Analysis

  • max time kernel
    133s
  • max time network
    127s
  • platform
    windows7_x64
  • resource
    win7-20231129-en
  • resource tags

    arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
  • submitted
    27-04-2024 10:33

General

  • Target

    030e309e43fb0833b16104d46d9a6f81_JaffaCakes118.html

  • Size

    68KB

  • MD5

    030e309e43fb0833b16104d46d9a6f81

  • SHA1

    06d1eeb3097fdd2db637c49c9aaeaf9ffedf6006

  • SHA256

    c45b3a6cbff72b2670a4417ec48252a97723a91b0bed0936fbf17c8ccc1453b4

  • SHA512

    7b7e7ecbcd0361dbb75e3d9ea35927da195e3d5c478b3734c3104dad9dbf7bfb51668ec351567e8c8262d9a9f8656c1affd4d3d58fb8752941a084d6980f6a4a

  • SSDEEP

    768:Ji/VgcMiR3sI2PDDnX0g6/Vm4qQ7HoTyv1wCZkoTyMdtbBnfBgN8/lboi2hcpQFf:Jauu57ITcNen0tbrga94hcuNnQC

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 38 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\030e309e43fb0833b16104d46d9a6f81_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1848
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1848 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:1196

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\24BD96D5497F70B3F510A6B53CD43F3E_3A89246FB90C5EE6620004F1AE0EB0EA

    Filesize

    1KB

    MD5

    c35390cd7305291de0cfa7de08b0da99

    SHA1

    ccb6a65f324fbdadd872ca23d256ece85cce447d

    SHA256

    fc283d50ca01bbec2d1061d644d41108aa1d2e19d1b6858ccada4f1329710e51

    SHA512

    32c7b4b6250c6eb0d07859f195364f08655fb3567ca023d3c85e32f5d141adc4966f30fc11ee1607d0246ba91117e88917b58d9978e4b2edbfaffb3dc6fd7d59

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\3C428B1A3E5F57D887EC4B864FAC5DCC

    Filesize

    914B

    MD5

    e4a68ac854ac5242460afd72481b2a44

    SHA1

    df3c24f9bfd666761b268073fe06d1cc8d4f82a4

    SHA256

    cb3ccbb76031e5e0138f8dd39a23f9de47ffc35e43c1144cea27d46a5ab1cb5f

    SHA512

    5622207e1ba285f172756f6019af92ac808ed63286e24dfecc1e79873fb5d140f1ceb7133f2476e89a5f75f711f9813a9fbb8fd5287f64adfdcc53b864f9bdc5

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\4A9377E7E528F7E56B69A81C500ABC24

    Filesize

    889B

    MD5

    3e455215095192e1b75d379fb187298a

    SHA1

    b1bc968bd4f49d622aa89a81f2150152a41d829c

    SHA256

    ebd41040e4bb3ec742c9e381d31ef2a41a48b6685c96e7cef3c1df6cd4331c99

    SHA512

    54ba004d5435e8b10531431c392ed99776120d363808137de7eb59030463f863cadd02bdf918f596b6d20964b31725c2363cd7601799caa9360a1c36fe819fbd

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015

    Filesize

    68KB

    MD5

    29f65ba8e88c063813cc50a4ea544e93

    SHA1

    05a7040d5c127e68c25d81cc51271ffb8bef3568

    SHA256

    1ed81fa8dfb6999a9fedc6e779138ffd99568992e22d300acd181a6d2c8de184

    SHA512

    e29b2e92c496245bed3372578074407e8ef8882906ce10c35b3c8deebfefe01b5fd7f3030acaa693e175f4b7aca6cd7d8d10ae1c731b09c5fa19035e005de3aa

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\CAF4703619713E3F18D8A9D5D88D6288_A7725538C46DE2D0088EE44974E2CEBA

    Filesize

    724B

    MD5

    ac89a852c2aaa3d389b2d2dd312ad367

    SHA1

    8f421dd6493c61dbda6b839e2debb7b50a20c930

    SHA256

    0b720e19270c672f9b6e0ec40b468ac49376807de08a814573fe038779534f45

    SHA512

    c6a88f33688cc0c287f04005e07d5b5e4a8721d204aa429f93ade2a56aeb86e05d89a8f7a44c1e93359a185a4c5f418240c6cdbc5a21314226681c744cf37f36

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\F0ACCF77CDCBFF39F6191887F6D2D357

    Filesize

    1KB

    MD5

    a266bb7dcc38a562631361bbf61dd11b

    SHA1

    3b1efd3a66ea28b16697394703a72ca340a05bd5

    SHA256

    df545bf919a2439c36983b54cdfc903dfa4f37d3996d8d84b4c31eec6f3c163e

    SHA512

    0da8ef4f8f6ed3d16d2bc8eb816b9e6e1345dfe2d91160196c47e6149a1d6aedaafadcefd66acdea7f72dcf0832770192ceac15b0c559c4ccc2c0e5581d5aefc

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\3C428B1A3E5F57D887EC4B864FAC5DCC

    Filesize

    252B

    MD5

    7b8c42966014da1cff9c25a3211974c2

    SHA1

    9f751ced3095212642e98eac579f5c5e5c618ed7

    SHA256

    79ff73ede2eede69420436da5ff48ae52fca55f940b534d05f20c351a36ca22e

    SHA512

    96019ac1292b3902020ddd26b4d88f21cd0aebd1d200d99190e42cb11332d38bd54e330baf299c55a3ec071a8a27d8784a21f042329205fdfeea46b07ca5ac17

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    61cd1ae4d4c0dd040f63be0f3a9596e4

    SHA1

    f3a13ec5663813eb463fac285cb40f29457072d0

    SHA256

    fcfecb2dfd1e3b91e5dabeab24168310927c2eedad4405daf7b553ff30c11c4d

    SHA512

    37435295bd82240a9febdf59c71efce328b6e5c65aae90c0e55284bb152121e4e817444bb5e96a49b4a3d9b60eab5b1738ef4e657a79b0408ac32b8f4e5cf68e

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    fed9830d5505ff6cc8ff4428b4fd517a

    SHA1

    e5fb2808d8342d464173c709f8858ee13e083450

    SHA256

    1d93cfdd329efa421535bc1669ab09d3b433a67478adefa330f5ec46e1e00214

    SHA512

    11ddc80c72d8a568239125de5e69e79de874d5ce4edd042429b172415805d21f6d0becf2b2d883b0c8f54b182b7bf060fbc486a12bbca5b27d24e1952f6b519b

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    d95a6c7831f00f02f84a85d5a53f2215

    SHA1

    90fd09899562c96161b96553dbae6b1d8d601184

    SHA256

    1ccef4cd154400a056925478244d3b9a2fc3bfb50e7441dbf6a4d9cd00b10623

    SHA512

    8b9a38d2354b8751ca6235f844ab0595152430ea68502f41706fefa119a3abdb80b0dbc00be8cb6a12f171bc0377f3abe3b837dacaf78418dcbd942065e3b433

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    e11d3dfec65e7e59d9333e0a0ee009d5

    SHA1

    0d6c55fe3c82050d7d1e8f57b5fc4bfe4f67dea6

    SHA256

    03ee3c910d04578052218b70a1a738b87999283dc7d324e3aab51be90985a519

    SHA512

    a1cf1227b8c75f8c1a7ff98b75aa1ddd5c7f2b7449ac39191a4fb0b7ae7d334b9a57e94e3b43faaa17520a1bc8802a77b2a108235074c9ea63e08396efff0a49

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    ff8a554ad2933923f542661517d9af8e

    SHA1

    872ab69ad6cfba82708ff3c8c0b7eacfe7f15001

    SHA256

    10c734647fed76b3dd9e2edc692933d3808e0cb7f7646bdb9dda91be783c882b

    SHA512

    0d0f556eac871a9b495be9bc7230f3faf5e258d466f4db4f540b13b7b3200fa6d407dc4002ca31cb30178b1db50720983eaba9328d6bc348ba6645628b9988f0

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    fc6d13fb1820a1e91c30022bf6ca281e

    SHA1

    6269d5304f26af9a15467a29ce7e607769f792f6

    SHA256

    db72e1f558aad472f0a167858604613169edd3709cb0af03397411cd308d6653

    SHA512

    505b62ca65ce9ef5c0306c63eca8d5f62e9e41a7db4f96ba9ba22f9bd199ed4aabba9bec7782ebb4a626afd98b0aa3d73ae968abeec0dc6562bed6261855b23b

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    3065000d4e5422a9d539d9d06f025632

    SHA1

    e69e550c00b99f965263116fa4bc4c34d5c2a49f

    SHA256

    123f8ad8d45884e26c5b7948fb6b025ccc4112defaef8c65b17f775f0992d0c1

    SHA512

    a4ed773d69120df77032e63e913eaffaf7077af5ec372dd8bc54f48b836a8f094ad976694e5ed0241a90ae0c561d7ca5f287238689a9548b6e53009baa980f39

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    1df6966c0fb98cc3bf35daf12e190026

    SHA1

    e1d4fe143da2d210e85ac77ad3a209fda2426c3a

    SHA256

    d105f39f9811731d75a947ece30ac67a6991f88ca916f8e521d335b22840b30a

    SHA512

    6d3e510f06ed857013880d9a4cb4a971834394189ecb1aa5667ec436b046ebc94ed77ac2a16f695c9805818b22a27f4917c1e7f23e59f3bab46c24af3ea6e8d9

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    b1fc00b6d7c9f7596039622290954750

    SHA1

    84cfb51eca7a1c989bd0e595c078628375bbae93

    SHA256

    c78c7121b5cebe85a8b30c709205ff5dcc0134568e43b90dcf81519634559922

    SHA512

    77fa83043cededdf3dff0e64940ba8e963f9754bd889ed769f6547da18a0ea39ffb4a4c6bbbcc0624d3c0e4bbd4e112d5aa5f5e9a3879615a4bf7720b7d5bc21

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    e74323c55c3775885b9d7151ab166a7e

    SHA1

    15db02b5ed7fece086371e5f4da715972ef603fb

    SHA256

    d3ad9c0eabd4fee3f7b99fea4f21412e0727d8ddb97893b1eeccdbcc1d0cbd12

    SHA512

    56e4200bbd8834657a027ea8b9210f14c6886c76c79997e3e6348c7e48b39205af90de8b3f5ba5a8dbd3f1311b6a74241286daff79b380a515a91da656ab1231

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    645da1a05da2a6ad6e2ed91b3f3edd1a

    SHA1

    42c180c67f3fe2482721fa87e50a608830882410

    SHA256

    ae5fedbb2fad1a5b45af4dbbcb175f2ebbdb468fd8472862b345b07c664f3298

    SHA512

    f100de405d4ce67530aa12d530231d9dcc36d9f82ffc04e9450f68cc9c4bf15b773cd3c0ed968b525e4fe64115d84928ec4c19eca359da8fd11304678df492fb

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    5aaf37f26b316da9da779e88b21fd1e5

    SHA1

    2c81e1013f4fe4b5c18a089b2810ad1eb8a1f80a

    SHA256

    5aab2aea6db56ea71ca64384aa8aaf6721c72c7ed0d4f5ed1a77ccfb6010191c

    SHA512

    2d89bb0269cdcff060ecef8d13717be2e108162d7fe0b943d5b0d64b6b58d978ebf846985fad989aae82bff59f38cbb179dca2a489d812a89620ef69b8705866

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    60589feaa84fc5c7dc2eb5d625fbe4a8

    SHA1

    d4bcfb4e1965a6d9da5f5a1cdabe2ddf16a704a7

    SHA256

    9359365b56dd92629cf519ebf1556ef50572f1c33ffc81a1278328191dd65c40

    SHA512

    91edbccdcf36afa71a92ef2b3f285cd7ac335ba32c4ade25966009d83498d07dbb1ae6a1343602ca22548978629073721f2f8d843347953fedd0ea7a91cd1789

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    b14ac1e534a157267d301a8a15d71907

    SHA1

    6cae43b05b2814cece2f8a90355e1c5887bd1a0c

    SHA256

    67855166a8e4977381df058e6877a421d244d72df7b021d27adc79a2198563f0

    SHA512

    a5cc227a8cb1818e9623950e884a63dfec721ad57bc4d7e684cb01d19d7e1c1934881fb707d64c9c43e670a96db0736ae2a37f51e00509bb8e0bfdc20b409e40

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    c3c6a1cb3ac2ff4c2f67fe9bc9f029d6

    SHA1

    ec4063fb1add63a5556e4cb1e935903aad0e9eff

    SHA256

    b847ed23370a91efc3ae8a7de27bf6c286b656938af2af322e2bde92027aec4e

    SHA512

    6b81582f7294fac67fa89028a7baae83ea95b8f7d1c29c01462bc819f5fff24adcc6d1d445da6878ff575f8f5a41013947162dd09fc22e9b2e66f0c18ba2c9e3

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    bfd0d674ae609ea4b4280f53ee79dab9

    SHA1

    085843cc463bb6aec945836ff77861887364da75

    SHA256

    fcc6543c6610734c306e5d9806efd5be873fc11a999ae5e72fb26fe3330bddbc

    SHA512

    300ceae2238ca86a0e134817ac1bcf64efcb5a6d7a619d942bbdd6eb8c928c6c5c2290615600c797ff6daecf3e6320e8ae2eb1d4e048743c8020e857d38434a7

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    d79d7035615dcaa09e693195c29f9237

    SHA1

    d71f57a36b500b768b6b3746ec94d4d0f9710fb5

    SHA256

    0cca9d6f0aece49a7b3ccb82c6f308ccd4ecf9b5db3635c687cfad999b1c30d0

    SHA512

    d06b004b5f9d8b6e355d1cf505f4c795dfe73a71a37a42556b8edb2a50369d39fbecf549f8ff876d67169d98aaace116a26fd46e8e125a25e9ed3bbbe939261c

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    b3bdb76fe4275657a6f26d772025ac8d

    SHA1

    6db07ba887a5ae3ecc6a532cd0cff33eaa2a8328

    SHA256

    aa8c97a995c235200a843a3d1334dbce9c54265fa41e3a12b8ccd8e88af6a461

    SHA512

    de4c086f8763353969a270827812f4f289ffd5d94f3b4cea54d32b19e5bf3fba9bc43b3adc3ca053b6c8a4ca990aed41fc9dc9c2c64fd2be0d83a75f290f13a2

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    e52e480141bf119e5d92d79599e10dae

    SHA1

    85a52e5420acff5b3550c16f3afa90f470ed5228

    SHA256

    aeae32da708ed694d21675e9db4e059d738fcf39df400b10a6ec098a04eab90d

    SHA512

    2d1dd654bf5d90505c95fe1c01801a114821ce92b5ab89e024f962b453558eed29fc36b8f793cc6c0b9a67bea740eb54dc6204df3d2077c555d3b944cd1ce415

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    a50a85fa9889eabe6867e2bf61bee2f2

    SHA1

    cd1feefb1584dc3fa327bd6b4fcf0e927bb7c144

    SHA256

    238bf63a163b495fc317481da65999eedf683524c24c5d74765819b5d35aa002

    SHA512

    f2cead582fbfd3ff2b84487f44a71920c1d1558fd433880899215055920299e245754b1c4f4cdb8ac60b2a61b21b346e9e86f743d62a4524801ea362cbdf128e

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    2aa6aa09389ca44b581a6f91dd4b5e54

    SHA1

    8aa7e87efd1ccbea918f1ed4049daac19a3b456c

    SHA256

    e9dbe86bc37ac8e4debd8fec51c45bdabe38a75b4d9c052461df4b4159554348

    SHA512

    5db71d18b89fe941ec220a44af7cfb419537d6bf89e391a4a038b8691a5cb8fecd3f6eebb94e8ab39b7d803065efc139fa7c4d93c621896b5027919b6265ad7d

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F0ACCF77CDCBFF39F6191887F6D2D357

    Filesize

    242B

    MD5

    f025ac1eaac55abbaf0ae69fb55e352d

    SHA1

    1df735ac0a5111929908db06e48070436cfad0bb

    SHA256

    c9e7ad56ed8254aad7b439c4aaeb63c6b058e882ea638ebc383043c2437b4246

    SHA512

    ba8de34abef7b938a94388edbc7f75ebfb994210824df18d09d4f8fc1abab6d732acb76b4bec30526141288b7ee428c8736ecfdfcedb85e86d6ca71a1d9fa60f

  • C:\Users\Admin\AppData\LocalLow\Microsoft\Internet Explorer\Services\search_{0633EE93-D776-472f-A0FF-E1416B8B2E3A}.ico

    Filesize

    4KB

    MD5

    da597791be3b6e732f0bc8b20e38ee62

    SHA1

    1125c45d285c360542027d7554a5c442288974de

    SHA256

    5b2c34b3c4e8dd898b664dba6c3786e2ff9869eff55d673aa48361f11325ed07

    SHA512

    d8dc8358727590a1ed74dc70356aedc0499552c2dc0cd4f7a01853dd85ceb3aead5fbdc7c75d7da36db6af2448ce5abdff64cebdca3533ecad953c061a9b338e

  • C:\Users\Admin\AppData\Local\Temp\Tar1D54.tmp

    Filesize

    177KB

    MD5

    435a9ac180383f9fa094131b173a2f7b

    SHA1

    76944ea657a9db94f9a4bef38f88c46ed4166983

    SHA256

    67dc37ed50b8e63272b49a254a6039ee225974f1d767bb83eb1fd80e759a7c34

    SHA512

    1a6b277611959720a9c71114957620517ad94541302f164eb872bd322292a952409bafb8bc2ac793b16ad5f25d83f8594ccff2b7834e3c2b2b941e6fc84c009a