Overview

overview

3

Static

static

1

2ff92f1986...8.html

windows7-x64

3

2ff92f1986...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    137s
  • max time network
    119s
  • platform
    windows7_x64
  • resource
    win7-20241010-en
  • resource tags

    arch:x64arch:x86image:win7-20241010-enlocale:en-usos:windows7-x64system
  • submitted
    10/10/2024, 12:57

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    2ff92f19865fec9cbd13609e9342b294_JaffaCakes118.html

  • Size

    214KB

  • MD5

    2ff92f19865fec9cbd13609e9342b294

  • SHA1

    9f81f3eaa270b8cff99e8567e32a56c5490f1b38

  • SHA256

    2568b3b540454dd14880cbeb1226b9b275ff1caa4926368b6e2eae435647398d

  • SHA512

    5ae2dd925077f7dfa5a486bdb9967ffe78cff1df1ad27fbae88df70393fccc544966224ec24e6a68c453c96d0438065de41520c803476d5ceb24b72ff7c6d72a

  • SSDEEP

    3072:ZrhB9CyHxX7Be7iAvtLPbAwuBNKifXTJD:dz9VxLY7iAVLTBQJlD

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 41 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\2ff92f19865fec9cbd13609e9342b294_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2592
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2592 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2876

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    650d02dcd735736b6004631d400c4262

    SHA1

    d5b5126c5946171610d81eaf6f57fe516497a74a

    SHA256

    c6f2c3ec6c32b84316efc4398b57870f87d225bc4cd5f6033e0a3feda5244e68

    SHA512

    58c9057b97ee18582c0f41d59f50b0779e86ca7f638cb7cb84ca6abba495185f674ccae2d3145e5f7ddc671f88cfcde8cc747940dc49be4c50fcc5f624b9978c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    f755769ab0dbbaf15e6c7b792d1724da

    SHA1

    ce7b9659545bea4bf76bcb0f8c2815ade1f8a906

    SHA256

    7c0f4db173a26169c4d23feb8cda05950bdbdd86fad1031a4b3bd92b16a8c535

    SHA512

    2d6a3fcaba49c2c5c488bb53a98afe0b061a5b71d11a8390201d382a379153b2c057eae49513131dc6f1b9cd89a9395acf19cc5383f664e0e5748aa34a5cfc51

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    7f657412e910a13d3e1330389a451938

    SHA1

    149e1981617571d3ef36518900150785f8e42ef0

    SHA256

    ebff2b42161ab7bfd104e70e140ce96ca0af2f447b3c75004812690505d1c15c

    SHA512

    d7b354fc33f2fa1ec562c7d60a8ff77f717a619251dfeb8a822336e8a1c35de74a5bd4aaa9f4f38b583324bda39643c7c44c73f04440c19f46b77c54bdf3cf5a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    1f3ae45d3d954dc63e6f01038c8926b2

    SHA1

    94d818b110ae244c1cfbfbfadea73f27bcc5190e

    SHA256

    1a72fd58259a5530812cd0f74dde5535b984fde1da3a8e176543e7c70e465b91

    SHA512

    78c38c96a788bec3a801e80ec55a27329513e51ebb594c5b1c87d9d821ea518c6d942ffa2c580b207964a86104cb5c3e89b78647e04c037ea2ed2f5ae5eb3e41

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    c68ec0058acbf0f462883a91ff899496

    SHA1

    57cbf851c10c39bea4d9a870c94989875c86417e

    SHA256

    5cc7064805017a2c21f11799de0288eb00894c263ac79cf5f12387384ba3dcf4

    SHA512

    8f46dc12975f4c048bb03e5e994b54a88289685a59434cb1fff1b4ecadc61e43f801bb0123cb5f28d4f688e8b8b38fe927387c9b2d6724098830bed7cacd31dc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    87ff453d1df3117edcff2769d2c3af27

    SHA1

    05e615a7c33314f7875d536e528ff78e8f99692f

    SHA256

    667cb0621ea56b70d4073804c7990661bd0f1a102cbf68e75204e50ee726da6b

    SHA512

    2de76ed44ab96d80d9411230a814c7e28276b4c19336729fa8dd0519ff6c3061382aa59ce8f35eb8d04da7671f9919238276a5fb59cf58616a94ab49a1725a35

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    6d5d18366478e924edf9bc76c24d3320

    SHA1

    56b1356672c0578812bee99e9a4bc6be53b0cc8f

    SHA256

    db7eb9ae92d75252192ef35d50dd5ddf9f8294e2b06e875f8fd8472de1f36c72

    SHA512

    6753115fe3c9f41f850fcfa4f87783aa8a3c6d3db3fa0d0e01f448b7911b945a5415a21ae17f7a40c1576aba93ee0243a527cb270592aac4248ef4d9ec2ed098

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    fbdc3f15ad944b5d5999d81a4abeefde

    SHA1

    67235bc31fb375becb86ddbb0629c363a4d4133d

    SHA256

    8017ef44e4a76f5125e25a72508d7ce4e36a9bf33fe2f65cb80a97ee655d7def

    SHA512

    8fa870d3c9081780f17a642eff146ca54b6a4a3bca23a1e24b601eb56ed4c5cecf509e38bc23b0325f89579ae543e040a0a3b7bc121d5eef90cad5e3a1cdb0f7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    71e734245d51862b65642b2f5143b2c5

    SHA1

    bb178acce255d917cbd2aae84b5f1660eeae4927

    SHA256

    73bd50e845b81ec7a97f2beeb99bbdf38181eee41e0e542d2846d38c2f51609e

    SHA512

    500f3de93fe2a652e789cc6eb1ebf482f336f229a480cd94e0a5e5e9931036f2c13358308d5baa4c9890fb8ae78443e575a6bcb99c8e1ab64f3137753fe9c607

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    8fa58edcb6e6303740154d30ff0f3f31

    SHA1

    23e8389e025db19ca66e1e7e97c9319ff54211e5

    SHA256

    a0b033d1a8de8d340acfd284493e57ca0842f2bfd4f39b6f273427c7039a7c95

    SHA512

    ed25182829eecb842e6cff466d2bbdea008c81de88147cc8c148a1d40a0686883b96057f85bf314ffc2948a0dc06c8d3eb6a46325ba28b0a17196c31fbdc8a69

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    33dc5065d53d44b44f22262de79ed58f

    SHA1

    b6318acd4170439f347a9ffd6d099d575e935904

    SHA256

    b35544c0db880e2402c0812bc04111480dc9cce5a211df54474b28af46b47c48

    SHA512

    179c553042377c0dc010e78d23beb664f478a0886cee3ed969f20d8c56e6657cfb10961e96561420a52035755dd73f85f8a9210fa9683a4bf22c0e2fa7a78e0f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    065a5d51c3b3b7228f9911000028d1ec

    SHA1

    1c0585a5248b837f2f133bef4acb023a19fa4f3f

    SHA256

    b866d24cc2314e6f3a15118920e55c1d86bef0bd59f31ae73972476d64e2a954

    SHA512

    8970c1af308e0dba0f61c6f6f56a94b75e60308957da16f0dbf6f482585fc1de52835a477c3531d055e4650b91ce20b3c5ba437ae33fb8b767daac28681a9a2e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    e9edfcf12f3f1667be64f39183c1ce04

    SHA1

    015e5ff462ed9a1d7311441f00750b6faf7ba123

    SHA256

    b951f58979be05872a403ce866aa3794812a593813e49efb56805bcb4bc52927

    SHA512

    c5b98fe4a7f58d769021da2d000da8cda23f4b4c5b866552093d659432527e7b934eeaf40a2a7a66a362c8448b27ddbe7ac591bc7b6ce658fa71987df10aeaf0

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    a47b061cb89943e5dd67348b517f80e9

    SHA1

    8fbcda8999e469bba4d5d9f76dbe8fdfb40e26f0

    SHA256

    a6fa545509c16c1688ee092b5da4eed91e688236966c1af66eb6184c2c10fa57

    SHA512

    fed07466148fabe23373497566d7cf145b56bacde165a3b94c2bef6491756b03f9d71981d6b99c72f7b2008c573762d9035c5ecbf6b5f86d463c63e0ab6cd188

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    f01a640b103b53f092bc72cc586ce98a

    SHA1

    9e3c6168cdb3bec97b21ba81468385c59af9ff50

    SHA256

    1cb574752db8927798ed43affbe36e552d3e44d55dfd25fe83d360f264d49e38

    SHA512

    b3a0cc1600ab8453c095d78912a0cae45af284e0fe5c2855c2311b25c292112ce937eb5b798b346001092b74db14734723ce04ea64f2dff3908ed970bb2c1f64

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    aaa5c8fb2a76c97e2e7bfe1a356b4d3f

    SHA1

    1d866df2432735dd843b1e3d9398c8b36d753365

    SHA256

    708d96132b2a2020edb6d277408e459b7fbca66c219f84efebc2c003bd40c8a9

    SHA512

    fe2ad5f2f503ea884370d1d768fe812b33fc65b8783220243851b16c03c3c15f3a72b39a9641080137d708067fe778490360e656d35cd200d44f0cd6f76a7244

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    5f71bebe1355349601ae639b1b4baf08

    SHA1

    bb6b1beeaf82fb5b11605de1c8c8a8a41b18a2f9

    SHA256

    5a320931d712d86e7426221b65f0e8ae6fe21534f90adbf9d5baf62c231cc9b6

    SHA512

    72665eaf07912e1048dc3dd705cb4ca37d34881e9b54d6231d35f188f099dbf2fcfd837014afdc21c8c64c5a93b3259481fc5c6271e55e76c65aa92ee8e6bcf7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    0d30d8a7df693fa977714ffad2639403

    SHA1

    2f82cb27ad30f52b4a973f0035dff5d62bcca168

    SHA256

    343456642626d0341806e6e83768ba699f7f49557678642fe262a81fff78a367

    SHA512

    4db4e84373a56d22ec0e2b940fdd487db6c31c5ed450d3b16338206c39feb77448deddcd8b91b4aec0c857ab681a7b60913ad316525a9caebcebe1948bf713e6

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    a55b6882f3e46a59bcd3b134483f139c

    SHA1

    66b5fe7efc34f1ea7981de6b5e48de00bef7e525

    SHA256

    9b0d9d41ddd1389047582ae4af7b59a1ff5511fe0fd496682e9ff2c1d96e1a0a

    SHA512

    435008bc07652d4b276a9077173745730abd56087a8e55e47f39d4a15a45b9996cc4d7f9b90e7a44e9c66c3714ea5af31e8cbbe528ff8832ef4d05916f61e41e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    d24890fdaa9de2e69391d49a6f4fa3a7

    SHA1

    a9c68f82f807721963a6037b86ea98552e7ec592

    SHA256

    ef5dae53a94f66e218e6f6d4b67fd31b045c337cfbca2f1b8b75512d8070559c

    SHA512

    a80f0f78f7a43bbef1bd5a2b39c87bf1c7bcb1d59e7556f1d27d1266a76e53638ba3d5de9cb007864771c40cb655b01aa737c3d50b61a83658b4929eeaf513cb

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\CabDCCA.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TarDD79.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit