Analysis

  • max time kernel
    122s
  • max time network
    127s
  • platform
    windows7_x64
  • resource
    win7-20240508-en
  • resource tags

    arch:x64arch:x86image:win7-20240508-enlocale:en-usos:windows7-x64system
  • submitted
    09-05-2024 11:06

General

  • Target

    29aa26e062b56680eb2c7ebd6753cdf1_JaffaCakes118.html

  • Size

    249KB

  • MD5

    29aa26e062b56680eb2c7ebd6753cdf1

  • SHA1

    7ced3c3ae6d39384af9b872e6b11bd0839875267

  • SHA256

    14ac5aea12ba8a60a66204e0cec9c2c54f5542eba00cdaffccaaa018e26f20bf

  • SHA512

    c894154219b3f3966b8d5f5524e55fb9f4dd41178d7b12c9f74adecc70df4ba5b4cbb25f64fe26aaf927fa9e0e62f2d476ecd6f6cc1496275f6ed448bcd7dc34

  • SSDEEP

    3072:96ieYknQutNzzGYR+4NIGeIF8Qta7ejb2Hxl+1Hw3Bz4OvSTt7A0OFy:Nesu7Hn+4NWIu4ayb2xvBkFt5OFy

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\29aa26e062b56680eb2c7ebd6753cdf1_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1644
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1644 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2536

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\103621DE9CD5414CC2538780B4B75751

    Filesize

    717B

    MD5

    822467b728b7a66b081c91795373789a

    SHA1

    d8f2f02e1eef62485a9feffd59ce837511749865

    SHA256

    af2343382b88335eea72251ad84949e244ff54b6995063e24459a7216e9576b9

    SHA512

    bacea07d92c32078ca6a0161549b4e18edab745dd44947e5f181d28cc24468e07769d6835816cdfb944fd3d0099bde5e21b48f4966824c5c16c1801712303eb6

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\B265B51443903400A51923462AFEDAE3

    Filesize

    503B

    MD5

    0ebd2d177bebc9c75c5b9e0644448661

    SHA1

    3e6adc962dd9bba066925386d85845a6f8fe1332

    SHA256

    7f27269538479ebbe8b24ce5600813703a7c4524b9579a2f9d01b7a5162e2da6

    SHA512

    23abdf05e84d0dbb834c46c5b96d5076f7521ad1c360e92c686e7e934bac1d3fa39975eff72764a6a5ae1782356b68d42b47fe09786a6d877f1d0c7929ff294c

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\103621DE9CD5414CC2538780B4B75751

    Filesize

    192B

    MD5

    3f93a0f719f5bfbaeddc26e857a964cd

    SHA1

    0d9c2e614b8eaaa00880db7d90f6344262552512

    SHA256

    cba2cb2adfb48aa48166c724982aa87bfcda9d7fd7fb762033c026ebf894bbd8

    SHA512

    176cfabf22adbe18984971a6988ac937e791e66828514d34622f0e6c302baff4530b873c3264a1b5d9dca788d91e847a117b2a868974f5d71ed5d442d25cbfa1

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    68e91b2e3be1ac034ca106bf323ab9b5

    SHA1

    0f992a377bc8b8d74a2b0f9bada21f0c035e5e5f

    SHA256

    e6523c68e153d70badc929ccd4bb408b1aef529cc56e39d45b6588cecf3ca530

    SHA512

    bddcb1707bd9ea814a4a204d4bb226c08fdb48275d3df03a73e5c4b8fa784917e29074c1c776046421a4bc6feacca30bfcb578a5d41e65640a375c080677baf7

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    622989e93aff175e69f516071ea1c998

    SHA1

    568fe31dfd09c042f8e2fc9047d80e2172b5a87d

    SHA256

    5526d5c8f3243a6944b9e1cf261e35161528642340df1139fb54e0d1fec74a62

    SHA512

    d786865dc3aca1dd50a72a53c1b7cb4291017aa2ee52a8e913a1bc21ccff093621953a413c6e6217e9798f94826d91f29cb283abde112120ee02c5acdde0cb4d

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    6818433d6197e06b697c0effc6abf8d0

    SHA1

    068699616da5296929903fb8f7dabf88e0e05bfb

    SHA256

    bf2d1672f3dbdeab59508f8b8b447af097f8ae50a10cbeb12b904f35ca07933b

    SHA512

    ac150ef9cd812c0a712ff3e6f927dbef8f8169d186e153882717dc4eefca9c32ca684d14bdc3b131569b68af20814d61ab2f34247e2e4cd4e1c442d3d3fd4da0

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    e4411afce0bd7a460e7619d39eedd7d8

    SHA1

    6e4f9d31f790f234c537184c0739f7699dd1bd41

    SHA256

    92da267179374ff03220d4cc504ddf509050117c8d8484d98d51619ea21ff906

    SHA512

    da836e7d0bee1620dd4ab948097a1f5c6d7ecd7ce0f17601c6c069881508ec11ec06c2231b37f8685afefc1e7d34de0511a8b08b0a4bb15eed5eda3700cbb7bf

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    2a2d8a4d102942c1fad95640c31c387e

    SHA1

    61bf3e4def023c4d359004bdfeccd8a7efb52dae

    SHA256

    8df473fa90b357314530faab17c900cda18695a366842ce80c4bf3071596b7f7

    SHA512

    77cf21cd51f6f437a3a6b47a928a9bb59a520de76bfa05485481f12e4588a010909526299a4512dae2d0a95d720158d57de23d0b624a725577f491a92534f3b7

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    b327957da6d3b8d47b316dc8a9e32ae1

    SHA1

    6708b373f0aed811711330b70b70869aebc763a6

    SHA256

    d024d0bf799f68095ee9a880e0dc555ed9607600748d445e9b443a2c55fd83c9

    SHA512

    1cfa206d1dc067f413c929b151f0480a83c913f310f3543689cffd286a5697263ad004b070f9046757b9a91e3f2bf1d91b5740adfa5c737ce10414149ef4d291

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    ab33e93659967c09ac0b73ebbeef714b

    SHA1

    72593eac170812a07cc6c128bd7c2378ee7cf077

    SHA256

    fe30a592fc89ec52ee7dbbde6bea5b91e4845f105b94a5185820bcc71b4466d9

    SHA512

    1c225363e2beffe8067964d3d6540c0bed2be7ec6658c311a22783034da2d3a999a2bbc95f5c9dae9c4516d5310d1663e5c944b3461a6d72e71df406613067bd

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    a9c6a8126cf4aa6a117e09dfcea9da36

    SHA1

    c936f21c9e5bf8cab8c410e648f3fe0f96f04506

    SHA256

    f44bebbe653f76ccb25d49ff712fdb3bb0761ffc3b51c83fe591cccaad08e7ff

    SHA512

    08e635354e86859289ee528090a2819850d7637b3a2a00c4175b4ae6f3213e69ff3a113ad09a21bc19175b10206063f2ce7d3fe87b68b9e8d253c5390be6803a

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    5a78704724b71f9dc827c6d6d88e1e0c

    SHA1

    05c8051a0ff31d63e9690b8ab37cbe9219697492

    SHA256

    21e60a274ca4746cd486c7f34d49aab1d83dbfc92b037a3f94f2cfa2fe28ae14

    SHA512

    0d42ce116f8bd0c8ebb24576613b728dd5a55028d58bc8065bc489c3e04ad1ccfeab1502989ed8b5e6e1802424efede3d87f101b6ad91e35d4ec574d62bcfb2d

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    2375f6a63ad32a1f2e2757e81efcb64c

    SHA1

    d5e3ea6698aca05a516eee61d6286007b8dadaad

    SHA256

    35320c46a6aa7f13ee9a7326eb0e9da1a35550a67a0d5b147b28f55b468cc9a2

    SHA512

    390e0f6c84b6f8597a3120130e0c2a446593cf950e223502ddf19c669e27d4b6f9639c4f6730c0bff059c84b5f2be91e2591339d071b58636f723545440a5647

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    d51e636a6677185ca087afb6c23e041b

    SHA1

    fc7e7e0bcaf29f2fcbbc72f7dd19bbb36d748d6b

    SHA256

    6dd296cc4979f2d57d8790e81a65f4bb1cffb8581dc841daf6a5efd0edd3bf4d

    SHA512

    dd5fadeea61a91bd4d9ee1469a3d02b33ae3c05f3967e8b140cc78dbdc98c06854cda182ee5cac4a55dee2bb8bd9c40ef270813eb21770df9a1d38c2ccf8558d

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    f1c2684de51ffa02aa71a558c42e5cb8

    SHA1

    897799adec070bb9e21ae1981f87512c796a4d89

    SHA256

    fd2b373058f72ff8e250bedae4ac882eb931e1e03a8a9992293ff75d563d2d18

    SHA512

    4334609cd8bb373a15e90d59c90f985935b068dd6bb57c1773ff8c2686dd9d32b7eba23a785cfb7a2f86259f94111a47bd9b109ddf2c01de951628d627974018

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    bcf09d22cdbd1cfe5b5a151ed677c012

    SHA1

    1cf6cdb82c2b9b8c1bee502a5cca31c5d876712d

    SHA256

    4ac6ae8a8e4fcea5101d43d1fd173bb68f032584165f327e93ae4345994ec4c1

    SHA512

    2de2ed0bb62700004dcd75d221ad5ae5b2b300416f229f21e9966b0e8b09f8dc47404e3c11ab366117766aea122923be01d25d0f594deff41f4f7a0e202b9873

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    e54a05f4cc70310e75c2663d0ac1803e

    SHA1

    b159b6c3b62653fcfb523f6b9bbf8bf92d0c258e

    SHA256

    f1a1cecb3841e15d30c9b91c5cd68b3d7d3898b2e697836675d364e5724f0cf4

    SHA512

    d7ce9a8b34256cab26ffc88653ebcbc4a86816daa5c94d018f360b4a65b32f9f6d8b1460531e55280559be1f615660775eaf0dd7247bd83e1a56612a8f8afaad

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    b01031b78dfca66112189722ca0b0491

    SHA1

    18ae7fe46dfcde1d2a2c22dbde25e81b582d9a03

    SHA256

    1085c0e82759cb1f77f89841e9a13aa532c8cc4ae9a4f2df0e8674b015814f8d

    SHA512

    68e11039fb368624292e53ab34f49958b83d013c7433c9988f94142b254be4a8cb6f90b9871f2717c2d909d39c5b41988f91101fc206adabcfa441bed7561451

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    5356f76a15e505caaa13ec611867edbe

    SHA1

    e6787ca0a705c64cb051d5a5739678424092133d

    SHA256

    4eeb351c5f6b40ca78ab1999f0a83788f0b978362504e42668acf84dee231935

    SHA512

    14ffcca6428d0b5f5302262225278e2872f205fada356105c3711328a020104ea960c97630f1b3cda37a9ef6586ca183b3ab2023d0aa003f2651cf5c0d1a4ec4

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    07bf5a72f74559ad643dfc7271dae438

    SHA1

    aff45fcae13e03c068b770f4033dd722b9c969fb

    SHA256

    9202bed598524e4197243e712bd71b25a8e11f6fe5dc88e8cdab613f63b9ac90

    SHA512

    018fd8d6c8f15f49a30560020375465bf1ba9df1af36fb56091407a156bbc9d15b6c41841c1481916f3be797aa27350b01f5f7fb0b514fc5006d689a77cf69a7

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    2e8f30bc2a38c4aa95f234c89c8ad6e1

    SHA1

    44ce2b4ae83e66ffb5d890cb6294fe378b9748c4

    SHA256

    a7db077cda0b15549cae523bfc2b1960054b7963ed9046ba7fd6b840fcea71e6

    SHA512

    e40f7a7a68c987e05e3076002f7046fbb3a8b80b4680c3dbaaa8c950f56152a476680514854fbe75ee2448d5549c39689942aee1b0e3ed71bd551cac18a6270f

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    9292fbcb67a561941d70d5da3ed423ce

    SHA1

    8b7382a242fc6b97e48a3671430d289d9fbd77d6

    SHA256

    25783bad31485e52dae429fee70668c1c87b1987b5209eefd65d0b90e6cbf38e

    SHA512

    7223ac3e25db576ca8c325c45ddda08523e36f238d362fc2e153ee3f60dfd1dd05b768d1ac9f48839084a3da28328f948108f62d0caf453f2f3f002a87f2782b

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    9c0140655217f0f31ac99991b0257f6d

    SHA1

    ea6d7514b61bb15cc1490da694bec84cfa024686

    SHA256

    2fdb508f36b1db36dfaba307876522ab470ee8fa1f55f9cedf48d4c26d7cce1d

    SHA512

    c13548071ce57b507bdf3d48b1e6c1447b0b356cb6a1168ae95afe42b3281207c8d0bdfd96a0fc00f0072cd9d3f3309c332ce9326935cbbafd4f1e1460d20f66

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    153de29d689650c4d665a41c512cf09d

    SHA1

    c7df919ce47c33fc24ddf8e9bf3d847a6277005a

    SHA256

    367755786c051ade7715fdb3c745bf08177b47a316e675f6b7ee3f17b300d7d5

    SHA512

    59c9bb3911896351a82bc290cb99c45b52064a86e5eaedc4e91c0a5b49f369d1776d75347d6d5c90c9433f2cefbecd8b9be439414503fe0596d35637bf682b98

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    344B

    MD5

    6c1a88904418b2185ddc9561b4a0dc9c

    SHA1

    bf7ab96e7a1906422bd42652d36a56acea844fb8

    SHA256

    01c3f72f70f13af8795fc9d32fc40ee8262ea572ea4c150c0995b7e823f85b89

    SHA512

    40d1c2ad35748ea960ee2c05061002c2fb820b0f22e57d172d03162e5daa09f4ec8965826f1c3a53cd5fa925b79fcd2735edf228980657c971e01ab15987bdec

  • C:\Users\Admin\AppData\Local\Temp\Cab1DDF.tmp

    Filesize

    68KB

    MD5

    29f65ba8e88c063813cc50a4ea544e93

    SHA1

    05a7040d5c127e68c25d81cc51271ffb8bef3568

    SHA256

    1ed81fa8dfb6999a9fedc6e779138ffd99568992e22d300acd181a6d2c8de184

    SHA512

    e29b2e92c496245bed3372578074407e8ef8882906ce10c35b3c8deebfefe01b5fd7f3030acaa693e175f4b7aca6cd7d8d10ae1c731b09c5fa19035e005de3aa

  • C:\Users\Admin\AppData\Local\Temp\Tar1E5F.tmp

    Filesize

    177KB

    MD5

    435a9ac180383f9fa094131b173a2f7b

    SHA1

    76944ea657a9db94f9a4bef38f88c46ed4166983

    SHA256

    67dc37ed50b8e63272b49a254a6039ee225974f1d767bb83eb1fd80e759a7c34

    SHA512

    1a6b277611959720a9c71114957620517ad94541302f164eb872bd322292a952409bafb8bc2ac793b16ad5f25d83f8594ccff2b7834e3c2b2b941e6fc84c009a