Overview

overview

3

Static

static

1

2d383ff82e...8.html

windows7-x64

3

2d383ff82e...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    120s
  • max time network
    121s
  • platform
    windows7_x64
  • resource
    win7-20240903-en
  • resource tags

    arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
  • submitted
    09/10/2024, 07:28

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    2d383ff82e69b49b4e12b7187dfb5d88_JaffaCakes118.html

  • Size

    22KB

  • MD5

    2d383ff82e69b49b4e12b7187dfb5d88

  • SHA1

    cfb84d45e0d4b89fab05b351d7addc445a6d8a04

  • SHA256

    7352d8999e4e9e0a8f3fc6b4277b72e9400579f8efacfac95495cdebbbe14cec

  • SHA512

    7627c0af2e363241eb1a6eaa1457ef636b5bd77cf592249c6c95fd700f8abc9bee834b2b9858f19514942f51fbd3b1a2d0f7916fc24f7ca9cb9b5852239fb0dd

  • SSDEEP

    384:jcGR0A+ID1PE6U1ttUKBSukE0ShF6lRVJJ3nDql6eIF0zGWLK0:jDr+Ipc1ttUKBSukE0SD6lf3Dqlyw

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\2d383ff82e69b49b4e12b7187dfb5d88_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2076
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2076 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2720

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\3C428B1A3E5F57D887EC4B864FAC5DCC
          Filesize

          914B

          MD5

          e4a68ac854ac5242460afd72481b2a44

          SHA1

          df3c24f9bfd666761b268073fe06d1cc8d4f82a4

          SHA256

          cb3ccbb76031e5e0138f8dd39a23f9de47ffc35e43c1144cea27d46a5ab1cb5f

          SHA512

          5622207e1ba285f172756f6019af92ac808ed63286e24dfecc1e79873fb5d140f1ceb7133f2476e89a5f75f711f9813a9fbb8fd5287f64adfdcc53b864f9bdc5

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\F0ACCF77CDCBFF39F6191887F6D2D357
          Filesize

          1KB

          MD5

          a266bb7dcc38a562631361bbf61dd11b

          SHA1

          3b1efd3a66ea28b16697394703a72ca340a05bd5

          SHA256

          df545bf919a2439c36983b54cdfc903dfa4f37d3996d8d84b4c31eec6f3c163e

          SHA512

          0da8ef4f8f6ed3d16d2bc8eb816b9e6e1345dfe2d91160196c47e6149a1d6aedaafadcefd66acdea7f72dcf0832770192ceac15b0c559c4ccc2c0e5581d5aefc

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\3C428B1A3E5F57D887EC4B864FAC5DCC
          Filesize

          252B

          MD5

          12448e7c9f01ff67ca5b736e053f8e37

          SHA1

          a74ebf1a1b40fbdc31ffb70fac35b0ee59a3c62f

          SHA256

          88aac8a341e96a6a97126712bfab08c37649a6e78af4de44196b1fc12879ea14

          SHA512

          6a2ced723797f8ca715458f4d28d08ae5729e944620772c757c8686f58836b000a6fc70944b93f179a38f29346be47575f86773297af02d328b13db1812d2a7b

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          572d04bd40f8628bac11724f32aefcc2

          SHA1

          d9553b945875016bd5ad2c8f6e959543d553b83c

          SHA256

          000e8856b18aa7e6eb6b44b6afddde853c795d5a2570371ad74adbaec0fef4e0

          SHA512

          8ac8b626c112bab77ea19f6e089a65a3a83a355edf4a6b532d6919b3ecdfb8965caf9da67bdc2f24ba2f3a8e411375e288a62fd7357942f6631060b28813dce2

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          76bca42ce13f991973de1c24dd2ab2ca

          SHA1

          8989e587bb22d27fb75a5d1155e0f92700429afc

          SHA256

          62004467c3d45417c0b5eafc07dbed0ef38b36aedcd4c12a1f479039e1c12176

          SHA512

          ab21cb8469ff69887022b9be673c66d3b29c1d1707a5065bc32cf86e4180feae19c635a65e5cd4097fde5bd2d6b7c5a623ba6541337ce5beae94d37a554faaa0

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          bb53183d10a7e93628ff372b356d5e0f

          SHA1

          b97208a6516440585a979c135e99fc0ea44e5f4d

          SHA256

          dd7f3396b00f5d8d910cc819d80b8ba27cedfce9e06f500a77708f10455dacd1

          SHA512

          c554dadb0643064f36f4b7dfa9f8f76e277c62f80d0d3fe8cc3bf80a2b68ce1dcef18de4742bd447c23d930a4c919f24afafc01faaec16c0b29ff36a35ef50e9

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          b5328a760354e3cf8674a7355e6f5e53

          SHA1

          2fffd652ece1926ac52f7f47c4c76823bfece224

          SHA256

          18388081e4bd73c30dd4cac733653364085c8fad0d47e359e4d8e8f03c278ede

          SHA512

          3253ad082435c4135b0bfc01e6de912ed6f8ef41e53f009fa54e624e5b92a69398922a20f6fe6f1669bd7fff10aaf9da451816fbb4b747515ff11bec39fdcf61

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          2aadbda469e8766d8e1b5fdb431bc56e

          SHA1

          3f6355f52b6437041a0fbec1357e4116a1d27118

          SHA256

          aa7cfe0f1ef576fad161f286c9fb29cf54af6f1f738bcc58781a9c83b2d5bb16

          SHA512

          3ad17fd563d4790741dbdc0880530c39641466056137741f2e7ea0f2d9367d69b3d5a2d8b0928e201eb989667ee8b6bff245921b05bf626171876b1693cefb82

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          52ee6cd1fcf8e7a7fe44dcf346314539

          SHA1

          de58f9f6118d2a9cea3de63ede31e832b6c9f205

          SHA256

          2278a9527dfb4782b73c018a5fb79538aba65d67705a2605bbf90938a54e7fda

          SHA512

          58f2b3a507f5c859e4560ac65baae1d4bb9f95cf18c217fc726e2e8c43738367e78fa644cf9cb7e66287d97b439efe5829f25139b02d61c70f7baed4fa8bb95c

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          e052285750bfa3c6142cd48d82ccc28a

          SHA1

          47803f3ed4f97a793e60b4a536763059d1365cb5

          SHA256

          edbd7d3c466cdfc43c327eb7c380c1066c3dc58b4ee6b71fb331ded1eea28d7f

          SHA512

          4f4c5b15689f7219220714a9b4d9b52c70846dfce6fd79c0395a088bcdc1f8e1dcb5592a32d28b9dd91a2095125d50a6d6ce7f189381236d527667926db78862

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          fbecee5b0122cdc9a54f5b7368bc5321

          SHA1

          37203421cf109b1fe0e4d2cc30ab459b360d36ea

          SHA256

          f56d8eb7ffcef3bbdb02bec69f11e00ca9f52437f2ca09a01e0a5165044eecf3

          SHA512

          bc3be6d4e742c510de864497ede36b97d2861a4f461d25b75b78dfedb6020ffd4e72a3f99b66de7e5344e058f218b1c13504a6bb80e6254f98a5c6748eb415e4

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          fba55e29ed860d5ba530b489dd8985c2

          SHA1

          97db2ef2f1a559b43729052ccf4e5e657d0591c3

          SHA256

          52721e8d3ec310e2e593121367f6e242820c82b8a9864925ad51fd27ec6f59d1

          SHA512

          94214d9ab266dac2a2c59cd8b7433032d1a5635a25e3365a889dfbd4dbe94461d2989f3a039e4967d329b6e8c761cc520cf22b486102af15e7b2b5ada57834ee

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          1cde6b6f424e7ed32d5bbe0f36988597

          SHA1

          3f36ccee12c3a09f167312bb9ca620a9cdefe724

          SHA256

          797088dab86a6a30cc64b968afb9cf138fa3e1fb6fee661b9acf9c51aeea50f7

          SHA512

          a687b60e528d352734b65415a21df5a010467752968aaf745ae53a0522295881fb953eb8c51a2f305b3b589c756a435a0771569900652870de2498994488e8cc

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          5d3edb61d4f86b99db10e009114defbe

          SHA1

          72704c90154dff24e489addda8c1a2828143624c

          SHA256

          891eeecced67b9b4c58802706124d7b03e820de979b3c301c18c6dd8b4125c3d

          SHA512

          8395d400929a062777f2c5f0baf6710aee1bf5ac5d584b6d1790cad9959c014bcc53fd8171116582762fb2c9ed3e4ecbbacddc373d1754d4178b1526e9f4d78b

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
          Filesize

          342B

          MD5

          845074eee249a4b0d795d8c7b412579b

          SHA1

          582a5c742bc9037f438f1449fe21e68a7aaeed5f

          SHA256

          7c16f9e0a952405bed77d6a48ba3d003c1e504f31f0d8cb8a5bb0e79a3304ccf

          SHA512

          4b334a29fa2dc6afa8e5b2fd74eb0fae3c4996ac89123b562cf4c3ddeaee56d504087e1ce8959546b71444d4184c4686930642bfdb4b9f3a723e34d7b66b5289

          Download Submit

        • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F0ACCF77CDCBFF39F6191887F6D2D357
          Filesize

          242B

          MD5

          ee0c086d6d726ddcf43456be4adb9cd7

          SHA1

          a1fd19bbe2f05664045f1f37338e1786bb142f9c

          SHA256

          07d3c68ea8c46f5437fb9bd67954811edf5f078673f9e7d92e5594f2545a4254

          SHA512

          d1c7015598d37bf16e249cf4c7d7f189a82c42dab2d35a8fc837fbf55f0144c41a1bdaf830fe3038dfb36b3e8ca4dfb5c7e42ede921c94d893fb7791c03b9eb3

          Download Submit

        • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\K3VL8XEP\ncode_imageresizer[1].htm
          Filesize

          167B

          MD5

          0104c301c5e02bd6148b8703d19b3a73

          SHA1

          7436e0b4b1f8c222c38069890b75fa2baf9ca620

          SHA256

          446a6087825fa73eadb045e5a2e9e2adf7df241b571228187728191d961dda1f

          SHA512

          84427b656a6234a651a6d8285c103645b861a18a6c5af4abb5cb4f3beb5a4f0df4a74603a0896c7608790fbb886dc40508e92d5709f44dca05dd46c8316d15bf

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\Cab3296.tmp
          Filesize

          70KB

          MD5

          49aebf8cbd62d92ac215b2923fb1b9f5

          SHA1

          1723be06719828dda65ad804298d0431f6aff976

          SHA256

          b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

          SHA512

          bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\Tar35F4.tmp
          Filesize

          181KB

          MD5

          4ea6026cf93ec6338144661bf1202cd1

          SHA1

          a1dec9044f750ad887935a01430bf49322fbdcb7

          SHA256

          8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

          SHA512

          6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

          Download Submit