Overview

overview

3

Static

static

1

2b7d6a602b...8.html

windows7-x64

3

2b7d6a602b...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    134s
  • max time network
    129s
  • platform
    windows7_x64
  • resource
    win7-20240704-en
  • resource tags

    arch:x64arch:x86image:win7-20240704-enlocale:en-usos:windows7-x64system
  • submitted
    09-10-2024 05:14

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    2b7d6a602b9f5dd9cbd62cf8a198110e_JaffaCakes118.html

  • Size

    6KB

  • MD5

    2b7d6a602b9f5dd9cbd62cf8a198110e

  • SHA1

    216aae7e161aff01146de5bfc2078962256b4f33

  • SHA256

    b458f105712c92e3613e05f9010c1ed3e1ae5470c8162974078f75e188d32f4f

  • SHA512

    d07594b7beee7dec351a22ac97afd2b882cab6bf5b6d7c264e1afca7ef3b91478c962104dccf3b941eabc0ce44eaea7d5560b1876071093b1f49537680a7d77d

  • SSDEEP

    96:uzVs+ux7paLLY1k9o84d12ef7CSTUOH/6/NcEZ7ru7f:csz7paAYS/z4Nb76f

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\2b7d6a602b9f5dd9cbd62cf8a198110e_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1952
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1952 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2236

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    344f54c3f1c6eb13e93d9fec75c816d1

    SHA1

    8d1eb9f69a7dc65a40111bfeca8c89c77a84428d

    SHA256

    575afcebc484b360909e69567aaa1cb9a82d3b068e4dcb3d0af8f83744093f4b

    SHA512

    3808f2681675268e94c7e905235c7f9a9757f666d91bdd2d2b8b2b142cd1c4078803b5ab6e973df2c83dd59b464ca47909fe86c86f1b2f8fcb1b866b52666ccf

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    d24144b93fa240668d78ff71eb7de248

    SHA1

    94fc122e49752428a097ddd60dd68951a21d5f7b

    SHA256

    eed42bf105990338967304b48bf69816f17903fc9ce0d2769fd22bc6668e5cb7

    SHA512

    42597fae718e7a34e0413210c454ebe7601f90ebbf6957292d788bfc4c682b15dd1f6bdfab30ad01757a7dd1cb66ce2f35532b5320a7b7e16be802b1dc58309d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    e0488612cd05463c250baa4a461591dd

    SHA1

    2411258fde0de77c29120b9f27b6d4c546022153

    SHA256

    dd35088d82fb92777e82cc911a3fb837ba3423318738befd3ac7dd1511861818

    SHA512

    73ec518ab83e6caa7317c24f7f9b9fe44a36eb3659d90a03ef9d3eaeb291e6353cdd33001a6f5055faf4588bbea55e4d436920bb255f3f92cbf1db5e977dc9f5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    2f65ebb9297504ee33931caae8ef1e87

    SHA1

    e6744bdc028ce28f304201c9d831eb52e0088325

    SHA256

    2b920bc52c5de9c34504ac02d9f9a1af52380492fda2540250a03b2bfef6b860

    SHA512

    588ec75784b9b4df4a973d9897a46ae6897395558ff49001326821f095c71b024521581c9c3e5f520854fd885beb9e2498b4dcf2b7a6fd4d4f5e92e04aa0923a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    73355db48ea27f08cd7bfd146ef4f396

    SHA1

    8a06e4dc4f66dcd1e9943fbcaeb82ad3526284c8

    SHA256

    a9bf7b4d640327759220638cb8905ba706b9f856291ce3cec84f1a9940c2a01e

    SHA512

    7dd28931de46c8796913a49bad02d838750e614f2014b2ab964140f907330c5d8c9b9bb514b1e0c8d55fdc342d5f33d8dcf35a79c867b6ce3c8d2b833cd0c18f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    760666664e42e9da0bf3590a57a54671

    SHA1

    8a00498b756f00af2576d5d0123fffd6a9c73c3f

    SHA256

    4aea7b928449352ba260d298e5518bb103308edd7f415bdef9ca4dcfe8ecac51

    SHA512

    216ca0dad040d0e47d335c00ec58bf44e1f5d92f884a431a9a9bf2d4baf2e119c556480a5d2e32962fc5e8e94c141bb4d5457340de40fca4e293f85797efe2f6

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    150fb423d44fa038d531d2b23c9cdcb9

    SHA1

    12c5a15eaecf163ce53b44bc4d48166c7109ff18

    SHA256

    618504fde089dc9b76b41a6f86869c5c5edc4f88785ba94d7a87e7afea0ea2ad

    SHA512

    62d6a13160aec9da09f991053754809c605fcccc04b39310ba4961cc9c317d8d950185e8a97ba566adca502ec1d860e543430540a0501e96d3e24636c8ef999f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    be1b081d355598e7f00608d50deb47df

    SHA1

    f39589f786c83c1219d99de967c688b3adeb252a

    SHA256

    6956cdc6944827c7b32ee59f3314fe7711557548434b4de22573f21f52c9dbe4

    SHA512

    80506f76a9f02c0276063c5d58528d66ccda9ca3be89eaa82a4a1f6eb691a13b7e44ce051315ace2fd76005a4df8417d60587e3923c0a0df51f2b23a837a10ef

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    c87b15b762fb3c1df6ad1d067e3b0e72

    SHA1

    2f12e1d7dbba0dd7efa9b73c3baa9c06433ea7e5

    SHA256

    1f695c3862e97983dcf13e34ce452289f3ba7abc45cf5c6f0205720c6ebbd6c7

    SHA512

    d135de5bdd869596276e0907d3cf5e782ca84a0085feec3348dd072ee4589a857462d22c07229c65e925623af25c38df160e268302f14575d217c921540f657b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    c3dd7b559ffc7c76485ebfe84a88c0b6

    SHA1

    8347300904b3d2ed3cf60cd8a80620a2c6989766

    SHA256

    80c66d6deca12607b2455f9740e03a9a7b4a7bd29d734a2780a2eecab6c5a457

    SHA512

    47410c98f03297267a693a2b9161de227f60b70290aef8eed97efec5a7bfef88c429e745badd582dfc0f4fbb64f00917351f1ba9750f946ba799edcdfd6810c8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    51b37a88a1bda9b7f6e51aaa76ab9539

    SHA1

    e9f5adf0b08480eb59444148ab75b1e28cbdc1b7

    SHA256

    15a306ebe16727b76238d4703012d02aade685518ff2b86fd84949d848e0cff6

    SHA512

    37393ae54e468378b7f58a16704e6370dbad122a3a8b6bfb5014f316e4b92c40aa6db5f95884a2d64079391940651dbe29bb654b829fcbe57e8546157b3c7c27

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    31f99b9c5dac82d60561739b1297737a

    SHA1

    ad13d40ccd2144a7ec47f5480be8921298db4dba

    SHA256

    5da48c13ece74bac95b945c37683aa04948851228626097a42ea502a77201850

    SHA512

    44ae9a2930fefcb15dc9bc7826d1b9eedc2264ac5e998afb2c8ffc7e6a05b4382abfa71f2ac7460f2d932e1d140c8d6a5b34508aba4b9c0f4479d9f3b11afae9

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    115694a44b7d8f3803e0f832a06532c4

    SHA1

    55da9783e8892e082a61cb1c7e718df3f500a605

    SHA256

    ffc7627a6e2d328acb7cf86b8db865f2083dca91a61e62b5f7bb0549a2acd2fb

    SHA512

    2382316057d24c56d52e6042f693669de2842e048b7402beff0abbb1d643b3dfb25695c3650e23334294ebdbd9a49205449538871d4a478d99326987a387400f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    bec8db7d0dcf3362ad64168d111e597b

    SHA1

    c0bfc8ef45d002efe6929ff7e90a614fda7da948

    SHA256

    e1856c3ffcbb2a5471e63e83b8ade766724cb13aa8f2c8a104e102f53a468f86

    SHA512

    1e2775eb54915becac04b1a3c2575e4acf7b2b03594fa83e8577e53866ef41889cafbda53b225ed2f3a8a9bd43b645ed7585dcb2dd969d44f0956276381dfa25

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    0b96d00cb2bca86e1376d66679d5d73c

    SHA1

    c548876a08824ba5025cfbe3dad8e9dbcdce19c1

    SHA256

    7405405e964e72cc860c062e1bb40d87fa472ef5b46d4324800c6a4080a5842d

    SHA512

    a42f09d5e1a2e5c5fddb252a8768c2a2e574567bd641767fce93381afc81c2f51424b85665ec526fc8095831dea21382c9890f21da72b10aae169cf295f75b91

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    fbc2943168d54bca663c6c2a081b79d4

    SHA1

    781caaad5b4db25a47d812d39e1b7786dae9bfd3

    SHA256

    15ede3ae0d6f5ef8ea93ec994e6614fd1626810fc9b575ede1fa04c21cf5385c

    SHA512

    91ede73e0439e102b9043905eeda7c33c877afde25b294db3ca23839181ab66304ac80668cd00f3e65290b59af12d56afde8befada53e53abfba198e5321076a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    a559a4c6211a11bc2ffb79684b125682

    SHA1

    cb8fd9698cd2936d540ba529a21d9a451beb78fa

    SHA256

    1c7daef5273e95184d342ddf9139c3774836b9f76a9221daaab5a460d136b0ec

    SHA512

    007a16f7b35e2b6d95cba8da94c8b40ed4eba59362177e0f0431ef3abf1135917413760c4fc95e1143b38d43aa52d0d9aa18d81413cf715b7def9a2e17065f3c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    c0cbc96979895c12925db842d4022bd5

    SHA1

    28e16e566501e6babca95f4dc7d09594d1218be9

    SHA256

    bcc296847b0f1455df9f38635cc785506d5004693cf17d7151101552b0db64f4

    SHA512

    b5740a2a59ae89e2ac463aa559e195cdc1ca9a024404635f9179259f373db31543b5fafe04e1f7f308446a1683af7884a311e6c08188e441c818ad7cc54e4476

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab8BCD.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar8C7D.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit