Overview

overview

3

Static

static

1

2b2737fbc0...8.html

windows7-x64

3

2b2737fbc0...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    118s
  • max time network
    128s
  • platform
    windows7_x64
  • resource
    win7-20240903-en
  • resource tags

    arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
  • submitted
    09/10/2024, 04:50

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    2b2737fbc05129691b2ea76254656979_JaffaCakes118.html

  • Size

    53KB

  • MD5

    2b2737fbc05129691b2ea76254656979

  • SHA1

    c5773fa6e41f2d8213ff3d5b2e582f7363f53dfb

  • SHA256

    73fd40f92ad8296e683a06e9e55d20293bad8cb8c4d091c514021e0d16cc2984

  • SHA512

    5f2b5ae9d4c226f99c6043b47a9afb29e84e008385f1c2d4ec2e565c5f8466d15f7033645876c0ed2fc695ad13dac007a05bf11653852d074bdec51b6dc8af35

  • SSDEEP

    1536:CkgUiIakTqGivi+PyUwrunlYG63Nj+q5VyvR0w2AzTICbbsoz/t9M/dNwIUTDmDj:CkgUiIakTqGivi+PyUwrunlYG63Nj+q9

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\2b2737fbc05129691b2ea76254656979_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1856
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1856 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:1604

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    6ef76e389331fbbeb5590cee93e2b8a0

    SHA1

    7f8267d532040fe564c683b56c2e9242f6691b0e

    SHA256

    99177b8c5c2fd49708cdf47a7e99a2283602108e5917ab1873b242246139d3ba

    SHA512

    be6285e081ab08ec240bb7ff883670f5be1e001389bf524196d80c00d6280cff82624a893198d52fe0004123a932138aee0ef623687ce298460e6e91c182156e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    00c397a052b7744fc4af089f0e090c64

    SHA1

    d1a84045365d89bfa0dd296e6b14c34375a2e1fb

    SHA256

    fca6eb35c1d2956ac6abf837c187aef7c95cb6285bacf23b37b4d771d0974d7d

    SHA512

    e6792febc751930bda0f62e8c1c9bd945adf3d3b9e3c544147f0189fa907c924ce6ac48082eb7d4a67abda8fc727c1130f56a5c0803a160fa22a0881fc1029ed

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    09e4dc3f80aeb5b62df94fb46a85a2fa

    SHA1

    d4dbaec5722a155247494fc5a94730ab3216c64c

    SHA256

    f99f3081c7ac5da16bc191fd3119075593fc5d2e25b5212724b1188ecc7e4255

    SHA512

    d8666b8536ff4aa517eb9f73fa99a245f0c5579dfcbd222399a2be35b94045da9a20f6072e5c74639b83e72a3f8a16c6d8fc8b5ed52bc54a4590b79a4167d25c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    88e9f1595129bd425ffbd4f578e84c29

    SHA1

    88e48fca2b874a03186956e8ded8186802e5072f

    SHA256

    829d5a05cd7c8d9577e25ee4150e917aefdcbef51914900ceaf4b23130e7ba5a

    SHA512

    7a176c8397d8b294ecc578fc444a5c4bc6d6855ad4b1bbc1b0d809c600abcfb6afd110be0f9bfd993042a63f1ec6fb080af6eb248481164771341e216d2c7f42

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    cc8c4b6ab62d7fb304094136a2c14c3c

    SHA1

    db1561dc82f10aa01d285eeb89dafd28014b07f5

    SHA256

    2b0e00cb923def0374d1b74a396f62007ad516c61023f4a16d5c634106962a73

    SHA512

    4db3be8537aae2fa72e7bf4eccb3c62cab67ed21381c277314e2d57787f3a6260fc31cba02090bd2bd0245d944c50d274570932f50e27bacda64b773f97433cb

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    0f95dff0602c064f45c980d1d4748772

    SHA1

    b2cf48e06fb9a3e72560642ed3114ee49d4a88e6

    SHA256

    81602830cd40ee93a5d662c5171e8f7b88fcff8c6952158d480e3ade65b7e7ad

    SHA512

    60636399772d05d64d023aaf0162b6c2bd8bbe296697942e27f6c2b4195ec79a76aba73fa324180d4938b69567123d2e24912c5c4f36c8ce42109d295a54ecdd

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    7a6fafdb8f380402457b110fb86ee9dd

    SHA1

    f49ee927bc361d50cd02700fac94ca7a3f38cdce

    SHA256

    0e6fa86d4bffc60c385a4bf9390efbca112925f8838569c9d20629a7369e69af

    SHA512

    1f7189d431a7a08aafabf31c34152d83249535c34c07d3506019ad531c16d2617dfca9ff9c7cbd9d00329f24c9520878324bb7bf3e0d49534d3cc1919e2c0c5d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    8a758627a5cff1633bf66f8c75f80249

    SHA1

    d0d076db7a1367c4a557d413250b4b781f82c480

    SHA256

    2509ac923b56d9bcc43150af3d7dc4b2f5d6d3f2f3ac2d36a34594360b7f6caa

    SHA512

    20983dbb7be711cd2e105fe631ce2ce4e243c6df1173a9f4ce38ca8b941a1246ebb481ac4760f5f79917ad7a6f7ab3e8599aaae28cec37239f8d93f34a88e7c9

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    597d6f9d99e34a8274870aae63a99642

    SHA1

    171b06613912f8565a4871caa9d61ae0b2c0fa6d

    SHA256

    67e4d7e3dbfa24486cbf574ccff442d9c7742c16185691fd3bb2e040efe24b4d

    SHA512

    ca4504aacc8969c8c95a9c8507876570d2a75687b9d387ae0fef9ba3f59a5a0a2be13be23dc0e05ee9c16c229e758cff575c64e8f091296307e5ed65bbce5a58

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    0ea65718326b456bfe78d1cb80d5c642

    SHA1

    7a62ae79f167e75f19d2dfdb351ca5ef2b241a57

    SHA256

    186487f89011bcc0c5ab61a03aa2b29cd13c9c2536c475ebf93a694bc9a235bb

    SHA512

    d2794bc48170c15cbcb974ef93ddc334cf603c13e8f871f26285e27b16cecaad2d11e53445f52790e6e979f858833b3fd2a6f6c0b6b2a0c540136d6d14c4a33e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    f0187cb3ceca291faa3fa6324e244140

    SHA1

    3ca660ebf796840afe1afddd4273c8211eaff8d2

    SHA256

    5df8535f307eb062e5af3d19a8ab7c065392e749030f1439b4abcbe937cfe8b5

    SHA512

    adb0519f65bde27d9e4a501e096716ae6e9d8fe4169fec24f47644630bd2b8da3c65feb32b33bf6ae9b5589b67ca35d0b667f475b98d8927b5168fa0b1bbade3

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    7210019327b45a3b96621c8e4f06ed97

    SHA1

    0d1c5b93b009e3a81227a7a2560208cce8a2fe48

    SHA256

    2c730b1dd6d936a8b3174ad8c23ccbf366c118045ed1431e0f0dd38202fa8dd2

    SHA512

    55ba93e7d6bf5ab4189c12ee7a92dde972bc5fc24e05517e84130769bb500201cf0aeb630d4c8b8e702999e992b34a51be539f61a8c28ab21ff59154c6840912

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    6f912542462c6104d6dad94822793fee

    SHA1

    43e12f6d00f281252469f864c1ddb4767e1b3ba6

    SHA256

    8d019dcc57498d78947874ef3e11d3519018dc93e50ff7e242795ecdf5218511

    SHA512

    33ea37431b1d3b18dc21c7fa38d42ed4388f296d729cacc0c7aa35f513f6164f2eb26cf7c36b767a89d076103b4166a93e8fba39b74bb3f11f594123e11af999

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    51101ee3099619a12ecbf5e70bbdfc0c

    SHA1

    e71cc99c2032870209fb19a2500025ffdbcb013a

    SHA256

    515da6fd975d296b53f48a9433a481dae402beb520d0c5945d653c8bfb0520d2

    SHA512

    e4a4a74d51e99b07adb03a828c9dc478d1b2d9c1227ac7857dccb6c3ad6263dac47e70e7b64e00fa151bede5e7acae2db63f15164659a10ed3879bce102290fd

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    e2d12ffa1ff8e2f1ff99ee3ba594a70b

    SHA1

    534d44e7214facb614622f0ecf23ad0af1a64e6a

    SHA256

    f919a1ce24fff169511de2dd409eedba4a476eada2afe6097d90a034d3b5359c

    SHA512

    15b49b2b018dd88b2d667afe41459af4e32035dec02fe61210816088ec210653ac2e241f2dbe231487e15b797ff3cfc16105d87d1635da916bf2376e092b692d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    f66592f775553a254fb97e6868385a13

    SHA1

    3c1fc85792fb1a9f49af7d1d09a56029f0ea91b4

    SHA256

    076188c86912b77e82425c167195dab86043eaf9f93a2f67f150af667d206234

    SHA512

    13608fe5d36b6be698970261aea985c4bb84de942b17fbb9504a31821564830ab86c6a48fdebc261c8da4bb20d4052b30e8f2cf0d1aaa5deaa3d2c8f6ae60286

    Download Submit

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\Y8UFEBH5\print[1].htm
    Filesize

    706B

    MD5

    67f3a5933c17b3ab044826d3927d0ba9

    SHA1

    5957076d09bacaa6db8ddc832b4fd87ed8f05f8a

    SHA256

    97e800f4836b7030dd58fe6296294b7ff5ef1b5eb0e88353f230ea1608d2bb64

    SHA512

    03ba224055ffdbf32b7eea30c764dc18d66cc6d8707dc5fafab74e155b0bb3d4d691c5788b033a68f05299547297125122778fa7e3252f93e7343d918936643e

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabE60E.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarE69E.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit