d0d8efa8ffcb463b38a40ba331e55d2144fd7926c71d4fd5cb33354cd402bbee312cda76b0e45e56edc379738e56

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F0ACCF77CDCBFF39F6191887F6D2D357
    Filesize

    242B

    MD5

    61f2d4664417b6f2cd3b649133c8996b

    SHA1

    7827a0fa9a9177274b2b1e0d9ec83498b1c72f97

    SHA256

    5aa99445dce9329a139b6778f9527e25d85223e501c083bfc1880a4ef819eb0a

    SHA512

    6e023fcd73e251796eb4c9f44c174e6368408618d2b27d0fa0ee05f881300be0518e3c2e42efcce6494c4d75dc0be060f7cc6c33c21f199f4e71ad710e517440

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab99F1.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarB2EF.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit