Overview

overview

3

Static

static

1

2b9b97e835...8.html

windows7-x64

3

2b9b97e835...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    117s
  • max time network
    133s
  • platform
    windows7_x64
  • resource
    win7-20240903-en
  • resource tags

    arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
  • submitted
    09/10/2024, 05:22

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    2b9b97e835ac22c201be0b1d23c823d8_JaffaCakes118.html

  • Size

    26KB

  • MD5

    2b9b97e835ac22c201be0b1d23c823d8

  • SHA1

    a5e6b5987f22c27cf7087034262ee30d1f0b4d0c

  • SHA256

    403ee3cfcbd8c25873faf3d58cdafe1a34e379cce1bc1619dda674894b27dd70

  • SHA512

    c408faf8fe94558374bad413be02c853eccdc0d6ecb0b680c9b719762f28bf14fc4e52df6f747dba43889690048820e680e0e5f658b7b55860dce0c391f22307

  • SSDEEP

    768:SC+uItfutD64kiwyjCo+7ADEyBMsB5F/nNhXKG5fMV:SCTItfutDrvwyjCrADEyBMsB5F/nNhXw

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 41 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\2b9b97e835ac22c201be0b1d23c823d8_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2188
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2188 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2804

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\3C428B1A3E5F57D887EC4B864FAC5DCC
          Filesize

          914B

          MD5

          e4a68ac854ac5242460afd72481b2a44

          SHA1

          df3c24f9bfd666761b268073fe06d1cc8d4f82a4

          SHA256

          cb3ccbb76031e5e0138f8dd39a23f9de47ffc35e43c1144cea27d46a5ab1cb5f

          SHA512

          5622207e1ba285f172756f6019af92ac808ed63286e24dfecc1e79873fb5d140f1ceb7133f2476e89a5f75f711f9813a9fbb8fd5287f64adfdcc53b864f9bdc5

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\F0ACCF77CDCBFF39F6191887F6D2D357
          Filesize

          1KB

          MD5

          a266bb7dcc38a562631361bbf61dd11b

          SHA1

          3b1efd3a66ea28b16697394703a72ca340a05bd5

          SHA256

          df545bf919a2439c36983b54cdfc903dfa4f37d3996d8d84b4c31eec6f3c163e

          SHA512

          0da8ef4f8f6ed3d16d2bc8eb816b9e6e1345dfe2d91160196c47e6149a1d6aedaafadcefd66acdea7f72dcf0832770192ceac15b0c559c4ccc2c0e5581d5aefc

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\3C428B1A3E5F57D887EC4B864FAC5DCC
          Filesize

          252B

          MD5

          40b38f31d9baa5a04aa520893ac0644e

          SHA1

          8c2ddbe649338aefc84edffbaa1bc4765df59814

          SHA256

          63fa9eb99fb62e4b063f2f030114970e139e087016f733858f980036ce89f2b5

          SHA512

          011f8dfc36a1776316854398a4908374b08c392357c17d71044de40669a407bccb070cfd13597e210b06a54712bf093ef80b739382f1716905ec534473ff1879

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          6316ac4551eaf9903609bb505b314211

          SHA1

          3bd97a33f7be9868fbaaadc2bf1692ed4aa7437d

          SHA256

          7848f30a36802782133218b7efdcf2fc790dcd817af13fd27afdff3796412e21

          SHA512

          ee0e152f9e92d8196af48e5105d0fd60d2eb36f79984bd88a320a0891ed070e04b9a3542759a0e629a05718290ca792dda6b22b3950b6138b33e453d5e95d93f

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          56a25d9afd61d44ee4f145b17158894d

          SHA1

          92a59c51b3f11fd572fdad6df0bfd9aaa9218b2e

          SHA256

          409bdcf5f63d11e2c4b43648eb90b633c4a38f8959acecc7a31cc8e69d1c1c2a

          SHA512

          5896b38bb7fa4fd3b190464b1670311231af62b7b37e117f47c8d6973e147890c83d98eb955c8c808d66ac961d70aa617862712a5a6d63655a558978a55547ee

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          c677c342c6cd5f2a1d33ed4c3ae92338

          SHA1

          b99146d2a61c8559319aa280b83e14ab15f420f9

          SHA256

          c7c06bead51f12d37b18480594d3b266dc29a754d8f95ebba4571db16cf8b61b

          SHA512

          29a637ae879215f192402982378becf3bbee42df847ceb1e1b0c41926d0fc1c0d8d8d2dba2248961736a9e2afea14105e8921d8d41fc7606a948269694cea7f7

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          2ecb0cfa163f3faa7e44abfa7389eee2

          SHA1

          408526b4320acbd9fee70346bb760addddf237bc

          SHA256

          3d308e56ef189a6da84e7ea83642bbc008a9353333379b96553fd924ebd3a32a

          SHA512

          545d4325f7494d58c7316a5201ee0bca23820d6cc187c48771a131dc91bd5abd366471c11de3f7c4a40abd132bdf8b97d2c7a23749640fe15e237dd16fe38be5

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          4033f01b5d4d89f3f8e44a54c4a78d1c

          SHA1

          0e45fcf9091daa7c5cb8dc3d56c6c5f4e02e3183

          SHA256

          8633f3f7efe5f7ff0ef0fa579fccb32bc7346e12050b2f25628a0b6be6dea914

          SHA512

          1e18a940dff5e67bda8b5a3eff5bf0a457ec3f7b47c25d069c50fec17b803b6b0e70be9fd7c96df896652a9a33924b11398601c7849f4789c503d734ba00e549

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          e09779d207207968f8f8a65465030101

          SHA1

          228ff5f61a587f1a48e8eff47b20f56f12f04450

          SHA256

          35008652a79d2d0abba3812d55f7da5d23bb5d1d401babb6ef77bcb24a28a2f4

          SHA512

          c3e2fc128ec593d89b68f7c0e2358604cfb6753e5a9bdff14e893ca370da0841dd0e58fdf4371d8f73f1572a980091f35e4463fdbfbb10b65f6bb1934abcb84b

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          9eae1fb4ba4bb760e2088b171e33c671

          SHA1

          235d5ff6b370856f8d0c550ecd6c70c1a807dfa9

          SHA256

          f2fa415be9429c6085b778297e5c0fe6f5da03cb6f3f00bfff3116f2eec9ef61

          SHA512

          05de3425f82b6f7bff8107c838085b305c18c8af88cc92c2f0190049bfa88139a876a3aec430b5f4765df0a860d515be044bcec5aa1357fd680b2e308d9555a8

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          83627a1a8266d1ee69238b2abb607d9b

          SHA1

          ec87df27e58c015f3fc06e2830251a25ca583e54

          SHA256

          57680cd36f3570a98e9c45f560d2da9f6b8aad18aba74348730249f00d46651e

          SHA512

          ad3f818d91dca8b0d8751697916f0c9f01624cc50247a49169626ca6acc40638287ba9c1eb409554e3d8e1685b955df4e7bcd8ef9cccda19206faf3588bb033b

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          1327f22bad93c31b4edf2ef16dfc614d

          SHA1

          bb85ba97e1a0876992c854fe685741a5cb970d57

          SHA256

          788b167613887ef561b7d82b90f6bcb833245811102b8e32bed0c0a363a85517

          SHA512

          13e56a74e4caa8cd23cf4a0a07b81994068252b860a5e76cf00f61f0921ce924fd3e12a5791105281039af60480277166e7958750674e9506b737d9a9cce56e5

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          4c6c3243d7ea5c0fccbbc6bc976d4213

          SHA1

          f730af8a7ff3fe71aae1a033f76ef1ca5502f395

          SHA256

          0293803894f6c65cd82ba7faa2b8fd54b53fbac220bf8b7427330b91e6745c0b

          SHA512

          af10228791989a1306fa8ae64700f1aabcbd5dea8252b9ed8f78f3652fa8009c0be70b5ce111163910fe0a339278a5a9d6ec0296e94245172eb74c471af1482e

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          550c2b36d3d299b8ee4e6b54c2a71c16

          SHA1

          c52828a2c4483d30769c147f6bc69e06a8bfa621

          SHA256

          bf445771e469e197efa06836f59d2518dab42231ee24cef7cc96d3c36a7e54bc

          SHA512

          24817ec540718ff7bf3742000aa6f2a558e786ac0a92289bcda03212803124463d7af3d9cd46f27eed18f3b8daddd8e741a3d73265ceccdda8e70ebe7f8fc4f8

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          1ad62ba900b0b714a92c0c6d2a268767

          SHA1

          99551239b66ab9046fb24f0db1a148ccc748e28f

          SHA256

          f60dc5351db4a23bc001a4925111b69fb2e9dff74198a727c23284d3273fc5ee

          SHA512

          16f00f341af3630b2dc7e54d446402b35000018c844475081cc120cceb1400363af44d821d5a7a28483d9322967fa780dbe45d788aea1d590311abe829ab6977

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          b071dc6dc26156dc1a1d8acb1f16cefb

          SHA1

          a07ffaefaf418ee7648aaf538b398b510c2cd322

          SHA256

          d67cdf761d02820507a5342ab856e84d8907eef385d602c4f4f5eb920bfd6a39

          SHA512

          ff18b7db1e5047ea511421249861c2ed26a123a5d7b64a28037cc738f047e05721cf195fb3056315abeda8fb72a9552091ee105514c85c9d2e7a82a63ac6e573

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          23c50d893facf769f4581903f8d8192b

          SHA1

          567618676a3126a98070b72c9cf696136dec07db

          SHA256

          dcadc44a2a86309927cc46885b82518ce0bf71e677b600430b85e45e9a4b4a09

          SHA512

          d804e72d19eed395f836346e21955b4ae66e7605532480ba3cac7cde60ed36f35527c634f2d3034924e8b77f32bf11ce5cb77159721d2ca009277e382f077fc0

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          77005f0d0fc3d1ad6ccfcfd013732095

          SHA1

          6f9667f815776c8f24c7c7c421307d178dd84b1f

          SHA256

          45b551a7a68ce23a4c968c8d50178a4c5220bee3445edce56336696a9a69470d

          SHA512

          0317ebcacf2aaf826ac2ee437f97e6b35c31637b9f0a3e6cdabb5a59b2d41616e69ce817ea90e1176bc935c6a3c9151bc108a6b93651d242d4638c72807bb137

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          b4ba84c0910156e47fc9f5fc052f538a

          SHA1

          3f77b1e79d414c37b107c9aea5c34d3eaacb7b9b

          SHA256

          e73fde24d343c2adab16816bb95da4649520441b1753a8a87af63ea49687f801

          SHA512

          73321216276a70b89bc9407fbd931f4f8373fb303ea2e502d2e9ab6a0bc42f6a3d9c2d7fae86cc49ade0d645e1dffd6ce4a75d056ed3f1096b3cc6b02edbc0ae

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          79d50fdbf3cbfabd0b304f9390b8416d

          SHA1

          5f87576539a9669edf4490751d16b8e2a2ef65ee

          SHA256

          cde6c7d444d6a13a6a242090411322db8740d8a67629a1a2abbae34751787a5b

          SHA512

          8971b07bba0939e754726a6f6eeed78bf32bf1a185129a541424196484f0f996554c377186343877b19c39ac219ea958b13eb23f86a86ff69791acd6632771a7

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          a8f68409e91f4b6a84b6a6b2f2ec7eb3

          SHA1

          5caf7158fe240a8c7f712cb07fdedd432f94506e

          SHA256

          d3c273f8518d3befd87cf819d90a2583cb9f8bbc8b3ab44d3290009e3f5356e1

          SHA512

          43e901fcb5dcca97521b6f72d731c2e523200b645775ebf0f7fbc1ebcc71626a4f4be115f73fe402d62b54d266957219f058c3b4505a667866f3e3e41ac8a001

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F0ACCF77CDCBFF39F6191887F6D2D357
          Filesize

          242B

          MD5

          0f844bc0463bd5419b4bfab6e010e2b8

          SHA1

          c07fb92afd8baefc8d144183a4d6865da41b132f

          SHA256

          be059daa85d4fa49f3310d004e3894205945126a53e7b8ecc6a0aff947796507

          SHA512

          9baac75089223554b900f34d545cbd4a64f93f24b77ea40ded97ae1827666df46b143ff5377e405248fdb65840e70491f33161dc99b492d46a7f5721fe74585f

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\Cab1A38.tmp
          Filesize

          70KB

          MD5

          49aebf8cbd62d92ac215b2923fb1b9f5

          SHA1

          1723be06719828dda65ad804298d0431f6aff976

          SHA256

          b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

          SHA512

          bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\Tar1A37.tmp
          Filesize

          181KB

          MD5

          4ea6026cf93ec6338144661bf1202cd1

          SHA1

          a1dec9044f750ad887935a01430bf49322fbdcb7

          SHA256

          8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

          SHA512

          6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

          Download Submit