Analysis

  • max time kernel
    141s
  • max time network
    145s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    28-03-2024 08:12

General

  • Target

    01220371cea913267d02a1875d25adc8_JaffaCakes118.html

  • Size

    133KB

  • MD5

    01220371cea913267d02a1875d25adc8

  • SHA1

    98df8e02ad6820e88bdfcffab454997987c465fc

  • SHA256

    512615563cd6796d106f69ba3c2df01c70e0d24912ec8c5ca19dd829a5b94e34

  • SHA512

    49fd05a0f23f95426f0728136a0a3135296a179ba7e8c1baffb475c21037dae3f2fca3633c27a231683888407e75d52d1071a9a568954e83f7f971f79ccc699f

  • SSDEEP

    3072://iMN62c2M1pyxzmH6BbdwyKqQaLXWLtYrIuQs8m6iVxIvL/GuCQ9hrzJYhL7HzD:7KyH1WLjuQg

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\01220371cea913267d02a1875d25adc8_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2776
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2776 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2532

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\103621DE9CD5414CC2538780B4B75751

    Filesize

    717B

    MD5

    822467b728b7a66b081c91795373789a

    SHA1

    d8f2f02e1eef62485a9feffd59ce837511749865

    SHA256

    af2343382b88335eea72251ad84949e244ff54b6995063e24459a7216e9576b9

    SHA512

    bacea07d92c32078ca6a0161549b4e18edab745dd44947e5f181d28cc24468e07769d6835816cdfb944fd3d0099bde5e21b48f4966824c5c16c1801712303eb6

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\3C428B1A3E5F57D887EC4B864FAC5DCC

    Filesize

    914B

    MD5

    e4a68ac854ac5242460afd72481b2a44

    SHA1

    df3c24f9bfd666761b268073fe06d1cc8d4f82a4

    SHA256

    cb3ccbb76031e5e0138f8dd39a23f9de47ffc35e43c1144cea27d46a5ab1cb5f

    SHA512

    5622207e1ba285f172756f6019af92ac808ed63286e24dfecc1e79873fb5d140f1ceb7133f2476e89a5f75f711f9813a9fbb8fd5287f64adfdcc53b864f9bdc5

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015

    Filesize

    68KB

    MD5

    29f65ba8e88c063813cc50a4ea544e93

    SHA1

    05a7040d5c127e68c25d81cc51271ffb8bef3568

    SHA256

    1ed81fa8dfb6999a9fedc6e779138ffd99568992e22d300acd181a6d2c8de184

    SHA512

    e29b2e92c496245bed3372578074407e8ef8882906ce10c35b3c8deebfefe01b5fd7f3030acaa693e175f4b7aca6cd7d8d10ae1c731b09c5fa19035e005de3aa

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\CB065F4F773B1ACC7120C90E43AFC7F1

    Filesize

    503B

    MD5

    d419dc1d60b96333d42823771c98e30a

    SHA1

    8d3a40aed21c18e9cd7d41cdfe4cbf200d9c8853

    SHA256

    8e3e2b2a782f31d691b6760931c3d3cbe2860db8d8c6c5a0eace878f03cf206c

    SHA512

    53ff9d47d1818364c8825ea1797119a412283f936ab5bfad93f7c41b64c6c440b1db3e6a9d0ba67e3ddcdddd6e448f35044083723bb992ffe2f64ad7205befca

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\F0ACCF77CDCBFF39F6191887F6D2D357

    Filesize

    1KB

    MD5

    a266bb7dcc38a562631361bbf61dd11b

    SHA1

    3b1efd3a66ea28b16697394703a72ca340a05bd5

    SHA256

    df545bf919a2439c36983b54cdfc903dfa4f37d3996d8d84b4c31eec6f3c163e

    SHA512

    0da8ef4f8f6ed3d16d2bc8eb816b9e6e1345dfe2d91160196c47e6149a1d6aedaafadcefd66acdea7f72dcf0832770192ceac15b0c559c4ccc2c0e5581d5aefc

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\24BD96D5497F70B3F510A6B53CD43F3E_3A89246FB90C5EE6620004F1AE0EB0EA

    Filesize

    410B

    MD5

    b035bf15153c1e5778da26ba22d811aa

    SHA1

    088728b850268d3b12079ba1b46ff0b752d13715

    SHA256

    2dc1130f46ea45e1cc8149fe448bca104ad4505ea6545fc85926127e1505e03f

    SHA512

    1b9eb77ef5f24d676c75dc5d3523cdff6070d2985e8760f9fffdf05f428634f2cc594757e78b9a15090c652ed64960b611e9f7c01f19015fa0dbf94a5ff9fa8e

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\3C428B1A3E5F57D887EC4B864FAC5DCC

    Filesize

    252B

    MD5

    c18d104c495764ae288835c35e0cfa31

    SHA1

    0f578f9292f0f2afff82214a6c85f3501569268a

    SHA256

    fb5f71d72dc42f8806cbd1af8aba38636988ac1d42926cdd4645c82b9287cd73

    SHA512

    98db4115017b756f50fd29cb058107c3c8bf0a9f1e16f8ddd48c23021d987f3bef7552dc7cca81102e7034322baec533e8298a7ae6367a3d568d1e8ffd9c05b1

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    f647862eb1888edc295d0cedd12979b3

    SHA1

    57d146e4d48cf679332297bb1812c78f922fa507

    SHA256

    b2c4528f809e34b2c6f635a67473a930397fcecab21a741a2815597fd0c003b8

    SHA512

    67cecce0f9dd4343bcd68177f15d814e45e1ada46f08922ed94c190b0096a738cb225ef526595891ac484b9dfda1c0f5dfbec2196aed204826a76f526726c530

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    9cd389836d209de421ec98da053db364

    SHA1

    65071bc410452ce11eb3ffe6b29a34e6b783fa75

    SHA256

    9f58923778239e6f0cfe590e434366324bfc2b0d80cffe7db49c489750eea6c5

    SHA512

    da55b19a8567c543f50950c1f325b1f705229a32eaad72104946e87ca6f3a9a34f4f048064b6642502aec1fb8355cedb9b35a53e5071344902401e6e1d65b8d7

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    85044e9bebdecff59459b1e8e6499f89

    SHA1

    d138d2e95b4c5d4c81e18824066294edb3316105

    SHA256

    6abe9224c2cd15192bb6dd45a0dd2600a2db6c9bf24318902cf439ddbc9c4b54

    SHA512

    89f7cadce79bdd2fc506e7d21aae311e98f2b25550da8e740a300c325c33e83a676d115ed0000539bd4b1e0fdd91fe09fb4c9d7d15b536d1deaeac8c4f22e57c

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    674643f3dd716a5cd1c03ad477da6951

    SHA1

    98c46cfc78b5a21aec346257de4b7a57ae47e9bd

    SHA256

    fd7b384884d7e65bcd9e81a2ae1613dfb3e86e20a541837d84a6362de74768f3

    SHA512

    89b07dadf0c83834e7ce181a804f8ff441bd3f412ee80b2d561ee62527151913e5e47bcea716519f02c608be677c78c24972f91cf5aa6a14c5b13ff181184d75

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    74ae4193a5590bd73fe3be562b445bd6

    SHA1

    dd09ef348e5dd7e34fd871f803eb9972e97e0d9a

    SHA256

    61c72deca58e08827ca41809f092e78d8f7172040b1c34c1d6cc1a0300362f38

    SHA512

    67422043a01474c39bd26de276578112a81b2eeeb8413eade07df4770ae5bccc0c7dbc9e5b1c9280178071a1cc097063150a4f1d7dd45e6eca2195b970d12b82

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    78b2ae67960523148d4088b1b3e18d8d

    SHA1

    8103a19aab60a14a108b9db3bb8eaf7e484b7f39

    SHA256

    734394b7592575a73938381d74bdce76ce6c5cc74a178d5288c3f06e803ba376

    SHA512

    450c13da08b023b9698ceaa32fdc54b7570cfec065e620b1bca07777d8056d0eb505060711e4c5ccfd18c5f8d86d3caab093ba464ed6a9dec4ea540a8493e1fb

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    23332ea699801d257d0641f6d22bbbc9

    SHA1

    839a4beab12ad885d3b484eab69004dbb7ced68d

    SHA256

    65f6f305fe7bd6b3851f7205edcde0010b839b60267b594f9d51bf1c59bef241

    SHA512

    777ef6bab3a54391a918dd68d1edffb6313a796144c2046e812e05aef20d1ad9b4d23994875fc7f6db4fb9e5b5b76e40ce810018c5dffbe2d3c73020176f08a5

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    a339fe0003480f64443c7e99bc65943b

    SHA1

    f6f00ffb482306999974e0d71bb06115403e95c3

    SHA256

    58a35c812cffc9a27f1e3366fdb7b4c1e9a4e6abd3a54b4d5ba3e5fdd5b6772d

    SHA512

    41212512e949a22070242fb2ad920c89f416b038bdd7ba4f657a6d11948d4d333eb72a8d1ce72ca69f4b074038f84898ddd760c9d0e2c986f5c90695acc5800f

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    21d6e609b31c29be77ba4b92fd3f5eea

    SHA1

    4763c8043857d489197345bbadf2ebf5a10b93d5

    SHA256

    711bb184014f03388745bed6d6f474d15e6df6808c9aeffbf6b64689e0936ffc

    SHA512

    9ea25c7b8306ca46698ae6e252de22fde5c85aa8a752f8a2ae2eda87bbe12d265cc3413cfaec0abee957f49684308c438601a0f35da6ff5e607bfcd6e1448d27

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    fea83af9d135edc7a8dd313e939bc2a6

    SHA1

    721b66d2fb57309650f4bc176162c8e7aa0e4761

    SHA256

    c66957e61ddec8299f88399fb7bf0dff0c1ac8a0e9f6d185f2c3d08abdc45732

    SHA512

    1e1217db5ad65b2a76227dc1e68e3bd9fda8d27d241222fd328eb75ce283144ed1fd6bb98a5616683c375047b88628e0856c711f0a674d4399852a5362570755

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    a737e02653c645e8c71974e722714d69

    SHA1

    dc734a0111935d114a36d62f6990d446bb752c73

    SHA256

    dd769d73663ffac28686a724a92c699f9490eff21dd96664c5d080899a5528a6

    SHA512

    e0960101a138b1a8df5521b2d82080cda9d98e066739255cad533aa1b53b0a40af145f054a57fbf9d5e0bbd67d1ed630e538468777f29217010af4273430cd95

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    22f1c59e0aeda9c53eddf4660c6d8f2b

    SHA1

    c71d84f80e095fd13fbd2e70b7c143befb5df726

    SHA256

    c8caef47f0b43196e35df195b3403868caafa7011fb96ce1bb3769b60a256733

    SHA512

    7258760d063175582bb49565d7accafd35275c526adf467adb91b6d5ede33787987250dae6d4ab8e7197474d4f799ade30f304b24df9b5142607457e26152434

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    5fc8c8aad2b3907dbb6093bdaacbcb8c

    SHA1

    ad18d57f5df921ccd042af60bba0c2ce84ac02cf

    SHA256

    bf07393723ed2ed7b8a06ac0c8e5c1bdc156d30a848ccd9e50279c1685667fe1

    SHA512

    b5e11a9fc719c8937ae489bbce8d0f81a3710858e9bde4400565079f1f0b3611ebc61d872c7fbed3383a82612bfc9a4d7a6fe1940acbdd84770fea77fbe79536

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    256a267eb0a10ed0fde2d00aa391d626

    SHA1

    f20acadf37ebd3e7f79f6a2eb976959b91414e98

    SHA256

    55a501a6042f339b8cb70a59591de6a86fd1cdb0b1c536dbad6c556288240795

    SHA512

    6caaa59ee7085037f5c22c116c2d3d73c0fbad8dd94b29a154db4fb9effe2a780bf8132c72b64bf295779e29f56b8dedf1ee1723f4d1159f982b9dbad373ecb0

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    a736a5c7729d642272208edbcd9a69a9

    SHA1

    3985387c216259223f41a1e172f058ee00772f55

    SHA256

    67fc3e4587c01c124ee8a73c73fdabf8d0ae8d7e6224764f60b1d483aa7663fd

    SHA512

    a917d37001acabc551570004d5fc954e4356c7079b437e62ffc50ca3b9f63f8c3e8edb7a3a31eccb2d7833d7157e5aa10f592b790f4ebad1b2b4fb13e85a5a36

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    1d1ec02d91c35a826aadc1478e40723d

    SHA1

    4c2797c8ad1f14c4ef13a5195cbb3e7dec0fc17e

    SHA256

    5ac6b1605755902ec5709e48708421bb47c9ccd8e44f9f60d728b232e6be2123

    SHA512

    847d7b01ea41ffabc83206f474a630ac0644adc92b7f915ea00523bca10f0116543820c195e9c2e595ccde6775c7aa8a42ad85edee271a7a1e2e9f584296c526

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    52c0a32e059bf4f97f65f66fa1f90646

    SHA1

    e03c5af7c97586e2a94862c1f33a925083849233

    SHA256

    4dbd86296e7961f2c793a42404291ced9956308c09f8ddbd7c79ab9468d309e7

    SHA512

    f8358a66eb7f1473f9bb69b4717841dba269eec6f7df960d2113acc90dc848b8ca0565ae454a6a97e27cc2c3970b0758ba0d4a855cc7b2af184f0c4776a0747e

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    4aaf12c38d7ef879bbf995f9134a2cd8

    SHA1

    b577a924c6915b655f282b4d0133ea7f13968725

    SHA256

    e8e8f9299a25204c84efeb7ef3bd13cb2e90debaa38f133d50a8e15cfff03a8d

    SHA512

    209f7ab84ae65b53cf3d61a52e2047f34e6c7b925684cb9df8a17276d7f30ea52e0a62ecd7f620a6d0c6dbe61d4656b11ccc0262ff1f6792f92d9415d94d0ace

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    6d5dd1e63a3d02534b9b10a5030c2b2c

    SHA1

    8774d0b0bda899a5c6ef9860ddaacca1cc658f70

    SHA256

    ae2aea2a04b7938cd4f1f1e9e85f712ccff071157b639aea3367dd3b357005b5

    SHA512

    ddaa632923e3a7f318001317b2d2de68ebf53bed1bb438a17a776d1862d8042db38165ff4509b0acb301ec4b13b2a6d006bbe9e9f4b9d1f91170bf1b26f33cc9

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    e537ccb54cea10922790dda66402f8f7

    SHA1

    336075fd1c06c6e347ade51ee9d44d76d75ccf83

    SHA256

    40fc07b3dd8cf21312182ddcc55a76ccacb2754dc18858623823643031df3fe4

    SHA512

    96c8280525496c7bd9f0bb5a051deb878b7fbde60bf8c34ffc1c454323515d256a0398f2b3d6b49f97fae4340b9f3690639f61acc3f782c48eac0564ad6d5f16

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    f3217bec8a1c5be69de8fb731efc1b46

    SHA1

    334c159a3637a86b3112c13e4e898adbd3b8890d

    SHA256

    822c4496bea6f5652d2555333d1a0aa52e0f81b5ecec7f81e32dcedad8f39106

    SHA512

    40f57546a9534e4452ded4057939d9a7d87a648532f152c45edf24860c495bdfc35888df4d038e9b2d078a256d95472593c167f1f855c13e55623aa49d4863a0

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    6eb5a3b432421637be27b89bebfb7dc3

    SHA1

    11cd046c157d90cb6895f1ec8625451bb84e5100

    SHA256

    49e6d47a9ef64ffc2af2cfbbdf50100d1b46f80ba47e44a3e17221e00edd6470

    SHA512

    f2a294c915e78a04b848a45efe8bd27dbc80b4c3cc4e35df08ff38e13f3e8f06f1498344e6340a3f1e1e80ec9c4f4b4b44969933b2916a0cad6b28cc96967ee8

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F0ACCF77CDCBFF39F6191887F6D2D357

    Filesize

    242B

    MD5

    04ae4bf5386b577efd565917d4ed800c

    SHA1

    2fb10117903bb0ff34dfe819e3ea64143531a79d

    SHA256

    97d281f8b297ee7969356f053473218ca00938eda8fc40c0da60a8ce570e9e25

    SHA512

    dd23e0d85437ed8bf948c28dac40a2f0794cece114d34e85cbca48de7c8ad7b5a1e5cc7a41a5ffdc16181069916244bfb8aea377cb03636393887555bb0738a7

  • C:\Users\Admin\AppData\Local\Temp\Cab7790.tmp

    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

  • C:\Users\Admin\AppData\Local\Temp\TarCB4E.tmp

    Filesize

    171KB

    MD5

    9c0c641c06238516f27941aa1166d427

    SHA1

    64cd549fb8cf014fcd9312aa7a5b023847b6c977

    SHA256

    4276af3669a141a59388bc56a87f6614d9a9bdddf560636c264219a7eb11256f

    SHA512

    936ed0c0b0a7ff8e606b1cc4175a1f9b3699748ccbba1c3aff96203033d2e9edabf090e5148370df42fbfc4e31d7229493706ff24f19ff42ff7bef74a6baad06

  • C:\Users\Admin\AppData\Local\Temp\TarCC10.tmp

    Filesize

    177KB

    MD5

    435a9ac180383f9fa094131b173a2f7b

    SHA1

    76944ea657a9db94f9a4bef38f88c46ed4166983

    SHA256

    67dc37ed50b8e63272b49a254a6039ee225974f1d767bb83eb1fd80e759a7c34

    SHA512

    1a6b277611959720a9c71114957620517ad94541302f164eb872bd322292a952409bafb8bc2ac793b16ad5f25d83f8594ccff2b7834e3c2b2b941e6fc84c009a