Overview

overview

3

Static

static

1

2b2d6a3fab...8.html

windows7-x64

3

2b2d6a3fab...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    149s
  • max time network
    145s
  • platform
    windows7_x64
  • resource
    win7-20240903-en
  • resource tags

    arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
  • submitted
    09-10-2024 04:52

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    2b2d6a3fabbf58da02adb49ac5016e67_JaffaCakes118.html

  • Size

    14KB

  • MD5

    2b2d6a3fabbf58da02adb49ac5016e67

  • SHA1

    e6935b0ff68891d826527271302f83ad848cc870

  • SHA256

    a45200fd4db9252858966dfe88ca5f458a088fc9002b062936cb0203177174ea

  • SHA512

    ec1530e41bf9c5820cdaa9937e8de9376b70f4948be454315604221397bd3034e808341a8bfd495e1ed8c5d1e2ce7aa9eca0dffcc1a6f75f5e06afef71a2de7d

  • SSDEEP

    384:rqoG86/V4Z/Hw3CqegfpoxKWEsu4exRDUFIB:rqSH4WEsmxpUuB

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 26 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\2b2d6a3fabbf58da02adb49ac5016e67_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1748
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1748 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2020

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    ff9487ab874e569f79f6f9bab457c345

    SHA1

    90836c7139a06b5cad8b9393d95c38c9232340d7

    SHA256

    d9116dd03458dd8f59c1f803f5649e172ba17d6b376c56eedf091a657eba8924

    SHA512

    a8b58676d049c5f0ad4d911b39c8d9bf693116e8b61690689d83e9305e9a0b54d1a603e83f1d1cc47e83a097258f17d3057b434da693245c7c8b2ff05fe66ac3

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    794f084c9345c5ccf92b73246b551d5a

    SHA1

    a0313c4bcbbf902c387c02c7784454bea03df5f6

    SHA256

    9d3e5a140362380de02834441c35c92282536e42284e5c681a3714ff1d1aab08

    SHA512

    73a85dba87593b1edf4635cf7692c83ce4c48db0e83a7139bcb442f4adefef0504244c5ef3b04ea5b2d34dea748afeccfbb33d0f009d7dff4aa500c86ee7b197

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    b4ef0afa1faef0a8b4b649e3dd24506c

    SHA1

    fcceb3c6c0e60131ddbd60c0d9a924de1701a591

    SHA256

    ee1536638c4951b6e963281c0bd6f1660152612bfcfd9973e603cfc184ee8126

    SHA512

    a5eb3afa2f6c3cd2f7eb3ab0058c5f40d6ef6a47b5a0b1d7420bd7d418816930f34c9ade84db2eec29cd6cf90f9eb4ca315b022044427aa1e0c88cb2ff796be4

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    188e2a3f543370c800f02b2248151eb6

    SHA1

    f2c1be9d5fc2c5896dfa6ff7b2e0a89df53af79f

    SHA256

    5b69dcf847e3b9819608c2d2a02609bbf76312efb4582905120cac50803253ac

    SHA512

    f1cdec046236bc1b7f932aee51513123ac11da73889c92f0668b23728da632147163b94ead7d78e92a67220e48f81282ee76c5586bb502b1dfacbfd2f43a83c8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    35a78cf8e118c0cb1f7aa63a95dedf7a

    SHA1

    4eb3ee1a9f641eded89ee68f3c93207c9bf6d4f0

    SHA256

    5e807072a5791fb7de19dd82ebdc77fe1787299833323091f193c53535e28075

    SHA512

    3b2888db8c7117827869d776f696a49ce505c181919c49e42a2ccbd12a66fc8bb065cd05f5b129d2331cc3f38d38c479f48bb3c294edf1c7337706780a22549d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    f0503a93470977dafb8aa07e86f781e4

    SHA1

    b8ad26a1f916df8af630174e7762e535c848d31c

    SHA256

    fdf88ec1bcd628d0c56410018f704fa2075adba25eb36d43519e65b58e8bbccd

    SHA512

    50768a3e98c3349e8c368f27e2eed3c60827a8b7a9a56182e6300bbe64656adddb2a8c1bc19e865bab3b9433b74fd633fa76a2962b2e2c92377b1acbe2b7cf85

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    d1214772670aee9a8ec0bacbc62bc5c0

    SHA1

    25fe1001f6da0ef538869231f157dc63e59cedfe

    SHA256

    c1be6eafe9a4492aa8f95280eaa042356c0bfbc63ce233f413a10ca5762d234b

    SHA512

    17c5af5767b6e16fb492d9403f841724e690a66f6b4ad0a5a7d9af78b5ef8ed9eec4baaaa9d2b19f219cafd1601b3081b2b3f35c2aae1f20b67b3678167e5e10

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    b75558c96edd7377e3287e04b94a7a6e

    SHA1

    5280f43cff292438c84f77cf5415af608046f2e9

    SHA256

    6ae671883d2db98558c4694662355016a664bb2d8990ad32acdf642fd586b4d2

    SHA512

    0bcf8f466afc3e97088d33cbc0b45b1629177daf3819ac78f3bc3552df95bcaf16421a58e61db55c9b0a73476a41ea6e7ac28857d828ab60000f26f76f6831b8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    b7f4d4745ccb1b514344149fbff14d1b

    SHA1

    dd6063b1513acf04cbc5293feb2684ba2c5ca6aa

    SHA256

    129d16fecd6b538572250b0781cd38f968a555f670c0b0c825bbfece66374832

    SHA512

    3e3fef9eeb564482a562ff86e0b20cc81ea30edbb430f48e0ee3d38524c34365b1cecf535f1fa7cef5f26006bc2c017f443c46628d69cfb875379c60fd6c2ea4

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    419bee70cc0ce8538b9e1c9a4ff2b37b

    SHA1

    e610aa2040b7ee29c751288451bdb3affe4479e4

    SHA256

    4f7e3aaa3546258a8245d138178004ba0a2ff3339841ebdd19b46348d889d684

    SHA512

    6a29db686d37c188bcb5b3520a137422cb4bff28db59fc4d3a7b27b2bf77129b7a0a5bf88db41d7f9e2c9e59b49d2c774a8eac47560dae494ca5a802282aef53

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab85B5.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar8606.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit