Analysis

  • max time kernel
    118s
  • max time network
    127s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    05-05-2024 09:57

General

  • Target

    1721aafb6dd5e313bc813a222339c14f_JaffaCakes118.html

  • Size

    36KB

  • MD5

    1721aafb6dd5e313bc813a222339c14f

  • SHA1

    43a4e65435d8512096df720ce1ce976a8901d6bc

  • SHA256

    ca01577e8b043b9f9427c2c4da73789945343c19602e40d03f4be8e9e2049d33

  • SHA512

    e254809b178f4701444aba7b07b175bf08dbc7c222a6cd1f930138eb54cb83c3f03860d7fb88ebb8d23d6e4351387972a2757f4176d8db4979375bb340ca8bc6

  • SSDEEP

    768:zwx/MDTHFN88hARcZPXbE1XnXrFLxNLlDNoPqkPTHlnkM3Gr6ThZOg6f9U56lLRW:Q/fbJxNVNufSM/P8XK

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\1721aafb6dd5e313bc813a222339c14f_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2100
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2100 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2628

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\3C428B1A3E5F57D887EC4B864FAC5DCC

    Filesize

    914B

    MD5

    e4a68ac854ac5242460afd72481b2a44

    SHA1

    df3c24f9bfd666761b268073fe06d1cc8d4f82a4

    SHA256

    cb3ccbb76031e5e0138f8dd39a23f9de47ffc35e43c1144cea27d46a5ab1cb5f

    SHA512

    5622207e1ba285f172756f6019af92ac808ed63286e24dfecc1e79873fb5d140f1ceb7133f2476e89a5f75f711f9813a9fbb8fd5287f64adfdcc53b864f9bdc5

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015

    Filesize

    68KB

    MD5

    29f65ba8e88c063813cc50a4ea544e93

    SHA1

    05a7040d5c127e68c25d81cc51271ffb8bef3568

    SHA256

    1ed81fa8dfb6999a9fedc6e779138ffd99568992e22d300acd181a6d2c8de184

    SHA512

    e29b2e92c496245bed3372578074407e8ef8882906ce10c35b3c8deebfefe01b5fd7f3030acaa693e175f4b7aca6cd7d8d10ae1c731b09c5fa19035e005de3aa

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\F0ACCF77CDCBFF39F6191887F6D2D357

    Filesize

    1KB

    MD5

    a266bb7dcc38a562631361bbf61dd11b

    SHA1

    3b1efd3a66ea28b16697394703a72ca340a05bd5

    SHA256

    df545bf919a2439c36983b54cdfc903dfa4f37d3996d8d84b4c31eec6f3c163e

    SHA512

    0da8ef4f8f6ed3d16d2bc8eb816b9e6e1345dfe2d91160196c47e6149a1d6aedaafadcefd66acdea7f72dcf0832770192ceac15b0c559c4ccc2c0e5581d5aefc

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\3C428B1A3E5F57D887EC4B864FAC5DCC

    Filesize

    252B

    MD5

    c90665bf945b2c01ceabab12693244b1

    SHA1

    8174a04349e747939f2206d97cc29e1e0a2955ff

    SHA256

    f298ff619d57e5ae193c0250a6b03096ec9a4b17f8e5183c84f9d5104596116a

    SHA512

    2620095ca209af439ff693e4e653048fc0b009cc1dba1c178db72ef4c40b72c135dafecfd2be58336b71fe5839f3e2376b61334cef29551c15e9960b9e484ba1

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    14fb5b431182ccb8caf1dcc124339460

    SHA1

    ce61756b302a160f75e4b54d8c0708fe3c34db65

    SHA256

    19ec312384d38459c1e6c018a9a7d6bbea4881cb1be7ffb61133b70bd89cc031

    SHA512

    ec9d1186e46414bf3785984a05daac6c30076456d2237a59a8c3b347c32c776bb95b3efc36d7ad9d7f9ae8760e732ba8d06fccc91fa09542dd537d9a3cc60208

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    bca50a0c4e3dbb7767c3f48986e6aee1

    SHA1

    877c8bbe426f0290524ffc2e930b8b16ef9965a5

    SHA256

    2c137e9055621aaa5b6f956d9ca19392d643b6be5a5e65d534bbff95b60495c8

    SHA512

    1ef719c1d0c7a657e95331869dbcceba52ce2b1ca08a72d86017aa6e300b480ae9a60bd1ce259ec4d89b9267cee12cc94de4c0907c99bcc067d772b7e1647eb1

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    4c4ee86fea3263ed6bea6d7f629b80cf

    SHA1

    416da59324c9d4ea778785046a7c0d97b08ccc1e

    SHA256

    4a49e4fcf02543a93a703752b9275b6e3b9d8838dd0fddc2b9b27471da6027f2

    SHA512

    8436d3d17ade8822b6838352b806853a2dde01eb6e79a09f3eb4015e599ec9a73a1c17779909c40b1194898f30757d92ec078a78b7fa6cebc318599d6aeb9832

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    76b5fb50fdc5e0088258f450e0bf0b57

    SHA1

    b83abf16ddde063af46f3e8185672d3a2673c07c

    SHA256

    5fd95a6436084b63dbbda77f731a9849ad25ed897e25e427eb6a2402c7f3046f

    SHA512

    d7e42857a4d18b7ea7655e5ebc3ed14c2ba20ad5c7ce10e930d8928f5e20ef7dc6b6f20415e998235c3cfbe7a48c48a7b976c7b1bc0c4b1f03a82eeaca256197

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    302332d635ddff092c486a041c9e6e22

    SHA1

    cac6c786f9f8b1aebfad8ff0ad93215386327c82

    SHA256

    5463a4a6a0ac818b03bc2c6e72d17c1eb284a87a861b535b1062d97f55115daf

    SHA512

    46c283ebdbd07465503d12fcdf1d3c04234fad92dcc39a9754221d6edb1643af65d2b77e91da6a0f45ea3bef58ec19dd8b1456c45a8bcf912e3dd60abac8f839

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    049d66dcacc6c6d31e9a706152f5bf98

    SHA1

    bb456daec1bffd7b2dcdc2c53a9dbeba5322252b

    SHA256

    fdba7cc1ee1cc741b8915856298b103b160b2b2a1a1648d7572e80a9c928c4a5

    SHA512

    e47768b775ad0783bde6d25f07239af72a0477b294afd0a91f88bbef693adc8d4cd67156a2e0ef66b149668ce868bee300f423a220b3b88fb269ddd943871766

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    4db761e887a8f43bde89dc0085f1c85f

    SHA1

    78029511e800bbd5a825adf534b9c2a8d1fec483

    SHA256

    e8a6b6c170d27c9f8c71e494133f1feef1c433bf82f72308658f01d6f45f7999

    SHA512

    48a13539ae70cddee1baaaad6140f56f1416d3b692c873f3cff0643bba32c9e890f96b05806809d3559f7c64d5ea06253d6faf2c9c4c7373c9c8dd5c44615397

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    566c9269d60143b5b73587528aa19397

    SHA1

    8f847903a3a0ab02109669ee8dd30eaa59b4b7f8

    SHA256

    d6f740cbb9ca8b01df62920c03b6da0085f06bdfa40f3fa3595c2f50aff62e04

    SHA512

    3b124a885cfa8a7de09ea4353e8244b04f7946afec3debc6a93531493b9ca15eb9711c264bcd1c1a0605c1b08de21eb5510f704a23b892bcdffec15474adb56d

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    bbd51b2ebe2bd0a00ea72df353112bae

    SHA1

    5bd4f50bc535f43c8a3591cd53274e5ca7877102

    SHA256

    1463fcc95485643d2081eb29d2eb1d50fb5f26475893fb5d76ba5c7cc2242b34

    SHA512

    b9dd21b333c5eb2b8d95e6fde496603524c9972ff6dceadfcc51715f291ab1c9b82d4e44df522fef0d375440d5796aec08f08685e6cf6cae681fde2fe18a47d1

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    3687c4fe7bcff3489ae189e5caa13825

    SHA1

    44c77e333df597349d14eb3bd1beab9ba2518c14

    SHA256

    320319c630404820085fce89200fe29d0d281861cb2114e9c9cdbf90630738ad

    SHA512

    d86f89c985f9e7063990b13679eced49f536449c13abcb40e272bdb2ec6845ce80cedcc47d080707ca9a1d913121a6b1ba4ddd9f0166b096e99f42c7087dd9a9

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    31249c712f6274e3d80c63431499a2ed

    SHA1

    03581de8fafbbec8d517ec6eba72c19c6efe45da

    SHA256

    22ad6a5699d9f9731f1e647e946a1dc52c9808c25de404af7fd29eee1659b7f9

    SHA512

    13283e90a859bff5ff61106d299e0c94aff7d34bcd5870e29a1624ca0c0c23c2f43d4132d7f34ae8a3221638f169b0bcd7f4a5fb47b18f1d7dc8b0047ddcfd14

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    058cb5a90ad67d82ef456a9af28c22e9

    SHA1

    ec82666b79317f9ebb706255b032c4f0b9a0075d

    SHA256

    ff1ff97527676e1e3495ddee80bf1055478c2c00faec26de54559616627aff02

    SHA512

    f678afad5020e5d1bd4cbf1eed9e910048a5a09e6cf7f5950221b1958ed30e7e9c64818d1479a6828a5c979e129c357aa1df8624dc3059101273f6df0ce60716

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    857e626e891978cc3d57e5a916181eb0

    SHA1

    0e7e7defc07a3658bab7f014095bcfdb66aef7e2

    SHA256

    e99cc24bd06031ed2cfee10ba61942a82dfdeffd5e05d7c4155b299e384063af

    SHA512

    a32e1e6ffe68b55760e5e1db37580632cabeeb6f28ee664a3cd744a4cb9c1586cae027a91c0b5b0aa49bb9a61e7aa6c161c46a26e286d41b0a811f9ef0fce7dc

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    96d7f6310a1fa81aecd055abf9177c47

    SHA1

    124a3f22d72d5db231e5eb795a9ccb55e36f50e5

    SHA256

    dc2d53355388384703eb79da8099dd511c6f86c8e79d83b5148a38a81703b4a6

    SHA512

    aea0b2a63b4722daa5e2bc0b4011150e5725415f7b1803f45489ab12127bcfe9c029793b98d76f7bdf4249d00db800c18281ac4a54be3ff17deeabddc2adc21d

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    9a2d3d0f1a9a80ae7cf0a58aa38a7cac

    SHA1

    6ecc9f63221e92956f4cf33b1b9525c3675e037a

    SHA256

    c2f4d220f50efa3349626ead58d5538387b951fcb32f8a13cf05f67bc238c1ab

    SHA512

    afe3bbe357ebf94fe13076a4f2fe2c365be35641e73b4f2944c1e2ee7c10b048f68577715bacb2593369068622aa8f9f12bb697b207bb9460389f86ccaafba22

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    a54932da1fd62dcf2311d501c2bc2120

    SHA1

    419fb199b8f82988bc544c9eb9d2e1f6fe30a30b

    SHA256

    dca44a3f093f28a7751b9f35c57eedff836ab982014a5369c04a0dd7b3e503c2

    SHA512

    2688c0c9181fccb10e86e6a0dcabf40b1f98abbb85af6c87ff4aaa88b5ad81a484df932c19c96e1e14a34f7a299416ede6ac72b8c56fd5afc424490060615d2d

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    0fd983619d94ec736920f481cb4fbbdf

    SHA1

    d827056f2c69c5005acc757911015dce1a4e930c

    SHA256

    190891445646b283e170d65523dbc3f0dd456d9ce0ac00697395b3f91b35a8e9

    SHA512

    615dfe0786c5c6cefc484a484518674781a13b49b9e91e7d52c5844fd6e179f4588cc6e314a807697aa140629cf201ccc1740b3c74c9fed85f4f39b9b7a81597

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    4830a6ea14a41e013e03dad5023cebd7

    SHA1

    e351dec9be1efe17a2f39cdaedccde4be38bef1f

    SHA256

    9ec1c372a7ec2d59fe5a47abffdcbd8d341ee7ccc8ddddea302a050e887d3cb6

    SHA512

    ab82dc1408e76d3d434b7fc1190b708ea7457a7d45227fb1360fa1774397096dd3365d2aa7a937e96098017f3022038052904655b924276016fae3d37fc2cb38

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    d3473ada79842bcdec96f83bdb98c95b

    SHA1

    ad4fd59d0a20963f6a9ffd78828c48a5eb759b0a

    SHA256

    2969eb5e6ff9b4b85f5e8a42a7de6ac55c57590489f00a9f1bcb50a9aaa01834

    SHA512

    501c18188b2f0596454ad9e1d6f13c007a999d2bfbbe0b5815a906fcca8a0fdc786f52333c10e0eb979173fa33deaee86b8b348b1966edc8d5578784c9fe39d5

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    3a5761ec1da651ea1843289afc1af7a3

    SHA1

    77762d34591bbf9cedaae17e9459b99458d18644

    SHA256

    c387e5d364677f6f835e3e9f24ada0d5887c35211d3e0a1a34b7c04e0ed1b89c

    SHA512

    fbf762257f47324699245332b7a024b5919406255a1462f8cd24195c6f45d12360c6c585c9679bdda5bce26a052fc00a4577fcb09343492023cab3eb641f0c81

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    73733aa72fc006737682e1d69327efdf

    SHA1

    612ca48d4b7566b7703793d3f949cd0d27a30cf1

    SHA256

    f0afc041bac6a2f042bfcf016256cbf0a3622383c14ef0ab886ed3f070278a70

    SHA512

    74267ba4d8affeb4a339cfaee8d69f93272721a3416fb36cbc6f83345a8e5da52089bfd80aa5ae46676c3930090e6b3725d258a9220b5813b861560a9de18d00

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F0ACCF77CDCBFF39F6191887F6D2D357

    Filesize

    242B

    MD5

    aabbb755be17bfcc2c6388ce22fc4e57

    SHA1

    61423e8b39f402d01451fbd3f70cefb8427ccc52

    SHA256

    11d0a08492f521e59ba4433c7cbab368fd34635e1865ebc0fbdfd21ddde88e16

    SHA512

    815ac56862da5c498b48b3f593dc6030b0be0c0f36dea49fa5702a988e4720d39a53bb08a07016107f062355a1cc5ba313fcb6b2c75774a6f4069bb29383a34c

  • C:\Users\Admin\AppData\Local\Temp\Cab13EF.tmp

    Filesize

    65KB

    MD5

    ac05d27423a85adc1622c714f2cb6184

    SHA1

    b0fe2b1abddb97837ea0195be70ab2ff14d43198

    SHA256

    c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

    SHA512

    6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

  • C:\Users\Admin\AppData\Local\Temp\Tar1403.tmp

    Filesize

    171KB

    MD5

    9c0c641c06238516f27941aa1166d427

    SHA1

    64cd549fb8cf014fcd9312aa7a5b023847b6c977

    SHA256

    4276af3669a141a59388bc56a87f6614d9a9bdddf560636c264219a7eb11256f

    SHA512

    936ed0c0b0a7ff8e606b1cc4175a1f9b3699748ccbba1c3aff96203033d2e9edabf090e5148370df42fbfc4e31d7229493706ff24f19ff42ff7bef74a6baad06

  • C:\Users\Admin\AppData\Local\Temp\Tar14E5.tmp

    Filesize

    177KB

    MD5

    435a9ac180383f9fa094131b173a2f7b

    SHA1

    76944ea657a9db94f9a4bef38f88c46ed4166983

    SHA256

    67dc37ed50b8e63272b49a254a6039ee225974f1d767bb83eb1fd80e759a7c34

    SHA512

    1a6b277611959720a9c71114957620517ad94541302f164eb872bd322292a952409bafb8bc2ac793b16ad5f25d83f8594ccff2b7834e3c2b2b941e6fc84c009a